auther 8.1.1 → 9.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2d28e7eb9c4cc447ddc6a22ba26facbe31c366c59af9d10497a1dd69fe0e7d55
-  data.tar.gz: ab32e59141f9f35f7476cad12ec5cd86a573956efe37a8435aeda8287d0091e1
+  metadata.gz: 14e8ae7299b00dabe60f19df5a340d05213b0ab1846ed7e3128609509730de00
+  data.tar.gz: 5536af213a4974c84cb701c0d79fb9944247716ac48ce015d8b4ca6bca5eade8
 SHA512:
-  metadata.gz: 410324c4c59a3eaea2f977f6c089ec9f68bdc9b28985d622e9f90d2231da3b3335ed6de892b3c5dad55e882c69f56496539ec63e56a21a1eb3ce64b863648d25
-  data.tar.gz: 0f4333de3b53b70916f820b40afa9d0516a28d798051dc09a22286214ac755880e41bd7c19f01e8ab78ef74d8a738ee639603d3b0657a88792ca018389be3ea6
+  metadata.gz: 23b064f2e6be5fa0cab05f9a9cc55efca379ee81d0eae9222b97d1092016a107f4d2265ffef783103cd91837906cfe84cfe0cc1ee2ceff0f7090e4bb4ea53e43
+  data.tar.gz: 3eb317e1a599a1e5cf0dd073ba53284fd0f3a726479900b75b24c8d69bfc1aad3595cc038c7adc1b732f9ba83cc52535fd1ee34d43427c74d8ec2c57f10e3137

data/LICENSE.md

@@ -1,20 +1,163 @@
-Copyright (c) 2014 [Alchemists](https://www.alchemists.io).
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+# Apache License
+
+Version 2.0, January 2004
+
+http://www.apache.org/licenses
+
+TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+## 1. Definitions
+
+"License" shall mean the terms and conditions for use, reproduction, and distribution as defined by
+Sections 1 through 9 of this document.
+
+"Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is
+granting the License.
+
+"Legal Entity" shall mean the union of the acting entity and all other entities that control, are
+controlled by, or are under common control with that entity. For the purposes of this definition,
+"control" means (i) the power, direct or indirect, to cause the direction or management of such
+entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the
+outstanding shares, or (iii) beneficial ownership of such entity.
+
+"You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this
+License.
+
+"Source" form shall mean the preferred form for making modifications, including but not limited to
+software source code, documentation source, and configuration files.
+
+"Object" form shall mean any form resulting from mechanical transformation or translation of a
+Source form, including but not limited to compiled object code, generated documentation, and
+conversions to other media types.
+
+"Work" shall mean the work of authorship, whether in Source or Object form, made available under the
+License, as indicated by a copyright notice that is included in or attached to the work (an example
+is provided in the Appendix below).
+
+"Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or
+derived from) the Work and for which the editorial revisions, annotations, elaborations, or other
+modifications represent, as a whole, an original work of authorship. For the purposes of this
+License, Derivative Works shall not include works that remain separable from, or merely link (or
+bind by name) to the interfaces of, the Work and Derivative Works thereof.
+
+"Contribution" shall mean any work of authorship, including the original version of the Work and any
+modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted
+to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity
+authorized to submit on behalf of the copyright owner. For the purposes of this definition,
+"submitted" means any form of electronic, verbal, or written communication sent to the Licensor or
+its representatives, including but not limited to communication on electronic mailing lists, source
+code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor
+for the purpose of discussing and improving the Work, but excluding communication that is
+conspicuously marked or otherwise designated in writing by the copyright owner as "Not a
+Contribution."
+
+"Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a
+Contribution has been received by Licensor and subsequently incorporated within the Work.
+
+## 2. Grant of Copyright License
+
+Subject to the terms and conditions of this License, each Contributor hereby grants to You a
+perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to
+reproduce, prepare Derivative Works of, publicly display, publicly perform, sublicense, and
+distribute the Work and such Derivative Works in Source or Object form.
+
+## 3. Grant of Patent License
+
+Subject to the terms and conditions of this License, each Contributor hereby grants to You a
+perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable (except as stated in this
+section) patent license to make, have made, use, offer to sell, sell, import, and otherwise transfer
+the Work, where such license applies only to those patent claims licensable by such Contributor that
+are necessarily infringed by their Contribution(s) alone or by combination of their Contribution(s)
+with the Work to which such Contribution(s) was submitted. If You institute patent litigation
+against any entity (including a cross-claim or counterclaim in a lawsuit) alleging that the Work or
+a Contribution incorporated within the Work constitutes direct or contributory patent infringement,
+then any patent licenses granted to You under this License for that Work shall terminate as of the
+date such litigation is filed.
+
+## 4. Redistribution
+
+You may reproduce and distribute copies of the Work or Derivative Works thereof in any medium, with
+or without modifications, and in Source or Object form, provided that You meet the following
+conditions:
+
+1. You must give any other recipients of the Work or Derivative Works a copy of this License; and
+
+2. You must cause any modified files to carry prominent notices stating that You changed the
+   files; and
+
+3. You must retain, in the Source form of any Derivative Works that You distribute, all copyright,
+   patent, trademark, and attribution notices from the Source form of the Work, excluding those
+   notices that do not pertain to any part of the Derivative Works; and
+
+4. If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative
+   Works that You distribute must include a readable copy of the attribution notices contained
+   within such NOTICE file, excluding those notices that do not pertain to any part of the
+   Derivative Works, in at least one of the following places: within a NOTICE text file
+   distributed as part of the Derivative Works; within the Source form or documentation, if
+   provided along with the Derivative Works; or, within a display generated by the Derivative
+   Works, if and wherever such third-party notices normally appear. The contents of the NOTICE
+   file are for informational purposes only and do not modify the License. You may add Your own
+   attribution notices within Derivative Works that You distribute, alongside or as an addendum to
+   the NOTICE text from the Work, provided that such additional attribution notices cannot be
+   construed as modifying the License.
+
+You may add Your own copyright statement to Your modifications and may provide additional or
+different license terms and conditions for use, reproduction, or distribution of Your modifications,
+or for any such Derivative Works as a whole, provided Your use, reproduction, and distribution of
+the Work otherwise complies with the conditions stated in this License.
+
+## 5. Submission of Contributions
+
+Unless You explicitly state otherwise, any Contribution intentionally submitted for inclusion in the
+Work by You to the Licensor shall be under the terms and conditions of this License, without any
+additional terms or conditions. Notwithstanding the above, nothing herein shall supersede or modify
+the terms of any separate license agreement you may have executed with Licensor regarding such
+Contributions.
+
+## 6. Trademarks
+
+This License does not grant permission to use the trade names, trademarks, service marks, or product
+names of the Licensor, except as required for reasonable and customary use in describing the origin
+of the Work and reproducing the content of the NOTICE file.
+
+## 7. Disclaimer of Warranty
+
+Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each
+Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+KIND, either express or implied, including, without limitation, any warranties or conditions of
+TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. You are solely
+responsible for determining the appropriateness of using or redistributing the Work and assume any
+risks associated with Your exercise of permissions under this License.
+
+## 8. Limitation of Liability
+
+In no event and under no legal theory, whether in tort (including negligence), contract, or
+otherwise, unless required by applicable law (such as deliberate and grossly negligent acts) or
+agreed to in writing, shall any Contributor be liable to You for damages, including any direct,
+indirect, special, incidental, or consequential damages of any character arising as a result of this
+License or out of the use or inability to use the Work (including but not limited to damages for
+loss of goodwill, work stoppage, computer failure or malfunction, or any and all other commercial
+damages or losses), even if such Contributor has been advised of the possibility of such damages.
+
+## 9. Accepting Warranty or Additional Liability
+
+While redistributing the Work or Derivative Works thereof, You may choose to offer, and charge a fee
+for, acceptance of support, warranty, indemnity, or other liability obligations and/or rights
+consistent with this License. However, in accepting such obligations, You may act only on Your own
+behalf and on Your sole responsibility, not on behalf of any other Contributor, and only if You
+agree to indemnify, defend, and hold each Contributor harmless for any liability incurred by, or
+claims asserted against, such Contributor by reason of your accepting any such warranty or
+additional liability.
+
+END OF TERMS AND CONDITIONS
+
+Copyright 2014 [Alchemists](https://www.alchemists.io).
+
+Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in
+compliance with the License. You may obtain a [copy](http://www.apache.org/licenses/LICENSE-2.0) of
+the License.
+
+Unless required by applicable law or agreed to in writing, software distributed under the License is
+distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+implied. See the License for the specific language governing permissions and limitations under the
+License.

