lib/fireeagle/client.rb in mojodna-fireeagle-0.8.0.1 vs lib/fireeagle/client.rb in mojodna-fireeagle-0.8.99

@@ -1,9 +1,9 @@
 module FireEagle
   class Client
     # TODO add access_token=() and request_token=() methods that check whether the tokens are usable
-    
+
     attr_reader :access_token, :request_token, :consumer, :format
 
     # Initialize a FireEagle Client. Takes an options Hash.
     #
     # == Required keys:
@@ -18,39 +18,75 @@
     # [<tt>:access_token</tt>]           OAuth Token, either User-specific or General-purpose
     # [<tt>:access_token_secret</tt>]    OAuth Token, either User-specific or General-purpose
     # [<tt>:app_id</tt>]                 Your Mobile Application ID
     # [<tt>:debug</tt>]                  Boolean
     #
-    # User-specific OAuth tokens tie FireEagle users to your application. As such, they are intended to be
-    # distributed (with keys) to that user's mobile device and/or computer running your desktop or mobile client.
-    # For web-based applications User-specific tokens will be retrieved by your web server where they should be
-    # treated as private data. Take care to avoid releasing this data to the public, as the corresponding User's location
-    # information may be inadvertently exposed. User-specific OAuth tokens should be considered the property of
-    # your users.
+    # User-specific OAuth tokens tie Fire Eagle users to your application. As
+    # such, they are intended to be distributed (with keys) to that user's
+    # mobile device and/or computer running your desktop or mobile client. For
+    # web-based applications User-specific tokens will be retrieved by your
+    # web server where they should be treated as private data. Take care to
+    # avoid releasing this data to the public, as the corresponding User's
+    # location information may be inadvertently exposed. User-specific OAuth
+    # tokens should be considered the property of your users.
     #
-    # General-purpose OAuth tokens are tied to your application and allow you, as a developer, to make more
-    # general (often batch-style) queries against FireEagle. As a result, allowing this token/secret combination
-    # loose has the potential to reveal a much greater amount of personal data. In an attempt to mitigate this, we will
-    # only grant general-purpose tokens to web applications (contact us with details, if you seek an exception). In
-    # addition, we require developers to provide a restrictive IP range at registration time in order to further mitigate
-    # the risk of general-purpose tokens being used inappropriately.
+    # General-purpose OAuth tokens are tied to your application and allow you,
+    # as a developer, to make more general (often batch-style) queries against
+    # Fire Eagle. As a result, allowing this token/secret combination loose
+    # has the potential to reveal a much greater amount of personal data. In
+    # an attempt to mitigate this, we will only grant general-purpose tokens
+    # to web applications (contact us with details, if you seek an exception).
+    # In addition, we require developers to provide a restrictive IP range at
+    # registration time in order to further mitigate the risk of
+    # general-purpose tokens being used inappropriately.
     #
-    # In general, OAuth tokens should be considered sacrosanct in order to help us respect our users' privacy. Please
-    # take this responsibility on as your own. If your Application Oauth tokens are compromised, FireEagle will
-    # turn off your application service until the problem is resolved.
+    # In general, OAuth tokens should be considered sacrosanct in order to
+    # help us respect our users' privacy. Please take this responsibility on
+    # as your own. If your Application Oauth tokens are compromised, Fire
+    # Eagle will turn off your application service until the problem is
+    # resolved.
     #
-    # If the Client is initialized without an OAuth access token, it's assumed you're operating a non-web based application.
+    # If the Client is initialized without an OAuth access token, it's assumed
+    # you're operating a non-web based application.
     #
+    # == Example web-based authentication flow:
+    #
+    # Initialize a client with your consumer key and consumer secret.
+    #
+    #   >> c = FireEagle::Client.new(:consumer_key => "key", :consumer_secret => "sekret")
+    #   => #<FireEagle::Client:0x1ce2e70 ... >
+    #
+    # Generate a request token with a +callback_url+:
+    #
+    #   >> c.get_request_token("http://example.com/cb")
+    #   => #<OAuth::Token:0x1cdb5bc @token="request_token", @secret="sekret">
+    #
+    # Prompt your user to visit your app's authorization url:
+    #
+    #   >> c.authorization_url
+    #   => "http://fireeagle.yahoo.net/oauth/authorize?oauth_token=request_token"
+    #
+    # When the user has completed this step, s/he will be redirected back to
+    # the callback url you configured when obtaining a request token.
+    # +oauth_verifier+ will be present in the callback.
+    #
+    #   >> c.convert_to_access_token(oauth_verifier)
+    #   => #<OAuth::Token:0x1cd3bf0 @token="access_token", @secret="access_token_secret">
+    #
     # == Non web-based applications
     #
-    # For non web-based applications, such as a mobile client application, the authentication between the user and
-    # the application is slightly different. The request token is displayed to the user by the client application. The
-    # user then logs into the FireEagle website (using mobile_authorization_url) and enters this code to authorize the application.
-    # When the user finishes the authorization step the client application exchanges the request token for an access token
-    # (using convert_to_access_token). This is a lightweight method for non-web application users to authenticate an application
-    # without entering any identifying information into a potentially insecure application. Request tokens are valid for only
-    # 1 hour after being issued.
+    # For non web-based applications, such as a mobile client application, the
+    # authentication between the user and the application is slightly
+    # different. The request token is displayed to the user by the client
+    # application. The user then logs into the FireEagle website (using
+    # mobile_authorization_url) and enters this code to authorize the
+    # application. When the user finishes the authorization step the client
+    # application exchanges the request token for an access token (using
+    # +convert_to_access_token+). This is a lightweight method for non-web
+    # application users to authenticate an application without entering any
+    # identifying information into a potentially insecure application. Request
+    # tokens are valid for only 1 hour after being issued.
     #
     # == Example mobile-based authentication flow:
     #
     # Initialize a client with your consumer key, consumer secret, and your mobile application id:
     #
@@ -65,13 +101,14 @@
     # Prompt your user to visit your app's mobile authorization url and enter ENTER_THIS_TOKEN:
     #
     #   >> c.mobile_authorization_url
     #   => "http://fireeagle.yahoo.net/oauth/mobile_auth/12345"
     #
-    # Once the user has indicated to you that they've done this, convert their request token to an access token:
+    # Once the user has indicated to you that they've done this (and provided
+    # a verification code), convert their request token to an access token:
     #
-    #   >> c.convert_to_access_token
+    #   >> c.convert_to_access_token(oauth_verifier)
     #   => #<OAuth::Token:0x1cd3bf0 @token="access_token", @secret="access_token_secret">
     #
     # You're done!
     def initialize(options = {})
       options = {
@@ -98,14 +135,14 @@
       else
         @request_token = nil
       end
     end
 
