RubyGems - aserto-rails - Versions diffs - 0.0.1 → 0.20.1 - Mend

aserto-rails 0.0.1 → 0.20.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/README.md +23 -14
data/VERSION +1 -1
data/lib/aserto/rails/controller_additions.rb +1 -1
metadata +5 -5

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2c80c8f7b8f213573d3e79b76e70e98747046dd617a7a5ccb53def1da90119be
-  data.tar.gz: 18446a39215b54a1d401ebda2e7603d82934c3e7dcc4825d6af7a966f006bbbc
+  metadata.gz: dbb7151353f86f941690b382de5e1d5f81076db081262abeb7dbc55c45745c66
+  data.tar.gz: a7aa53b6275c4613aa367b77c568c8641d9e55b5c1a5c0a2205a91eb72e29f71
 SHA512:
-  metadata.gz: 2c7436cec3d05adc828ce7a4a420c0e597e0eef4cd4f3a4848ea8c6cc229da3eb26f1c6db08d6993202bd12898331b1d1a084f5fcf196ce1df70849f7505dfdc
-  data.tar.gz: e2e539042d697de666858e9df0ed0d651d9cf248e750088f9fa2a3e595cd8e9d48e1e5879f2ee2640ab1c96bf1201c70bb09a9265d89f750ba1fcb1459064d33
+  metadata.gz: 853876ec44491170671af35673e1b32b26f02c79ca6d8dfdc9c5ec4eac0074d7c7d62cfb99193583f5ca96790d1805fbe2a5e2873d043d571f8490a0117c7055
+  data.tar.gz: fd7ca8c2b5250bddcc7314da3b114c35cb13166af2b73899c81174a748b1dad6c416a158f6ece38268ca7610702450a700c9e7dba1d170db80842e62c190e251

data/README.md CHANGED Viewed

@@ -1,5 +1,10 @@
 # Aserto Rails
+[![Gem Version](https://badge.fury.io/rb/aserto-rails.svg)](https://badge.fury.io/rb/aserto-rails)
+[![ci](https://github.com/aserto-dev/aserto-rails/actions/workflows/ci.yaml/badge.svg)](https://github.com/aserto-dev/aserto-rails/actions/workflows/ci.yaml)
+[![slack](https://img.shields.io/badge/slack-Aserto%20Community-brightgreen)](https://asertocommunity.slack.com
+)
 Aserto authorization library for Ruby and Ruby on Rails.
 Built on top of [aserto](https://github.com/aserto-dev/aserto-ruby) and [aserto-grpc-authz](https://github.com/aserto-dev/ruby-grpc-authz).
@@ -26,7 +31,7 @@ gem install aserto-rails
 ```
 ## Configuration
-The following configuration settings are required for the authorization middleware:
+The following configuration settings are required for authorization:
  - policy_id
  - tenant_id
  - authorizer_api_key
@@ -34,26 +39,26 @@ The following configuration settings are required for the authorization middlewa
 These settings can be retrieved from the [Policy Settings](https://console.aserto.com/ui/policies) page of your Aserto account.
-The middleware accepts the following optional parameters:
+Optional parameters:
 | Parameter name | Default value | Description |
 | -------------- | ------------- | ----------- |
 | service_url | `"authorizer.prod.aserto.com:8443"` | Sets the URL for the authorizer endpoint. |
-| decision | `"allowed"` | The decision that will be used by the middleware when creating an authorizer request. |
-| logger | `STDOUT` | The logger to be used by the middleware. |
+| decision | `"allowed"` | The decision that will be used when executing an authorizer request. |
+| logger | `STDOUT` | The logger to be used. |
 | identity_mapping | `{ type: :none }` | The strategy for retrieveing the identity, possible values: `:jwt, :sub, :none` |
 ## Identity
-To determine the identity of the user, the middleware can be configured to use a JWT token or a claim using the `identity_mapping` config.
+To determine the identity of the user, the gem can be configured to use a JWT token or a claim using the `identity_mapping` config.
 ```ruby
-# configure the middleware to use a JWT token form the `my-auth-header` header.
+# configure the gem to use a JWT token form the `my-auth-header` header.
 config.identity_mapping = {
   type: :jwt,
   from: "my-auth-header",
 }
 ```
 ```ruby
-# configure the middleware to use a claim from the JWT token.
+# configure the gem to use a claim from the JWT token.
 # This will decode the JWT token and extract the `sub` field from payload.
 config.identity_mapping = {
   type: :sub,
@@ -76,7 +81,7 @@ end
 ```
 ## URL path to policy mapping
-By default, when computing the policy path, the middleware:
+By default, when computing the policy path:
 * converts all slashes to dots
 * converts any character that is not alpha, digit, dot or underscore to underscore
 * converts uppercase characters in the URL path to lowercases
@@ -96,7 +101,7 @@ end
 ```
 ## Resource
-A resource can be any structured data that the authorization policy uses to evaluate decisions. By default, middleware do not include a resource in authorization calls.
+A resource can be any structured data that the authorization policy uses to evaluate decisions. By default, gem do not include a resource in authorization calls.
 This behavior can be overwritten by providing a custom function:
@@ -114,13 +119,14 @@ end
 # config/initializers/aserto.rb
 require "aserto/rails"
-Rails.application.config.middleware.use Aserto::Authorization do |config|
+Aserto.configure do |config|
   config.enabled = true
-  config.policy_id = "my-policy-id"
-  config.tenant_id = "my-tenant-id"
+  config.policy_name = "my-policy-name"
+  config.instance_label = "my-instance"
   config.authorizer_api_key = Rails.application.credentials.aserto[:authorizer_api_key]
   config.policy_root = "peoplefinder"
-  config.service_url = "authorizer.eng.aserto.com:8443"
+  config.service_url = "localhost:8282"
+  config.cert_path = "/path/to/topaz/cert.crt"
   config.decision = "allowed"
   config.logger = Rails.logger
   config.identity_mapping = {
@@ -141,12 +147,15 @@ def show
 end
 ```
-Setting this for every action can be tedious, therefore the `aserto_authorize_resource` method is provided to automatically authorize all actions in a RESTful style resource controller.
+Setting this for every action can be tedious, therefore the `aserto_authorize_resource` method is provided to
+automatically authorize all actions in a RESTful style resource controller.
 It will use a before action to load the resource into an instance variable and authorize it for every action.
 ```ruby
 class PostsController < ApplicationController
   aserto_authorize_resource
+  # aserto_authorize_resource only: %i[show]
+  # aserto_authorize_resource except: %i[index]
   def show
     # getting a single post authorized

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 0.0.1
1	+ 0.20.1

data/lib/aserto/rails/controller_additions.rb CHANGED Viewed

@@ -44,7 +44,7 @@ module Aserto
         if resource
           Aserto.with_resource_mapper do
             {
-              resource: resource.as_json
+              resource: resource.as_json.transform_keys(&:to_s)
             }
           end
         end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aserto-rails
 version: !ruby/object:Gem::Version
-  version: 0.0.1
+  version: 0.20.1
 platform: ruby
 authors:
 - Aserto
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-07-27 00:00:00.000000000 Z
+date: 2022-11-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aserto
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.4
+        version: 0.20.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.4
+        version: 0.20.2
 - !ruby/object:Gem::Dependency
   name: appraisal
   requirement: !ruby/object:Gem::Requirement
@@ -173,7 +173,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.3.26
 signing_key:
 specification_version: 4
 summary: Aserto authorization library for Ruby and Ruby on Rails