castle-rb 1.1.1 → 1.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 746bd18a03497a62f707772ea478816011e590f0
-  data.tar.gz: bce6362eb4c5db47f08b5294af0fbf472b9b20d2
+  metadata.gz: 640bc0f13f0393b62ee5de5d1f47e43b9932f513
+  data.tar.gz: 47c64d6658e5b6f9674c5efde4a071391b6d3116
 SHA512:
-  metadata.gz: 008277ce9a2c0d07c19c1920b2e97013c17fd40b4af40f1d4c325d46d39bccc4975b8c1b1a11a895084ec9a45ff9df9d23d0b9c17f59457db3fc32e342f6bf1c
-  data.tar.gz: b68d88ec6d2fdeb8f44db528c9b56b509c1eac4707790932c993ba255d8018c0fd090d5d1335d2fe6d897c197e0b00cd9acb3fafa48e019c7dbc176ef5f9f8fa
+  metadata.gz: 947c9f2e92959262be33039e4de4c91f5a14b9da7c0f7488d090dadbd4fadfedf235ca96cd1954724d3f1ef0800a324a704ad0310bef95acc036598010f0eee2
+  data.tar.gz: 5cbea1e70be0616b133011aa5a77acc2b44962074eda994edf56457c62430c165ff452fd3dc3120e57cef637e87389df9542c1074fc3e0260497fd64b138fb2a

data/lib/castle-rb/client.rb

@@ -3,144 +3,36 @@ module Castle
 
     attr_accessor :request_context
 
-    def self.install_proxy_methods(*names)
-      names.each do |name|
-        class_eval <<-RUBY, __FILE__, __LINE__ + 1
-          def #{name}(*args)
-            Castle::User.new('$current').#{name}(*args)
-          end
-        RUBY
-      end
-    end
-
-    install_proxy_methods :challenges, :events, :sessions, :pairings,
-      :backup_codes, :generate_backup_codes, :trusted_devices,
-      :enable_mfa!, :disable_mfa!
-
     def initialize(request, response, opts = {})
       # Save a reference in the per-request store so that the request
       # middleware in request.rb can access it
       RequestStore.store[:castle] = self
 
-      if response.class.name == 'ActionDispatch::Cookies::CookieJar'
-        cookies = Castle::CookieStore::Rack.new(response)
-      else
-        cookies = Castle::CookieStore::Base.new(request, response)
-      end
-
-      @store = Castle::TokenStore.new(cookies)
-
       @request_context = {
         ip: request.ip,
         user_agent: request.user_agent,
-        cookie_id: cookies['__cid'] || '',
+        cookie_id: extract_cookies(request, response)['__cid'] || '',
         headers: header_string(request)
       }
     end
 
-    def session_token
-      @store.session_token
-    end
-
-    def session_token=(session_token)
-      @store.session_token = session_token
-    end
-
-    def authorize!
-      unless @store.session_token
-        raise Castle::UserUnauthorizedError,
-          'Need to call login before authorize'
-      end
-
-      if @store.session_token.expired?
-        Castle::Monitoring.heartbeat
-      end
-
-      if mfa_in_progress?
-        logout
-        raise Castle::UserUnauthorizedError,
-            'Logged out due to being unverified'
-      end
-
-      if mfa_required? && !device_trusted?
-        raise Castle::ChallengeRequiredError
-      end
-    end
-
-    def authorized?
-      !!@store.session_token
-    end
-
-    def login(user_id, user_attrs = {})
-      # Clear the session token if any
-      @store.session_token = nil
-
-      user = Castle::User.new(user_id.to_s)
-      session = user.sessions.create(
-        user: user_attrs, trusted_device_token: @store.trusted_device_token)
-
-      # Set the session token for use in all subsequent requests
-      @store.session_token = session.token
-
-      session
+    def track(opts = {})
+      # Castle::Event.post('/v1/events', opts)
+      Castle::Event.create(opts)
     end
 
-    def logout
-      return unless @store.session_token
-
-      # Destroy the current session specified in the session token
-      begin
-        sessions.destroy('$current')
-      rescue Castle::ApiError # ignored
-      end
-
-      # Clear the session token
-      @store.session_token = nil
-    end
+    private
 
-    def trust_device(attrs = {})
-      unless @store.session_token
-        raise Castle::UserUnauthorizedError,
-          'Need to call login before trusting device'
+    def extract_cookies(request, response)
+      # Extract the cookie set by the Castle Javascript
+      if response.class.name == 'ActionDispatch::Cookies::CookieJar'
+        Castle::CookieStore::Rack.new(response)
+      else
+        Castle::CookieStore::Base.new(request, response)
       end
-      trusted_device = trusted_devices.create(attrs)
-
-      # Set the session token for use in all subsequent requests
-      @store.trusted_device_token = trusted_device.token
-    end
-
-    def mfa_enabled?
-      @store.session_token ? @store.session_token.mfa_enabled? : false
     end
 
