rack-cerberus 0.0.1

data/.gitignore

@@ -0,0 +1,2 @@
+pkg
+

data/MIT_LICENCE

@@ -0,0 +1,19 @@
+Copyright (c) 2010 Mickael Riga
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,41 @@
+"For over a thousand generations the Jedi Knights were the guardians of peace and justice in the Old Republic. Before the dark times, before the Empire." -- Obi-Wan Kenoby
+
+= Cerberus
+
+Cerberus is a Rack middleware for form-based authentication. Its purpose is only 
+to offer a nicer (or more actual) replacement for Basic HTTP authentication.
+You can use it almost the same way you use <tt>Rack::Auth::Basic</tt>:
+
+	use Rack::Session::Cookie
+	use Cerberus do |login, pass|
+		pass=='secret'
+	end
+	
+Like in that example, make sure you have a session, because Cerberus use it for
+persistent login.
+	
+There is an optional hash you can add for personalizing it. Options are:
+
+* <tt>:company_name</tt>
+* <tt>:fg_color</tt> (foreground color)
+* <tt>:bg_color</tt> (background color)
+* <tt>:icon_url</tt> (for a company logo or any icon)
+
+Which is used that way:
+
+	use Cerberus, {:company_name => 'Nintendo'} do |login, pass|
+		pass=='secret'
+	end
+	
+Just like <tt>Rack::Auth::Basic</tt>, Cerberus yields login and pass, and delegate authentication
+to the block you send it which should return a boolean.
+
+If you want to see a concrete example, go into the Cerberus directory and run:
+
+	# rackup example.ru
+	
+It's gonna start the example at http://localhost:9292
+
+=== Copyright
+
+(c) 2010 Mickael Riga - see MIT_LICENCE for details 

data/Rakefile

@@ -0,0 +1 @@
+

data/cerberus.gemspec

@@ -0,0 +1,13 @@
+Gem::Specification.new do |s| 
+  s.name = 'rack-cerberus'
+  s.version = "0.0.1"
+  s.platform = Gem::Platform::RUBY
+  s.summary = "A Rack middleware for form-based authentication"
+  s.description = "A Rack middleware for form-based authentication"
+  s.files = `git ls-files`.split("\n").sort
+  s.test_files = ['spec.rb']
+  s.require_path = '.'
+  s.author = "Mickael Riga"
+  s.email = "mig@mypeplum.com"
+  s.homepage = "http://github.com/mig-hub/cerberus"
+end

data/cerberus.rb

@@ -0,0 +1,83 @@
+class Cerberus
+  
+  AUTH_PAGE = <<-PAGE
+  <html><head>
+    <title>%s Authentication</title>
+    <meta http-equiv="content-type" content="text/html; charset=utf-8" />
+    <style type='text/css'>
+    body { background-color: %s; font-family: sans-serif; }
+    h1, p { color: %s; }
+    .err {
+      padding: 5px;
+      border-radius: 5px;
+      -moz-border-radius: 5px;
+      -webkit-border-radius: 5px;
+      color: white;
+      background-color: red;
+    }
+    div { 
+      width: 400px;
+      margin: 0px auto;
+      padding: 10px;
+      border-radius: 5px;
+      -moz-border-radius: 5px;
+      -webkit-border-radius: 5px;
+      background-color: %s; }
+    input { width: 400px; font-size: 20px; }
+    </style>
+  </head><body>
+  <div>
+    <h1>%s</h1>
+    %s
+    %s
+    <p>Please authenticate yourself</p>
+    <form action="%s" method="post" accept-charset="utf-8">	
+    	<input type="text" name="cerberus_login" value="login" id='login'><br />
+    	<input type="password" name="cerberus_pass" value="pass" id='pass'>
+    	<p><input type="submit" value="Log me &rarr;"></p>
+    </form>
+    <script type="text/javascript" charset="utf-8">
+    	var login = document.getElementById('login');
+    	var pass = document.getElementById('pass');
+    	focus = function() {
+    		if (this.value==this.id) this.value = '';
+    	}
+    	blur = function() {
+    		if (this.value=='') this.value = this.id;
+    	}	
+    	login.onfocus = focus;
+    	pass.onfocus = focus;
+    	login.onblur = blur;
+    	pass.onblur = blur;
+    </script>
+  </div>
+  </body></html>
+PAGE
+  
+  def initialize(app, options={}, &block)
+    @app = app
+    defaults = { :company_name => 'Cerberus', :bg_color => '#333', :fg_color => '#555', :icon_url => nil}
+    @options = defaults.merge(options)
+    @block = block
+  end
+  
+  def call(env)
+    dup._call(env)
+  end
+  
+  def _call(env)
+    req = Rack::Request.new(env)
+    login = req['cerberus_login']
+    pass = req['cerberus_pass']
+    err = req.post? ? "<p class='err'>Wrong login or password</p>" : ''
+    if ((env['rack.session']['cerberus_user']!=nil && env['PATH_INFO']!='/logout') || (req.post? && @block.call(login, pass)))
+      env['rack.session']['cerberus_user'] ||= login
+      @app.call(env)
+    else
+      env['rack.session'].delete('cerberus_user')
+      icon = @options[:icon_url].nil? ? '' : "<img src='#{@options[:icon_url]}' /><br />"
+      [401, {'Content-Type' => 'text/html'}, AUTH_PAGE % [@options[:company_name], @options[:bg_color], @options[:bg_color], @options[:fg_color], @options[:company_name], icon, err, env['REQUEST_URI']]]
+    end
+  end
+  
+end

