brevio-session 0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: c515c318b1b9d9dcc8f157a9fd507511d2462d43ddb62de9f439ce55e21c5da3
+  data.tar.gz: d104172c65410bf4e52d8087a2e8bcb30220cf1ef18d75d7d3f0a5eeaba2cb7d
+SHA512:
+  metadata.gz: 5cfcdc09b39e5162e49d1ae0f386dfa59a5e5c62a6a80c7e763d5b67fd029bea0b422efba229caf6c525e1e9011f4d84bdf48ada003d92b5918c7a00da80b244
+  data.tar.gz: f2deb2e307e1bdcf2f91744bffd969ef5a48dd34638079b22693ca6ba0ac38cdbe342a7ecd525b12b666faff15338ec682add782738693f1ddf0ad0e69288e2e

data/.gitignore

@@ -0,0 +1,2 @@
+.byebug_history
+*.gem

data/.rubocop.yml

@@ -0,0 +1,56 @@
+AllCops:
+  NewCops: enable
+  TargetRubyVersion: 3.2
+
+Layout/EmptyLineAfterGuardClause:
+  Enabled: false
+
+Layout/FirstHashElementIndentation:
+  EnforcedStyle: consistent
+
+Layout/HashAlignment:
+  EnforcedHashRocketStyle: table
+
+Layout/LineLength:
+  Max: 100
+
+Layout/MultilineMethodCallIndentation:
+  EnforcedStyle: indented_relative_to_receiver
+
+Metrics/BlockLength:
+  Exclude:
+    - "*.gemspec"
+
+Naming/AccessorMethodName:
+  Exclude:
+    - test/**/*
+
+Metrics/AbcSize:
+  Exclude:
+    - test/**/stubs/**/*
+
+Metrics/ClassLength:
+  Exclude:
+    - test/**/stubs/**/*
+
+Metrics/MethodLength:
+  Exclude:
+    - test/**/*
+
+Style/Alias:
+  Exclude:
+    - test/**/*
+
+Style/ClassAndModuleChildren:
+  Enabled: false
+
+Style/ClassVars:
+  Exclude:
+    - test/**/*
+
+Style/Documentation:
+  Enabled: false
+
+Style/ModuleFunction:
+  Enabled: true
+  EnforcedStyle: extend_self

data/.ruby-version

@@ -0,0 +1 @@
+3.2.0

data/Gemfile

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+source 'https://rubygems.org'
+gemspec 

data/Gemfile.lock

@@ -0,0 +1,102 @@
+PATH
+  remote: .
+  specs:
+    brevio-session (0.1)
+      actionpack (~> 7.0.3)
+      redis (~> 5.0)
+      zeitwerk (~> 2.6.7)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    actionpack (7.0.4)
+      actionview (= 7.0.4)
+      activesupport (= 7.0.4)
+      rack (~> 2.0, >= 2.2.0)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.2.0)
+    actionview (7.0.4)
+      activesupport (= 7.0.4)
+      builder (~> 3.1)
+      erubi (~> 1.4)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.1, >= 1.2.0)
+    activesupport (7.0.4)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+    ast (2.4.2)
+    builder (3.2.4)
+    concurrent-ruby (1.1.10)
+    connection_pool (2.4.0)
+    crass (1.0.6)
+    debug (1.5.0)
+      irb (>= 1.3.6)
+      reline (>= 0.2.7)
+    erubi (1.11.0)
+    i18n (1.12.0)
+      concurrent-ruby (~> 1.0)
+    io-console (0.6.0)
+    irb (1.6.1)
+      reline (>= 0.3.0)
+    json (2.6.2)
+    loofah (2.19.0)
+      crass (~> 1.0.2)
+      nokogiri (>= 1.5.9)
+    mini_portile2 (2.8.1)
+    minitest (5.16.3)
+    nokogiri (1.13.9)
+      mini_portile2 (~> 2.8.0)
+      racc (~> 1.4)
+    parallel (1.22.1)
+    parser (3.1.2.1)
+      ast (~> 2.4.1)
+    racc (1.6.1)
+    rack (2.2.4)
+    rack-test (2.0.2)
+      rack (>= 1.3)
+    rails-dom-testing (2.0.3)
+      activesupport (>= 4.2.0)
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.4.3)
+      loofah (~> 2.3)
+    rainbow (3.1.1)
+    redis (5.0.6)
+      redis-client (>= 0.9.0)
+    redis-client (0.14.1)
+      connection_pool
+    regexp_parser (2.5.0)
+    reline (0.3.2)
+      io-console (~> 0.5)
+    rexml (3.2.5)
+    rubocop (1.36.0)
+      json (~> 2.3)
+      parallel (~> 1.10)
+      parser (>= 3.1.2.1)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml (>= 3.2.5, < 4.0)
+      rubocop-ast (>= 1.20.1, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.21.0)
+      parser (>= 3.1.1.0)
+    ruby-progressbar (1.11.0)
+    tzinfo (2.0.5)
+      concurrent-ruby (~> 1.0)
+    unicode-display_width (2.2.0)
+    zeitwerk (2.6.7)
+
+PLATFORMS
+  arm64-darwin-21
+
+DEPENDENCIES
+  brevio-session!
+  bundler (~> 2.1)
+  debug (~> 1.5.0, <= 1.6.0)
+  rubocop (~> 1.35)
+
+BUNDLED WITH
+   2.3.22

