RubyGems - devise-rownd - Versions diffs - 1.0.0 → 1.0.3 - Mend

devise-rownd 1.0.0 → 1.0.3

Files changed (8) hide show

checksums.yaml +4 -4
data/app/controllers/devise/rownd/auth_controller.rb +4 -1
data/config/initializers/app_config.rb +12 -6
data/lib/devise/rownd/caching.rb +30 -0
data/lib/devise/rownd/strategies/rownd_authenticatable.rb +38 -27
data/lib/devise/rownd/version.rb +1 -1
data/lib/devise/rownd.rb +1 -0
metadata +17 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 472c2fc42ba778e0a7b888b3855a26f625ec83c15b5420cedb6441549f8e9336
-  data.tar.gz: 81fd0a737715b7be796acb202b7d267a40663128e2fb300d025ccd7f307a09ae
+  metadata.gz: d54df50c4a7815d8fe0ee291891134f7e1fbb9f9afebb935b48e6f34ec649467
+  data.tar.gz: 24410b4335a8e44ed8d1bb62215ce43ec8215e5d3ef949565c022ce533188f6b
 SHA512:
-  metadata.gz: 8aea286cffa63aed1791e8599eb211c9043448dd2ceddf147d489bb09f633dc6c1c134e7ba30220cc52fda5c8eaaeabc650596121dbec73af5d3c750d624147f
-  data.tar.gz: 59a104ec432e8fbbc4e2814aff6713da1caf2d330c07e565a353f2c61240d5516e2fd7e93a84c00931592376a443445d39d4c7d3f2015d1dcd41ba9fb37b8704
+  metadata.gz: 4323c21cdf8ba62dc8d11c4c95016064987ca2d256cef7e525cc635286ad57d2fd40fc2d52708677d5d6a970ad335800cd728326befdfbc34dc9e9d8dbd535d9
+  data.tar.gz: c835bc2862a1338fb379c0578a4dc9493a372ff0aadf1ec4f1aebb011a383a595b401b5e1868ea53a0584cf8118c5ff3d543525216ff9d20f1148d958205780a

data/app/controllers/devise/rownd/auth_controller.rb CHANGED Viewed

@@ -20,9 +20,11 @@ module Devise::Rownd
         warden.authenticate!(scope: :user)
       end
+      warden.authenticate!(scope: :user)
       render json: {
         message: 'Successfully authenticated user',
-        should_refresh_page: new_access_token || session[:rownd_stale_data] == true,
+        should_refresh_page: new_access_token || session[:rownd_stale_data] == true
       }, status: :ok
     end
@@ -39,6 +41,7 @@ module Devise::Rownd
       session[:rownd_stale_data] = true
       warden.logout(:user)
       warden.authenticate!(scope: :user)
+      session[:rownd_stale_data] = false
       render json: {
         # should_refresh_page: true
       }, status: :ok

data/config/initializers/app_config.rb CHANGED Viewed

@@ -1,19 +1,25 @@
 require 'devise/rownd/api'
+require 'devise/rownd/caching'
 module Devise
   module Rownd
     include API
     def app_config
-      fetch_app_config
+      config = Devise::Rownd::Caching.fetch('rownd_app_config', 15.minutes) { fetch_app_config }
+      raise 'Failed to fetch app config' unless config
+      config
     end
     def self.fetch_app_config
-      Rails.cache.fetch("rownd_app_config", expires_in: 15.minutes) do
-        response = API.make_api_call('/hub/app-config', { method: 'GET',
-                                                          headers: { 'x-rownd-app-key' => app_key } })
-        response.body['app'] if response.success?
-      end
+      response = API.make_api_call('/hub/app-config', { method: 'GET',
+                                                        headers: { 'x-rownd-app-key' => app_key } })
+      return response.body['app'] if response.success?
+      Rails.logger.error("Failed to fetch app config from Rownd: #{response.body['message']}")
+      nil
     end
     module_function :app_config

data/lib/devise/rownd/caching.rb ADDED Viewed

@@ -0,0 +1,30 @@
+require 'async'
+module Devise::Rownd
+  module Caching
+    def fetch(cache_key, ttl)
+      cache_val = Rails.cache.read(cache_key)
+      # If there's nothing in the cache, yield the value and write it to cache
+      if cache_val.nil?
+        return_value = yield
+        Rails.cache.write(cache_key, [return_value, Time.now]) if return_value
+      else
+        return_value = cache_val[0]
+        last_fetch_time = cache_val[1]
+        # Start a new thread to update the cached value if the TTL is exceeded
+        Async do
+          if Time.now - last_fetch_time > ttl
+            new_value = yield
+            Rails.cache.write(cache_key, [new_value, Time.now]) if new_value
+          end
+        end
+      end
+      return_value
+    end
+    module_function :fetch
+  end
+end

