graphql_authorizer 1.0.0 → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/generators/graphql_authorizer/templates/rack_attack.rb +5 -4
  3. data/lib/graphql_authorizer/version.rb +1 -1
  4. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 686bf1bf26471f700bc0cbf1187529aec7909a35d47cfe6e008e35202f343c8d
4
- data.tar.gz: eaaecb01b4df704600d16d4cac6fd52c125a474ddfb1d7922dc8b608b552318c
3
+ metadata.gz: 386c9f4b8638041a3dde16dfc61714a8a445a976c5f5a77013334f66fd57fb72
4
+ data.tar.gz: 1d97b03642e65e0ecafac594a859edacf2fa183da933ef8d72644497a3d52b80
5
5
  SHA512:
6
- metadata.gz: 10a5b233aa63bb16208a2b28f833aee425a42169dd58b2ba4ff0029b21883b7025fb3ccc3e99945bad173a7c9da450b98643276e393f5f6259f53f135adc3b9f
7
- data.tar.gz: 63d7763556382ce209de0f33a9d606201a6c546dcdda3370a1aeb691a5dbeea2de01c27db4cb1fa0ee64889425888b0fdafaae027b6e7072606c2d8b1e0727dd
6
+ metadata.gz: 87c51130226e13cad005c2f049f151cf74e1695e7e55f2494a9a00ec19347a9c420b3bf4bb5d786ab2c0a05363ebdd29c11873f352a5b6187b04b9232a5231ce
7
+ data.tar.gz: 85a45f9fa33442e42d4ac94f4c91bba5b0e046213ff8c98ffe56ba69b7b5e21079870cbd099f28f41da469fa4a45f3254002dfdb06e871c0ee7b4c0433dc63e5
data/lib/generators/graphql_authorizer/templates/rack_attack.rb CHANGED
@@ -1,5 +1,4 @@
1
1
  class Rack::Attack
2
- bindin.pry
3
2
  ### Allow Localhost ###
4
3
  # Always allow requests from localhost
5
4
  # (blocklist & throttles are skipped)
@@ -9,9 +8,11 @@ class Rack::Attack
9
8
  end
10
9
 
11
10
  blocklist("check authorization") do |req|
12
- graphiql_token = ENV.fetch("GRAPHIQL_TOKEN")
13
- is_graphiql_request = req.env["HTTP_GRAPHIQL_TOKEN"] == graphiql_token
14
- next if !req.path.start_with?("/graphql") || is_graphiql_request
11
+ # uncomment this line if you implement graphql_token validation
12
+ # graphiql_token = ENV.fetch("GRAPHIQL_TOKEN")
13
+ # is_graphiql_request = req.env["HTTP_GRAPHIQL_TOKEN"] == graphiql_token
14
+ # next if !req.path.start_with?("/graphql") || is_graphiql_request
15
+ next if !req.path.start_with?("/graphql")
15
16
  request_validator = GraphQLAuthorizer::Request.new(
16
17
  sig: req.env["HTTP_SIGNATURE"], # replace with Signature Header
17
18
  timestamp: req.env["HTTP_TIMESTAMP"] # replace with Time Stamp Header
data/lib/graphql_authorizer/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module GraphQLAuthorizer
2
- VERSION = "1.0.0".freeze
2
+ VERSION = "1.0.2".freeze
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: graphql_authorizer
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.0
4
+ version: 1.0.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Peter John Alvarado
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2018-09-03 00:00:00.000000000 Z
11
+ date: 2018-09-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: openssl