quick_auth 0.0.10

data/.gitignore

@@ -0,0 +1,6 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+
+*.swp

data/Gemfile

@@ -0,0 +1,4 @@
+source "http://rubygems.org"
+
+# Specify your gem's dependencies in quick_auth.gemspec
+gemspec

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/lib/quick_auth.rb

@@ -0,0 +1,7 @@
+require "quick_auth/authentication"
+require "quick_auth/authentic"
+require "quick_auth/version"
+
+module QuickAuth
+  # Your code goes here...
+end

data/lib/quick_auth/authentic.rb

@@ -0,0 +1,84 @@
+require 'digest/sha1'
+
+module QuickAuth
+  module Authentic
+    extend ActiveSupport::Concern
+
+    RegEmailName = '[\w\.%\+\-]+'
+    RegDomainHead = '(?:[A-Z0-9\-]+\.)+'
+    RegDomainTLD = '(?:[A-Z]{2}|com|org|edu|net|gov|mil|biz|info|mobi|name|aero|jobs|museum)'
+    RegEmailOk = /\A#{RegEmailName}@#{RegDomainHead}#{RegDomainTLD}\z/i
+    PasswordRequired = Proc.new { |u| u.password_required? }
+
+    included do
+      #validates_length_of :em, :within => 6..100
+      #validates_format_of :em, :with => RegEmailOk
+      #validates_presence_of :password, :if => PasswordRequired
+      validates_confirmation_of :password, :if => PasswordRequired, :allow_nil => true
+      validates_length_of :password, :minimum => 6, :if => PasswordRequired, :allow_nil => false, :message => "Your password must be at least 6 characters"
+    end
+
+    module ClassMethods
+      def find_using_perishable_token(token)
+        u = self.first(:conditions => {:phtk => token, :phtke.gt => Time.now})
+      end
+
+			def quick_auth_mongo_keys!
+				key :crp,   String    # crypted password
+				key :pws,   String    # password salt
+				key :pstk,  String    # persistant token
+				key :phtk,  String    # perishable token
+				key :phtke, Time      # perishable token expiration
+						
+				attr_alias :crypted_password,   :crp
+				attr_alias :password_salt,      :pws
+				attr_alias :persistent_token,   :pstk
+				attr_alias :perishable_token,   :phtk
+				attr_alias :perishable_token_exp, :phtke
+			end
+
+			def digest(password, salt)
+				dig = [password, salt].flatten.join('')
+				20.times { dig = Digest::SHA512.hexdigest(dig) }
+				dig
+			end
+
+			def friendly_token
+				# use base64url as defined by RFC4648
+				SecureRandom.base64(15).tr('+/=', '').strip.delete("\n")
+			end
+
+    end
+
+    module InstanceMethods
+    
+      def authenticated?(pw)
+        self.crypted_password == self.class.digest(pw, self.password_salt) ? true : false
+      end
+      
+      def password
+        @password
+      end
+      
+      def password=(value)
+        if value.present?
+          @password = value
+          self.password_salt = self.class.friendly_token
+          self.crypted_password = self.class.digest(value, self.password_salt)
+        end
+      end
+      
+      def password_required?
+        crypted_password.blank?
+      end
+      
+      def reset_perishable_token!
+        self.perishable_token_exp = 1.day.from_now
+        self.perishable_token = self.class.friendly_token
+        save!
+      end
+
+    end
+  
+  end
+end