-    # Obtain an <strong>new</strong> unauthorized OAuth Request token
-    def get_request_token(force_token_regeneration = false)
+    # Obtain a <strong>new</strong> unauthorized OAuth Request token
+    def get_request_token(callback_url = "", force_token_regeneration = false)
       if force_token_regeneration || @request_token.nil?
-        @request_token = consumer.get_request_token
+        @request_token = consumer.get_request_token(:oauth_callback => callback_url)
       end
       @request_token
     end
 
     # Return the Fire Eagle authorization URL for your mobile application. At this URL, the User will be prompted for their request_token.
@@ -118,13 +155,13 @@
     def authorization_url
       raise FireEagle::ArgumentError, "call #get_request_token first" if @request_token.nil?
       request_token.authorize_url
     end
 
-    #Exchange an authorized OAuth Request token for an access token. For use by desktop-based and mobile applications.
-    def convert_to_access_token
-      raise FireEagle::ArgumentError, "call #get_request_token and have user authorize the token first" if @request_token.nil?
-      @access_token = request_token.get_access_token
+    # Exchange an authorized OAuth Request token for an access token. For use by desktop-based and mobile applications.
+    def convert_to_access_token(oauth_verifier)
+      raise FireEagle::ArgumentError, "call #get_request_token and have the user authorize the token first" if @request_token.nil?
+      @access_token = request_token.get_access_token(:oauth_verifier => oauth_verifier)
     end
 
     # Disambiguates potential values for update query. Results from lookup can be passed to
     # update to ensure that FireEagle will understand how to parse the Location Hash.
     #