RubyGems - angus-authentication - Versions diffs - 0.0.4 → 0.0.6 - Mend

angus-authentication 0.0.4 → 0.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

checksums.yaml +7 -0
data/lib/angus/authentication/provider.rb +49 -35
data/lib/angus/authentication/version.rb +1 -1
metadata +23 -51

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 080062cb636890dfd1eb9f6711775374dcab517e
+  data.tar.gz: a8c4d762dff97f53d11e18cf045821e1f0f9ee34
+SHA512:
+  metadata.gz: 2a16551b23b7819e9550938be9b425e2bf486d6420fd816f2d1cbb30304be1ccfe7943821a41dc6864afccf76adfff5643d85747b4cf62cb357e8e66ba1c821c
+  data.tar.gz: 8d39de5c20d58c842a3f88adb47729b3b6cc129a62279d11a76e8f24cb5b0e5ef994cd52d04178b23ab1c5ae6bf49acea123df43242564392c3ac52e08baf505

data/lib/angus/authentication/provider.rb CHANGED

@@ -9,21 +9,23 @@ module Angus
     class Provider
-      DEFAULT_ID_TTL = 60 * 60
-      DEFAULT_SESSION_TTL = 60 * 60
-      DEFAULT_PRIVATE_KEY = 'CHANGE ME!!'
-      AUTHENTICATION_HEADER = 'HTTP_AUTHORIZATION'
-      BAAS_AUTHENTICATION_HEADER = 'HTTP_X_BAAS_AUTH'
-      BAAS_SESSION_HEADER = 'X-Baas-Session-Seed'
-      DATE_HEADER = 'HTTP_DATE'
-      REQUEST_HEADER = 'REQUEST_METHOD'
-      PATH_HEADER = 'PATH_INFO'
+      DEFAULT_ID_TTL                    = 60 * 60
+      DEFAULT_SESSION_TTL               = 60 * 60
+      DEFAULT_PRIVATE_KEY               = 'change_me'
+      DEFAULT_USE_SESSION               = false
+      AUTHENTICATION_HEADER             = 'HTTP_AUTHORIZATION'
+      BAAS_AUTHENTICATION_HEADER        = 'HTTP_X_BAAS_AUTH'
+      BAAS_SESSION_HEADER               = 'X-Baas-Session-Seed'
+      DATE_HEADER                       = 'HTTP_DATE'
+      REQUEST_HEADER                    = 'REQUEST_METHOD'
+      PATH_HEADER                       = 'PATH_INFO'
       def initialize(settings, env)
         @session_id_ttl = settings[:session_id_ttl] || DEFAULT_ID_TTL
         @session_ttl = settings[:session_ttl] || DEFAULT_SESSION_TTL
         @private_key = settings[:private_key] || DEFAULT_PRIVATE_KEY
+        @use_session = settings[:use_session]
         @authenticator = settings[:authenticator] || DefaultAuthenticator.new(@private_key)
         @store = RedisStore.new(settings[:store] || {})
         @excluded_regexps = settings[:excluded_regexps] || []
@@ -33,7 +35,7 @@ module Angus
       def authenticate!
         return unless should_authenticate?
-        if has_session?
+        if has_session? && use_session?
           authenticate_session
         else
           start_session
@@ -41,17 +43,19 @@ module Angus
       end
       def update_response_header(response)
-        return unless should_authenticate?
+        return unless use_session? && should_authenticate?
         headers = response[1]
-        session_data = @store.get_session_data(session_id)
-        headers[BAAS_SESSION_HEADER] = session_data['key_seed']
+        headers[BAAS_SESSION_HEADER] = get_session_data['key_seed']
       end
       private
+      def use_session?
+        @use_session || DEFAULT_USE_SESSION
+      end
       def should_authenticate?
         return true if @excluded_regexps.empty?
@@ -67,12 +71,7 @@ module Angus
       end
       def start_session
-        raise MissingAuthorizationData unless authorization_data_present?
-        private_session_key, private_session_key_seed = @authenticator.call(session_id, auth_data,
-                                                                            auth_token)
-        raise InvalidAuthorizationData unless private_session_key
+        private_session_key, private_session_key_seed = get_session_credentials
         session_data = {
           'private_key' => private_session_key,
@@ -80,26 +79,45 @@ module Angus
           'created_at' => Time.now.iso8601
         }
-        @store.save_session_data(session_id, session_data, @session_id_ttl + @session_ttl)
+        set_session_data(session_data)
       end
       def authenticate_session
-        raise MissingAuthorizationData unless session_data_present?
+        raise MissingAuthorizationData unless session_data_present? || authorization_data_present?
         if session_expired? && authorization_data_present?
-          start_session && return
+          start_session
         elsif session_expired?
           raise AuthorizationTimeout
-        end
-        session_data = @store.get_session_data(session_id)
-        if authenticate_session_token(session_data['private_key'])
+        elsif !valid_session_token? && authorization_data_present?
+          start_session
+        elsif !valid_session_token?
           raise InvalidAuthorizationData
         end
       end
-      def authenticate_session_token(private_key)
-        Digest::SHA1.hexdigest("#{private_key}\n#{auth_data}") != session_auth_token
+      def get_session_credentials
+        raise MissingAuthorizationData unless authorization_data_present?
+        private_session_key, private_session_key_seed = @authenticator.call(session_id, auth_data,
+                                                                            auth_token)
+        raise InvalidAuthorizationData unless private_session_key
+        return private_session_key, private_session_key_seed
+      end
+      def set_session_data(session_data)
+        @store.save_session_data(session_id, session_data, @session_id_ttl + @session_ttl)
+      end
+      def valid_session_token?
+        private_key = get_session_data['private_key']
+        Digest::SHA1.hexdigest("#{private_key}\n#{auth_data}") == session_auth_token
+      end
+      def get_session_data
+        @store.get_session_data(session_id)
       end
       def authorization_data_present?
@@ -113,13 +131,9 @@ module Angus
       end
       def session_expired?
-        session_data = @store.get_session_data(session_id)
-        created_at = Time.iso8601(session_data['created_at'])
+        created_at = Time.iso8601(get_session_data['created_at'])
         (created_at + @session_ttl) < Time.now
-      rescue Exception
-        true
       end
       def auth_data

