pseudo_kiosk 0.1.1 → 0.1.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8a0c82f5e040dec1f8df326f95912e39ff7f13b8a5cb2cdf42f74e984462b568
-  data.tar.gz: 0f5803f0ca2372cb84f12246f61c87379d8cf60a15161ad750122b0b7840adfc
+  metadata.gz: 312199a0ab0c50594d1f4b644dd3ca75db93c0cb4c56ca6ae5518491fd7d42b6
+  data.tar.gz: 9d1c48552289cc78d0c6d85484f607531319a42e626a453ddd67802f5fac4cad
 SHA512:
-  metadata.gz: 0f559b83b1b0e56338f3a0a96d9f9316a049209c394a7f12c0918a98dbeaa917513dde71b46730b4ad9045d01c7b7457f6ea558d12b4084176c6e36038467bb6
-  data.tar.gz: 71b72d5248348565736fea100900969280eab2deeb4c56bad0b15b33addb258bf973430f60331ddc71f63ec0e899a8583e001250d6503bdb43f8b273414e6d01
+  metadata.gz: 12772105e9b2278110ec151429c67c20cfdf50c4a68aeec92325b13125c5ed5db81aa7b7a6b3696f2808206d89a3b275e37e1f4bb0278fd4544969c57f362aea
+  data.tar.gz: 6ddc8955a7dcfb5fc561e7a88797ecb3d8828c9f5a46f0d6f02f3f6f21e2c58ddd0186d350f984f62c3c6633cf5c6b9359c0823fcb1076561c8cde3851443bea

data/README.md

@@ -1,6 +1,6 @@
 # PseudoKiosk
 
-![Build Status](https://travis-ci.org/jonmchan/pseudo_kiosk.svg?branch=master)
+[![Build Status](https://travis-ci.org/jonmchan/pseudo_kiosk.svg?branch=master)](https://travis-ci.org/jonmchan/pseudo_kiosk/) [![Coverage Status](https://coveralls.io/repos/github/jonmchan/pseudo_kiosk/badge.svg?branch=master)](https://coveralls.io/github/jonmchan/pseudo_kiosk?branch=master) [![Gem Version](https://badge.fury.io/rb/pseudo_kiosk.svg)](https://rubygems.org/gems/pseudo_kiosk) [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT) 
 
 PseudoKiosk is a play on words on the unix sudo command and the idea to provide a fake kiosk terminal. Instead of granting elevated privileges, PseudoKiosk gives the ability to limit access to the application during workflows which involve physically passing a device with elevated permissions to an unknown or untrusted user. PseudoKiosk provides the ability to lock down a rails application to only a specified whitelist of endpoints during a session. The kiosk can be quickly and easily unlocked by passing a kiosk passcode.
 

data/app/assets/config/pseudo_kiosk_manifest.js

@@ -1,2 +1,3 @@
 //= link_directory ../javascripts/pseudo_kiosk .js
 //= link_directory ../stylesheets/pseudo_kiosk .css
+//= link pseudo_kiosk/application.css

