Paasword 1.0.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: '03329d6367462d6d6f91761b183ae1fd5b3254d2'
+  data.tar.gz: 32ed5d1b9ea8863592feaacc15b217010ff4a8a1
+SHA512:
+  metadata.gz: d33420bb3968f9838f7d5cc07f76fe4531af4037aa87da60a0f9677e5af4ce8bfdbb822073cd631207397c04a46353b6b0906e299044a301aad1f0afaf750d08
+  data.tar.gz: 91e0a5d85c1e482abba260af0d368563c5a56ac1f59bd14fe8673f7fd69f33300c95c111b9d26643b488725697aa1473c49b24b38a49d8abf43f980f0aab0ee9

data/lib/paasword.rb

@@ -0,0 +1,46 @@
+require 'jwt'
+
+class Paasword
+	def initialize(app)
+		@app = app
+	end
+
+	def call(env)
+		begin
+			@req = Rack::Request.new(env)
+
+			token = env['HTTP_X_AUTH_TOKEN']
+			appPrivateKey = ENV['PAASWORD_APP_PRIVATE_KEY']
+			if !token
+				error("MISSING_ELEMENT", "x-auth-token")
+			elsif !appPrivateKey
+				error("MISSING_ELEMENT", "PAASWORD_APP_PRIVATE_KEY")
+			else 
+				user = JWT.decode token, appPrivateKey, true
+				user = user[0]
+
+				if user && !user['AutoLogout']['IsEnabled']
+					loginTime = user['iat'];
+					hoursSinceLogin = ((Time.now.to_i - loginTime)/3600).round;
+					limit = user['AutoLogout']['LogoutEveryXHours']
+					if hoursSinceLogin > limit
+						error("SESSION_EXPIRED", "")
+					end
+				end
+
+				env['user'] = user
+
+				status, headers, body = @app.call(env)
+				[status, headers, body]
+			end
+		rescue Exception => ex
+			error("INTERNAL_ERROR", ex.message)
+		end
+	end
+
+	def error(errorType, errorMessage)
+		body = { "ErrorType" => errorType, "ErrorMessage" => errorMessage }
+		[401, { 'Content-Type' => 'application/json; charset=utf-8' }, [ body.to_json ]]
+	end
+
+end

metadata

@@ -0,0 +1,49 @@
+--- !ruby/object:Gem::Specification
+name: Paasword
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- Gilad Soffer
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-02-26 00:00:00.000000000 Z
+dependencies: []
+description: |-
+  Paas-Word is an online authentication and user management service.
+  This Ruby on Rails Rack middleware library by Paas-Word enables website owners with a Ruby backend to restrict their endpoints to authenticated users only and retrieve user data.
+email: paasword.cto@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/paasword.rb
+homepage: http://rubygems.org/gems/paasword
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.5.2.3
+signing_key: 
+specification_version: 4
+summary: Paas-Word is an online authentication and user management service. This Ruby
+  on Rails Rack middleware library by Paas-Word enables website owners with a Ruby
+  backend to restrict their endpoints to authenticated users only and retrieve user
+  data.
+test_files: []