-    def device_trusted?
-      @store.session_token ? @store.session_token.device_trusted? : false
-    end
-
-    def mfa_in_progress?
-      @store.session_token ? @store.session_token.mfa_in_progress? : false
-    end
-
-    def mfa_required?
-      @store.session_token ? @store.session_token.mfa_required? : false
-    end
-
-    def has_default_pairing?
-      @store.session_token ? @store.session_token.has_default_pairing? : false
-    end
-
-    def track(opts = {})
-      Castle::Event.post('/v1/events', opts)
-    end
-
-    def recommendation(opts = {})
-      Castle::Recommendation.get('/v1/recommendation', opts)
-    end
-
-    alias_method :recommend, :recommendation
-
-    private
-
+    # Serialize HTTP headers
     def header_string(request)
       scrub_headers = ['Cookie']
 

data/lib/castle-rb/errors.rb

@@ -13,4 +13,3 @@ class Castle::UserUnauthorizedError < Castle::ApiError; end
 class Castle::InvalidParametersError < Castle::ApiError; end
 
 class Castle::UnauthorizedError < Castle::ApiError; end
-class Castle::ChallengeRequiredError < Castle::ApiError; end

data/lib/castle-rb/ext/her.rb

@@ -1,5 +1,5 @@
 #
-# Add destroy to association: user.challenges.destroy(id)
+# Add destroy to association: user.events.destroy(id)
 #
 module Her::Model::Associations
   class AssociationProxy

data/lib/castle-rb/models/event.rb

@@ -1,7 +1,5 @@
 module Castle
   class Event < Model
-    collection_path "users/:user_id/events"
-    belongs_to :user
     has_one :context
   end
 end

data/lib/castle-rb/models/model.rb

@@ -28,15 +28,6 @@ module Castle
       attrs
     end
 
-    # Remove the auto-generated embedded User model to prevent recursion
-    def to_json
-      attrs = attributes
-      if attrs['user'] && attrs['user']['id'] == '$current'
-        attrs.delete 'user'
-      end
-      attrs.to_json
-    end
-
     METHODS.each do |method|
       class_eval <<-RUBY, __FILE__, __LINE__ + 1
         def self.instance_#{method}(action)
@@ -47,7 +38,7 @@ module Castle
 
     def self.instance_custom(method, action)
       #
-      # Add method calls to association: user.challenges.verify(id, attributes)
+      # Add method calls to association: user.events.some_method(id, attributes)
       #
       AssociationProxy.class_eval <<-RUBY, __FILE__, __LINE__ + 1
         install_proxy_methods :association, :#{action}
@@ -59,7 +50,7 @@ module Castle
       RUBY
 
       #
-      # Add method call to instance: user.enable_mfa
+      # Add method call to instance: user.enable_something
       #
       class_eval <<-RUBY, __FILE__, __LINE__ + 1
         def #{action}(params={})

data/lib/castle-rb/models/user.rb

@@ -1,20 +1,4 @@
 module Castle
   class User < Model
-    instance_post :enable_mfa!
-    instance_post :disable_mfa!
-
-    has_many :challenges
-    has_many :events
-    has_many :pairings
-    has_many :sessions
-    has_many :trusted_devices
-
-    def backup_codes(params={})
-      Castle::BackupCodes.get("/v1/users/#{id}/backup_codes", params)
-    end
-
-    def generate_backup_codes(params={})
-      Castle::BackupCodes.post("/v1/users/#{id}/backup_codes", params)
-    end
   end
 end

data/lib/castle-rb/request.rb

@@ -73,31 +73,6 @@ module Castle
         end
       end
 
-      # Sends the active session token in a header, and extracts the returned
-      # session token and sets it locally.
-      #
-      class SessionToken < Faraday::Middleware
-        def call(env)
-          castle = RequestStore.store[:castle]
-          return @app.call(env) unless castle
-
-          # get the session token from our local store
-          if castle.session_token
-            env[:request_headers]['X-Castle-Session-Token'] =
-              castle.session_token.to_s
-          end
-
-          # call the API
-          response = @app.call(env)
-
-          # update the local store with the updated session token
-          token = response.env.response_headers['X-Castle-set-session-token']
-          castle.session_token = token if token
-
-          response
-        end
-      end
-
       # Adds request context like IP address and user agent to any request.
       #
       class ContextHeaders < Faraday::Middleware

data/lib/castle-rb/utils.rb

@@ -12,7 +12,6 @@ module Castle
         c.use Castle::Request::Middleware::RequestErrorHandler
         c.use Castle::Request::Middleware::EnvironmentHeaders
         c.use Castle::Request::Middleware::ContextHeaders
-        c.use Castle::Request::Middleware::SessionToken
         c.use FaradayMiddleware::EncodeJson
         c.use Castle::Request::Middleware::JSONParser
         c.use Faraday::Adapter::NetHttp

