Fix oauth2

Author: Pavel Strashkin

dist/scripts/api-console-vendor.js

@@ -20,7 +20,7 @@ var block = {
   lheading: /^([^\n]+)\n *(=|-){2,} *(?:\n+|$)/,
   blockquote: /^( *>[^\n]+(\n(?!def)[^\n]+)*\n*)+/,
   list: /^( *)(bull) [\s\S]+?(?:hr|def|\n{2,}(?! )(?!\1bull )\n*|\s*$)/,
-  html: /^ *(?:comment|closed|closing) *(?:\n{2,}|\s*$)/,
+  html: /^ *(?:comment *(?:\n|\s*$)|closed *(?:\n{2,}|\s*$)|closing *(?:\n{2,}|\s*$))/,
   def: /^ *\[([^\]]+)\]: *<?([^\s>]+)>?(?: +["(]([^\n]+)[")])? *(?:\n+|$)/,
   table: noop,
   paragraph: /^((?:[^\n]+\n?(?!hr|heading|lheading|blockquote|tag|def))+)\n*/,
@@ -868,7 +868,7 @@ Renderer.prototype.link = function(href, title, text) {
     } catch (e) {
       return '';
     }
-    if (prot.indexOf('javascript:') === 0) {
+    if (prot.indexOf('javascript:') === 0 || prot.indexOf('vbscript:') === 0) {
       return '';
     }
   }
@@ -1154,8 +1154,13 @@ function marked(src, opt, callback) {
 
     pending = tokens.length;
 
-    var done = function() {
-      var out, err;
+    var done = function(err) {
+      if (err) {
+        opt.highlight = highlight;
+        return callback(err);
+      }
+
+      var out;
 
       try {
         out = Parser.parse(tokens, opt);
@@ -1184,6 +1189,7 @@ function marked(src, opt, callback) {
           return --pending || done();
         }
         return highlight(token.text, token.lang, function(err, code) {
+          if (err) return done(err);
           if (code == null || code === token.text) {
             return --pending || done();
           }
@@ -1253,7 +1259,7 @@ marked.inlineLexer = InlineLexer.output;
 
 marked.parse = marked;
 
-if (typeof exports === 'object') {
+if (typeof module !== 'undefined' && typeof exports === 'object') {
   module.exports = marked;
 } else if (typeof define === 'function' && define.amd) {
   define(function() { return marked; });

dist/scripts/api-console.js

@@ -2072,7 +2072,7 @@
       var options = request.toOptions();
 
       return [
-        options.type.toUpperCase(),
+        options.method.toUpperCase(),
         this.encodeURI(options.url),
         rfc3986Encode(this.encodeParameters(request, oauthParams))
       ].join('&');
@@ -2428,7 +2428,7 @@
 
   RAML.Client.Request = {
     create: function(url, method) {
-      return new RequestDsl({ url: url, type: method });
+      return new RequestDsl({ url: url, method: method });
     }
   };
 })();
@@ -3590,8 +3590,8 @@ RAML.Inspector = (function() {
       var xhr     = new root.XMLHttpRequest();
       var headers = options.headers || {};
 
-      // Open the request to the uri and method.
-      xhr.open(options.method, options.uri);
+      // Open the request to the url and method.
+      xhr.open(options.method, options.url);
 
       // When the request has loaded, attempt to automatically parse the body.
       xhr.onload = function () {
@@ -3628,20 +3628,20 @@ RAML.Inspector = (function() {
      * @param {Function} done
      */
     ClientOAuth2.prototype.request = function (options, done) {
-      var lib     = http;
-      var reqOpts = url.parse(options.uri);
+      var lib        = http;
+      var reqOptions = url.parse(options.url);
 
       // If the protocol is over https, switch request library.
-      if (reqOpts.protocol === 'https:') {
+      if (reqOptions.protocol === 'https:') {
         lib = https;
       }
 
       // Alias request options.
-      reqOpts.method  = options.method;
-      reqOpts.headers = options.headers;
+      reqOptions.method  = options.method;
+      reqOptions.headers = options.headers;
 
       // Send the http request and listen for the response to finish.
-      var req = lib.request(reqOpts, function (res) {
+      var req = lib.request(reqOptions, function (res) {
         var data = '';
 
         // Callback to `done` if a response error occurs.
@@ -3701,44 +3701,44 @@ RAML.Inspector = (function() {
   /**
    * Sign a standardised request object with user authentication information.
    *
-   * @param  {Object} opts
+   * @param  {Object} options
    * @return {Object}
    */
-  ClientOAuth2Token.prototype.sign = function (opts) {
+  ClientOAuth2Token.prototype.sign = function (options) {
     if (!this.accessToken) {
       throw new Error('Unable to sign without access token');
     }
 
-    opts.headers = opts.headers || {};
+    options.headers = options.headers || {};
 
     if (this.tokenType === 'bearer') {
-      opts.headers.Authorization = 'Bearer ' + this.accessToken;
+      options.headers.Authorization = 'Bearer ' + this.accessToken;
     } else {
-      var parts    = opts.uri.split('#');
+      var parts    = options.url.split('#');
       var token    = 'access_token=' + this.accessToken;
-      var uri      = parts[0].replace(/[?&]access_token=[^&#]/, '');
+      var url      = parts[0].replace(/[?&]access_token=[^&#]/, '');
       var fragment = parts[1] ? '#' + parts[1] : '';
 
