nm-gigya 0.1.20 → 0.1.26

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 750c93385f69b17c6e9b18f0b24dd2c8de78f73a56e9056938cbbd2af5cf9b95
-  data.tar.gz: 4ed2d9401b51060ce1ae37420e2905c2e4a4c8fb67dedc1982e5d18704434fe9
+  metadata.gz: b8253c94735c73d0870a148bfc7babdf2da0bc6baab966ba4c0d7207ce33f90f
+  data.tar.gz: b4ebd99810c2e3283a86c33982934ef47cd4627ca2068c5622200331118b7efc
 SHA512:
-  metadata.gz: 22fb90438a1aab32b86f35ad22965e78c40bf6cafa33283d018a09704e76111da93a832896f59c4f3a19873f402b5feff56e05d959b26586fae26f8a30bab702
-  data.tar.gz: e88ccc6ce71ee3789969fc44d0e20d13879c69d793c09ed7e005a426c5fbb9d618027186af54587f5b714a754609f678799a6ebe126712caa9b8081c0c6806ab
+  metadata.gz: 18216ea8d1ef4c8ee108349cbcbf473d4743a4f76604fe72a973241a735265576eb4be4a406b72daa465ffa6dede7e0ba328717aa7a233f579f5ed4376421847
+  data.tar.gz: 6d9146dce8eb144384c6d1824172526b9856c37bdf9510006829e14ec380f6cbf9010d96e1da2f334bb2c933fdef342d9144a0ac85e2fee7ed34b00f4c03fb2c

data/lib/gigya/connection.rb

@@ -153,6 +153,7 @@ module Gigya
 
 	class Connection
 		attr_accessor :jwt_skip_validation
+		attr_accessor :whitelisted_api_keys
 
 		GIGYA_BASE_URL="gigya.com"
 		def self.shared_connection
@@ -164,6 +165,10 @@ module Gigya
 					:user_secret => ENV["GIGYA_USER_SECRET"],
 					:debug_connection => ENV["GIGYA_DEBUG_CONNECTION"] == "1"
 				)
+
+				whitelist = ENV["GIGYA_WHITELISTED_API_KEYS"]
+				conn.whitelisted_api_keys => whitelist.split(",") unless whitelist.blank?
+
 				conn.jwt_skip_validation = false
 				conn
 			end
@@ -263,6 +268,18 @@ module Gigya
 
 			return user_jwt_info if jwt_skip_validation
 
+			# If we have enumerated whitelisted API keys
+			unless whitelisted_api_keys.nil?
+				# Grab the API key encoded in the token
+				jwt_api_key = user_jwt_info["apiKey"]
+
+				# Our own API key is automatically valid
+				if jwt_api_key != api_key
+					# Make sure it is listed in the whitelisted keys
+					raise "Invalid API Key" unless whitelisted_api_keys.include?(jwt_api_key)
+				end
+			end
+
 			signing_key_id = signing_jwt_info["keyid"]
 			@cached_data["jwt_public_keys"] ||= {}
 			k = @cached_data["jwt_public_keys"][signing_key_id]
@@ -292,6 +309,15 @@ module Gigya
 			api_call("POST", area, function, params, opts)
 		end
 
+		# This allows substituting how HTTP calls are made (could be useful for testing)
+		def http_driver
+			@http_driver || HTTParty
+		end
+
+		def http_driver=(val)
+			@http_driver = val
+		end
+
 		def api_call(http_method, area, function, params = nil, opts = nil)
 			params ||= {}
 			opts ||= {}
@@ -302,7 +328,7 @@ module Gigya
 			params[:apiKey] = opts[:api_key]
 			unless opts[:authenticate_app] == false
 				params[:secret] = opts[:user_secret]
-				params[:userKey] = opts[:user_key]
+				params[:userKey] = opts[:user_key] unless opts[:user_key].blank?
 			end
 
 			if opts[:session] != nil
@@ -319,7 +345,7 @@ module Gigya
 			end
 			http_response = nil
 			response = begin
-				http_response = http_method == "GET" ? HTTParty.get(base_url, :query => params) : HTTParty.post(base_url, :body => params)
+				http_response = http_method == "GET" ? http_driver.get(base_url, :query => params) : http_driver.post(base_url, :body => params)
 				JSON.parse(http_response.body)
 			rescue
 				{"errorCode" => 600, "errorMessage" => "Unknown error", "errorDetail" => "Unable to communicate with authentication server", :http => http_response.inspect}

data/lib/gigya/controller_utils.rb

@@ -62,7 +62,7 @@ module Gigya
 
 				begin
 					if tmp_token.blank?
-						tmp_token = session[GIGYA_SESSION_PARAM]	
+						tmp_token = session[GIGYA_SESSION_PARAM]
 						token_location = :session
 					end
 				rescue
@@ -78,7 +78,7 @@ module Gigya
 		end
 