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2018 Nicolay Hvidsten
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,82 @@
+# Brevio Session
+
+This gem is a thin wrapper around the Brevio HTTP session, which is created by the [Brevio ID](https://github.com/team-brevio/id) service, and stored in Redis. The HTTP session is shared by all customer-facing Brevio services, enabling single sign-on.
+
+The session is shared by storing the encrypted Redis key in an agreed-upon cookie (`BREVIO_ID_COOKIE`). The passphrase used for the encryption is also agreed-upon between services (`BREVIO_ID_SECRET_KEY`).
+
+The gem provides three utility functions, used in the application controllers:
+
+- `fetch_brevio_session`: Loads the Brevio session from Redis and returns a `HashWithIndifferentAccess` wrapper around it.
+- `fetch_brevio_session!`: Same as above, but raises an error if the session isn't present.
+- `brevio_logged_in?`: Returns a boolean flag indicating whether there exists a current Brevio session.
+
+## Installation
+
+```ruby
+# Gemfile
+gem 'brevio-session'
+
+# config/initializers/brevio_session.rb
+Brevio::Session::Config.configure do |config|
+  config.debug          = ENV.fetch('BREVIO_SESSION_DEBUG', false) # Logs additional information for session retrieval
+  config.production     = Rails.env.production?
+  config.redis          = Brevio::Redis::Client.new(ENV.fetch('BREVIO_ID_REDIS_URL'))
+  config.secret_key     = ENV.fetch('BREVIO_ID_SECRET_KEY')
+  config.session_cookie = ENV.fetch('BREVIO_ID_COOKIE')
+  config.session_expire = Integer(ENV.fetch('BREVIO_ID_EXPIRE')).minutes
+end
+```
+
+## Usage
+
+To gain access to the utility functions mentioned above, you need to include the `Brevio::Session` module in
+any Rails controller. The module is a [Rails Concern](https://api.rubyonrails.org/v7.0.4/classes/ActiveSupport/Concern.html) which ensures it is being included in the correct context.
+
+```ruby
+class ApiController
+  include Brevio::Session
+
+  def action
+    brevio_session = fetch_brevio_session
+    puts brevio_session
+    # => { user_id: 1, audit_company_id: 1, user_stamp: '2022-01-0107:39:58.281894000' }
+  end
+end
+```
+
+The session itself contains the following information (subject to change in Brevio ID):
+
+- `user_id`: The primary key for the user in the Brevio ID database.
+- `audit_company_id`: The primary key for the audit company in the Brevio ID database.
+- `user_stamp`: Timestamp indicating when the user was last updated in Brevio ID.
+
+## Testing
+
+Since we want to test features with logged-in users, we need to be able to emulate a shared Brevio session.
+
+First off, we need to mock the Redis session, which is done by calling the `Brevio::Session::Testing.setup!` function.
+
+```ruby
+Brevio::Session::Testing.setup!(logger: Rails.logger)
+# => '--- 👨‍🔬 Setting up Brevio Session gem for testing 👨‍🔬 ---'
+```
+
+We can then simulate a logged-in user by calling the `Brevio::Session::Testing.brevio_login` function.
+
+```ruby
+class TestCase < ActionDispatch::IntegrationTest
+  include Brevio::Session::Testing
+
+  let(:user) { create(:user) }
+
+  test 'is logged in' do
+    brevio_login(user)
+    get(dashboard_path(user))
+    assert_response(:ok)
+  end
+end
+```
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/brevio-session.gemspec

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+Gem::Specification.new do |spec|
+  spec.name          = 'brevio-session'
+  spec.version       = '0.1'
+  spec.authors       = ['Brevio AS']
+  spec.email         = ['support@brevio.com']
+  spec.files = `git ls-files -z`.split("\0")
+
+  spec.homepage               = 'https://github.com/team-brevio/brevio-session'
+  spec.summary                = 'Brevio session wrapper'
+  spec.required_ruby_version  = '3.2'
+  spec.description            = 'Wrapper around HTTP session set by Brevio ID'
+  spec.license                = 'MIT'
+
+  spec.add_development_dependency 'bundler', '~> 2.1'
+  spec.add_development_dependency 'debug', '~> 1.5.0', '<= 1.6.0'
+  spec.add_development_dependency 'rubocop', '~> 1.35'
+  spec.add_dependency 'actionpack', '~>  7.0.3'
+  spec.add_dependency 'redis', '~>  5.0'
+  spec.add_dependency 'zeitwerk', '~>  2.6.7'
+  spec.metadata['rubygems_mfa_required'] = 'true'
+end

data/lib/brevio/session/config.rb

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+
+module Brevio::Session::Config
+  extend self
+
+  attr_accessor :config
+
+  def configure
+    self.config ||= Configuration.new
+    yield(config)
+  end
+
+  class Configuration
+    attr_accessor(
+      :debug,
+      :encryption_key,
+      :logger,
+      :production,
+      :redis,
+      :session_cookie,
+      :session_expire
+    )
+    alias debug? debug
+    alias production? production
+  end
+
+  module Redis
+    module Prefixes
+      AUDIT_COMPANY = 'brevio-id:audit-company'
+      SESSION       = 'brevio-id:session'
+      USER          = 'brevio-id:user'
+    end
+  end
+end

data/lib/brevio/session/cookies/parse.rb

@@ -0,0 +1,39 @@
+# frozen_string_literal: true
+
+module Brevio::Session
+  module Cookies::Parse
+    extend self
+
+    def perform!(cookie)
+      raise NilSession if cookie.nil?
+      data, iv, auth_tag = cookie.split('--').map { |value| Base64.decode64(value) }
+      cipher = OpenSSL::Cipher.new(CIPHER)
+      secret = OpenSSL::PKCS5.pbkdf2_hmac_sha1(brevio_config.encryption_key,
+                                               SALT, 1000, cipher.key_len)
+
+      cipher.decrypt
+      cipher.key = secret
+      cipher.iv  = iv
+      cipher.auth_tag = auth_tag
+      cipher.auth_data = ''
+
+      cookie_payload = cipher.update(data)
+      cookie_payload << cipher.final
+      cookie_payload = JSON.parse(cookie_payload)
+      key = JSON.parse(Base64.decode64(cookie_payload['_rails']['message']))
+
+      "#{Config::Redis::Prefixes::SESSION}:#{key}"
+    end
+
+    private
+
+    # https://github.com/team-brevio/brevio-id-gem/blob/master/lib/brevio_id/session/cookie_jar.rb#L79
+    CIPHER = 'aes-256-gcm'
+    # https://github.com/team-brevio/brevio-id-gem/blob/master/lib/brevio_id/session/cookie_jar.rb#L84
+    SALT   = 'authenticated encrypted cookie'
+
+    def brevio_config
+      Config.config
+    end
+  end
+end

data/lib/brevio/session/redis.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+module Brevio::Session
+  module Redis
+    extend self
+
+    def get(key)
+      brevio_config.redis.get(key)
+    end
+
+    def expire(key, exp)
+      brevio_config.redis.expire(key, exp)
+    end
+
+    private
+
+    def brevio_config
+      Config.config
+    end
+  end
+end

