update to 2.0.3

Author: Anthony Kirwan

CHANGELOG.md

@@ -1,26 +1,30 @@
 # Changelog Ember-OAuth2
 
+## v2.0.3-beta
+  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v2.0.2-beta...v2.0.3-beta]
+  - fix typo in scope
+
 ## v2.0.2-beta
-  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v2.0.1-beta...v2.0.2-beta] 
+  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v2.0.1-beta...v2.0.2-beta]
 
-  - add setProvider method 
+  - add setProvider method
   - change init to not take providerId
 
 ## v2.0.1-beta
-  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v2.0.0-beta...v2.0.1-beta] 
+  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v2.0.0-beta...v2.0.1-beta]
 
-  - Update NPM author info 
+  - Update NPM author info
 
 ## v2.0.0-beta
-  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v1.1.0...v2.0.0-beta] 
+  (Full Changelog)[https://github.com/amkirwan/ember-oauth2/compare/v1.1.0...v2.0.0-beta]
 
-  - Converted to EmberAddon and turned EmberOAuth2 into a service 
+  - Converted to EmberAddon and turned EmberOAuth2 into a service
   - Updated testing to use Ember-Qunit
   - Update project README
 
 ## v1.1.0
   - Add verifyToken method to handle mitigation of the confused deputy
-  - fix bug with checking of state 
+  - fix bug with checking of state
 
 ## v1.0.1
   - Update getState function to not take a param argument and use the configure statePrefix to find the state from localStorage.
@@ -50,7 +54,7 @@
 ## v0.5.2
   - Update Ember dependeny to 1.7
   - Moved bower install dependences from vendor to bower_components
-  - Add dist dir to repo for bower installs 
+  - Add dist dir to repo for bower installs
 ## v0.5.1
   - Fixed bug where the random UUID for the state was not being set.
   - openWindow resolves with a reference to the dialog window and rejects
@@ -65,7 +69,7 @@
   - Login dialog window returns a promise, it resolves on success and reject on error
 ## v0.3.2
   - Remove files not needed in package.
-  - Add build files to dist dir for package manaagers. 
+  - Add build files to dist dir for package manaagers.
 ## v0.3.1
   - Initial relase to Bower
 ## v0.3.0

README.md

@@ -8,9 +8,9 @@ JavaScript library for using OAuth 2.0 Implicit Grant flow (Client-Side Flow) or
 
 This creates an OAuth 2.0 Ember object class for handling authentication with OAuth 2.0 providers.
 
-Current Version: **[2.0.2-beta](https://github.com/amkirwan/ember-oauth2/releases/tag/v2.0.2-beta)**
+Current Version: **[2.0.3-beta](https://github.com/amkirwan/ember-oauth2/releases/tag/v2.0.3-beta)**
 
-The EmberCli addon [EmberTokenAuth](https://github.com/amkirwan/ember-token-auth) demonstrates how to use Ember-OAuth2 library for authentication. 
+The EmberCli addon [EmberTokenAuth](https://github.com/amkirwan/ember-token-auth) demonstrates how to use Ember-OAuth2 library for authentication.
 
 ## Dependencies
 
@@ -21,15 +21,15 @@ Ember-OAuth2 requires Ember and jQuery.
 
 Ember-OAuth2 uses localStorage for saving the tokens, localStorage is supported in Firefox 3.5+, Safari 4+, IE9+, and Chrome.
 
-The latest version of Ember-OAuth2 is an Ember Addon and uses the ES6 modules. This allows Ember-OAuth2 to be used in projects like [EmberCLI](https://github.com/stefanpenner/ember-cli) easier. 
+The latest version of Ember-OAuth2 is an Ember Addon and uses the ES6 modules. This allows Ember-OAuth2 to be used in projects like [EmberCLI](https://github.com/stefanpenner/ember-cli) easier.
 
 
 ## Installation
 
 Ember-OAuth2 is an Ember Addon that can be installed with the following command from your ember project.
 
 ```javascript
-$ ember install ember-oauth2  
+$ ember install ember-oauth2
 ```
 
 Ember-OAuth2 is an Ember [service](https://guides.emberjs.com/v2.8.0/applications/services/) that you can inject to different parts of your app using the inject syntax
@@ -109,7 +109,7 @@ The following are the options available for configuring a provider:
 