data/lib/devise/rownd/strategies/rownd_authenticatable.rb CHANGED Viewed

@@ -2,6 +2,7 @@ require 'devise'
 require 'devise/strategies/authenticatable'
 require 'devise/rownd/user'
 require 'devise/rownd/api'
+require 'devise/rownd/caching'
 require 'jose'
 require_relative '../../../../config/initializers/app_creds'
@@ -20,18 +21,26 @@ module Devise
         @access_token = session[:rownd_user_access_token]
         return fail!('No Access Token') unless @access_token
-        decoded_jwt = verify_token(@access_token)
-        @app_id = decoded_jwt['aud'].find(/^app:.+/).first.split(':').last
+        begin
+          @decoded_jwt = verify_token(@access_token)
-        configured_app_id = Devise::Rownd.app_id
-        ok = @app_id == configured_app_id
-        return fail!('JWT not authorized for app') unless ok
+          @app_id = @decoded_jwt['aud'].find(/^app:.+/).first.split(':').last
-        rownd_user = Devise::Rownd::User.new(fetch_user)
+          configured_app_id = Devise::Rownd.app_id
+          ok = @app_id == configured_app_id
+          return fail!('JWT not authorized for app') unless ok
-        return fail!(:unable_to_authenticate) unless rownd_user
+          user_data = fetch_user
+          return fail!('Failed to fetch user') unless user_data
-        success!(rownd_user)
+          rownd_user = Devise::Rownd::User.new(user_data)
+          return fail!('Failed to initialize user') unless rownd_user
+          success!(rownd_user)
+        rescue StandardError => e
+          fail!("Unable to authenticate: #{e.message}")
+        end
       end
       def return_to_after_sign_out
@@ -39,16 +48,17 @@ module Devise
       end
       def fetch_user
+        cache_key = "rownd_user_#{@decoded_jwt['jti']}"
         if session[:rownd_stale_data] == true
           data = fetch_user_from_api
-          Rails.cache.write('rownd_user', data, expires_in: 1.minute)
+          return nil unless data
+          Rails.cache.write(cache_key, data, expires_in: 1.minute)
           session.delete(:rownd_stale_data) if session[:rownd_stale_data]
           return data
         end
-        Rails.cache.fetch('rownd_user', expires_in: 1.minute) do
-          fetch_user_from_api
-        end
+        Devise::Rownd::Caching.fetch(cache_key, 1.minute) { fetch_user_from_api }
       end
       def fetch_user_from_api
@@ -61,31 +71,32 @@ module Devise
         )
         return response.body['data'] if response.success?
-        raise StandardError, response.body['message']
+        Rails.logger.error("Failed to fetch user: #{response.body['message']}")
+        nil
       end
       def verify_token(access_token)
-        for jwk in jwks
-          begin
-            response = JOSE::JWT.verify_strict(jwk, ['EdDSA'], access_token)
-            return response[1].fields if response[0]
-          rescue StandardError => e
-            puts "Error: #{e}"
-            next
-          end
-          raise StandardError
+        raise StandardError, 'No JWKs' unless jwks
+        jwks.each do |jwk|
+          response = JOSE::JWT.verify_strict(jwk, ['EdDSA'], access_token)
+          return response[1].fields if response[0]
+        rescue StandardError
+          next
         end
+        raise StandardError, 'Failed to verify JWT. No matching JWKs'
       end
       def jwks
-        Rails.cache.fetch('rownd_jwks', expires_in: 15.minutes) do
-          fetch_jwks
-        end
+        Devise::Rownd::Caching.fetch('rownd_jwks', 15.minutes) { fetch_jwks_from_api }
       end
-      def fetch_jwks
+      def fetch_jwks_from_api
         response = ::Devise::Rownd::API.make_api_call('/hub/auth/keys')
-        response.body['keys']
+        return response.body['keys'] if response.success?
+        Rails.logger.error("Failed to fetch JWKs: #{response.body['message']}")
+        nil
       end
     end
   end

data/lib/devise/rownd/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Devise
   module Rownd
-    VERSION = '1.0.0'
+    VERSION = '1.0.3'
   end
 end

data/lib/devise/rownd.rb CHANGED Viewed

@@ -4,6 +4,7 @@ require 'devise/rownd/strategies'
 require 'devise/rownd/models'
 require 'devise/rownd/api'
 require 'devise/rownd/user'
+require 'devise/rownd/caching'
 module Devise
   module Rownd

metadata CHANGED Viewed

@@ -1,15 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: devise-rownd
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.3
 platform: ruby
 authors:
 - Bobby Radford
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-04-22 00:00:00.000000000 Z
+date: 2022-05-19 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: async
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.30.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.30.2
 - !ruby/object:Gem::Dependency
   name: devise
   requirement: !ruby/object:Gem::Requirement
@@ -191,6 +205,7 @@ files:
 - config/routes.rb
 - lib/devise/rownd.rb
 - lib/devise/rownd/api.rb
+- lib/devise/rownd/caching.rb
 - lib/devise/rownd/custom_failure.rb
 - lib/devise/rownd/engine.rb
 - lib/devise/rownd/models.rb