authie 4.0.0.rc9 → 4.0.0.rc10

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f06ec249cc2efa9d4924d524769752cc9702cf017a1d0020d010e8d4a9eae9f8
-  data.tar.gz: f056af849c503c3870f69a707a4409428d6b200cff4df73237cd21e3ca5ce2ed
+  metadata.gz: c2ba869656ec43ca7b92803584ad2361ad2a7c443b2b69bc7f7bac2c0e991218
+  data.tar.gz: 67340e7ab60e5fafb35a17a8760611d5f1c25a3ae67abf75363f7210ec3cb181
 SHA512:
-  metadata.gz: 55baf7050e12a28da721b94764740a9267b1ea6b16cb7fe515cf306bfa695463055fae8b2aa16badf47b541f470cb6357b40611d5965d8d51c03a18f7cf985db
-  data.tar.gz: 4853c8cafca07ec918c2d5f1e3ccfa01988432021ded6350470be15f369561aa534bc1a845521107f8e5d2a5a602d37e160a556d936b09e9b4f8573b9fa70ccb
+  metadata.gz: b6f3604a227d448f0d2724eb6566f83c4b665121fd3d9075691bdccd4e72370a230b4916ae1a8fd8b68fff893e81b5bd39170be2c5ebe244817fa33c5365daf7
+  data.tar.gz: fcde4d28afbc7bab2727150c69be0baa527a89e65bb1047159499247771b2284bec104f54bbd7adf7db52f18dacac58ab0817085d8b42ff8f07e226b201bffe6

data/lib/authie/config.rb

@@ -1,7 +1,5 @@
 # frozen_string_literal: true
 
-require 'authie/event_manager'
-
 module Authie
   class Config
     attr_accessor :session_inactivity_timeout
@@ -10,7 +8,6 @@ module Authie
     attr_accessor :browser_id_cookie_name
     attr_accessor :session_token_length
     attr_accessor :extend_session_expiry_on_touch
-    attr_accessor :events
 
     def initialize
       @session_inactivity_timeout = 12.hours
@@ -19,7 +16,6 @@ module Authie
       @browser_id_cookie_name = :browser_id
       @session_token_length = 64
       @extend_session_expiry_on_touch = false
-      @events = EventManager.new
     end
   end
 
@@ -32,5 +28,9 @@ module Authie
       block.call(config)
       config
     end
+
+    def notify(event, args = {}, &block)
+      ActiveSupport::Notifications.instrument("#{event}.authie", args, &block)
+    end
   end
 end

data/lib/authie/controller_delegate.rb

@@ -34,7 +34,9 @@ module Authie
           httponly: true,
           secure: @controller.request.ssl?
         }
-        Authie.config.events.dispatch(:set_browser_id, proposed_browser_id)
+        Authie.notify(:set_browser_id,
+                      browser_id: proposed_browser_id,
+                      controller: @controller)
       end
       proposed_browser_id
     end

data/lib/authie/session.rb

@@ -94,7 +94,7 @@ module Authie
       @session.requests += 1
       extend_session_expiry_if_appropriate
       @session.save!
-      Authie.config.events.dispatch(:session_touched, self)
+      Authie.notify(:touch, session: self)
       self
     end
 
@@ -105,7 +105,7 @@ module Authie
     def see_password
       @session.password_seen_at = Time.now
       @session.save!
-      Authie.config.events.dispatch(:seen_password, self)
+      Authie.notify(:see_password, session: self)
       self
     end
 
@@ -119,7 +119,7 @@ module Authie
       @session.two_factored_ip = @controller.request.ip
       @session.skip_two_factor = skip unless skip.nil?
       @session.save!
-      Authie.config.events.dispatch(:marked_as_two_factor, self)
+      Authie.notify(:mark_as_two_factor, session: self)
       self
     end
 
@@ -130,7 +130,7 @@ module Authie
     # @return [Authie::Session]
     def start
       set_cookie
-      Authie.config.events.dispatch(:start_session, session)
+      Authie.notify(:session_start, session: self)
       self
     end
 
@@ -153,7 +153,7 @@ module Authie
         httponly: true,
         expires: @session.expires_at
       }
-      Authie.config.events.dispatch(:session_cookie_updated, self)
+      Authie.notify(:cookie_updated, session: session)
       true
     end
     # rubocop:enable Naming/AccessorMethodName
@@ -165,7 +165,7 @@ module Authie
     def validate_browser_id
       if cookies[:browser_id] != @session.browser_id
         invalidate
-        Authie.config.events.dispatch(:browser_id_mismatch_error, self)
+        Authie.notify(:browser_id_mismatch_error, session: self)
         raise BrowserMismatch, 'Browser ID mismatch'
       end
 