 ## Authorization
 
-To sign into the OAuth2 provider create by injecting the service, set the provider with `setProvider` and call the `authorize`. You can inject this addon into your route for example and when the user clicks a button fire the action to handle the request and set the service providerId and call authorize. This is a simple example and you would probably want to wrap this functionality in a session model. Checkout [ember-token-auth](https://github.com/amkirwan/ember-token-auth) for a full example. 
+To sign into the OAuth2 provider create by injecting the service, set the provider with `setProvider` and call the `authorize`. You can inject this addon into your route for example and when the user clicks a button fire the action to handle the request and set the service providerId and call authorize. This is a simple example and you would probably want to wrap this functionality in a session model. Checkout [ember-token-auth](https://github.com/amkirwan/ember-token-auth) for a full example.
 
 ```javascript
 // login route
@@ -162,7 +162,7 @@ The `authorize` call returns a `Ember.RSVP.Promise`. Authorize will `resolve` wi
 
 })
 
-When using the client-side flow it is vital to validate the token received from the endpoint, failure to do so will make your application vulnerable to the [confused deputy problem](https://en.wikipedia.org/wiki/Confused_deputy_problem). As of version `v1.0.2` Ember-OAuth2 supports the `verifyToken` method for validating tokens when using the client-side flow. The user will need to override this method for validating the different server endpoints. 
+When using the client-side flow it is vital to validate the token received from the endpoint, failure to do so will make your application vulnerable to the [confused deputy problem](https://en.wikipedia.org/wiki/Confused_deputy_problem). As of version `v1.0.2` Ember-OAuth2 supports the `verifyToken` method for validating tokens when using the client-side flow. The user will need to override this method for validating the different server endpoints.
 
 Here is an example of how this might be accomplished in an Ember-CLI instance initializer using the Google token validation endpoint.
 
@@ -178,7 +178,7 @@ export function initialize(app) {
 function verifyTokenInit(app) {
   EmberOAuth2.reopen({
     // mitigate confused deputy
-    verifyToken: function() { 
+    verifyToken: function() {
       return new Ember.RSVP.Promise((resolve, reject) => {
         // implement the adapter with the url to the google tokeinfo endpoint
         var adapter = app.lookup('adapter:session');
@@ -196,7 +196,7 @@ function verifyTokenInit(app) {
   });
 }
 
-export default { 
+export default {
   name: 'ember-oauth2',
   initialize: initialize
 };
@@ -210,7 +210,7 @@ export default {
 
 If using the Authorization Grant flow with your provider your backend server will need to handle the final steps of authorizing your application. Your success handler will need to send the `AUTHORIZATON_CODE` returned from OAuth2 provider to your backend server which can then retrieve an access token using the client_id, client_secret, and authorization_code.
 
-To enable the Authorization Grant flow for a provider set the `responseType` value to `code`.  
+To enable the Authorization Grant flow for a provider set the `responseType` value to `code`.
 
 ```javascript
 window.ENV = window.ENV || {};
@@ -224,7 +224,7 @@ window.ENV['ember-oauth2'] = {
 }
 ```
 
-To build Ember.Oauth2 on your system you will need to have [Node.js](http://nodejs.org), and [npm](https://npmjs.org) installed. 
+To build Ember.Oauth2 on your system you will need to have [Node.js](http://nodejs.org), and [npm](https://npmjs.org) installed.
 
 ```bash
 $ git clone https://github.com/amkirwan/ember-oauth2
@@ -238,7 +238,7 @@ $ bower install
 To run the tests you can run one of the following commands.
 
 ```bash
-$ ember test 
+$ ember test
 $ ember test --serve
 $ npm test
 ```
@@ -264,7 +264,3 @@ $ yuidoc .
 #### Thanks to the following projects for ideas on how to make this work.
 
 * [backbone-oauth](http://github.com/ptnplanet/backbone-oauth)
-
-
-
-

addon/services/ember-oauth2.js

@@ -4,13 +4,13 @@ import Ember from 'ember';
   * @overview OAuth2 addon for Emberjs that stores tokens in the browsers localStorage
   * @license   Licensed under MIT license
   *            See https://raw.github.com/amkirwan/ember-oauth2/master/LICENSE
-  * @version   2.0.2-beta
+  * @version   2.0.3-beta
   *
   * @module ember-oauth2
   * @class ember-oauth2
   */
 export default Ember.Service.extend(Ember.Evented, {
-  VERSION: '2.0.2-beta',
+  VERSION: '2.0.3-beta',
   /**
    * initialize with the providerId to find in
    * EmberENV['ember-oauth2'] config
@@ -74,8 +74,8 @@ export default Ember.Service.extend(Ember.Evented, {
     let dialog = window.open(url, 'Authorize', 'height=600, width=450');
     if (window.focus && dialog) { dialog.focus(); }
     return new Ember.RSVP.Promise(function(resolve, reject) {
-      if (dialog) { resolve(dialog); } 
-      else { reject(new Error('Opening dialog login window failed.')); } 
+      if (dialog) { resolve(dialog); }
+      else { reject(new Error('Opening dialog login window failed.')); }
     });
   },
 
