RubyGems - killbill-aviate - Versions diffs - 1.1.0.pre.3 → 1.1.0.pre.5 - Mend

killbill-aviate 1.1.0.pre.3 → 1.1.0.pre.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/app/controllers/aviate/configuration_controller.rb +27 -8
data/app/views/aviate/configuration/index.html.erb +7 -1
data/config/routes.rb +1 -0
data/lib/aviate/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c319f915aef12e37c59e9da46e0c1435109580df42f47e0405fe3892e925b8d9
-  data.tar.gz: fc4f02d1810b40db9538cf72aeddb04126f4e826dcc198cfe35c02ebc2dfd2e2
+  metadata.gz: f80c0ac4a5aebd20024637e6db468fc097cfc2446a9fdd9dc7410a918263039d
+  data.tar.gz: 62371a45706e77cf5c34fe8dad425a33f62b08900d4f63fb6706a45e67c33a9b
 SHA512:
-  metadata.gz: 1b7db95a97a8052deb9032ba38b7024ec12139a533b56dd17571e0b4b44df5af1925db587d190d7fd500c9870b1278fe4c8b6c9525b814b1bd0c12dab278ab5b
-  data.tar.gz: 6cdb61d694a1b52ff3f245c1bfb1d6e52c9a34c0ec87e540fc122be2dc3811d820c218fd311dbec90b7309ef06ac86f28c9b121c4370c4d04c21c9a4811b818e
+  metadata.gz: f0b39b235144075c36ace2437d197febc254fe2e7fcd0904bae8ae54bfe00d43b04acb63e191c4f813e557ed507048430842c43c9c26711cfedd83f7ff1afcb0
+  data.tar.gz: 1a8b182ad6efd8d377c9e731c42d68bad7dfe8e6b8f74fe75b5c805aa6ab8d9ed33e8fd6203e2d52d56e2d8517c14e768bd3bf6b7c93b9ef6df7022463022d5f

data/app/controllers/aviate/configuration_controller.rb CHANGED Viewed

@@ -3,6 +3,8 @@
 require 'aviate/client'
 module Aviate
   class ConfigurationController < Aviate::EngineController
+    before_action :cleanup_expired_jwt
     def index
       @available = Killbill::Aviate::AviateClient.aviate_plugin_available?(options_for_klient).first
     end
@@ -12,16 +14,33 @@ module Aviate
       email = params[:aviate_email]
       password = params[:aviate_password]
       response = Killbill::Aviate::AviateClient.authenticate(email, password, cached_options_for_klient)
-      if response['token']
-        cookies.encrypted[:jwt_token] = {
-          value: response['token'],
-          httponly: true,
-          secure: Rails.env.production?,
-          same_site: :strict,
-          expires: 1.hour.from_now
-        }
+      if response.is_a?(Hash) && response['token']
+        # Store JWT in server-side session instead of cookies to avoid header size limits
+        session[:aviate_jwt_token] = response['token']
+        session[:aviate_jwt_expires_at] = 1.hour.from_now.to_i
+        flash[:notice] = "Successfully authenticated with Aviate"
+      else
+        flash[:error] = "Authentication failed. Please check your credentials."
       end
       redirect_to aviate_root_path
     end
+    def session_destroy
+      session.delete(:aviate_jwt_token)
+      session.delete(:aviate_jwt_expires_at)
+      flash[:notice] = "Successfully logged out from Aviate"
+      redirect_to aviate_root_path
+    end
+    private
+    def cleanup_expired_jwt
+      if session[:aviate_jwt_expires_at] && session[:aviate_jwt_expires_at] < Time.current.to_i
+        session.delete(:aviate_jwt_token)
+        session.delete(:aviate_jwt_expires_at)
+      end
+    end
   end
 end

data/app/views/aviate/configuration/index.html.erb CHANGED Viewed

@@ -11,7 +11,13 @@
       </h5>
       <% if @available %>
         <div class="alert alert-success" role="alert">
-        <%= t('aviate.configuration.authentication_success') %>
+          <%= t('aviate.configuration.authentication_success') %>
+        </div>
+        <div class="d-flex justify-content-end">
+          <%= link_to "Logout", aviate_session_destroy_path,
+                      method: :delete,
+                      class: "btn btn-outline-secondary",
+                      confirm: "Are you sure you want to logout from Aviate?" %>
         </div>
       <% else %>
         <div class="configuration-form">

data/config/routes.rb CHANGED Viewed

@@ -5,6 +5,7 @@ Aviate::Engine.routes.draw do
   scope '/configuration' do
     match '/session_create' => 'configuration#session_create', :via => :post, :as => 'aviate_session_create'
+    match '/session_destroy' => 'configuration#session_destroy', :via => :delete, :as => 'aviate_session_destroy'
   end
   resources :accounts, param: :account_id do

data/lib/aviate/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Aviate
-  VERSION = '1.1.0.pre.3'
+  VERSION = '1.1.0.pre.5'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: killbill-aviate
 version: !ruby/object:Gem::Version
-  version: 1.1.0.pre.3
+  version: 1.1.0.pre.5
 platform: ruby
 authors:
 - Kill Bill core team
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-10-14 00:00:00.000000000 Z
+date: 2025-10-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: killbill-assets-ui