auth0_current_user 0.1.0.4 → 0.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c68f7321c197398a01de6ed4cccf77c26e7947efdd808863c33a6c76456e2abb
-  data.tar.gz: 31de0e2c0e4a7324876035305b53f80107b53206b08c335049bc2b3f7978912a
+  metadata.gz: e328e498710b8747cd3b3e6fa46321c0421023a601b67baa4f73b5a6661a4547
+  data.tar.gz: 5a7d9ac31f4a0f1497f3cc03a9bf32d14fa055f8ed1db7789d6894c08db0250e
 SHA512:
-  metadata.gz: 7ba0f3aac70d35ffbe2f45f58fe893ace7ea1e242669d6e5be1b1279c4484154b89c780b068d0fcf50c5ba079f1bc6d81cedfb7f6dc962528057ff86df5543bf
-  data.tar.gz: d77ddc5649d3e17ea9d8afa9061a35294e23da56cdb873e7de89194a6980e96249fba4bee2b34ee5be01218fce6707835aa67123ed9b3fea3550cd47b9529a22
+  metadata.gz: 15852264e476b984ebf02119c91728cefff2e6c0e67c8c13b774acb70910a65a0875986fd6a54795434c695c56c62320d1b603a466fe0e25aab376836a5c78e2
+  data.tar.gz: 81dd34df56d368bdf5ff99fdaefe0d95594d63d623932c887314e50174451e1aa628ecc0bb3caaab160f4088222f80373222733327767a6b9d2f2cffa7bd9066

data/.gitignore

@@ -6,3 +6,4 @@
 /pkg/
 /spec/reports/
 /tmp/
+.idea

data/Gemfile.lock

@@ -5,7 +5,6 @@ PATH
       activesupport
       jwt
       request_store
-      uri
 
 GEM
   remote: https://rubygems.org/
@@ -28,7 +27,6 @@ GEM
     thread_safe (0.3.6)
     tzinfo (1.2.7)
       thread_safe (~> 0.1)
-    uri (0.10.0)
     zeitwerk (2.4.0)
 
 PLATFORMS

data/README.md

@@ -1,8 +1,5 @@
 # Auth0CurrentUser
-
-Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/auth0_current_user`. To experiment with that code, run `bin/console` for an interactive prompt.
-
-TODO: Delete this and the text above, and describe your gem
+[![Gem Version](https://badge.fury.io/rb/auth0_current_user.svg)](https://badge.fury.io/rb/auth0_current_user)
 
 ## Installation
 
@@ -22,7 +19,26 @@ Or install it yourself as:
 
 ## Usage
 
-TODO: Write usage instructions here
+After including the gem in your Gemfile, run `rails g auth0_current_user:install` to install the initializer. This configuration of the gem is dependant on a couple of attributes:
+  * `auth0_domain`
+    * This is the domain from setting up your Auth0 application.
+  * `auth0_audience`
+    * This is the api identifier that you chose when creating your api(M2M) application
+  * `authenticated_klass`
+    * Defaults to `User`, but if you have a different model name for the class that will be logging in and being authenticate, be sure to change that in the initializeer.
+    * accepted values are symbols or strings
+      * :user, 'user', :User, 'User'
+      * :my_user, 'my_user', :MyUser, 'MyUser'
+
+To take advantage of the Auth0 authentication there are two flows you can use by simply including the relevant module in which ever controller you wish to lockdown.
+1. Web
+
+   a. `include Auth0CurrentUser::WebSecured` 
+3. Api
+
+   a. `include Auth0CurrentUser::ApiSecured` 
+  
+In either case, you will have access to the `current_user` method. The `WebSecured` will check for `current_user` or `session['userinfo']` and the `ApiSecured` will check against the JsonWebToken being passed in.
 
