balrog 0.2.0 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (12) hide show
  1. checksums.yaml +4 -4
  2. data/.circleci/config.yml +1 -0
  3. data/.gitignore +2 -0
  4. data/CHANGELOG.md +12 -0
  5. data/Gemfile.lock +2 -2
  6. data/README.md +25 -2
  7. data/app/views/balrog/gate.html.erb +1 -1
  8. data/balrog.gemspec +1 -1
  9. data/lib/balrog.rb +1 -0
  10. data/lib/balrog/routes_middleware.rb +27 -0
  11. data/lib/balrog/version.rb +1 -1
  12. metadata +6 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 5139f44e15d64bc7e7138716bd2f94078345981281415b3ac40bf4408c8181b0
4
- data.tar.gz: 014f03129ad8f39feac850621f6a581138419b6933341e09a3feae2273736b0d
3
+ metadata.gz: b518904751f63b68eab38cc945dfebe1cf013124be9b16abf684fbfe24450550
4
+ data.tar.gz: '0179daeb802833fdf7cb6771584f604fcba47bbdb4fe8177003ea70c1ec3aa4d'
5
5
  SHA512:
6
- metadata.gz: 7cfe1ba81b99825b54f41d0116c819d968bfcac4f5a85940676e4b583dee45fb80598e06deb8126c127e2879c7ff55713eb99aac484dc4ab1b8b84a4583b7c90
7
- data.tar.gz: 8ba157eb6b60d32e272f09b508883fa5a0637810e5142e9dc5368cb1bd676bacc6952d559841c4b5f57e19965ebfff5f12ea1591cdc39633c939f2b0531d5871
6
+ metadata.gz: c85e1122e208eba94aa7dd98940b38a1274a5e048922d4f15b9cf7699daabb2f7d905efcdc1f5e711192270e554229a5c324cbfcf78e6decc6ab7c40b9588708
7
+ data.tar.gz: 5f0ad78e961fed3cc084af8f6a12c20fb8f5118967aa8de08491519fd33ca55fa481fa168b3df5a505279cbeed3de008e79c9a636ae7f0606f5e74ce048c2982
data/.circleci/config.yml CHANGED
@@ -4,6 +4,7 @@ jobs:
4
4
  build:
5
5
  docker:
6
6
  - image: circleci/ruby:2.6.2-node-browsers
7
+ - image: circleci/redis:5.0.4
7
8
 
8
9
  working_directory: ~/repo/spec/dummy-rails-app
9
10
 
data/.gitignore CHANGED
@@ -11,3 +11,5 @@
11
11
  .rspec_status
12
12
 
13
13
  .DS_Store
14
+
15
+ **/dump.rdb
data/CHANGELOG.md ADDED
@@ -0,0 +1,12 @@
1
+ # 1.0.0
2
+
3
+ - added `Balrog::RoutesMiddleware` module, which can be used to protect mounted Rack applications.
4
+ - dropped support for Rails < 5.
5
+
6
+ # 0.2.0
7
+
8
+ - added `balrog_logout_button` view helper method.
9
+
10
+ # 0.1.0
11
+
12
+ - initial release.
data/Gemfile.lock CHANGED
@@ -1,9 +1,9 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- balrog (0.2.0)
4
+ balrog (1.0.0)
5
5
  bcrypt (~> 3.0)
6
- rails (>= 4.2)
6
+ rails (>= 5)
7
7
 
8
8
  GEM
9
9
  remote: https://rubygems.org/
data/README.md CHANGED
@@ -5,7 +5,7 @@
5
5
  [![Gem Version](https://badge.fury.io/rb/balrog.svg)](https://badge.fury.io/rb/balrog)
6
6
  [![CircleCI](https://circleci.com/gh/pixielabs/balrog.svg?style=svg)](https://circleci.com/gh/pixielabs/balrog)
7
7
 
8
- Balrog is a lightweight authorization library for Ruby on Rails written by
8
+ Balrog is a lightweight authorization library for Ruby on Rails >= 5 written by
9
9
  [Pixie Labs](https://pixielabs.io) that can protect your routes with a single
10
10
  username & password combination.
11
11
 
