castle_devise 0.3.0 → 0.4.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e2e9fa31620b96fd293ede84541d8073f264f227f84422339fa8d100c1e89ddc
-  data.tar.gz: 8dcbfacef3a3050bceb218d571d34a12e447b10c0b54acc93b559224aebf5f5f
+  metadata.gz: 6843034cd0d1278d25140abc645d54dca7b8a3431829c6d7b58920ad987381a6
+  data.tar.gz: 58f4ae8fb336b3299f96b067210b788f9906efd223965c7c17143a2e2583fad3
 SHA512:
-  metadata.gz: b4bb3619aac0e96a1d2e00dbad37371b2c13855cb646b47819f80c333151e8072316ba7381587ed5b43867e6aa1841c4798cda18b7605bf4e382fad49cddf005
-  data.tar.gz: 8026202271990edbaeb18451bf25d5661c40c573728b781cf5a2268ab7e8900aa799be9da333f0beef44e3e65de8f6fb95ce49083314a68a665cbb1761543659
+  metadata.gz: 0b8f9feca618661708bf6695d3c870c54e4fd4eb747b8ea96031e8a88bcb53c7af7b52b47ce38b92cd44bb85e352b5a9a6bc1aba6a80d4218ecee6dbbe6fdd6c
+  data.tar.gz: e81f6b014851e78444088a9949746aec347a800c39487ab4cae3c0727c6568b8a2b9691f561c7366be873725ea00f0e62e9d33e2ca919193d3c758da975b116a

data/.github/workflows/lint.yml

@@ -9,10 +9,13 @@ jobs:
     steps:
       - name: Check out code
         uses: actions/checkout@v1
+      - name: Give permissions
+        run: |
+          sudo chown -R root:root $GITHUB_WORKSPACE
       - name: standardrb
         uses: SennaLabs/action-standardrb@v0.0.3
         with:
           github_token: ${{ secrets.github_token }}
           reporter: github-pr-review # Default is github-pr-check
-          rubocop_version: 1.1.1 # note: this actually refers to standardb version, not Rubocop
+          rubocop_version: 1.1.6 # note: this actually refers to standardb version, not Rubocop
           rubocop_flags: --format progress

data/.github/workflows/specs.yml

@@ -10,11 +10,8 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        ruby: ["2.6", "2.7", "3.0"]
-        rails: ["5.2", "6.0", "6.1"]
-        exclude:
-          - ruby: "3.0"
-            rails: "5.2"
+        ruby: ["2.7", "3.0", "3.1", "3.2"]
+        rails: ["6.0", "6.1", "7.0"]
 
     steps:
     - uses: actions/checkout@v2
@@ -22,7 +19,7 @@ jobs:
       uses: ruby/setup-ruby@v1
       with:
         ruby-version: ${{ matrix.ruby }}
-    - name: Install depenencies
+    - name: Install dependencies
       env:
         BUNDLE_GEMFILE: gemfiles/rails_${{ matrix.rails }}.gemfile
       run: |

data/Appraisals

@@ -1,9 +1,3 @@
-if RUBY_VERSION < "3.0"
-  appraise "rails-5.2" do
-    gem "railties", "~> 5.2.6"
-  end
-end
-
 appraise "rails-6.0" do
   gem "railties", "~> 6.0.4"
 end
@@ -11,3 +5,7 @@ end
 appraise "rails-6.1" do
   gem "railties", "~> 6.1.4"
 end
+
+appraise "rails-7.0" do
+  gem "railties", "~> 7.0"
+end

data/CHANGELOG.md

@@ -2,6 +2,18 @@
 
 ## [Unreleased][main]
 
+## [0.4.3] - 2023-07-11
+- Fix an issue where we would send a `login.failed` event on any attempt of accessing a protected resource, not only when the user failed to log in specifically
+
+## [0.4.2] - 2023-07-10
+- Change `params` to contain the email address sent by the user for the `/v1/filter` endpoint
+
+## [0.4.1] - 2022-12-13
+- Introduced new configuration options for `castle_sdk_facade_class` and `castle_client`
+
+## [0.4.0] - 2022-05-17
+-  Send $login $failed events to /v1/filter
+
 ## [0.3.0] - 2021-08-30
 