data/README.md

@@ -1,8 +1,8 @@
 # Auther
 
 [![Gem Version](https://badge.fury.io/rb/auther.svg)](http://badge.fury.io/rb/auther)
-[![Code Climate GPA](https://codeclimate.com/github/bkuhlmann/auther.svg)](https://codeclimate.com/github/bkuhlmann/auther)
-[![Code Climate Coverage](https://codeclimate.com/github/bkuhlmann/auther/coverage.svg)](https://codeclimate.com/github/bkuhlmann/auther)
+[![Code Climate Maintainability](https://api.codeclimate.com/v1/badges/3172d51796930fcdfad8/maintainability)](https://codeclimate.com/github/bkuhlmann/auther/maintainability)
+[![Code Climate Test Coverage](https://api.codeclimate.com/v1/badges/3172d51796930fcdfad8/test_coverage)](https://codeclimate.com/github/bkuhlmann/auther/test_coverage)
 [![Gemnasium Status](https://gemnasium.com/bkuhlmann/auther.svg)](https://gemnasium.com/bkuhlmann/auther)
 [![Circle CI Status](https://circleci.com/gh/bkuhlmann/auther.svg?style=svg)](https://circleci.com/gh/bkuhlmann/auther)
 [![Patreon](https://img.shields.io/badge/patreon-donate-brightgreen.svg)](https://www.patreon.com/bkuhlmann)
@@ -49,28 +49,19 @@ user experience.
 
 - Uses CSS Flexbox for lightweight styling.
 - Uses encrypted account credentials to keep sensitive information secure.
-- Supports multiple accounts with account specific blacklists.
+- Supports multiple accounts with optional path exclude lists.
 - Supports customizable routes, models, presenters, views, controllers, and loggers.
 - Provides a generator for easy install and setup within an existing project.
 - Provides auto-redirection to requested path for verified credentials.
 
 ## Requirements
 
-0. [Ruby 2.4.x](https://www.ruby-lang.org).
+0. [Ruby 2.5.x](https://www.ruby-lang.org).
 0. [Ruby on Rails 5.x.x](http://rubyonrails.org).
 
 ## Setup
 
-For a secure install, type the following from the command line (recommended):
-
-    gem cert --add <(curl --location --silent https://www.alchemists.io/gem-public.pem)
-    gem install auther --trust-policy MediumSecurity
-
-NOTE: A HighSecurity trust policy would be best but MediumSecurity enables signed gem verification
-while allowing the installation of unsigned dependencies since they are beyond the scope of this
-gem.
-
-For an insecure install, type the following (not recommended):
+Type the following to install:
 
     gem install auther
 
@@ -145,11 +136,11 @@ The initializer can be customized as follows:
   - *name* - Required. The account name that uniquely identifies the account.
   - *encrypted_login* - Required. The encrypted account login.
   - *encrypted_password* - Required. The encrypted account password.
-  - *paths* - Required. The array of blacklisted paths for which only this account has access to.
+  - *paths* - Required. The array of excluded paths for which only this account has access to.
   - *authorized_url* - Optional. The URL to redirect to upon successful authorization. Authorized
     redirection works in the order defined:
-    - The blacklisted path (if requested prior to authorization but now authorized).
-    - The authorized URL (if defined and the blacklisted path wasn't requested).
+    - The excluded path (if requested prior to authorization but now authorized).
+    - The authorized URL (if defined and the excluded path wasn't requested).
     - The root path (if none of the above).
   - *deauthorized_url* - Optional. The URL to redirect to upon successful deauthorization (i.e.
     logout). Deauthorized redirections works as follows (in the order defined):
@@ -219,7 +210,7 @@ As mentioned in the setup above, the logger can be customized as follows:
 When logging is enabled, you'll be able to see the following information in the server logs to help
 debug custom Auther settings:
 
-- Requested path and blacklist path detection.
+- Requested path and excluded path detection.
 - Finding (or not finding) of account.
 - Account authentication pass/fail.
 - Account and path authorization pass/fail.

data/app/controllers/auther/base_controller.rb

@@ -27,6 +27,7 @@ module Auther
         render template: new_template_path
       end
     end
+    # rubocop:enable Metrics/AbcSize
 
     def destroy
       account = Auther::Account.new settings.find_account(params[:name])

data/app/models/auther/account.rb

@@ -29,5 +29,6 @@ module Auther
       @authorized_url = options.fetch :authorized_url, nil
       @deauthorized_url = options.fetch :deauthorized_url, nil
     end
+    # rubocop:enable Style/OptionHash
   end
 end

data/lib/auther/authenticator.rb

@@ -10,6 +10,7 @@ module Auther
       @account_presenter = account_presenter
       @logger = logger
     end
+    # rubocop:enable Metrics/ParameterLists
 
     def authenticated?
       account_model.valid? &&

data/lib/auther/gatekeeper.rb

@@ -55,9 +55,9 @@ module Auther
     end
 
     # rubocop:disable Metrics/ParameterLists
-    def log_authorization authorized, account_name, blacklist, request_path
+    def log_authorization authorized, account_name, excludes, request_path
       details = %(Account: "#{account_name}". ) +
-                %(Blacklist: #{blacklist}. ) +
+                %(Excludes: #{excludes}. ) +
                 %(Request Path: "#{request_path}".)
 
