RubyGems - castle-rb - Versions diffs - 4.2.1 → 7.0.0 - Mend

castle-rb 4.2.1 → 7.0.0

Files changed (144) hide show

checksums.yaml +4 -4
data/README.md +160 -45
data/lib/castle.rb +49 -28
data/lib/castle/api.rb +21 -14
data/lib/castle/api/approve_device.rb +20 -0
data/lib/castle/api/authenticate.rb +37 -0
data/lib/castle/api/end_impersonation.rb +24 -0
data/lib/castle/api/filter.rb +37 -0
data/lib/castle/api/get_device.rb +20 -0
data/lib/castle/api/get_devices_for_user.rb +20 -0
data/lib/castle/api/log.rb +37 -0
data/lib/castle/api/report_device.rb +20 -0
data/lib/castle/api/risk.rb +37 -0
data/lib/castle/api/start_impersonation.rb +24 -0
data/lib/castle/api/track.rb +21 -0
data/lib/castle/client.rb +78 -51
data/lib/castle/{extractors/client_id.rb → client_id/extract.rb} +2 -2
data/lib/castle/commands/approve_device.rb +17 -0
data/lib/castle/commands/authenticate.rb +13 -13
data/lib/castle/commands/end_impersonation.rb +25 -0
data/lib/castle/commands/filter.rb +23 -0
data/lib/castle/commands/get_device.rb +17 -0
data/lib/castle/commands/get_devices_for_user.rb +17 -0
data/lib/castle/commands/log.rb +23 -0
data/lib/castle/commands/report_device.rb +17 -0
data/lib/castle/commands/risk.rb +23 -0
data/lib/castle/commands/start_impersonation.rb +25 -0
data/lib/castle/commands/track.rb +12 -13
data/lib/castle/configuration.rb +57 -32
data/lib/castle/context/{default.rb → get_default.rb} +5 -6
data/lib/castle/context/{merger.rb → merge.rb} +3 -3
data/lib/castle/context/prepare.rb +18 -0
data/lib/castle/context/{sanitizer.rb → sanitize.rb} +1 -1
data/lib/castle/core/get_connection.rb +27 -0
data/lib/castle/{api/response.rb → core/process_response.rb} +8 -3
data/lib/castle/core/process_webhook.rb +25 -0
data/lib/castle/core/send_request.rb +42 -0
data/lib/castle/errors.rb +38 -12
data/lib/castle/failover/prepare_response.rb +18 -0
data/lib/castle/failover/strategy.rb +23 -0
data/lib/castle/headers/extract.rb +47 -0
data/lib/castle/headers/filter.rb +40 -0
data/lib/castle/headers/format.rb +24 -0
data/lib/castle/{extractors/ip.rb → ips/extract.rb} +31 -9
data/lib/castle/logger.rb +19 -0
data/lib/castle/payload/prepare.rb +26 -0
data/lib/castle/secure_mode.rb +7 -2
data/lib/castle/session.rb +18 -0
data/lib/castle/singleton_configuration.rb +9 -0
data/lib/castle/support/hanami.rb +2 -6
data/lib/castle/support/rails.rb +1 -3
data/lib/castle/utils/clean_invalid_chars.rb +22 -0
data/lib/castle/utils/clone.rb +15 -0
data/lib/castle/utils/deep_symbolize_keys.rb +45 -0
data/lib/castle/utils/get_timestamp.rb +15 -0
data/lib/castle/utils/{merger.rb → merge.rb} +3 -3
data/lib/castle/utils/secure_compare.rb +22 -0
data/lib/castle/validators/not_supported.rb +1 -0
data/lib/castle/validators/present.rb +1 -0
data/lib/castle/verdict.rb +15 -0
data/lib/castle/version.rb +1 -1
data/lib/castle/webhooks/verify.rb +45 -0
data/spec/integration/rails/rails_spec.rb +42 -14
data/spec/integration/rails/support/application.rb +3 -1
data/spec/integration/rails/support/home_controller.rb +50 -6
data/spec/lib/castle/api/approve_device_spec.rb +21 -0
data/spec/lib/castle/api/authenticate_spec.rb +136 -0
data/spec/lib/castle/api/end_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/filter_spec.rb +5 -0
data/spec/lib/castle/api/get_device_spec.rb +19 -0
data/spec/lib/castle/api/get_devices_for_user_spec.rb +19 -0
data/spec/lib/castle/api/log_spec.rb +5 -0
data/spec/lib/castle/api/report_device_spec.rb +21 -0
data/spec/lib/castle/api/risk_spec.rb +5 -0
data/spec/lib/castle/api/start_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/track_spec.rb +72 -0