 - Switch c.js to 2.0 version, Update c.js related helpers
@@ -17,7 +29,11 @@
 
 - Initial release
 
-[main]: https://github.com/castle/castle_devise/compare/v0.3.0...HEAD
+[main]: https://github.com/castle/castle_devise/compare/v0.4.3...HEAD
+[0.4.3]: https://github.com/castle/castle_devise/compare/v0.4.2...v0.4.3
+[0.4.2]: https://github.com/castle/castle_devise/compare/v0.4.1...v0.4.2
+[0.4.1]: https://github.com/castle/castle_devise/compare/v0.4.0...v0.4.1
+[0.4.0]: https://github.com/castle/castle_devise/compare/v0.3.0...v0.4.0
 [0.3.0]: https://github.com/castle/castle_devise/compare/v0.2.0...v0.3.0
 [0.2.0]: https://github.com/castle/castle_devise/compare/v0.1.0...v0.2.0
 [0.1.0]: https://github.com/castle/castle_devise/releases/tag/v0.1.0

data/Gemfile

@@ -8,7 +8,7 @@ gemspec
 gem "actionmailer"
 gem "activerecord"
 gem "byebug"
-gem "railties", "~> 6.1"
+gem "railties", "~> 7.0"
 gem "rake"
 gem "rspec"
 gem "rspec-rails"

