RubyGems - castle-rb - Versions diffs - 5.0.0 → 7.1.1 - Mend

castle-rb 5.0.0 → 7.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (144) hide show

checksums.yaml +4 -4
data/README.md +113 -39
data/lib/castle.rb +49 -29
data/lib/castle/api.rb +20 -16
data/lib/castle/api/approve_device.rb +20 -0
data/lib/castle/api/authenticate.rb +37 -0
data/lib/castle/api/end_impersonation.rb +24 -0
data/lib/castle/api/filter.rb +37 -0
data/lib/castle/api/get_device.rb +20 -0
data/lib/castle/api/get_devices_for_user.rb +20 -0
data/lib/castle/api/log.rb +37 -0
data/lib/castle/api/report_device.rb +20 -0
data/lib/castle/api/risk.rb +37 -0
data/lib/castle/api/start_impersonation.rb +24 -0
data/lib/castle/api/track.rb +21 -0
data/lib/castle/client.rb +74 -68
data/lib/castle/{extractors/client_id.rb → client_id/extract.rb} +2 -2
data/lib/castle/commands/approve_device.rb +17 -0
data/lib/castle/commands/authenticate.rb +13 -13
data/lib/castle/commands/end_impersonation.rb +25 -0
data/lib/castle/commands/filter.rb +22 -0
data/lib/castle/commands/get_device.rb +17 -0
data/lib/castle/commands/get_devices_for_user.rb +17 -0
data/lib/castle/commands/log.rb +22 -0
data/lib/castle/commands/report_device.rb +17 -0
data/lib/castle/commands/risk.rb +22 -0
data/lib/castle/commands/start_impersonation.rb +25 -0
data/lib/castle/commands/track.rb +12 -13
data/lib/castle/configuration.rb +31 -23
data/lib/castle/context/{default.rb → get_default.rb} +5 -6
data/lib/castle/context/{merger.rb → merge.rb} +3 -3
data/lib/castle/context/prepare.rb +18 -0
data/lib/castle/context/{sanitizer.rb → sanitize.rb} +1 -1
data/lib/castle/core/get_connection.rb +27 -0
data/lib/castle/{api/response.rb → core/process_response.rb} +8 -3
data/lib/castle/core/process_webhook.rb +25 -0
data/lib/castle/core/send_request.rb +42 -0
data/lib/castle/errors.rb +38 -12
data/lib/castle/failover/prepare_response.rb +28 -0
data/lib/castle/failover/strategy.rb +23 -0
data/lib/castle/{extractors/headers.rb → headers/extract.rb} +8 -6
data/lib/castle/headers/filter.rb +40 -0
data/lib/castle/headers/format.rb +24 -0
data/lib/castle/{extractors/ip.rb → ips/extract.rb} +11 -7
data/lib/castle/logger.rb +19 -0
data/lib/castle/payload/prepare.rb +26 -0
data/lib/castle/secure_mode.rb +7 -2
data/lib/castle/session.rb +18 -0
data/lib/castle/singleton_configuration.rb +9 -0
data/lib/castle/support/hanami.rb +2 -6
data/lib/castle/support/rails.rb +1 -3
data/lib/castle/utils/clean_invalid_chars.rb +22 -0
data/lib/castle/utils/clone.rb +15 -0
data/lib/castle/utils/deep_symbolize_keys.rb +45 -0
data/lib/castle/utils/get_timestamp.rb +15 -0
data/lib/castle/utils/{merger.rb → merge.rb} +3 -3
data/lib/castle/utils/secure_compare.rb +22 -0
data/lib/castle/validators/not_supported.rb +1 -0
data/lib/castle/validators/present.rb +1 -0
data/lib/castle/verdict.rb +15 -0
data/lib/castle/version.rb +1 -1
data/lib/castle/webhooks/verify.rb +45 -0
data/spec/integration/rails/rails_spec.rb +42 -14
data/spec/integration/rails/support/application.rb +3 -1
data/spec/integration/rails/support/home_controller.rb +50 -6
data/spec/lib/castle/api/approve_device_spec.rb +21 -0
data/spec/lib/castle/api/authenticate_spec.rb +136 -0
data/spec/lib/castle/api/end_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/filter_spec.rb +5 -0
data/spec/lib/castle/api/get_device_spec.rb +19 -0
data/spec/lib/castle/api/get_devices_for_user_spec.rb +19 -0
data/spec/lib/castle/api/log_spec.rb +5 -0
data/spec/lib/castle/api/report_device_spec.rb +21 -0
data/spec/lib/castle/api/risk_spec.rb +5 -0
data/spec/lib/castle/api/start_impersonation_spec.rb +65 -0
data/spec/lib/castle/api/track_spec.rb +72 -0