@@ -28,7 +28,7 @@ gem 'balrog'
28
28
 
29
29
  Run the installer to generate an initializer:
30
30
 
31
- ```
31
+ ```shell
32
32
  $ bundle exec rails generate balrog:install
33
33
  Enter New Password:
34
34
  Confirm New Password:
@@ -59,6 +59,29 @@ class AdminController < ApplicationController
59
59
  end
60
60
  ```
61
61
 
62
+ ## Restricting access to mounted Rack applications within config/routes.rb
63
+
64
+ Use the `.use` [method](https://www.rubydoc.info/gems/rack/Rack%2FBuilder:use) to add Balrog to the 'stack'.
65
+
66
+ For example with Sidekiq::Web...
67
+
68
+ ```ruby
69
+ # Then we tell SideKiq to use Balrog::RoutesMiddleware
70
+ Sidekiq::Web.use Balrog::RoutesMiddleware
71
+
72
+ mount Sidekiq::Web => '/sidekiq'
73
+ ```
74
+
75
+ N.B. If you are mounting Sidekiq Web, you need to [disable Sidekiq Web's session in config/initializers/sidekiq.rb](https://github.com/mperham/sidekiq/issues/3377#issuecomment-381254940).
76
+
77
+ ```ruby
78
+ require 'sidekiq/web'
79
+
80
+ # In order to force sidekiq to use the rails app's session,
81
+ # we need to disable the Sidekiq's session.
82
+ Sidekiq::Web.disable(:sessions)
83
+ ```
84
+
62
85
  ## Logout button
63
86
 
64
87
  To add a logout button, you can call the `balrog_logout_button` view helper
data/app/views/balrog/gate.html.erb CHANGED
@@ -23,4 +23,4 @@
23
23
 
24
24
  </body>
25
25
 
26
- </html>
26
+ </html>
data/balrog.gemspec CHANGED
@@ -24,7 +24,7 @@ Gem::Specification.new do |spec|
24
24
  spec.require_paths = ["lib"]
25
25
 
26
26
  spec.add_dependency "bcrypt", "~> 3.0"
27
- spec.add_dependency "rails", ">=4.2"
27
+ spec.add_dependency "rails", ">=5"
28
28
 
29
29
  spec.add_development_dependency "bundler", "~> 2.0"
30
30
  spec.add_development_dependency "rake", "~> 10.0"
data/lib/balrog.rb CHANGED
@@ -3,6 +3,7 @@ require 'rails'
3
3
  module Balrog
4
4
  require_relative 'balrog/version'
5
5
  require_relative 'balrog/middleware'
6
+ require_relative 'balrog/routes_middleware'
6
7
  require_relative 'balrog/engine'
7
8
  require_relative 'balrog/rake_tasks'
8
9
  require_relative 'balrog/generators'
data/lib/balrog/routes_middleware.rb ADDED
@@ -0,0 +1,27 @@
1
+ # Public: Balrog routes middleware that redirects the user to a security
2
+ # gate unless the session includes { 'balrog' => 'authenticated' }.
3
+ #
4
+ # In order to protect SideKiq Web you would do something like this:
5
+ #
6
+ # require 'sidekiq/web'
7
+ #
8
+ # Sidekiq::Web.disable(:sessions)
9
+ # Sidekiq::Web.use Balrog::RoutesMiddleware
10
+ #
11
+ # mount Sidekiq::Web => '/sidekiq'
12
+
13
+ class Balrog::RoutesMiddleware
14
+ def initialize(app)
15
+ @app = app
16
+ end
17
+
18
+ def call(env)
19
+ unless env['rack.session']['balrog'] == 'authenticated'
20
+ html = ApplicationController.renderer.render 'balrog/gate', layout: nil
21
+ return [200, {"Content-Type" => "text/html"}, [html]]
22
+ end
23
+ @app.call(env)
24
+ end
25
+
26
+ end
27
+
data/lib/balrog/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Balrog
2
- VERSION = "0.2.0"
2
+ VERSION = "1.0.0"
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: balrog
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.2.0
4
+ version: 1.0.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Pixie Labs
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2019-05-13 00:00:00.000000000 Z
11
+ date: 2019-05-14 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: bcrypt
@@ -30,14 +30,14 @@ dependencies:
30
30
  requirements:
31
31
  - - ">="
32
32
  - !ruby/object:Gem::Version
33
- version: '4.2'
33
+ version: '5'
34
34
  type: :runtime
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
38
  - - ">="
39
39
  - !ruby/object:Gem::Version
40
- version: '4.2'
40
+ version: '5'
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: bundler
43
43
  requirement: !ruby/object:Gem::Requirement
@@ -92,6 +92,7 @@ files:
92
92
  - ".gitignore"
93
93
  - ".rspec"
94
94
  - ".travis.yml"
95
+ - CHANGELOG.md
95
96
  - CODE_OF_CONDUCT.md
96
97
  - Gemfile
97
98
  - Gemfile.lock
@@ -112,6 +113,7 @@ files:
112
113
  - lib/balrog/middleware.rb
113
114
  - lib/balrog/password_hasher.rb
114
115
  - lib/balrog/rake_tasks.rb
116
+ - lib/balrog/routes_middleware.rb
115
117
  - lib/balrog/tasks/generate_hash.rake
116
118
  - lib/balrog/version.rb
117
119
  - lib/balrog/view_helpers.rb