data/lib/castle-rb/version.rb

@@ -1,3 +1,3 @@
 module Castle
-  VERSION = "1.1.1"
+  VERSION = "1.2.0"
 end

data/lib/castle-rb.rb

@@ -12,11 +12,9 @@ require 'castle-rb/version'
 require 'castle-rb/configuration'
 require 'castle-rb/client'
 require 'castle-rb/errors'
-require 'castle-rb/token_store'
 require 'castle-rb/jwt'
 require 'castle-rb/utils'
 require 'castle-rb/request'
-require 'castle-rb/session_token'
 
 require 'castle-rb/support/cookie_store'
 require 'castle-rb/support/rails' if defined?(Rails::Railtie)
@@ -40,12 +38,5 @@ end
 require 'castle-rb/models/model'
 require 'castle-rb/models/account'
 require 'castle-rb/models/event'
-require 'castle-rb/models/challenge'
 require 'castle-rb/models/context'
-require 'castle-rb/models/monitoring'
-require 'castle-rb/models/pairing'
-require 'castle-rb/models/backup_codes'
-require 'castle-rb/models/recommendation'
-require 'castle-rb/models/session'
-require 'castle-rb/models/trusted_device'
 require 'castle-rb/models/user'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: castle-rb
 version: !ruby/object:Gem::Version
-  version: 1.1.1
+  version: 1.2.0
 platform: ruby
 authors:
-- Johan
+- Johan Brissmyr
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-06-17 00:00:00.000000000 Z
+date: 2015-06-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: her
@@ -193,43 +193,21 @@ files:
 - lib/castle-rb/ext/her.rb
 - lib/castle-rb/jwt.rb
 - lib/castle-rb/models/account.rb
-- lib/castle-rb/models/backup_codes.rb
-- lib/castle-rb/models/challenge.rb
 - lib/castle-rb/models/context.rb
 - lib/castle-rb/models/event.rb
 - lib/castle-rb/models/model.rb
-- lib/castle-rb/models/monitoring.rb
-- lib/castle-rb/models/pairing.rb
-- lib/castle-rb/models/recommendation.rb
-- lib/castle-rb/models/session.rb
-- lib/castle-rb/models/trusted_device.rb
 - lib/castle-rb/models/user.rb
 - lib/castle-rb/request.rb
-- lib/castle-rb/session_store.rb
-- lib/castle-rb/session_token.rb
 - lib/castle-rb/support/cookie_store.rb
 - lib/castle-rb/support/padrino.rb
 - lib/castle-rb/support/rails.rb
 - lib/castle-rb/support/sinatra.rb
-- lib/castle-rb/token_store.rb
 - lib/castle-rb/utils.rb
 - lib/castle-rb/version.rb
-- spec/fixtures/vcr_cassettes/challenge_create.yml
-- spec/fixtures/vcr_cassettes/challenge_verify.yml
-- spec/fixtures/vcr_cassettes/session_create.yml
-- spec/fixtures/vcr_cassettes/session_refresh.yml
-- spec/fixtures/vcr_cassettes/session_verify.yml
-- spec/fixtures/vcr_cassettes/user_find.yml
-- spec/fixtures/vcr_cassettes/user_find_non_existing.yml
-- spec/fixtures/vcr_cassettes/user_import.yml
-- spec/fixtures/vcr_cassettes/user_update.yml
-- spec/helpers_spec.rb
-- spec/jwt_spec.rb
 - spec/models/challenge_spec.rb
 - spec/models/session_spec.rb
 - spec/models/user_spec.rb
 - spec/spec_helper.rb
-- spec/utils_spec.rb
 homepage: https://castle.io
 licenses:
 - MIT
@@ -255,19 +233,7 @@ signing_key:
 specification_version: 4
 summary: Castle
 test_files:
-- spec/fixtures/vcr_cassettes/challenge_create.yml
-- spec/fixtures/vcr_cassettes/challenge_verify.yml
-- spec/fixtures/vcr_cassettes/session_create.yml
-- spec/fixtures/vcr_cassettes/session_refresh.yml
-- spec/fixtures/vcr_cassettes/session_verify.yml
-- spec/fixtures/vcr_cassettes/user_find.yml
-- spec/fixtures/vcr_cassettes/user_find_non_existing.yml
-- spec/fixtures/vcr_cassettes/user_import.yml
-- spec/fixtures/vcr_cassettes/user_update.yml
-- spec/helpers_spec.rb
-- spec/jwt_spec.rb
 - spec/models/challenge_spec.rb
 - spec/models/session_spec.rb
 - spec/models/user_spec.rb
 - spec/spec_helper.rb
-- spec/utils_spec.rb

data/lib/castle-rb/models/backup_codes.rb

@@ -1,4 +0,0 @@
-module Castle
-  class BackupCodes < Model
-  end
-end

data/lib/castle-rb/models/challenge.rb

@@ -1,7 +0,0 @@
-module Castle
-  class Challenge < Model
-    collection_path "users/:user_id/challenges"
-    has_one :pairing
-    instance_post :verify
-  end
-end