data/app/assets/stylesheets/pseudo_kiosk/authentication.css

@@ -1,4 +1,148 @@
-/*
-  Place all the styles related to the matching controller here.
-  They will automatically be included in application.css.
-*/
+html {
+  font-size: 32px;
+  text-align: center;
+}
+.explanation-window__pullee {
+  width: 10rem;
+  appearance: none;
+}
+.explanation-window__pullee:active::-webkit-slider-thumb {
+  appearance: none;
+  transform: scale(1.1);
+  cursor: -webkit-grabbing;
+  cursor: -moz-grabbing;
+}
+.explanation-window__pullee:active::-moz-range-thumb {
+  border: 0;
+  transform: scale(1.1);
+  cursor: -webkit-grabbing;
+  cursor: -moz-grabbing;
+}
+.explanation-window__pullee:active::-ms-thumb {
+  transform: scale(1.1);
+  cursor: -webkit-grabbing;
+  cursor: -moz-grabbing;
+}
+.explanation-window__pullee:focus {
+  outline: none;
+}
+.explanation-window__pullee::-webkit-slider-thumb {
+  appearance: none;
+  display: block;
+  width: 1rem;
+  height: 1rem;
+  border-radius: 50%;
+  background: #5990DD;
+  transform-origin: 50% 50%;
+  transform: scale(1);
+  transition: transform ease-out 100ms;
+  cursor: -webkit-grab;
+  cursor: -moz-grab;
+}
+.explanation-window__pullee::-moz-range-thumb {
+  border: 0;
+  display: block;
+  width: 1rem;
+  height: 1rem;
+  border-radius: 50%;
+  background: #5990DD;
+  transform-origin: 50% 50%;
+  transform: scale(1);
+  transition: transform ease-out 100ms;
+  cursor: -webkit-grab;
+  cursor: -moz-grab;
+}
+.explanation-window__pullee::-ms-thumb {
+  display: block;
+  width: 1rem;
+  height: 1rem;
+  border-radius: 50%;
+  background: #5990DD;
+  transform-origin: 50% 50%;
+  transform: scale(1);
+  transition: transform ease-out 100ms;
+  cursor: -webkit-grab;
+  cursor: -moz-grab;
+}
+.explanation-window__pullee::-webkit-slider-runnable-track {
+  height: 1rem;
+  padding: .25rem;
+  box-sizing: content-box;
+  border-radius: 1rem;
+  background-color: #DDE0E3;
+}
+.explanation-window__pullee::-moz-range-track {
+  height: 1rem;
+  padding: .25rem;
+  box-sizing: content-box;
+  border-radius: 1rem;
+  background-color: #DDE0E3;
+}
+.explanation-window__pullee::-moz-focus-outer {
+  border: 0;
+}
+.explanation-window__pullee::-ms-track {
+  border: 0;
+  height: 1rem;
+  padding: .25rem;
+  box-sizing: content-box;
+  border-radius: 1rem;
+  background-color: #DDE0E3;
+  color: transparent;
+}
+.explanation-window__pullee::-ms-fill-lower,
+.explanation-window__pullee::-ms-fill-upper {
+  background-color: transparent;
+}
+.explanation-window__pullee::-ms-tooltip {
+  display: none;
+}
+.explanation-window__header,
+.explanation-window__unlock_instruction,
+.pass-window__passcode {
+  font-size: 0.8rem;
+  text-transform: uppercase;
+  letter-spacing: 1.25px;
+}
+.explanation-window__subheader {
+  font-size: 0.6rem;
+  text-transform: uppercase;
+  letter-spacing: 1.25px;
+}
+.pass-window__input {
+  text-align: center;
+}
+.pass-window__submit {
+  font-size: 0.8rem;
+  text-transform: uppercase;
+  letter-spacing: 1.25px;
+  margin: .65em;
+}
+.unlock {
+  position: absolute;
+  top: 50%;
+  left: 50%;
+  transform: translate(-50%, -50%);
+}
+.unlock .unlock__pass-window {
+  display: none;
+}
+.unlock .pass-window__invalid {
+  display: none;
+}
+.unlock .unlock__explanation-window {
+  display: initial;
+}
+.unlock--failed .unlock__explanation-window {
+  display: none;
+}
+.unlock--failed .unlock__pass-window {
+  display: initial;
+}
+.unlock--failed .pass-window__invalid {
+  display: initial;
+  font-size: 0.55rem;
+  color: red;
+  text-transform: uppercase;
+  letter-spacing: 1.25px;
+}

data/app/views/pseudo_kiosk/authentication/unlock.html.erb

@@ -1,260 +1,109 @@
 <!DOCTYPE html>
 <html lang="en">
-<head>
-<meta charset="UTF-8">
+  <head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width">
 
