RubyGems - castle-rb - Versions diffs - 4.2.1 → 7.0.0 - Mend

castle-rb 4.2.1 → 7.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (144) hide show

checksums.yaml +4 -4
data/README.md +160 -45
data/lib/castle.rb +49 -28
data/lib/castle/api.rb +21 -14
data/lib/castle/api/approve_device.rb +20 -0
data/lib/castle/api/authenticate.rb +37 -0
data/lib/castle/api/end_impersonation.rb +24 -0
data/lib/castle/api/filter.rb +37 -0
data/lib/castle/api/get_device.rb +20 -0
data/lib/castle/api/get_devices_for_user.rb +20 -0
data/lib/castle/api/log.rb +37 -0
data/lib/castle/api/report_device.rb +20 -0
data/lib/castle/api/risk.rb +37 -0
data/lib/castle/api/start_impersonation.rb +24 -0
data/lib/castle/api/track.rb +21 -0
data/lib/castle/client.rb +78 -51
data/lib/castle/{extractors/client_id.rb → client_id/extract.rb} +2 -2
data/lib/castle/commands/approve_device.rb +17 -0
data/lib/castle/commands/authenticate.rb +13 -13
data/lib/castle/commands/end_impersonation.rb +25 -0
data/lib/castle/commands/filter.rb +23 -0
data/lib/castle/commands/get_device.rb +17 -0
data/lib/castle/commands/get_devices_for_user.rb +17 -0
data/lib/castle/commands/log.rb +23 -0
data/lib/castle/commands/report_device.rb +17 -0
data/lib/castle/commands/risk.rb +23 -0
data/lib/castle/commands/start_impersonation.rb +25 -0
data/lib/castle/commands/track.rb +12 -13
data/lib/castle/configuration.rb +57 -32
data/lib/castle/context/{default.rb → get_default.rb} +5 -6
data/lib/castle/context/{merger.rb → merge.rb} +3 -3
data/lib/castle/context/prepare.rb +18 -0
data/lib/castle/context/{sanitizer.rb → sanitize.rb} +1 -1
data/lib/castle/core/get_connection.rb +27 -0
data/lib/castle/{api/response.rb → core/process_response.rb} +8 -3
data/lib/castle/core/process_webhook.rb +25 -0
data/lib/castle/core/send_request.rb +42 -0
data/lib/castle/errors.rb +38 -12
data/lib/castle/failover/prepare_response.rb +18 -0
data/lib/castle/failover/strategy.rb +23 -0
data/lib/castle/headers/extract.rb +47 -0
data/lib/castle/headers/filter.rb +40 -0
data/lib/castle/headers/format.rb +24 -0
data/lib/castle/{extractors/ip.rb → ips/extract.rb} +31 -9
data/lib/castle/logger.rb +19 -0
data/lib/castle/payload/prepare.rb +26 -0
data/lib/castle/secure_mode.rb +7 -2
data/lib/castle/session.rb +18 -0
data/lib/castle/singleton_configuration.rb +9 -0
data/lib/castle/support/hanami.rb +2 -6
data/lib/castle/support/rails.rb +1 -3
data/lib/castle/utils/clean_invalid_chars.rb +22 -0
data/lib/castle/utils/clone.rb +15 -0
data/lib/castle/utils/deep_symbolize_keys.rb +45 -0
data/lib/castle/utils/get_timestamp.rb +15 -0
data/lib/castle/utils/{merger.rb → merge.rb} +3 -3
data/lib/castle/utils/secure_compare.rb +22 -0
data/lib/castle/validators/not_supported.rb +1 -0
data/lib/castle/validators/present.rb +1 -0
data/lib/castle/verdict.rb +15 -0
data/lib/castle/version.rb +1 -1
data/lib/castle/webhooks/verify.rb +45 -0
data/spec/integration/rails/rails_spec.rb +42 -14
data/spec/integration/rails/support/application.rb +3 -1
data/spec/integration/rails/support/home_controller.rb +50 -6
data/spec/lib/castle/api/approve_device_spec.rb +21 -0
data/spec/lib/castle/api/authenticate_spec.rb +136 -0
data/spec/lib/castle/api/end_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/filter_spec.rb +5 -0
data/spec/lib/castle/api/get_device_spec.rb +19 -0
data/spec/lib/castle/api/get_devices_for_user_spec.rb +19 -0
data/spec/lib/castle/api/log_spec.rb +5 -0
data/spec/lib/castle/api/report_device_spec.rb +21 -0
data/spec/lib/castle/api/risk_spec.rb +5 -0
data/spec/lib/castle/api/start_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/track_spec.rb +72 -0