-      // Prepend the correct query string parameter to the uri.
-      opts.uri = uri + (uri.indexOf('?') > -1 ? '&' : '?') + token + fragment;
+      // Prepend the correct query string parameter to the url.
+      options.url = url + (url.indexOf('?') > -1 ? '&' : '?') + token + fragment;
 
-      // Attempt to avoid storing the uri in proxies, since the access token
+      // Attempt to avoid storing the url in proxies, since the access token
       // is exposed in the query parameters.
-      opts.headers.Pragma           = 'no-store';
-      opts.headers['Cache-Control'] = 'no-store';
+      options.headers.Pragma           = 'no-store';
+      options.headers['Cache-Control'] = 'no-store';
     }
 
-    return opts;
+    return options;
   };
 
   /**
    * Make a HTTP request as the user.
    *
-   * @param {Object}   opts
+   * @param {Object}   options
    * @param {Function} done
    */
-  ClientOAuth2Token.prototype.request = function (opts, done) {
-    return this.client.client.request(this.sign(opts), done);
+  ClientOAuth2Token.prototype.request = function (options, done) {
+    return this.client.client.request(this.sign(options), done);
   };
 
   /**

src/common/client/auth_strategies/oauth1/signer/hmac.js

@@ -22,7 +22,7 @@
       var options = request.toOptions();
 
       return [
-        options.type.toUpperCase(),
+        options.method.toUpperCase(),
         this.encodeURI(options.url),
         rfc3986Encode(this.encodeParameters(request, oauthParams))
       ].join('&');

src/common/client/request.js

@@ -105,7 +105,7 @@
 
   RAML.Client.Request = {
     create: function(url, method) {
-      return new RequestDsl({ url: url, type: method });
+      return new RequestDsl({ url: url, method: method });
     }
   };
 })();

src/vendor/client-oauth2/client-oauth2.js

@@ -362,8 +362,8 @@
       var xhr     = new root.XMLHttpRequest();
       var headers = options.headers || {};
 
-      // Open the request to the uri and method.
-      xhr.open(options.method, options.uri);
+      // Open the request to the url and method.
+      xhr.open(options.method, options.url);
 
       // When the request has loaded, attempt to automatically parse the body.
       xhr.onload = function () {
@@ -400,20 +400,20 @@
      * @param {Function} done
      */
     ClientOAuth2.prototype.request = function (options, done) {
-      var lib     = http;
-      var reqOpts = url.parse(options.uri);
+      var lib        = http;
+      var reqOptions = url.parse(options.url);
 
       // If the protocol is over https, switch request library.
-      if (reqOpts.protocol === 'https:') {
+      if (reqOptions.protocol === 'https:') {
         lib = https;
       }
 
       // Alias request options.
-      reqOpts.method  = options.method;
-      reqOpts.headers = options.headers;
+      reqOptions.method  = options.method;
+      reqOptions.headers = options.headers;
 
       // Send the http request and listen for the response to finish.
-      var req = lib.request(reqOpts, function (res) {
+      var req = lib.request(reqOptions, function (res) {
         var data = '';
 
         // Callback to `done` if a response error occurs.
@@ -473,44 +473,44 @@
   /**
    * Sign a standardised request object with user authentication information.
    *
-   * @param  {Object} opts
+   * @param  {Object} options
    * @return {Object}
    */
-  ClientOAuth2Token.prototype.sign = function (opts) {
+  ClientOAuth2Token.prototype.sign = function (options) {
     if (!this.accessToken) {
       throw new Error('Unable to sign without access token');
     }
 
-    opts.headers = opts.headers || {};
+    options.headers = options.headers || {};
 
     if (this.tokenType === 'bearer') {
-      opts.headers.Authorization = 'Bearer ' + this.accessToken;
+      options.headers.Authorization = 'Bearer ' + this.accessToken;
     } else {
-      var parts    = opts.uri.split('#');
+      var parts    = options.url.split('#');
       var token    = 'access_token=' + this.accessToken;
-      var uri      = parts[0].replace(/[?&]access_token=[^&#]/, '');
+      var url      = parts[0].replace(/[?&]access_token=[^&#]/, '');
       var fragment = parts[1] ? '#' + parts[1] : '';
 
-      // Prepend the correct query string parameter to the uri.
-      opts.uri = uri + (uri.indexOf('?') > -1 ? '&' : '?') + token + fragment;
+      // Prepend the correct query string parameter to the url.
+      options.url = url + (url.indexOf('?') > -1 ? '&' : '?') + token + fragment;
 
-      // Attempt to avoid storing the uri in proxies, since the access token
+      // Attempt to avoid storing the url in proxies, since the access token
       // is exposed in the query parameters.
-      opts.headers.Pragma           = 'no-store';
-      opts.headers['Cache-Control'] = 'no-store';
+      options.headers.Pragma           = 'no-store';
+      options.headers['Cache-Control'] = 'no-store';
     }
 
-    return opts;
+    return options;
   };
 
   /**
    * Make a HTTP request as the user.
    *
-   * @param {Object}   opts
+   * @param {Object}   options
    * @param {Function} done
    */
-  ClientOAuth2Token.prototype.request = function (opts, done) {
-    return this.client.client.request(this.sign(opts), done);
+  ClientOAuth2Token.prototype.request = function (options, done) {
+    return this.client.client.request(this.sign(options), done);
   };
 
   /**