app_rail-airtable 0.2.7 → 0.2.11

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 59112ddcce193bb297ccdb3cebd972445183c4a9e755a1ccb7c91c695f600bb9
-  data.tar.gz: ee3d1ff83a53b53f367aa7c84781113457a037abf4257a9d7ccf2589a167e456
+  metadata.gz: 4042e0d7f3f72204f26f22d018c4e6fff171a76379e6961ac93511930566e43d
+  data.tar.gz: 95e44a95a516a1ef1afdaf14f47ff145deae55021c4b939e874033567515f234
 SHA512:
-  metadata.gz: 5099f41bc41cc4a744e49586c2f727cca97cb1054131144094f1c3bbe3cbaac8acb020909acae4903d92920348a738f70ebac45f18a9150a1b3c6246b8e17807
-  data.tar.gz: 4afb93f8f41cd9a306b1a5262fafcc30127f7c0df95c51e82b76fabf0a04b8e8e114381a432d44fb382e835021edbc5dcdc2727bee2bda12c6b23fdc5aad1b6e
+  metadata.gz: 71120e0e952456e41fb9f950d45b763306a038571694f37976c72e23824b4501bc8f87e141b765878e76dca4e438f6a12440da4112ba9803957902706865964d
+  data.tar.gz: 1da004d48fb6e02c0871a941423d191efcccf0b6a56d2c34123bf556e6b12756c589fab1ebca055ce6f5cd7eb0003cff19e815743bb2b7afc130bc0868674f13

data/Gemfile.lock

@@ -1,9 +1,10 @@
 PATH
   remote: .
   specs:
-    app_rail-airtable (0.2.7)
+    app_rail-airtable (0.2.11)
       activesupport
       airrecord
+      bcrypt
       sinatra
       thor
 
@@ -19,6 +20,7 @@ GEM
     airrecord (1.0.7)
       faraday (>= 0.10, < 2.0)
       net-http-persistent
+    bcrypt (3.1.16)
     byebug (11.1.3)
     concurrent-ruby (1.1.9)
     connection_pool (2.2.5)

data/README.md

@@ -31,7 +31,9 @@ You should create a model class for each table you want to use in your App. Mode
 To provide support for routes, models can implement
 * ar_list_item (index)
 * ar_stack (show)
-* self.create_from_params (create) 
+* self.create_as_json (create)
+
+In order to support authentication you should create a class (normally `User`) and inherit from `AppRail::Airtable::AuthenticationRecord`. Your table needs `Email`, `Password Hash` and `Access Token` columns.
     
 ### Servers
 You should create a single server which extends `AppRail::Airtable::Sinatra`, then add routes with the `resources` macro to add `index`, `show` and `create` routes. You can also provide your own routes.

data/app_rail-airtable.gemspec

@@ -24,6 +24,7 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'sinatra'
   spec.add_dependency 'airrecord'
   spec.add_dependency 'thor'
+  spec.add_dependency 'bcrypt'
   
   spec.add_development_dependency 'rspec'
   spec.add_development_dependency 'rack-test'

data/lib/app_rail/airtable/application_record.rb

@@ -43,7 +43,7 @@ module AppRail
       # Customisable behaviour
       
       # Override to provide custom sorting or filtering for index
-      def self.index(current_user)
+      def self.index(user:)
         all
       end
       