-<%= csrf_meta_tags %>
-<%= csp_meta_tag %>
-<title>Operator Unlock</title>
-
-<meta name="viewport" content="width=device-width">
-<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/normalize/5.0.0/normalize.min.css">
-
-<style>
-  .pullee {
-  width: 10rem;
-  appearance: none;
-}
-.pullee:active::-webkit-slider-thumb {
-  appearance: none;
-  transform: scale(1.1);
-  cursor: -webkit-grabbing;
-  cursor: -moz-grabbing;
-}
-.pullee:active::-moz-range-thumb {
-  border: 0;
-  transform: scale(1.1);
-  cursor: -webkit-grabbing;
-  cursor: -moz-grabbing;
-}
-.pullee:active::-ms-thumb {
-  transform: scale(1.1);
-  cursor: -webkit-grabbing;
-  cursor: -moz-grabbing;
-}
-.pullee:focus {
-  outline: none;
-}
-.pullee::-webkit-slider-thumb {
-  appearance: none;
-  display: block;
-  width: 1rem;
-  height: 1rem;
-  border-radius: 50%;
-  background: #5990DD;
-  transform-origin: 50% 50%;
-  transform: scale(1);
-  transition: transform ease-out 100ms;
-  cursor: -webkit-grab;
-  cursor: -moz-grab;
-}
-.pullee::-moz-range-thumb {
-  border: 0;
-  display: block;
-  width: 1rem;
-  height: 1rem;
-  border-radius: 50%;
-  background: #5990DD;
-  transform-origin: 50% 50%;
-  transform: scale(1);
-  transition: transform ease-out 100ms;
-  cursor: -webkit-grab;
-  cursor: -moz-grab;
-}
-.pullee::-ms-thumb {
-  display: block;
-  width: 1rem;
-  height: 1rem;
-  border-radius: 50%;
-  background: #5990DD;
-  transform-origin: 50% 50%;
-  transform: scale(1);
-  transition: transform ease-out 100ms;
-  cursor: -webkit-grab;
-  cursor: -moz-grab;
-}
-.pullee::-webkit-slider-runnable-track {
-  height: 1rem;
-  padding: .25rem;
-  box-sizing: content-box;
-  border-radius: 1rem;
-  background-color: #DDE0E3;
-}
-.pullee::-moz-range-track {
-  height: 1rem;
-  padding: .25rem;
-  box-sizing: content-box;
-  border-radius: 1rem;
-  background-color: #DDE0E3;
-}
-.pullee::-moz-focus-outer {
-  border: 0;
-}
-.pullee::-ms-track {
-  border: 0;
-  height: 1rem;
-  padding: .25rem;
-  box-sizing: content-box;
-  border-radius: 1rem;
-  background-color: #DDE0E3;
-  color: transparent;
-}
-.pullee::-ms-fill-lower, .pullee::-ms-fill-upper {
-  background-color: transparent;
-}
-.pullee::-ms-tooltip {
-  display: none;
-}
-
-html {
-  font-size: 32px;
-  text-align: center;
-}
-
-h1 {
-  font-size: 0.8rem;
-  text-transform: uppercase;
-  letter-spacing: 1.25px;
-}
-
-h2 {
-  font-size: 0.6rem;
-  text-transform: uppercase;
-  letter-spacing: 1.25px;
-}
-
-input[type=submit] {
-  font-size: 0.8rem;
-  text-transform: uppercase;
-  letter-spacing: 1.25px;
-  margin: .65em;
-}
-
-.center-xy {
-  position: absolute;
-  top: 50%;
-  left: 50%;
-  transform: translate(-50%, -50%);
-}
-
-<% if params[:failed] %>
-#pass_window {
-  display: initial;
-}
-#invalid {
-  display: initial;
-  font-size: 0.55rem;
-  color: red;
-  text-transform: uppercase;
-  letter-spacing: 1.25px;
-}
-
-#explanation_window {
-  display: none;
-}
-<% else %>
-#pass_window {
-  display: none;
-}
-#invalid {
-  display: none;
-}
-
-#explanation_window {
-  display: initial;
-}
-<% end %>
-</style>
-<script>
-  window.console = window.console || function(t) {};
-</script>
-<script src="https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js"></script>
-<script>
-  if (document.location.search.match(/type=embed/gi)) {
-    window.parent.postMessage("resize", "*");
-  }
-</script>
-</head>
-
-<body translate="no">
-<div id="explanation_window" class="center-xy">
-    <h1>Thank you for your input!</h1>
-    <h2>Please pass the device back to the operator</h2>
-    <h1>Slide to Unlock</h1>
-    <input type="range" value="0" class="pullee" />
-</div>
-<% # This is bad... I am having a problem using the named routes within the rails engine plugin %>
-<%= form_tag 'process_submit', authenticity_token: false do %>
-<%= hidden_field_tag :authenticity_token, form_authenticity_token -%>
-<div id="pass_window" class="center-xy">
-    <h1>Passcode:</h1>
-    <div id="invalid">Invalid Passcode! Please try again.</div>
-    <div><input type="password" name="passcode" style="text-align: center;"></div>
-    <div><input type="submit"></div>
-<% end %>
-</div>
-<script id="rendered-js">
-var inputRange = document.getElementsByClassName('pullee')[0],
-    maxValue = 150, // the higher the smoother when dragging
-    speed = 12, // thanks to @pixelass for this
-    currValue, rafID;
-
-// set min/max value
-inputRange.min = 0;
-inputRange.max = maxValue;
-
-// listen for unlock
-function unlockStartHandler() {
-    // clear raf if trying again
-    window.cancelAnimationFrame(rafID);
-    
-    // set to desired value
-    currValue = +this.value;
-}
-
-function unlockEndHandler() {
-    
-    // store current value
-    currValue = +this.value;
-    
-    // determine if we have reached success or not
-    if(currValue >= maxValue) {
-        successHandler();
-    }
-    else {
-        rafID = window.requestAnimationFrame(animateHandler);
-    }
-}
-
-// handle range animation
-function animateHandler() {
+    <%= csrf_meta_tags %>
+    <%= csp_meta_tag %>
     
