RubyGems - gamora - Versions diffs - 0.6.0 → 0.6.1 - Mend

gamora 0.6.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

checksums.yaml +4 -4
data/LICENSE.txt +1 -1
data/README.md +35 -0
data/app/controllers/concerns/gamora/authorization_url.rb +15 -11
data/app/controllers/gamora/authentication_controller.rb +2 -2
data/app/controllers/gamora/callback_controller.rb +0 -1
data/app/controllers/gamora/unauthentication_controller.rb +2 -2
data/lib/gamora/authentication/base.rb +1 -0
data/lib/gamora/authentication/headers.rb +2 -0
data/lib/gamora/authentication/session.rb +1 -0
data/lib/gamora/client.rb +13 -5
data/lib/gamora/version.rb +1 -1
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: dac3585239f26c73703bedba78b8fb157fcae96e795606833510820dcc541635
-  data.tar.gz: b12bd007f45d5b97861254c0e7418faa14554eadc31fc0b7fa196932abb8915d
+  metadata.gz: aa6a4fbbe3e75fdacdc78a5cf6635e0859cc459e4319446e65de3893b9c17959
+  data.tar.gz: 78182a8c53dd683fba71650fa5af83ec3637251903b1343722e27146aec5c042
 SHA512:
-  metadata.gz: 4b824e97d834065f0beb2d0a6d30d343f02edb70d1cecbc7bcd598166474a32e71849b45e46289745ce2d279166a810ed9572cfe6688e48c0e6a9f496cb7e6dd
-  data.tar.gz: 6fd882d104aa35374d94e40f1b98b9dc708e26689da28ec9a0736ad4f7b7cba6bf177ecc18ddc8e0c8c5303a087404ec95ead3a20cf8cc2405be0eb49128594b
+  metadata.gz: c5d719440c65a62611fddbc9153a5d0f64585d1f67d45a3b29b9eba82d02940ce63f776092f829c0a1b3a55c292b4fe94a8515a38ef9126d150e705c44b7799d
+  data.tar.gz: d6de59c853d9fd0b8369ac583aa0235007c4576f7684431441620e3da2e2ee16d6a1def3b5718eaceef443a7e2a1fb2188b7bad4bbaf471f3bad6ee061ef59af

data/LICENSE.txt CHANGED Viewed

@@ -1,6 +1,6 @@
 The MIT License (MIT)
-Copyright (c) 2022 Alejandro Gutiérrez
+Copyright (c) 2023 Alejandro Gutiérrez
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md CHANGED Viewed

@@ -38,6 +38,41 @@ end
 To see the full list of configuration options please check your gamora
 initializer.
+## Mount Gamora Engine
+In order to have the authorization and callback endpoints mount the
+engine in the `config/routes.rb` file:
+```ruby
+Rails.application.routes.draw do
+  ...
+  mount Gamora::Engine => "/auth"
+  ...
+end
+```
+This will enable the following routes in the parent application:
+#### `gamora.authorization_path`
+This endpoint will redirect users to the IDP generating url and query
+params based on the configuration. This endpoint is called automatically
+when the user is not logged in and the application requires users to be
+authenticated.
+#### `gamora.logout_path`
+This endpoint allows users to be logged out from the application and the
+IDP. It removes the access and refresh tokens and redirects to IDP in order
+to force users to authenticate again.
+#### `gamora.callback_path`
+This endpoint is the responsible to received the auth code provided by
+the IDP and generate and access token. This endpoint is called automatically
+once the user authenticates successfully in the IDP.
 ## User authentication
 ### Web-based applications