data/lib/app_rail/airtable/authenticatable.rb

@@ -0,0 +1,56 @@
+require 'bcrypt'
+require 'securerandom'
+
+module AppRail
+  module Airtable
+    module Authenticatable
+      include BCrypt
+  
+      def self.included(klass)
+        klass.extend(ClassMethods)
+      end
+      
+      module ClassMethods
+        def create(email:, password:)
+          user = User.new("Email" => email, "Password Hash" => password_hash(password), "Access Token" => access_token)
+          user.create
+          user
+        end
+        
+        def create_session_as_json(email:, password:)
+          user = find_by_email_and_password(email, password)
+          user&.oauth_session
+        end
+  
+        def find_by_email_and_password(email, password)
+          user = all(filter: "AND({Email} = \"#{email}\"").first
+          user.valid_password? ? user : nil
+        end
+
+        def find_by_access_token(access_token)
+          all(filter: "{Access Token} = \"#{access_token}\"").first 
+        end
+        
+        def password_hash(password)
+          BCrypt::Password.create(password)
+        end   
+        
+        def access_token
+          SecureRandom.hex
+        end    
+      end
+      
+      def valid_password?(password)
+        BCrypt::Password.new(password_hash) == password
+      end
+      
+      def password_hash
+        self["Password Hash"]
+      end
+    
+      def oauth_session
+        { access_token: self["Access Token"], scope: :user, refresh_token: "", token_type: :bearer, expires_in: 60000 }
+      end
+    end
+  end
+end

data/lib/app_rail/airtable/authentication_helpers.rb

@@ -0,0 +1,27 @@
+module AppRail
+  module Airtable
+    module AuthenticationHelpers
+      def current_user
+        @current_user ||= find_current_user
+      end
+  
+      def find_current_user
+        authorization_header && bearer_token ? User.find_by_access_token(bearer_token) : nil
+      end
+  
+      def bearer_token
+        authorization_values = authorization_header.split(" ")
+        return nil unless authorization_values.count > 1
+        authorization_values[1]
+      end
+  
+      def authorization_header
+        request.env["HTTP_AUTHORIZATION"]
+      end
+  
+      def authenticate!
+        halt 401 unless current_user
+      end
+    end
+  end
+end

data/lib/app_rail/airtable/sinatra.rb

@@ -31,7 +31,7 @@ module AppRail
           JSON.parse(request.body.read)
         end
         
-        def params_and_json_body
+        def params_and_body_as_json
           request_body_as_json.merge(params)
         end
       end
@@ -47,7 +47,7 @@ module AppRail
       def self.index_route(name, authenticated)
         get "/#{name.to_s}" do
           authenticate! if authenticated
-          name.classify_constantize.index(authenticated ? current_user : nil).map(&:ar_list_item_as_json).to_json
+          name.classify_constantize.index(user: authenticated ? current_user : nil).map(&:ar_list_item_as_json).to_json
         end
       end
       
@@ -61,7 +61,7 @@ module AppRail
       def self.create_route(name, authenticated)
         post "/#{name.to_s}" do
           authenticate! if authenticated
-          as_json = name.classify_constantize.create_with_params_as_json(params_and_json_body)
+          as_json = name.classify_constantize.create_as_json(current_user: authenticated ? current_user : nil, params: params_and_body_as_json)
           [201, as_json.to_json] 
         end
       end

data/lib/app_rail/airtable/version.rb

@@ -1,5 +1,5 @@
 module AppRail
   module Airtable
-    VERSION = "0.2.7"
+    VERSION = "0.2.11"
   end
 end

data/lib/app_rail/airtable.rb

@@ -1,8 +1,10 @@
 require "app_rail/airtable/version"
+require "app_rail/airtable/string_ext"
 require "app_rail/airtable/application_record"
+require "app_rail/airtable/authenticatable"
+require "app_rail/airtable/authentication_helpers"
 require "app_rail/airtable/sinatra"
 require "app_rail/airtable/generator"
-require "app_rail/airtable/string_ext"
 
 module AppRail
   module Airtable

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: app_rail-airtable
 version: !ruby/object:Gem::Version
-  version: 0.2.7
+  version: 0.2.11
 platform: ruby
 authors:
 - Matt Brooke-Smith
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-10-04 00:00:00.000000000 Z
+date: 2021-10-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -66,6 +66,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: bcrypt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -116,6 +130,8 @@ files:
 - bin/setup
 - lib/app_rail/airtable.rb
 - lib/app_rail/airtable/application_record.rb
+- lib/app_rail/airtable/authenticatable.rb
+- lib/app_rail/airtable/authentication_helpers.rb
 - lib/app_rail/airtable/generator.rb
 - lib/app_rail/airtable/sinatra.rb
 - lib/app_rail/airtable/string_ext.rb