data/Gemfile.lock

@@ -1,177 +1,222 @@
 PATH
   remote: .
   specs:
-    castle_devise (0.3.0)
+    castle_devise (0.4.3)
       activesupport (>= 5.0)
-      castle-rb (>= 7.0, < 8.0)
+      castle-rb (>= 7.2, < 8.0)
       devise (>= 4.3.0, < 5.0)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    actionmailer (6.1.4)
-      actionpack (= 6.1.4)
-      actionview (= 6.1.4)
-      activejob (= 6.1.4)
-      activesupport (= 6.1.4)
+    actionmailer (7.0.4.3)
+      actionpack (= 7.0.4.3)
+      actionview (= 7.0.4.3)
+      activejob (= 7.0.4.3)
+      activesupport (= 7.0.4.3)
       mail (~> 2.5, >= 2.5.4)
+      net-imap
+      net-pop
+      net-smtp
       rails-dom-testing (~> 2.0)
-    actionpack (6.1.4)
-      actionview (= 6.1.4)
-      activesupport (= 6.1.4)
-      rack (~> 2.0, >= 2.0.9)
+    actionpack (7.0.4.3)
+      actionview (= 7.0.4.3)
+      activesupport (= 7.0.4.3)
+      rack (~> 2.0, >= 2.2.0)
       rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.2.0)
-    actionview (6.1.4)
-      activesupport (= 6.1.4)
+    actionview (7.0.4.3)
+      activesupport (= 7.0.4.3)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.1, >= 1.2.0)
-    activejob (6.1.4)
-      activesupport (= 6.1.4)
+    activejob (7.0.4.3)
+      activesupport (= 7.0.4.3)
       globalid (>= 0.3.6)
-    activemodel (6.1.4)
-      activesupport (= 6.1.4)
-    activerecord (6.1.4)
-      activemodel (= 6.1.4)
-      activesupport (= 6.1.4)
-    activesupport (6.1.4)
+    activemodel (7.0.4.3)
+      activesupport (= 7.0.4.3)
+    activerecord (7.0.4.3)
+      activemodel (= 7.0.4.3)
+      activesupport (= 7.0.4.3)
+    activesupport (7.0.4.3)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 1.6, < 2)
       minitest (>= 5.1)
       tzinfo (~> 2.0)
-      zeitwerk (~> 2.3)
-    addressable (2.8.0)
-      public_suffix (>= 2.0.2, < 5.0)
+    addressable (2.8.4)
+      public_suffix (>= 2.0.2, < 6.0)
     appraisal (2.3.0)
       bundler
       rake
       thor (>= 0.14.0)
     ast (2.4.2)
-    bcrypt (3.1.16)
+    bcrypt (3.1.19)
     builder (3.2.4)
     byebug (11.1.3)
-    castle-rb (7.1.1)
-    concurrent-ruby (1.1.9)
+    castle-rb (7.2.0)
+    concurrent-ruby (1.2.2)
     crack (0.4.5)
       rexml
     crass (1.0.6)
-    devise (4.8.0)
+    date (3.3.3)
+    devise (4.9.2)
       bcrypt (~> 3.0)
       orm_adapter (~> 0.1)
       railties (>= 4.1.0)
       responders
       warden (~> 1.2.3)
-    diff-lcs (1.4.4)
+    diff-lcs (1.5.0)
     docile (1.4.0)
-    erubi (1.10.0)
-    globalid (0.5.1)
+    erubi (1.12.0)
+    globalid (1.1.0)
       activesupport (>= 5.0)
     hashdiff (1.0.1)
-    i18n (1.8.10)
+    i18n (1.13.0)
       concurrent-ruby (~> 1.0)
-    loofah (2.10.0)
+    json (2.6.3)
+    language_server-protocol (3.17.0.3)
+    lint_roller (1.0.0)
+    loofah (2.21.3)
       crass (~> 1.0.2)
-      nokogiri (>= 1.5.9)
-    mail (2.7.1)
+      nokogiri (>= 1.12.0)
+    mail (2.8.1)
       mini_mime (>= 0.1.1)
+      net-imap
+      net-pop
+      net-smtp
     method_source (1.0.0)
-    mini_mime (1.1.0)
-    minitest (5.14.4)
-    nokogiri (1.11.7-x86_64-darwin)
+    mini_mime (1.1.2)
+    mini_portile2 (2.8.2)
+    minitest (5.18.0)
+    net-imap (0.3.4)
+      date
+      net-protocol
+    net-pop (0.1.2)
+      net-protocol
+    net-protocol (0.2.1)
+      timeout
+    net-smtp (0.3.3)
+      net-protocol
+    nokogiri (1.15.1)
+      mini_portile2 (~> 2.8.2)
+      racc (~> 1.4)
+    nokogiri (1.15.1-aarch64-linux)
+      racc (~> 1.4)
+    nokogiri (1.15.1-arm64-darwin)
+      racc (~> 1.4)
+    nokogiri (1.15.1-x86_64-darwin)
       racc (~> 1.4)
     orm_adapter (0.5.0)
-    parallel (1.20.1)
-    parser (3.0.2.0)
+    parallel (1.23.0)
+    parser (3.2.2.1)
       ast (~> 2.4.1)
-    public_suffix (4.0.6)
-    racc (1.5.2)
-    rack (2.2.3)
-    rack-test (1.1.0)
-      rack (>= 1.0, < 3)
+    public_suffix (5.0.1)
+    racc (1.6.2)
+    rack (2.2.7)
+    rack-test (2.1.0)
+      rack (>= 1.3)
     rails-dom-testing (2.0.3)
