hubssolib 3.5.0 → 3.6.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8fc6eb926595d43f0fe51803fb2dd817930adf4385a742461c13197c87ebd8a5
-  data.tar.gz: 3f532eca169d7497d595aeb15a31d47650ee13fd4973859041d40f66144217cc
+  metadata.gz: eaea423d2eec6433b30522f6a6d46ab3c1b2868bb860d985cd7472116a17bc95
+  data.tar.gz: 19ae77e97c1e480b6b6cba78eee22523d9964af677ac9a9531582aa68883350b
 SHA512:
-  metadata.gz: 1c645f57251251d560c8940d25aaaade1e98b83fe7cf8ab0dff194c3738bfb0c0e8699a1aed7c4889b656e7c0da81f005722773c1af52205eb233f7f9b7ef3dc
-  data.tar.gz: 6927b5bd57c5d5c7eddb65cb36c20fc89f24d6cf8ac1ad341da2feedf4ae6e12f452351416d089eb046214a4895d2e7becf7c098bb4c1cd0c011bf8eaafd36c2
+  metadata.gz: db1d1f887967b480cb7ef066b1d038ca4540c5aa18fdb307a42fa825f20ca5c9cc7390bccdf9d5b7de247d9ccdfe0b7219f40cc7c7e7cc7b283d2c0a9a458be5
+  data.tar.gz: ccc14fd7c1015d61bc40cde504976d4eafc38368fa2bcb076b3f1e89fe9974b5c2179f55295789c28f25256335f02479161d8966cc774ce8b924bbb41d646119

data/CHANGELOG.md

@@ -1,3 +1,21 @@
+## 3.6.1, 27-Mar-2025
+
+Some fixes:
+
+* Session reload could fail if a Hub flash happened to be persisted, because YAML won't load Symbol by default and it wasn't in the allow-list.
+  - Remove the flash message from the dump since some flash from "whenever" may well be confusing if reloaded and shown at some later time.
+  - Add Symbol so that if restarting under this gem version, a dump from an older version which _does_ contain flash data will still load OK.
+
+* Secure services failure redirection _still_ wasn't quite in the right place - the earliest thing that runs is of course the 'before action' hook. Moved it there and added a Sentry warning too.
+
+## 3.6.0, 26-Mar-2025
+
+Cleans up and offers new enumeration features. Ordering by last-recently-active first allows clients to be deterministic about enumerated sessions. Features created to support improvements in the Hub app v3.6.0.
+
+* HubSsoLib::Core#enumerate_hub_sessions is deprecated. Use HubSsoLib::Core#enumerate_hub_session_keys instead.
+* For any client code that might be "hitting the metal" and calling the DRb server directly, note that HubSsoLib::SessionFactory#get_hub_session_proxy no longer pays attention to IP address parameter and this should be removed (it is now an ignored parameter that defaults to +nil+). See implementation comments for rationale, but basically, IP addresses can legitimately change for users due to DHCP (even if that's rare) and given v3.5.0's on-shutdown session store, it didn't seem wise to keep IP addresses around inside there for any length of time. It was cleanest to just drop them. PII in persisted data is once again limited to "real name" and e-mail address.
+* HubSsoLib::Core exception handling for the Hub app's "tasks" notification is more extensive. A few prior gem versions unwittingly restricted it to only one specific method call. Now it's done in the current user retrieval, which is an endpoint used by a majority of Core module method calls.
+
 ## 3.5.0, 25-Mar-2025
 
 Builds on the cleaner session interface with some changes and improvements:
@@ -29,7 +47,6 @@ In addition:
 
 * Iteration over the sessions object for active user enumeration could cause failures. The process could be time consuming and, during it, the client side is iterating over a remote object that the DRb server maintains for any new, inbound sessions which may be started by other web server request threads into the Hub app. This would lead to `can't add a new key into hash during iteration` exceptions. This is fixed via more aggressive mutex use.
 