data/spec/lib/castle/api_spec.rb +14 -15
data/spec/lib/castle/{extractors/client_id_spec.rb → client_id/extract_spec.rb} +6 -15
data/spec/lib/castle/client_spec.rb +110 -92
data/spec/lib/castle/commands/approve_device_spec.rb +24 -0
data/spec/lib/castle/commands/authenticate_spec.rb +15 -31
data/spec/lib/castle/commands/end_impersonation_spec.rb +79 -0
data/spec/lib/castle/commands/filter_spec.rb +72 -0
data/spec/lib/castle/commands/get_device_spec.rb +24 -0
data/spec/lib/castle/commands/{review_spec.rb → get_devices_for_user_spec.rb} +7 -7
data/spec/lib/castle/commands/log_spec.rb +73 -0
data/spec/lib/castle/commands/report_device_spec.rb +24 -0
data/spec/lib/castle/commands/risk_spec.rb +73 -0
data/spec/lib/castle/commands/{impersonate_spec.rb → start_impersonation_spec.rb} +13 -41
data/spec/lib/castle/commands/track_spec.rb +14 -34
data/spec/lib/castle/configuration_spec.rb +8 -141
data/spec/lib/castle/context/{default_spec.rb → get_default_spec.rb} +9 -10
data/spec/lib/castle/context/{merger_spec.rb → merge_spec.rb} +1 -1
data/spec/lib/castle/context/prepare_spec.rb +43 -0
data/spec/lib/castle/context/{sanitizer_spec.rb → sanitize_spec.rb} +1 -1
data/spec/lib/castle/core/get_connection_spec.rb +43 -0
data/spec/lib/castle/{api/response_spec.rb → core/process_response_spec.rb} +49 -1
data/spec/lib/castle/core/process_webhook_spec.rb +46 -0
data/spec/lib/castle/{api/request_spec.rb → core/send_request_spec.rb} +16 -37
data/spec/lib/castle/failover/strategy_spec.rb +12 -0
data/spec/lib/castle/{extractors/headers_spec.rb → headers/extract_spec.rb} +7 -9
data/spec/lib/castle/headers/filter_spec.rb +39 -0
data/spec/lib/castle/headers/format_spec.rb +25 -0
data/spec/lib/castle/{extractors/ip_spec.rb → ips/extract_spec.rb} +5 -14
data/spec/lib/castle/logger_spec.rb +38 -0
data/spec/lib/castle/payload/prepare_spec.rb +55 -0
data/spec/lib/castle/session_spec.rb +65 -0
data/spec/lib/castle/singleton_configuration_spec.rb +14 -0
data/spec/lib/castle/utils/clean_invalid_chars_spec.rb +69 -0
data/spec/lib/castle/utils/{cloner_spec.rb → clone_spec.rb} +3 -3
data/spec/lib/castle/utils/deep_symbolize_keys_spec.rb +50 -0
data/spec/lib/castle/utils/{timestamp_spec.rb → get_timestamp_spec.rb} +1 -1
data/spec/lib/castle/utils/merge_spec.rb +15 -0
data/spec/lib/castle/validators/present_spec.rb +5 -6
data/spec/lib/castle/verdict_spec.rb +9 -0
data/spec/lib/castle/webhooks/verify_spec.rb +53 -0
data/spec/lib/castle_spec.rb +4 -10
data/spec/spec_helper.rb +3 -3
data/spec/support/shared_examples/action_request.rb +155 -0
data/spec/support/shared_examples/configuration.rb +101 -0
metadata +144 -67
data/lib/castle/api/connection.rb +0 -24
data/lib/castle/api/request.rb +0 -42
data/lib/castle/api/session.rb +0 -20
data/lib/castle/commands/identify.rb +0 -23
data/lib/castle/commands/impersonate.rb +0 -26
data/lib/castle/commands/review.rb +0 -14
data/lib/castle/events.rb +0 -49
data/lib/castle/failover_auth_response.rb +0 -21
data/lib/castle/headers_filter.rb +0 -35
data/lib/castle/headers_formatter.rb +0 -22
data/lib/castle/review.rb +0 -11
data/lib/castle/utils.rb +0 -55
data/lib/castle/utils/cloner.rb +0 -11
data/lib/castle/utils/timestamp.rb +0 -12
data/spec/lib/castle/api/connection_spec.rb +0 -59
data/spec/lib/castle/api/session_spec.rb +0 -86
data/spec/lib/castle/commands/identify_spec.rb +0 -88
data/spec/lib/castle/events_spec.rb +0 -5
data/spec/lib/castle/headers_filter_spec.rb +0 -38
data/spec/lib/castle/headers_formatter_spec.rb +0 -25
data/spec/lib/castle/review_spec.rb +0 -19
data/spec/lib/castle/utils/merger_spec.rb +0 -13
data/spec/lib/castle/utils_spec.rb +0 -156

