bundler_audit_notifier 0.0.3 → 0.0.8
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/app/controllers/bundler_audit_issues_controller.rb +18 -0
- data/app/views/bundler_audit_issues_mailer/vulnerability_email.html.erb +1 -1
- data/lib/bundler_audit_notifier.rb +1 -0
- data/lib/generators/bundler_audit_notifier/bundler_audit_notifier_generator.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 459ffda5725eef00038a050640aec90b2be3c784e4768b82fa80c8b767839889
|
4
|
+
data.tar.gz: aa07a50baae00da87df16f6996e54ed5d4bf13a6d4e36dbccb59122194cb184f
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3794240d3224bfc795d797226dce784b051265668e79c86f9c66f54436cf63500068b24dddf9e0c708a1186ad8d517b555b5a7325c92a7e47d91cf730f5155e5
|
7
|
+
data.tar.gz: 698e7fc2cc5ecbbb4b689cca13df44b09e9fe21970825fa9e935886bf0a2e4227368a4cc5c7b5bc54c8ae41614b2b0c69a9d74cbf2d8a758d6b9f0f0df0c2848
|
@@ -1,13 +1,31 @@
|
|
1
1
|
class BundlerAuditIssuesController < ActionController::Base
|
2
|
+
before_action :authenticate, only: [:ignore]
|
3
|
+
|
2
4
|
def ignore
|
3
5
|
@bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
|
4
6
|
@bundler_audit_issue.ignore = true
|
7
|
+
@bundler_audit_issue.token = nil
|
5
8
|
if @bundler_audit_issue.save!
|
6
9
|
render :ignore
|
7
10
|
end
|
8
11
|
end
|
12
|
+
|
9
13
|
private
|
10
14
|
|
15
|
+
def authenticate
|
16
|
+
if params[:token].present?
|
17
|
+
bundler_audit_issue = BundlerAuditIssue.where(token: params[:token]).first
|
18
|
+
if bundler_audit_issue
|
19
|
+
::Rails.logger.info("Authorized accesss to api for bundler audit issue: #{params[:token]}")
|
20
|
+
return true
|
21
|
+
else
|
22
|
+
::Rails.logger.warn("Unauthorized accesss to api for bundler audit issue: #{params[:token]}")
|
23
|
+
head :unauthorized
|
24
|
+
return false
|
25
|
+
end
|
26
|
+
end
|
27
|
+
end
|
28
|
+
|
11
29
|
def bundler_audit_issue_params
|
12
30
|
params.require(:bundler_audit_issue).permit(:name, :version, :advisory, :token, :criticality, :url, :title, :solution, :ignore)
|
13
31
|
end
|
@@ -1,4 +1,4 @@
|
|
1
|
-
# Run this command to generate migration: rails generate bundler_audit_notifier
|
1
|
+
# Run this command to generate migration: rails generate bundler_audit_notifier:bundler_audit_notifier
|
2
2
|
require "rails/generators/active_record"
|
3
3
|
require "rails/generators"
|
4
4
|
module BundlerAuditNotifier
|