RubyGems - riiif - Versions diffs - 0.2.4 → 0.3.0 - Mend

riiif 0.2.4 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +4 -4
data/README.md +19 -0
data/app/controllers/riiif/images_controller.rb +24 -9
data/app/models/riiif/image.rb +2 -1
data/lib/riiif/nil_authorization_service.rb +10 -0
data/lib/riiif/version.rb +1 -1
data/lib/riiif.rb +1 -0
data/spec/controllers/images_controller_spec.rb +46 -17
metadata +3 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d27a0256321086b2506eff19730afe79b72e198f
-  data.tar.gz: 7e4673c9759001f4176228c80d91c40f9afed2ca
+  metadata.gz: ba70ff2bc96642dfaef0a13aa368721e64d819b9
+  data.tar.gz: f2211f18a7da732e70f6151b907c6cbf66d2a88a
 SHA512:
-  metadata.gz: 5c38c62c7772d793ddc74250b89d98b8d694a09f871f77e848d7d26da24b02e3d34305cb9543f6c03b02facf11249229414ba28f359b01cef3972bc73c74587f
-  data.tar.gz: c1a52a6d8ace9585c4d4d267c175d7ab2a8ba227762860e627dc6ecd4cd2db047de4612a5f90b5d1696139a93bbec97276a1d5b5b9c807a3fa3b864415a7a5df
+  metadata.gz: a593880f25ace996a90457cf99aaba644fc4c4410622e4203f3e968609d598ffd1080b33698e45d9de3b9f63be76b836b89b12a236c49e5bfb9c231e2b8dcaeb
+  data.tar.gz: b560c0e4f6bb82d44c671f1c32a0ddf24eb6aeac633357aa9e0885886e247a6e987055c629b2ef618499c486f9c1c80d5c285bda00ee972a81a6070e66d1cdc5