 ## Development
 

data/auth0_current_user.gemspec

@@ -28,6 +28,5 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'activesupport'
   spec.add_dependency 'jwt'
   spec.add_dependency 'request_store'
-  spec.add_dependency 'uri'
-  
+
 end

data/lib/auth0_current_user/api_secured.rb

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+
+require 'jwt'
+require 'request_store'
+require 'auth0_current_user/json_web_token'
+require 'auth0_current_user/configuration'
+
+module ApiSecured
+  extend ActiveSupport::Concern
+
+  included do
+    before_action :authenticate_request!
+  end
+
+  private
+
+  def authenticate_request!
+    token = auth_token
+    set_current_user(token)
+
+    token
+  rescue JWT::VerificationError, JWT::DecodeError
+    render json: { errors: ['Not Authenticated'] }, status: :unauthorized
+  end
+
+  def http_token
+    if request.headers['Authorization'].present?
+      request.headers['Authorization'].split(' ').last
+    end
+  end
+
+  def auth_token
+    ::JsonWebToken.verify(http_token)
+  end
+
+  def get_email(token)
+    ::JsonWebToken.get_claim(token, 'email')
+  end
+
+  def set_current_user(token)
+    email = get_email(token)
+    RequestStore.store[:current_user] ||= Kernel.const_get(authenticated_klass).find_by(email: email)
+  end
+
+  def current_user
+    @current_user ||= RequestStore.store[:current_user]
+  end
+
+  def authenticated_klass
+    unless configuration.authenticated_klass
+      raise NotImplementedError, 'You must define the #authenitcated_klass in config/initializers/auth0_current_user'
+      return
+    end
+
+    @authenticated_klass ||= configuration.authenticated_klass.to_s.classify
+  rescue StandardError => e
+    Rails.logger.error(e.message)
+  end
+
+  def configuration
+    @configuration ||= Auth0CurrentUser.configuration
+  end
+
+end
+

data/lib/auth0_current_user/configuration.rb

@@ -1,11 +1,12 @@
 module Auth0CurrentUser
   class Configuration
-    attr_accessor :auth0_domain, :auth0_audience, :authenticated_klass
+    attr_accessor :auth0_domain, :auth0_audience, :authenticated_klass, :client_id
 
     def initialize
       @auth0_domain = nil
       @auth0_audience = nil
       @authenticated_klass = :user
+      @client_id = nil
     end
     
   end

data/lib/auth0_current_user/json_web_token.rb

@@ -1,4 +1,5 @@
 # frozen_string_literal: true
+
 require 'net/http'
 require 'uri'
 require 'jwt'
@@ -13,8 +14,8 @@ class JsonWebToken
                verify_iss: true,
                aud: configuration.auth0_audience,
                verify_aud: true) do |header|
-      jwks_hash[header['kid']]
-    end
+                 jwks_hash[header['kid']]
+               end
   end
 
   def self.jwks_hash
@@ -22,7 +23,7 @@ class JsonWebToken
     jwks_keys = Array(JSON.parse(jwks_raw)['keys'])
     Hash[
       jwks_keys
-        .map do |k|
+      .map do |k|
         [
           k['kid'],
           OpenSSL::X509::Certificate.new(
@@ -41,3 +42,4 @@ class JsonWebToken
     @configuration ||= Auth0CurrentUser::Configuration.new
   end
 end
+

data/lib/auth0_current_user/version.rb

@@ -1,3 +1,3 @@
 module Auth0CurrentUser
-  VERSION = "0.1.0.4"
+  VERSION = "0.3"
 end

data/lib/auth0_current_user/web_secured.rb

@@ -0,0 +1,57 @@
+require 'auth0_current_user/configuration'
+
+module Auth0CurrentUser
+  module WebSecured
+    extend ActiveSupport::Concern
+
+    included do
+      before_action :logged_in_using_omniauth?
+      helper_method :current_user
+    end
+
+    def current_user
+      @_current_user ||= Kernel.const_get(authenticated_klass).find_by(email: email)
+    end
+
+    private
+
+    def authenticated_klass
+      unless configuration.authenticated_klass
+        raise NotImplementedError, 'You must define the #authenitcated_klass in config/initializers/auth0_current_user'
+        return
+      end
+
+      @_authenticated_klass ||= configuration.authenticated_klass.to_s.classify
+    rescue NameError => e
+      Rails.logger.error("You must create a #{authenticated_klass} model/migration")
+    rescue StandardError => e
+      Rails.logger.error(e.message)
+    end
+
+    def configuration
+      @_configuration ||= Configuration.new
+    end
+
+    def email
+      @_email ||= userinfo['email'] || userinfo['name']
+    end
+
+    def logged_in_using_omniauth?
+      redirect_to authorization_endpoint unless session[:userinfo].present? && Time.zone.now < Time.zone.at(userinfo['exp'])
+    end
+
+    def authorization_endpoint
+      @_authorization_endpoint ||= "https://#{configuration.auth0_domain}/authorize?response_type=code&client_id=#{configuration.client_id}"
+    end
+
+    def userinfo
+      session['userinfo'] || {}
+    end
+
+    def configuration
+      @configuration ||= Auth0CurrentUser.configuration
+    end
+
+  end
+end
+

