rails_jwt_auth 1.2.0 → 1.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4023162adcfa3953a4b917b533a4531141ce70b30c45b1502fc47e360a58d8f6
-  data.tar.gz: d95f7deaa3e194114cc21cd6354a1f4fcede72a6f307de7abf210fcf9493f9f2
+  metadata.gz: 29c7fdf2a0ecc3b2b48adc80426f802e411a7d315ad3d502d54591ba7978abd1
+  data.tar.gz: b7224f3281c49cb6c40ab28156c296a9cb74b3eefb68ac932940a931aa2886be
 SHA512:
-  metadata.gz: 05b4fa9c7fb11772014e015dd266ba5e3e99f3d0eb17970cbafefe941635e3eb2ef0d4bdfa696e4c0cd4798f1c6bdbe83610fda784a77ac2a45def7bcc1c63b4
-  data.tar.gz: 938906e3edee4d5647168f0953b5127a810d95776e841f172da4854e17926595d1d9f9d611a74d5f1c3d4b24d78d8ee37fcaf36c48703b491d94a7ea4fc2db88
+  metadata.gz: e208d2d4fc4a900a584a03d718b8539f0f53717d2bbeb15189d125d6f235e135c6e8d7de77df60cf128611cf512b8380fa747c604572495eebca32abff8d26f6
+  data.tar.gz: ab21acd7f88451742875b62f131c86243c715cc3c942ba94b7d6782c266800b68c35aef5b524c86e5bbbdbd2c9943f286d09e62d59a03562fdc667f4aae5dbd6

data/README.md

@@ -44,23 +44,24 @@ rails g rails_jwt_auth:migrate
 
 You can edit configuration options into `config/initializers/auth_token_auth.rb` file created by generator.
 
-| Option                         | Default value     | Description                                                            |
-| ------------------------------ | ----------------- | ---------------------------------------------------------------------- |
-| model_name                     | 'User'            | Authentication model name                                              |
-| auth_field_name                | 'email'           | Field used to authenticate user with password                          |
-| email_auth_field               | 'email'           | Field used to send emails                                              |
-| jwt_expiration_time            | 7.days            | Tokens expiration time                                                 |
-| jwt_issuer                     | 'RailsJwtAuth'    | The "iss" (issuer) claim identifies the principal that issued the JWT  |
-| simultaneous_sessions          | 2                 | Number of simultaneous sessions for an user. Set 0 to disable sessions |
-| mailer_sender                  |                   | E-mail address which will be shown in RailsJwtAuth::Mailer             |
-| confirmation_expiration_time   | 1.day             | Confirmation token expiration time                                     |
-| reset_password_expiration_time | 1.day             | Confirmation token expiration time                                     |
-| deliver_later                  | false             | Uses `deliver_later` method to send emails                             |
-| invitation_expiration_time     | 2.days            | Time an invitation is valid and can be accepted                        |
-| confirmations_url              | nil               | Url used to create email link with confirmation token                  |
-| reset_passwords_url            | nil               | Url used to create email link with reset password token                |
-| set_passwords_url              | nil               | Url used to create email link with set password token                  |
-| invitationss_url               | nil               | Url used to create email link with invitation token                    |
+| Option                          | Default value     | Description                                                            |
+| ------------------------------- | ----------------- | ---------------------------------------------------------------------- |
+| model_name                      | 'User'            | Authentication model name                                              |
+| auth_field_name                 | 'email'           | Field used to authenticate user with password                          |
+| email_auth_field                | 'email'           | Field used to send emails                                              |
+| jwt_expiration_time             | 7.days            | Tokens expiration time                                                 |
+| jwt_issuer                      | 'RailsJwtAuth'    | The "iss" (issuer) claim identifies the principal that issued the JWT  |
+| simultaneous_sessions           | 2                 | Number of simultaneous sessions for an user. Set 0 to disable sessions |
+| mailer_sender                   |                   | E-mail address which will be shown in RailsJwtAuth::Mailer             |
+| send_email_changed_notification | true              | Notify original email when it changes                                  |
+| confirmation_expiration_time    | 1.day             | Confirmation token expiration time                                     |
+| reset_password_expiration_time  | 1.day             | Confirmation token expiration time                                     |
+| deliver_later                   | false             | Uses `deliver_later` method to send emails                             |
+| invitation_expiration_time      | 2.days            | Time an invitation is valid and can be accepted                        |
+| confirmations_url               | nil               | Url used to create email link with confirmation token                  |
+| reset_passwords_url             | nil               | Url used to create email link with reset password token                |
+| set_passwords_url               | nil               | Url used to create email link with set password token                  |
+| invitationss_url                | nil               | Url used to create email link with invitation token                    |
 