data/spec/lib/castle/api/session_spec.rb DELETED Viewed

@@ -1,86 +0,0 @@
-# frozen_string_literal: true
-describe Castle::API::Session do
-  describe '.call' do
-    context 'when ssl false' do
-      let(:localhost) { 'localhost' }
-      let(:port) { 3002 }
-      before do
-        Castle.config.url = 'http://localhost:3002'
-        stub_request(:get, 'localhost:3002/test').to_return(status: 200, body: '{}', headers: {})
-      end
-      context 'with block' do
-        let(:api_url) { '/test' }
-        let(:request) { Net::HTTP::Get.new(api_url) }
-        before do
-          allow(Net::HTTP)
-            .to receive(:new)
-            .with(localhost, port)
-            .and_call_original
-          described_class.call do |http|
-            http.request(request)
-          end
-        end
-        it do
-          expect(Net::HTTP)
-            .to have_received(:new)
-            .with(localhost, port)
-        end
-        it do
-          expect(a_request(:get, 'localhost:3002/test'))
-            .to have_been_made.once
-        end
-      end
-      context 'without block' do
-        before { described_class.call }
-        it do
-          expect(a_request(:get, 'localhost:3002/test'))
-            .not_to have_been_made
-        end
-      end
-    end
-    context 'when ssl true' do
-      let(:localhost) { 'localhost' }
-      let(:port) { 443 }
-      before do
-        Castle.config.url = 'https://localhost'
-        stub_request(:get, 'https://localhost/test').to_return(status: 200, body: '{}', headers: {})
-      end
-      context 'with block' do
-        let(:api_url) { '/test' }
-        let(:request) { Net::HTTP::Get.new(api_url) }
-        before do
-          allow(Net::HTTP)
-            .to receive(:new)
-            .with(localhost, port)
-            .and_call_original
-          allow(Net::HTTP)
-            .to receive(:start)
-          described_class.call do |http|
-            http.request(request)
-          end
-        end
-        it do
-          expect(Net::HTTP)
-            .to have_received(:new)
-            .with(localhost, port)
-        end
-      end
-    end
-  end
-end

data/spec/lib/castle/commands/identify_spec.rb DELETED Viewed

@@ -1,88 +0,0 @@
-# frozen_string_literal: true
-describe Castle::Commands::Identify do
-  subject(:instance) { described_class.new(context) }
-  let(:context) { { test: { test1: '1' } } }
-  let(:default_payload) { { user_id: '1234', sent_at: time_auto } }
-  let(:time_now) { Time.now }
-  let(:time_auto) { time_now.utc.iso8601(3) }
-  before { Timecop.freeze(time_now) }
-  after { Timecop.return }
-  describe '.build' do
-    subject(:command) { instance.build(payload) }
-    context 'with simple merger' do
-      let(:payload) { default_payload.merge(context: { test: { test2: '1' } }) }
-      let(:command_data) do
-        default_payload.merge(context: { test: { test1: '1', test2: '1' } })
-      end
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('identify') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
-    context 'with user_traits' do
-      let(:payload) { default_payload.merge(user_traits: { test: '1' }) }
-      let(:command_data) do
-        default_payload.merge(user_traits: { test: '1' }, context: context)
-      end
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('identify') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
-    context 'when active true' do
-      let(:payload) { default_payload.merge(context: { active: true }) }
-      let(:command_data) do
-        default_payload.merge(context: context.merge(active: true))
-      end
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('identify') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
-    context 'when active false' do
-      let(:payload) { default_payload.merge(context: { active: false }) }
-      let(:command_data) do
-        default_payload.merge(context: context.merge(active: false))
-      end
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('identify') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
-    context 'when active string' do
-      let(:payload) { default_payload.merge(context: { active: 'string' }) }
-      let(:command_data) { default_payload.merge(context: context) }
-      it { expect(command.method).to be_eql(:post) }
-      it { expect(command.path).to be_eql('identify') }
-      it { expect(command.data).to be_eql(command_data) }
-    end
-  end
-  describe '#validate!' do
-    subject(:validate!) { instance.build(payload) }
-    context 'with user_id not present' do
-      let(:payload) { {} }
-      it { expect { validate! }.not_to raise_error }
-    end
-    context 'with user_id present' do
-      let(:payload) { { user_id: '1234' } }
-      it { expect { validate! }.not_to raise_error }
-    end
-  end
-end