-
 ## 3.3.0, 16-Feb-2025
 
 Sentry support, for use by the DRb server. If you use Sentry, define your account's `SENTRY_DSN` in the environment where the DRb server runs and exceptions will be reported.

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    hubssolib (3.4.0)
+    hubssolib (3.6.1)
       base64 (~> 0.2)
       drb (~> 2.2)
 
@@ -13,7 +13,7 @@ GEM
     debug (1.10.0)
       irb (~> 1.10)
       reline (>= 0.3.8)
-    diff-lcs (1.6.0)
+    diff-lcs (1.6.1)
     docile (1.4.1)
     doggo (1.4.0)
       rspec-core (~> 3.13)
@@ -52,7 +52,7 @@ GEM
       simplecov_json_formatter (~> 0.1)
     simplecov-html (0.13.1)
     simplecov_json_formatter (0.1.4)
-    stringio (3.1.5)
+    stringio (3.1.6)
 
 PLATFORMS
   ruby

data/hubssolib.gemspec

@@ -4,7 +4,7 @@ spec = Gem::Specification.new do |s|
   s.platform = Gem::Platform::RUBY
   s.name     = 'hubssolib'
 
-  s.version  = '3.5.0'
+  s.version  = '3.6.1'
   s.author   = 'Andrew Hodgkinson and others'
   s.email    = 'ahodgkin@rowing.org.uk'
   s.homepage = 'http://pond.org.uk/'

data/lib/hub_sso_lib.rb

@@ -1,6 +1,6 @@
 #######################################################################
 # Module:  HubSsoLib                                                  #
-#          (C) Hipposoft 2006-2019                                    #
+#          (C) Hipposoft 2006-2025                                    #
 #                                                                     #
 # Purpose: Cross-application same domain single sign-on support.      #
 #                                                                     #
@@ -13,6 +13,7 @@
 #          09-Mar-2011 (ADH): Updated for Hub on Rails 2.3.11 along   #
 #                             with several important bug fixes.       #
 #          01-May-2019 (ADH): Updated for Ruby 2.5.x.                 #
+#          25-Mar-2025 (ADH): Major 2025 overhaul for ROOL site.      #
 #######################################################################
 
 module HubSsoLib
@@ -74,19 +75,33 @@ module HubSsoLib
   #
   HUB_IDLE_TIME_LIMIT = ENV['HUB_IDLE_TIME_LIMIT']&.to_i || 4 * 60 * 60
 
+  # Archive time for very old sessions that are kicked out foricbly.
+  #
+  HUB_ARCHIVE_TIME_LIMIT = [ HUB_IDLE_TIME_LIMIT * 3, 172_800 ].max() # (2 days or more)
+
+  # If you use live session enumeration, this is the hard-coded limit for the
+  # number of session keys that can be returned. If there are more active
+  # sessions that this, bulk session enumeration is not permitted.
+  #
+  HUB_SESSION_ENUMERATION_KEY_MAX = ENV['HUB_SESSION_ENUMERATION_KEY_MAX']&.to_i || 2000
+
   # Shared cookie name.
+  #
   HUB_COOKIE_NAME = :hubapp_shared_id
 
   # Principally for #hubssolib_account_link.
+  #
   HUB_LOGIN_INDICATOR_COOKIE       = :hubapp_shared_id_alive
   HUB_LOGIN_INDICATOR_COOKIE_VALUE = 'Y'
 
   # Bypass SSL, for testing purposes? Rails 'production' mode will
   # insist on SSL otherwise. Development & test environments do not,
   # so do not need this variable setting.
+  #
   HUB_BYPASS_SSL = ( ENV['HUB_BYPASS_SSL'] == "true" )
 
