auther 3.0.0 → 3.1.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data.tar.gz.sig +0 -0
- data/README.md +33 -33
- data/lib/auther/version.rb +1 -1
- metadata +19 -5
- metadata.gz.sig +1 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 49f3b969cb32b73d6d667e6a0a39f349614fe032
|
4
|
+
data.tar.gz: 7f7265ad6452fe163e161e50f02078fe50e45d36
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 8788ca2d2d305dcef4526ea0ff391708f5cb54207d686cd7127ef237760e00f9b567217b1915fa87cabddba2ae04f67a602584ada3d4ac6d0d8e727cae76e490
|
7
|
+
data.tar.gz: 32fd3fda58b85720bf94857fae9c4645f1acbde0c8caf6a84a4591a9077d7a02fb8c4c90cd69873e974b32c5ea45abb243fd3535f72acadd0cedfb8eb80a789e
|
checksums.yaml.gz.sig
CHANGED
Binary file
|
data.tar.gz.sig
CHANGED
Binary file
|
data/README.md
CHANGED
@@ -14,25 +14,25 @@ making for a pleasent user experience.
|
|
14
14
|
|
15
15
|
# Features
|
16
16
|
|
17
|
-
|
17
|
+
- Form-based authentication compatible with password managers like [1Password](https://agilebits.com/onepassword).
|
18
18
|
|
19
19
|
[![Screenshot - Clean](https://github.com/bkuhlmann/auther/raw/master/screenshot-clean.png)](https://github.com/bkuhlmann/auther)
|
20
20
|
[![Screenshot - Error](https://github.com/bkuhlmann/auther/raw/master/screenshot-error.png)](https://github.com/bkuhlmann/auther)
|
21
21
|
|
22
|
-
|
23
|
-
|
24
|
-
|
25
|
-
|
26
|
-
|
27
|
-
|
28
|
-
|
22
|
+
- Encrypted account credentials.
|
23
|
+
- Multiple account support with account specific blacklisted paths.
|
24
|
+
- Auto-redirection to requested path (once credentials have been verified).
|
25
|
+
- Log filtering for account credentials (login and password).
|
26
|
+
- Customizable view support.
|
27
|
+
- Customizable controller support.
|
28
|
+
- Customizable logger support.
|
29
29
|
|
30
30
|
# Requirements
|
31
31
|
|
32
32
|
0. Any of the following Ruby VMs:
|
33
|
-
|
34
|
-
|
35
|
-
|
33
|
+
- [MRI 2.x.x](http://www.ruby-lang.org)
|
34
|
+
- [JRuby 1.x.x](http://jruby.org)
|
35
|
+
- [Rubinius 2.x.x](http://rubini.us)
|
36
36
|
0. [Ruby on Rails 4.x.x](http://rubyonrails.org).
|
37
37
|
|
38
38
|
# Setup
|
@@ -72,8 +72,8 @@ Launch your Rails application and visit the following:
|
|
72
72
|
|
73
73
|
Use these credentials to login:
|
74
74
|
|
75
|
-
|
76
|
-
|
75
|
+
- Login: test@test.com
|
76
|
+
- Password: password
|
77
77
|
|
78
78
|
# Customization
|
79
79
|
|
@@ -109,25 +109,25 @@ before deploying to production! To encrypt/decrypt account credentials, launch a
|
|
109
109
|
|
110
110
|
The initializer can be customized as follows:
|
111
111
|
|
112
|
-
|
113
|
-
|
114
|
-
|
115
|
-
|
116
|
-
|
117
|
-
|
118
|
-
|
119
|
-
|
120
|
-
|
112
|
+
- *title- - Optional. The HTML page title (as rendered within a browser tab). Default: "Authorization".
|
113
|
+
- *label- - Optional. The page label (what would appear above the form). Default: "Authorization".
|
114
|
+
- *secret- - Required. The secret passphrase used to encrypt/decrypt account credentials.
|
115
|
+
- *accounts- - Required. The array of accounts with different or similar access to the application.
|
116
|
+
- *name- - Required. The account name. The name that uniquely identifies each account.
|
117
|
+
- *encrypted_login- - Required. The encrypted account login.
|
118
|
+
- *encrypted_password- - Required. The encrypted account password.
|
119
|
+
- *paths- - Required. The array of blacklisted paths for which only this account has access to.
|
120
|
+
- *authorized_url- - Optional. The URL to redirect to upon successful authorization. Authorized redirection works
|
121
121
|
as follows (in the order defined):
|
122
122
|
0. The blacklisted path (if requested prior to authorization but now authorized).
|
123
123
|
0. The authorized URL (if defined and the blacklisted path wasn't requested).
|
124
124
|
0. The root path (if none of the above).
|
125
|
-
|
125
|
+
- *deauthorized_url- - Optional. The URL to redirect to upon successful deauthorization (i.e. logout). Deauthorized
|
126
126
|
redirections works as follows (in the order defined):
|
127
127
|
0. The deauthorized URL (if defined).
|
128
128
|
0. The auth URL.
|
129
|
-
|
130
|
-
|
129
|
+
- *auth_url- - Optional. The URL to redirect to when enforcing authentication. Default: “/login”.
|
130
|
+
- *logger- - Optional. The logger used to log path/account authorization messages. Default: Auther::NullLogger.
|
131
131
|
|
132
132
|
## Routes
|
133
133
|
|
@@ -187,10 +187,10 @@ As mentioned in the setup above, the logger can be customized as follows:
|
|
187
187
|
When logging is enabled, you'll be able to see the following information in the server logs to help debug custom
|
188
188
|
Auther settings:
|
189
189
|
|
190
|
-
|
191
|
-
|
192
|
-
|
193
|
-
|
190
|
+
- Requested path and blacklist path detection.