@@ -84,7 +84,7 @@ export default Ember.Service.extend(Ember.Evented, {
    * Check if the token returned is valid and if so trigger `success` event else trigger `error`
    *
    * @method handleRedirect
-   * @param {Object} hash The window location hash callback url 
+   * @param {Object} hash The window location hash callback url
    * @param {Function} callback Optional callback
    */
 
@@ -95,12 +95,12 @@ export default Ember.Service.extend(Ember.Evented, {
     if (self.authSuccess(params) && self.checkState(params.state)) {
       if (self.get('responseType') === 'token') {
         self.saveToken(self.generateToken(params));
-        // verify the token on the client end 
+        // verify the token on the client end
         self.verifyToken().then(function(result) {
-          /*jshint unused:false*/ 
+          /*jshint unused:false*/
           self.trigger('success');
         }, function(error) {
-          /*jshint unused:false*/ 
+          /*jshint unused:false*/
           self.removeToken();
           self.trigger('error', 'Error: verifying token', params);
         });
@@ -181,8 +181,6 @@ export default Ember.Service.extend(Ember.Evented, {
     return Ember.RSVP.Promise.resolve(true);
   },
 
-
-
   /**
    * Checks if the State returned from the server matches the state that was generated in the original request and saved in the browsers localStorage.
    *
@@ -236,7 +234,7 @@ export default Ember.Service.extend(Ember.Evented, {
         '&redirect_uri=' + encodeURIComponent(this.get('redirectUri')) +
         '&client_id=' + encodeURIComponent(this.get('clientId')) +
         '&state=' + encodeURIComponent(this.get('state'));
-    if (this.get('scope')) { 
+    if (this.get('scope')) {
       uri += '&scope=' + encodeURIComponent(this.get('scope')).replace('%20', '+');
     }
     return uri;
@@ -350,7 +348,7 @@ export default Ember.Service.extend(Ember.Evented, {
 
   /**
    * @method generateState
-   * @return {String} The state 
+   * @return {String} The state
    */
   generateState(clear = false) {
     if (!this.get('state') || clear === true) { this.set('state', this.uuid()); }
@@ -362,7 +360,7 @@ export default Ember.Service.extend(Ember.Evented, {
    * @return {Object} The params from the OAuth2 response from localStorage with the key 'tokenPrefix-providerId'.
    */
   getToken: function() {
-    var token = JSON.parse(window.localStorage.getItem(this.tokenKeyName())); 
+    var token = JSON.parse(window.localStorage.getItem(this.tokenKeyName()));
     if (!token) { return null; }
     if (!token.access_token) { return null; }
     return token;

bower.json

@@ -1,6 +1,6 @@
 {
   "name": "ember-oauth2",
-  "version": "2.0.2-beta",
+  "version": "2.0.3-beta",
   "homepage": "https://github.com/amkirwan/ember-oauth2",
   "authors": [
     "Anthony Kirwan <[email protected]>"

package.json

@@ -1,6 +1,6 @@
 {
   "name": "ember-oauth2",
-  "version": "2.0.2-beta",
+  "version": "2.0.3-beta",
   "description": "OAuth2 library for Emberjs that stores tokens in the browsers localStorage",
   "homepage": "https://github.com/amkirwan/ember-ouath2",
   "directories": {

tests/unit/ember-oauth-test.js

@@ -2,7 +2,6 @@ import Ember from 'ember';
 import { moduleFor, test } from 'ember-qunit';
 import sinon from 'sinon';
 
-
 let service, responseType, clientId, authBaseUri, redirectUri, scopes;
 
 moduleFor('service:ember-oauth2', 'Unit | Service | EmberOAuth2', {
@@ -48,7 +47,7 @@ test("#setProvider configures the provider from the providerId in the ember-oaut
   service.setProvider('test_auth');
   assert.expect(5);
   assert.equal(service.get('providerId'), 'test_auth');
-  assert.deepEqual(service.get('providerConfig'), window.EmberENV['ember-oauth2']['test_auth']); 
+  assert.deepEqual(service.get('providerConfig'), window.EmberENV['ember-oauth2']['test_auth']);
   // sets the properties from the providerConfig
   assert.equal(service.get('clientId'), clientId);
   assert.equal(service.get('authBaseUri'), authBaseUri);
@@ -120,7 +119,7 @@ test('#removeState', function(assert) {
 
   window.localStorage.setItem('foobar', {});
   assert.ok(window.localStorage.getItem('foobar'));
-  service.removeState('foobar'); 
+  service.removeState('foobar');
   assert.notOk(window.localStorage.getItem('foobar'));
 