-    // update input range
-    inputRange.value = currValue;
-    
-    // determine if we need to continue
-    if(currValue > -1) {
-    	window.requestAnimationFrame(animateHandler);   
-    }
-    
-    // decrement value
-    currValue = currValue - speed;
-}
-
-// handle successful unlock
-function successHandler() {
-          document.getElementById("pass_window").style.display = "block";
-    document.getElementById("explanation_window").style.display = "none";
-    
-    // reset input range
-    inputRange.value = 0;
-};
-
-// bind events
-inputRange.addEventListener('mousedown', unlockStartHandler, false);
-inputRange.addEventListener('mousestart', unlockStartHandler, false);
-inputRange.addEventListener('mouseup', unlockEndHandler, false);
-inputRange.addEventListener('touchend', unlockEndHandler, false);
-</script>
-</body>
-</html>
+    <title>Operator Unlock</title>
+
+    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/normalize/5.0.0/normalize.min.css">
+    <%= stylesheet_link_tag "pseudo_kiosk/application", media: "all" %>
+
+    <script>
+      window.console = window.console || function(t) {};
+    </script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/prefixfree/1.0.7/prefixfree.min.js"></script>
+    <script>
+      if (document.location.search.match(/type=embed/gi)) {
+        window.parent.postMessage("resize", "*");
+      }
+    </script>
+  </head>
+  <body translate="no">
+    <div class="unlock <%= params[:failed] && 'unlock--failed' %>">
+      <div id="explanation_window" class="unlock__explanation-window">
+        <h1 class="explanation-window__header">Thank you for your input!</h1>
+        <h2 class="explanation-window__subheader">Please pass the device back to the operator</h2>
+        <h1 class="explanation-window__unlock_instruction">Slide to Unlock</h1>
+        <input type="range" value="0" class="explanation-window__pullee" />
+      </div>
+
+      <div id="pass_window" class="unlock__pass-window">
+        <%= form_tag 'process_submit', authenticity_token: false do %>
+          <%= hidden_field_tag :authenticity_token, form_authenticity_token -%>
+          <h1 class="pass-window__passcode">Passcode:</h1>
+          <div id="invalid" class="pass-window__invalid">Invalid Passcode! Please try again.</div>
+          <div><input class="pass-window__input" type="password" name="passcode"></div>
+          <div><input class="pass-window__submit" type="submit"></div>
+        <% end %>
+      </div>
+    </div>
+
+    <script id="rendered-js">
+      var inputRange = document.getElementsByClassName('explanation-window__pullee')[0],
+          maxValue = 150, // the higher the smoother when dragging
+          speed = 12, // thanks to @pixelass for this
+          currValue, rafID;
+
+      // set min/max value
+      inputRange.min = 0;
+      inputRange.max = maxValue;
+
+      // listen for unlock
+      function unlockStartHandler() {
+          // clear raf if trying again
+          window.cancelAnimationFrame(rafID);
+          
+          // set to desired value
+          currValue = +this.value;
+      }
+
+      function unlockEndHandler() {
+          
+          // store current value
+          currValue = +this.value;
+          
+          // determine if we have reached success or not
+          if(currValue >= maxValue) {
+              successHandler();
+          }
+          else {
+              rafID = window.requestAnimationFrame(animateHandler);
+          }
+      }
+
+      // handle range animation
+      function animateHandler() {
+          
+          // update input range
+          inputRange.value = currValue;
+          
+          // determine if we need to continue
+          if(currValue > -1) {
+          	window.requestAnimationFrame(animateHandler);   
+          }
+          
+          // decrement value
+          currValue = currValue - speed;
+      }
+
+      // handle successful unlock
+      function successHandler() {
+                document.getElementById("pass_window").style.display = "block";
+          document.getElementById("explanation_window").style.display = "none";
+          
+          // reset input range
+          inputRange.value = 0;
+      };
+
+      // bind events
+      inputRange.addEventListener('mousedown', unlockStartHandler, false);
+      inputRange.addEventListener('mousestart', unlockStartHandler, false);
+      inputRange.addEventListener('mouseup', unlockEndHandler, false);
+      inputRange.addEventListener('touchend', unlockEndHandler, false);
+    </script>
+  </body>
+</html>

data/lib/pseudo_kiosk.rb

@@ -4,8 +4,6 @@ module PseudoKiosk
   autoload(:Config, 'pseudo_kiosk/config')
   require 'pseudo_kiosk/controller'
   module TestHelpers
-    require 'pseudo_kiosk/test_helpers/internal'
-
     module Internal
       require 'pseudo_kiosk/test_helpers/internal/rails'
     end

data/lib/pseudo_kiosk/config.rb

@@ -20,19 +20,9 @@ module PseudoKiosk
         end
       end
 
-      def update!
-        @defaults.each do |k, v|
-          instance_variable_set(k, v) unless instance_variable_defined?(k)
-        end
-      end
-
-      def user_config(&blk)
-        block_given? ? @user_config = blk : @user_config
-      end
-
       def configure(&blk)
         @configure_blk = blk
-        @configure_blk.call(self) 
+        configure!
       end
 
       def configure!