data/spec/lib/castle/api_spec.rb +14 -15
data/spec/lib/castle/{extractors/client_id_spec.rb → client_id/extract_spec.rb} +6 -15
data/spec/lib/castle/client_spec.rb +108 -93
data/spec/lib/castle/commands/approve_device_spec.rb +24 -0
data/spec/lib/castle/commands/authenticate_spec.rb +15 -31
data/spec/lib/castle/commands/end_impersonation_spec.rb +79 -0
data/spec/lib/castle/commands/filter_spec.rb +99 -0
data/spec/lib/castle/commands/get_device_spec.rb +24 -0
data/spec/lib/castle/commands/{review_spec.rb → get_devices_for_user_spec.rb} +7 -7
data/spec/lib/castle/commands/log_spec.rb +100 -0
data/spec/lib/castle/commands/report_device_spec.rb +24 -0
data/spec/lib/castle/commands/risk_spec.rb +100 -0
data/spec/lib/castle/commands/start_impersonation_spec.rb +79 -0
data/spec/lib/castle/commands/track_spec.rb +14 -34
data/spec/lib/castle/configuration_spec.rb +8 -141
data/spec/lib/castle/context/{default_spec.rb → get_default_spec.rb} +9 -10
data/spec/lib/castle/context/{merger_spec.rb → merge_spec.rb} +1 -1
data/spec/lib/castle/context/prepare_spec.rb +43 -0
data/spec/lib/castle/context/{sanitizer_spec.rb → sanitize_spec.rb} +1 -1
data/spec/lib/castle/core/get_connection_spec.rb +43 -0
data/spec/lib/castle/{api/response_spec.rb → core/process_response_spec.rb} +49 -1
data/spec/lib/castle/core/process_webhook_spec.rb +46 -0
data/spec/lib/castle/core/send_request_spec.rb +77 -0
data/spec/lib/castle/failover/strategy_spec.rb +12 -0
data/spec/lib/castle/{extractors/headers_spec.rb → headers/extract_spec.rb} +18 -20
data/spec/lib/castle/headers/filter_spec.rb +39 -0
data/spec/lib/castle/headers/format_spec.rb +25 -0
data/spec/lib/castle/{extractors/ip_spec.rb → ips/extract_spec.rb} +27 -8
data/spec/lib/castle/logger_spec.rb +38 -0
data/spec/lib/castle/payload/prepare_spec.rb +55 -0
data/spec/lib/castle/session_spec.rb +65 -0
data/spec/lib/castle/singleton_configuration_spec.rb +14 -0
data/spec/lib/castle/utils/clean_invalid_chars_spec.rb +69 -0
data/spec/lib/castle/utils/{cloner_spec.rb → clone_spec.rb} +3 -3
data/spec/lib/castle/utils/deep_symbolize_keys_spec.rb +50 -0
data/spec/lib/castle/utils/{timestamp_spec.rb → get_timestamp_spec.rb} +1 -1
data/spec/lib/castle/utils/merge_spec.rb +15 -0
data/spec/lib/castle/validators/present_spec.rb +5 -6
data/spec/lib/castle/verdict_spec.rb +9 -0
data/spec/lib/castle/webhooks/verify_spec.rb +53 -0
data/spec/lib/castle_spec.rb +4 -10
data/spec/spec_helper.rb +3 -3
data/spec/support/shared_examples/action_request.rb +152 -0
data/spec/support/shared_examples/configuration.rb +101 -0
metadata +146 -64
data/lib/castle/api/request.rb +0 -42
data/lib/castle/api/session.rb +0 -39
data/lib/castle/commands/identify.rb +0 -23
data/lib/castle/commands/impersonate.rb +0 -26
data/lib/castle/commands/review.rb +0 -14
data/lib/castle/events.rb +0 -49
data/lib/castle/extractors/headers.rb +0 -45
data/lib/castle/failover_auth_response.rb +0 -21
data/lib/castle/headers_filter.rb +0 -35
data/lib/castle/headers_formatter.rb +0 -22
data/lib/castle/review.rb +0 -11
data/lib/castle/utils.rb +0 -55
data/lib/castle/utils/cloner.rb +0 -11
data/lib/castle/utils/timestamp.rb +0 -12
data/spec/lib/castle/api/request_spec.rb +0 -72
data/spec/lib/castle/commands/identify_spec.rb +0 -88
data/spec/lib/castle/commands/impersonate_spec.rb +0 -107
data/spec/lib/castle/events_spec.rb +0 -5
data/spec/lib/castle/headers_filter_spec.rb +0 -37
data/spec/lib/castle/headers_formatter_spec.rb +0 -25
data/spec/lib/castle/review_spec.rb +0 -19
data/spec/lib/castle/utils/merger_spec.rb +0 -13
data/spec/lib/castle/utils_spec.rb +0 -156

