RubyGems - rack-auth-krb - Versions diffs - 0.1.0 → 0.2.0 - Mend

rack-auth-krb 0.1.0 → 0.2.0

Files changed (4) hide show

data/lib/basic_and_nego/auth/basic.rb +17 -3
data/rack-auth-krb.gemspec +1 -1
data/spec/basic_and_nego/auth/basic_spec.rb +32 -2
metadata +99 -110

data/lib/basic_and_nego/auth/basic.rb CHANGED Viewed

@@ -20,9 +20,23 @@ module BasicAndNego
       private
       def authenticate(user, password)
-        unless @krb.authenticate(user, password)
-          @logger.debug "Unable to authenticate (401)"
-          @response = unauthorized
+        #We will firstly try to authenticate the user
+        #suffixing his username with the realm If not already specified
+        is_authenticated = false
+        if !user.include?("@")
+          user_domain = [user, "@", @realm].join
+          is_authenticated = @krb.authenticate(user_domain, password)
+          if !is_authenticated
+            @logger.debug "Unable to authenticate #{user_domain}, trying with #{user}"
+          end
+        end
+        #If authentication with suffix failed, try with user's given information
+        if !is_authenticated
+          unless @krb.authenticate(user, password)
+            @logger.debug "Unable to authenticate (401)"
+            @response = unauthorized
+          end
         end
       end

data/rack-auth-krb.gemspec CHANGED Viewed

@@ -2,7 +2,7 @@ require 'rubygems'
 Gem::Specification.new do |gem|
   gem.name      = 'rack-auth-krb'
-  gem.version   = '0.1.0'
+  gem.version   = '0.2.0'
   gem.authors   = ["Frederick Ros"]
   gem.email     = 'frederick.ros@gmail.com'
   gem.homepage  = 'https://github.com/sleeper/rack-auth-krb'

data/spec/basic_and_nego/auth/basic_spec.rb CHANGED Viewed

@@ -22,10 +22,11 @@ describe BasicAndNego::Auth::Basic do
   it "should try authentication against Kerberos in case of Basic" do
     @krb.should_receive(:authenticate).with("fred", "pass").and_return(true)
     @a.process
+    @a.client_name.should == "fred"
   end
-  it "should return 'unauthorized' if authentication fails" do
-    @krb.should_receive(:authenticate).and_return(false)
+  it "should return 'unauthorized' if authentication fails" do
+    @krb.should_receive(:authenticate).and_return(false, false)
     @a.process
     @a.response.should_not be_nil
     @a.response[0].should == 401
@@ -42,5 +43,34 @@ describe BasicAndNego::Auth::Basic do
     @a.process
     @a.client_name.should == "fred"
   end
+  it "should try authentication against Kerberos in case of Basic adding automatically the realm" do
+    @krb.should_receive(:authenticate).and_return(true)
+    @a.process
+    @a.client_name.should == "fred"
+  end
+end
+describe "BasicAndNego::Auth::Basic with specific realm" do
+  before(:each) do
+    env = {'HTTP_AUTHORIZATION' => "Basic #{::Base64.encode64('fred@customRealm:pass')}"}
+    @realm = "my realm"
+    @keytab = "my keytab"
+    @service = "http/hostname"
+    @logger = BasicAndNego::NullLogger.new
+    @request = BasicAndNego::Request.new(env)
+    @request.should_receive(:credentials).and_return(['fred@customRealm', 'pass'])
+    @krb = double('kerberos').as_null_object
+    BasicAndNego::Auth::Krb.should_receive(:new).with(@logger, @realm, @keytab).and_return(@krb)
+    @a = BasicAndNego::Auth::Basic.new(@request, @logger, @realm, @keytab, @service)
+  end
+  it "should try authentication against Kerberos in case of Basic" do
+    @krb.should_receive(:authenticate).with("fred@customRealm", "pass").and_return(true)
+    @a.process
+    @a.client_name.should == "fred@customRealm"
+  end
 end

metadata CHANGED Viewed

@@ -1,121 +1,104 @@
---- !ruby/object:Gem::Specification
+--- !ruby/object:Gem::Specification
 name: rack-auth-krb
-version: !ruby/object:Gem::Version
-  version: 0.1.0
-  prerelease:
+version: !ruby/object:Gem::Version
+  prerelease: false
+  segments:
+  - 0
+  - 2
+  - 0
+  version: 0.2.0
 platform: ruby
-authors:
+authors:
 - Frederick Ros
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2012-11-30 00:00:00.000000000 Z
-dependencies:
-- !ruby/object:Gem::Dependency
+date: 2013-07-01 00:00:00 -04:00
+default_executable:
+dependencies:
+- !ruby/object:Gem::Dependency
   name: rack
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: gssapi
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
+  requirement: &id001 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
   type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency
+  name: gssapi
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rkerberos
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
+  requirement: &id002 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
   type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency
+  name: rkerberos
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
+  requirement: &id003 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency
   name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: '2.0'
-  type: :development
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
+  requirement: &id004 !ruby/object:Gem::Requirement
+    requirements:
     - - ~>
-      - !ruby/object:Gem::Version
-        version: '2.0'
-- !ruby/object:Gem::Dependency
-  name: goliath
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
+      - !ruby/object:Gem::Version
+        segments:
+        - 2
+        - 0
+        version: "2.0"
   type: :development
+  version_requirements: *id004
+- !ruby/object:Gem::Dependency
+  name: goliath
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: puma
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
+  requirement: &id005 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
   type: :development
+  version_requirements: *id005
+- !ruby/object:Gem::Dependency
+  name: puma
   prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-description: ! "  This library allows Kerberos/GSSAPI authentication using either
-  Basic method\n  or Negotiate (i.e. authentication without the need of user/password
-  combo).\n"
+  requirement: &id006 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id006
+description: "  This library allows Kerberos/GSSAPI authentication using either Basic method\n  or Negotiate (i.e. authentication without the need of user/password combo).\n"
 email: frederick.ros@gmail.com
 executables: []
 extensions: []
-extra_rdoc_files:
+extra_rdoc_files:
 - README.md
-files:
+files:
 - .gitignore
 - Gemfile
 - Gemfile.lock
@@ -148,31 +131,37 @@ files:
 - spec/goliath/goliath_krb_spec.rb
 - spec/rack/rack_krb_spec.rb
 - spec/spec_helper.rb
+has_rdoc: true
 homepage: https://github.com/sleeper/rack-auth-krb
 licenses: []
 post_install_message:
 rdoc_options: []
-require_paths:
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement
-  none: false
-  requirements:
-  - - ! '>='
-    - !ruby/object:Gem::Version
-      version: '0'
-required_rubygems_version: !ruby/object:Gem::Requirement
-  none: false
-  requirements:
-  - - ! '>='
-    - !ruby/object:Gem::Version
-      version: '0'
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
 requirements: []
 rubyforge_project:
-rubygems_version: 1.8.24
+rubygems_version: 1.3.6
 signing_key:
 specification_version: 3
 summary: Kerberos/GSSAPI authentication (Basic and Negotiate) Rack library
-test_files:
+test_files:
 - spec/basic_and_nego/auth/basic_spec.rb
 - spec/basic_and_nego/auth/gss_spec.rb
 - spec/basic_and_nego/auth/krb_spec.rb