RubyGems - reputable - Versions diffs - 0.1.22 → 0.1.23 - Mend

reputable 0.1.22 → 0.1.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/Gemfile.lock +1 -1
data/lib/reputable/middleware.rb +25 -81
data/lib/reputable/reputation.rb +2 -3
data/lib/reputable/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 594ed67d80dc9ae5bd493bbe7c3322c4ed79f1d4e661b7e36ddc57d46d350c71
-  data.tar.gz: e9b6093d3cc1a23fe9f881d292984c92e7a32c86ccb52c1581f60a12eae94078
+  metadata.gz: 1f667ca542120eb294a6c61a0650a1c1deb82b5383c87e8d744c98c9fba7548a
+  data.tar.gz: d061fbe002a8ae3c96bbbf45b7470f5df4bdac89f49bcb36f42ab1e676ee5699
 SHA512:
-  metadata.gz: c921b3e37a852a8226551cd43c4787760a3c41230dbfaf7535b93c62599185b7e9438c4421cf7e03533325036b184b4a6c817cedee69606f057dec27abb93b79
-  data.tar.gz: 6da6fc589dd71010685ef7e02d68b5c0b6c4a97fd457187f1c432fc9a5c992a8821d49bda29cd2f169ed95262e28c63a0f4be08b41d811555f166c5a14717c92
+  metadata.gz: 0f47bb9c880009d89a36d71ef0021edd07de2b87fb38ab5625625b89d7ad0240391fbc5ff4e5630e12bc7fafc4290a9649aec9685c25cfca5c28546e8e9699f6
+  data.tar.gz: 7223bdf677132850ccb4ef226c8540dad07fba22853c9461873a696b3c16f52a65fc06eba1757aeb121607470baea291e027db7364a19ee9c505a92bbec1b49d

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    reputable (0.1.20)
+    reputable (0.1.22)
       connection_pool (~> 2.2)
       redis (>= 4.0, < 6.0)

