osso 0.0.8 → 0.0.10
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.buildkite/pipeline.yml +1 -0
- data/Gemfile +1 -1
- data/Gemfile.lock +11 -11
- data/Rakefile +1 -0
- data/bin/console +3 -0
- data/lib/osso/routes/admin.rb +34 -6
- data/lib/osso/version.rb +1 -1
- data/osso-rb.gemspec +1 -1
- data/spec/routes/admin_spec.rb +27 -9
- metadata +12 -7
- data/spec/routes/app_spec.rb +0 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: c1ba94c32e61517dd429dd54e06ac24924ddb1245fff2c4dd1795d9e227972b4
|
|
4
|
+
data.tar.gz: bd239880638f0d8f344050c5fa92e110dc519c06e75321c28b3fa92e1860a2be
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: abb0e59b77e44230d47850e9e43d1a131a76694b6482706ce4d245f6832c823eeffebea468f75a4007e80ecf151271b5e9908e748e191b652c24c32984ff5c74
|
|
7
|
+
data.tar.gz: 12e250de2709aad8a60da53237a1489034d21f0caa05b084edabab93395266dd77060b0ad68a8d38956a9e8177315d3a35724a746aab04c438a3678194eeff4c
|
data/.buildkite/pipeline.yml
CHANGED
data/Gemfile
CHANGED
data/Gemfile.lock
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
PATH
|
|
2
2
|
remote: .
|
|
3
3
|
specs:
|
|
4
|
-
osso (0.0.
|
|
4
|
+
osso (0.0.9)
|
|
5
5
|
activesupport (>= 6.0.3.2)
|
|
6
6
|
bcrypt (~> 3.1.13)
|
|
7
7
|
graphql
|
|
@@ -13,7 +13,7 @@ PATH
|
|
|
13
13
|
rack-contrib
|
|
14
14
|
rack-oauth2
|
|
15
15
|
rake
|
|
16
|
-
rodauth (
|
|
16
|
+
rodauth (>= 2.6, < 2.8)
|
|
17
17
|
sequel (>= 5.37, < 5.40)
|
|
18
18
|
sequel-activerecord_connection (>= 0.3, < 2.0)
|
|
19
19
|
sinatra
|
|
@@ -66,7 +66,7 @@ GEM
|
|
|
66
66
|
i18n (1.8.5)
|
|
67
67
|
concurrent-ruby (~> 1.0)
|
|
68
68
|
json (2.3.1)
|
|
69
|
-
json-jwt (1.
|
|
69
|
+
json-jwt (1.12.0)
|
|
70
70
|
activesupport (>= 4.2)
|
|
71
71
|
aes_key_wrap
|
|
72
72
|
bindata
|
|
@@ -91,7 +91,7 @@ GEM
|
|
|
91
91
|
omniauth (~> 1.3, >= 1.3.2)
|
|
92
92
|
ruby-saml (~> 1.9)
|
|
93
93
|
parallel (1.20.1)
|
|
94
|
-
parser (
|
|
94
|
+
parser (3.0.0.0)
|
|
95
95
|
ast (~> 2.4.1)
|
|
96
96
|
pg (1.2.3)
|
|
97
97
|
pry (0.13.1)
|
|
@@ -112,12 +112,12 @@ GEM
|
|
|
112
112
|
rack-test (1.1.0)
|
|
113
113
|
rack (>= 1.0, < 3)
|
|
114
114
|
rainbow (3.0.0)
|
|
115
|
-
rake (13.0.
|
|
116
|
-
regexp_parser (2.0.
|
|
115
|
+
rake (13.0.3)
|
|
116
|
+
regexp_parser (2.0.2)
|
|
117
117
|
rexml (3.2.4)
|
|
118
|
-
roda (3.
|
|
118
|
+
roda (3.39.0)
|
|
119
119
|
rack
|
|
120
|
-
rodauth (2.
|
|
120
|
+
rodauth (2.7.0)
|
|
121
121
|
roda (>= 2.6.0)
|
|
122
122
|
sequel (>= 4)
|
|
123
123
|
rspec (3.10.0)
|
|
@@ -133,7 +133,7 @@ GEM
|
|
|
133
133
|
diff-lcs (>= 1.2.0, < 2.0)
|
|
134
134
|
rspec-support (~> 3.10.0)
|
|
135
135
|
rspec-support (3.10.0)
|
|
136
|
-
rubocop (1.
|
|
136
|
+
rubocop (1.7.0)
|
|
137
137
|
parallel (~> 1.10)
|
|
138
138
|
parser (>= 2.7.1.5)
|
|
139
139
|
rainbow (>= 2.2.2, < 4.0)
|
|
@@ -176,7 +176,7 @@ GEM
|
|
|
176
176
|
tzinfo (2.0.3)
|
|
177
177
|
concurrent-ruby (~> 1.0)
|
|
178
178
|
unicode-display_width (1.7.0)
|
|
179
|
-
webmock (3.