data/README.md CHANGED Viewed

@@ -101,6 +101,25 @@ You can do this to create a default Riiif::Image to use (useful for passing "mis
 Riiif::Image.new('no_image', Riiif::File.new(Riiif.not_found_image))
 ```
+## Authorization
+The controller will call an authorization service with the controller context.  This service must have a method `can?(action, image)` which returns a boolean. The default service is the `RIIIF::NilAuthrorizationService` which permits all requests.
+In this example we've dissallowed all requests:
+```ruby
+class NoService
+  def initalize(controller)
+  end
+  def can?(action, image)
+    false
+  end
+end
+Riiif::Image.authorization_service = NoService
+```
 ## Integration with Hydra/Fedora
 Create an initializer like this in `config/initializers/riiif_initializer.rb`

data/app/controllers/riiif/images_controller.rb CHANGED Viewed

@@ -9,15 +9,17 @@ module Riiif
     def show
       begin
         image = model.new(image_id)
-        status = :ok
+        status = if authorization_service.can?(:show, image)
+                   :ok
+                 else
+                   :unauthorized
+                  end
       rescue ImageNotFoundError
-        if Riiif.not_found_image.present?
-          image = model.new(image_id, Riiif::File.new(Riiif.not_found_image))
-          status = :not_found
-        else
-          raise
-        end
+        status = :not_found
       end
+      image = not_found_image unless status == :ok
       data = image.render(params.permit(:region, :size, :rotation, :quality, :format))
       headers['Access-Control-Allow-Origin'] = '*'
       send_data data,
@@ -28,8 +30,12 @@ module Riiif
     def info
       image = model.new(image_id)
-      headers['Access-Control-Allow-Origin'] = '*'
-      render json: image.info.merge(server_info), content_type: 'application/ld+json'
+      if authorization_service.can?(:info, image)
+        headers['Access-Control-Allow-Origin'] = '*'
+        render json: image.info.merge(server_info), content_type: 'application/ld+json'
+      else
+        render json: { error: 'unauthorized' }, status: :unauthorized
+      end
     end
     # this is a workaround for https://github.com/rails/rails/issues/25087
@@ -50,10 +56,19 @@ module Riiif
       params[:id]
     end
+    def authorization_service
+      model.authorization_service.new(self)
+    end
     def link_header
       response.headers["Link"] = "<#{LEVEL1}>;rel=\"profile\""
     end
+    def not_found_image
+      raise "Not found image doesn't exist" unless Riiif.not_found_image
+      model.new(image_id, Riiif::File.new(Riiif.not_found_image))
+    end
     CONTEXT = '@context'
     CONTEXT_URI = 'http://iiif.io/api/image/2/context.json'
     ID = '@id'

data/app/models/riiif/image.rb CHANGED Viewed

@@ -2,8 +2,9 @@ require 'digest/md5'
 module Riiif
   class Image
-    class_attribute :file_resolver, :info_service
+    class_attribute :file_resolver, :info_service, :authorization_service
     self.file_resolver = FileSystemFileResolver.new
+    self.authorization_service = NilAuthorizationService
     # this is the default info service
     # returns a hash with the original image dimensions.

data/lib/riiif/nil_authorization_service.rb ADDED Viewed

@@ -0,0 +1,10 @@
+module Riiif
+  class NilAuthorizationService
+    def initialize(_controller)
+    end
+    def can?(_action, _object)
+      true
+    end
+  end
+end

data/lib/riiif/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Riiif
-  VERSION = "0.2.4"
+  VERSION = "0.3.0"
 end

data/lib/riiif.rb CHANGED Viewed

@@ -8,6 +8,7 @@ module Riiif
   autoload :HTTPFileResolver
   autoload :Routes
   autoload :AkubraSystemFileResolver
+  autoload :NilAuthorizationService
   class Error < RuntimeError; end
   class InvalidAttributeError < Error; end

data/spec/controllers/images_controller_spec.rb CHANGED Viewed

@@ -6,7 +6,7 @@ describe Riiif::ImagesController do
   routes { Riiif::Engine.routes }
   describe "#show" do
-    it "should send images to the service" do
+    it "sends images to the service" do
       image = double
       expect(Riiif::Image).to receive(:new).with('abcd1234').and_return(image)
       expect(image).to receive(:render).with("region" => 'full', "size" => 'full',
@@ -20,6 +20,21 @@ describe Riiif::ImagesController do
       expect(response.headers['Access-Control-Allow-Origin']).to eq '*'
     end
+    context "with an unauthorized image" do
+      let(:auth) { double("no auth service", can?: false) }
+      let(:not_found_image) { double("not_found_image", render: 'test data') }
+      before do
+        allow(controller).to receive(:authorization_service).and_return(auth)
+        allow(controller).to receive(:not_found_image).and_return(not_found_image)
+      end
+      it "renders 401" do
+        get :show, id: 'abcd1234', action: "show", region: 'full', size: 'full',
+                   rotation: '0', quality: 'default', format: 'jpg'
+        expect(response.body).to eq "test data"
+        expect(response.code).to eq "401"
+      end
+    end
     context "with a invalid region" do
       it "renders 400" do
         image = double("an image")
@@ -89,21 +104,35 @@ describe Riiif::ImagesController do
     end
   end
-  it "returns info" do
-    image = double
-    expect(Riiif::Image).to receive(:new).with('abcd1234').and_return(image)
-    expect(image).to receive(:info).and_return({width: 6000, height: 4000 })
-    get :info, id: 'abcd1234', format: 'json'
-    expect(response).to be_successful
-    json = JSON.parse(response.body)
-    expect(json).to eq "@context" => "http://iiif.io/api/image/2/context.json",
-      "@id" =>"http://test.host/images/abcd1234",
-      "width" =>6000,
-      "height" =>4000,
-      "profile" => ["http://iiif.io/api/image/2/level1.json", "formats" => ["jpg", "png"]],
-      'protocol' => 'http://iiif.io/api/image'
-    expect(response.headers['Link']).to eq '<http://iiif.io/api/image/2/level1.json>;rel="profile"'
-    expect(response.headers['Content-Type']).to eq 'application/ld+json; charset=utf-8'
-    expect(response.headers['Access-Control-Allow-Origin']).to eq '*'
+  describe "info" do
+    it "returns info" do
+      image = double
+      expect(Riiif::Image).to receive(:new).with('abcd1234').and_return(image)
+      expect(image).to receive(:info).and_return({width: 6000, height: 4000 })
+      get :info, id: 'abcd1234', format: 'json'
+      expect(response).to be_successful
+      json = JSON.parse(response.body)
+      expect(json).to eq "@context" => "http://iiif.io/api/image/2/context.json",
+        "@id" =>"http://test.host/images/abcd1234",
+        "width" =>6000,
+        "height" =>4000,
+        "profile" => ["http://iiif.io/api/image/2/level1.json", "formats" => ["jpg", "png"]],
+        'protocol' => 'http://iiif.io/api/image'
+      expect(response.headers['Link']).to eq '<http://iiif.io/api/image/2/level1.json>;rel="profile"'
+      expect(response.headers['Content-Type']).to eq 'application/ld+json; charset=utf-8'
+      expect(response.headers['Access-Control-Allow-Origin']).to eq '*'
+    end
+    context "with an unauthorized image" do
+      let(:auth) { double("no auth service", can?: false) }
+      before do
+        allow(controller).to receive(:authorization_service).and_return(auth)
+      end
+      it "renders 401" do
+        get :info, id: 'abcd1234', format: 'json'
+        expect(response.body).to eq "{\"error\":\"unauthorized\"}"
+        expect(response.code).to eq "401"
+      end
+    end
   end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: riiif
 version: !ruby/object:Gem::Version
-  version: 0.2.4
+  version: 0.3.0
 platform: ruby
 authors:
 - Justin Coyne
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-05-20 00:00:00.000000000 Z
+date: 2016-06-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -118,6 +118,7 @@ files:
 - lib/riiif/engine.rb
 - lib/riiif/file_system_file_resolver.rb
 - lib/riiif/http_file_resolver.rb
+- lib/riiif/nil_authorization_service.rb
 - lib/riiif/rails/routes.rb
 - lib/riiif/routes.rb
 - lib/riiif/version.rb