moguera-authentication 0.1.1 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c2f754587f79e26c05a6765d17711915560e7ed0
-  data.tar.gz: f556b05c274b540642325d4c4112d20d1145dc8a
+  metadata.gz: 7d6a12e8bf765eea7438dc1cb9553a02dff5ccc0
+  data.tar.gz: 4273174cdfebf58dc6b90ba5e420686cf6da2035
 SHA512:
-  metadata.gz: 4564b05390b4ce0ba5c824818fb869d92fa28a175619dbd0051752787011741329227a5f912b1ff8089e791dd8672bf0038bacb83d05fea2f3486a231ce3730a
-  data.tar.gz: 753542862ff2a1b864657314dfee005e8ed498678b5376c9f340770c648d83c7c9e2d534a545778cdcecb7d9df32fc1dd29a0d993d20570b72795e0aae0c5dd3
+  metadata.gz: 648d0938793be93bf7ae8de811b5108d4019e39c72444c20f692678b73a03c6cfcaa1ad55135b4268ed7a46ecb57ed392a048b42c570be8a9a4ce4a539e2ccf1
+  data.tar.gz: 55ccb61e61572a27bb4da245c0f9e76e3064faa1447d6c2e169d82010bdf2992ca6599e2f09946c8b5509b4fdf5da64f65e8950b1c794013d938387bfb0848c9

data/README.md

@@ -72,8 +72,13 @@ map '/login' do
     # # example credential.json
     # #=> {"user01":"secret"}
     file = File.join(File.expand_path(File.dirname(__FILE__)),'credential.json')
-    user = JSON.parse(File.open(file, &:read))
-    user[request_access_key]
+    secret_key = JSON.parse(File.open(file, &:read))[request_access_key]
+
+    unless secret_key
+      raise Moguera::Authentication::UserNotFound, "access_key: " + request_access_key
+    end
+
+    secret_key
   end
   
   run Private
@@ -103,10 +108,13 @@ class Private < Sinatra::Base
     if e = env['moguera.error']
       $stderr.puts e.message
       case e
-        when Moguera::Authentication::ParameterInvalid
+        when Moguera::Authentication::ParameterInvalid,
+             Moguera::Authentication::RequestTokenRequired
           halt 400, "400 Bad Request: #{e.message}\n"
         when Moguera::Authentication::AuthenticationError
           halt 401, "401 Unauthorized: #{e.message}\n"
+        when Moguera::Authentication::UserNotFound
+          halt 404, "404 Not Found: #{e.message}\n"
         else
           halt 500, "500 Internal Server Error\n"
       end

data/lib/moguera/authentication/exception.rb

@@ -10,5 +10,11 @@ module Moguera
 
     class BlockRequired < StandardError
     end
+
+    class RequestTokenRequired < StandardError
+    end
+
+    class UserNotFound < StandardError
+    end
   end
 end

data/lib/moguera/authentication/version.rb

@@ -1,5 +1,5 @@
 module Moguera
   class Authentication
-    VERSION = "0.1.1"
+    VERSION = "0.2.0"
   end
 end

data/lib/moguera/authentication.rb

@@ -7,7 +7,7 @@ module Moguera
     attr_accessor :allow_time_interval
 
     def initialize(request_token = nil)
-      raise AuthenticationError, 'Missing request token.' unless request_token
+      raise RequestTokenRequired, 'Missing request token.' unless request_token
 
       @request_token = request_token
       @allow_time_interval = allow_time_interval || 600

data/lib/rails/moguera_authentication/authable.rb

@@ -0,0 +1,97 @@
+module MogueraAuthentication
+  module Authable
+    extend ActiveSupport::Concern
+
+    included do
+      helper_method :current_user, :user_signed_in?
+    end
+
+    def current_user=(user)
+      @current_user = user
+    end
+
+    def current_user
+      @current_user
+    end
+
+    def user_signed_in?
+      !!current_user
+    end
+
+    def require_sign_in!
+      validate_user!
+      sign_in!(user_class.find_by(find_key => env['moguera.auth'].try(:access_key)))
+    end
+
+    def sign_in!(user)
+      self.current_user = user
+    end
+
+    def sign_out!
+      self.current_user = nil
+    end
+
+    module ClassMethods
+      def require_sign_in!(options={})
+        before_filter :require_sign_in!, options
+      end
+    end
+
+    private
+
+    def user_class
+      Rails.application.config.moguera_authentication.user_class
+    end
+
+    def find_key
+      Rails.application.config.moguera_authentication.find_key
+    end
+
+    def validate_user!
+      if e = env['moguera.error']
+        logger.error "ERROR: #{e.inspect}"
+        case e
+          when Moguera::Authentication::ParameterInvalid,
+               Moguera::Authentication::RequestTokenRequired
+            status = 400
+            response = {
+                code: e.class.to_s,
+                message: "#{status} Bad Request: #{e.message}",
+                status: status
+            }
+          when Moguera::Authentication::AuthenticationError
+            status = 401
+            response = {
+                code: e.class.to_s,
+                message: "#{status} Unauthorized: #{e.message}",
+                status: status
+            }
+            require 'pp'
+            PP.pp ({
+                  request_token: e.request_token,
+                  server_request_token: e.server_request.token,
+                  request_path: e.server_request.request_path,
+                  request_method: e.server_request.request_method,
+                  http_date: e.server_request.http_date,
+                  content_type: e.server_request.content_type
+              }), STDERR
+          when Moguera::Authentication::UserNotFound
+            status = 404
+            response = {
+                code: e.class.to_s,
+                message: "#{status} Not Found: #{e.message}",
+                status: status
+            }
+          else
+            status = 500
+            response = {
+                code: e.class.to_s,
+                message: "#{status} Internal Server Error: #{e.message}",
+                status: status
+            }
+        end
+        render(json: response, status: status)
+      end
+    end
+  end
+end

