RubyGems - atomic_lti_1v1 - Versions diffs - 1.0.1 → 1.1.0 - Mend

atomic_lti_1v1 1.0.1 → 1.1.0

Files changed (7) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 176fa5e170efd585a02c5b801a1a5eb129c442901fb50afa06d53759d6af3d04
-  data.tar.gz: 3a5bda879132e3edc8a7610d26ad5ab0ef1501e5037aa8c88cc8d78e5a7611bf
+  metadata.gz: 047ac4efd469c0eba37952597927eed31aa9945eabc4f28cbced8b007722abcc
+  data.tar.gz: 5a55084206a8eb496f7856ab877b88687ebd63f2394dc1bfea40922e83dc1e8c
 SHA512:
-  metadata.gz: 4288e2af09e0f2340604844a8327f1db353b1a19d9cc1262b0801367d5c357eb3152b58467b7467f0ed0c04aaa1b6d3fd94eef71e9e1fd6f4bb6b968e204b21c
-  data.tar.gz: be0b0f824080ed8c5658dfa8ff9d0ed1226385a8727cf3c8060d1d8765b331257e622bf77eae667fda24a2c2b880f04cf7dc78bfe931778f43b34fa388e1f847
+  metadata.gz: b3c8f4e05cd0ae77a356c9c51fce51b2c863d0583b852f3e21d7be854341a250918a3a81cd63a8cc7fec594c4b82fb397d49685e93641bfbb5fe0b5a351c82c6
+  data.tar.gz: fc09b37d88910afbd8e6941fed3e31997c9330731a5829de1c4054d493035dc525eb16482a43451bc9c7546042e41890fe0ecc7834688af703a4e9e28da4d25c

data/README.md CHANGED Viewed

@@ -42,6 +42,8 @@ Provide `secret_provider`
     # If using most Atomic Jolt Apps, probably something like this
     ApplicationInstance.find_by(lti_key: oauth_consumer_key)&.lti_secret
   end
+  # List of path prefixes to handle. Default is the following:
+  AtomicLti1v1.path_prefixes = ["/lti_launches"]
   ```
 ## License

data/lib/atomic_lti_1v1/lti_1v1.rb CHANGED Viewed

@@ -1,7 +1,9 @@
 module AtomicLti1v1
   class Lti1v1
     def self.is_lti_1v1?(request)
-      request.params['oauth_consumer_key'].present?
+      request.params['oauth_consumer_key'].present? &&
+        request.params['oauth_signature'].present? &&
+        request.params['lti_version'] == 'LTI-1p0'
     end
     def self.valid_timestamp?(request)

data/lib/atomic_lti_1v1/lti_1v1_middleware.rb CHANGED Viewed

@@ -5,9 +5,15 @@ module AtomicLti1v1
       @app = app
     end
+    def matches_path_prefixes?(request)
+      AtomicLti1v1.path_prefixes.any? do |prefix|
+        request.path.starts_with? prefix
+      end
+    end
     def call(env)
       request = Rack::Request.new(env)
-      if AtomicLti1v1::Lti1v1.is_lti_1v1?(request)
+      if matches_path_prefixes?(request) && AtomicLti1v1::Lti1v1.is_lti_1v1?(request)
         oauth_consumer_key = request.params['oauth_consumer_key']
         lti_secret = nil

data/lib/atomic_lti_1v1/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module AtomicLti1v1
-  VERSION = '1.0.1'
+  VERSION = '1.1.0'
 end

data/lib/atomic_lti_1v1.rb CHANGED Viewed

@@ -4,6 +4,7 @@ require 'atomic_lti_1v1/lti_1v1_middleware'
 module AtomicLti1v1
   mattr_accessor :secret_provider
+  mattr_accessor :path_prefixes, default: ['/lti_launches']
   class LtiValidationFailed < StandardError; end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: atomic_lti_1v1
 version: !ruby/object:Gem::Version
-  version: 1.0.1
+  version: 1.1.0
 platform: ruby
 authors:
 - Nick Benoit
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-06-02 00:00:00.000000000 Z
+date: 2023-08-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rspec
@@ -91,7 +91,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
+rubygems_version: 3.4.15
 signing_key:
 specification_version: 4
 summary: Rack middleware to handle validating Lti 1.1 requests