nm-gigya 0.1.21 → 0.1.27

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 16a25e8dd7145c0f168abd4cb48d5a0015e36acf5b5875ab14847cd409da1517
-  data.tar.gz: 89575031565c30fece68f11d68cfb2c172c955861468890a1b4dd347cb5df555
+  metadata.gz: 61fbfb7bec7e916ebbd5ead7bb06bf5b2fef9af53cdc69e21bbd025f2f6b2012
+  data.tar.gz: b00fd8f43838915f463aa3a2381d502f63ab1ce689098581855752f2ca80e782
 SHA512:
-  metadata.gz: a3afe07e75ba869edfd28d40560c1355e6fdfac5e724be115dd9a31a3c36c7626ad1c8be98251a95714f0b37bfd9f3d5f0a6cb0605525dbcdf53298ff2737236
-  data.tar.gz: 3b41ed2716229a0a4c9c7b5b13a0f874977b42a5e4673d9df01e15184ceb707368e833bd0c2b9adef5080063a9823f8daa474b2d9512be85f49e560c89ab5377
+  metadata.gz: b1b1f8116726ca576f215dad676c28647bde63144bf799f1c3e6ef7897a72cbe5247359df843b984105f17d14a02c8ad96b7070ea407576db351dbfaed397eda
+  data.tar.gz: 7cf1fe69e6e457d2ba4116f316db28cb4893b47cd347a7685624e311e2b6eb6e014d5f0f7f4efd9e1a7131e90a09bccb9af77a9f0ff351a6939a130f5df08436

data/lib/gigya/connection.rb

@@ -153,6 +153,7 @@ module Gigya
 
 	class Connection
 		attr_accessor :jwt_skip_validation
+		attr_accessor :whitelisted_api_keys
 
 		GIGYA_BASE_URL="gigya.com"
 		def self.shared_connection
@@ -164,6 +165,10 @@ module Gigya
 					:user_secret => ENV["GIGYA_USER_SECRET"],
 					:debug_connection => ENV["GIGYA_DEBUG_CONNECTION"] == "1"
 				)
+
+				whitelist = ENV["GIGYA_WHITELISTED_API_KEYS"]
+				conn.whitelisted_api_keys = whitelist.split(",") unless whitelist.blank?
+
 				conn.jwt_skip_validation = false
 				conn
 			end
@@ -263,6 +268,18 @@ module Gigya
 
 			return user_jwt_info if jwt_skip_validation
 
+			# If we have enumerated whitelisted API keys
+			unless whitelisted_api_keys.nil?
+				# Grab the API key encoded in the token
+				jwt_api_key = user_jwt_info["apiKey"]
+
+				# Our own API key is automatically valid
+				if jwt_api_key != api_key
+					# Make sure it is listed in the whitelisted keys
+					raise "Invalid API Key" unless whitelisted_api_keys.include?(jwt_api_key)
+				end
+			end
+
 			signing_key_id = signing_jwt_info["keyid"]
 			@cached_data["jwt_public_keys"] ||= {}
 			k = @cached_data["jwt_public_keys"][signing_key_id]
@@ -292,6 +309,15 @@ module Gigya
 			api_call("POST", area, function, params, opts)
 		end
 
+		# This allows substituting how HTTP calls are made (could be useful for testing)
+		def http_driver
+			@http_driver || HTTParty
+		end
+
+		def http_driver=(val)
+			@http_driver = val
+		end
+
 		def api_call(http_method, area, function, params = nil, opts = nil)
 			params ||= {}
 			opts ||= {}
@@ -302,7 +328,7 @@ module Gigya
 			params[:apiKey] = opts[:api_key]
 			unless opts[:authenticate_app] == false
 				params[:secret] = opts[:user_secret]
-				params[:userKey] = opts[:user_key]
+				params[:userKey] = opts[:user_key] unless opts[:user_key].blank?
 			end
 
 			if opts[:session] != nil
@@ -319,7 +345,7 @@ module Gigya
 			end
 			http_response = nil
 			response = begin
-				http_response = http_method == "GET" ? HTTParty.get(base_url, :query => params) : HTTParty.post(base_url, :body => params)
+				http_response = http_method == "GET" ? http_driver.get(base_url, :query => params) : http_driver.post(base_url, :body => params)
 				JSON.parse(http_response.body)
 			rescue
 				{"errorCode" => 600, "errorMessage" => "Unknown error", "errorDetail" => "Unable to communicate with authentication server", :http => http_response.inspect}

data/lib/gigya/user.rb

@@ -50,7 +50,7 @@ module Gigya
 		end
 
 		def reload
-			conn = gigya_connection || Gigya::Connection.shared_connection
+			conn = my_gigya_connection
 			set_attributes(conn.api_get("accounts", "getAccountInfo", {UID: uid, include:"profile,data,subscriptions,userInfo,preferences", extraProfileFields:@@extra_profile_fields.join(",")}))
 		end
 
