self-auth-rails 0.1.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: f7bf53acb259dc5c315fcf6222d30d099a3c95ada6b9bacb5d51554d8dc6ec08
+  data.tar.gz: 7d0fb909e65049f4f3ae8a16ccb15d0f82510a8d1f03bab09b84b4187aad37b2
+SHA512:
+  metadata.gz: 51c1afac76389b629e41e293dd2e1d21826e3629602b3f7a770073a1731168cec1ccec7a66cdcf1a5c61c8d87b8772b9ee28302b6b3296cd92ad2fbe2c1ed477
+  data.tar.gz: 10e87468d332a8106727f5ecb2c75eab382163df0fbe5468d91dbc11e3a69fcb2fd4e7befdd01a089c8dae1024ef3183b79ceb1a1e295f457ee075e8dde0e61c

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2022 Self Group Ltd.
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,68 @@
+# self-auth-rails
+
+self-auth-rails is rails engine to easily integrate [Self Authentication](https://docs.joinself.com/authentication/) on your authentication workflow.
+
+## Usage
+How to use my plugin.
+
+## Getting started
+### Installation
+Add this line to your application's Gemfile:
+
+```ruby
+gem "self-auth-rails"
+```
+
+And then execute:
+```bash
+$ bundle install
+```
+
+### Set up
+
+For your convenience `self-auth-rails` comes with a script to automatically set up the initializers and mounting routes on your system.
+
+```
+$ rake self_auth_rails:init
+```
+
+This command will
+- [x] Generate necessary migrations
+- [x] Create initializers (config/initializers/self_auth_rails.rb)
+- [x] Mount the engine on your routes (config/routes.rb)
+
+Once that's done you'll need to: 
+
+- [ ] run the created migrations with `bin/rails db:migrate` 
+- [ ] setup the environment variables required on `config/initializers/self_auth_rails.rb`
+- [ ] protect the resources you want to hide from the public
+
+### Protecting routes
+
+You can fully protect your app by adding a controller filter to your `app/controllers/application.rb`, or specifying it only for the routes you want to be protected.
+```
+class ApplicationController < ActionController::Base
+    before_action :authenticate_user!
+end
+```
+
+### Running it
+
+That's it, as soon as you have the SELF required environment variables in place, you'll be able to see the authentication screen when you visit http://localhost:3000.
+
+
+### Notes
+#### Action cable
+By default action cable relies on redis to work on development, if you're just testing this gem, you can switch it to `async` on `config/cable.yml`
+```
+development:
+  adapter: async
+
+#...
+```
+
+## Contributing
+Bug reports and pull requests are welcome on GitHub at https://github.com/joinself/self-auth-rails.
+
+## License
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,8 @@
+require "bundler/setup"
+
+APP_RAKEFILE = File.expand_path("test/dummy/Rakefile", __dir__)
+load "rails/tasks/engine.rake"
+
+load "rails/tasks/statistics.rake"
+
+require "bundler/gem_tasks"

data/app/assets/config/self-auth-rails/app.js

@@ -0,0 +1,89 @@
+/* Initialize app when page loads */
+$(function(){ 
+    var Messages = App.cable.subscriptions.create({
+      channel:'MessagesChannel',
+      conversation_id: connectionID()
+    }, {
+      received: function(data) {
+          console.log(data);
+        if(data.type == "info") {
+            if(data.status == "completed") {
+                console.log("info request");
+                window.location.replace("/");
+            } else {
+                message = "Fact request has been rejected"
+                if(data.status == "errored") {
+                    message = data.message
+                }
+                // TODO: this id no longer exists...
+                $('#info_messages').append("<div class='alert alert-danger'><button type='button' class='close' data-dismiss='alert' aria-hidden='true'>&times;</button>'+message+'</div>");
+            }
+        } else {
+            $("#messages").removeClass('hidden');
+            if(data.status == "accepted") {
+              // Just display the 
+              $('#process').removeClass("hidden");
+              $('#non-dl-container').addClass("hidden");
+              $('#dl-container').addClass("hidden");
+
+                // Login request accepted
+              $("#req-auth .activity-icon").addClass("bg-success")
+              $("#req-auth .activity-icon").addClass("shadow-success")
+              $("#req-auth .activity-icon").removeClass("bg-info")
+              $("#req-auth .activity-icon").removeClass("shadow-info")
+
+              $("#req-info .activity-icon").removeClass("bg-secondary")
+              $("#req-info .activity-icon").removeClass("shadow-secondary")
+              $("#req-info .activity-icon").addClass("bg-info")
+              $("#req-info .activity-icon").addClass("shadow-info")
+
+              $("#req-auth .waiting").addClass("hidden")
+              $("#req-auth .passed").removeClass("hidden")
+              $("#req-info .waiting").removeClass("hidden")
+
+            } else if(data.status == "completed") {
+              $("#auth-ok").hide()
+
+              $("#req-info .activity-icon").addClass("bg-success")
+              $("#req-info .activity-icon").addClass("shadow-success")
+              $("#req-info .activity-icon").removeClass("bg-info")
+              $("#req-info .activity-icon").removeClass("shadow-info")
+
+              $("#req-info .waiting").addClass("hidden")
+              $("#req-info .passed").removeClass("hidden")
+              $(".logging-in").removeClass("hidden")
+              $(".btn-cancel").addClass("hidden")
+
+              setTimeout(() => {
+                // Fetched user information
+                $("#login-token")[0].value = data.token;
+                $("#form-login").off("submit")
+                $("#form-login")[0].submit();
+              }, 2000);
+  
+            } else {
+
+              message = "Login request has been rejected"
+              if(data.status == "errored") {
+                message = data.message
+              }
+              $('#messages').append(`<div class="alert alert-warning alert-dismissible show fade"><div class="alert-body"><button class="close" data-dismiss="alert"><span>×</span></button>${message}</div></div>`);
+
+              $('#messages').show();
+              $('#process').addClass("hidden");
+              $('#non-dl-container').removeClass("hidden");
+
+              $("#req-auth .activity-icon").addClass("bg-info")
+              $("#req-auth .activity-icon").addClass("shadow-info")
+              $("#req-auth .activity-icon").removeClass("bg-success")
+              $("#req-auth .activity-icon").removeClass("shadow-success")
+
+              $("#req-info .activity-icon").removeClass("bg-info")
+              $("#req-info .activity-icon").removeClass("shadow-info")
+              $("#req-info .activity-icon").addClass("bg-secondary")
+              $("#req-info .activity-icon").addClass("shadow-secondary")
+            }
+        }
+      }
+    });    
+ });