       activesupport (>= 4.2.0)
       nokogiri (>= 1.6)
-    rails-html-sanitizer (1.3.0)
-      loofah (~> 2.3)
-    railties (6.1.4)
-      actionpack (= 6.1.4)
-      activesupport (= 6.1.4)
+    rails-html-sanitizer (1.5.0)
+      loofah (~> 2.19, >= 2.19.1)
+    railties (7.0.4.3)
+      actionpack (= 7.0.4.3)
+      activesupport (= 7.0.4.3)
       method_source
-      rake (>= 0.13)
+      rake (>= 12.2)
       thor (~> 1.0)
-    rainbow (3.0.0)
+      zeitwerk (~> 2.5)
+    rainbow (3.1.1)
     rake (13.0.6)
-    regexp_parser (2.1.1)
-    responders (3.0.1)
-      actionpack (>= 5.0)
-      railties (>= 5.0)
+    regexp_parser (2.8.0)
+    responders (3.1.0)
+      actionpack (>= 5.2)
+      railties (>= 5.2)
     rexml (3.2.5)
-    rspec (3.10.0)
-      rspec-core (~> 3.10.0)
-      rspec-expectations (~> 3.10.0)
-      rspec-mocks (~> 3.10.0)
-    rspec-core (3.10.1)
-      rspec-support (~> 3.10.0)
-    rspec-expectations (3.10.1)
+    rspec (3.12.0)
+      rspec-core (~> 3.12.0)
+      rspec-expectations (~> 3.12.0)
+      rspec-mocks (~> 3.12.0)
+    rspec-core (3.12.2)
+      rspec-support (~> 3.12.0)
+    rspec-expectations (3.12.3)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.10.0)
-    rspec-mocks (3.10.2)
+      rspec-support (~> 3.12.0)
+    rspec-mocks (3.12.5)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.10.0)
-    rspec-rails (5.0.1)
-      actionpack (>= 5.2)
-      activesupport (>= 5.2)
-      railties (>= 5.2)
-      rspec-core (~> 3.10)
-      rspec-expectations (~> 3.10)
-      rspec-mocks (~> 3.10)
-      rspec-support (~> 3.10)
-    rspec-support (3.10.2)
-    rubocop (1.18.4)
+      rspec-support (~> 3.12.0)
+    rspec-rails (6.0.2)
+      actionpack (>= 6.1)
+      activesupport (>= 6.1)
+      railties (>= 6.1)
+      rspec-core (~> 3.12)
+      rspec-expectations (~> 3.12)
+      rspec-mocks (~> 3.12)
+      rspec-support (~> 3.12)
+    rspec-support (3.12.0)
+    rubocop (1.50.2)
+      json (~> 2.3)
       parallel (~> 1.10)
-      parser (>= 3.0.0.0)
+      parser (>= 3.2.0.0)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 1.8, < 3.0)
-      rexml
-      rubocop-ast (>= 1.8.0, < 2.0)
+      rexml (>= 3.2.5, < 4.0)
+      rubocop-ast (>= 1.28.0, < 2.0)
       ruby-progressbar (~> 1.7)
-      unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.8.0)
-      parser (>= 3.0.1.1)
-    rubocop-performance (1.11.4)
+      unicode-display_width (>= 2.4.0, < 3.0)
+    rubocop-ast (1.28.1)
+      parser (>= 3.2.1.0)
+    rubocop-performance (1.16.0)
       rubocop (>= 1.7.0, < 2.0)
       rubocop-ast (>= 0.4.0)
-    ruby-progressbar (1.11.0)
-    simplecov (0.21.2)
+    ruby-progressbar (1.13.0)
+    simplecov (0.22.0)
       docile (~> 1.1)
       simplecov-html (~> 0.11)
       simplecov_json_formatter (~> 0.1)
     simplecov-html (0.12.3)
-    simplecov_json_formatter (0.1.3)
-    sqlite3 (1.4.2)
-    standard (1.1.6)
-      rubocop (= 1.18.4)
-      rubocop-performance (= 1.11.4)
-    thor (1.1.0)
-    tzinfo (2.0.4)
+    simplecov_json_formatter (0.1.4)
+    sqlite3 (1.6.3)
+      mini_portile2 (~> 2.8.0)
+    sqlite3 (1.6.3-aarch64-linux)
+    sqlite3 (1.6.3-arm64-darwin)
+    sqlite3 (1.6.3-x86_64-darwin)
+    standard (1.28.2)
+      language_server-protocol (~> 3.17.0.2)
+      lint_roller (~> 1.0)
+      rubocop (~> 1.50.2)
+      standard-custom (~> 1.0.0)
+      standard-performance (~> 1.0.1)
+    standard-custom (1.0.0)
+      lint_roller (~> 1.0)
+    standard-performance (1.0.1)
+      lint_roller (~> 1.0)
+      rubocop-performance (~> 1.16.0)
+    thor (1.2.2)
+    timeout (0.3.2)
+    tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
-    unicode-display_width (2.0.0)
-    vcr (6.0.0)
+    unicode-display_width (2.4.2)
+    vcr (6.1.0)
     warden (1.2.9)
       rack (>= 2.0.9)
-    webmock (3.13.0)
-      addressable (>= 2.3.6)
+    webmock (3.18.1)
+      addressable (>= 2.8.0)
       crack (>= 0.3.2)
       hashdiff (>= 0.4.0, < 2.0.0)
-    zeitwerk (2.4.2)
+    zeitwerk (2.6.8)
 