@@ -60,7 +60,7 @@ module Gigya
 			info["data"] = gigya_details["data"].to_json if gigya_details["data"].present?
 			# What about isActive, isVerified?, password/newPassword, preferences, add/removeLoginEmails, subscriptions, lang, rba
 
-			conn = gigya_connection || Gigya::Connection.shared_connection	
+			conn = my_gigya_connection
 			conn.api_post("accounts", "setAccountInfo", info)
 			save_to_cache
 
@@ -97,7 +97,7 @@ module Gigya
 
 		def self.find(uid, opts = {}) # Find a Gigya account record by its UID attribute
 			opts = {} if opts.nil?
-      opts[:cache] = true if opts[:cache].nil?
+			opts[:cache] = true if opts[:cache].nil?
 
 			cache_info = load_from_cache(uid)
 			if cache_info.present? && opts[:cache]
@@ -163,5 +163,135 @@ module Gigya
 				nil
 			end
 		end
+
+
+		# Intended way of calling this:
+		# Gigya::User.create_gigya_user_through_notify_login("abc@example.com", :password => "Abc123!!", :account => { "preferences" => {"foo" => "bar" } }, :verified => true)
+		#
+		# Options:
+		#   :password => Set a password,
+		#   :source => the registration source
+		#   :account => hash of any account defaults you want to set.  Profile defaults should be under the "profile" key.
+		#   :send_verification => Will send verification email
+		#   :verified => Will auto-set "verified"
+		#   :force => Will do things that Gigya doesn't naturally want to do (often used in combination with :verified)
+		#   :debug => will print out call information	
+
+		# Creates a gigya user through the `notify_login` pathway
+		def self.create_gigya_user_through_notify_login(email, opts = {})
+			conn = opts[:gigya_connection] || Gigya::Connection.shared_connection
+
+			# Create UUID
+			new_uid = opts[:UID] || "#{SecureRandom.uuid.gsub("-", "")}#{SecureRandom.uuid.gsub("-", "")}"
+
+			# Is the address available?
+			email_is_available = conn.api_get("accounts", "isAvailableLoginID", { "loginID" => email }, :debug_connection => opts[:debug])["isAvailable"] rescue false
+			raise "Username is unavailable" unless email_is_available
+
+			# Register UUID
+			response = conn.api_get("accounts", "notifyLogin", {"siteUID" => new_uid}, :debug_connection => opts[:debug])
+			raise "Could not register UID" unless response["errorCode"] == 0 || response["errorCode"] == 206001
+
+			# Start the registration process
+			regtoken = conn.api_get("accounts", "initRegistration", {}, :debug_connection => opts[:debug])["regToken"] rescue nil
+			raise "Could not initiate registration" if regtoken.blank?
+
+			# Create the data record
+			account_info = opts[:account] || {}        # This allows the caller to send us defaults
+			account_info["UID"] = new_uid              # Primary key
+			account_info["regToken"] = regtoken        # Ties it to the initial registration
+			account_info["securityOverride"] = true    # Allows us to set passwords if we want
+			account_info["profile"] ||= {}
+			account_info["profile"]["email"] = email   # Actual login username
+			account_info["profile"] = account_info["profile"].to_json
+			account_info["preferences"] = account_info["preferences"].to_json
+			account_info["regSource"] = opts[:source] || "nm-gigya"
+
+			# Optional data record pieces
+			account_info["isVerified"] = true if opts[:verified]
+			account_info["newPassword"] = opts[:password] unless opts[:password].blank?
+
+			# Create the registration with the data record
+			results = conn.api_post("accounts", "setAccountInfo", account_info, :debug_connection => opts[:debug])
+
+			# If not everything got set correctly (NOTE - doesn't work if :password is not also sent)
+			if opts[:force]
+				response = conn.api_get("accounts", "login", {"loginID" => email, "password" => opts[:password]}, :debug_connection => opts[:debug])
+				if response["errorCode"] != 0
+					verify_reg_token = response["regToken"]
+					response = conn.api_get("accounts", "finalizeRegistration", {"regToken" => verify_reg_token, "include" => "emails, profile"}, :debug_connection => opts[:debug])