data/spec/lib/castle/api_spec.rb +14 -15
data/spec/lib/castle/{extractors/client_id_spec.rb → client_id/extract_spec.rb} +6 -15
data/spec/lib/castle/client_spec.rb +108 -93
data/spec/lib/castle/commands/approve_device_spec.rb +24 -0
data/spec/lib/castle/commands/authenticate_spec.rb +15 -31
data/spec/lib/castle/commands/end_impersonation_spec.rb +79 -0
data/spec/lib/castle/commands/filter_spec.rb +99 -0
data/spec/lib/castle/commands/get_device_spec.rb +24 -0
data/spec/lib/castle/commands/{review_spec.rb → get_devices_for_user_spec.rb} +7 -7
data/spec/lib/castle/commands/log_spec.rb +100 -0
data/spec/lib/castle/commands/report_device_spec.rb +24 -0
data/spec/lib/castle/commands/risk_spec.rb +100 -0
data/spec/lib/castle/commands/start_impersonation_spec.rb +79 -0
data/spec/lib/castle/commands/track_spec.rb +14 -34
data/spec/lib/castle/configuration_spec.rb +8 -141
data/spec/lib/castle/context/{default_spec.rb → get_default_spec.rb} +9 -10
data/spec/lib/castle/context/{merger_spec.rb → merge_spec.rb} +1 -1
data/spec/lib/castle/context/prepare_spec.rb +43 -0
data/spec/lib/castle/context/{sanitizer_spec.rb → sanitize_spec.rb} +1 -1
data/spec/lib/castle/core/get_connection_spec.rb +43 -0
data/spec/lib/castle/{api/response_spec.rb → core/process_response_spec.rb} +49 -1
data/spec/lib/castle/core/process_webhook_spec.rb +46 -0
data/spec/lib/castle/core/send_request_spec.rb +77 -0
data/spec/lib/castle/failover/strategy_spec.rb +12 -0
data/spec/lib/castle/{extractors/headers_spec.rb → headers/extract_spec.rb} +18 -20
data/spec/lib/castle/headers/filter_spec.rb +39 -0
data/spec/lib/castle/headers/format_spec.rb +25 -0
data/spec/lib/castle/{extractors/ip_spec.rb → ips/extract_spec.rb} +27 -8
data/spec/lib/castle/logger_spec.rb +38 -0
data/spec/lib/castle/payload/prepare_spec.rb +55 -0
data/spec/lib/castle/session_spec.rb +65 -0
data/spec/lib/castle/singleton_configuration_spec.rb +14 -0
data/spec/lib/castle/utils/clean_invalid_chars_spec.rb +69 -0
data/spec/lib/castle/utils/{cloner_spec.rb → clone_spec.rb} +3 -3
data/spec/lib/castle/utils/deep_symbolize_keys_spec.rb +50 -0
data/spec/lib/castle/utils/{timestamp_spec.rb → get_timestamp_spec.rb} +1 -1
data/spec/lib/castle/utils/merge_spec.rb +15 -0
data/spec/lib/castle/validators/present_spec.rb +5 -6
data/spec/lib/castle/verdict_spec.rb +9 -0
data/spec/lib/castle/webhooks/verify_spec.rb +53 -0
data/spec/lib/castle_spec.rb +4 -10
data/spec/spec_helper.rb +3 -3
data/spec/support/shared_examples/action_request.rb +152 -0
data/spec/support/shared_examples/configuration.rb +101 -0
metadata +146 -64
data/lib/castle/api/request.rb +0 -42
data/lib/castle/api/session.rb +0 -39
data/lib/castle/commands/identify.rb +0 -23
data/lib/castle/commands/impersonate.rb +0 -26
data/lib/castle/commands/review.rb +0 -14
data/lib/castle/events.rb +0 -49
data/lib/castle/extractors/headers.rb +0 -45
data/lib/castle/failover_auth_response.rb +0 -21
data/lib/castle/headers_filter.rb +0 -35
data/lib/castle/headers_formatter.rb +0 -22
data/lib/castle/review.rb +0 -11
data/lib/castle/utils.rb +0 -55
data/lib/castle/utils/cloner.rb +0 -11
data/lib/castle/utils/timestamp.rb +0 -12
data/spec/lib/castle/api/request_spec.rb +0 -72
data/spec/lib/castle/commands/identify_spec.rb +0 -88
data/spec/lib/castle/commands/impersonate_spec.rb +0 -107
data/spec/lib/castle/events_spec.rb +0 -5
data/spec/lib/castle/headers_filter_spec.rb +0 -37
data/spec/lib/castle/headers_formatter_spec.rb +0 -25
data/spec/lib/castle/review_spec.rb +0 -19
data/spec/lib/castle/utils/merger_spec.rb +0 -13
data/spec/lib/castle/utils_spec.rb +0 -156