data/lib/castle/api/authenticate.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    module Authenticate
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          response =
+            Castle::API.call(Castle::Commands::Authenticate.build(options), {}, http, config)
+          response.merge(failover: false, failover_reason: nil)
+        rescue Castle::RequestError, Castle::InternalServerError => e
+          unless config.failover_strategy == :throw
+            strategy = (config || Castle.config).failover_strategy
+            return(
+              Castle::Failover::PrepareResponse.new(
+                options[:user_id],
+                reason: e.to_s,
+                strategy: strategy
+              ).call
+            )
+          end
+          raise e
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/end_impersonation.rb ADDED Viewed

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Sends DELETE impersonate request
+    module EndImpersonation
+      class << self
+        # @param options [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API
+            .call(Castle::Commands::EndImpersonation.build(options), {}, http, config)
+            .tap { |response| raise Castle::ImpersonationFailed unless response[:success] }
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/filter.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Module for filter endpoint
+    module Filter
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          response = Castle::API.call(Castle::Commands::Filter.build(options), {}, http, config)
+          response.merge(failover: false, failover_reason: nil)
+        rescue Castle::RequestError, Castle::InternalServerError => e
+          unless config.failover_strategy == :throw
+            strategy = (config || Castle.config).failover_strategy
+            return(
+              Castle::Failover::PrepareResponse.new(
+                options[:user][:id],
+                reason: e.to_s,
+                strategy: strategy
+              ).call
+            )
+          end
+          raise e
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/get_device.rb ADDED Viewed

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Sends GET devices/#{device_token} request
+    module GetDevice
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API.call(Castle::Commands::GetDevice.build(options), {}, http, config)
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/get_devices_for_user.rb ADDED Viewed

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Sends GET users/#{user_id}/devices request
+    module GetDevicesForUser
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API.call(Castle::Commands::GetDevicesForUser.build(options), {}, http, config)
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/log.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Module for log endpoint
+    module Log
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          response = Castle::API.call(Castle::Commands::Log.build(options), {}, http, config)
+          response.merge(failover: false, failover_reason: nil)
+        rescue Castle::RequestError, Castle::InternalServerError => e
+          unless config.failover_strategy == :throw
+            strategy = (config || Castle.config).failover_strategy
+            return(
+              Castle::Failover::PrepareResponse.new(
+                options[:user][:id],
+                reason: e.to_s,
+                strategy: strategy
+              ).call
+            )
+          end
+          raise e
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/report_device.rb ADDED Viewed

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Sends PUT devices/#{device_token}/report request
+    module ReportDevice
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API.call(Castle::Commands::ReportDevice.build(options), {}, http, config)
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/risk.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Module for risk endpoint
+    module Risk
+      class << self
+        # @param options [Hash]
+        # return [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          response = Castle::API.call(Castle::Commands::Risk.build(options), {}, http, config)
+          response.merge(failover: false, failover_reason: nil)
+        rescue Castle::RequestError, Castle::InternalServerError => e
+          unless config.failover_strategy == :throw
+            strategy = (config || Castle.config).failover_strategy
+            return(
+              Castle::Failover::PrepareResponse.new(
+                options[:user][:id],
+                reason: e.to_s,
+                strategy: strategy
+              ).call
+            )
+          end
+          raise e
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/start_impersonation.rb ADDED Viewed

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    # Sends POST impersonate request
+    module StartImpersonation
+      class << self
+        # @param options [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API
+            .call(Castle::Commands::StartImpersonation.build(options), {}, http, config)
+            .tap { |response| raise Castle::ImpersonationFailed unless response[:success] }
+        end
+      end
+    end
+  end
+end

data/lib/castle/api/track.rb ADDED Viewed

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+module Castle
+  module API
+    module Track
+      class << self
+        # @param options [Hash]
+        def call(options = {})
+          unless options[:no_symbolize]
+            options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+          end
+          options.delete(:no_symbolize)
+          http = options.delete(:http)
+          config = options.delete(:config) || Castle.config
+          Castle::API.call(Castle::Commands::Track.build(options), {}, http, config)
+        end
+      end
+    end
+  end
+end