data/lib/auth0_current_user.rb

@@ -1,6 +1,7 @@
 require 'auth0_current_user/version'
 require 'auth0_current_user/configuration'
-require 'auth0_current_user/secured'
+require 'auth0_current_user/api_secured'
+require 'auth0_current_user/web_secured'
 
 module Auth0CurrentUser
   class Error < StandardError; end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: auth0_current_user
 version: !ruby/object:Gem::Version
-  version: 0.1.0.4
+  version: '0.3'
 platform: ruby
 authors:
 - Mike Heft
-autorequire:
+autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-10-04 00:00:00.000000000 Z
+date: 2022-01-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -52,20 +52,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: uri
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: Implements Auth0's setup for authentication/authorization along with
   setting a current_user method.
 email:
@@ -75,12 +61,6 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".gitignore"
-- ".idea/.gitignore"
-- ".idea/.rakeTasks"
-- ".idea/auth0_current_user.iml"
-- ".idea/misc.xml"
-- ".idea/modules.xml"
-- ".idea/vcs.xml"
 - ".tool-versions"
 - CODE_OF_CONDUCT.md
 - Gemfile
@@ -92,10 +72,11 @@ files:
 - bin/console
 - bin/setup
 - lib/auth0_current_user.rb
+- lib/auth0_current_user/api_secured.rb
 - lib/auth0_current_user/configuration.rb
 - lib/auth0_current_user/json_web_token.rb
-- lib/auth0_current_user/secured.rb
 - lib/auth0_current_user/version.rb
+- lib/auth0_current_user/web_secured.rb
 - lib/generators/auth0_current_user/install_generator.rb
 - lib/generators/templates/auth0_current_user.rb
 homepage: https://github.com/mikeyduece/auth0_current_user
@@ -105,7 +86,7 @@ metadata:
   homepage_uri: https://github.com/mikeyduece/auth0_current_user
   source_code_uri: https://github.com/mikeyduece/auth0_current_user
   changelog_uri: https://github.com/mikeyduece/auth0_current_user
-post_install_message:
+post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
@@ -121,7 +102,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubygems_version: 3.1.2
-signing_key:
+signing_key: 
 specification_version: 4
 summary: Implements Auth0's setup for authentication/authorization along with setting
   a current_user method.

data/.idea/.gitignore

@@ -1,8 +0,0 @@
-# Default ignored files
-/shelf/
-/workspace.xml
-# Datasource local storage ignored files
-/dataSources/
-/dataSources.local.xml
-# Editor-based HTTP Client requests
-/httpRequests/

data/.idea/.rakeTasks

@@ -1,7 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<Settings><!--This file was automatically generated by Ruby plugin.
-You are allowed to: 
-1. Remove rake task
-2. Add existing rake tasks
-To add existing rake tasks automatically delete this file and reload the project.
---><RakeGroup description="" fullCmd="" taksId="rake"><RakeTask description="Build auth0_current_user-0.1.0.gem into the pkg directory" fullCmd="build" taksId="build" /><RakeTask description="Remove any temporary products" fullCmd="clean" taksId="clean" /><RakeTask description="Remove any generated files" fullCmd="clobber" taksId="clobber" /><RakeTask description="Build and install auth0_current_user-0.1.0.gem into system gems" fullCmd="install" taksId="install" /><RakeGroup description="" fullCmd="" taksId="install"><RakeTask description="Build and install auth0_current_user-0.1.0.gem into system gems without network access" fullCmd="install:local" taksId="local" /></RakeGroup><RakeTask description="Create tag v0.1.0 and build and push auth0_current_user-0.1.0.gem to 'http://rubygems.com'" fullCmd="release[remote]" taksId="release[remote]" /><RakeTask description="" fullCmd="default" taksId="default" /><RakeTask description="" fullCmd="release" taksId="release" /><RakeGroup description="" fullCmd="" taksId="release"><RakeTask description="" fullCmd="release:guard_clean" taksId="guard_clean" /><RakeTask description="" fullCmd="release:rubygem_push" taksId="rubygem_push" /><RakeTask description="" fullCmd="release:source_control_push" taksId="source_control_push" /></RakeGroup></RakeGroup></Settings>