data/spec/lib/castle/commands/report_device_spec.rb ADDED Viewed

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+describe Castle::Commands::ReportDevice do
+  subject(:instance) { described_class }
+  let(:context) { {} }
+  let(:device_token) { '1234' }
+  describe '.build' do
+    subject(:command) { instance.build(device_token: device_token) }
+    context 'without device_token' do
+      let(:device_token) { '' }
+      it { expect { command }.to raise_error(Castle::InvalidParametersError) }
+    end
+    context 'with device_token' do
+      it { expect(command.method).to be_eql(:put) }
+      it { expect(command.path).to be_eql("devices/#{device_token}/report") }
+      it { expect(command.data).to be_nil }
+    end
+  end
+end

data/spec/lib/castle/commands/risk_spec.rb ADDED Viewed

@@ -0,0 +1,100 @@
+# frozen_string_literal: true
+describe Castle::Commands::Risk do
+  subject(:instance) { described_class }
+  let(:context) { { test: { test1: '1' } } }
+  let(:user) { { id: '1234', email: 'foobar@mail.com' } }
+  let(:default_payload) do
+    {
+      request_token: '7e51335b-f4bc-4bc7-875d-b713fb61eb23-bf021a3022a1a302',
+      event: '$login',
+      status: '$succeeded',
+      user: user,
+      sent_at: time_auto,
+      context: context
+    }
+  end
+  let(:time_now) { Time.now }
+  let(:time_auto) { time_now.utc.iso8601(3) }
+  before { Timecop.freeze(time_now) }
+  after { Timecop.return }
+  describe '.build' do
+    subject(:command) { instance.build(payload) }
+    context 'with properties' do
+      let(:payload) { default_payload.merge(properties: { test: '1' }) }
+      let(:command_data) { default_payload.merge(properties: { test: '1' }, context: context) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('risk') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'with user_traits' do
+      let(:payload) { default_payload.merge(user_traits: { test: '1' }) }
+      let(:command_data) { default_payload.merge(user_traits: { test: '1' }, context: context) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('risk') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active true' do
+      let(:payload) { default_payload.merge(context: context.merge(active: true)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: true)) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('risk') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active false' do
+      let(:payload) { default_payload.merge(context: context.merge(active: false)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: false)) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('risk') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active string' do
+      let(:payload) { default_payload.merge(context: context.merge(active: 'string')) }
+      let(:command_data) { default_payload.merge(context: context) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('risk') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+  end
+  describe '#validate!' do
+    subject(:validate!) { instance.build(payload) }
+    context 'with event not present' do
+      let(:payload) { {} }
+      it do
+        expect { validate! }.to raise_error(
+          Castle::InvalidParametersError,
+          'event is missing or empty'
+        )
+      end
+    end
+    context 'with user not present' do
+      let(:payload) { { event: '$login' } }
+      it { expect { validate! }.not_to raise_error }
+    end
+    context 'with event and user present' do
+      let(:payload) { { event: '$login', user: user } }
+      it { expect { validate! }.not_to raise_error }
+    end
+  end
+end