@@ -175,7 +175,7 @@ module Authie
     def validate_active
       unless @session.active?
         invalidate
-        Authie.config.events.dispatch(:invalid_session_error, self)
+        Authie.notify(:invalid_session_error, session: self)
         raise InactiveSession, 'Session is no longer active'
       end
 
@@ -185,7 +185,7 @@ module Authie
     def validate_expiry
       if @session.expired?
         invalidate
-        Authie.config.events.dispatch(:expired_session_error, self)
+        Authie.notify(:expired_session_error, session: self)
         raise ExpiredSession, 'Persistent session has expired'
       end
 
@@ -195,7 +195,7 @@ module Authie
     def validate_inactivity
       if @session.inactive?
         invalidate
-        Authie.config.events.dispatch(:inactive_session_error, self)
+        Authie.notify(:inactive_session_error, session:  self)
         raise InactiveSession, 'Non-persistent session has expired'
       end
 
@@ -205,7 +205,7 @@ module Authie
     def validate_host
       if @session.host && @session.host != @controller.request.host
         invalidate
-        Authie.config.events.dispatch(:host_mismatch_error, self)
+        Authie.notify(:host_mismatch_error, session: self)
         raise HostMismatch, "Session was created on #{@session.host} but accessed using #{@controller.request.host}"
       end
 
@@ -264,6 +264,7 @@ module Authie
       end
 
       delegate :hash_token, to: SessionModel
+      delegate :cleanup, to: SessionModel
     end
 
     # Backwards compatibility with Authie < 4.0. These methods were all available on sessions

data/lib/authie/session_model.rb

@@ -1,6 +1,6 @@
 # frozen_string_literal: true
 
-require 'active_record/base'
+require 'active_record'
 require 'securerandom'
 require 'authie/config'
 
@@ -136,13 +136,13 @@ module Authie
 
       # Cleanup any old sessions.
       def cleanup
-        Authie.config.events.dispatch(:before_cleanup)
-        # Invalidate transient sessions that haven't been used
-        active.where('expires_at IS NULL AND last_activity_at < ?',
-                     Authie.config.session_inactivity_timeout.ago).each(&:invalidate!)
-        # Invalidate persistent sessions that have expired
-        active.where('expires_at IS NOT NULL AND expires_at < ?', Time.now).each(&:invalidate!)
-        Authie.config.events.dispatch(:after_cleanup)
+        Authie.notify(:cleanup) do
+          # Invalidate transient sessions that haven't been used
+          active.where('expires_at IS NULL AND last_activity_at < ?',
+                       Authie.config.session_inactivity_timeout.ago).each(&:invalidate!)
+          # Invalidate persistent sessions that have expired
+          active.where('expires_at IS NOT NULL AND expires_at < ?', Time.now).each(&:invalidate!)
+        end
         true
       end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authie
 version: !ruby/object:Gem::Version
-  version: 4.0.0.rc9
+  version: 4.0.0.rc10
 platform: ruby
 authors:
 - Adam Cooke
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-05-03 00:00:00.000000000 Z
+date: 2022-05-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord
@@ -239,7 +239,6 @@ files:
 - lib/authie/controller_extension.rb
 - lib/authie/engine.rb
 - lib/authie/error.rb
-- lib/authie/event_manager.rb
 - lib/authie/rack_controller.rb
 - lib/authie/session.rb
 - lib/authie/session_model.rb

data/lib/authie/event_manager.rb

@@ -1,32 +0,0 @@
-# frozen_string_literal: true
-
-module Authie
-  class EventManager
-    attr_reader :callbacks
-
-    def initialize
-      @callbacks = {}
-    end
-
-    def dispatch(event, *args)
-      callbacks = @callbacks[event.to_sym]
-      return if callbacks.nil?
-
-      callbacks.each do |cb|
-        cb.call(*args)
-      end
-    end
-
-    def on(event, &block)
-      @callbacks[event.to_sym] ||= []
-      @callbacks[event.to_sym] << block
-    end
-
-    def remove(event, block)
-      cb = @callbacks[event.to_sym]
-      return if cb.nil?
-
-      cb.delete(block)
-    end
-  end
-end