|
|
179
|
+
webmock (3.11.0)
|
|
180
180
|
addressable (>= 2.3.6)
|
|
181
181
|
crack (>= 0.3.2)
|
|
182
182
|
hashdiff (>= 0.4.0, < 2.0.0)
|
|
@@ -198,7 +198,7 @@ DEPENDENCIES
|
|
|
198
198
|
rspec (~> 3.10)
|
|
199
199
|
rubocop
|
|
200
200
|
simplecov (= 0.17)
|
|
201
|
-
webmock (~> 3.
|
|
201
|
+
webmock (~> 3.11)
|
|
202
202
|
|
|
203
203
|
BUNDLED WITH
|
|
204
204
|
2.1.4
|
data/Rakefile
CHANGED
data/bin/console
CHANGED
data/lib/osso/routes/admin.rb
CHANGED
|
@@ -9,17 +9,42 @@ module Osso
|
|
|
9
9
|
class Admin < Roda
|
|
10
10
|
DB = Sequel.postgres(extensions: :activerecord_connection)
|
|
11
11
|
use Rack::Session::Cookie, secret: ENV.fetch('SESSION_SECRET')
|
|
12
|
-
|
|
12
|
+
|
|
13
|
+
plugin :json
|
|
13
14
|
plugin :middleware
|
|
14
15
|
plugin :render, engine: 'erb', views: ENV['RODAUTH_VIEWS'] || DEFAULT_VIEWS_DIR
|
|
15
16
|
plugin :route_csrf
|
|
16
17
|
|
|
17
18
|
plugin :rodauth do
|
|
18
|
-
enable :login, :verify_account
|
|
19
|
+
enable :login, :verify_account, :jwt
|
|
20
|
+
|
|
21
|
+
base_uri = URI.parse(ENV.fetch('BASE_URL'))
|
|
22
|
+
base_url base_uri
|
|
23
|
+
domain base_uri.host
|
|
24
|
+
|
|
25
|
+
jwt_secret ENV.fetch('SESSION_SECRET')
|
|
26
|
+
only_json? false
|
|
27
|
+
|
|
28
|
+
email_from { "Osso <no-reply@#{domain}>" }
|
|
19
29
|
verify_account_set_password? true
|
|
20
|
-
already_logged_in { redirect login_redirect }
|
|
21
30
|
use_database_authentication_functions? false
|
|
22
31
|
|
|
32
|
+
verify_account_view do
|
|
33
|
+
render :admin
|
|
34
|
+
end
|
|
35
|
+
|
|
36
|
+
login_view do
|
|
37
|
+
render :admin
|
|
38
|
+
end
|
|
39
|
+
|
|
40
|
+
verify_account_email_subject do
|
|
41
|
+
DB[:accounts].one? ? 'Your Osso instance is ready' : 'You\'ve been invited to start using Osso'
|
|
42
|
+
end
|
|
43
|
+
|
|
44
|
+
verify_account_email_body do
|
|
45
|
+
DB[:accounts].one? ? render('verify-first-account-email') : render('verify-account-email')
|
|
46
|
+
end
|
|
47
|
+
|
|
23
48
|
before_create_account_route do
|
|
24
49
|
request.halt unless DB[:accounts].empty?
|
|
25
50
|
end
|
|
@@ -31,13 +56,16 @@ module Osso
|
|
|
31
56
|
r.rodauth
|
|
32
57
|
|
|
33
58
|
def current_account
|
|
34
|
-
Osso::Models::Account.find(
|
|
35
|
-
|
|
59
|
+
Osso::Models::Account.find(
|
|
60
|
+
rodauth.
|
|
61
|
+
session.
|
|
62
|
+
to_hash.
|
|
63
|
+
stringify_keys['account_id']
|
|
64
|
+
).context.
|
|
36
65
|
merge({ rodauth: rodauth })
|
|
37
66
|
end
|
|
38
67
|
|
|
39
68
|
r.on 'admin' do
|
|
40
|
-
rodauth.require_authentication
|
|
41
69
|
erb :admin, layout: false
|
|
42
70
|
end
|
|
43
71
|
|
data/lib/osso/version.rb
CHANGED
data/osso-rb.gemspec
CHANGED
|
@@ -26,7 +26,7 @@ Gem::Specification.new do |spec|
|
|
|
26
26
|
spec.add_runtime_dependency 'rack-contrib'
|
|
27
27
|
spec.add_runtime_dependency 'rack-oauth2'
|
|
28
28
|
spec.add_runtime_dependency 'rake'
|
|
29
|
-
spec.add_runtime_dependency 'rodauth', '
|
|
29
|
+
spec.add_runtime_dependency 'rodauth', '>= 2.6', '< 2.8'
|
|
30
30
|
spec.add_runtime_dependency 'sequel', '>= 5.37', '< 5.40'
|
|
31
31
|
spec.add_runtime_dependency 'sequel-activerecord_connection', '>= 0.3', '< 2.0'
|
|
32
32
|
spec.add_runtime_dependency 'sinatra'
|
data/spec/routes/admin_spec.rb
CHANGED
|
@@ -4,23 +4,41 @@ require 'spec_helper'
|
|
|
4
4
|
|
|
5
5
|
describe Osso::Admin do
|
|
6
6
|
describe 'get /admin' do
|
|
7
|
-
it '
|
|
7
|
+
it 'renders the admin layout' do
|
|
8
8
|
get('/admin')
|
|
9
9
|
|
|
10
|
-
expect(last_response).to
|
|
11
|
-
follow_redirect!
