RubyGems - rails_cloudflare_turnstile - Versions diffs - 0.1.1 → 0.1.3 - Mend

rails_cloudflare_turnstile 0.1.1 → 0.1.3

Files changed (10) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +19 -0
data/README.md +3 -1
data/Rakefile +0 -10
data/lib/rails_cloudflare_turnstile/configuration.rb +3 -0
data/lib/rails_cloudflare_turnstile/controller_helpers.rb +42 -38
data/lib/rails_cloudflare_turnstile/version.rb +1 -1
data/lib/rails_cloudflare_turnstile/view_helpers.rb +19 -3
data/lib/rails_cloudflare_turnstile.rb +7 -0
metadata +7 -6

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0cfeed46bde0d23de83178099c03b8f72d36f74d9261031a24f646010d669f6b
-  data.tar.gz: 9303d22f6cf9b96388abfb909e8654b1a94f64d5b7d344a51e4996eacf4ffb5b
+  metadata.gz: 945f56fd2e6ef412bd71d68a58ca63978499ac4948ac4cdb640852a0d7f13cbf
+  data.tar.gz: 446c952679cf658fbc9e6e031043ca272ef8ef0ce5b3c6d40229461643725c07
 SHA512:
-  metadata.gz: 1e7965c6d45d566afbbb7b8e411648a7c5f93f82750c737f1fe40e56af714c7e8f2428664a0f5f2558b40c3a0b32e65a4feda81b399c39ffed67c5326e6f7550
-  data.tar.gz: ca8c8c150eab7983198223f87e3a2471681d2fbca5ce606b9ab9a30164d0a1930dd244bf6a0812c5edb81c6fd77ef160f8607ca2cfa4105ddbb010e26262e331
+  metadata.gz: 6d27317d8fba8949675177a9fbbe798d0f57f7a26c2fad0ae72fe0b00337f6721dab1c298af562839a012d2f68764db99fe07fe2cb78ce44d6c996fa5ee0dc8b
+  data.tar.gz: 5549a4a67796a43b4effb39c4d50bef488f47164f3efcfb285c3ce8f64da445d23c1aefe4adc318da4964f79ea28af125d21972001da79ab5d00291649be4bda

data/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,19 @@
+ChangeLog
+=========
+0.1.3
+-----
+- Add mocked functionality in dev/test
+0.1.2
+-----
+- Fix URIs in gemspec
+0.1.1
+-----
+- Testing release for Github Actions integration
+- Bump various build dependencies (thanks dependabot)
+0.1.0
+-----
+- Initial release

