RubyGems - authtrail - Versions diffs - 0.1.0 → 0.1.1 - Mend

authtrail 0.1.0 → 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

checksums.yaml +5 -5
data/.gitignore +1 -0
data/CHANGELOG.md +5 -0
data/README.md +1 -1
data/authtrail.gemspec +2 -1
data/lib/auth_trail/engine.rb +2 -0
data/lib/auth_trail/manager.rb +16 -8
data/lib/auth_trail/version.rb +1 -1
data/lib/authtrail.rb +3 -1
data/lib/generators/authtrail/templates/login_activities_migration.rb +2 -3
metadata +18 -5
data/Gemfile.lock +0 -125

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: d09fb569715557b1fcde80bcab0990674c3950c3
-  data.tar.gz: 4507a5bfb4536803efcc1a8d29ef04c1dd4c0717
+SHA256:
+  metadata.gz: 0d0affe4e892e8dac1a1ddc212ebb6834ef1de340f782de0f4a19dcc230e0a51
+  data.tar.gz: 72b45a58e89181f07ea0c58e3875e67948287a2b1b0fc9aa627eac6be8aee5f8
 SHA512:
-  metadata.gz: 12879861a9e98af5c5defd08ddf1f10d0aa11e04724ff56dd191a34b3ea778821e8173a4198f1221a92774db49301e8e633f064fdbc7385a7f184df7173de00d
-  data.tar.gz: 1777a6f8bd28435970616e6dc90937301354edeb89ffb5ada0c85c531e01b07e8f138959f7313dbbd0c7ccb7add148550743425b5f90f200bfad7ca352363ad9
+  metadata.gz: 25b90ec6e2059c37c405e3e647cc39c12d3ece6a12697ac0403f0ca4b07c7b288ff73194c6fe07af1fed558bd94feb1e870e267dfba5fd6abd8adf5e3a6e18a2
+  data.tar.gz: 18428f49536b942f47d260e6d4251eaaae57c7cc6fddcb3d35fba1a3a6bb8adc8492453530569ab0c21b84181ffd2e92672ea8762ccb1c59dcb8c167c6037127

data/.gitignore CHANGED

@@ -6,3 +6,4 @@
 /pkg/
 /spec/reports/
 /tmp/
+Gemfile.lock

data/CHANGELOG.md CHANGED

@@ -1,3 +1,8 @@
+## 0.1.1
+- Improved strategy detection for failures
+- Fixed migration for MySQL
 ## 0.1.0
 - First release

data/README.md CHANGED

@@ -24,7 +24,7 @@ rake db:migrate
 A `LoginActivity` record is created every time a user tries to login. You can then use this information to detect suspicious behavior. Data includes:
 - `scope` - Devise scope
-- `strategy` - `database_authenticatable` for password logins, `rememberable` for remember me cookie, or the name of the OmniAuth strategy
+- `strategy` - Devise strategy
 - `identity` - email address
 - `success` - whether the login succeeded
 - `failure_reason` - if the login failed

data/authtrail.gemspec CHANGED

@@ -19,7 +19,8 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
-  spec.add_dependency "rails", ">= 5"
+  spec.add_dependency "railties", ">= 5"
+  spec.add_dependency "activerecord", ">= 5"
   spec.add_dependency "warden"
   spec.add_dependency "geocoder"

data/lib/auth_trail/engine.rb CHANGED

@@ -1,3 +1,5 @@
+require "rails/engine"
 module AuthTrail
   class Engine < Rails::Engine
   end

data/lib/auth_trail/manager.rb CHANGED

@@ -6,13 +6,10 @@ module AuthTrail
         AuthTrail.safely do
           request = ActionDispatch::Request.new(auth.env)
-          strategy = auth.env["omniauth.auth"]["provider"] if auth.env["omniauth.auth"]
-          strategy ||= auth.winning_strategy.class.name.split("::").last.underscore if auth.winning_strategy
-          strategy ||= "database_authenticatable"
           identity = user.try(:email)
           AuthTrail.track(
-            strategy: strategy,
+            strategy: detect_strategy(auth),
             scope: opts[:scope].to_s,
             identity: identity,
             success: true,
@@ -26,11 +23,13 @@ module AuthTrail
         AuthTrail.safely do
           if opts[:message]
             request = ActionDispatch::Request.new(env)
-            identity = request.params[opts[:scope]] && request.params[opts[:scope]][:email] rescue nil
+            scope = opts[:scope]
+            identity = request.params[scope] && request.params[scope][:email] rescue nil
             AuthTrail.track(
-              strategy: "database_authenticatable",
-              scope: opts[:scope].to_s,
+              strategy: detect_strategy(env["warden"]),
+              scope: scope.to_s,
               identity: identity,
               success: false,
               request: request,
@@ -39,6 +38,15 @@ module AuthTrail
           end
         end
       end
+      private
+      def detect_strategy(auth)
+        strategy = auth.env["omniauth.auth"]["provider"] if auth.env["omniauth.auth"]
+        strategy ||= auth.winning_strategy.class.name.split("::").last.underscore if auth.winning_strategy
+        strategy ||= "database_authenticatable"
+        strategy
+      end
     end
   end
 end

data/lib/auth_trail/version.rb CHANGED

@@ -1,3 +1,3 @@
 module AuthTrail
-  VERSION = "0.1.0"
+  VERSION = "0.1.1"
 end

data/lib/authtrail.rb CHANGED

@@ -1,6 +1,8 @@
+# dependencies
 require "geocoder"
-require "rails"
 require "warden"
+# modules
 require "auth_trail/engine"
 require "auth_trail/manager"
 require "auth_trail/version"