 		def interpret_jwt_token(force = false)
-			if @gigya_jwt_info.nil? 
+			if @gigya_jwt_info.nil?
 				@gigya_jwt_info = Gigya::Connection.shared_connection.validate_jwt(gigya_jwt_token)
 
 				perform_token_refresh if needs_token_refresh?
@@ -114,7 +114,7 @@ module Gigya
 			case @gigya_token_location
 				when :header
 					headers["X-Set-Authorization-Token"] = token
-					headers["X-Set-Authorization-Token-Expiration"] = expiration_time.to_i
+					headers["X-Set-Authorization-Token-Expiration"] = expiration_time.to_i.to_s
 				when :cookie
 					cookies[GIGYA_COOKIE_PARAM] = token
 				when :session
@@ -160,5 +160,5 @@ module Gigya
 				@gigya_jwt_info["sub"]
 			end
 		end
-	end	
+	end
 end

data/lib/gigya/user.rb

@@ -50,7 +50,7 @@ module Gigya
 		end
 
 		def reload
-			conn = gigya_connection || Gigya::Connection.shared_connection
+			conn = my_gigya_connection
 			set_attributes(conn.api_get("accounts", "getAccountInfo", {UID: uid, include:"profile,data,subscriptions,userInfo,preferences", extraProfileFields:@@extra_profile_fields.join(",")}))
 		end
 
@@ -60,7 +60,7 @@ module Gigya
 			info["data"] = gigya_details["data"].to_json if gigya_details["data"].present?
 			# What about isActive, isVerified?, password/newPassword, preferences, add/removeLoginEmails, subscriptions, lang, rba
 
-			conn = gigya_connection || Gigya::Connection.shared_connection	
+			conn = my_gigya_connection
 			conn.api_post("accounts", "setAccountInfo", info)
 			save_to_cache
 
@@ -97,7 +97,7 @@ module Gigya
 
 		def self.find(uid, opts = {}) # Find a Gigya account record by its UID attribute
 			opts = {} if opts.nil?
-      opts[:cache] = true if opts[:cache].nil?
+			opts[:cache] = true if opts[:cache].nil?
 