data/example.ru

@@ -0,0 +1,18 @@
+require ::File.dirname(__FILE__) + '/cerberus'
+use Rack::Session::Cookie
+
+map '/' do
+  run lambda {|env|
+    body = "<html><head><title>Cerberus</title></head><body>This page is public, so you can see it. But what happens if you want to see a <a href='/secret'>Secret Page</a>? Nevertheless, I can give you access:<br /><br />Login: <b>mario</b><br />Pass: <b>bros</b></body></html>"
+    [200, {'Content-Type' => 'text/html'}, body]
+  }
+end
+
+map '/secret' do
+  use Cerberus, {:company_name => 'Nintendo'} do |login,pass|
+    [login,pass]==['mario','bros']
+  end
+  run lambda {|env|
+    [200, {'Content-Type' => 'text/plain'}, 'Welcome back Mario. Your Credit Card number is: 9292']
+  }
+end

data/spec.rb

@@ -0,0 +1,45 @@
+require 'rubygems'
+require 'bacon'
+require 'rack'
+
+require ::File.dirname(__FILE__) + '/cerberus'
+
+Bacon.summary_on_exit
+
+describe 'cerberus' do
+  
+  secret_app = lambda {|env| [200, {'Content-Type'=>'text/plain'}, env['rack.session'].inspect] }
+  app = Rack::Session::Cookie.new(Cerberus.new(secret_app, {}) {|login,pass| [login,pass]==['mario','bros']})
+  req = Rack::MockRequest.new(app)
+  cookie = ''
+  
+  should 'Stop request if you are not already logged in or currently successfully logging' do
+    res = req.get('/')
+    res.status.should==401
+    res = req.post('/', :params => {'cerberus_login' => 'fake', 'cerberus_pass' => 'fake'})
+    res.status.should==401
+  end
+  
+  should 'Give access with the appropriate login and pass' do
+    res = req.post('/', :params => {'cerberus_login' => 'mario', 'cerberus_pass' => 'bros'})
+    cookie = res["Set-Cookie"]
+    res.status.should==200
+  end
+  
+  should 'Use session for persistent login' do
+    res = req.get('/', "HTTP_COOKIE" => cookie)
+    res.status.should==200
+    res.body.should=='{"cerberus_user"=>"mario"}'
+    cookie = res["Set-Cookie"]
+    req.get('/', "HTTP_COOKIE" => cookie).status.should==200
+  end
+  
+  should 'Logout via /logout path' do
+    res = req.get('/logout', "HTTP_COOKIE" => cookie)
+    res.status.should==401
+    cookie = res["Set-Cookie"]
+    res = req.get('/', "HTTP_COOKIE" => cookie)
+    res.status.should==401
+  end
+  
+end

metadata

@@ -0,0 +1,74 @@
+--- !ruby/object:Gem::Specification 
+name: rack-cerberus
+version: !ruby/object:Gem::Version 
+  hash: 29
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 1
+  version: 0.0.1
+platform: ruby
+authors: 
+- Mickael Riga
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-06-02 00:00:00 +01:00
+default_executable: 
+dependencies: []
+
+description: A Rack middleware for form-based authentication
+email: mig@mypeplum.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- .gitignore
+- MIT_LICENCE
+- README.rdoc
+- Rakefile
+- cerberus.gemspec
+- cerberus.rb
+- example.ru
+- spec.rb
+has_rdoc: true
+homepage: http://github.com/mig-hub/cerberus
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- .
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: A Rack middleware for form-based authentication
+test_files: 
+- spec.rb