 PLATFORMS
+  aarch64-linux
+  arm64-darwin-21
+  ruby
   x86_64-darwin-18
   x86_64-darwin-19
   x86_64-darwin-20
+  x86_64-darwin-22
 
 DEPENDENCIES
   actionmailer
@@ -179,7 +224,7 @@ DEPENDENCIES
   appraisal (~> 2.3.0)
   byebug
   castle_devise!
-  railties (~> 6.1)
+  railties (~> 7.0)
   rake
   rspec
   rspec-rails
@@ -190,4 +235,4 @@ DEPENDENCIES
   webmock
 
 BUNDLED WITH
-   2.2.23
+   2.4.12

data/README.md

@@ -2,11 +2,11 @@
 
 **Disclaimer:** CastleDevise is currently in beta. There might be some upcoming breaking changes to the gem before we stabilize the API.
 
---- 
+---
 
-# CastleDevice
+# CastleDevise
 
-CastleDevise is a [Devise](https://github.com/heartcombo/devise) plugin that integrates [Castle](https://castle.io). 
+CastleDevise is a [Devise](https://github.com/heartcombo/devise) plugin that integrates [Castle](https://castle.io).
 
 It currently provides the following features:
 - preventing bots from registration attacks using Castle's [Filter API](https://docs.castle.io/v1/reference/api-reference/#filter)
@@ -26,11 +26,11 @@ gem 'castle_devise'
 
 Create `config/initializers/castle_devise.rb` and fill in your API secret and APP_ID from the [Castle Dashboard](https://dashboard.castle.io/settings/general)
 
-```ruby 
+```ruby
 CastleDevise.configure do |config|
   config.api_secret = ENV.fetch('CASTLE_API_SECRET')
   config.app_id = ENV.fetch('CASTLE_APP_ID')
-  
+
   # When monitoring mode is enabled, CastleDevise sends
   # requests to Castle but it doesn't act on the "deny" verdicts.
   #
@@ -45,10 +45,10 @@ end
 
 Add `:castle_protectable` Devise module to your User model:
 
-```ruby 
+```ruby
 class User < ApplicationRecord
   devise :database_authenticatable, :registerable,
-         :recoverable, :rememberable, :validatable, 
+         :recoverable, :rememberable, :validatable,
          :castle_protectable # <--- add this
 end
 ```
@@ -211,3 +211,26 @@ CastleDevise.configure do |config|
   end
 end
 ```
+
+## Development
+
+### Setup
+
+```bash
+bundle install
+```
+
+### Running tests
+
+Most of the specs should pass just by running the following command:
+
+```bash
+bundle exec rake
+```
+
+We also have a few VCR tests that will periodically rebuild the cassettes just to make sure that the integration with Castle API is working.
+For those, you need to run your specs with a proper Castle API Secret:
+
+```bash
+CASTLE_API_SECRET=your_api_secret bundle exec rake
+```

data/castle_devise.gemspec

@@ -28,7 +28,7 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
 
   spec.add_dependency "activesupport", ">= 5.0"
-  spec.add_dependency "castle-rb", ">= 7.0", "< 8.0"
+  spec.add_dependency "castle-rb", ">= 7.2", "< 8.0"
   spec.add_dependency "devise", ">= 4.3.0", "< 5.0"
 
   spec.add_development_dependency "appraisal", "~> 2.3.0"

data/gemfiles/{rails_5.2.gemfile → rails_7.0.gemfile}

@@ -4,7 +4,7 @@ source "https://rubygems.org"
 
 gem "actionmailer"
 gem "activerecord"
-gem "railties", "~> 5.2.6"
+gem "railties", "~> 7.0"
 gem "rake"
 gem "rspec"
 gem "rspec-rails"

data/lib/castle_devise/configuration.rb

@@ -39,6 +39,14 @@ module CastleDevise
     #   @return [Array<Proc>] Array of procs that will get called after a request to the Castle API
     config_accessor(:after_request_hooks) { [] }
 
+    # @!attribute castle_sdk_facade_class
+    #   @return [Class] Castle API implementation
+    config_accessor(:castle_sdk_facade_class) { ::CastleDevise::SdkFacade }
+
+    # @!attribute castle_client
+    #   @return [Class] Castle SDK client
+    config_accessor(:castle_client) { ::Castle::Client.new }
+
     # Adds a new before_request hook
     # @param blk [Proc]
     def before_request(&blk)

data/lib/castle_devise/hooks/castle_protectable.rb

@@ -23,9 +23,11 @@ Warden::Manager.after_authentication do |resource, warden, opts|
       context.logout!
     end
   rescue Castle::InvalidParametersError
-    # TODO: We should act differently if the error is about missing/invalid request token
-    #   compared to any other validation errors. However, we can't do this with the
-    #   current Castle SDK as it doesn't give us any way to differentiate these two cases.
+    # log API error and allow
+    CastleDevise.logger.warn(
+      "[CastleDevise] /v1/risk request contained invalid parameters."
+    )
+  rescue Castle::InvalidRequestTokenError
     CastleDevise.logger.warn(
       "[CastleDevise] /v1/risk request contained invalid parameters." \
       " This might mean that either you didn't configure Castle's Javascript properly, or" \
@@ -42,6 +44,9 @@ end
 
 Warden::Manager.before_failure do |env, opts|
   next if opts[:castle_devise] == :skip
+  # recall is set by Devise on a failed login attempt. If it's not set, this hook might fire on any
+  # authentication failure attempt (eg. trying to access a resource while unauthenticated), not just login specifically
+  next unless opts.key?(:recall)
 
   resource_class = Devise.mappings[opts[:scope]].to
 
@@ -52,12 +57,12 @@ Warden::Manager.before_failure do |env, opts|
   context = CastleDevise::Context.from_rack_env(env, opts[:scope])
 
   begin
-    CastleDevise.sdk_facade.log(
+    CastleDevise.sdk_facade.filter(
       event: "$login",
       status: "$failed",
       context: context
     )
   rescue Castle::Error => e
-    CastleDevise.logger.error("[CastleDevise] log($login, $failed): #{e}")
+    CastleDevise.logger.error("[CastleDevise] filter($login, $failed): #{e}")
   end
 end

data/lib/castle_devise/patches/registrations_controller.rb

@@ -28,16 +28,19 @@ module CastleDevise
               context: context
             )
           rescue Castle::InvalidParametersError
-            # TODO: We should act differently if the error is about missing/invalid request token
-            #   compared to any other validation errors. However, we can't do this with the
-            #   current Castle SDK as it doesn't give us any way to differentiate these two cases.
+            # log API error and allow
             CastleDevise.logger.warn(
-              "[CastleDevise] /v1/risk request contained invalid parameters." \
-              " This might mean that either you didn't configure Castle's Javascript properly," \
+              "[CastleDevise] /v1/risk request contained invalid parameters."
+            )
+          rescue Castle::InvalidRequestTokenError
+            CastleDevise.logger.warn(
+              "[CastleDevise] /v1/risk request contained invalid token." \
+              " This means that either you didn't configure Castle's Javascript properly," \
               " or a request has been made without Javascript (eg. cURL/bot)." \
               " Such a request is treated as if Castle responded with a 'deny' action in" \
               " non-monitoring mode."
             )
+            # TODO: Implement a deny mechanism for this action.
           rescue Castle::Error => e
             # log API errors and allow
             CastleDevise.logger.error("[CastleDevise] risk($profile_update): #{e}")
@@ -81,12 +84,14 @@ module CastleDevise
           # everything fine, continue
         end
       rescue Castle::InvalidParametersError
-        # TODO: We should act differently if the error is about missing/invalid request token
-        #   compared to any other validation errors. However, we can't do this with the
-        #   current Castle SDK as it doesn't give us any way to differentiate these two cases.
+        # log error and allow
+        CastleDevise.logger.warn(
+          "[CastleDevise] /v1/filter request contained invalid parameters."
+        )
+      rescue Castle::InvalidRequestTokenError
         CastleDevise.logger.warn(
-          "[CastleDevise] /v1/filter request contained invalid parameters." \
-          " This might mean that either you didn't configure Castle's Javascript properly, or" \
+          "[CastleDevise] /v1/filter request contained invalid request token." \
+          " This means that either you didn't configure Castle's Javascript properly, or" \
           " a request has been made without Javascript (eg. cURL/bot)." \
           " Such a request is treated as if Castle responded with a 'deny' action in" \
           " non-monitoring mode."

data/lib/castle_devise/sdk_facade.rb

@@ -20,12 +20,13 @@ module CastleDevise
     # @param context [CastleDevise::Context]
     # @return [Hash] Raw API response
     # @see https://docs.castle.io/v1/reference/api-reference/#v1filter
-    def filter(event:, context:)
+    def filter(event:, context:, status: "$attempted")
       payload = {
         event: event,
-        user: {
+        status: status,
+        params: {
           email: context.email
-        },
+        }.compact,
         request_token: context.request_token,
         context: payload_context(context.rack_request)
       }

data/lib/castle_devise/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module CastleDevise
-  VERSION = "0.3.0"
+  VERSION = "0.4.3"
 end

data/lib/castle_devise.rb

@@ -25,6 +25,8 @@ module CastleDevise
 
     # @yieldparam [CastleDevise::Configuration] configuration object
     def configure
+      @sdk_facade = @castle = nil
+
       yield configuration
 
       Castle.api_secret = configuration.api_secret
@@ -38,7 +40,7 @@ module CastleDevise
 
     # @return [CastleDevise::SdkFacade]
     def sdk_facade
-      @sdk_facade ||= CastleDevise::SdkFacade.new(
+      @sdk_facade ||= configuration.castle_sdk_facade_class.new(
         castle,
         configuration.before_request_hooks,
         configuration.after_request_hooks
@@ -47,15 +49,15 @@ module CastleDevise
 
     # @return [Castle::Client]
     def castle
-      @castle ||= Castle::Client.new
+      @castle ||= configuration.castle_client
     end
   end
 end
 
+require_relative "castle_devise/sdk_facade"
 require_relative "castle_devise/configuration"
 require_relative "castle_devise/context"
 require_relative "castle_devise/patches"
-require_relative "castle_devise/sdk_facade"
 require_relative "castle_devise/controllers/helpers"
 require_relative "castle_devise/helpers/castle_helper"
 require_relative "castle_devise/hooks/castle_protectable"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: castle_devise
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.4.3
 platform: ruby
 authors:
 - Kacper Madej
@@ -10,7 +10,7 @@ authors:
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-08-30 00:00:00.000000000 Z
+date: 2023-07-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -32,7 +32,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '7.0'
+        version: '7.2'
     - - "<"
       - !ruby/object:Gem::Version
         version: '8.0'
@@ -42,7 +42,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '7.0'
+        version: '7.2'
     - - "<"
       - !ruby/object:Gem::Version
         version: '8.0'
@@ -102,9 +102,9 @@ files:
 - bin/console
 - bin/setup
 - castle_devise.gemspec
-- gemfiles/rails_5.2.gemfile
 - gemfiles/rails_6.0.gemfile
 - gemfiles/rails_6.1.gemfile
+- gemfiles/rails_7.0.gemfile
 - lib/castle_devise.rb
 - lib/castle_devise/configuration.rb
 - lib/castle_devise/context.rb
@@ -140,7 +140,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.23
+rubygems_version: 3.3.3
 signing_key:
 specification_version: 4
 summary: Integrates Castle with Devise