data/lib/angus/authentication/version.rb CHANGED

@@ -1,5 +1,5 @@
 module Angus
   module Authentication
-    VERSION = '0.0.4'
+    VERSION = '0.0.6'
   end
 end

metadata CHANGED

@@ -1,20 +1,18 @@
 --- !ruby/object:Gem::Specification
 name: angus-authentication
 version: !ruby/object:Gem::Version
-  version: 0.0.4
-  prerelease:
+  version: 0.0.6
 platform: ruby
 authors:
 - Adrian Gomez
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-11-28 00:00:00.000000000 Z
+date: 2014-04-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -22,7 +20,6 @@ dependencies:
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -30,23 +27,20 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: redis
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: bcrypt-ruby
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -54,7 +48,6 @@ dependencies:
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -62,7 +55,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: connection_pool
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -70,7 +62,6 @@ dependencies:
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -78,7 +69,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -86,7 +76,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -94,7 +83,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -102,7 +90,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -110,7 +97,6 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: rack-test
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -118,7 +104,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -126,39 +111,34 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: mock_redis
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: timecop
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -166,7 +146,6 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
@@ -174,49 +153,43 @@ dependencies:
 - !ruby/object:Gem::Dependency
   name: simplecov-rcov
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: simplecov-rcov-text
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: ci_reporter
   requirement: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
-    none: false
     requirements:
-    - - ! '>='
+    - - '>='
       - !ruby/object:Gem::Version
         version: '0'
 description:
@@ -226,36 +199,35 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- lib/angus-authentication.rb
 - lib/angus/authentication/default_authenticator.rb
-- lib/angus/authentication/version.rb
 - lib/angus/authentication/exceptions.rb
-- lib/angus/authentication/redis_store.rb
 - lib/angus/authentication/provider.rb
-- lib/angus-authentication.rb
+- lib/angus/authentication/redis_store.rb
+- lib/angus/authentication/version.rb
 - lib/rack/middleware/angus_authentication.rb
-homepage: http://mooveit.github.io/angus-authentication
+homepage: https://github.com/Moove-it/angus-authentication
 licenses:
 - MIT
+metadata: {}
 post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
   requirements:
-  - - ! '>='
+  - - '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 1.8.25
+rubygems_version: 2.2.1
 signing_key:
-specification_version: 3
+specification_version: 4
 summary: Offers authentication for rack applications.
 test_files: []