data/lib/castle-rb/models/monitoring.rb

@@ -1,6 +0,0 @@
-module Castle
-  class Monitoring < Model
-    collection_path '/v1' # Her doesn't accept the empty string
-    custom_post :heartbeat
-  end
-end

data/lib/castle-rb/models/pairing.rb

@@ -1,11 +0,0 @@
-module Castle
-  class Pairing < Model
-    collection_path "users/:user_id/pairings"
-    instance_post :verify
-    instance_post :set_default!
-    belongs_to :user
-    has_one :config
-  end
-
-  class Config < Model; end
-end

data/lib/castle-rb/models/recommendation.rb

@@ -1,3 +0,0 @@
-module Castle
-  class Recommendation < Model; end
-end

data/lib/castle-rb/models/session.rb

@@ -1,6 +0,0 @@
-module Castle
-  class Session < Model
-    collection_path "users/:user_id/sessions"
-    has_one :context
-  end
-end

data/lib/castle-rb/models/trusted_device.rb

@@ -1,5 +0,0 @@
-module Castle
-  class TrustedDevice < Model
-    collection_path "users/:user_id/trusted_devices"
-  end
-end

data/lib/castle-rb/session_store.rb

@@ -1,35 +0,0 @@
-module Castle
-  class SessionStore
-    class Rack < SessionStore
-      def initialize(session)
-        @session = session
-      end
-
-      def user_id
-        @session['Castleuser_id']
-      end
-
-      def user_id=(value)
-        @session['Castleuser_id'] = value
-      end
-
-      def read
-        @session[key]
-      end
-
-      def write(value)
-        @session[key] = value
-      end
-
-      def destroy
-        @session.delete(key)
-      end
-
-      private
-
-      def key
-        "Castleuser.#{user_id}"
-      end
-    end
-  end
-end

data/lib/castle-rb/session_token.rb

@@ -1,39 +0,0 @@
-require 'jwt'
-
-module Castle
-  class SessionToken
-    def initialize(token)
-      if token
-        @jwt = Castle::JWT.new(token)
-      end
-    end
-
-    def to_s
-      @jwt.to_token
-    end
-
-    def expired?
-      @jwt.expired?
-    end
-
-    def device_trusted?
-      @jwt.payload['tru'] == 1
-    end
-
-    def has_default_pairing?
-      @jwt.payload['dpr'] > 0
-    end
-
-    def mfa_enabled?
-      @jwt.payload['mfa'] == 1
-    end
-
-    def mfa_in_progress?
-      @jwt.payload['chg'] == 1
-    end
-
-    def mfa_required?
-      @jwt.payload['vfy'] > 0
-    end
-  end
-end

data/lib/castle-rb/token_store.rb

@@ -1,30 +0,0 @@
-module Castle
-  class TokenStore
-    def initialize(cookies)
-      @cookies = cookies
-    end
-
-    def session_token
-      token = @cookies['_ubs']
-      Castle::SessionToken.new(token) if token
-    end
-
-    def session_token=(value)
-      @cookies['_ubs'] = value
-
-      if value && value != @cookies['_ubs']
-        @cookies['_ubs']
-      elsif !value
-        @cookies['_ubs'] = nil
-      end
-    end
-
-    def trusted_device_token
-      @cookies['_ubt']
-    end
-
-    def trusted_device_token=(value)
-      @cookies['_ubt'] = value
-    end
-  end
-end

data/spec/fixtures/vcr_cassettes/challenge_create.yml

@@ -1,48 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/users/dTxR68nzuRXT4wrB2HJ4hanYtcaGSz2y/challenges
-    body:
-      encoding: UTF-8
-      string: "{}"
-    headers:
-      User-Agent:
-      - Castle/v1 RubyBindings/1.0.4
-      X-Castle-Client-User-Agent:
-      - '{"bindings_version":"1.0.4","lang":"ruby","lang_version":"2.1.1 p76 (2014-02-24)","platform":"x86_64-darwin13.0","publisher":"castle","uname":"Darwin
-        Johans-MacBook-Pro-2.local 13.2.0 Darwin Kernel Version 13.2.0: Thu Apr 17
-        23:03:13 PDT 2014; root:xnu-2422.100.13~1/RELEASE_X86_64 x86_64"}'
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 201
-      message: 'Created '
-    headers:
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '476'
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"ee1750920e2acc320adbd6826d5299be"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      Server:
-      - WEBrick/1.3.1 (Ruby/2.1.1/2014-02-24)
-      Date:
-      - Sat, 07 Jun 2014 20:42:33 GMT
-      Connection:
-      - Keep-Alive
-    body:
-      encoding: UTF-8
-      string: '{"id":"UWwy5FrWf9DTeoTpJz1LpBp4dPkWZ2Ne","created_at":"2014-06-07T20:42:33Z","channel":{"id":"Ff892rfGx3TwNF33sQUz3S51NsV24w7H","created_at":"2014-06-07T20:25:27Z","primary":true,"type":"token","token":{"id":"VVG3qirUxy8mUSkmzy3QpPcuhLN1JY4r","created_at":"2014-06-07T20:24:39Z","verified":true,"qr_url":"https://chart.googleapis.com/chart?chs=200x200&chld=M|0&cht=qr&chl=otpauth%3A%2F%2Ftotp%2FCastle%3Abrissmyr%40gmail.com%3Fsecret%3Dxulnnls324pajcfn%26issuer%3DCastle"}}}'
-    http_version:
-  recorded_at: Sat, 07 Jun 2014 20:42:33 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/challenge_verify.yml