|
|
12
|
-
expect(last_request.url).to match('/login')
|
|
10
|
+
expect(last_response).to be_ok
|
|
13
11
|
end
|
|
12
|
+
end
|
|
14
13
|
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
account = create(:verified_account, password: password)
|
|
14
|
+
describe 'post /graphql' do
|
|
15
|
+
let(:account) { create(:account) }
|
|
18
16
|
|
|
19
|
-
|
|
17
|
+
it 'runs a GraphQL query with a valid jwt' do
|
|
18
|
+
allow_any_instance_of(described_class.rodauth).to receive(:logged_in?).and_return(true)
|
|
19
|
+
allow(Osso::Models::Account).to receive(:find).and_return(account)
|
|
20
|
+
allow(Osso::GraphQL::Schema).to receive(:execute).and_return({graphql: true})
|
|
20
21
|
|
|
21
|
-
|
|
22
|
+
header 'Content-Type', 'application/json'
|
|
23
|
+
post("/graphql")
|
|
22
24
|
|
|
23
25
|
expect(last_response).to be_ok
|
|
26
|
+
expect(last_json_response).to eq({graphql: true})
|
|
27
|
+
end
|
|
28
|
+
|
|
29
|
+
it 'returns a 400 for an invalid jwt' do
|
|
30
|
+
header 'Content-Type', 'application/json'
|
|
31
|
+
header 'Authorization', 'Bearer bad-token'
|
|
32
|
+
post("/graphql")
|
|
33
|
+
|
|
34
|
+
expect(last_response.status).to eq 400
|
|
35
|
+
end
|
|
36
|
+
|
|
37
|
+
it 'returns a 401 without a jwt' do
|
|
38
|
+
header 'Content-Type', 'application/json'
|
|
39
|
+
post("/graphql")
|
|
40
|
+
|
|
41
|
+
expect(last_response.status).to eq 401
|
|
24
42
|
end
|
|
25
43
|
end
|
|
26
44
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: osso
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.0.
|
|
4
|
+
version: 0.0.10
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Sam Bauch
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-12-
|
|
11
|
+
date: 2020-12-28 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: activesupport
|
|
@@ -168,16 +168,22 @@ dependencies:
|
|
|
168
168
|
name: rodauth
|
|
169
169
|
requirement: !ruby/object:Gem::Requirement
|
|
170
170
|
requirements:
|
|
171
|
-
- - "
|
|
171
|
+
- - ">="
|
|
172
|
+
- !ruby/object:Gem::Version
|
|
173
|
+
version: '2.6'
|
|
174
|
+
- - "<"
|
|
172
175
|
- !ruby/object:Gem::Version
|
|
173
|
-
version: 2.
|
|
176
|
+
version: '2.8'
|
|
174
177
|
type: :runtime
|
|
175
178
|
prerelease: false
|
|
176
179
|
version_requirements: !ruby/object:Gem::Requirement
|
|
177
180
|
requirements:
|
|
178
|
-
- - "
|
|
181
|
+
- - ">="
|
|
182
|
+
- !ruby/object:Gem::Version
|
|
183
|
+
version: '2.6'
|
|
184
|
+
- - "<"
|
|
179
185
|
- !ruby/object:Gem::Version
|
|
180
|
-
version: 2.
|
|
186
|
+
version: '2.8'
|
|
181
187
|
- !ruby/object:Gem::Dependency
|
|
182
188
|
name: sequel
|
|
183
189
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -455,7 +461,6 @@ files:
|
|
|
455
461
|
- spec/models/enterprise_account_spec.rb
|
|
456
462
|
- spec/models/identity_provider_spec.rb
|
|
457
463
|
- spec/routes/admin_spec.rb
|
|
458
|
-
- spec/routes/app_spec.rb
|
|
459
464
|
- spec/routes/auth_spec.rb
|
|
460
465
|
- spec/routes/oauth_spec.rb
|
|
461
466
|
- spec/spec_helper.rb
|