data/.idea/auth0_current_user.iml

@@ -1,28 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<module type="RUBY_MODULE" version="4">
-  <component name="ModuleRunConfigurationManager">
-    <shared />
-  </component>
-  <component name="NewModuleRootManager">
-    <content url="file://$MODULE_DIR$">
-      <sourceFolder url="file://$MODULE_DIR$/features" isTestSource="true" />
-      <sourceFolder url="file://$MODULE_DIR$/spec" isTestSource="true" />
-      <sourceFolder url="file://$MODULE_DIR$/test" isTestSource="true" />
-    </content>
-    <orderEntry type="inheritedJdk" />
-    <orderEntry type="sourceFolder" forTests="false" />
-    <orderEntry type="library" scope="PROVIDED" name="activesupport (v6.0.3.3, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="bundler (v2.1.4, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="concurrent-ruby (v1.1.7, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="i18n (v1.8.5, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="jwt (v2.2.2, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="minitest (v5.14.2, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rack (v2.2.3, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="rake (v12.3.3, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="request_store (v1.5.0, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="thread_safe (v0.3.6, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="tzinfo (v1.2.7, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="uri (v0.10.0, asdf: 2.7.1) [gem]" level="application" />
-    <orderEntry type="library" scope="PROVIDED" name="zeitwerk (v2.4.0, asdf: 2.7.1) [gem]" level="application" />
-  </component>
-</module>

data/.idea/misc.xml

@@ -1,4 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="ProjectRootManager" version="2" project-jdk-name="asdf: 2.7.1" project-jdk-type="RUBY_SDK" />
-</project>

data/.idea/modules.xml

@@ -1,8 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="ProjectModuleManager">
-    <modules>
-      <module fileurl="file://$PROJECT_DIR$/.idea/auth0_current_user.iml" filepath="$PROJECT_DIR$/.idea/auth0_current_user.iml" />
-    </modules>
-  </component>
-</project>

data/.idea/vcs.xml

@@ -1,6 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="VcsDirectoryMappings">
-    <mapping directory="$PROJECT_DIR$" vcs="Git" />
-  </component>
-</project>

data/lib/auth0_current_user/secured.rb

@@ -1,66 +0,0 @@
-# frozen_string_literal: true
-
-require 'jwt'
-require 'request_store'
-require 'auth0_current_user/json_web_token'
-require 'auth0_current_user/configuration'
-
-module Auth0CurrentUser
-  module Secured
-    extend ActiveSupport::Concern
-
-    included do
-      before_action :authenticate_request!
-    end
-
-    private
-
-    def authenticate_request!
-      token = auth_token
-      set_current_user(token)
-
-      token
-    rescue JWT::VerificationError, JWT::DecodeError
-      render json: { errors: ['Not Authenticated'] }, status: :unauthorized
-    end
-
-    def http_token
-      if request.headers['Authorization'].present?
-        request.headers['Authorization'].split(' ').last
-      end
-    end
-
-    def auth_token
-      JsonWebToken.verify(http_token)
-    end
-
-    def get_email(token)
-      JsonWebToken.get_claim(token, 'email')
-    end
-
-    def set_current_user(token)
-      email = get_email(token)
-      RequestStore.store[:current_user] ||= Kernel.const_get(authenticated_klass).find_by(email: email)
-    end
-
-    def current_user
-      @current_user ||= RequestStore.store[:current_user]
-    end
-
-    def authenticated_klass
-      unless configuration.authenticated_klass
-        raise NotImplementedError, 'You must define the #authenitcated_klass in config/initializers/auth0_current_user'
-        return
-      end
-      
-      @authenticated_klass ||= configuration.authenticated_klass.to_s.classify
-    rescue StandardError => e
-      Rails.logger.error(e.message)
-    end
-
-    def configuration
-      @configuration ||= Configuration.new
-    end
-
-  end
-end