@@ -1,42 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/challenges/UWwy5FrWf9DTeoTpJz1LpBp4dPkWZ2Ne/verify
-    body:
-      encoding: UTF-8
-      string: '{"response":"000000"}'
-    headers:
-      User-Agent:
-      - Castle/v1 RubyBindings/1.0.4
-      X-Castle-Client-User-Agent:
-      - '{"bindings_version":"1.0.4","lang":"ruby","lang_version":"2.1.1 p76 (2014-02-24)","platform":"x86_64-darwin13.0","publisher":"castle","uname":"Darwin
-        Johans-MacBook-Pro-2.local 13.2.0 Darwin Kernel Version 13.2.0: Thu Apr 17
-        23:03:13 PDT 2014; root:xnu-2422.100.13~1/RELEASE_X86_64 x86_64"}'
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 204
-      message: 'No Content '
-    headers:
-      X-Ua-Compatible:
-      - IE=Edge
-      Cache-Control:
-      - no-cache
-      Server:
-      - WEBrick/1.3.1 (Ruby/2.1.1/2014-02-24)
-      Date:
-      - Sat, 07 Jun 2014 20:52:43 GMT
-      Connection:
-      - Keep-Alive
-    body:
-      encoding: UTF-8
-      string: ''
-    http_version:
-  recorded_at: Sat, 07 Jun 2014 20:52:43 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/session_create.yml

@@ -1,47 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/users/user-2412/sessions
-    body:
-      encoding: UTF-8
-      string: '{"user":{"email":"valid@example.com"}}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 201
-      message: 'Created '
-    headers:
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '716'
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"c323dc2244006efcc5629936b73749ff"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      Server:
-      - WEBrick/1.3.1 (Ruby/2.1.1/2014-02-24)
-      Date:
-      - Wed, 07 May 2014 16:21:05 GMT
-      Connection:
-      - Keep-Alive
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-    body:
-      encoding: UTF-8
-      string: '{"id":"S2odxReZnGqhqxPaQ7V7kNkLoXkGZPFz","token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlzcyI6InVzZXItMjQxMiIsInN1YiI6IlMyb2R4UmVabkdxaHF4UGFRN1Y3a05rTG9Ya0daUEZ6IiwiYXVkIjoiODAwMDAwMDAwMDAwMDAwIiwiZXhwIjoxMzk5NDc5Njc1LCJpYXQiOjEzOTk0Nzk2NjUsImp0aSI6MH0.eyJjaGFsbGVuZ2UiOnsiaWQiOiJUVENqd3VyM3lwbTRUR1ZwWU43cENzTXFxOW9mWEVBSCIsInR5cGUiOiJvdHBfYXV0aGVudGljYXRvciJ9fQ.LT9mUzJEbsizbFxcpMo3zbms0aCDBzfgMbveMGSi1-s","user":{"id":"8Fpmj9asxpq4mwGzx48MP1EQhdWUHDeb","local_id":"user-2412","created_at":"2014-05-07T15:33:58Z","updated_at":"2014-05-07T16:04:56Z","email":"valid@example.com","username":"valid@example.com","name":"New
-        Name","first_name":null,"last_name":null,"image":null,"status":"ACTIVE","mfa_enabled":true}}'
-    http_version:
-  recorded_at: Wed, 07 May 2014 16:21:05 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/session_refresh.yml