data/spec/lib/castle/commands/start_impersonation_spec.rb ADDED Viewed

@@ -0,0 +1,79 @@
+# frozen_string_literal: true
+describe Castle::Commands::StartImpersonation do
+  subject(:instance) { described_class }
+  let(:context) { { user_agent: 'test', ip: '127.0.0.1', client_id: 'test' } }
+  let(:impersonator) { 'test@castle.io' }
+  let(:default_payload) { { user_id: '1234', sent_at: time_auto, context: context } }
+  let(:time_now) { Time.now }
+  let(:time_auto) { time_now.utc.iso8601(3) }
+  before { Timecop.freeze(time_now) }
+  after { Timecop.return }
+  describe '.build' do
+    subject(:command) { instance.build(payload) }
+    context 'with impersonator' do
+      let(:payload) { default_payload.merge(properties: { impersonator: impersonator }) }
+      let(:command_data) do
+        default_payload.merge(properties: { impersonator: impersonator }, context: context)
+      end
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('impersonate') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active true' do
+      let(:payload) { default_payload.merge(context: context.merge(active: true)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: true)) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('impersonate') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active false' do
+      let(:payload) { default_payload.merge(context: context.merge(active: false)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: false)) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('impersonate') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+    context 'when active string' do
+      let(:payload) { default_payload.merge(context: context.merge(active: 'string')) }
+      let(:command_data) { default_payload.merge(context: context) }
+      it { expect(command.method).to be_eql(:post) }
+      it { expect(command.path).to be_eql('impersonate') }
+      it { expect(command.data).to be_eql(command_data) }
+    end
+  end
+  describe '#validate!' do
+    subject(:validate!) { instance.build(payload) }
+    context 'when user_id not present' do
+      let(:payload) { {} }
+      it do
+        expect { validate! }.to raise_error(
+          Castle::InvalidParametersError,
+          'user_id is missing or empty'
+        )
+      end
+    end
+    context 'when user_id present' do
+      let(:payload) { { user_id: '1234', context: context } }
+      it { expect { validate! }.not_to raise_error }
+    end
+  end
+end

data/spec/lib/castle/commands/track_spec.rb CHANGED Viewed

@@ -1,10 +1,10 @@
 # frozen_string_literal: true
 describe Castle::Commands::Track do
-  subject(:instance) { described_class.new(context) }
+  subject(:instance) { described_class }
   let(:context) { { test: { test1: '1' } } }
-  let(:default_payload) { { event: '$login.track', sent_at: time_auto } }
+  let(:default_payload) { { event: '$login.track', sent_at: time_auto, context: context } }
   let(:time_now) { Time.now }
   let(:time_auto) { time_now.utc.iso8601(3) }
@@ -16,22 +16,9 @@ describe Castle::Commands::Track do
   describe '#build' do
     subject(:command) { instance.build(payload) }
-    context 'with simple merger' do
-      let(:payload) { default_payload.merge(context: { test: { test2: '1' } }) }
-      let(:command_data) do
-        default_payload.merge(context: { test: { test1: '1', test2: '1' } })
-      end
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('track') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
     context 'with user_id' do
       let(:payload) { default_payload.merge(user_id: '1234') }
-      let(:command_data) do
-        default_payload.merge(user_id: '1234', context: context)
-      end
+      let(:command_data) { default_payload.merge(user_id: '1234', context: context) }
       it { expect(command.method).to be_eql(:post) }
       it { expect(command.path).to be_eql('track') }
@@ -40,9 +27,7 @@ describe Castle::Commands::Track do
     context 'with properties' do
       let(:payload) { default_payload.merge(properties: { test: '1' }) }
-      let(:command_data) do
-        default_payload.merge(properties: { test: '1' }, context: context)
-      end
+      let(:command_data) { default_payload.merge(properties: { test: '1' }, context: context) }
       it { expect(command.method).to be_eql(:post) }
       it { expect(command.path).to be_eql('track') }
@@ -51,9 +36,7 @@ describe Castle::Commands::Track do
     context 'with user_traits' do
       let(:payload) { default_payload.merge(user_traits: { test: '1' }) }
-      let(:command_data) do
-        default_payload.merge(user_traits: { test: '1' }, context: context)
-      end
+      let(:command_data) { default_payload.merge(user_traits: { test: '1' }, context: context) }
       it { expect(command.method).to be_eql(:post) }
       it { expect(command.path).to be_eql('track') }
@@ -61,10 +44,8 @@ describe Castle::Commands::Track do
     end
     context 'when active true' do
-      let(:payload) { default_payload.merge(context: { active: true }) }
-      let(:command_data) do
-        default_payload.merge(context: context.merge(active: true))
-      end
+      let(:payload) { default_payload.merge(context: context.merge(active: true)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: true)) }
       it { expect(command.method).to be_eql(:post) }
       it { expect(command.path).to be_eql('track') }
@@ -72,10 +53,8 @@ describe Castle::Commands::Track do
     end
     context 'when active false' do
-      let(:payload) { default_payload.merge(context: { active: false }) }
-      let(:command_data) do
-        default_payload.merge(context: context.merge(active: false))
-      end
+      let(:payload) { default_payload.merge(context: context.merge(active: false)) }
+      let(:command_data) { default_payload.merge(context: context.merge(active: false)) }
       it { expect(command.method).to be_eql(:post) }
       it { expect(command.path).to be_eql('track') }
@@ -83,7 +62,7 @@ describe Castle::Commands::Track do
     end
     context 'when active string' do
-      let(:payload) { default_payload.merge(context: { active: 'string' }) }
+      let(:payload) { default_payload.merge(context: context.merge(active: 'string')) }
       let(:command_data) { default_payload.merge(context: context) }
       it { expect(command.method).to be_eql(:post) }
@@ -99,9 +78,10 @@ describe Castle::Commands::Track do
       let(:payload) { {} }
       it do
-        expect do
-          validate!
-        end.to raise_error(Castle::InvalidParametersError, 'event is missing or empty')
+        expect { validate! }.to raise_error(
+          Castle::InvalidParametersError,
+          'event is missing or empty'
+        )
       end
     end