+					unless response["errorCode"] == 0 || response["errorCode"] == 206002 || response["errorCode"] == 206001
+						raise "Unable to finalize registration" 
+					end
+				end
+			end
+
+			if opts[:send_verification]
+				conn.api_get("accounts", "resendVerificationCode", {"UID" => new_uid, "email" => email})
+			end
+
+			if opts[:send_password_change]
+				conn.api_get("accounts", "resetPassword", {"UID" => new_uid, "loginID" => email, "email" => email})
+			end
+
+			return new_uid
+		end
+
+		# Creates a gigya user through the `register` pathway
+
+		# Options:
+		#   :password => Set a password,
+		#   :source => the registration source
+		#   :account => hash of any account defaults you want to set.  Profile defaults should be under the "profile" key.
+		#   :debug => will print out call information
+
+		def self.create_gigya_user_through_register(email, opts = {})
+			conn = opts[:gigya_connection] || Gigya::Connection.shared_connection
+
+			new_password = opts[:password] || SecureRandom.urlsafe_base64(8)
+
+			# Create UUID
+			new_uid = opts[:UID] || "#{SecureRandom.uuid.gsub("-", "")}#{SecureRandom.uuid.gsub("-", "")}"
+
+			# Is the address available?
+			email_is_available = conn.api_get("accounts", "isAvailableLoginID", { "loginID" => email }, :debug_connection => opts[:debug])["isAvailable"] rescue false
+			raise "Username is unavailable" unless email_is_available
+
+			# Start the registration process
+			regtoken = conn.api_get("accounts", "initRegistration", {}, :debug_connection => opts[:debug])["regToken"] rescue nil
+			raise "Could not initiate registration" if regtoken.blank?
+
+			# Create the data record
+			account_info = opts[:account] || {}        # This allows the caller to send us defaults
+			account_info["siteUID"] = new_uid              # Primary key
+			account_info["regToken"] = regtoken        # Ties it to the initial registration
+			account_info["profile"] ||= {}
+			account_info["email"] = email
+			account_info["profile"]["email"] = email   # Actual login username
+			account_info["profile"] = account_info["profile"].to_json
+			account_info["preferences"] = account_info["preferences"].to_json unless account_info["preferences"].nil?
+			account_info["regSource"] = opts[:source] unless opts[:source].blank?
+			account_info["password"] = new_password
+			account_info["data"] = account_info["data"].to_json unless account_info["data"].nil?
+
+			# Complete the registration process
+			conn.api_post("accounts", "register", account_info, :debug_connection => opts[:debug])
+
+			if opts[:send_verification]
+				conn.api_get("accounts", "resendVerificationCode", {"UID" => new_uid, "email" => email})
+			end
+
+			if opts[:send_password_change]
+				conn.api_get("accounts", "resetPassword", {"UID" => new_uid, "loginID" => email, "email" => email})
+			end
+
+			return new_uid
+		end
+
+		private
+
+		def my_gigya_connection
+			gigya_connection || Gigya::Connection.shared_connection
+		end
 	end
 end

metadata

@@ -1,16 +1,16 @@
 --- !ruby/object:Gem::Specification
 name: nm-gigya
 version: !ruby/object:Gem::Version
-  version: 0.1.21
+  version: 0.1.27
 platform: ruby
 authors:
 - Jonathan Bartlett
 - Tyler Jackson
 - Clark Ritchie
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-02-07 00:00:00.000000000 Z
+date: 2020-04-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: httparty
@@ -40,8 +40,8 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.1'
-description: 
-email: jonathan@newmedio.com
+description:
+email: jonathan.bartlett@specialized.com
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -56,7 +56,7 @@ homepage: http://www.newmedio.com/
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -71,8 +71,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.2
-signing_key: 
+rubygems_version: 3.1.2
+signing_key:
 specification_version: 4
 summary: Gigya API Utility Package
 test_files: []