data/spec/lib/castle/events_spec.rb DELETED Viewed

@@ -1,5 +0,0 @@
-# frozen_string_literal: true
-describe Castle::Events do
-  it { expect(described_class::LOGIN_SUCCEEDED).to eq('$login.succeeded') }
-end

data/spec/lib/castle/headers_filter_spec.rb DELETED Viewed

@@ -1,38 +0,0 @@
-# frozen_string_literal: true
-describe Castle::HeadersFilter do
-  subject(:headers) { described_class.new(request).call }
-  let(:env) do
-    result = Rack::MockRequest.env_for(
-      '/',
-      'Action-Dispatch.request.content-Type' => 'application/json',
-      'HTTP_AUTHORIZATION' => 'Basic 123456',
-      'HTTP_COOKIE' => '__cid=abcd;other=efgh',
-      'HTTP_ACCEPT' => 'application/json',
-      'HTTP_X_FORWARDED_FOR' => '1.2.3.4',
-      'HTTP_USER_AGENT' => 'Mozilla 1234',
-      'TEST' => '1',
-      'REMOTE_ADDR' => '1.2.3.4'
-    )
-    result[:HTTP_OK] = 'OK'
-    result
-  end
-  let(:filtered) do
-    {
-      'Accept' => 'application/json',
-      'Authorization' => 'Basic 123456',
-      'Cookie' => '__cid=abcd;other=efgh',
-      'Content-Length' => '0',
-      'Ok' => 'OK',
-      'User-Agent' => 'Mozilla 1234',
-      'Remote-Addr' => '1.2.3.4',
-      'X-Forwarded-For' => '1.2.3.4'
-    }
-  end
-  let(:request) { Rack::Request.new(env) }
-  context 'with list of header' do
-    it { expect(headers).to eq(filtered) }
-  end
-end

data/spec/lib/castle/headers_formatter_spec.rb DELETED Viewed

@@ -1,25 +0,0 @@
-# frozen_string_literal: true
-describe Castle::HeadersFormatter do
-  subject(:formatter) { described_class }
-  it 'removes HTTP_' do
-    expect(formatter.call('HTTP_X_TEST')).to be_eql('X-Test')
-  end
-  it 'capitalizes header' do
-    expect(formatter.call('X_TEST')).to be_eql('X-Test')
-  end
-  it 'ignores letter case and -_ divider' do
-    expect(formatter.call('http-X_teST')).to be_eql('X-Test')
-  end
-  it 'does not remove http if there is no _- char' do
-    expect(formatter.call('httpX_teST')).to be_eql('Httpx-Test')
-  end
-  it 'capitalizes' do
-    expect(formatter.call(:clearance)).to be_eql('Clearance')
-  end
-end

data/spec/lib/castle/review_spec.rb DELETED Viewed

@@ -1,19 +0,0 @@
-# frozen_string_literal: true
-describe Castle::Review do
-  before do
-    stub_request(:any, /api.castle.io/).with(
-      basic_auth: ['', 'secret']
-    ).to_return(status: 200, body: '{}', headers: {})
-  end
-  describe '#retrieve' do
-    subject(:retrieve) { described_class.retrieve(review_id) }
-    let(:review_id) { '1234' }
-    before { retrieve }
-    it { assert_requested :get, "https://api.castle.io/v1/reviews/#{review_id}", times: 1 }
-  end
-end