       if authorized
@@ -66,6 +66,7 @@ module Auther
         log_info %(Authorization failed! #{details})
       end
     end
+    # rubocop:enable Metrics/ParameterLists
 
     def find_account
       session["auther_init"] = true # Force session to initialize.
@@ -80,13 +81,13 @@ module Auther
       paths.map { |path| path.chomp "/" }
     end
 
-    def blacklisted_paths
+    def excluded_paths
       paths = settings.accounts.map { |account| clean_paths account.fetch(:paths) }
       paths.flatten.uniq
     end
 
-    def blacklisted_matched_paths path
-      blacklisted_paths.select { |blacklisted_path| path.include? blacklisted_path }
+    def excluded_matched_paths path
+      excluded_paths.select { |excluded_path| path.include? excluded_path }
     end
 
     # rubocop:disable Metrics/AbcSize
@@ -101,6 +102,7 @@ module Auther
 
       session_login == account_login && session_password == account_password
     end
+    # rubocop:enable Metrics/AbcSize
 
     def authenticated? account
       authenticated = account_authenticated? account
@@ -112,7 +114,7 @@ module Auther
     end
 
     def account_authorized? account, path
-      all_paths = blacklisted_paths
+      all_paths = excluded_paths
       account_paths = clean_paths account.fetch(:paths)
       restricted_paths = all_paths - account_paths
 
@@ -122,9 +124,9 @@ module Auther
     end
 
     def authorized? path
-      if blacklisted_matched_paths(path).any?
-        log_info %(Requested path "#{request.path}" found in blacklisted paths: ) +
-                 %(#{blacklisted_paths}.)
+      if excluded_matched_paths(path).any?
+        log_info %(Requested path "#{request.path}" found in excluded paths: ) +
+                 %(#{excluded_paths}.)
         account = find_account
         account && authenticated?(account) && account_authorized?(account, path)
       else
@@ -132,4 +134,5 @@ module Auther
       end
     end
   end
+  # rubocop:enable Metrics/ClassLength
 end

data/lib/auther/identity.rb

@@ -12,7 +12,7 @@ module Auther
     end
 
     def self.version
-      "8.1.1"
+      "9.0.0"
     end
 
     def self.version_label

data/lib/auther/settings.rb

@@ -20,6 +20,7 @@ module Auther
       @auth_url = auth_url
       @logger = logger
     end
+    # rubocop:enable Metrics/ParameterLists
 
     def find_account name
       accounts.find { |account| account.fetch(:name) == name }

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: auther
 version: !ruby/object:Gem::Version
-  version: 8.1.1
+  version: 9.0.0
 platform: ruby
 authors:
 - Brooke Kuhlmann
@@ -30,7 +30,7 @@ cert_chain:
   MQXa5aqjoFEODxVbBBI6NyNVH4gMKDsILEFlH/mcBQKKQwXj2McJmB8jIG+WuKoE
   GyTL6s+8CnN9sL2Spfh/YdRn/29r4g2qi6FomQ==
   -----END CERTIFICATE-----
-date: 2017-11-19 00:00:00.000000000 Z
+date: 2018-01-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -150,28 +150,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.4'
+        version: '11.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.4'
+        version: '11.0'
 - !ruby/object:Gem::Dependency
   name: git-cop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.7'
+        version: '2.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.7'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: guard-rspec
   requirement: !ruby/object:Gem::Requirement
@@ -290,14 +290,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.51'
+        version: '0.52'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.51'
+        version: '0.52'
 - !ruby/object:Gem::Dependency
   name: wirb
   requirement: !ruby/object:Gem::Requirement
@@ -345,7 +345,7 @@ files:
 - lib/generators/auther/templates/config/initializers/auther.rb
 homepage: https://github.com/bkuhlmann/auther
 licenses:
-- MIT
+- Apache-2.0
 metadata: {}
 post_install_message: 
 rdoc_options: []
@@ -355,7 +355,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - "~>"
     - !ruby/object:Gem::Version
-      version: '2.4'
+      version: '2.5'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -363,7 +363,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.7.2
+rubygems_version: 2.7.4
 signing_key: 
 specification_version: 4
 summary: Enhances Rails with multi-account, form-based, database-less, application-wide