Sha256: 27a3cb74dc99ae89299e5238d5ecbc37d7231cfa2ab67ce536c8fa01b4f54b0c
Contents?: true
Size: 1.46 KB
Versions: 3
Compression:
Stored size: 1.46 KB
Contents
# frozen_string_literal: true
module Doorkeeper
module OAuth
module Helpers
module URIChecker
def self.valid?(url)
return true if native_uri?(url)
uri = as_uri(url)
uri.fragment.nil? && !uri.host.nil? && !uri.scheme.nil?
rescue URI::InvalidURIError
false
end
def self.matches?(url, client_url)
url = as_uri(url)
client_url = as_uri(client_url)
unless client_url.query.nil?
return false unless query_matches?(url.query, client_url.query)
# Clear out queries so rest of URI can be tested. This allows query
# params to be in the request but order not mattering.
client_url.query = nil
end
url.query = nil
url == client_url
end
def self.valid_for_authorization?(url, client_url)
valid?(url) && client_url.split.any? { |other_url| matches?(url, other_url) }
end
def self.as_uri(url)
URI.parse(url)
end
def self.query_matches?(query, client_query)
return true if client_query.blank? && query.blank?
return false if client_query.nil? || query.nil?
# Will return true independent of query order
client_query.split('&').sort == query.split('&').sort
end
def self.native_uri?(url)
url == Doorkeeper.configuration.native_redirect_uri
end
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems
| Version | Path |
|---|---|
| doorkeeper-5.0.3 | lib/doorkeeper/oauth/helpers/uri_checker.rb |
| doorkeeper-5.0.2 | lib/doorkeeper/oauth/helpers/uri_checker.rb |
| doorkeeper-5.0.1 | lib/doorkeeper/oauth/helpers/uri_checker.rb |