 ## Modules
 
@@ -137,7 +138,20 @@ end
     end
     ```
 
-    This helper expect that token has been into **AUTHORIZATION** header.
+    This helper expect that token has been into **AUTHORIZATION** header.  
+    Raises `RailsJwtAuth::NotAuthorized` exception when it fails.
+
+-   **authenticate**
+
+    Authenticate your controllers:
+
+    ```ruby
+    class MyController < ApplicationController
+      before_action :authenticate
+    end
+    ```
+
+    This helper is like `authenticate!` but it not raises exception
 
 -   **current_user**
 

data/app/controllers/concerns/rails_jwt_auth/authenticable_helper.rb

@@ -24,6 +24,19 @@ module RailsJwtAuth
       end
     end
 
+    def authenticate
+      begin
+        payload = RailsJwtAuth::JwtManager.decode_from_request(request).first
+        @current_user = RailsJwtAuth.model.from_token_payload(payload)
+      rescue JWT::ExpiredSignature, JWT::VerificationError, JWT::DecodeError
+        @current_user = nil
+      end
+
+      if @current_user&.respond_to? :update_tracked_fields!
+        @current_user.update_tracked_fields!(request)
+      end
+    end
+
     def unauthorize!
       raise NotAuthorized
     end

data/app/mailers/rails_jwt_auth/mailer.rb

@@ -15,6 +15,12 @@ if defined?(ActionMailer)
       mail(to: @user.unconfirmed_email || @user[RailsJwtAuth.email_field_name], subject: subject)
     end
 
+    def email_changed(user)
+      @user = user
+      subject = I18n.t('rails_jwt_auth.mailer.email_changed.subject')
+      mail(to: @user[RailsJwtAuth.email_field_name!], subject: subject)
+    end
+
     def reset_password_instructions(user)
       raise RailsJwtAuth::NotResetPasswordsUrl unless RailsJwtAuth.reset_passwords_url.present?
       @user = user

data/app/models/concerns/rails_jwt_auth/confirmable.rb

@@ -36,6 +36,11 @@ module RailsJwtAuth
 
             mailer = Mailer.confirmation_instructions(self)
             RailsJwtAuth.deliver_later ? mailer.deliver_later : mailer.deliver
+
+            if RailsJwtAuth.send_email_changed_notification
+              mailer = Mailer.email_changed(self)
+              RailsJwtAuth.deliver_later ? mailer.deliver_later : mailer.deliver
+            end
           end
         end
       end

data/app/views/rails_jwt_auth/mailer/email_changed.html.erb

@@ -0,0 +1,3 @@
+<p>Hello <%= @user[RailsJwtAuth.email_field_name] %>!</p>
+
+<p>We're contacting you to notify you that your email is being changed to <%= @user.unconfirmed_email %>.</p>

data/config/locales/en.yml

@@ -9,3 +9,5 @@ en:
         subject: "Set password instructions"
       send_invitation:
         subject: "Someone has sent you an invitation!"
+      email_changed:
+        subject: "Email changed"

data/lib/rails_jwt_auth/version.rb

@@ -1,3 +1,3 @@
 module RailsJwtAuth
-  VERSION = '1.2.0'
+  VERSION = '1.3.0'
 end

data/lib/rails_jwt_auth.rb

@@ -32,6 +32,9 @@ module RailsJwtAuth
   mattr_accessor :mailer_sender
   self.mailer_sender = 'initialize-mailer_sender@example.com'
 
+  mattr_accessor :send_email_changed_notification
+  self.send_email_changed_notification = true
+
   mattr_accessor :confirmation_expiration_time
   self.confirmation_expiration_time = 1.day
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: rails_jwt_auth
 version: !ruby/object:Gem::Version
-  version: 1.2.0
+  version: 1.3.0
 platform: ruby
 authors:
 - rjurado
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-03-20 00:00:00.000000000 Z
+date: 2019-04-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bcrypt
@@ -79,6 +79,7 @@ files:
 - app/models/concerns/rails_jwt_auth/recoverable.rb
 - app/models/concerns/rails_jwt_auth/trackable.rb
 - app/views/rails_jwt_auth/mailer/confirmation_instructions.html.erb
+- app/views/rails_jwt_auth/mailer/email_changed.html.erb
 - app/views/rails_jwt_auth/mailer/reset_password_instructions.html.erb
 - app/views/rails_jwt_auth/mailer/send_invitation.html.erb
 - app/views/rails_jwt_auth/mailer/set_password_instructions.html.erb
@@ -112,7 +113,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.7.3
+rubygems_version: 2.7.6
 signing_key: 
 specification_version: 4
 summary: Rails jwt authentication.