data/lib/reputable/middleware.rb CHANGED Viewed

@@ -71,11 +71,6 @@ module Reputable
       env["reputable.ip"] = ip
       path = env["PATH_INFO"] || "/"
-      if Reputable.verbose?
-        Reputable.logger&.info("[Reputable] request: #{env['REQUEST_METHOD']} #{path} ip=#{ip} rid=#{env['reputable.request_id']}")
-        Reputable.logger&.info("[Reputable] state: enabled=#{Reputable.enabled?} operational=#{Reputable.operational?} gate=#{@reputation_gate} track=#{track_request_enabled?}")
-      end
       # Check for verification return parameters and verify signature if present
       handle_verification_return(env)
@@ -99,28 +94,25 @@ module Reputable
       # All tracking is wrapped in rescue to ensure it never fails
       safe_track_request(env)
+      # Single summary line for requests that passed through without intervention
+      if Reputable.verbose?
+        rep_status = env["reputable.reputation_status"]
+        Reputable.logger&.info("[Reputable] #{env['REQUEST_METHOD']} #{path} ip=#{ip} status=#{rep_status || 'unknown'} gate=#{@reputation_gate} result=pass")
+      end
       [status, headers, response]
     end
     private
     def safe_reputation_gate(env)
-      unless @reputation_gate
-        Reputable.logger&.info("[Reputable] gate: skipped (reputation_gate=false)") if Reputable.verbose?
-        return nil
-      end
-      unless Reputable.enabled?
-        Reputable.logger&.info("[Reputable] gate: skipped (disabled)") if Reputable.verbose?
-        return nil
-      end
+      return nil unless @reputation_gate
+      return nil unless Reputable.enabled?
       unless Reputable.operational?
-        Reputable.logger&.info("[Reputable] gate: skipped (not operational, circuit_breaker=#{Connection.circuit_open? ? 'open' : 'closed'} failures=#{Connection.failure_count})") if Reputable.verbose?
-        return nil
-      end
-      if skip_request?(env)
-        Reputable.logger&.info("[Reputable] gate: skipped (path excluded)") if Reputable.verbose?
+        Reputable.logger&.warn("[Reputable] gate: skipped (not operational, circuit_breaker=#{Connection.circuit_open? ? 'open' : 'closed'})") if Reputable.verbose?
         return nil
       end
+      return nil if skip_request?(env)
       enforce_reputation_gate(env)
     rescue StandardError => e
@@ -133,25 +125,19 @@ module Reputable
       status = reputation_status(env)
       ip = env["reputable.ip"] || extract_ip(env)
-      if Reputable.verbose?
-        Reputable.logger&.info("[Reputable] gate: ip=#{ip} status=#{status.inspect}")
-      end
       return nil if status.nil?
       case status
       when "untrusted_block"
-        Reputable.logger&.info("[Reputable] gate: BLOCKING ip=#{ip} action=#{@block_action}") if Reputable.verbose?
+        Reputable.logger&.info("[Reputable] gate: BLOCKING ip=#{ip} action=#{@block_action}")
         handle_block_action(env, ip)
       when "untrusted_challenge"
         if verified_session?(env)
-          Reputable.logger&.info("[Reputable] gate: ip=#{ip} has untrusted_challenge but session is verified, passing through") if Reputable.verbose?
           return nil
         end
-        Reputable.logger&.info("[Reputable] gate: CHALLENGING ip=#{ip} action=#{@challenge_action}") if Reputable.verbose?
+        Reputable.logger&.info("[Reputable] gate: CHALLENGING ip=#{ip} action=#{@challenge_action}")
         handle_challenge_action(env)
       else
-        Reputable.logger&.info("[Reputable] gate: ip=#{ip} status=#{status} — allowing") if Reputable.verbose?
         nil
       end
     end
@@ -189,17 +175,12 @@ module Reputable
       query = request.query_string
       return unless query.include?("reputable_r") || query.include?("reputable_status")
-      Reputable.logger&.info("[Reputable] verification return detected in query string") if Reputable.verbose?
       params = request.params
       # Determine status from new format or legacy format
       status = if params["reputable_r"]
-        decoded = Reputable.decode_reputable_response(params)
-        Reputable.logger&.info("[Reputable] verification: new format decoded=#{decoded.inspect}") if Reputable.verbose?
-        decoded&.dig("status")
+        Reputable.decode_reputable_response(params)&.dig("status")
       else
-        Reputable.logger&.info("[Reputable] verification: legacy format status=#{params['reputable_status']}") if Reputable.verbose?
         params["reputable_status"]
       end
@@ -209,7 +190,6 @@ module Reputable
       end
       sig_valid = Reputable.verify_redirect_return(params)
-      Reputable.logger&.info("[Reputable] verification: signature_valid=#{sig_valid}") if Reputable.verbose?
       if sig_valid
         env["reputable.verified"] = true
@@ -230,10 +210,9 @@ module Reputable
         if env["rack.session"]
           env["rack.session"]["reputable_verified"] = true
           env["rack.session"]["reputable_verified_at"] = Time.now.to_i
-          Reputable.logger&.info("[Reputable] verification: stored in session, verified=true") if Reputable.verbose?
-        else
-          Reputable.logger&.info("[Reputable] verification: no rack.session available, cannot persist") if Reputable.verbose?
         end
+        Reputable.logger&.info("[Reputable] verification: pass, stored in session") if Reputable.verbose?
       else
         Reputable.logger&.warn("[Reputable] verification: INVALID signature, rejecting")
       end
@@ -258,20 +237,16 @@ module Reputable
     def handle_block_action(env, ip)
       case @block_action
       when :blocked_page
-        Reputable.logger&.info("[Reputable] block: rendering inline blocked page for ip=#{ip}") if Reputable.verbose?
         build_blocked_page_response(ip)
       when :blocked_page_remote
         url = resolve_blocked_redirect_url(env) || Reputable.blocked_page_url
-        Reputable.logger&.info("[Reputable] block: REDIRECTING #{@blocked_redirect_status} → #{url}") if Reputable.verbose?
+        Reputable.logger&.info("[Reputable] block: REDIRECTING #{@blocked_redirect_status} → #{url}")
         redirect_response(url, @blocked_redirect_status)
       when :forbidden
-        Reputable.logger&.info("[Reputable] block: returning 403 for ip=#{ip}") if Reputable.verbose?
         [403, { "Content-Type" => "text/plain; charset=utf-8" }, ["Forbidden"]]
       when Proc
-        Reputable.logger&.info("[Reputable] block: calling custom proc for ip=#{ip}") if Reputable.verbose?
         @block_action.call(env, ip)
       else
-        Reputable.logger&.info("[Reputable] block: rendering default blocked page for ip=#{ip}") if Reputable.verbose?
         build_blocked_page_response(ip)
       end
     end
@@ -281,7 +256,7 @@ module Reputable
       when :verify
         keys = Reputable.configuration.trusted_keys
         if keys.nil? || keys.empty?
-          Reputable.logger&.info("[Reputable] challenge: no trusted_keys configured, cannot redirect to verification") if Reputable.verbose?
+          Reputable.logger&.warn("[Reputable] challenge: no trusted_keys configured, cannot redirect to verification")
           return nil
         end
@@ -290,10 +265,6 @@ module Reputable
         failure_url = build_verification_failure_url(request)
         session_id = resolve_session_id(env)
-        if Reputable.verbose?
-          Reputable.logger&.info("[Reputable] challenge: building verification URL return_url=#{return_url} failure_url=#{failure_url} session_id=#{session_id}")
-        end
         redirect_url = Reputable.verification_url(
           return_url: return_url,
           failure_url: failure_url,
@@ -301,15 +272,11 @@ module Reputable
           force_challenge: @verification_force_challenge
         )
-        if redirect_url == return_url
-          Reputable.logger&.info("[Reputable] challenge: verification_url == return_url, skipping redirect") if Reputable.verbose?
-          return nil
-        end
+        return nil if redirect_url == return_url
-        Reputable.logger&.info("[Reputable] challenge: REDIRECTING #{@challenge_redirect_status} → #{redirect_url}") if Reputable.verbose?
+        Reputable.logger&.info("[Reputable] challenge: REDIRECTING #{@challenge_redirect_status} → #{redirect_url}")
         redirect_response(redirect_url, @challenge_redirect_status)
       when Proc
-        Reputable.logger&.info("[Reputable] challenge: calling custom proc") if Reputable.verbose?
         @challenge_action.call(env)
       else
         nil
@@ -353,27 +320,14 @@ module Reputable
     end
     def verified_session?(env)
-      if env["reputable.verified"]
-        Reputable.logger&.info("[Reputable] verified_session?: true (env flag set this request)") if Reputable.verbose?
-        return true
-      end
+      return true if env["reputable.verified"]
       session = env["rack.session"]
-      unless session
-        Reputable.logger&.info("[Reputable] verified_session?: false (no rack.session)") if Reputable.verbose?
-        return false
-      end
+      return false unless session
-      found = @verified_session_keys.any? do |key|
+      @verified_session_keys.any? do |key|
         session[key] || session[key.to_s]
       end
-      if Reputable.verbose?
-        keys_state = @verified_session_keys.map { |k| "#{k}=#{session[k] || session[k.to_s]}" }.join(" ")
-        Reputable.logger&.info("[Reputable] verified_session?: #{found} (#{keys_state})")
-      end
-      found
     rescue StandardError
       false
     end
@@ -496,27 +450,17 @@ module Reputable
         # X-Forwarded-For and Forwarded can contain multiple IPs
         if header == "HTTP_X_FORWARDED_FOR"
           ip = extract_from_xff(value)
-          if ip
-            Reputable.logger&.info("[Reputable] extract_ip: #{ip} (from #{header}: #{value})") if Reputable.verbose?
-            return ip
-          end
+          return ip if ip
         elsif header == "HTTP_FORWARDED"
           ip = extract_from_forwarded(value)
-          if ip
-            Reputable.logger&.info("[Reputable] extract_ip: #{ip} (from #{header}: #{value})") if Reputable.verbose?
-            return ip
-          end
+          return ip if ip
         else
           # Single IP headers
           ip = value.to_s.strip
-          unless ip.empty?
-            Reputable.logger&.info("[Reputable] extract_ip: #{ip} (from #{header})") if Reputable.verbose?
-            return ip
-          end
+          return ip unless ip.empty?
         end
       end
-      Reputable.logger&.info("[Reputable] extract_ip: 0.0.0.0 (no headers matched)") if Reputable.verbose?
       "0.0.0.0"
     rescue StandardError
       "0.0.0.0"