data/lib/brevio/session/testing.rb

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+
+module Brevio::Session
+  # Module used to enable testing for controllers using the Brevio session.
+  # Mocks a login to a shared redis, with keys generated by the Brevio::Session::CookieJar.
+  #
+  module Testing
+    # Simulates a user with a shared Brevio session. We can specify which *brevio_id* the
+    # mocked ID service should return (as well as a custom last updated_at timestamp).
+    #
+    # The user needs to have the following methods defined: #brevio_id, #audit_company
+    #
+    def brevio_login(user, updated_at: Time.current.yesterday)
+      redis_key = SecureRandom.hex(6)
+
+      session_hash = { user_id: user.brevio_id,
+                       audit_company_id: user.audit_company.brevio_id,
+                       user_stamp: updated_at }
+
+      Testing.config.logger.info "setting Brevio session to #{session_hash}"
+
+      Testing.config.gem_config.redis.set(
+        redis_key,
+        session_hash
+      )
+      set_cookie(redis_key)
+    end
+
+    def brevio_logout
+      cookies[Testing.config.gem_config.session_cookie] = nil
+    end
+
+    # rubocop:disable Naming/AccessorMethodName (set makes sense here)
+    def set_cookie(value)
+      cookies[Testing.config.gem_config.session_cookie] = value
+    end
+    # rubocop:enable Naming/AccessorMethodName
+
+    extend self
+
+    attr_accessor :sessions, :config
+
+    def setup!(logger:)
+      self.config = Config.new
+      config.logger = logger
+      config.gem_config = Brevio::Session::Config.config
+      config.logger.info '--- 👨‍🔬 Setting up Brevio Session gem for testing 👨‍🔬 ---'
+
+      # Ensures we return a mocked value of the session, rather than something which depends on
+      # the cryptographically signed value.
+      #
+      Brevio::Session::Cookies::Parse.send(:define_method, :perform!) do |cookie|
+        raise NilSession if cookie.nil?
+        cookie
+      end
+    end
+
+    class Config
+      attr_accessor :logger, :gem_config
+    end
+  end
+end

data/lib/brevio/session.rb

@@ -0,0 +1,98 @@
+# frozen_string_literal: true
+
+require 'active_support/concern'
+
+module Brevio::Session
+  extend ActiveSupport::Concern
+
+  # By including this module into a Rails controller you will have access to the convenience methods
+  # fetch_brevio_session(!) and brevio_logged_in? which acts as a wrapper around the decrypting of
+  # predefined session cookies and sessions stored in Redis.
+  #
+  # We also require access to instance attributes like #request and the cookie jar, which are only
+  # available in the context of a controller.
+  #
+  included do
+    raise 'Included Brevio::Session outside of controller' unless self <= ActionController::Base
+  end
+
+  # Fetches the Brevio session from Redis, based on the encrypted key stored in the client's cookie.
+  # Returns *nil* if there's no session present.
+  #
+  def fetch_brevio_session
+    brevio_session, redis_key = fetch_session
+    return nil if brevio_session.nil?
+    if brevio_config.debug?
+      brevio_config.logger.info "[brevio-session] Found session #{brevio_session.inspect}"
+    end
+    refresh_session(redis_key) unless params.transform_keys(&:underscore)[:no_session].present?
+    brevio_session
+  rescue RuntimeError => e
+    brevio_config.logger.error "[brevio-session] #{e.message}"
+    nil
+  end
+
+  # Calls the above function, but raises an exception if the session isn't present.
+  def fetch_brevio_session!
+    brevio_session, redis_key = fetch_session
+    raise NilSession, 'Brevio session was nil' if brevio_session.nil?
+    refresh_session(redis_key) unless params.transform_keys(&:underscore)[:no_session].present?
+    brevio_session
+  end
+
+  # Returns a boolean flag indicating whether the current client has a Brevio session cookie set,
+  # and whether this cookie contains a user ID.
+  #
+  def brevio_logged_in?
+    fetch_session&.dig(:user_id).present?
+  end
+
+  private
+
+  def brevio_config
+    Config.config
+  end
+
+  def fetch_session
+    brevio_config.logger.info '[brevio-session] Fetching Brevio session'
+    cookie = request.cookie_jar[brevio_config.session_cookie]
+    redis_key = Cookies::Parse.perform!(cookie)
+    brevio_session = Redis.get(redis_key)
+    raise NilSession if brevio_session.nil?
+    [brevio_session.with_indifferent_access, redis_key]
+  rescue RuntimeError => e
+    brevio_config.logger.error "[brevio-session] --- 💣 Couldn't fetch Brevio session 💣 ---"
+    brevio_config.logger.error "[brevio-session] #{e.message}"
+    nil
+  end
+
+  # Refreshes the Brevio session cookie, avoding its expiry. This is helpful to
+  # ensure the user stays logged in through interacting with the application.
+  #
+  def refresh_session(redis_key)
+    brevio_config.logger.info '[brevio-session] Refreshing Brevio session' if brevio_config.debug?
+    cookies[brevio_config.session_cookie] = {
+      value: request.cookie_jar[brevio_config.session_cookie],
+      domain: :all,
+      expires: brevio_config.session_expire,
+      httponly: true,
+      secure: true
+    }
+    Redis.expire(redis_key, brevio_config.session_expire)
+  rescue RuntimeError => e
+    brevio_config.logger.error "[brevio-session] --- 💣 Couldn't refresh Brevio session 💣 ---"
+    brevio_config.logger.error "[brevio-session] #{e.message}"
+  end
+
+  class << self
+    # Function used to fetch the current audit company session for a given Brevio ID.
+    # This session contains information about an audit company shared by any number of
+    # users. If the audit company has been updated in ID (e.g. changed logo or name), the
+    # database record of the local service (e.g. Confirm/Sign) will fetch the updates if
+    # the timestamp in this session is greater than their own local timestamps.
+    #
+    def audit_company_updated_at(brevio_id)
+      Config.config.redis.get("#{Config::Redis::Prefixes::AUDIT_COMPANY}:#{brevio_id}")
+    end
+  end
+end

