proxy_auth 0.0.2

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: bcfc463d0a3b896471a8dc09d9a873a459461bf8
+  data.tar.gz: 8bd9c92e225c13d8c75f30331ebe6d6732a8f033
+SHA512:
+  metadata.gz: 6a2a859c16b9c79a37875ed0018f9cbcf8f76f8a3ce0325a39492a8d637c1f7d53e4c7961cd2bbefd800bf711d10ffa0bef4bb7ccba7a268e524475bf7780c42
+  data.tar.gz: b1afb72fcf889f4e4262ea23e76e9fa10ab0f44717e7f25837f1b94303ac98c3a90bc3bd25ff06e5b3107b7db320051ec4576e56e7bf6600b10cda3cb353ca61

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2015 Fractal Soft
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,43 @@
+## Installation
+
+1. In your **Gemfile** add line ```gem 'proxy_auth'```
+2. Run ```bundle install```
+3. Set config/secrets.yml:
+```
+#!bash
+proxy:
+  token: SECRET_TOKEN
+  url: http://HOST:PORT
+service:
+  name: SERVICE_NAME
+  url: http://SERVICE_HOST:SERVICE_PORT
+```
+4. Initialize with command ```rails generate proxy_auth:install```
+5. Secure your application. In file app/controllers/application_controller.rb
+```
+#!ruby
+before_action :authenticate
+
+protected
+
+def authenticate
+  authenticate_token || render_unauthorized
+end
+
+def authenticate_token
+  authenticate_with_http_token do |token|
+    ProxyAuth::Token.instance.valid? token
+  end
+end
+
+def render_unauthorized
+  render json: 'Bad credentials', status: 401
+end
+```
+6. Add management routes
+```
+#!ruby
+mount ProxyAuth::Engine => '/proxy'
+``` 
+7. Restart your Rails application.
+8. Rake task for reconnecting to proxy: ```rake proxy_auth:register_service```

data/Rakefile

@@ -0,0 +1,17 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'ProxyAuth'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.md')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+Bundler::GemHelper.install_tasks

data/app/controllers/proxy_auth/application_controller.rb

@@ -0,0 +1,4 @@
+module ProxyAuth
+  class ApplicationController < ActionController::Base
+  end
+end

data/app/controllers/proxy_auth/register_services_controller.rb

@@ -0,0 +1,20 @@
+module ProxyAuth
+  # management methods used for server maintenance
+  class RegisterServicesController < ApplicationController
+    before_action :authenticate
+
+    def create
+      ProxyAuth::Token.instance.register_service
+      head :ok
+    end
+
+    private
+
+    def authenticate
+      authenticate_with_http_basic do |user, password|
+        secrets = Rails.application.secrets
+        secrets.admin_login == user && secrets.admin_password == password
+      end
+    end
+  end
+end

data/config/routes.rb

@@ -0,0 +1,3 @@
+ProxyAuth::Engine.routes.draw do
+  resource :register_service, only: :create
+end

data/lib/generators/install_generator.rb

@@ -0,0 +1,13 @@
+require 'rails/generators'
+
+module ProxyAuth
+  # Proxy Auth Generator
+  class InstallGenerator < Rails::Generators::Base
+    source_root(File.expand_path(__dir__ + '/templates'))
+
+    def copy_initializer
+      destination = "#{Rails.root}/config/initializers/proxy_auth.rb"
+      copy_file 'initializer.rb', destination
+    end
+  end
+end