data/lib/castle/client.rb CHANGED Viewed

@@ -1,86 +1,109 @@
 # frozen_string_literal: true
 module Castle
+  # Castle's client.
   class Client
     class << self
       def from_request(request, options = {})
-        new(
-          to_context(request, options),
-          to_options(options)
-        )
-      end
-      def to_context(request, options = {})
-        default_context = Castle::Context::Default.new(request, options[:cookies]).call
-        Castle::Context::Merger.call(default_context, options[:context])
-      end
-      def to_options(options = {})
-        options[:timestamp] ||= Castle::Utils::Timestamp.call
-        warn '[DEPRECATION] use user_traits instead of traits key' if options.key?(:traits)
-        options
-      end
-      def failover_response_or_raise(failover_response, error)
-        return failover_response.generate unless Castle.config.failover_strategy == :throw
-        raise error
+        new(options.merge(context: Castle::Context::Prepare.call(request, options)))
       end
     end
     attr_accessor :context
-    def initialize(context, options = {})
+    # @param options [Hash]
+    def initialize(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
       @do_not_track = options.fetch(:do_not_track, false)
-      @timestamp = options[:timestamp]
-      @context = context
+      @timestamp = options.fetch(:timestamp) { Castle::Utils::GetTimestamp.call }
+      @context = options.fetch(:context) { {} }
     end
+    # @param options [Hash]
     def authenticate(options = {})
-      options = Castle::Utils.deep_symbolize_keys(options || {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
       return generate_do_not_track_response(options[:user_id]) unless tracked?
       add_timestamp_if_necessary(options)
-      command = Castle::Commands::Authenticate.new(@context).build(options)
-      begin
-        Castle::API.call(command).merge(failover: false, failover_reason: nil)
-      rescue Castle::RequestError, Castle::InternalServerError => e
-        self.class.failover_response_or_raise(
-          FailoverAuthResponse.new(options[:user_id], reason: e.to_s), e
-        )
-      end
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::Authenticate.call(options.merge(context: new_context, no_symbolize: true))
     end
-    def identify(options = {})
-      options = Castle::Utils.deep_symbolize_keys(options || {})
+    # @param options [Hash]
+    def track(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
       return unless tracked?
       add_timestamp_if_necessary(options)
-      command = Castle::Commands::Identify.new(@context).build(options)
-      Castle::API.call(command)
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::Track.call(options.merge(context: new_context, no_symbolize: true))
     end
-    def track(options = {})
-      options = Castle::Utils.deep_symbolize_keys(options || {})
+    # @param options [Hash]
+    def filter(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
-      return unless tracked?
+      return generate_do_not_track_response(options[:user][:id]) unless tracked?
       add_timestamp_if_necessary(options)
-      command = Castle::Commands::Track.new(@context).build(options)
-      Castle::API.call(command)
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::Filter.call(options.merge(context: new_context, no_symbolize: true))
     end
-    def impersonate(options = {})
-      options = Castle::Utils.deep_symbolize_keys(options || {})
+    # @param options [Hash]
+    def risk(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+      return generate_do_not_track_response(options[:user][:id]) unless tracked?
       add_timestamp_if_necessary(options)
-      command = Castle::Commands::Impersonate.new(@context).build(options)
-      Castle::API.call(command).tap do |response|
-        raise Castle::ImpersonationFailed unless response[:success]
-      end
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::Risk.call(options.merge(context: new_context, no_symbolize: true))
+    end
+    # @param options [Hash]
+    def log(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+      return generate_do_not_track_response(options[:user][:id]) unless tracked?
+      add_timestamp_if_necessary(options)
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::Log.call(options.merge(context: new_context, no_symbolize: true))
+    end
+    # @param options [Hash]
+    def start_impersonation(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+      add_timestamp_if_necessary(options)
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::StartImpersonation.call(options.merge(context: new_context, no_symbolize: true))
+    end
+    # @param options [Hash]
+    def end_impersonation(options = {})
+      options = Castle::Utils::DeepSymbolizeKeys.call(options || {})
+      add_timestamp_if_necessary(options)
+      new_context = Castle::Context::Merge.call(@context, options[:context])
+      Castle::API::EndImpersonation.call(options.merge(context: new_context, no_symbolize: true))
     end
     def disable_tracking
@@ -91,19 +114,23 @@ module Castle
       @do_not_track = false
     end
+    # @return [Boolean]
     def tracked?
       !@do_not_track
     end
     private
+    # @param user_id [String, Boolean]
     def generate_do_not_track_response(user_id)
-      FailoverAuthResponse.new(
+      Castle::Failover::PrepareResponse.new(
         user_id,
-        strategy: :allow, reason: 'Castle is set to do not track.'
-      ).generate
+        strategy: :allow,
+        reason: 'Castle is set to do not track.'
+      ).call
     end
+    # @param options [Hash]
     def add_timestamp_if_necessary(options)
       options[:timestamp] ||= @timestamp if @timestamp
     end