   # Thread safety.
+  #
   HUB_MUTEX = Mutex.new
 
   #######################################################################
@@ -420,7 +435,6 @@ module HubSsoLib
     attr_accessor :session_flash
     attr_accessor :session_user
     attr_accessor :session_rotated_key
-    attr_accessor :session_ip
 
     def initialize
       @session_last_used   = Time.now.utc
@@ -428,7 +442,6 @@ module HubSsoLib
       @session_flash       = {}
       @session_user        = HubSsoLib::User.new
       @session_rotated_key = nil
-      @session_ip          = nil
 
     rescue => e
       Sentry.capture_exception(e) if defined?(Sentry) && Sentry.respond_to?(:capture_exception)
@@ -464,13 +477,14 @@ module HubSsoLib
             permitted_classes: [
               ::HubSsoLib::Session,
               ::HubSsoLib::User,
-              Time
+              Time,
+              Symbol
             ]
           )
 
           @hub_sessions = restored_sessions || {}
           self.destroy_ancient_sessions()
-          puts "Session factory: Reloaded #{@hub_sessions.keys.size} from archive" unless @hub_be_quiet
+          puts "Session factory: Reloaded #{@hub_sessions.size} from archive" unless @hub_be_quiet
 
         rescue => e
           puts "Session factory: Ignored archive due to error #{e.message.inspect}" unless @hub_be_quiet
@@ -499,15 +513,20 @@ module HubSsoLib
     #
     # The returned object is proxied via DRb - it is shared between processes.
     #
-    # +key+::       Session key; lazy-initialises a new session under this key
-    #               if none is found, then immediately rotates it by default,
-    #               but may return no session for unrecognised keys depending
-    #               on the +create+ parameter, described below.
-    #
-    # +remote_ip+:: Request's remote IP address. If there is an existing
-    #               session which matches this, it's returned. If there is an
-    #               existing session but the IP mismatches, it's treated as
-    #               invalid and discarded.
+    # +key+:: Session key; lazy-initialises a new session under this key if
+    #         none is found, then immediately rotates it by default, but may
+    #         return no session for unrecognised keys depending on the +create+
+    #         parameter, described below.
+    #
+    # The "_ignored" parameter is for backwards compatibility for older clients
+    # calling into a newer gem. This used to take an IP address of the request
+    # and would discard a session if the current IP address had changed, but
+    # since DHCP is a Thing then - even though in practice most IP addresses
+    # from ISPs are very stable - this wasn't really a valid security measure.
+    # It required us to process and store IP data which is now often considered
+    # PII and we'd rather not (especially given their arising storage in
+    # HUB_SESSION_ARCHIVE on shutdown). This is, of course, quite ironic given
+    # the reason for removal is IP address unreliability when used as PII!
     #
     # In addition, the following optional named parameters can be given:
     #
@@ -515,7 +534,7 @@ module HubSsoLib
     #            new session under that key. If +false+, attempts to read with
     #            an unrecognised key yield +nil+.
     #
-    def get_hub_session_proxy(key, remote_ip, create: true)
+    def get_hub_session_proxy(key, _ignored = nil, create: true)
       hub_session = HUB_MUTEX.synchronize { @hub_sessions[key] }
       return nil if create == false && hub_session.nil? # NOTE EARLY EXIT
 
@@ -526,18 +545,7 @@ module HubSsoLib
         puts "Session factory: #{ message } session for key #{ key } and rotating to #{ new_key }"
       end
 
-      unless hub_session.nil? || hub_session.session_ip == remote_ip
-        unless @hub_be_quiet
-          puts "Session factory: WARNING: IP address changed from #{ hub_session.session_ip } to #{ remote_ip } -> discarding session"
-        end
-
-        hub_session = nil
-      end
-
-      if hub_session.nil?
-        hub_session            = HubSsoLib::Session.new
-        hub_session.session_ip = remote_ip
-      end
+      hub_session = HubSsoLib::Session.new if hub_session.nil?
 
       HUB_MUTEX.synchronize do
         @hub_sessions.delete(key)
@@ -552,34 +560,90 @@ module HubSsoLib
       raise
     end
 
+    # THIS INTERFACE IS DEPRECATED and will be removed in Hub 4. Change to
+    # #enumerate_hub_session_keys instead.
+    #
     # Enumerate all currently known sessions. The format is a Hash, with the
     # session key UUIDs as keys and the related HubSsoLib::Session instances as
-    # values.
+    # values. If you attempt it iterate over this data YOU MUST USE A COPY of
+    # the keys to do so, since Hub users may log in or out at any time and Ruby
+    # will raise an exception if the session data changes during enumeration -
+    # end users will see errors.
     #
-    # WARNING: This returns all Hub sessions maintained by the server instance
-    # but it's returning a reference to the live object with everything being
-    # managed over DRb. If a caller iterates over this object, then it can fall
-    # foul of other request threads making changes to the underlying data and
-    # Ruby raising exceptions about e.g. hashes being modified during
-    # enumeration.
+    def enumerate_hub_sessions()
+      @hub_sessions
+
+    rescue => e
+      Sentry.capture_exception(e) if defined?(Sentry) && Sentry.respond_to?(:capture_exception)
+      raise
+    end
+
+    # Returns all currently known session keys. This is a COPY of the internal
+    # keyset, since otherwise it would be necessary to try and enumerate keys
+    # on a Hash which is subject to change at any moment if a user logs in or
+    # out. Since Ruby raises an exception should an under-iteration Hash be
+    # changed, we can't do that, which is why the keys are returned as a copied
+    # array instead.
     #
-    # To prevent this, if intending to iterate over the collection, really the
-    # only safe way is to duplicate it first on "your side" (the client side)
-    # of the DRb connection. This of course consumes RAM, so you might choose
-    # to evaluate e.g. the number of keys in the returned session data and only
-    # permit enumeration if they fall below some previously-measured "allowed"
-    # value wherein RAM consumption is acceptable.
+    # Keys are ordered by least-recently-active first to most-recent last.
     #
-    # See HubSsoLib::Core#hubssolib_enumerate_users for an example.
+    # Call #retrieve_session_by_key(...) to get session details for that key.
+    # Bear in mind that +nil+ returns are possible, since the session data may
+    # be changing rapidly and a user might've logged out or had their session
+    # expired in the time between you retrieving the list of current keys here,
+    # then requesting details of the session for that key later.
     #
-    def enumerate_hub_sessions()
-      @hub_sessions
+    # To avoid unbounded RAM requirements arising, the maximum number of keys
+    # returned herein is limited to HUB_SESSION_ENUMERATION_KEY_MAX.
+    #
+    # Returns a Hash with Symbol keys that have values as follows:
+    #
+    # +count+:: The number of known sessions - just a key count.
+    # +keys+::  If +count+ exceeds HUB_SESSION_ENUMERATION_KEY_MAX, this is
+    #           +nil+, else an array of zero or more session keys.
+    #
+    def enumerate_hub_session_ids()
+      count = @hub_sessions.size
+      keys  = if count > HUB_SESSION_ENUMERATION_KEY_MAX
+        nil
+      else
+        @hub_sessions.keys # (Hash#keys returns a new array)
+      end
+
+      return { count: count, keys: keys }
 
     rescue => e
       Sentry.capture_exception(e) if defined?(Sentry) && Sentry.respond_to?(:capture_exception)
       raise
     end
 
+    # Retrieve session data (as a HubSsoLib::Session instance) based on the
+    # given session key. No key rotation occurs. Returns +nil+ if no entry is
+    # found for that key.
+    #
+    def retrieve_session_by_key(key)
+      @hub_sessions[key]
+    end
+
+    # WARNING: Comparatively slow.
+    #
+    # This is usually only called in administrative interfaces to look at the
+    # known sessions for a specific user of interest. An Hash of session key
+    # values yielding HubSsoLib::Session instances as values is returned.
+    #
+    # The array is ordered by least-recently-active first to most-recent last.
+    #
+    # IN THE CURRENT IMPLEMENTATION THIS JUST SEQUENTIALLY SCANS ALL ACTIVE
+    # SESSIONS IN THE HASH and must therefore lock on mutex for the duration.
+    #
+    def retrieve_sessions_by_user_id(user_id)
+      HUB_MUTEX.synchronize do
+        @hub_sessions.select do | key, session |
+          session&.session_user&.user_id == user_id
+        end
+      end
+    end
+
     # Given a session key (which, if a session has been looked up and the key
     # thus rotated, ought to be that new, rotated key), destroy the associated
     # session data. Does nothing if the key is not found.
@@ -594,7 +658,7 @@ module HubSsoLib
       raise
     end
 
-    # WARNING: Comparatively slow
+    # WARNING: Comparatively slow.
     #
     # This is called in rare cases such as user deletion or being asked for a
     # session under an old key, indicating loss of key rotation sequence.
@@ -615,7 +679,7 @@ module HubSsoLib
       raise
     end
 
-    # WARNING: Slow
+    # WARNING: Slow.
     #
     # This is a housekeeping task which checks sessions against Hub expiry and,
     # if the session keys look to be substantially older than the value set in
@@ -630,23 +694,21 @@ module HubSsoLib
     # session data while the method runs will block until method finishes.
     #
     def destroy_ancient_sessions
-      time_limit = HUB_IDLE_TIME_LIMIT * 3 # (TODO: This is fairly arbitrary...)
-      time_limit = 172_800 if time_limit < 172_800 # (2 days)
-      destroyed  = 0
-
       unless @hub_be_quiet
-        puts "Session factory: Sweeping sessions inactive for more than #{ time_limit } seconds..."
+        puts "Session factory: Sweeping sessions inactive for more than #{ HUB_ARCHIVE_TIME_LIMIT } seconds..."
       end
 
+      destroyed = 0
+
       HUB_MUTEX.synchronize do
-        count_before = @hub_sessions.keys.size
+        count_before = @hub_sessions.size
 
         @hub_sessions.reject! do | key, session |
           last_used = session&.session_last_used
-          last_used.nil? || Time.now.utc - last_used > time_limit
+          last_used.nil? || Time.now.utc - last_used > HUB_ARCHIVE_TIME_LIMIT
         end
 
-        count_after = @hub_sessions.keys.size
+        count_after = @hub_sessions.size
         destroyed   = count_before - count_after
       end
 
@@ -680,6 +742,8 @@ module HubSsoLib
           @hub_sessions.each do | key, session |
             next if session&.session_user&.user_id.nil? # NOTE EARLY LOOP RESTART
 
+            session.session_flash = nil
+
             dump = ::YAML.dump({key => session})
             dump.sub!(/^---\n/, '') # (avoid multiple document markers)
 
@@ -971,6 +1035,80 @@ module HubSsoLib
       user ? "#{user.user_real_name} (#{user.user_id})" : 'Anonymous'
     end
 
+    # WARNING: Slow.
+    #
+    # Return an Array of HubSsoLib::User objects for all logged-in users, in an
+    # array. If a user is logged into more than one browser and thus has more
+    # than one session active, they will accordingly appear more than once in
+    # the returned data. This can also happen if a user loses key rotation and
+    # leaves an old, but not yet expired session behind when they log in anew.
+    #
+    # In accordance with HubSsoLib::SessionFactory#enumerate_hub_session_ids
+    # documentation, a maximum of HUB_SESSION_ENUMERATION_KEY_MAX users can be
+    # returned here. If this is exceeded, an *empty* array is returned. If you
+    # are processing this information for display in a UI which itself requires
+    # a logged in user of some sort (which is very likely) and therefore know
+    # that at least *one* session does exist, you can treat an empty array as
+    # confirmation of "lots of sessions". If you can't be sure of at least one
+    # logged in user, then there is obvious arising ambiguity and this method
+    # does not solve it for you - it's just "zero, or very many users".
+    #
+    # Users are ordered by least-recently-active first, most-recent last.
+    #
+    # For information about performance limitations, see
+    # HubSsoLib::SessionFactory#enumerate_hub_session_ids.
+    #
+    def hubssolib_enumerate_users
+      hub_session_info = hubssolib_factory().enumerate_hub_session_ids()
+      hub_users        = []
+
+      unless hub_session_info[:keys].nil? # (keyset too large, enumeration prohibited)
+        hub_session_info[:keys].each do | key |
+          session = hubssolib_factory().retrieve_session_by_key(key)
+          hub_users << session.session_user unless session&.session_user&.user_id.nil?
+        end
+      end
+
+      return hub_users
+    end
+
+    # WARNING: Comparatively slow.
+    #
+    # For a given HubSsoLib::User's user ID, return any known sessions held by
+    # the DRb server, as an Hash of session keys with HubSsoLib::Session
+    # instances as values.
+    #
+    # Returns an empty Hash if the given ID is +nil+.
+    #
+    # Note that Hub sessions can disappear at any moment, so the session keys
+    # you find in the Hash might refer to extinct sessions by the time you get
+    # to do something with them. You can still access the data, but if you were
+    # to try and ask the DRb server for that key, it'd return +nil+.
+    #
+    # Sessions are ordered by least-recently-active first, most-recent last.
+    #
+    # For information about performance limitations, see
+    # HubSsoLib::SessionFactory#retrieve_sessions_by_user_id.
+    #
+    def hubssolib_retrieve_user_sessions(hub_user_id)
+      if hub_user_id.nil?
+        {}
+      else
+        hubssolib_factory().retrieve_sessions_by_user_id(hub_user_id)
+      end
+    end
+
+    # WARNING: Comparatively slow.
+    #
+    # Remove all sessions under a given ID.
+    #
+    # For information about performance limitations, see
+    # HubSsoLib::SessionFactory#destroy_sessions_by_user_id.
+    #
+    def hubssolib_destroy_user_sessions(hub_user_id)
+      hubssolib_factory().destroy_sessions_by_user_id(hub_user_id) unless hub_user_id.nil?
+    end
+
     # If an application needs to know about changes of a user e-mail address
     # or display name (e.g. because of sync to a local relational store of
     # users related to other application-managed resources, with therefore a
@@ -1138,6 +1276,19 @@ module HubSsoLib
         return true # true -> let action processing continue
 
       end
+
+    rescue Exception => e
+      Sentry.capture_exception(e) if defined?(Sentry) && Sentry.respond_to?(:capture_exception)
+
+      # At this point there tends to be no Session data, so we're going to have
+      # to encode the exception data into the URI... It must be escaped twice,
+      # as many servers treat "%2F" in a URI as a "/". Apache can then fail to
+      # serve the page, raising a 404 error unless "AllowEncodedSlashes on" is
+      # specified in its configuration.
+      #
+      suffix   = '/' + CGI::escape(CGI::escape(hubssolib_set_exception_data(e)))
+      new_path = HUB_PATH_PREFIX + '/tasks/service'
+      redirect_to(new_path + suffix) unless request.path.include?(new_path)
     end
 
     # Mandatory controller "after_action" callback method to tidy up after Hub
@@ -1158,18 +1309,17 @@ module HubSsoLib
     # We can return to this location by calling #redirect_back_or_default.
     #
     def hubssolib_store_location(uri_str = request.url)
-
       if (uri_str && !uri_str.empty?)
         uri_str = hubssolib_promote_uri_to_ssl(uri_str, request.host) unless request.ssl?
         hubssolib_set_return_to(uri_str)
       else
         hubssolib_set_return_to(nil)
       end
-
     end
 
     # Redirect to the URI stored by the most recent store_location call or
     # to the passed default.
+    #
     def hubssolib_redirect_back_or_default(default)
       url = hubssolib_get_return_to()
       hubssolib_set_return_to(nil)
@@ -1181,7 +1331,7 @@ module HubSsoLib
     # sets the host you provide (or leaves it alone if you omit the
     # parameter), then forces the scheme to 'https'. Returns the result
     # as a flat string.
-
+    #
     def hubssolib_promote_uri_to_ssl(uri_str, host = nil)
       uri = URI.parse(uri_str)
       uri.host = host if host
@@ -1337,7 +1487,7 @@ module HubSsoLib
       self.hubssolib_destroy_session! unless old_session.nil?
 