data/lib/generators/templates/initializer.rb

@@ -0,0 +1 @@
+ProxyAuth::Token.instance

data/lib/proxy_auth/connection.rb

@@ -0,0 +1,52 @@
+module ProxyAuth
+  # Connects to proxy and gets service token
+  class Connection
+    def service_token
+      register_service
+      @response && JSON.parse(@response.body)['token']
+    end
+
+    private
+
+    def register_service
+      @response = http.post('/services', params, headers)
+      Rails.logger.info "Service #{service_name} registered."
+    rescue Errno::ECONNREFUSED
+      Rails.logger.fatal 'Proxy connection refused.'
+    end
+
+    def registration_token
+      encoder = ActionController::HttpAuthentication::Token
+      token = Rails.application.secrets.proxy['token']
+      @registration_token ||= encoder.encode_credentials token
+    end
+
+    def headers
+      {
+        'Accept' => 'application/json',
+        'Content-Type' => 'application/json',
+        'Authorization' => registration_token
+      }
+    end
+
+    def http
+      @http ||= Net::HTTP.new(uri.host, uri.port)
+    end
+
+    def params
+      { service: { name: service_name, host: service_url } }.to_json
+    end
+
+    def service_name
+      @service_name ||= Rails.application.secrets.service['name']
+    end
+
+    def service_url
+      @service_url ||= Rails.application.secrets.service['url']
+    end
+
+    def uri
+      @uri ||= URI.parse(Rails.application.secrets.proxy['url'])
+    end
+  end
+end

data/lib/proxy_auth/engine.rb

@@ -0,0 +1,6 @@
+module ProxyAuth
+  # Engine class
+  class Engine < ::Rails::Engine
+    isolate_namespace ProxyAuth
+  end
+end

data/lib/proxy_auth/token.rb

@@ -0,0 +1,34 @@
+require 'singleton'
+
+module ProxyAuth
+  # Service token
+  class Token
+    include Singleton
+
+    attr_reader :token
+
+    def initialize
+      register_service
+    end
+
+    def register_service
+      Thread.new do
+        set_token
+      end
+    end
+
+    def valid?(token)
+      @token == token
+    end
+
+    private
+
+    def set_token
+      connection = Connection.new
+      3.times do
+        @token = connection.service_token
+        @token && break || sleep(5)
+      end
+    end
+  end
+end

data/lib/proxy_auth/version.rb

@@ -0,0 +1,4 @@
+# Gem version
+module ProxyAuth
+  VERSION = '0.0.2'
+end

data/lib/proxy_auth.rb

@@ -0,0 +1,4 @@
+require 'proxy_auth/connection'
+require 'proxy_auth/token'
+require 'proxy_auth/engine'
+require 'generators/install_generator'

data/lib/tasks/proxy_auth.rake

@@ -0,0 +1,18 @@
+namespace :proxy_auth do
+  desc 'Connect to proxy'
+  task register_service: :environment do
+    secrets = Rails.application.secrets
+
+    url = secrets.service['url']
+    uri = URI.parse(url)
+    http = Net::HTTP.new(uri.host, uri.port)
+
+    login = secrets.admin_login
+    password = secrets.admin_password
+    encoder = ActionController::HttpAuthentication::Basic
+    authorization = encoder.encode_credentials(login, password)
+    headers = { 'Authorization' => authorization }
+
+    http.post('/proxy/register_service', nil, headers)
+  end
+end

metadata

@@ -0,0 +1,87 @@
+--- !ruby/object:Gem::Specification
+name: proxy_auth
+version: !ruby/object:Gem::Version
+  version: 0.0.2
+platform: ruby
+authors:
+- Grzegorz Lisowski
+- Alek Malaszkiewicz
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-03-19 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.2'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+description: Client to microservice proxy authentication
+email:
+- info@fractalsoft.org
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/controllers/proxy_auth/application_controller.rb
+- app/controllers/proxy_auth/register_services_controller.rb
+- config/routes.rb
+- lib/generators/install_generator.rb
+- lib/generators/templates/initializer.rb
+- lib/proxy_auth.rb
+- lib/proxy_auth/connection.rb
+- lib/proxy_auth/engine.rb
+- lib/proxy_auth/token.rb
+- lib/proxy_auth/version.rb
+- lib/tasks/proxy_auth.rake
+homepage: 
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: Proxy authentication client
+test_files: []