data/lib/brevio-session.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+# This file exists so we can do require 'brevio-session'
+# See:
+# https://github.com/rest-client/rest-client/blob/master/lib/rest_client.rb
+require "#{File.dirname(__FILE__)}/brevio_session"
+

data/lib/brevio_session.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+require 'zeitwerk'
+
+# Silences warnings for auto-defined constants, e.g. "Brevio" in this case due to having a "Brevio" folder
+Zeitwerk::Loader.for_gem(warn_on_extra_files: false)
+
+loader = Zeitwerk::Loader.for_gem
+loader.ignore("#{__dir__}/brevio-session.rb")
+loader.setup # ready!
+
+require 'action_dispatch'
+
+module Brevio::Session
+  class NilSession < StandardError; end
+end

data/test/brevio_session_integration_test.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+require 'test_helper'
+
+class BrevioSessionIntegrationTest < Minitest::Test
+  include Rack::Test::Methods
+  include Brevio::Session::Testing
+
+  def brevio_redis
+    Brevio::Session::Config.config.redis
+  end
+
+  def user
+    UserStub.new(brevio_id: 1)
+  end
+
+  def test_sets_brevio_session_in_redis
+    session = brevio_login(user)
+    get '/', nil, cookie: "brevio_session=#{session}"
+    assert last_response.ok?
+    assert current_session.cookie_jar['brevio_session']
+    assert_equal user.brevio_id, brevio_redis.get("brevio-id:session:#{session}")[:user_id]
+    json_body = JSON.parse(last_response.body)
+    assert_equal user.brevio_id, json_body['user_id']
+  end
+
+  def test_user_stamp
+    time = Time.current
+    session = brevio_login(user, updated_at: time)
+    get '/', nil, cookie: "brevio_session=#{session}"
+    assert last_response.ok?
+    json_body = JSON.parse(last_response.body)
+    # ceil ceils the subsecond to a default decimal (0) by default. We don't really care about
+    # microsecond precision here during the JSON parsing/dumping
+    assert_equal time.ceil, Time.parse(json_body['user_stamp']).ceil
+  end
+
+end

data/test/redis_json_wrapper.rb

@@ -0,0 +1,39 @@
+# frozen_string_literal: true
+
+# Brevio ID stores its session using redis-session-store, which stores all values as JSON.
+# The returned value is a JSON string, which needs to be parsed by the redis client. The native
+# Redis.get would simply return the JSON string, so we need to wrap it.
+#
+# The services consuming the Brevio::Session (e.g. Confirm/Sign) already assume the values
+# in Redis are all JSON (see domain/brevio/redis/client.rb).
+#
+#
+class RedisJSONWrapper
+  def set(key, value)
+    redis.set(key, value.to_json)
+  end
+
+  def get(key)
+    raw = redis.get(key)
+    return nil if raw.nil?
+
+    value = JSON.parse(raw)
+    return value if value.empty?
+
+    value.with_indifferent_access
+  end
+
+  def del(keys)
+    redis.del(keys)
+  end
+
+  def expire(key, expiry)
+    redis.expire(key, expiry)
+  end
+
+  private
+
+  def redis
+    @redis ||= ::Redis.new
+  end
+end