data/app/controllers/concerns/gamora/authorization_url.rb CHANGED Viewed

@@ -1,7 +1,21 @@
+# frozen_string_literal: true
 module Gamora
   module AuthorizationUrl
     def authorization_url(params, extra_params = {})
-      default_params = {
+      data =
+        default_params
+        .merge(extra_params)
+        .merge(authorization_params(params))
+        .compact_blank
+      Client.from_config.auth_code.authorize_url(data)
+    end
+    private
+    def default_params
+      {
         scope: Configuration.default_scope,
         theme: Configuration.default_theme,
         prompt: Configuration.default_prompt,
@@ -9,18 +23,8 @@ module Gamora
         branding: Configuration.default_branding,
         ui_locales: Configuration.ui_locales.call
       }
-      data =
-        default_params.
-        merge(extra_params).
-        merge(authorization_params(params)).
-        compact_blank
-      Client.from_config.auth_code.authorize_url(data)
     end
-    private
     def authorization_params(params)
       params.permit(
         :scope,

data/app/controllers/gamora/authentication_controller.rb CHANGED Viewed

@@ -6,8 +6,8 @@ module Gamora
     def show
       redirect_to authorization_url(params),
-        allow_other_host: true,
-        status: :see_other
+                  allow_other_host: true,
+                  status: :see_other
     end
   end
 end

data/app/controllers/gamora/callback_controller.rb CHANGED Viewed

@@ -7,7 +7,6 @@ module Gamora
       session[:access_token] = access_token.token
       session[:refresh_token] = access_token.refresh_token
       redirect_to session.delete("gamora.origin") || main_app.root_path
     rescue OAuth2::Error
       render plain: "Invalid authorization code"
     end

data/app/controllers/gamora/unauthentication_controller.rb CHANGED Viewed

@@ -9,8 +9,8 @@ module Gamora
       session[:refresh_token] = nil
       redirect_to authorization_url(params, { max_age: 0 }),
-        allow_other_host: true,
-        status: :see_other
+                  allow_other_host: true,
+                  status: :see_other
     end
   end
 end

data/lib/gamora/authentication/base.rb CHANGED Viewed

@@ -47,6 +47,7 @@ module Gamora
       def resource_owner_claims(access_token)
         return {} if access_token.blank?
         resource_owner_claims!(access_token)
       end

data/lib/gamora/authentication/headers.rb CHANGED Viewed

@@ -9,6 +9,7 @@ module Gamora
       def validate_authentication!
         return if current_user.present?
         user_authentication_failed!
       end
@@ -16,6 +17,7 @@ module Gamora
         pattern = /^Bearer /
         header = request.headers["Authorization"]
         return unless header&.match(pattern)
         header.gsub(pattern, "")
       end

data/lib/gamora/authentication/session.rb CHANGED Viewed

@@ -13,6 +13,7 @@ module Gamora
       def validate_authentication!
         return if current_user.present?
         session["gamora.origin"] = request.original_url
         user_authentication_failed!
       end

data/lib/gamora/client.rb CHANGED Viewed

@@ -2,10 +2,18 @@
 module Gamora
   class Client < OAuth2::Client
-    def self.from_config
-      new(
-        Configuration.client_id,
-        Configuration.client_secret,
+    class << self
+      def from_config
+        new(
+          Configuration.client_id,
+          Configuration.client_secret,
+          client_options
+        )
+      end
+      private
+      def client_options
         {
           site: Configuration.site,
           token_url: Configuration.token_url,
@@ -14,7 +22,7 @@ module Gamora
           userinfo_url: Configuration.userinfo_url,
           authorize_url: Configuration.authorize_url
         }
-      )
+      end
     end
     def userinfo(access_token)

data/lib/gamora/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Gamora
-  VERSION = "0.6.0"
+  VERSION = "0.6.1"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gamora
 version: !ruby/object:Gem::Version
-  version: 0.6.0
+  version: 0.6.1
 platform: ruby
 authors:
 - Alejandro Gutiérrez
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-01-11 00:00:00.000000000 Z
+date: 2023-07-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: oauth2
@@ -91,7 +91,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.4.17
 signing_key:
 specification_version: 4
 summary: OpenID Connect Relying Party for rails apps.