data/spec/lib/castle/configuration_spec.rb CHANGED Viewed

@@ -1,147 +1,14 @@
 # frozen_string_literal: true
 describe Castle::Configuration do
-  subject(:config) do
-    described_class.instance
-  end
+  subject(:config) { described_class.new }
-  describe 'host' do
-    context 'with default' do
-      it { expect(config.host).to be_eql('api.castle.io') }
-    end
+  it_behaves_like 'configuration_host'
+  it_behaves_like 'configuration_request_timeout'
+  it_behaves_like 'configuration_allowlisted'
+  it_behaves_like 'configuration_denylisted'
+  it_behaves_like 'configuration_failover_strategy'
+  it_behaves_like 'configuration_api_secret'
-    context 'with setter' do
-      before { config.host = 'api.castle.dev' }
-      it { expect(config.host).to be_eql('api.castle.dev') }
-    end
-  end
-  describe 'post' do
-    context 'with default' do
-      it { expect(config.port).to be_eql(443) }
-    end
-    context 'with setter' do
-      before { config.port = 3001 }
-      it { expect(config.port).to be_eql(3001) }
-    end
-  end
-  describe 'api_secret' do
-    context 'with env' do
-      let(:secret_key_env) { 'secret_key_env' }
-      let(:secret_key) { 'secret_key' }
-      before do
-        allow(ENV).to receive(:fetch).with(
-          'CASTLE_API_SECRET', ''
-        ).and_return(secret_key_env)
-        config.reset
-      end
-      it do
-        expect(config.api_secret).to be_eql(secret_key_env)
-      end
-      context 'when key is overwritten' do
-        before { config.api_secret = secret_key }
-        it do
-          expect(config.api_secret).to be_eql(secret_key)
-        end
-      end
-    end
-    context 'with setter' do
-      let(:value) { 'new_secret' }
-      before do
-        config.api_secret = value
-      end
-      it do
-        expect(config.api_secret).to be_eql(value)
-      end
-    end
-    it do
-      expect(config.api_secret).to be_eql('secret')
-    end
-  end
-  describe 'request_timeout' do
-    it do
-      expect(config.request_timeout).to be_eql(500)
-    end
-    context 'with setter' do
-      let(:value) { 50.0 }
-      before do
-        config.request_timeout = value
-      end
-      it do
-        expect(config.request_timeout).to be_eql(value)
-      end
-    end
-  end
-  describe 'whitelisted' do
-    it do
-      expect(config.whitelisted.size).to be_eql(0)
-    end
-    context 'with setter' do
-      before do
-        config.whitelisted = ['header']
-      end
-      it do
-        expect(config.whitelisted).to be_eql(['Header'])
-      end
-    end
-  end
-  describe 'blacklisted' do
-    it do
-      expect(config.blacklisted.size).to be_eql(0)
-    end
-    context 'with setter' do
-      before do
-        config.blacklisted = ['header']
-      end
-      it do
-        expect(config.blacklisted).to be_eql(['Header'])
-      end
-    end
-  end
-  describe 'failover_strategy' do
-    it do
-      expect(config.failover_strategy).to be_eql(:allow)
-    end
-    context 'with setter' do
-      before do
-        config.failover_strategy = :deny
-      end
-      it do
-        expect(config.failover_strategy).to be_eql(:deny)
-      end
-    end
-    context 'when broken' do
-      it do
-        expect do
-          config.failover_strategy = :unicorn
-        end.to raise_error(Castle::ConfigurationError)
-      end
-    end
-  end
+  it { expect(config.api_secret).to be_eql('') }
 end