|
191
|
+
- Finding (or not finding) of account.
|
192
|
+
- Account authentication pass/fail.
|
193
|
+
- Account and path authorization pass/fail.
|
194
194
|
|
195
195
|
# Tests
|
196
196
|
|
@@ -203,21 +203,21 @@ To test, run:
|
|
203
203
|
For those using Auther 1.x.x, there are a few minor changes to be applied in order to upgrade to 2.x.x:
|
204
204
|
|
205
205
|
0. Move the old Auther settings (i.e. `config/application.rb`) into an Auther initilizer (i.e.
|
206
|
-
`config/initializers/auther.rb`). Read the *Customization
|
206
|
+
`config/initializers/auther.rb`). Read the *Customization- section above for additional instruction.
|
207
207
|
0. All account settings have changed from `login` and `password` to `encrypted_login` and `encrypted_password` keys.
|
208
208
|
0. The `success_url` account settings have been renamed to `authorized_url`.
|
209
209
|
|
210
210
|
# Troubleshooting
|
211
211
|
|
212
|
-
|
212
|
+
- If upgrading Rails, changing the cookie/session settings, generating a new secret base key, etc. this might
|
213
213
|
cause Auther authentication to fail. Make sure to clear your browser cookies in this situation or use Google
|
214
214
|
Chrome (incognito mode) to verify.
|
215
215
|
|
216
216
|
# Resources
|
217
217
|
|
218
|
-
|
218
|
+
- [Simplest Auth](https://github.com/vigetlabs/simplest_auth) - For situations where you need user and email reset
|
219
219
|
support beyond what this engine can provide.
|
220
|
-
|
220
|
+
- [Devise](https://github.com/plataformatec/devise) - For complex situations where you need persisted user objects,
|
221
221
|
email support, social media support, and much more.
|
222
222
|
|
223
223
|
# Contributions
|
data/lib/auther/version.rb
CHANGED
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: auther
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.
|
4
|
+
version: 3.1.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Brooke Kuhlmann
|
@@ -30,7 +30,7 @@ cert_chain:
|
|
30
30
|
fMlZDUGx3lQarp/vPjK+6XH7DLXjBEKqeIGBIpLthYUvDxJRp23C+T3liGSL32vg
|
31
31
|
mSpxxwmK95GDFuEy2mNPaxnazdkw8c+7DbrSpzd/CnNZkRgitxOavs8=
|
32
32
|
-----END CERTIFICATE-----
|
33
|
-
date: 2014-
|
33
|
+
date: 2014-09-20 00:00:00.000000000 Z
|
34
34
|
dependencies:
|
35
35
|
- !ruby/object:Gem::Dependency
|
36
36
|
name: pry-byebug
|
@@ -136,14 +136,14 @@ dependencies:
|
|
136
136
|
requirements:
|
137
137
|
- - "~>"
|
138
138
|
- !ruby/object:Gem::Version
|
139
|
-
version:
|
139
|
+
version: 5.3.3
|
140
140
|
type: :runtime
|
141
141
|
prerelease: false
|
142
142
|
version_requirements: !ruby/object:Gem::Requirement
|
143
143
|
requirements:
|
144
144
|
- - "~>"
|
145
145
|
- !ruby/object:Gem::Version
|
146
|
-
version:
|
146
|
+
version: 5.3.3
|
147
147
|
- !ruby/object:Gem::Dependency
|
148
148
|
name: rake
|
149
149
|
requirement: !ruby/object:Gem::Requirement
|
@@ -256,6 +256,20 @@ dependencies:
|
|
256
256
|
- - ">="
|
257
257
|
- !ruby/object:Gem::Version
|
258
258
|
version: '0'
|
259
|
+
- !ruby/object:Gem::Dependency
|
260
|
+
name: terminal-notifier-guard
|
261
|
+
requirement: !ruby/object:Gem::Requirement
|
262
|
+
requirements:
|
263
|
+
- - ">="
|
264
|
+
- !ruby/object:Gem::Version
|
265
|
+
version: '0'
|
266
|
+
type: :development
|
267
|
+
prerelease: false
|
268
|
+
version_requirements: !ruby/object:Gem::Requirement
|
269
|
+
requirements:
|
270
|
+
- - ">="
|
271
|
+
- !ruby/object:Gem::Version
|
272
|
+
version: '0'
|
259
273
|
- !ruby/object:Gem::Dependency
|
260
274
|
name: codeclimate-test-reporter
|
261
275
|
requirement: !ruby/object:Gem::Requirement
|
@@ -326,7 +340,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
326
340
|
version: '0'
|
327
341
|
requirements: []
|
328
342
|
rubyforge_project:
|
329
|
-
rubygems_version: 2.
|
343
|
+
rubygems_version: 2.4.1
|
330
344
|
signing_key:
|
331
345
|
specification_version: 4
|
332
346
|
summary: Enhances Rails with multi-account, form-based, database-less, application-wide
|
metadata.gz.sig
CHANGED
@@ -1,2 +1 @@
|
|
1
|
-
|
2
|
-
2�>�K�o��V��) �:<�W����Nw��-H��H+�i�Ζ�32�xjo���v3�l�*A��)�?<Pi^!�tar��9x-�����=�?����si��6�t�nl��w�&�,�i�oDr�)�O%֓��nd�XG���>!��`���o
|
1
|
+
(�K{U���k�V�÷�WNp_-*H��K��N-�P�E�)�>�έE��PJ�z_�(CjI��&Z)�ݭ��fn�ޡYK+��\iB��D�pX3��I��Z�ɺ�3>�����0C���'9rl�{��M�(\AlO_Jl�sd���[��j�������͋�+6�����sz�=����t��������d�wK�j����"��m.0ѹ|�<�irF.k]����G��i�+�qˊ��;�i�8��r
|