@@ -1,47 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/sessions/eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlzcyI6InVzZXItMjQxMiIsInN1YiI6IlMyb2R4UmVabkdxaHF4UGFRN1Y3a05rTG9Ya0daUEZ6IiwiYXVkIjoiODAwMDAwMDAwMDAwMDAwIiwiZXhwIjoxMzk5NDc5Njc1LCJpYXQiOjEzOTk0Nzk2NjUsImp0aSI6MH0.eyJjaGFsbGVuZ2UiOnsiaWQiOiJUVENqd3VyM3lwbTRUR1ZwWU43cENzTXFxOW9mWEVBSCIsInR5cGUiOiJvdHBfYXV0aGVudGljYXRvciJ9fQ.LT9mUzJEbsizbFxcpMo3zbms0aCDBzfgMbveMGSi1-s/refresh
-    body:
-      encoding: UTF-8
-      string: '{"user":{"name":"New Name"}}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 201
-      message: 'Created '
-    headers:
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '716'
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"537ee28e9894002208f8f645f6dd2987"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      Server:
-      - WEBrick/1.3.1 (Ruby/2.1.1/2014-02-24)
-      Date:
-      - Wed, 07 May 2014 16:21:55 GMT
-      Connection:
-      - Keep-Alive
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-    body:
-      encoding: UTF-8
-      string: '{"id":"S2odxReZnGqhqxPaQ7V7kNkLoXkGZPFz","token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlzcyI6InVzZXItMjQxMiIsInN1YiI6IlMyb2R4UmVabkdxaHF4UGFRN1Y3a05rTG9Ya0daUEZ6IiwiYXVkIjoiODAwMDAwMDAwMDAwMDAwIiwiZXhwIjoxMzk5NDc5NzI1LCJpYXQiOjEzOTk0Nzk3MTUsImp0aSI6MX0.eyJjaGFsbGVuZ2UiOnsiaWQiOiJUVENqd3VyM3lwbTRUR1ZwWU43cENzTXFxOW9mWEVBSCIsInR5cGUiOiJvdHBfYXV0aGVudGljYXRvciJ9fQ.2UuUgl8jKkl1lhU0d2nSKmiw-Qzz130A9XJd7-swvv8","user":{"id":"8Fpmj9asxpq4mwGzx48MP1EQhdWUHDeb","local_id":"user-2412","created_at":"2014-05-07T15:33:58Z","updated_at":"2014-05-07T16:21:55Z","email":"valid@example.com","username":"valid@example.com","name":"New
-        Name","first_name":null,"last_name":null,"image":null,"status":"ACTIVE","mfa_enabled":true}}'
-    http_version:
-  recorded_at: Wed, 07 May 2014 16:21:55 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/session_verify.yml

@@ -1,47 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/sessions/eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlzcyI6InVzZXItMjQxMiIsInN1YiI6IlMyb2R4UmVabkdxaHF4UGFRN1Y3a05rTG9Ya0daUEZ6IiwiYXVkIjoiODAwMDAwMDAwMDAwMDAwIiwiZXhwIjoxMzk5NDc5Njc1LCJpYXQiOjEzOTk0Nzk2NjUsImp0aSI6MH0.eyJjaGFsbGVuZ2UiOnsiaWQiOiJUVENqd3VyM3lwbTRUR1ZwWU43cENzTXFxOW9mWEVBSCIsInR5cGUiOiJvdHBfYXV0aGVudGljYXRvciJ9fQ.LT9mUzJEbsizbFxcpMo3zbms0aCDBzfgMbveMGSi1-s/verify
-    body:
-      encoding: UTF-8
-      string: '{"response":"017010"}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 201
-      message: 'Created '
-    headers:
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '609'
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"27b68d405c62c2c4c2a23acafde76b26"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      Server:
-      - WEBrick/1.3.1 (Ruby/2.1.1/2014-02-24)
-      Date:
-      - Wed, 07 May 2014 16:22:55 GMT
-      Connection:
-      - Keep-Alive
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-    body:
-      encoding: UTF-8
-      string: '{"id":"S2odxReZnGqhqxPaQ7V7kNkLoXkGZPFz","token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlzcyI6InVzZXItMjQxMiIsInN1YiI6IlMyb2R4UmVabkdxaHF4UGFRN1Y3a05rTG9Ya0daUEZ6IiwiYXVkIjoiODAwMDAwMDAwMDAwMDAwIiwiZXhwIjoxMzk5NDc5NzI1LCJpYXQiOjEzOTk0Nzk3MTUsImp0aSI6MX0.e30.IRwMbLDd2LqRHB_QZvzG47eTr5vPCBrdWI6xPOPa6x4","user":{"id":"8Fpmj9asxpq4mwGzx48MP1EQhdWUHDeb","local_id":"user-2412","created_at":"2014-05-07T15:33:58Z","updated_at":"2014-05-07T16:21:55Z","email":"valid@example.com","username":"valid@example.com","name":"New
-        Name","first_name":null,"last_name":null,"image":null,"status":"ACTIVE","mfa_enabled":true}}'
-    http_version:
-  recorded_at: Wed, 07 May 2014 16:22:55 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/user_find.yml

@@ -1,44 +0,0 @@
----
-http_interactions:
-- request:
-    method: get
-    uri: https://:secretkey@api.castle.io/v1/users/9RA2j3cYDxt8gefQUduKnxUxRRGy6Rz4
-    body:
-      encoding: US-ASCII
-      string: ''
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - '*/*'
-  response:
-    status:
-      code: 200
-      message: OK
-    headers:
-      Date:
-      - Fri, 18 Apr 2014 23:16:44 GMT
-      Status:
-      - 200 OK
-      Connection:
-      - close
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '328'
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"73f5664d599cfbc71df7850ca66cda3d"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-    body:
-      encoding: UTF-8
-      string: '{"id":"9RA2j3cYDxt8gefQUduKnxUxRRGy6Rz4","created_at":"2014-04-18T13:30:22Z","updated_at":"2014-04-18T13:33:51Z","email":"brissmyr@gmail.com","username":"brissmyr@gmail.com","name":null,"first_name":null,"last_name":null,"image":null,"status":"ACTIVE","email_verification_token":"NhFy8wBYccLsEoL-kAVt","identities":[]}'
-    http_version:
-  recorded_at: Fri, 18 Apr 2014 23:16:44 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/user_find_non_existing.yml