data/lib/reputable/reputation.rb CHANGED Viewed

@@ -133,21 +133,20 @@ module Reputable
         return nil unless valid_entity_type?(entity_type)
         key = "reputation:#{entity_type}:#{entity_id}"
-        Reputable.logger&.info("[Reputable] lookup: key=#{key}") if Reputable.verbose?
         data = Connection.safe_with(default: nil, context: "reputation_lookup") do |redis|
           redis.hgetall(key)
         end
         if data.nil? || data.empty?
-          Reputable.logger&.info("[Reputable] lookup: #{key} → (none)") if Reputable.verbose?
+          Reputable.logger&.debug("[Reputable] lookup: #{key} → (none)") if Reputable.verbose?
           return nil
         end
         # Check if expired (Redis TTL should handle this, but double-check)
         expires_at = data["expires_at"].to_i
         if expires_at > 0 && expires_at < (Time.now.to_f * 1000).to_i
-          Reputable.logger&.info("[Reputable] lookup: #{key} → expired (expires_at=#{expires_at})") if Reputable.verbose?
+          Reputable.logger&.debug("[Reputable] lookup: #{key} → expired") if Reputable.verbose?
           return nil
         end

data/lib/reputable/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Reputable
-  VERSION = "0.1.22"
+  VERSION = "0.1.23"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: reputable
 version: !ruby/object:Gem::Version
-  version: 0.1.22
+  version: 0.1.23
 platform: ruby
 authors:
 - Reputable
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2026-02-08 00:00:00.000000000 Z
+date: 2026-02-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: redis