RubyGems - securial - Versions diffs - 0.8.1 → 1.0.1 - Mend

securial 0.8.1 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (48) hide show

checksums.yaml +4 -4
data/README.md +14 -16
data/app/controllers/concerns/securial/identity.rb +18 -9
data/app/controllers/securial/status_controller.rb +2 -0
data/app/controllers/securial/users_controller.rb +1 -1
data/app/views/securial/status/show.json.jbuilder +1 -1
data/bin/securial +5 -54
data/db/migrate/20250606182648_seed_roles_and_users.rb +69 -0
data/lib/generators/securial/install/install_generator.rb +2 -2
data/lib/generators/securial/install/templates/securial_initializer.erb +115 -18
data/lib/generators/securial/install/views_generator.rb +2 -1
data/lib/generators/securial/jbuilder/jbuilder_generator.rb +2 -0
data/lib/generators/securial/scaffold/scaffold_generator.rb +2 -0
data/lib/securial/auth/auth_encoder.rb +3 -3
data/lib/securial/auth/session_creator.rb +1 -1
data/lib/securial/auth/token_generator.rb +13 -13
data/lib/securial/cli.rb +158 -0
data/lib/securial/config/configuration.rb +3 -53
data/lib/securial/config/signature.rb +107 -0
data/lib/securial/config/validation.rb +59 -16
data/lib/securial/config.rb +17 -16
data/lib/securial/engine.rb +2 -0
data/lib/securial/engine_initializers.rb +21 -2
data/lib/securial/error/base_securial_error.rb +5 -3
data/lib/securial/error/config.rb +0 -28
data/lib/securial/helpers/key_transformer.rb +33 -0
data/lib/securial/helpers/normalizing_helper.rb +1 -1
data/lib/securial/helpers/regex_helper.rb +6 -7
data/lib/securial/helpers/roles_helper.rb +6 -7
data/lib/securial/helpers.rb +1 -0
data/lib/securial/logger.rb +7 -8
data/lib/securial/middleware/response_headers.rb +19 -0
data/lib/securial/middleware/transform_request_keys.rb +35 -0
data/lib/securial/middleware/transform_response_keys.rb +47 -0
data/lib/securial/middleware.rb +3 -0
data/lib/securial/security/request_rate_limiter.rb +45 -0
data/lib/securial/security.rb +8 -0
data/lib/securial/version.rb +1 -1
data/lib/securial.rb +4 -4
data/lib/tasks/securial_routes.rake +26 -0
metadata +47 -19
data/lib/securial/config/validation/logger_validation.rb +0 -29
data/lib/securial/config/validation/mailer_validation.rb +0 -24
data/lib/securial/config/validation/password_validation.rb +0 -91
data/lib/securial/config/validation/response_validation.rb +0 -37
data/lib/securial/config/validation/roles_validation.rb +0 -32
data/lib/securial/config/validation/security_validation.rb +0 -56
data/lib/securial/config/validation/session_validation.rb +0 -87

data/lib/securial/config/validation/session_validation.rb DELETED Viewed

@@ -1,87 +0,0 @@
-require "securial/error"
-module Securial
-  module Config
-    module Validation
-      module SessionValidation
-        class << self
-          VALID_SESSION_ENCRYPTION_ALGORITHMS = %i[hs256 hs384 hs512].freeze
-          def validate!(securial_config)
-            validate_session_expiry_duration!(securial_config)
-            validate_session_algorithm!(securial_config)
-            validate_session_secret!(securial_config)
-            validate_session_refresh_token!(securial_config)
-          end
-          private
-          def validate_session_expiry_duration!(securial_config)
-            if securial_config.session_expiration_duration.nil?
-              error_message = "Session expiration duration is not set."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            if securial_config.session_expiration_duration.class != ActiveSupport::Duration
-              error_message = "Session expiration duration must be an ActiveSupport::Duration."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            if securial_config.session_expiration_duration <= 0
-              Securial.logger.fatal("Session expiration duration must be greater than 0.")
-              raise Securial::Error::Config::SessionValidationError, "Session expiration duration must be greater than 0."
-            end
-          end
-          def validate_session_algorithm!(securial_config)
-            if securial_config.session_algorithm.blank?
-              error_message = "Session algorithm is not set."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            unless securial_config.session_algorithm.is_a?(Symbol)
-              error_message = "Session algorithm must be a Symbol."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            unless VALID_SESSION_ENCRYPTION_ALGORITHMS.include?(securial_config.session_algorithm)
-              error_message = "Invalid session algorithm. Valid options are: #{VALID_SESSION_ENCRYPTION_ALGORITHMS.map(&:inspect).join(', ')}."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-          end
-          def validate_session_secret!(securial_config)
-            if securial_config.session_secret.blank?
-              error_message = "Session secret is not set."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            unless securial_config.session_secret.is_a?(String)
-              error_message = "Session secret must be a String."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-          end
-          def validate_session_refresh_token!(securial_config)
-            if securial_config.session_refresh_token_expires_in.nil?
-              error_message = "Session refresh token expiration duration is not set."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            if securial_config.session_refresh_token_expires_in.class != ActiveSupport::Duration
-              error_message = "Session refresh token expiration duration must be an ActiveSupport::Duration."
-              Securial.logger.fatal(error_message)
-              raise Securial::Error::Config::SessionValidationError, error_message
-            end
-            if securial_config.session_refresh_token_expires_in <= 0
-              Securial.logger.fatal("Session refresh token expiration duration must be greater than 0.")
-              raise Securial::Error::Config::SessionValidationError, "Session refresh token expiration duration must be greater than 0."
-            end
-          end
-        end
-      end
-    end
-  end
-end