@@ -1,42 +0,0 @@
----
-http_interactions:
-- request:
-    method: get
-    uri: https://:secretkey@api.castle.io/v1/users/non_existing
-    body:
-      encoding: US-ASCII
-      string: ''
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - '*/*'
-  response:
-    status:
-      code: 404
-      message: Not Found
-    headers:
-      Date:
-      - Fri, 18 Apr 2014 23:29:27 GMT
-      Status:
-      - 404 Not Found
-      Connection:
-      - close
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '42'
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-      X-Ua-Compatible:
-      - IE=Edge
-      Cache-Control:
-      - no-cache
-    body:
-      encoding: UTF-8
-      string: '{"type":"not_found","message":"Not found"}'
-    http_version:
-  recorded_at: Fri, 18 Apr 2014 23:29:27 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/user_import.yml

@@ -1,46 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: https://:secretkey@api.castle.io/v1/users/import
-    body:
-      encoding: UTF-8
-      string: '{"users":[{"email":"10@example.com","username":"10"},{"email":"20@example.com","username":"20"}]}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - '*/*'
-  response:
-    status:
-      code: 201
-      message: Created
-    headers:
-      Date:
-      - Thu, 24 Apr 2014 16:19:14 GMT
-      Status:
-      - 201 Created
-      Connection:
-      - close
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '85'
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"e6928187afa7cffb7f793a998b7a1c91"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-    body:
-      encoding: UTF-8
-      string: '[{"id":"fqnvfRSmxa6wqx3c6xmzDqDZrJCvtZ5P"},{"id":"4n9pcvrCSig2iVcZbk7pAMsjngzX9fgv"}]'
-    http_version:
-  recorded_at: Thu, 24 Apr 2014 16:19:14 GMT
-recorded_with: VCR 2.9.0

data/spec/fixtures/vcr_cassettes/user_update.yml

@@ -1,47 +0,0 @@
----
-http_interactions:
-- request:
-    method: put
-    uri: https://:secretkey@api.castle.io/v1/users/AKfwtfrAzdDKp55aty8o14MoudkaS9BL
-    body:
-      encoding: UTF-8
-      string: '{"id":"AKfwtfrAzdDKp55aty8o14MoudkaS9BL","email":"updated@example.com","created_at":"2014-04-27
-        22:10:22 +0200"}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.0
-      Content-Type:
-      - application/json
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - '*/*'
-  response:
-    status:
-      code: 200
-      message: OK
-    headers:
-      Date:
-      - Sun, 27 Apr 2014 20:10:22 GMT
-      Status:
-      - 200 OK
-      Connection:
-      - close
-      Content-Type:
-      - application/json
-      Content-Length:
-      - '252'
-      Set-Cookie:
-      - _ubt=; expires=Thu, 01-Jan-1970 00:00:00 GMT
-      X-Ua-Compatible:
-      - IE=Edge
-      Etag:
-      - '"de56261eb3d3bef170cc8e837af079fd"'
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-    body:
-      encoding: UTF-8
-      string: '{"id":"AKfwtfrAzdDKp55aty8o14MoudkaS9BL","created_at":"2014-04-27T20:10:22Z","updated_at":"2014-04-27T20:10:22Z","email":"updated@example.com","username":"updated@example.com","name":null,"first_name":null,"last_name":null,"image":null,"status":"ACTIVE","identities":[]}'
-    http_version:
-  recorded_at: Sun, 27 Apr 2014 20:10:22 GMT
-recorded_with: VCR 2.9.0

data/spec/helpers_spec.rb

@@ -1,38 +0,0 @@
-require 'spec_helper'
-
-describe 'Castle helpers' do
-  let(:token) { 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlhdCI6MTM5ODIzOTIwMywiZXhwIjoxMzk4MjQyODAzfQ.eyJ1c2VyX2lkIjoiZUF3djVIdGRiU2s4Yk1OWVpvanNZdW13UXlLcFhxS3IifQ.Apa7EmT5T1sOYz4Af0ERTDzcnUvSalailNJbejZ2ddQ' }
-
-  xit 'creates a session' do
-    Castle::Session.should_receive(:post).
-      with("users/user%201234/sessions", user: {email: 'valid@example.com'}).
-      and_return(Castle::Session.new(token: token))
-    Castleauthenticate(nil, 'user 1234', properties: {email: 'valid@example.com'})
-  end
-
-  xit 'refreshes, and does not create a session' do
-    Castle::Session.should_not_receive(:create)
-    Castle::Session.any_instance.should_receive(:refresh).
-      and_return(Castle::Session.new(token: token))
-    opts = {
-      user_id: '1234',
-      properties: {
-        email: 'valid@example.com'
-      },
-      context: {
-        ip: '8.8.8.8',
-        user_agent: 'Mozilla'
-      }
-    }
-    Castleauthenticate(token, opts)
-  end
-
-  xit 'deauthenticates with context' do
-    Castle::Session.should_receive(:destroy_existing)
-
-    jwt = Castle::JWT.new(token)
-    jwt.merge!(context: { ip: '8.8.8.8', user_agent: 'Mozilla' })
-
-    Castledeauthenticate(jwt.to_token)
-  end
-end

