ak4r 0.2.2 → 0.2.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 30f9acbcce2837f1b5a58f93267a3a1fc36d329136b90cfeb30601f9e2603b3e
-  data.tar.gz: eb9615af834214a2c7b091b536ba5e1f334ed13cbe782448d2e1eb100054f336
+  metadata.gz: 78438b5f45ef1980b47f4a9fb2f11d675e3a8224c17d394fb373c443a3060b41
+  data.tar.gz: 0f84d5a528f2f2d5d3af633867a7746e45e2d07d2d1a4c2a6be93cb9acded525
 SHA512:
-  metadata.gz: f9345b35fd16afefe7063d8d6d7387d66fe7de9f0c441d940c9d402b1f32d148224db01560155d9156de3b6bf2ddc1248ec134896377d7b21f757eca016a72b2
-  data.tar.gz: 3e13a6875030f334bf4210847fec3739d50d8d6f2a14065a407b50fb1c19891948d71ae32e006091ba66ba5e9dc171dda54b76d4300e7b1f9acf5f0884aaaf83
+  metadata.gz: 4d51f310266b2d15be1eccefffc346cd85ba003238cc3fe1be2841f7242ba003b3d1fdcda06145d2e8dbd32100c5879633431daaedace114a046ef34e3d92753
+  data.tar.gz: f0364f56140a6e0b67ef1aa761bac332f500cda2b7d40327b1939820ecec68cd6c4c022f991fc5d67ffb2f60050908f3a96d4d5989765eb54292278aff94c62d

data/lib/ak4r/middleware.rb

@@ -59,10 +59,11 @@ module Ak4r
       raise Ak4r::ApiException.new(403, "API Key expired") if(api_key.valid_until && api_key.valid_until < Time.now)
 
       api_key_hash = Ak4r::TokenGenerator.digest(api_key_secret)
-      raise Ak4r::ApiException.new(403, "API Key invalid") if(api_key_hash != api_key.hash)
+      raise Ak4r::ApiException.new(403, "API Key invalid") if(api_key_hash != api_key.key_hash)
       
       request = Rack::Request.new(env)
-      scope = "#{request.request_method}:#{request.path}"
+      route = Rails.application.routes.recognize_path(request.path, {method: request.request_method}) || {controller: "route_path_not_recognized #{request.path}"}
+      scope = "#{request.request_method}:/#{route[:controller]}"
       raise Ak4r::ApiException.new(403, "API Key not allowed for scope #{scope}") unless(api_key.scopes.include?(scope))
       @app.call(env)
     end

data/lib/ak4r/token_generator.rb

@@ -19,7 +19,7 @@ module Ak4r
       loop do
         raw = self.friendly_token
         enc = OpenSSL::HMAC.hexdigest(DIGEST, key, raw)
-        break [raw, enc] unless Ak4r::ApiKey.where(hash: enc).any?
+        break [raw, enc] unless Ak4r::ApiKey.where(key_hash: enc).any?
       end
     end
     

data/lib/generators/templates/migration.rb

@@ -3,14 +3,14 @@ class CreateAk4rApiKey < ActiveRecord::Migration[4.2]
     create_table :ak4r_api_keys do |t|
       t.string :name
       t.string :prefix
-      t.string :hash
+      t.string :key_hash
       t.string :scopes, array: true
       t.timestamp :valid_until
       t.timestamps
     end
 
     add_index :ak4r_api_keys, :prefix
-    add_index :ak4r_api_keys, :hash
+    add_index :ak4r_api_keys, :key_hash
   end
 
   def self.down

data/lib/tasks/ak4r.rake

@@ -9,11 +9,11 @@ namespace :ak4r do
     end
   end
   desc "Create new API Key"
-  task :create, [:name, :scopes] => :environment do    
+  task :create, [:name, :scopes] => :environment do |t, args| 
     secret, hash = Ak4r::TokenGenerator.generate
     api_key = Ak4r::ApiKey.create(
       name: args[:name],
-      hash: hash,
+      key_hash: hash,
       prefix: Ak4r::TokenGenerator.friendly_token(7),
       scopes:  args[:scopes].split(';')
     )

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ak4r
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.2.4
 platform: ruby
 authors:
 - Stefano Salvador
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-02-04 00:00:00.000000000 Z
+date: 2025-01-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -45,7 +45,7 @@ homepage: https://github.com/stefanosalvador/ak4r
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -60,8 +60,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
-signing_key: 
+rubygems_version: 3.4.20
+signing_key:
 specification_version: 4
 summary: API Keys for Ruby on Rails
 test_files: []