data/spec/lib/castle/utils/merger_spec.rb DELETED Viewed

@@ -1,13 +0,0 @@
-# frozen_string_literal: true
-describe Castle::Utils::Merger do
-  subject(:merger) { described_class }
-  describe 'call' do
-    let(:first) { { test: { test1: { c: '4' }, test2: { c: '3' }, a: '1', b: '2' } } }
-    let(:second) { { test2: '2', test: { 'test1' => { d: '5' }, test2: '6', a: nil, b: '3' } } }
-    let(:result) { { test2: '2', test: { test1: { c: '4', d: '5' }, test2: '6', b: '3' } } }
-    it { expect(merger.call(first, second)).to be_eql(result) }
-  end
-end

data/spec/lib/castle/utils_spec.rb DELETED Viewed

@@ -1,156 +0,0 @@
-# frozen_string_literal: true
-describe Castle::Utils do
-  let(:nested_strings) { { 'a' => { 'b' => { 'c' => 3 } } } }
-  let(:nested_symbols) { { a: { b: { c: 3 } } } }
-  let(:nested_mixed) { { 'a' => { b: { 'c' => 3 } } } }
-  let(:string_array_of_hashes) { { 'a' => [{ 'b' => 2 }, { 'c' => 3 }, 4] } }
-  let(:symbol_array_of_hashes) { { a: [{ b: 2 }, { c: 3 }, 4] } }
-  let(:mixed_array_of_hashes) { { a: [{ b: 2 }, { 'c' => 3 }, 4] } }
-  describe '#deep_symbolize_keys' do
-    subject { described_class.deep_symbolize_keys(hash) }
-    context 'when nested_symbols' do
-      let(:hash) { nested_symbols }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when nested_strings' do
-      let(:hash) { nested_strings }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when nested_mixed' do
-      let(:hash) { nested_mixed }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when string_array_of_hashes' do
-      let(:hash) { string_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-    context 'when symbol_array_of_hashes' do
-      let(:hash) { symbol_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-    context 'when mixed_array_of_hashes' do
-      let(:hash) { mixed_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-  end
-  describe '#cloner' do
-    subject { described_class.deep_symbolize_keys!(Castle::Utils::Cloner.call(hash)) }
-    context 'when nested_symbols' do
-      let(:hash) { nested_symbols }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when nested_strings' do
-      let(:hash) { nested_strings }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when nested_mixed' do
-      let(:hash) { nested_mixed }
-      it { is_expected.to eq(nested_symbols) }
-    end
-    context 'when string_array_of_hashes' do
-      let(:hash) { string_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-    context 'when symbol_array_of_hashes' do
-      let(:hash) { symbol_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-    context 'when mixed_array_of_hashes' do
-      let(:hash) { mixed_array_of_hashes }
-      it { is_expected.to eq(symbol_array_of_hashes) }
-    end
-  end
-  describe '::replace_invalid_characters' do
-    subject { described_class.replace_invalid_characters(input) }
-    context 'when input is a string' do
-      let(:input) { '1234' }
-      it { is_expected.to eq input }
-    end
-    context 'when input is an array' do
-      let(:input) { [1, 2, 3, '4'] }
-      it { is_expected.to eq input }
-    end
-    context 'when input is a hash' do
-      let(:input) { { user_id: 1 } }
-      it { is_expected.to eq input }
-    end
-    context 'when input is nil' do
-      let(:input) { nil }
-      it { is_expected.to eq input }
-    end
-    context 'when input is a nested hash' do
-      let(:input) { { user: { id: 1 } } }
-      it { is_expected.to eq input }
-    end
-    context 'with invalid UTF-8 characters' do
-      context 'when input is a hash' do
-        let(:input) { { user_id: "inv\xC4lid" } }
-        it { is_expected.to eq(user_id: 'inv�lid') }
-      end
-      context 'when input is a nested hash' do
-        let(:input) { { user: { id: "inv\xC4lid" } } }
-        it { is_expected.to eq(user: { id: 'inv�lid' }) }
-      end
-      context 'when input is an array of hashes' do
-        let(:input) { [{ user: "inv\xC4lid" }] * 2 }
-        it { is_expected.to eq([{ user: 'inv�lid' }, { user: 'inv�lid' }]) }
-      end
-      context 'when input is an array' do
-        let(:input) { ["inv\xC4lid"] * 2 }
-        it { is_expected.to eq(['inv�lid', 'inv�lid']) }
-      end
-      context 'when input is a hash with array in key' do
-        let(:input) { { items: ["inv\xC4lid"] * 2 } }
-        it { is_expected.to eq(items: ['inv�lid', 'inv�lid']) }
-      end
-    end
-  end
-end