rails-auth-eassy 0.1.1

data/config/routes.rb

@@ -0,0 +1,20 @@
+Rails::Auth::Engine.routes.draw do
+  resource :session, only: [ :new, :create, :destroy ]
+  resource :registration, only: [ :new, :create ]
+  resources :password_resets, only: [ :new, :create, :edit, :update ], constraints: { id: /.*/ }
+
+  get "confirmation", to: "confirmations#show"
+  get "unlock", to: "unlocks#show"
+
+  resource :mfa, controller: "mfa", only: [ :show, :create, :destroy ]
+  resource :otp_verification, only: [ :new, :create ]
+  resource :profile, only: [ :edit, :update ]
+
+  resources :impersonations, only: [ :create ] do
+    delete :stop, on: :collection, action: :destroy
+  end
+
+  get "security/sessions", to: "security#sessions"
+  delete "security/sessions/:id", to: "security#revoke_session", as: :revoke_session
+  delete "security/revoke_all", to: "security#revoke_all_sessions", as: :revoke_all_sessions
+end

data/lib/generators/rails_auth/install/install_generator.rb

@@ -0,0 +1,21 @@
+require "rails/generators/base"
+
+module RailsAuth
+  module Generators
+    class InstallGenerator < Rails::Generators::Base
+      source_root File.expand_path("templates", __dir__)
+
+      def copy_initializer
+        template "rails_auth.rb", "config/initializers/rails_auth.rb"
+      end
+
+      def add_routes
+        route 'mount Rails::Auth::Engine => "/auth"'
+      end
+
+      def display_readme
+        readme "README" if File.exist?("README")
+      end
+    end
+  end
+end

data/lib/generators/rails_auth/install/templates/rails_auth.rb

@@ -0,0 +1,7 @@
+Rails::Auth.setup do |config|
+  # The class name of the user model
+  # config.user_class_name = "User"
+
+  # The class name of the session model
+  # config.session_class_name = "Session"
+end

data/lib/generators/rails_auth/model/model_generator.rb

@@ -0,0 +1,27 @@
+require "rails/generators/active_record"
+
+module RailsAuth
+  module Generators
+    class ModelGenerator < ActiveRecord::Generators::Base
+      source_root File.expand_path("templates", __dir__)
+
+      def create_user_model
+        template "user.rb", "app/models/#{name.underscore}.rb"
+      end
+
+      def create_session_model
+        template "session.rb", "app/models/session.rb"
+      end
+
+      def create_migrations
+        migration_template "create_rails_auth_tables.rb", "db/migrate/create_rails_auth_tables.rb"
+      end
+
+      private
+
+      def migration_class_name
+        "CreateRailsAuthTables"
+      end
+    end
+  end
+end

data/lib/generators/rails_auth/model/templates/create_rails_auth_tables.rb

@@ -0,0 +1,60 @@
+class CreateRailsAuthTables < ActiveRecord::Migration[<%= ActiveRecord::Migration.current_version %>]
+  def change
+    create_table :<%= table_name %> do |t|
+      t.string :email,           null: false
+      t.string :password_digest, null: false
+      t.string :reset_token
+      t.datetime :reset_sent_at
+
+      # Confirmable
+      t.string   :confirmation_token
+      t.datetime :confirmed_at
+      t.datetime :confirmation_sent_at
+      t.string   :unconfirmed_email # Only if using reconfirmable
+
+      # Lockable
+      t.integer  :failed_attempts, default: 0, null: false # Only if lock strategy is :failed_attempts
+      t.string   :unlock_token # Only if unlock strategy is :email or :both
+      t.datetime :locked_at
+
+      # MFA
+      t.string  :otp_secret
+      t.boolean :otp_enabled, default: false, null: false
+
+      # RBAC
+      t.integer :role, default: 0, null: false
+
+      t.timestamps
+    end
+
+    add_index :<%= table_name %>, :email, unique: true
+    add_index :<%= table_name %>, :reset_token, unique: true
+    add_index :<%= table_name %>, :confirmation_token, unique: true
+    add_index :<%= table_name %>, :unlock_token, unique: true
+
+    create_table :sessions do |t|
+      t.references :user, null: false, foreign_key: { to_table: :<%= table_name %> }
+      t.string :token, null: false
+      t.string :ip_address
+      t.string :user_agent
+      t.string :browser
+      t.string :os
+      t.integer :impersonated_by_id # For Admin Impersonation
+      t.datetime :last_active_at
+
+      t.timestamps
+    end
+
+    add_index :sessions, :token, unique: true
+
+    create_table :security_events do |t|
+      t.references :user, null: false, foreign_key: { to_table: :<%= table_name %> }
+      t.string :event_type, null: false
+      t.string :ip_address
+      t.string :user_agent
+      t.json :details
+
+      t.timestamps
+    end
+  end
+end

data/lib/generators/rails_auth/model/templates/session.rb

@@ -0,0 +1,3 @@
+class Session < ApplicationRecord
+  include Rails::Auth::Sessionable
+end

data/lib/generators/rails_auth/model/templates/user.rb

@@ -0,0 +1,3 @@
+class <%= class_name %> < ApplicationRecord
+  include Rails::Auth::Authenticatable
+end

data/lib/generators/rails_auth/views/views_generator.rb

@@ -0,0 +1,13 @@
+require "rails/generators/base"
+
+module RailsAuth
+  module Generators
+    class ViewsGenerator < Rails::Generators::Base
+      source_root File.expand_path("../../../../app/views/rails/auth", __dir__)
+
+      def copy_views
+        directory ".", "app/views/rails/auth"
+      end
+    end
+  end
+end

