RubyGems - jwt_api_auth - Versions diffs - 0.0.1.pre.1 - Mend

jwt_api_auth 0.0.1.pre.1

Files changed (20) hide show

checksums.yaml +7 -0
data/MIT-LICENSE +20 -0
data/README.md +28 -0
data/Rakefile +34 -0
data/app/assets/config/jwt_api_auth_manifest.js +1 -0
data/app/assets/stylesheets/jwt_api_auth/application.css +15 -0
data/app/controllers/jwt_api_auth/application_controller.rb +25 -0
data/app/controllers/jwt_api_auth/authentication_controller.rb +65 -0
data/app/helpers/jwt_api_auth/application_helper.rb +6 -0
data/app/jobs/jwt_api_auth/application_job.rb +6 -0
data/app/mailers/jwt_api_auth/application_mailer.rb +8 -0
data/app/models/jwt_api_auth/application_record.rb +7 -0
data/app/views/layouts/jwt_api_auth/application.html.erb +15 -0
data/config/routes.rb +5 -0
data/lib/jwt_api_auth.rb +25 -0
data/lib/jwt_api_auth/engine.rb +12 -0
data/lib/jwt_api_auth/helpers.rb +25 -0
data/lib/jwt_api_auth/version.rb +5 -0
data/lib/tasks/jwt_api_auth_tasks.rake +5 -0
metadata +300 -0

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: ab929b57a3c2918471b598db0fd2fe686c1954fe71aa278607019d0f89f7e88b
+  data.tar.gz: f1ba367598e833ab7ec53acea362fe2e21e92d9e8be18cf43ab4a9a0169abfbe
+SHA512:
+  metadata.gz: 72ff5a40fc5712b7c72e7da4d301614b6e54dd857427c3d15548ceadb0bcbd7ecd69c6937e5475707d81eb3fa2e1cec6dd0dbb909fb6efa442a3d9aa9d533110
+  data.tar.gz: 27db13da989ec2fa8c361f2dddb59d58ad2a6d256e5e7897b5ca747f823a23a36b6c1ca145db160bba5c0070bd78ef23703770eaec8cddb566469b667ac344f2

data/MIT-LICENSE ADDED

@@ -0,0 +1,20 @@
+Copyright 2020 Cristian Stügelmayer
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md ADDED

@@ -0,0 +1,28 @@
+# JwtApiAuth
+Short description and motivation.
+## Usage
+How to use my plugin.
+## Installation
+Add this line to your application's Gemfile:
+```ruby
+gem 'jwt_api_auth'
+```
+And then execute:
+```bash
+$ bundle
+```
+Or install it yourself as:
+```bash
+$ gem install jwt_api_auth
+```
+## Contributing
+Contribution directions go here.
+## License
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile ADDED

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+require 'rdoc/task'
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'JwtApiAuth'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.md')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+APP_RAKEFILE = File.expand_path('spec/dummy/Rakefile', __dir__)
+load 'rails/tasks/engine.rake'
+load 'rails/tasks/statistics.rake'
+require 'bundler/gem_tasks'
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+task default: :test

data/app/assets/config/jwt_api_auth_manifest.js ADDED

	@@ -0,0 +1 @@
1	+ //= link_directory ../stylesheets/jwt_api_auth .css

data/app/assets/stylesheets/jwt_api_auth/application.css ADDED

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS
+ * files in this directory. Styles in this file should be added after the last require_* statement.
+ * It is generally better to create a new file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/app/controllers/jwt_api_auth/application_controller.rb ADDED

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  class ApplicationController < ActionController::Base
+    skip_before_action :verify_authenticity_token
+    before_action :authenticate_user
+    rescue_from JWT::DecodeError do
+      head :unauthorized
+    end
+    rescue_from ActiveRecord::RecordNotFound do
+      head :not_found
+    end
+    private
+    def authenticate_user
+      token = request.headers['Authorization']&.split('Bearer ')&.last
+      JWT.decode token, JwtApiAuth.token_secret.call, true, { algorithm: 'HS256' }
+      head :unauthorized unless token
+    end
+  end
+end

data/app/controllers/jwt_api_auth/authentication_controller.rb ADDED

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+require_dependency 'jwt_api_auth/application_controller'
+require_dependency 'jwt'
+module JwtApiAuth
+  class AuthenticationController < ApplicationController
+    skip_before_action :authenticate_user, only: [:create]
+    rescue_from ActionController::ParameterMissing do
+      head :not_found
+    end
+    attr_reader :resource
+    before_action :find_resource, only: [:create]
+    before_action :authenticate, only: [:create]
+    def create
+      create_refresh_token if refresh_token_enabled?
+      render json: { token: token }, status: :created
+    end
+    private
+    def create_refresh_token
+      refresh_token = refresh_token_model_class.create!(
+        user_id: resource.id,
+        token: SecureRandom.base64
+      )
+      cookies[:refreshToken] = {
+        value: refresh_token.token,
+        expires: JwtApiAuth.refresh_token_lifetime.from_now,
+        httponly: true,
+        path: '/refresh_token'
+      }
+    end
+    def find_resource
+      @resource = resource_class.find_by(email: email)
+      head :not_found unless @resource
+    end
+    def email
+      params.require(:email)
+    end
+    def password
+      params.require(:password)
+    end
+    def authenticate
+      head(:not_found) unless resource.authenticate(password)
+    end
+    def payload
+      { sub: resource.id }
+    end
+    def token
+      JWT.encode payload, JwtApiAuth.token_secret.call, 'HS256'
+    end
+  end
+end

data/app/helpers/jwt_api_auth/application_helper.rb ADDED

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  module ApplicationHelper
+  end
+end

data/app/jobs/jwt_api_auth/application_job.rb ADDED

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  class ApplicationJob < ActiveJob::Base
+  end
+end

data/app/mailers/jwt_api_auth/application_mailer.rb ADDED

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  class ApplicationMailer < ActionMailer::Base
+    default from: 'from@example.com'
+    layout 'mailer'
+  end
+end

data/app/models/jwt_api_auth/application_record.rb ADDED

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  class ApplicationRecord < ActiveRecord::Base
+    self.abstract_class = true
+  end
+end

data/app/views/layouts/jwt_api_auth/application.html.erb ADDED

@@ -0,0 +1,15 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Jwt api auth</title>
+  <%= csrf_meta_tags %>
+  <%= csp_meta_tag %>
+  <%= stylesheet_link_tag    "jwt_api_auth/application", media: "all" %>
+</head>
+<body>
+<%= yield %>
+</body>
+</html>

data/config/routes.rb ADDED

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+JwtApiAuth::Engine.routes.draw do
+  post 'sign_in' => 'authentication#create'
+end

data/lib/jwt_api_auth.rb ADDED

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+require 'jwt_api_auth/engine'
+require 'jwt_api_auth/helpers'
+module JwtApiAuth
+  ActiveSupport.on_load(:action_controller) do
+    include JwtApiAuth::Helpers
+  end
+  mattr_accessor :token_lifetime
+  self.token_lifetime = 1.day
+  mattr_accessor :refresh_token_lifetime
+  self.refresh_token_lifetime = 1.week
+  mattr_accessor :token_secret
+  self.token_secret = -> { Rails.application.secrets.secret_key_base }
+  mattr_accessor :model
+  self.model = :user
+  mattr_accessor :refresh_token_model
+  self.refresh_token_model = :refresh_token
+end

data/lib/jwt_api_auth/engine.rb ADDED

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  class Engine < ::Rails::Engine
+    isolate_namespace JwtApiAuth
+    config.generators do |g|
+      g.test_framework :rspec
+      g.fixture_replacement :factory_bot
+    end
+  end
+end

data/lib/jwt_api_auth/helpers.rb ADDED

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  module Helpers
+    def resource_name
+      JwtApiAuth.model.to_s
+    end
+    def resource_class
+      resource_name.classify.constantize
+    end
+    def refresh_token_model_name
+      JwtApiAuth.refresh_token_model.to_s
+    end
+    def refresh_token_model_class
+      refresh_token_model_name.classify.constantize
+    end
+    def refresh_token_enabled?
+      JwtApiAuth.refresh_token_model.present?
+    end
+  end
+end

data/lib/jwt_api_auth/version.rb ADDED

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+module JwtApiAuth
+  VERSION = '0.0.1.pre.1'
+end

data/lib/tasks/jwt_api_auth_tasks.rake ADDED

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+# desc "Explaining what the task does"
+# task :jwt_api_auth do
+#   # Task goes here
+# end

metadata ADDED

@@ -0,0 +1,300 @@
+--- !ruby/object:Gem::Specification
+name: jwt_api_auth
+version: !ruby/object:Gem::Version
+  version: 0.0.1.pre.1
+platform: ruby
+authors:
+- Cristian Stügelmayer
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2020-12-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+- !ruby/object:Gem::Dependency
+  name: bcrypt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: factory_bot_rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: faker
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: gem-release
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: guard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: guard-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: guard-rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec_junit_formatter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop-performance
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop-rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: JWT api authentication
+email:
+- cristian@yellowspot.dev
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/assets/config/jwt_api_auth_manifest.js
+- app/assets/stylesheets/jwt_api_auth/application.css
+- app/controllers/jwt_api_auth/application_controller.rb
+- app/controllers/jwt_api_auth/authentication_controller.rb
+- app/helpers/jwt_api_auth/application_helper.rb
+- app/jobs/jwt_api_auth/application_job.rb
+- app/mailers/jwt_api_auth/application_mailer.rb
+- app/models/jwt_api_auth/application_record.rb
+- app/views/layouts/jwt_api_auth/application.html.erb
+- config/routes.rb
+- lib/jwt_api_auth.rb
+- lib/jwt_api_auth/engine.rb
+- lib/jwt_api_auth/helpers.rb
+- lib/jwt_api_auth/version.rb
+- lib/tasks/jwt_api_auth_tasks.rake
+homepage: https://github.com/cristianstu/jwt-api-auth
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">"
+    - !ruby/object:Gem::Version
+      version: 1.3.1
+requirements: []
+rubygems_version: 3.0.8
+signing_key:
+specification_version: 4
+summary: JWT api authentication
+test_files: []