data/README.md CHANGED Viewed

@@ -34,7 +34,6 @@ RailsCloudflareTurnstile.configure do |c|
   c.fail_open = true
 end
 ```
 To totally disable Turnstile, you can set `c.enabled = false` and all other config values are ignored.
 To use Turnstile for a view:
@@ -46,5 +45,8 @@ To use Turnstile for a view:
 If the challenge fails, the exception `RailsCloudflareTurnstile::Forbidden` will be raised; you should handle this with
 a `rescue_from` block.
+By default, in development and test mode, a special mock view will be inserted if real credentials are not present. To
+disable this, set the `mock_enable` property of the configuration to false.
 ## License
 The gem is available as open source under the terms of the [ISC License](LICENSE.txt).

data/Rakefile CHANGED Viewed

@@ -1,13 +1,3 @@
 require "bundler/setup"
 require "bundler/gem_tasks"
-require "rake/testtask"
-Rake::TestTask.new(:test) do |t|
-  t.libs << "test"
-  t.pattern = "test/**/*_test.rb"
-  t.verbose = false
-end
-task default: :test

data/lib/rails_cloudflare_turnstile/configuration.rb CHANGED Viewed

@@ -21,11 +21,14 @@ module RailsCloudflareTurnstile
     attr_accessor :enabled
+    attr_accessor :mock_enabled
     def initialize
       @site_key = nil
       @secret_key = nil
       @fail_open = true
       @enabled = nil
+      @mock_enabled = nil
       @timeout = 5.0
       @size = :regular
       @validation_url = "https://challenges.cloudflare.com/turnstile/v0/siteverify"

data/lib/rails_cloudflare_turnstile/controller_helpers.rb CHANGED Viewed

@@ -5,54 +5,58 @@ require "faraday"
 module RailsCloudflareTurnstile
   module ControllerHelpers
     def cloudflare_turnstile_ok?
-      return true unless RailsCloudflareTurnstile.enabled?
+      if RailsCloudflareTurnstile.enabled?
+        config = RailsCloudflareTurnstile.configuration
-      config = RailsCloudflareTurnstile.configuration
+        url = URI(config.validation_url)
-      url = URI(config.validation_url)
+        body = {
+          secret: config.secret_key,
+          response: params["cf-turnstile-response"],
+          remoteip: request.remote_ip
+        }
-      body = {
-        secret: config.secret_key,
-        response: params["cf-turnstile-response"],
-        remoteip: request.remote_ip
-      }
-      begin
-        resp = Faraday.new(url) { |conn|
-          conn.options.timeout = config.timeout
-          conn.options.open_timeout = config.timeout
-          conn.use Faraday::Response::RaiseError
-          conn.request :json
-          conn.response :json
-        }.post(url, body)
-      rescue Faraday::Error => e
-        Rails.logger.error "Error response from CloudFlare Turnstile: #{e}"
-        if config.fail_open
-          return true
-        else
-          return false
+        begin
+          resp = Faraday.new(url) { |conn|
+            conn.options.timeout = config.timeout
+            conn.options.open_timeout = config.timeout
+            conn.use Faraday::Response::RaiseError
+            conn.request :json
+            conn.response :json
+          }.post(url, body)
+        rescue Faraday::Error => e
+          Rails.logger.error "Error response from CloudFlare Turnstile: #{e}"
+          if config.fail_open
+            return true
+          else
+            return false
+          end
         end
-      end
-      json = resp.body
+        json = resp.body
-      success = json["success"]
+        success = json["success"]
-      return true if success
+        return true if success
-      error = json["error-codes"][0]
+        error = json["error-codes"][0]
-      ActiveSupport::Notifications.instrument(
-        "rails_cloudflare_turnstile.failure",
-        message: error,
-        remote_ip: request.remote_ip,
-        user_agent: request.user_agent,
-        controller: params[:controller],
-        action: params[:action],
-        url: request.url
-      )
+        ActiveSupport::Notifications.instrument(
+          "rails_cloudflare_turnstile.failure",
+          message: error,
+          remote_ip: request.remote_ip,
+          user_agent: request.user_agent,
+          controller: params[:controller],
+          action: params[:action],
+          url: request.url
+        )
-      false
+        false
+      elsif RailsCloudflareTurnstile.mock_enabled?
+        params["cf-turnstile-response"] == "mocked"
+      else
+        true
+      end
     end
     private

data/lib/rails_cloudflare_turnstile/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module RailsCloudflareTurnstile
-  VERSION = "0.1.1"
+  VERSION = "0.1.3"
 end

data/lib/rails_cloudflare_turnstile/view_helpers.rb CHANGED Viewed

@@ -3,9 +3,14 @@
 module RailsCloudflareTurnstile
   module ViewHelpers
     def cloudflare_turnstile(action: "other")
-      return nil unless RailsCloudflareTurnstile.enabled?
-      content_tag(:div, class: "cloudflare-turnstile") do
-        concat turnstile_div(action)
+      if RailsCloudflareTurnstile.enabled?
+        content_tag(:div, class: "cloudflare-turnstile") do
+          concat turnstile_div(action)
+        end
+      elsif RailsCloudflareTurnstile.mock_enabled?
+        content_tag(:div, class: "cloudflare-turnstile") do
+          concat mock_turnstile_div(action)
+        end
       end
     end
@@ -25,6 +30,17 @@ module RailsCloudflareTurnstile
       end
     end
+    def mock_turnstile_div(action)
+      content_tag(:div, class: "cf-turnstile", style: "width: 300px; height: 65px: border: 1px solid gray") do
+        [
+          tag.input(type: "hidden", name: "cf-turnstile-response", value: "mocked"),
+          content_tag(:p) do
+            "CAPTCHA goes here in production"
+          end
+        ].reduce(:<<)
+      end
+    end
     def site_key
       RailsCloudflareTurnstile.configuration.site_key
     end

data/lib/rails_cloudflare_turnstile.rb CHANGED Viewed

@@ -16,12 +16,19 @@ module RailsCloudflareTurnstile
     if configuration.enabled.nil?
       configuration.enabled = true
     end
+    if configuration.mock_enabled.nil?
+      configuration.mock_enabled = Rails.env.development? || Rails.env.test?
+    end
   end
   def self.enabled?
     configuration.enabled == true
   end
+  def self.mock_enabled?
+    configuration.mock_enabled == true
+  end
   def self.reset_configuration!
     LOCK.synchronize do
       @configuration = nil

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: rails_cloudflare_turnstile
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.3
 platform: ruby
 authors:
 - James Brown
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-01-09 00:00:00.000000000 Z
+date: 2023-01-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -59,6 +59,7 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- CHANGELOG.md
 - README.md
 - Rakefile
 - lib/rails_cloudflare_turnstile.rb
@@ -68,13 +69,13 @@ files:
 - lib/rails_cloudflare_turnstile/railtie.rb
 - lib/rails_cloudflare_turnstile/version.rb
 - lib/rails_cloudflare_turnstile/view_helpers.rb
-homepage: https://github.com/instrumentl/rails_cloudflare-turnstile
+homepage: https://github.com/instrumentl/rails-cloudflare-turnstile
 licenses:
 - ISC
 metadata:
-  homepage_uri: https://github.com/instrumentl/rails_cloudflare-turnstile
-  source_code_uri: https://github.com/instrumentl/rails_cloudflare-turnstile
-  changelog_uri: https://github.com/dotenv-org/cloudflare_turnstile
+  homepage_uri: https://github.com/instrumentl/rails-cloudflare-turnstile
+  source_code_uri: https://github.com/instrumentl/rails-cloudflare-turnstile
+  changelog_uri: https://github.com/instrumentl/rails-cloudflare-turnstile/blob/main/CHANGELOG.md
 post_install_message:
 rdoc_options: []
 require_paths: