cru-auth-lib 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 14b85381650644e3013a5c2c2d4e3078f90ccf57
+  data.tar.gz: a37f916e4cb62f39be1e2933c01900290d96165d
+SHA512:
+  metadata.gz: 236cb01480553d09b3e47004af7c6da6cdc15febe5afa93f39e2b0410200773a3e9c3b9545954174e8ecc2a299e4d26a41a5c2192181ec6af55254ce935c6a50
+  data.tar.gz: 3973ae2070ffaf406e5eb1e1b18493909e4f74bd20a808b438f725becd9f7575c9f90df84e17d0a375917046316d0f2cc55975fcc9355949d9f1f52804c9cbd0

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2017 Cru, Brian Zoetewey
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,21 @@
+# CruAuthLib
+Collection of common auth models for use in shared API authentication.
+
+## Installation
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'cru-auth-lib'
+```
+
+And then execute:
+```bash
+$ bundle
+```
+
+Or install it yourself as:
+```bash
+$ gem install cru-auth-lib
+```
+## License
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+require 'bundler/gem_tasks'

data/lib/cru_auth_lib.rb

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+
+require 'cru_auth_lib/version'
+require 'cru_auth_lib/access_token'
+require 'cru_auth_lib/access_token_serializer'
+require 'cru_auth_lib/access_token_protected_concern'
+require 'cru_auth_lib/api_error'
+require 'cru_auth_lib/api_error_serializer'
+require 'redis'
+
+module CruAuthLib
+  class << self
+    attr_accessor :redis_host, :redis_port, :redis_db, :redis_client
+
+    def configure
+      yield self
+    end
+
+    def redis_host
+      @redis_host ||= 'localhost'
+    end
+
+    def redis_port
+      @redis_port ||= '6379'
+    end
+
+    def redis_db
+      @redis_db ||= 2
+    end
+
+    def redis_client
+      ::Redis.new(host: CruAuthLib.redis_host,
+                  port: CruAuthLib.redis_port,
+                  db: CruAuthLib.redis_db)
+    end
+  end
+end

data/lib/cru_auth_lib/access_token.rb

@@ -0,0 +1,54 @@
+# frozen_string_literal: true
+
+require 'active_model_serializers'
+require 'securerandom'
+
+module CruAuthLib
+  class AccessToken < ActiveModelSerializers::Model
+    attr_accessor :key_guid, :relay_guid, :guid, :email, :first_name, :last_name, :token, :pgt
+
+    def initialize(attributes = {})
+      attributes.symbolize_keys!
+      super(attributes)
+      @token = generate_access_token unless attributes[:token]
+      write
+    end
+
+    class << self
+      def read(token)
+        json = exist?(token)
+        new(Oj.load(json)) if json
+      end
+
+      def exist?(token)
+        redis_client.get(redis_key(token))
+      end
+
+      def redis_client
+        @redis_client ||= CruAuthLib.redis_client
+      end
+
+      def redis_key(token)
+        ['cru_lib', 'access_token', token].join(':')
+      end
+
+      def del(token)
+        redis_client.del(redis_key(token))
+      end
+    end
+
+    private
+
+    def generate_access_token
+      loop do
+        attributes[:token] = SecureRandom.uuid.delete('-')
+        break unless self.class.exist?(attributes[:token])
+      end
+      attributes[:token]
+    end
+
+    def write
+      self.class.redis_client.setex(self.class.redis_key(attributes[:token]), 30.minutes.to_i, to_json)
+    end
+  end
+end

data/lib/cru_auth_lib/access_token_protected_concern.rb

@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+module CruAuthLib
+  module AccessTokenProtectedConcern
+    extend ActiveSupport::Concern
+
+    protected
+
+    def authenticate_request
+      authenticate_token || render_unauthorized
+    end
+
+    def authenticate_token
+      token = oauth_access_token_from_header
+      return unless oauth_access_token_from_header
+      @access_token = AccessToken.read(token)
+    end
+
+    # grabs access_token from header if one is present
+    def oauth_access_token_from_header
+      auth_header = request.env['HTTP_AUTHORIZATION'] || ''
+      match = auth_header.match(/^Bearer\s(.*)/)
+      return match[1] if match.present?
+      false
+    end
+
+    def render_unauthorized
+      headers['WWW-Authenticate'] = %(CAS realm="Application")
+      render_error('Bad token', status: 401)
+    end
+  end
+end

data/lib/cru_auth_lib/access_token_serializer.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module CruAuthLib
+  class AccessTokenSerializer < ActiveModel::Serializer
+    attributes :key_guid, :email, :first_name, :last_name, :token
+
+    def _type
+      'access_token'
+    end
+
+    def id
+      object.token
+    end
+  end
+end

data/lib/cru_auth_lib/api_error.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+module CruAuthLib
+  class ApiError < ActiveModelSerializers::Model
+    attr_accessor :message, :options
+  end
+end

data/lib/cru_auth_lib/api_error_serializer.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module CruAuthLib
+  class ApiErrorSerializer < ActiveModel::Serializer
+    attributes :message
+
+    def _type
+      'api_error'
+    end
+
+    def id
+      _type
+    end
+  end
+end

data/lib/cru_auth_lib/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module CruAuthLib
+  VERSION = '0.1.0'
+end

metadata

@@ -0,0 +1,82 @@
+--- !ruby/object:Gem::Specification
+name: cru-auth-lib
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Brian Zoetewey
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2017-05-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: active_model_serializers
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.10.0.rc1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.10.0.rc1
+- !ruby/object:Gem::Dependency
+  name: redis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+description: Collection of common auth models for use in shared authentication.
+email:
+- brian.zoetewey@cru.org
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- lib/cru_auth_lib.rb
+- lib/cru_auth_lib/access_token.rb
+- lib/cru_auth_lib/access_token_protected_concern.rb
+- lib/cru_auth_lib/access_token_serializer.rb
+- lib/cru_auth_lib/api_error.rb
+- lib/cru_auth_lib/api_error_serializer.rb
+- lib/cru_auth_lib/version.rb
+homepage: https://github.com/CruGlobal/cru-auth-lib
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.8
+signing_key: 
+specification_version: 4
+summary: Cru Auth API library
+test_files: []