data/lib/generators/authtrail/templates/login_activities_migration.rb CHANGED

@@ -3,12 +3,12 @@ class <%= migration_class_name %> < ActiveRecord::Migration<%= migration_version
     create_table :login_activities do |t|
       t.text :scope
       t.text :strategy
-      t.text :identity
+      t.string :identity
       t.boolean :success
       t.text :failure_reason
       t.references :user, polymorphic: true
       t.text :context
-      t.text :ip
+      t.string :ip
       t.text :user_agent
       t.text :referrer
       t.text :city
@@ -19,6 +19,5 @@ class <%= migration_class_name %> < ActiveRecord::Migration<%= migration_version
     add_index :login_activities, :identity
     add_index :login_activities, :ip
-    add_index :login_activities, :user_id
   end
 end

metadata CHANGED

@@ -1,17 +1,31 @@
 --- !ruby/object:Gem::Specification
 name: authtrail
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Andrew Kane
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2017-11-08 00:00:00.000000000 Z
+date: 2018-07-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: rails
+  name: railties
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+- !ruby/object:Gem::Dependency
+  name: activerecord
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -104,7 +118,6 @@ files:
 - ".gitignore"
 - CHANGELOG.md
 - Gemfile
-- Gemfile.lock
 - LICENSE.txt
 - README.md
 - Rakefile
@@ -136,7 +149,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.13
+rubygems_version: 2.7.7
 signing_key:
 specification_version: 4
 summary: Track Devise login activity

data/Gemfile.lock DELETED

@@ -1,125 +0,0 @@
-PATH
-  remote: .
-  specs:
-    authtrail (0.1.0)
-      geocoder
-      rails (>= 5)
-      warden
-GEM
-  remote: https://rubygems.org/
-  specs:
-    actioncable (5.1.4)
-      actionpack (= 5.1.4)
-      nio4r (~> 2.0)
-      websocket-driver (~> 0.6.1)
-    actionmailer (5.1.4)
-      actionpack (= 5.1.4)
-      actionview (= 5.1.4)
-      activejob (= 5.1.4)
-      mail (~> 2.5, >= 2.5.4)
-      rails-dom-testing (~> 2.0)
-    actionpack (5.1.4)
-      actionview (= 5.1.4)
-      activesupport (= 5.1.4)
-      rack (~> 2.0)
-      rack-test (>= 0.6.3)
-      rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (5.1.4)
-      activesupport (= 5.1.4)
-      builder (~> 3.1)
-      erubi (~> 1.4)
-      rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.3)
-    activejob (5.1.4)
-      activesupport (= 5.1.4)
-      globalid (>= 0.3.6)
-    activemodel (5.1.4)
-      activesupport (= 5.1.4)
-    activerecord (5.1.4)
-      activemodel (= 5.1.4)
-      activesupport (= 5.1.4)
-      arel (~> 8.0)
-    activesupport (5.1.4)
-      concurrent-ruby (~> 1.0, >= 1.0.2)
-      i18n (~> 0.7)
-      minitest (~> 5.1)
-      tzinfo (~> 1.1)
-    arel (8.0.0)
-    builder (3.2.3)
-    concurrent-ruby (1.0.5)
-    crass (1.0.2)
-    erubi (1.7.0)
-    geocoder (1.4.4)
-    globalid (0.4.1)
-      activesupport (>= 4.2.0)
-    i18n (0.9.1)
-      concurrent-ruby (~> 1.0)
-    loofah (2.1.1)
-      crass (~> 1.0.2)
-      nokogiri (>= 1.5.9)
-    mail (2.7.0)
-      mini_mime (>= 0.1.1)
-    method_source (0.9.0)
-    mini_mime (0.1.4)
-    mini_portile2 (2.3.0)
-    minitest (5.10.3)
-    nio4r (2.1.0)
-    nokogiri (1.8.1)
-      mini_portile2 (~> 2.3.0)
-    rack (2.0.3)
-    rack-test (0.7.0)
-      rack (>= 1.0, < 3)
-    rails (5.1.4)
-      actioncable (= 5.1.4)
-      actionmailer (= 5.1.4)
-      actionpack (= 5.1.4)
-      actionview (= 5.1.4)
-      activejob (= 5.1.4)
-      activemodel (= 5.1.4)
-      activerecord (= 5.1.4)
-      activesupport (= 5.1.4)
-      bundler (>= 1.3.0)
-      railties (= 5.1.4)
-      sprockets-rails (>= 2.0.0)
-    rails-dom-testing (2.0.3)
-      activesupport (>= 4.2.0)
-      nokogiri (>= 1.6)
-    rails-html-sanitizer (1.0.3)
-      loofah (~> 2.0)
-    railties (5.1.4)
-      actionpack (= 5.1.4)
-      activesupport (= 5.1.4)
-      method_source
-      rake (>= 0.8.7)
-      thor (>= 0.18.1, < 2.0)
-    rake (12.2.1)
-    sprockets (3.7.1)
-      concurrent-ruby (~> 1.0)
-      rack (> 1, < 3)
-    sprockets-rails (3.2.1)
-      actionpack (>= 4.0)
-      activesupport (>= 4.0)
-      sprockets (>= 3.0.0)
-    thor (0.20.0)
-    thread_safe (0.3.6)
-    tzinfo (1.2.4)
-      thread_safe (~> 0.1)
-    warden (1.2.7)
-      rack (>= 1.0)
-    websocket-driver (0.6.5)
-      websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.2)
-PLATFORMS
-  ruby
-DEPENDENCIES
-  authtrail!
-  bundler
-  minitest
-  rake
-BUNDLED WITH
-   1.16.0