data/lib/rails/moguera_authentication/install.rb

@@ -0,0 +1,22 @@
+module MogueraAuthentication
+  class Install < Rails::Generators::Base
+    desc 'Initialize MogueraAuthentication'
+    def create_initializer_file
+      initializer 'moguera_authentication.rb' do
+        <<-FILE.strip_heredoc
+          Rails.application.config.middleware.use Rack::MogueraAuthentication do |key|
+            secret_key = Rails.application.config.moguera_authentication.user_class
+              .find_by(Rails.application.config.moguera_authentication.find_key => key)
+              .try(Rails.application.config.moguera_authentication.secret_access_key)
+
+            unless secret_key
+              raise Moguera::Authentication::UserNotFound, "access_key: " + key
+            end
+
+            secret_key
+          end
+        FILE
+      end
+    end
+  end
+end

data/lib/rails/moguera_authentication/railtie.rb

@@ -0,0 +1,23 @@
+module MogueraAuthentication
+  class Railtie < ::Rails::Railtie
+    config.moguera_authentication = ActiveSupport::OrderedOptions.new
+    config.eager_load_namespaces << MogueraAuthentication::Railtie
+
+    initializer 'moguera_authentication.controller_ext' do
+      require 'rails/moguera_authentication/authable'
+      ActiveSupport.on_load(:action_controller) do
+        ActionController::Base.send :include, MogueraAuthentication::Authable
+      end
+    end
+
+    initializer 'moguera_authentication.set_config' do
+      config.moguera_authentication.user_class ||= User rescue nil
+      config.moguera_authentication.find_key ||= :access_key
+      config.moguera_authentication.secret_access_key ||= :secret_access_key
+    end
+
+    generators do
+      require 'rails/moguera_authentication/install'
+    end
+  end
+end

data/lib/rails/moguera_authentication.rb

@@ -0,0 +1,6 @@
+require 'rails/railtie'
+require 'rack/moguera_authentication'
+require 'rails/moguera_authentication/railtie'
+
+module MogueraAuthentication
+end

data/sample/config.ru

@@ -12,8 +12,11 @@ end
 map '/login' do
   use Rack::MogueraAuthentication do |key|
     file = File.join(File.expand_path(File.dirname(__FILE__)), 'credential.json')
-    user = JSON.parse(File.open(file, &:read))
-    user[key]
+    secret_key = JSON.parse(File.open(file, &:read))[key]
+
+    raise Moguera::Authentication::UserNotFound unless secret_key
+
+    secret_key
   end
 
   run Private

data/sample/server.rb

@@ -18,10 +18,13 @@ class Private < Sinatra::Base
     if e = env['moguera.error']
       $stderr.puts e.message
       case e
-        when Moguera::Authentication::ParameterInvalid
+        when Moguera::Authentication::ParameterInvalid,
+             Moguera::Authentication::RequestTokenRequired
           halt 400, "400 Bad Request: #{e.message}\n"
         when Moguera::Authentication::AuthenticationError
           halt 401, "401 Unauthorized: #{e.message}\n"
+        when Moguera::Authentication::UserNotFound
+          halt 404, "404 Not Found: #{e.message}\n"
         else
           halt 500, "500 Internal Server Error\n"
       end

data/spec/authentication/authentication_spec.rb

@@ -31,10 +31,10 @@ describe Moguera::Authentication do
     end
 
     describe 'Invalid token' do
-      it 'should be raise AuthenticationError with missing request token message' do
+      it 'should be raise RequestTokenRequired with missing request token message' do
         expect {
           Moguera::Authentication.new
-        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Missing request token.')
+        }.to raise_error(Moguera::Authentication::RequestTokenRequired, 'Missing request token.')
       end
 
       it 'should be raise AuthenticationError with invalid token message' do

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: moguera-authentication
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.2.0
 platform: ruby
 authors:
 - hiro-su
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-12-24 00:00:00.000000000 Z
+date: 2015-01-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -86,6 +86,10 @@ files:
 - lib/moguera/authentication/request.rb
 - lib/moguera/authentication/version.rb
 - lib/rack/moguera_authentication.rb
+- lib/rails/moguera_authentication.rb
+- lib/rails/moguera_authentication/authable.rb
+- lib/rails/moguera_authentication/install.rb
+- lib/rails/moguera_authentication/railtie.rb
 - moguera-authentication.gemspec
 - sample/client.rb
 - sample/config.ru