data/spec/jwt_spec.rb

@@ -1,67 +0,0 @@
-require 'spec_helper'
-require 'timecop'
-
-describe 'Castle::JWT' do
-  let(:token) { 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImlhdCI6MTM5ODIzOTIwMywiZXhwIjoxMzk4MjQyODAzfQ.eyJ1c2VyX2lkIjoiZUF3djVIdGRiU2s4Yk1OWVpvanNZdW13UXlLcFhxS3IifQ.Apa7EmT5T1sOYz4Af0ERTDzcnUvSalailNJbejZ2ddQ' }
-
-  context 'valid JWT' do
-    it 'returns a payload' do
-      payload = Castle::JWT.new(token).to_json
-      payload['user_id'].should == 'eAwv5HtdbSk8bMNYZojsYumwQyKpXqKr'
-    end
-
-    it 'verifies that JWT has expired' do
-      new_time = Time.utc(2014, 4, 23, 8, 46, 44)
-      Timecop.freeze(new_time) do
-        Castle::JWT.new(token).should be_expired
-      end
-    end
-
-    it 'verifies that JWT has not expired' do
-      new_time = Time.utc(2014, 4, 23, 8, 46, 43)
-      Timecop.freeze(new_time) do
-        Castle::JWT.new(token).should_not be_expired
-      end
-    end
-  end
-
-  context 'invalid JWT' do
-    let(:token) { 'eyJ0eXhtWWNTU3pEUHp6WFF2WmZp26mn7Kkl6UgE' }
-
-    it 'throws error' do
-      expect {
-        payload = Castle::JWT.new(token).to_json
-      }.to raise_error(Castle::SecurityError)
-    end
-  end
-
-  context 'nil JWT' do
-    let(:token) { nil }
-
-    it 'throws error' do
-      token = nil
-      expect {
-        payload = Castle::JWT.new(token).to_json
-      }.to raise_error(Castle::SecurityError)
-    end
-  end
-
-  context '#to_token' do
-    it 'returns the same token' do
-      Castle::JWT.new(token).to_token.should == token
-    end
-  end
-
-  context '#merge' do
-    it 'merges payload' do
-      jwt = Castle::JWT.new(token)
-      jwt.merge!(context: { ip: '8.8.8.8' })
-
-      merged_token = jwt.to_token
-      merged_token.should_not == token
-      Castle::JWT.new(merged_token).
-        to_json['context']['ip'].should == '8.8.8.8'
-    end
-  end
-
-end

data/spec/utils_spec.rb

@@ -1,59 +0,0 @@
-require 'spec_helper'
-
-class MemoryStore < Castle::TokenStore
-  def initialize
-    @value = nil
-  end
-
-  def session_token
-    @value['_ubs']
-  end
-
-  def session_token=(value)
-    @value['_ubs'] = value
-  end
-
-  def trusted_device_token
-    @value['_ubt']
-  end
-
-  def trusted_device_token=(value)
-    @value['_ubt'] = value
-  end
-end
-
-describe 'Castle utils' do
-  describe 'ContextHeaders middleware' do
-    before do
-      Castle::User.use_api(api = Her::API.new)
-      @user = api.setup do |c|
-        c.use Castle::Request::Middleware::ContextHeaders
-        c.use Her::Middleware::FirstLevelParseJSON
-        c.adapter :test do |stub|
-          stub.post('/users') do |env|
-            @env = env
-            [200, {}, [].to_json]
-          end
-        end
-      end
-    end
-
-    let(:env) do
-      Rack::MockRequest.env_for('/',
-        "HTTP_USER_AGENT" => "Mozilla", "REMOTE_ADDR" => "8.8.8.8")
-    end
-
-    it 'handles non-existing context headers' do
-      Castle::User.create()
-    end
-
-    it 'sets context headers from env' do
-      request = Rack::Request.new(Rack::MockRequest.env_for('/',
-        "HTTP_USER_AGENT" => "Mozilla", "REMOTE_ADDR" => "8.8.8.8"))
-      Castle::Client.new(request, session_store: MemoryStore.new)
-      Castle::User.create()
-      @env['request_headers']['X-Castle-Ip'].should == '8.8.8.8'
-      @env['request_headers']['X-Castle-User-Agent'].should == 'Mozilla'
-    end
-  end
-end