castle-rb 1.0.5 → 1.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +18 -0
  3. data/lib/castle.rb +4 -0
  4. data/lib/castle/version.rb +1 -1
  5. metadata +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: a5cc61c1968c76886ed79bcfdb8bcbe7a0b2e461
4
- data.tar.gz: 61e68682c3a8189955c1ccd58eba566d07adc568
3
+ metadata.gz: da65c9def9b0ff8c49dc58216030b24656a4c73c
4
+ data.tar.gz: 7c8dacb82d986baf51a16adac10dc6cc86d3a909
5
5
  SHA512:
6
- metadata.gz: f393006a3b3ad7826dd76dafd12a66f6f1999fc8f3f4e0de18cf71a10917d5c30a39a3d8c2a9397ee2445d448cf2705ad7f25c23ebfd00005a1383f1ff9f4a78
7
- data.tar.gz: 1da76b1851dd486d928f02f96a0201dd314e55bd8ff610548c0019cd4d0b96deb723c65e73dad24eacef07528726239d98c4a951b0418fb1f5146bcf0ec656be
6
+ metadata.gz: 17364b5ee431f2b715708b19e495c96bcea331cc0c8b537aa0ad819d7ac71d746777f88555026772b2c4d107dc8c930912badf5733a3576fbdad9c3baa459d23
7
+ data.tar.gz: 8b1abb0fbee5840e9f8fb8e3a9b5cef3e1b217e2c2bc817e3e215d7aa73237f64eb57b9e375cada367672312b876b9c81e83b4696b2fb1d93b510d0af1295a7c
data/README.md CHANGED
@@ -64,6 +64,24 @@ castle.track(
64
64
 
65
65
  - `$login`: The submitted email or username from when the user attempted to log in or reset their password. Useful when there is no `user_id` available.
66
66
 
67
+ ## Secure mode
68
+
69
+ Avoid client-side spoofing by having your backend sign the user data with `secure_encode`.
70
+
71
+ ```erb
72
+ _castle('setUser', '<%= Castle.secure_encode({
73
+ id: current_user.id,
74
+ email: current_user.email }) %>');
75
+ ```
76
+
77
+ This will use your API Secret to encode the data into [JWT](http://jwt.io) format, for example:
78
+
79
+ ```javascript
80
+ _castle('setUser', 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1...y4PCIXrz1Ejs');
81
+ ```
82
+
83
+ **Important:** Make sure you enable **Secure mode** in the [Castle dashboard](https://dashboard.castle.io/settings/general).
84
+
67
85
  ## Configuration
68
86
 
69
87
  ```ruby
data/lib/castle.rb CHANGED
@@ -30,6 +30,10 @@ end
30
30
 
31
31
  module Castle
32
32
  API = Castle.setup_api
33
+
34
+ def self.secure_encode(properties = {})
35
+ ::JWT.encode(properties, Castle.config.api_secret)
36
+ end
33
37
  end
34
38
 
35
39
  # These need to be required after setting up Her
data/lib/castle/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Castle
2
- VERSION = "1.0.5"
2
+ VERSION = "1.0.6"
3
3
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: castle-rb
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.5
4
+ version: 1.0.6
5
5
  platform: ruby
6
6
  authors:
7
7
  - Johan