data/lib/pseudo_kiosk/test_helpers/internal/rails.rb

@@ -8,15 +8,7 @@ module PseudoKiosk
 
           ActionController::Base.send(:include, PseudoKiosk::Controller)
         end
-
-        def pseudo_kiosk_config_property_set(property, value)
-          ::PseudoKiosk::Config.send(:"#{property}=", value)
-        end
-
-        # def pseudo_kiosk_config_external_property_set(provider, property, value)
-        #   ::PseudoKiosk::Config.send(provider).send(:"#{property}=", value)
-        # end
       end
     end
   end
-end
+end

data/lib/pseudo_kiosk/version.rb

@@ -1,3 +1,3 @@
 module PseudoKiosk
-  VERSION = '0.1.1'
+  VERSION = '0.1.3'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pseudo_kiosk
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.3
 platform: ruby
 authors:
 - Jonathan Chan
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-10-28 00:00:00.000000000 Z
+date: 2019-11-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -95,7 +95,6 @@ files:
 - lib/pseudo_kiosk/config.rb
 - lib/pseudo_kiosk/controller.rb
 - lib/pseudo_kiosk/engine.rb
-- lib/pseudo_kiosk/test_helpers/internal.rb
 - lib/pseudo_kiosk/test_helpers/internal/rails.rb
 - lib/pseudo_kiosk/version.rb
 - lib/tasks/pseudo_kiosk_tasks.rake

data/lib/pseudo_kiosk/test_helpers/internal.rb

@@ -1,79 +0,0 @@
-module PseudoKiosk
-  module TestHelpers
-    # Internal TestHelpers are used to test the gem, internally, and should not be used to test apps *using* sorcery.
-    # This file will be included in the spec_helper file.
-    module Internal
-      def self.included(_base)
-        # # reducing default cost for specs speed
-        # CryptoProviders::BCrypt.class_eval do
-        #   class << self
-        #     def cost
-        #       1
-        #     end
-        #   end
-        # end
-      end
-
-      # a patch to fix a bug in testing that happens when you 'destroy' a session twice.
-      # After the first destroy, the session is an ordinary hash, and then when destroy
-      # is called again there's an exception.
-      class ::Hash # rubocop:disable Style/ClassAndModuleChildren
-        def destroy
-          clear
-        end
-      end
-
-      def build_new_user(attributes_hash = nil)
-        user_attributes_hash = attributes_hash || { username: 'gizmo', email: 'bla@bla.com', password: 'secret' }
-        @user = User.new(user_attributes_hash)
-      end
-
-      def create_new_user(attributes_hash = nil)
-        @user = build_new_user(attributes_hash)
-        @user.sorcery_adapter.save(raise_on_failure: true)
-        @user
-      end
-
-      def create_new_external_user(provider, attributes_hash = nil)
-        user_attributes_hash = attributes_hash || { username: 'gizmo' }
-        @user = User.new(user_attributes_hash)
-        @user.sorcery_adapter.save(raise_on_failure: true)
-        @user.authentications.create!(provider: provider, uid: 123)
-        @user
-      end
-
-      def custom_create_new_external_user(provider, authentication_class, attributes_hash = nil)
-        authentication_association = authentication_class.name.underscore.pluralize
-
-        user_attributes_hash = attributes_hash || { username: 'gizmo' }
-        @user = User.new(user_attributes_hash)
-        @user.sorcery_adapter.save(raise_on_failure: true)
-        @user.send(authentication_association).create!(provider: provider, uid: 123)
-        @user
-      end
-
-      def sorcery_model_property_set(property, *values)
-        User.class_eval do
-          sorcery_config.send(:"#{property}=", *values)
-        end
-      end
-
-      def update_model(&block)
-        User.class_exec(&block)
-      end
-
-      private
-
-      # reload user class between specs
-      # so it will be possible to test the different submodules in isolation
-      def reload_user_class
-        User && Object.send(:remove_const, 'User')
-        load 'user.rb'
-
-        return unless User.respond_to?(:reset_column_information)
-
-        User.reset_column_information
-      end
-    end
-  end
-end