 			cache_info = load_from_cache(uid)
 			if cache_info.present? && opts[:cache]
@@ -163,5 +163,135 @@ module Gigya
 				nil
 			end
 		end
+
+
+		# Intended way of calling this:
+		# Gigya::User.create_gigya_user_through_notify_login("abc@example.com", :password => "Abc123!!", :account => { "preferences" => {"foo" => "bar" } }, :verified => true)
+		#
+		# Options:
+		#   :password => Set a password,
+		#   :source => the registration source
+		#   :account => hash of any account defaults you want to set.  Profile defaults should be under the "profile" key.
+		#   :send_verification => Will send verification email
+		#   :verified => Will auto-set "verified"
+		#   :force => Will do things that Gigya doesn't naturally want to do (often used in combination with :verified)
+		#   :debug => will print out call information	
+
+		# Creates a gigya user through the `notify_login` pathway
+		def self.create_gigya_user_through_notify_login(email, opts = {})
+			conn = opts[:gigya_connection] || Gigya::Connection.shared_connection
+
+			# Create UUID
+			new_uid = opts[:UID] || "#{SecureRandom.uuid.gsub("-", "")}#{SecureRandom.uuid.gsub("-", "")}"
+
+			# Is the address available?
+			email_is_available = conn.api_get("accounts", "isAvailableLoginID", { "loginID" => email }, :debug_connection => opts[:debug])["isAvailable"] rescue false
+			raise "Username is unavailable" unless email_is_available
+
+			# Register UUID
+			response = conn.api_get("accounts", "notifyLogin", {"siteUID" => new_uid}, :debug_connection => opts[:debug])
+			raise "Could not register UID" unless response["errorCode"] == 0 || response["errorCode"] == 206001
+
+			# Start the registration process
+			regtoken = conn.api_get("accounts", "initRegistration", {}, :debug_connection => opts[:debug])["regToken"] rescue nil
+			raise "Could not initiate registration" if regtoken.blank?
+
+			# Create the data record
+			account_info = opts[:account] || {}        # This allows the caller to send us defaults
+			account_info["UID"] = new_uid              # Primary key
+			account_info["regToken"] = regtoken        # Ties it to the initial registration
+			account_info["securityOverride"] = true    # Allows us to set passwords if we want
+			account_info["profile"] ||= {}
+			account_info["profile"]["email"] = email   # Actual login username
+			account_info["profile"] = account_info["profile"].to_json
+			account_info["preferences"] = account_info["preferences"].to_json
+			account_info["regSource"] = opts[:source] || "nm-gigya"
+
+			# Optional data record pieces
+			account_info["isVerified"] = true if opts[:verified]
+			account_info["newPassword"] = opts[:password] unless opts[:password].blank?
+
+			# Create the registration with the data record
+			results = conn.api_post("accounts", "setAccountInfo", account_info, :debug_connection => opts[:debug])
+
+			# If not everything got set correctly (NOTE - doesn't work if :password is not also sent)
+			if opts[:force]
+				response = conn.api_get("accounts", "login", {"loginID" => email, "password" => opts[:password]}, :debug_connection => opts[:debug])
+				if response["errorCode"] != 0
+					verify_reg_token = response["regToken"]
+					response = conn.api_get("accounts", "finalizeRegistration", {"regToken" => verify_reg_token, "include" => "emails, profile"}, :debug_connection => opts[:debug])
+					unless response["errorCode"] == 0 || response["errorCode"] == 206002 || response["errorCode"] == 206001
+						raise "Unable to finalize registration" 
+					end
+				end
+			end
+
+			if opts[:send_verification]
+				conn.api_get("accounts", "resendVerificationCode", {"UID" => new_uid, "email" => email})
+			end
+
+			if opts[:send_password_change]
+				conn.api_get("accounts", "resetPassword", {"UID" => new_uid, "loginID" => email, "email" => email})
+			end
+
+			return new_uid
+		end
+
+		# Creates a gigya user through the `register` pathway
+
+		# Options:
+		#   :password => Set a password,
+		#   :source => the registration source
+		#   :account => hash of any account defaults you want to set.  Profile defaults should be under the "profile" key.
+		#   :debug => will print out call information
+
+		def self.create_gigya_user_through_register(email, opts = {})
+			conn = opts[:gigya_connection] || Gigya::Connection.shared_connection
+
+			new_password = opts[:password] || SecureRandom.urlsafe_base64(8)
+
+			# Create UUID
+			new_uid = opts[:UID] || "#{SecureRandom.uuid.gsub("-", "")}#{SecureRandom.uuid.gsub("-", "")}"
+
+			# Is the address available?
+			email_is_available = conn.api_get("accounts", "isAvailableLoginID", { "loginID" => email }, :debug_connection => opts[:debug])["isAvailable"] rescue false
+			raise "Username is unavailable" unless email_is_available
+
+			# Start the registration process
+			regtoken = conn.api_get("accounts", "initRegistration", {}, :debug_connection => opts[:debug])["regToken"] rescue nil
+			raise "Could not initiate registration" if regtoken.blank?
+
+			# Create the data record
+			account_info = opts[:account] || {}        # This allows the caller to send us defaults
+			account_info["siteUID"] = new_uid              # Primary key
+			account_info["regToken"] = regtoken        # Ties it to the initial registration
+			account_info["profile"] ||= {}
+			account_info["email"] = email
+			account_info["profile"]["email"] = email   # Actual login username
+			account_info["profile"] = account_info["profile"].to_json
+			account_info["preferences"] = account_info["preferences"].to_json unless account_info["preferences"].nil?
+			account_info["regSource"] = opts[:source] unless opts[:source].blank?
+			account_info["password"] = new_password
+			account_info["data"] = account_info["data"].to_json unless account_info["data"].nil?
+
+			# Complete the registration process
+			conn.api_post("accounts", "register", account_info, :debug_connection => opts[:debug])
+
+			if opts[:send_verification]
+				conn.api_get("accounts", "resendVerificationCode", {"UID" => new_uid, "email" => email})
+			end
+
+			if opts[:send_password_change]
+				conn.api_get("accounts", "resetPassword", {"UID" => new_uid, "loginID" => email, "email" => email})
+			end
+
+			return new_uid
+		end
+
+		private
+
+		def my_gigya_connection
+			gigya_connection || Gigya::Connection.shared_connection
+		end
 	end
 end

metadata

@@ -1,16 +1,16 @@
 --- !ruby/object:Gem::Specification
 name: nm-gigya
 version: !ruby/object:Gem::Version
-  version: 0.1.20
+  version: 0.1.26
 platform: ruby
 authors:
 - Jonathan Bartlett
 - Tyler Jackson
 - Clark Ritchie
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-02-07 00:00:00.000000000 Z
+date: 2020-04-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: httparty
@@ -40,8 +40,8 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.1'
-description: 
-email: jonathan@newmedio.com
+description:
+email: jonathan.bartlett@specialized.com
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -56,7 +56,7 @@ homepage: http://www.newmedio.com/
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -71,8 +71,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.2
-signing_key: 
+rubygems_version: 3.1.2
+signing_key:
 specification_version: 4
 summary: Gigya API Utility Package
 test_files: []