RubyGems - rack-firebase - Versions diffs - 0.2.0 → 0.3.0 - Mend

rack-firebase 0.2.0 → 0.3.0

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/rack/firebase/configuration.rb +2 -1
data/lib/rack/firebase/middleware.rb +29 -22
data/lib/rack/firebase/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6a4081b1727087c19ec8761fafd9d0507f4b398327b3a5458e663569d3381ed8
-  data.tar.gz: 4196e0601c2552042edac107ff91d1a08cb7df6b66d00b83022184d88da0526e
+  metadata.gz: 8e56bf82dd7ed836213b95db8e833c94c06c020ba654d4d132c7659dbc30ffbc
+  data.tar.gz: 888ed5477400ef8ba5f5deb9650076b5d2d88554fc750c7e888a8a7780f56267
 SHA512:
-  metadata.gz: 41523e3d39d08a86d760b36159a70f4e27ef4c14eb015e2c294e7634995bf6cbbd13a139ef11bdf1b976f305cc12d8cdaefa7990ea9adfe1740766fe73553668
-  data.tar.gz: 275486512df3b419d95a9dca6b9d0d032f77a768a8ff54b5c84e5dc52ebafbcd9df95adbe8dd3e8695b84b9c072618366e85928516169a48bd110644fc193e53
+  metadata.gz: be204dc9f7da121a6c72d3f34ad8d74f767e55ac25d357cd9b96588a980501620af57b4678d952f5803f2487f1d456f2d3b06995b94451f4e1f37d21ae078277
+  data.tar.gz: 87b20058c4410c576c0fadc2127c91c9860d16419a8b5bd3cae854e41ff1c613d728d66fb1341d5561ac32b5d8d29ff6c72528340fa812f0c976d2156f5d3c47

data/lib/rack/firebase/configuration.rb CHANGED Viewed

@@ -1,7 +1,7 @@
 module Rack
   module Firebase
     class Configuration
-      attr_accessor :project_ids
+      attr_accessor :project_ids, :public_routes
       def initialize
         reset!
@@ -9,6 +9,7 @@ module Rack
       def reset!
         @project_ids = []
+        @public_routes = []
       end
     end
   end

data/lib/rack/firebase/middleware.rb CHANGED Viewed

@@ -16,30 +16,37 @@ module Rack
       end
       def call(env)
-        token = AuthorizationHeader.read_token(env)
-        decoded_token = TokenDecoder.new.call(token)
+        path = env.fetch("PATH_INFO", "no-match")
+        if config.public_routes.none? { |r| r.match(path) }
+          begin
+            token = AuthorizationHeader.read_token(env)
+            decoded_token = TokenDecoder.new.call(token)
-        raise Rack::Firebase::InvalidSubError.new("Invalid subject") if decoded_token["sub"].nil? || decoded_token["sub"] == ""
-        raise Rack::Firebase::InvalidAuthTimeError.new("Invalid auth time") unless decoded_token["auth_time"] <= Time.now.to_i
+            raise Rack::Firebase::InvalidSubError.new("Invalid subject") if decoded_token["sub"].nil? || decoded_token["sub"] == ""
+            raise Rack::Firebase::InvalidAuthTimeError.new("Invalid auth time") unless decoded_token["auth_time"] <= Time.now.to_i
-        env[USER_UID] = decoded_token["sub"]
-        @app.call(env)
-      rescue JWT::JWKError => error # Issues with fetched JWKs
-        error_responder.call(error, "unauthorized")
-      rescue JWT::ExpiredSignature => error # Token has expired
-        error_responder.call(error, "expired")
-      rescue JWT::InvalidIatError => error # invalid issued at claim (iat)
-        error_responder.call(error, "unauthorized")
-      rescue JWT::InvalidIssuerError => error # invalid issuer
-        error_responder.call(error, "unauthorized")
-      rescue JWT::InvalidAudError => error # invalid audience
-        error_responder.call(error, "unauthorized")
-      rescue JWT::DecodeError => error # General JWT error
-        error_responder.call(error, "unauthorized")
-      rescue Rack::Firebase::InvalidSubError => error # subject is empty or missing
-        error_responder.call(error, "unauthorized")
-      rescue Rack::Firebase::InvalidAuthTimeError => error # auth time is in the future
-        error_responder.call(error, "unauthorized")
+            env[USER_UID] = decoded_token["sub"]
+            @app.call(env)
+          rescue JWT::JWKError => error # Issues with fetched JWKs
+            error_responder.call(error, "unauthorized")
+          rescue JWT::ExpiredSignature => error # Token has expired
+            error_responder.call(error, "expired")
+          rescue JWT::InvalidIatError => error # invalid issued at claim (iat)
+            error_responder.call(error, "unauthorized")
+          rescue JWT::InvalidIssuerError => error # invalid issuer
+            error_responder.call(error, "unauthorized")
+          rescue JWT::InvalidAudError => error # invalid audience
+            error_responder.call(error, "unauthorized")
+          rescue JWT::DecodeError => error # General JWT error
+            error_responder.call(error, "unauthorized")
+          rescue Rack::Firebase::InvalidSubError => error # subject is empty or missing
+            error_responder.call(error, "unauthorized")
+          rescue Rack::Firebase::InvalidAuthTimeError => error # auth time is in the future
+            error_responder.call(error, "unauthorized")
+          end
+        else
+          @app.call(env)
+        end
       end
       private

data/lib/rack/firebase/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Rack
   module Firebase
-    VERSION = "0.2.0"
+    VERSION = "0.3.0"
   end
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rack-firebase
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - Laura Mosher