   // without stateName use saved stateKeyName;
@@ -156,7 +155,7 @@ test('remove any saved states with prefix', function(assert) {
 // requestObj
 test('#requestObj', function(assert) {
   let obj = service.requestObj();
-  
+
   assert.equal(obj.response_type, 'token');
   assert.equal(obj.providerId, 'test_auth');
   assert.equal(obj.clientId, 'abcd');
@@ -282,7 +281,7 @@ test("#generateToken should generate the token that will be saved to the localSt
   let stub = sinon.stub(service, 'expiresIn', function() { return 1000; });
   let params = {expires_in: 1000, scope: scopes, access_token: 'abcd12345'};
   let token = { provider_id: 'test_auth', expires_in: 1000, scope: scopes, access_token: 'abcd12345' };
- 
+
   assert.deepEqual(service.generateToken(params), token);
   stub.reset();
 });
@@ -311,7 +310,7 @@ test('#handleRedirect - success', function(assert) {
               '&token_type=' + 'Bearer' +
               '&expires_in=' + '3600' +
               '&state=' + state;
- 
+
   let parsed = { access_token : '12345abc', token_type : 'Bearer', expires_in : '3600', state : state };
   let stub = sinon.stub(service, 'parseCallback', function() { return parsed; });
 
@@ -336,7 +335,7 @@ test('#handleRedirect - verifyToken failure', function(assert) {
               '&token_type=' + 'Bearer' +
               '&expires_in=' + '3600' +
               '&state=' + state;
- 
+
   let parsed = { access_token: '12345abc', token_type : 'Bearer', expires_in : '3600', state : state };
   let stub = sinon.stub(service, 'parseCallback', function() { return parsed; });
 
@@ -361,7 +360,7 @@ test('#handleRedirect - failure state does not match', function(assert) {
               '&token_type=' + 'Bearer' +
               '&expires_in=' + '3600' +
               '&state=' + '12345';
- 
+
   let parsed = { access_token: '12345abc', token_type : 'Bearer', expires_in : '3600', state : state };
   let stub = sinon.stub(service, 'parseCallback', function() { return parsed; });
 
@@ -372,7 +371,7 @@ test('#handleRedirect - failure state does not match', function(assert) {
 });
 
 // failure Implicit client-side flow
-// responseType is 'token' but response of the 
+// responseType is 'token' but response of the
 // callbackUri is 'code' instead of 'token'
 test('#handleRedirect - tokenType is incorrect', function(assert) {
   let spy = sinon.spy(service, 'handleRedirect');
@@ -386,7 +385,7 @@ test('#handleRedirect - tokenType is incorrect', function(assert) {
               '&token_type=' + 'Bearer' +
               '&expires_in=' + '3600' +
               '&state=' + state;
- 
+
   let parsed = { code: '12345abc', token_type : 'Bearer', expires_in : '3600', state : state };
   let stub = sinon.stub(service, 'parseCallback', function() { return parsed; });
 
@@ -410,7 +409,7 @@ test('#handleRedirect - success authorization flow', function(assert) {
               '&token_type=' + 'Bearer' +
               '&expires_in=' + '3600' +
               '&state=' + state;
- 
+
   let parsed = { code: '12345abc', token_type : 'Bearer', expires_in : '3600', state : state };
   let stub = sinon.stub(service, 'parseCallback', function() { return parsed; });
 
@@ -465,7 +464,7 @@ test("#accessTokenIsExpired", function(assert) {
 
 test("#expiresIn", function(assert) {
   let stub = sinon.stub(service, 'now', function() { return 1000; });
-  
+
   assert.equal(service.expiresIn(3600), 4600);
   stub.reset();
 });
@@ -474,7 +473,7 @@ test("#removeToken", function(assert) {
   assert.expect(2);
   window.localStorage.removeItem(service.tokenKeyName());
   let token = {access_token: 'abcd', foo: 'bar'};
-  service.saveToken(token);  
+  service.saveToken(token);
   assert.equal(window.localStorage.getItem(service.tokenKeyName()), JSON.stringify(token));
   service.removeToken();
   assert.equal(window.localStorage.getItem(service.tokenKeyName()), undefined);

yuidoc.json

@@ -1,7 +1,7 @@
 {
   "name": "Ember.OAuth2",
   "description": "OAuth2 library for Emberjs that stores tokens in the browsers localStorage",
-  "version": "2.0.2-beta",
+  "version": "2.0.3-beta",
   "url": "https://github.com/amkirwan/ember-oauth2",
   "options": {
     "exclude": "node_modules,bower_components,scripts,tmp,vendor",