RubyGems - foobara-auth - Versions diffs - 0.0.13 → 0.1.1 - Mend

foobara-auth 0.0.13 → 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +9 -0
data/src/delete_api_key.rb +46 -0
data/src/get_api_key_summaries.rb +30 -0
data/src/login.rb +1 -1
data/src/types/api_key_summary.rb +14 -0
data/src/verify_password.rb +5 -9
data/src/verify_secret.rb +3 -7
metadata +16 -7

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ec416a90f775b81c196934c7e9db2dfb4b8da390dc2133c737a889ef5aaacede
-  data.tar.gz: 0b24c1e2b94652a74e8bb27eacafabfffe6141022b86b1e233b566ed3feec4ae
+  metadata.gz: 1a40375ebe8e9f9689ea358e55c4e8e00122cd84c4ddcff9a44ad0fbdd9f8138
+  data.tar.gz: 0a79985c2914d66cff7fc4c0f8325757b3ff4863667bcc5f957cda868063d17d
 SHA512:
-  metadata.gz: 51e2a3098e111be28f582c9870e525840d769d3ae617918364b51a65ae122674b19fcaca27e140d16364cf1550549b07422a9f9480d32cebfa4f132b23259eaa
-  data.tar.gz: 634134b416bdcd9c97f21ad7fabfeaadfe04851cd7fe28226664d5ef6af23c43d03ec44f575605d25699b7d849629964a4c33fa47b16d0616016afd3a2e742d5
+  metadata.gz: 65b59bfb16f16c5ffb8c03c795977031be02d5458c472571c2781ba6b3e3173a8397c09917781a29b8696f8c7f4f3c3992030d764586cfdfbd024db55c25657c
+  data.tar.gz: 7b887fc6f7cc7945fd04d65b4f43d31a6f5191004f775edb863e62adf9232f921de75c075173a5392e1842e917d94450db0cee3cf1fa5a9862f81e40db3db0eb

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,12 @@
+## [0.1.1] - 2025-10-02
+- Add DeleteApiKey command
+- Add GetApiKeySummary command
+## [0.1.0] - 2025-08-22
+- Mark as compatible with Foobara 0.1.0
 ## [0.0.13] - 2025-05-13
 - Allow logout to work even if refresh token is deleted/invalid

data/src/delete_api_key.rb ADDED Viewed

@@ -0,0 +1,46 @@
+require "securerandom"
+require "base64"
+require_relative "build_secret"
+require_relative "create_token"
+module Foobara
+  module Auth
+    class DeleteApiKey < Foobara::Command
+      inputs do
+        token Types::Token, :required
+      end
+      def execute
+        remove_api_key_from_user
+        delete_token
+        nil
+      end
+      def load_records
+        super
+        self.user = Types::User.that_owns(token, :api_keys)
+      end
+      attr_accessor :user
+      # should Foobara do this automatically? Or at least support it? Similar to CASCADE in SQL
+      def remove_api_key_from_user
+        api_keys = user.api_keys
+        if api_keys.include?(token)
+          user.api_keys = api_keys - [token]
+        else
+          # :nocov:
+          raise "User has no such api key"
+          # :nocov:
+        end
+      end
+      def delete_token
+        token.hard_delete!
+      end
+    end
+  end
+end

data/src/get_api_key_summaries.rb ADDED Viewed

@@ -0,0 +1,30 @@
+module Foobara
+  module Auth
+    class GetApiKeySummaries < Foobara::Command
+      inputs do
+        user Types::User, :required
+      end
+      result [Types::ApiKeySummary]
+      def execute
+        build_summaries
+        summaries
+      end
+      attr_accessor :api_keys, :summaries
+      def build_summaries
+        self.summaries = user.api_keys.map do |api_key|
+          Types::ApiKeySummary.new(
+            token_id: api_key.id,
+            state: api_key.state,
+            expires_at: api_key.expires_at,
+            created_at: api_key.created_at
+          )
+        end
+      end
+    end
+  end
+end

data/src/login.rb CHANGED Viewed

@@ -53,7 +53,7 @@ module Foobara
           rescue Halt
             # I'm a bit nervous about rescuing Halt and clearing the errors, but I'm more nervous bout
             # introducing a #run_subcommand method.
-            if error_collection.size == 1 && error_collection.errors.first.is_a?(FindUser::UserNotFoundError) &&
+            if error_collection.size == 1 && error_collection.first.is_a?(FindUser::UserNotFoundError) &&
                username_or_email.include?("@")
               error_collection.clear
               self.user_to_login = run_subcommand!(FindUser, email: username_or_email)

data/src/types/api_key_summary.rb ADDED Viewed

@@ -0,0 +1,14 @@
+module Foobara
+  module Auth
+    module Types
+      class ApiKeySummary < Foobara::Model
+        attributes do
+          token_id :string, :required
+          state :token_state, :required, default: :needs_approval
+          expires_at :datetime, :allow_nil
+          created_at :datetime, :required
+        end
+      end
+    end
+  end
+end

data/src/verify_password.rb CHANGED Viewed

@@ -16,21 +16,17 @@ module Foobara
         # TODO: result in error if no password set yet?
         check_for_valid_password
-        valid_password?
+        is_valid_password
       end
-      attr_accessor :valid_password
-      def valid_password?
-        !!valid_password
-      end
+      attr_accessor :is_valid_password
       def check_for_valid_password
         hashed_secret = user.password_secret.hashed_secret
-        self.valid_password = if hashed_secret
-                                run_subcommand!(VerifySecret, secret: plaintext_password, hashed_secret:)
-                              end
+        self.is_valid_password = if hashed_secret
+                                   run_subcommand!(VerifySecret, secret: plaintext_password, hashed_secret:)
+                                 end
       end
     end
   end

data/src/verify_secret.rb CHANGED Viewed

@@ -13,17 +13,13 @@ module Foobara
       def execute
         verify_secret_against_hashed_secret
-        verified?
+        is_verified
       end
-      attr_accessor :verified
-      def verified?
-        !!verified
-      end
+      attr_accessor :is_verified
       def verify_secret_against_hashed_secret
-        self.verified = Argon2::Password.verify_password(secret, hashed_secret)
+        self.is_verified = Argon2::Password.verify_password(secret, hashed_secret)
       end
     end
   end

metadata CHANGED Viewed

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: foobara-auth
 version: !ruby/object:Gem::Version
-  version: 0.0.13
+  version: 0.1.1
 platform: ruby
 authors:
 - Miles Georgi
 bindir: bin
 cert_chain: []
-date: 2025-05-14 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: argon2
@@ -41,16 +41,22 @@ dependencies:
   name: foobara
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.1.1
+    - - "<"
       - !ruby/object:Gem::Version
-        version: 0.0.1
+        version: 2.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.1.1
+    - - "<"
       - !ruby/object:Gem::Version
-        version: 0.0.1
+        version: 2.0.0
 email:
 - azimux@gmail.com
 executables: []
@@ -73,13 +79,16 @@ files:
 - src/create_role.rb
 - src/create_token.rb
 - src/create_user.rb
+- src/delete_api_key.rb
 - src/find_user.rb
+- src/get_api_key_summaries.rb
 - src/login.rb
 - src/logout.rb
 - src/refresh_login.rb
 - src/register.rb
 - src/reset_password.rb
 - src/set_password.rb
+- src/types/api_key_summary.rb
 - src/types/role.rb
 - src/types/secret.rb
 - src/types/token.rb
@@ -112,7 +121,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.6.2
+rubygems_version: 3.6.9
 specification_version: 4
 summary: Provides various auth domain commands and models
 test_files: []