RubyGems - rughetto-merb-auth-remember-me - Versions diffs - 0.0.2 → 0.0.3 - Mend

rughetto-merb-auth-remember-me 0.0.2 → 0.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

data/TODO +1 -4
data/lib/merb-auth-remember-me.rb +19 -11
data/lib/merb-auth-remember-me/strategies/remember_me.rb +12 -56
metadata +4 -3

data/TODO CHANGED Viewed

@@ -1,5 +1,2 @@
 TODO:
-Fix LICENSE with your name
-Fix Rakefile with your name and contact info
-Add your code to lib/pn-remember-me.rb
-Add your Merb rake tasks to lib/pn-remember-me/merbtasks.rb
+make token refresh with each request ??

data/lib/merb-auth-remember-me.rb CHANGED Viewed

@@ -1,27 +1,35 @@
-# make sure we're running inside Merb
 if defined?(Merb::Plugins)
   $:.unshift File.dirname(__FILE__)
   # register the authentication strategy
   require(File.expand_path(File.dirname(__FILE__) / "merb-auth-remember-me" / "mixins") / "authenticated_user")
   strategy_path = File.expand_path(File.dirname(__FILE__)) / "merb-auth-remember-me" / "strategies"
+  Merb.logger.info('Registering and activating RememberMe strategy')
   Merb::Authentication.register(:remember_me, strategy_path / "remember_me.rb")
+  Merb::Authentication.activate!(:remember_me) # and activate it
   # Plugin configurations
-  Merb::Plugins.config[:merb_auth_remember_me] = { }
-  Merb::BootLoader.before_app_loads do
-  end
+  Merb::Plugins.config[:merb_auth_remember_me] = {:include_model_methods => true }
   Merb::BootLoader.after_app_loads do
     Merb::Authentication.after_authentication do |user,request,params|
       if params[:remember_me] == "1"
         user.remember_me
-        request.cookies.set_cookie(:auth_token, user.remember_token, :expires => user.remember_token_expires_at.to_time)
+        request.cookies.set_cookie(
+          :auth_token,
+          user.remember_token,
+          :expires => user.remember_token_expires_at.to_time
+        )
       end
       user
-    end
-  end
-end
+    end # Merb::Authentication.after_authentication
+    Merb::Authentication.user_class.class_eval do
+      if Merb::Plugins.config[:merb_auth_remember_me][:include_model_methods]
+        Merb.logger.info("Including RememberMe Mixin in #{Merb::Authentication.user_class}.
+        To avoid this inclusion add 'Merb::Plugins.config[:merb_auth_remember_me][:include_model_methods] = false' in your config/init.rb before_app_loads method")
+        include Merb::Authentication::Mixins::AuthenticatedUser
+      end
+    end # Merb::Authentication.user_class.class_eval
+  end # Merb::BootLoader.after_app_loads
+end # if defined?(Merb::Plugins)

data/lib/merb-auth-remember-me/strategies/remember_me.rb CHANGED Viewed

@@ -1,56 +1,12 @@
-class RememberMe < Merb::Authentication::Strategy
-  def run!
-    login_from_cookie
-  end
-  def current_user
-    @current_user
-  end
-  def current_user=(new_user)
-    @current_user = new_user
-  end
-  # Called from #current_user.  Finaly, attempt to login by an expiring token in the cookie.
-  # for the paranoid: we _should_ be storing user_token = hash(cookie_token, request IP)
-  def login_from_cookie
-    current_user = cookies[:auth_token] && Merb::Authentication.user_class.first(:conditions => ["remember_token = ?", cookies[:auth_token]])
-    if current_user && current_user.remember_token?
-      handle_remember_cookie! false # freshen cookie token (keeping date)
-      current_user
-    end
-  end
-  #
-  # Remember_me Tokens
-  #
-  # Cookies shouldn't be allowed to persist past their freshness date,
-  # and they should be changed at each login
-  # Cookies shouldn't be allowed to persist past their freshness date,
-  # and they should be changed at each login
-  def valid_remember_cookie?
-    return nil unless current_user
-    (current_user.remember_token?) &&
-      (cookies[:auth_token] == current_user.remember_token)
-  end
-  # Refresh the cookie auth token if it exists, create it otherwise
-  def handle_remember_cookie! new_cookie_flag
-    return unless current_user
-    case
-    when valid_remember_cookie? then current_user.refresh_token # keeping same expiry date
-    when new_cookie_flag        then current_user.remember_me
-    else                             current_user.forget_me
-    end
-    send_remember_cookie!
-  end
-  def send_remember_cookie!
-    cookies.set_cookie(:auth_token, current_user.remember_token, :expires => current_user.remember_token_expires_at.to_time)
-  end
-end
+module Merb::Authentication::Strategies
+  class RememberMeStrategy < Merb::Authentication::Strategy
+    def run!
+      if cookies[:auth_token]
+        user = Merb::Authentication.user_class.first(
+          :conditions => [ "remember_token = ?", cookies[:auth_token] ]
+        )
+      end
+      user && user.remembered? ? user : nil
+    end # run!
+  end # RememberMeStrategy
+end # Merb::Authentication::Strategies

metadata CHANGED Viewed

@@ -1,10 +1,11 @@
 --- !ruby/object:Gem::Specification
 name: rughetto-merb-auth-remember-me
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.3
 platform: ruby
 authors:
 - Surasit Liangpornrattana
+- Rue the Ghetto
 autorequire:
 bindir: bin
 cert_chain: []
@@ -23,7 +24,7 @@ dependencies:
         version: "1.0"
     version:
 description: Merb plugin that provides remember me for merb-auth-slice-password
-email: punneng@gmail.com
+email: ru_ghetto@rubyghetto.com
 executables: []
 extensions: []
@@ -55,7 +56,7 @@ files:
 - spec/strategies
 - spec/strategies/remember_me_spec.rb
 has_rdoc: true
-homepage: https://github.com/PunNeng/pn-merb-auth-remember-me
+homepage: https://github.com/rughetto/merb-auth-remember-me
 post_install_message:
 rdoc_options: []