capcoauth 0.2.3 → 0.3.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/lib/capcoauth/config.rb +5 -0
  3. data/lib/capcoauth/oauth/token_verifier.rb +18 -3
  4. data/lib/capcoauth/rails/helpers.rb +12 -2
  5. data/lib/capcoauth/version.rb +1 -1
  6. data/lib/generators/capcoauth/templates/initializer.rb +9 -0
  7. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 95d9e9c324526ffa34995e6d9725d10aabefbdfd
4
- data.tar.gz: bd77a5ce3fff62a79c5d1503b709279992f255ec
3
+ metadata.gz: 4d01caf13b1d26c506dc0cb1024079306f7f1bbc
4
+ data.tar.gz: eae8b93664bc2d3a92732cb041930bcdbdda2e8d
5
5
  SHA512:
6
- metadata.gz: 461d2c47ca66020cad3818c948939a539988e88b551951434b31399b0eb4aca2d5a7ac091d411d5039cb0b94beef87a6c10e060b0f6adbb5a991b64eb70800e4
7
- data.tar.gz: e3a038b04a75bd2c556d6bdf67629034bc8e2851f966b218fb0dfcc62962bd02265f2736d6c09bdf328a90866be7735b9660395919d7e87d7082084da5d72fa6
6
+ metadata.gz: 17a98e7286027a3a03c957b0b1635db8924db933e8ed688efe176266ca77dab3378d6fb58df220d88a4882f9ffcc3c7966b33b5b1fb7a9216c0323547ae2a352
7
+ data.tar.gz: 9c70e143373d22799b4fc1c8b27b2b6567bc5a472392a55a751ae1e88e6809836cf989c1bf7baa716d5c3fbee175a9e2d0e7af2994a7e4c8e5dba3e93904e9eb
data/lib/capcoauth/config.rb CHANGED
@@ -74,5 +74,10 @@ module Capcoauth
74
74
 
75
75
  option :token_verify_ttl, default: 10
76
76
  option :capcoauth_url, default: 'https://capcoauth.capco.com'
77
+ option :user_id_field, default: :capcoauth
78
+ option :user_resolver, default: (lambda do |capcoauth_user_id|
79
+ Capcoauth.configuration.logger.warn('[CapcOAuth] User resolver is not configured. Please specify a block in configuration to resolve the proper user')
80
+ nil
81
+ end)
77
82
  end
78
83
  end
data/lib/capcoauth/oauth/token_verifier.rb CHANGED
@@ -20,13 +20,28 @@ module Capcoauth
20
20
 
21
21
  # Set the user_id from the token response
22
22
  if response.code == 200
23
- access_token.user_id = response.parsed_response['resource_owner_id']
23
+
24
+ # Get the proper ID value field from the response
25
+ user_id_field = Capcoauth.configuration.user_id_field
26
+ if user_id_field == :capcoauth
27
+ access_token.user_id = response.parsed_response['resource_owner_id']
28
+ else
29
+ access_token.user_id = response.parsed_response['external_ids'][user_id_field.to_s]
30
+ end
31
+
32
+ # Throw unauthorized if ID of specified type doesn't exist
33
+ unless access_token.user_id
34
+ logger.info("CapcOAuth: The access token for #{user_id_field} user ##{access_token.user_id} did not have an ID for type `#{user_id_field}`") unless logger.nil?
35
+ raise UnauthorizedError
36
+ end
37
+
38
+ # Verify token is for correct application/client
24
39
  if response.parsed_response.fetch('application', {}).fetch('uid', nil) === Capcoauth.configuration.client_id
25
- logger.info("CapcOAuth: The access token for user ##{access_token.user_id} was verified successfully") unless logger.nil?
40
+ logger.info("CapcOAuth: The access token for #{user_id_field} user ##{access_token.user_id} was verified successfully") unless logger.nil?
26
41
  TTLCache.update(access_token.token, access_token.user_id)
27
42
  access_token
28
43
  else
29
- logger.info("CapcOAuth: The access token for user ##{access_token.user_id} was valid, but for a different OAuth client ID") unless logger.nil?
44
+ logger.info("CapcOAuth: The access token for #{user_id_field} user ##{access_token.user_id} was valid, but for a different OAuth client ID") unless logger.nil?
30
45
  raise UnauthorizedError
31
46
  end
32
47
  elsif response.code == 401
data/lib/capcoauth/rails/helpers.rb CHANGED
@@ -12,7 +12,7 @@ module Capcoauth
12
12
  session.delete(:previous_url)
13
13
  end
14
14
 
15
- @current_user_id ||= capcoauth_token.user_id
15
+ @capcoauth_user_id ||= capcoauth_token.user_id
16
16
  rescue OAuth::TokenVerifier::UnauthorizedError
17
17
  if handle_sessions?
18
18
  session[:previous_url] = request.url
@@ -30,7 +30,17 @@ module Capcoauth
30
30
 
31
31
  def current_user
32
32
  verify_authorized!
33
- @current_user ||= User.find_by_id @current_user_id
33
+
34
+ # Resolve user ID using configuration resolver unless already found
35
+ unless @current_user
36
+ begin
37
+ @current_user = Capcoauth.configuration.user_resolver.call(@capcoauth_user_id)
38
+ rescue ActiveRecord::RecordNotFound => e
39
+ Capcoauth.configuration.logger.warn "[CapcOAuth] Error looking up user - #{e.message}"
40
+ end
41
+ end
42
+
43
+ @current_user
34
44
  end
35
45
 
36
46
  protected
data/lib/capcoauth/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Capcoauth
2
- VERSION = '0.2.3'
2
+ VERSION = '0.3.0'
3
3
  end
data/lib/generators/capcoauth/templates/initializer.rb CHANGED
@@ -18,4 +18,13 @@ Capcoauth.configure do |config|
18
18
 
19
19
  # Configure the logger to use for OAuth events
20
20
  config.logger Rails.logger
21
+
22
+ # Configure which ID to identify the user by. Valid options are :capcoauth, :capco (4-letter), :psoft, :e_number, and :cit
23
+ # config.user_id_field :capcoauth
24
+
25
+ # Block to resolve your user from the provided CapcOAuth ID. If you're using different primary keys than any of the
26
+ # existing services, you might consider looking up by an external ID, e.g. `User.find_by_psoft_id! capcoauth_user_id`
27
+ config.user_resolver do |capcoauth_user_id|
28
+ User.find capcoauth_user_id
29
+ end
21
30
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: capcoauth
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.2.3
4
+ version: 0.3.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Adam Robertson
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2016-09-02 00:00:00.000000000 Z
11
+ date: 2016-10-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: railties