data/lib/quick_auth/authentication.rb

@@ -0,0 +1,137 @@
+module QuickAuth
+  module Authentication
+
+  protected
+    # Inclusion hook to make #current_user and #signed_in?
+    # available as ActionView helper methods.
+
+    class << self
+      def included(base)
+        base.send :helper_method, :current_user, :signed_in?, :authorized? if base.respond_to? :helper_method
+      end
+    end
+    
+    # Returns true or false if the user is signed in.
+    # Preloads @current_user with the user model if they're signed in.
+    def signed_in?
+      !!current_user
+    end
+    
+    # Accesses the current user from the session.
+    # Future calls avoid the database because nil is not equal to false.
+    def current_user
+      @current_user ||= (sign_in_from_session || sign_in_from_basic_auth) unless @current_user == false
+    end
+    
+    # Store the given user id in the session.
+    def current_user=(new_user)
+      session[:user_id] = new_user ? new_user.id : nil
+      @current_user = new_user || false
+    end
+
+    # Check if the user is authorized
+    #
+    # Override this method in your controllers if you want to restrict access
+    # to only a few actions or if you want to check if the user
+    # has the correct rights.
+    #
+    # Example:
+    #
+    # # only allow nonbobs
+    # def authorized?
+    # current_user.name != "bob"
+    # end
+    #
+    def authorized?(action=nil, resource=nil, *args)
+      signed_in?
+    end
+
+    # Filter method to enforce a sign_in requirement.
+    #
+    # To require sign_ins for all actions, use this in your controllers:
+    #
+    # before_filter :sign_in_required
+    #
+    # To require sign_ins for specific actions, use this in your controllers:
+    #
+    # before_filter :sign_in_required, :only => [ :edit, :update ]
+    #
+    # To skip this in a subclassed controller:
+    #
+    # skip_before_filter :sign_in_required
+    #
+    def authenticate
+      authorized? || access_denied
+    end
+
+    # Redirect as appropriate when an access request fails.
+    #
+    # The default action is to redirect to the sign_in screen.
+    #
+    # Override this method in your controllers if you want to have special
+    # behavior in case the user is not authorized
+    # to access the requested action. For example, a popup window might
+    # simply close itself.
+    def access_denied
+      respond_to do |format|
+        format.html do
+          store_location
+          redirect_to new_session_path
+        end
+        # format.any doesn't work in rails version < http://dev.rubyonrails.org/changeset/8987
+        # you may want to change format.any to e.g. format.any(:js, :xml)
+        format.any do
+          request_http_basic_authentication 'Web Password'
+        end
+      end
+    end
+
+    # Store the URI of the current request in the session.
+    #
+    # We can return to this location by calling #redirect_back_or_default.
+    def store_location
+      session[:return_to] = request.request_uri
+    end
+
+    # Redirect to the URI stored by the most recent store_location call or
+    # to the passed default. Set an appropriately modified
+    # after_filter :store_location, :only => [:index, :new, :show, :edit]
+    # for any controller you want to be bounce-backable.
+    def redirect_back_or_default(default)
+      redirect_to(session[:return_to] || default)
+      session[:return_to] = nil
+    end
+    
+    # Called from #current_user. First attempt to sign_in by the user id stored in the session.
+    def sign_in_from_session
+      if session[:user_id]
+        self.current_user = User.find_by_id(session[:user_id])
+      end
+    end
+
+    # Called from #current_user. Now, attempt to sign_in by basic authentication information.
+    def sign_in_from_basic_auth
+      authenticate_with_http_basic do |email, password|
+        self.current_user = User.authenticate(email, password)
+      end
+    end
+    
+    # This is ususally what you want; resetting the session willy-nilly wreaks
+    # havoc with forgery protection, and is only strictly necessary on sign_in.
+    # However, **all session state variables should be unset here**.
+    def sign_out_keeping_session!
+      # Kill server-side auth cookie
+      @current_user = false # not signed in, and don't do it for me
+      session[:user_id] = nil # keeps the session but kill our variable
+      # explicitly kill any other session variables you set
+    end
+
+    # The session should only be reset at the tail end of a form POST --
+    # otherwise the request forgery protection fails. It's only really necessary
+    # when you cross quarantine (signed-out to signed-in).
+    def sign_out_killing_session!
+      sign_out_keeping_session!
+      reset_session
+    end
+  end
+end

data/lib/quick_auth/version.rb

@@ -0,0 +1,3 @@
+module QuickAuth
+  VERSION = "0.0.10"
+end

data/quick_auth.gemspec

@@ -0,0 +1,24 @@
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "quick_auth/version"
+
+Gem::Specification.new do |s|
+  s.name        = "quick_auth"
+  s.version     = QuickAuth::VERSION
+  s.authors     = ["Alan Graham"]
+  s.email       = ["alangraham5@gmail.com"]
+  s.homepage    = ""
+  s.summary     = %q{Gem for backend authorization}
+  s.description = %q{Gem for backend authorization}
+
+  s.rubyforge_project = "quick_auth"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+
+  # specify any dependencies here; for example:
+  # s.add_development_dependency "rspec"
+  # s.add_runtime_dependency "rest-client"
+end

metadata

@@ -0,0 +1,73 @@
+--- !ruby/object:Gem::Specification 
+name: quick_auth
+version: !ruby/object:Gem::Version 
+  hash: 11
+  prerelease: 
+  segments: 
+  - 0
+  - 0
+  - 10
+  version: 0.0.10
+platform: ruby
+authors: 
+- Alan Graham
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2012-03-20 00:00:00 Z
+dependencies: []
+
+description: Gem for backend authorization
+email: 
+- alangraham5@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- .gitignore
+- Gemfile
+- Rakefile
+- lib/quick_auth.rb
+- lib/quick_auth/authentic.rb
+- lib/quick_auth/authentication.rb
+- lib/quick_auth/version.rb
+- quick_auth.gemspec
+homepage: ""
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: quick_auth
+rubygems_version: 1.8.17
+signing_key: 
+specification_version: 3
+summary: Gem for backend authorization
+test_files: []
+