globalid 0.3.7 → 0.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 16fab50b5f1ed999f159d4e28507577d1e240e2a
-  data.tar.gz: 00c55d5c1b1b3b09178e3c1e75dc343389acb92f
+  metadata.gz: 833f7e0950a55c0aa3a0e62176de2d163a395c05
+  data.tar.gz: 86b23bf6f2710971970c3a25a1301028184887f6
 SHA512:
-  metadata.gz: ee2a00103d0a6890701acd2674a7817335391f54e67d44746c1883711329e5707d3c26089f5fe9823322fe044d52e9b7167ae8f0b7d86af1c88ff379d269f6e1
-  data.tar.gz: 5da58eabadc4ddc3af4231520db1c3b09bc780ac8b842e4a93f70a6ab1523a81c7112d5377569b2643b755e4c06cb9e764b75e9b1078fa41b48f909f02ed25d3
+  metadata.gz: 497931559ea0b7aa8d21b9ea2dfb4ae219739a8449763e2dad590c5b30f1cb4675b66841837f3f43c7480698dbbd478e4677c6ce43c01cff50a9f1e46e6af864
+  data.tar.gz: b96a45a0e29e90e417b8282cef8bc8b6b23b079c6f25decff10ec9ad8ae5b0d08255820936460f8a58944b3a9847d4f7bb3c7ce59bf963c54319ddb6af01bc43

data/README.md

@@ -43,10 +43,10 @@ For added security GlobalIDs can also be signed to ensure that the data hasn't b
 
 ```ruby
 >> person_sgid = Person.find(1).to_signed_global_id
-=> #<SignedGlobalID:0x007fea1944b410
+=> #<SignedGlobalID:0x007fea1944b410>
 
 >> person_sgid = Person.find(1).to_sgid
-=> #<SignedGlobalID:0x007fea1944b410
+=> #<SignedGlobalID:0x007fea1944b410>
 
 >> person_sgid.to_s
 => "BAhJIh5naWQ6Ly9pZGluYWlkaS9Vc2VyLzM5NTk5BjoGRVQ=--81d7358dd5ee2ca33189bb404592df5e8d11420e"
@@ -66,12 +66,12 @@ In this way evildoers can't reuse a sign-up form's SGID on the login page. For e
 => #<Person:0x007fae94bf6298 @id="1">
 ```
 
-You can also have SGIDs that expire some time in the future. This is useful if there's a resource,
+You can also have SGIDs that expire some time in the future. Useful if there's a resource,
 people shouldn't have indefinite access to, like a share link.
 
 ```ruby
 >> expiring_sgid = Document.find(5).to_sgid(expires_in: 2.hours, for: 'sharing')
-=> #<SignedGlobalID:0x008fde45df8937
+=> #<SignedGlobalID:0x008fde45df8937 ...>
 
 # Within 2 hours...
 >> GlobalID::Locator.locate_signed(expiring_sgid.to_s, for: 'sharing')
@@ -82,11 +82,37 @@ people shouldn't have indefinite access to, like a share link.
 => nil
 
 >> explicit_expiring_sgid = SecretAgentMessage.find(5).to_sgid(expires_at: Time.now.advance(hours: 1))
-=> #<SignedGlobalID:0x008fde45df8937
+=> #<SignedGlobalID:0x008fde45df8937 ...>
 
 # 1 hour later...
 >> GlobalID::Locator.locate_signed explicit_expiring_sgid.to_s
 => nil
+
+# Passing a false value to either expiry option turns off expiration entirely.
+>> never_expiring_sgid = Document.find(5).to_sgid(expires_in: nil)
+=> #<SignedGlobalID:0x008fde45df8937 ...>
+
+# Any time later...
+>> GlobalID::Locator.locate_signed never_expiring_sgid
+=> #<Document:0x007fae94bf6298 @id="5">
+```
+
+Note that an explicit `:expires_at` takes precedence over a relative `:expires_in`.
+
+You can assign a default SGID lifetime like so:
+
+```ruby
+SignedGlobalID.expires_in = 1.month
+```
+
+This way any generated SGID will use that relative expiry.
+
+In Rails, an auto-expiry of 1 month is set by default. You can alter that deal
+in an initializer with:
+
+```ruby
+# config/initializers/global_id.rb
+Rails.application.config.global_id.expires_in = 3.months
 ```
 
 ### Custom App Locator

data/lib/global_id.rb

@@ -5,4 +5,5 @@ autoload :SignedGlobalID, 'global_id/signed_global_id'
 class GlobalID
   autoload :Locator, 'global_id/locator'
   autoload :Identification, 'global_id/identification'
+  autoload :Verifier, 'global_id/verifier'
 end

data/lib/global_id/railtie.rb

@@ -22,7 +22,7 @@ class GlobalID
 
       config.after_initialize do
         app.config.global_id.verifier ||= begin
-          app.message_verifier(:signed_global_ids)
+          GlobalID::Verifier.new(app.key_generator.generate_key('signed_global_ids'))
         rescue ArgumentError
           nil
         end

data/lib/global_id/verifier.rb

@@ -0,0 +1,15 @@
+require 'active_support'
+require 'active_support/message_verifier'
+
+class GlobalID
+  class Verifier < ActiveSupport::MessageVerifier
+    private
+      def encode(data)
+        ::Base64.urlsafe_encode64(data)
+      end
+
+      def decode(data)
+        ::Base64.urlsafe_decode64(data)
+      end
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: globalid
 version: !ruby/object:Gem::Version
-  version: 0.3.7
+  version: 0.4.0
 platform: ruby
 authors:
 - David Heinemeier Hansson
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2016-07-26 00:00:00.000000000 Z
+date: 2017-04-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: 4.2.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: 4.2.0
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -53,6 +53,7 @@ files:
 - lib/global_id/railtie.rb
 - lib/global_id/signed_global_id.rb
 - lib/global_id/uri/gid.rb
+- lib/global_id/verifier.rb
 - lib/globalid.rb
 homepage: http://www.rubyonrails.org
 licenses:
@@ -74,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.4.5.1
+rubygems_version: 2.6.11
 signing_key: 
 specification_version: 4
 summary: 'Refer to any model with a URI: gid://app/class/id'