       start_key          = SecureRandom.uuid
-      @hubssolib_session = hubssolib_factory().get_hub_session_proxy(start_key, request.remote_ip, create: true)
+      @hubssolib_session = hubssolib_factory().get_hub_session_proxy(start_key, create: true)
 
       # The session is now stored under the rotated key, so put that into the
       # Hub session cookie so that on the next request, we can retrieve the
@@ -1374,7 +1524,7 @@ module HubSsoLib
         if key.nil? || key.size != 36
           @hubssolib_session = nil
         else
-          hub_session = hubssolib_factory().get_hub_session_proxy(key, request.remote_ip, create: false)
+          hub_session = hubssolib_factory().get_hub_session_proxy(key, create: false)
 
           if hub_session.nil? # Invalid key in cookie
             @hubssolib_session = nil
@@ -1434,13 +1584,14 @@ module HubSsoLib
     # halted (since the overall return value is therefore 'false').
     #
     def hubssolib_must_login
+
       # If HTTP, redirect to the same place, but HTTPS. Then we can store the
       # flash and return-to in the session data. We'll have the same set of
       # before-filter operations running and they'll find out we're either
       # authorised after all, or come back to this very function, which will
       # now be happily running from an HTTPS connection and will go on to set
       # the flash and redirect to the login page.
-
+      #
       if hubssolib_ensure_https
         hubssolib_set_flash(:alert, 'You must log in before you can continue.')
         redirect_to HUB_PATH_PREFIX + '/account/login'
@@ -1502,47 +1653,6 @@ module HubSsoLib
       )
     end
 
-    # Return an array of Hub User objects representing users based on a list of
-    # known sessions returned by the DRb server. Note that if an application
-    # exposes this method to a view, it is up to the application to ensure
-    # sufficient access permission protection for that view according to the
-    # webmaster's choice of site security level. Generally, normal users should
-    # not be allowed access!
-    #
-    # Due to the session pool being held in the DRb server and subject to
-    # alteration at any time by other requests (assuming the server supports
-    # more than just one request at a time, that is!) then the session data
-    # must be copied locally before iterating. Otherwise, exceptions arise from
-    # attempts to alter an under-iteration Hash. This in turn raises a worry
-    # about RAM usage. For that reason, a (somewhat arbitrary) limit of
-    # 2000 active users is applied. More than that and the method returns an
-    # empty array.
-    #
-    def hubssolib_enumerate_users
-      hub_session_data = hubssolib_factory().enumerate_hub_sessions()
-      return [] if hub_session_data.keys.size > 2000 # NOTE EARLY EXIT
-
-      sessions = hub_session_data.values.dup
-      users    = sessions.inject( [] ) do | memo, session |
-        user = session.session_user
-        memo << user unless user&.user_id.nil?
-        memo
-      end
-
-      return users
-
-    rescue Exception => e
-
-      # At this point there tends to be no Session data, so we're
-      # going to have to encode the exception data into the URI...
-      # See earlier for double-escaping rationale.
-
-      suffix   = '/' + CGI::escape(CGI::escape(hubssolib_set_exception_data(e)))
-      new_path = HUB_PATH_PREFIX + '/tasks/service'
-      redirect_to new_path + suffix unless request.path.include?(new_path)
-      return nil
-    end
-
     # Encode exception data into a string suitable for using in a URL
     # if CGI escaped first. Pass the exception object; stores only the
     # message.

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: hubssolib
 version: !ruby/object:Gem::Version
-  version: 3.5.0
+  version: 3.6.1
 platform: ruby
 authors:
 - Andrew Hodgkinson and others
 bindir: bin
 cert_chain: []
-date: 2025-03-25 00:00:00.000000000 Z
+date: 2025-03-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: drb