data/test/stubs.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+class UserStub
+  attr_accessor :brevio_id, :audit_company
+
+  def initialize(attrs)
+    @brevio_id = attrs[:brevio_id]
+    @audit_company = AuditCompanyStub.new(brevio_id: @brevio_id + 1)
+  end
+end
+
+class AuditCompanyStub
+  attr_accessor :brevio_id
+
+  def initialize(attrs)
+    @brevio_id = attrs[:brevio_id]
+  end
+end

data/test/test_app.rb

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+# Based on https://github.com/rails/rails/blob/6-0-stable/guides/bug_report_templates/action_controller_master.rb
+
+require 'action_controller/railtie'
+require 'rack/test'
+require 'brevio-session'
+
+class TestApp < Rails::Application
+  config.root = __dir__
+  config.hosts << 'example.org'
+  config.session_store :cookie_store, key: 'brevio_session'
+  secrets.secret_key_base = 'secret_key_base'
+
+  config.logger     = Logger.new($stdout)
+  config.log_level  = :info
+  Rails.logger      = config.logger
+
+  routes.draw do
+    get '/' => 'test#index'
+  end
+end
+
+class TestController < ActionController::Base
+  include Brevio::Session
+  include Rails.application.routes.url_helpers
+
+  def logger
+    Rails.logger
+  end
+
+  def index
+    brevio_session = fetch_brevio_session
+    render json: brevio_session.to_json
+  end
+end

data/test/test_helper.rb

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+require 'minitest/autorun'
+require 'rack/test'
+
+require 'debug'
+require 'fakeredis'
+require 'priscilla'
+require 'brevio-session'
+require 'brevio_session/testing'
+
+require 'redis_json_wrapper'
+require 'stubs'
+require 'test_app'
+
+Brevio::Session::Config.configure do |config|
+  config.debug          = true
+  config.production     = false
+  config.redis          = RedisJSONWrapper.new
+  config.secret_key     = 'secret_key_base'
+  config.session_cookie = 'brevio_session'
+  config.session_expire = 45.minutes
+end
+
+Brevio::Session::Testing.setup!(logger: Rails.logger)
+
+module Minitest
+  class Test
+    include Rack::Test::Methods
+    include TestApp.routes.url_helpers
+
+    def app
+      TestApp
+    end
+  end
+end

metadata

@@ -0,0 +1,154 @@
+--- !ruby/object:Gem::Specification
+name: brevio-session
+version: !ruby/object:Gem::Version
+  version: '0.1'
+platform: ruby
+authors:
+- Brevio AS
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2023-04-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.1'
+- !ruby/object:Gem::Dependency
+  name: debug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.5.0
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: 1.6.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.5.0
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: 1.6.0
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.35'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.35'
+- !ruby/object:Gem::Dependency
+  name: actionpack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 7.0.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 7.0.3
+- !ruby/object:Gem::Dependency
+  name: redis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: zeitwerk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.7
+description: Wrapper around HTTP session set by Brevio ID
+email:
+- support@brevio.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rubocop.yml"
+- ".ruby-version"
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- brevio-session.gemspec
+- lib/brevio-session.rb
+- lib/brevio/session.rb
+- lib/brevio/session/config.rb
+- lib/brevio/session/cookies/parse.rb
+- lib/brevio/session/redis.rb
+- lib/brevio/session/testing.rb
+- lib/brevio_session.rb
+- test/brevio_session_integration_test.rb
+- test/redis_json_wrapper.rb
+- test/stubs.rb
+- test/test_app.rb
+- test/test_helper.rb
+homepage: https://github.com/team-brevio/brevio-session
+licenses:
+- MIT
+metadata:
+  rubygems_mfa_required: 'true'
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '='
+    - !ruby/object:Gem::Version
+      version: '3.2'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.4.1
+signing_key:
+specification_version: 4
+summary: Brevio session wrapper
+test_files: []