RubyGems - rails-auth - Versions diffs - 1.3.0 → 2.0.1 - Mend - Supply Chain Defender

rails-auth 1.3.0 → 2.0.1

Sign up to get free protection for your applications and to get access to all the features.

Files changed (33) hide show

checksums.yaml +4 -4
data/.rubocop.yml +3 -0
data/CHANGES.md +30 -0
data/README.md +27 -485
data/lib/rails/auth.rb +3 -0
data/lib/rails/auth/acl.rb +20 -15
data/lib/rails/auth/acl/matchers/allow_all.rb +1 -1
data/lib/rails/auth/acl/middleware.rb +6 -1
data/lib/rails/auth/acl/resource.rb +12 -11
data/lib/rails/auth/config_builder.rb +83 -0
data/lib/rails/auth/credentials.rb +17 -32
data/lib/rails/auth/credentials/injector_middleware.rb +2 -2
data/lib/rails/auth/env.rb +64 -0
data/lib/rails/auth/error_page/debug_page.html.erb +2 -2
data/lib/rails/auth/exceptions.rb +8 -2
data/lib/rails/auth/helpers.rb +64 -0
data/lib/rails/auth/monitor/middleware.rb +28 -0
data/lib/rails/auth/rack.rb +4 -2
data/lib/rails/auth/rspec/helper_methods.rb +20 -2
data/lib/rails/auth/version.rb +1 -1
data/lib/rails/auth/x509/matcher.rb +1 -1
data/spec/rails/auth/acl/middleware_spec.rb +2 -1
data/spec/rails/auth/acl/resource_spec.rb +17 -17
data/spec/rails/auth/acl_spec.rb +3 -3
data/spec/rails/auth/credentials/injector_middleware_spec.rb +1 -1
data/spec/rails/auth/credentials_spec.rb +20 -41
data/spec/rails/auth/env_spec.rb +31 -0
data/spec/rails/auth/monitor/middleware_spec.rb +39 -0
data/spec/rails/auth/rspec/helper_methods_spec.rb +26 -0
data/spec/rails/auth/rspec/matchers/acl_matchers_spec.rb +2 -2
data/spec/rails/auth/x509/matcher_spec.rb +1 -1
metadata +8 -3
data/lib/rails/auth/override.rb +0 -29

data/lib/rails/auth/override.rb DELETED

@@ -1,29 +0,0 @@
-module Rails
-  # Modular resource-based authentication and authorization for Rails/Rack
-  module Auth
-    # Rack environment key for marking external authorization
-    AUTHORIZED_ENV_KEY = "rails-auth.authorized".freeze
-    # Functionality allowing external middleware to override our ACL check process
-    module Override
-      # Mark a request as externally authorized. Causes ACL checks to be skipped.
-      #
-      # @param [Hash] :env Rack environment
-      #
-      def authorized!(env)
-        env[AUTHORIZED_ENV_KEY] = true
-      end
-      # Check whether a request has been externally authorized? Used to bypass
-      # ACL check.
-      #
-      # @param [Hash] :env Rack environment
-      #
-      def authorized?(env)
-        env.fetch(AUTHORIZED_ENV_KEY, false)
-      end
-    end
-    extend Override
-  end
-end