data/lib/rails/auth/engine.rb

@@ -0,0 +1,7 @@
+module Rails
+  module Auth
+    class Engine < ::Rails::Engine
+      isolate_namespace Rails::Auth
+    end
+  end
+end

data/lib/rails/auth/version.rb

@@ -0,0 +1,5 @@
+module Rails
+  module Auth
+    VERSION = "0.1.1"
+  end
+end

data/lib/rails/auth.rb

@@ -0,0 +1,49 @@
+require "rails/auth/version"
+require "rails/auth/engine"
+require "rotp"
+require "rqrcode"
+require "jwt"
+
+module Rails
+  module Auth
+    def self.table_name_prefix
+      ""
+    end
+
+    mattr_accessor :user_class_name
+    @@user_class_name = "User"
+
+    mattr_accessor :session_class_name
+    @@session_class_name = "Session"
+
+    mattr_writer :jwt_secret
+
+    def self.jwt_secret
+      @@jwt_secret || ENV["RAILS_AUTH_JWT_SECRET"] || (Rails.application&.respond_to?(:secret_key_base) ? Rails.application.secret_key_base : "default_secret_for_testing_only")
+    end
+
+    def self.setup
+      yield self
+    end
+
+    def self.user_class
+      @@user_class_name.constantize
+    end
+
+    def self.session_class
+      @@session_class_name.constantize
+    end
+
+    def self.encode_jwt(payload, exp = 24.hours.from_now)
+      payload[:exp] = exp.to_i
+      ::JWT.encode(payload, self.jwt_secret.to_s)
+    end
+
+    def self.decode_jwt(token)
+      body = ::JWT.decode(token, self.jwt_secret.to_s)[0]
+      HashWithIndifferentAccess.new body
+    rescue ::JWT::DecodeError
+      nil
+    end
+  end
+end

data/lib/tasks/rails/auth_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :rails_auth do
+#   # Task goes here
+# end

metadata

@@ -0,0 +1,177 @@
+--- !ruby/object:Gem::Specification
+name: rails-auth-eassy
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- Shiboshree Roy
+bindir: bin
+cert_chain: []
+date: 1980-01-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '7.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '7.0'
+- !ruby/object:Gem::Dependency
+  name: bcrypt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.1.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.1.7
+- !ruby/object:Gem::Dependency
+  name: useragent
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rotp
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.2'
+- !ruby/object:Gem::Dependency
+  name: rqrcode
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.2'
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+description: A modern, advanced authentication engine for Rails with built-in session
+  management, multi-factor authentication support, and more.
+email:
+- shiboshreeroy169@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/assets/stylesheets/rails/auth/application.css
+- app/controllers/concerns/rails/auth/authenticatable_controller.rb
+- app/controllers/rails/auth/application_controller.rb
+- app/controllers/rails/auth/confirmations_controller.rb
+- app/controllers/rails/auth/impersonations_controller.rb
+- app/controllers/rails/auth/mfa_controller.rb
+- app/controllers/rails/auth/otp_verifications_controller.rb
+- app/controllers/rails/auth/password_resets_controller.rb
+- app/controllers/rails/auth/profiles_controller.rb
+- app/controllers/rails/auth/registrations_controller.rb
+- app/controllers/rails/auth/security_controller.rb
+- app/controllers/rails/auth/sessions_controller.rb
+- app/controllers/rails/auth/unlocks_controller.rb
+- app/helpers/rails/auth/application_helper.rb
+- app/jobs/rails/auth/application_job.rb
+- app/mailers/rails/auth/application_mailer.rb
+- app/mailers/rails/auth/user_mailer.rb
+- app/models/concerns/rails/auth/authenticatable.rb
+- app/models/concerns/rails/auth/sessionable.rb
+- app/models/rails/auth/application_record.rb
+- app/models/rails/auth/current.rb
+- app/models/rails/auth/security_event.rb
+- app/views/layouts/rails/auth/application.html.erb
+- app/views/rails/auth/mfa/show.html.erb
+- app/views/rails/auth/otp_verifications/new.html.erb
+- app/views/rails/auth/password_resets/edit.html.erb
+- app/views/rails/auth/password_resets/new.html.erb
+- app/views/rails/auth/profiles/edit.html.erb
+- app/views/rails/auth/registrations/new.html.erb
+- app/views/rails/auth/security/sessions.html.erb
+- app/views/rails/auth/sessions/new.html.erb
+- app/views/rails/auth/user_mailer/confirmation_instructions.html.erb
+- app/views/rails/auth/user_mailer/password_reset.html.erb
+- app/views/rails/auth/user_mailer/password_reset.text.erb
+- app/views/rails/auth/user_mailer/unlock_instructions.html.erb
+- config/routes.rb
+- lib/generators/rails_auth/install/install_generator.rb
+- lib/generators/rails_auth/install/templates/rails_auth.rb
+- lib/generators/rails_auth/model/model_generator.rb
+- lib/generators/rails_auth/model/templates/create_rails_auth_tables.rb
+- lib/generators/rails_auth/model/templates/session.rb
+- lib/generators/rails_auth/model/templates/user.rb
+- lib/generators/rails_auth/views/views_generator.rb
+- lib/rails/auth.rb
+- lib/rails/auth/engine.rb
+- lib/rails/auth/version.rb
+- lib/tasks/rails/auth_tasks.rake
+homepage: https://github.com/shiboshreeroy/rails-auth
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/shiboshreeroy/rails-auth
+  source_code_uri: https://github.com/shiboshreeroy/rails-auth/tree/main
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.0.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 4.0.11
+specification_version: 4
+summary: Advanced authentication engine for Rails.
+test_files: []