data/app/assets/config/self-auth-rails/cable.js

@@ -0,0 +1,14 @@
+// Action Cable provides the framework to deal with WebSockets in Rails.
+// You can generate new channels where WebSocket features live using the `rails generate channel` command.
+//
+//= require actioncable
+//= require_self
+//= require_tree ./channels
+
+(function() {
+    this.App || (this.App = {});
+  
+    App.cable = ActionCable.createConsumer();
+  
+  }).call(this);
+  

data/app/assets/config/self-auth-rails/channels/auth.js

@@ -0,0 +1,7 @@
+//= require self-auth-rails/cable
+//= require_self
+//= require_tree .
+
+this.App = {};
+
+App.cable = ActionCable.createConsumer();

data/app/assets/config/self-auth-rails/channels/messages_channel.js

@@ -0,0 +1,150 @@
+function uuidv4() {
+    return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, function(c) {
+      var r = Math.random() * 16 | 0, v = c == 'x' ? r : (r & 0x3 | 0x8);
+      return v.toString(16);
+    });
+  }
+  
+  function connectionID() {
+    c = Cookies.get("auth-sess")
+    if(c == undefined) {
+      Cookies.set('auth-sess', uuidv4());
+    }
+    return Cookies.get("auth-sess");
+  }
+  
+  function displayQR() {
+    updateQR();
+    $('#qr-container').show();
+    $('#page-wrapper').addClass('page-loading');
+    window.qrInterval = window.setInterval(function(){
+      if($('#qr').length) {
+        updateQR();
+      }
+    }, 30000);
+  }
+  
+  function hideQR() {
+    location.reload();
+  }
+  
+  function updateQR() {
+      if($("#qr_url").length) {
+          $("#qr")[0].setAttribute("src", $("#qr_url")[0].value + "?uuid=" + connectionID());
+      }
+  }
+  
+  function updateDL() {
+      if($("#dl_url").length) {
+          if (/(android|bb\d+|meego).+mobile|avantgo|bada\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|ipad|iris|kindle|Android|Silk|lge |maemo|midp|mmp|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\.(browser|link)|vodafone|wap|windows (ce|phone)|xda|xiino/i.test(navigator.userAgent)
+              || /1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\-(n|u)|c55\/|capi|ccwa|cdm\-|cell|chtm|cldc|cmd\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\-s|devi|dica|dmob|do(c|p)o|ds(12|\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\-|_)|g1 u|g560|gene|gf\-5|g\-mo|go(\.w|od)|gr(ad|un)|haie|hcit|hd\-(m|p|t)|hei\-|hi(pt|ta)|hp( i|ip)|hs\-c|ht(c(\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\-(20|go|ma)|i230|iac( |\-|\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\/)|klon|kpt |kwc\-|kyo(c|k)|le(no|xi)|lg( g|\/(k|l|u)|50|54|\-[a-w])|libw|lynx|m1\-w|m3ga|m50\/|ma(te|ui|xo)|mc(01|21|ca)|m\-cr|me(rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\-2|po(ck|rt|se)|prox|psio|pt\-g|qa\-a|qc(07|12|21|32|60|\-[2-7]|i\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\-|oo|p\-)|sdk\/|se(c(\-|0|1)|47|mc|nd|ri)|sgh\-|shar|sie(\-|m)|sk\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\-|v\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\-|tdg\-|tel(i|m)|tim\-|t\-mo|to(pl|sh)|ts(70|m\-|m3|m5)|tx\-9|up(\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\-|your|zeto|zte\-/i.test(navigator.userAgent.substr(0, 4))) {
+              $("#dl-container").removeClass("hidden");
+              $("#non-dl-container").addClass("hidden");
+  
+              $.getJSON($("#dl_url")[0].value + "?uuid=" + connectionID(), function (data) {
+                  $("#dl").attr("href", data["url"]);
+  
+                  $('#dl').unbind('click');
+                  $('#dl').bind("click", function (e) {
+                      $('#page-wrapper').addClass('page-loading');
+                      if($("#profile_request").length) {
+                          hasProfile();
+                      }
+                  });
+              });
+          }
+      }
+  }
+  
+  function hasProfile() {
+      $.ajax({
+          type: "GET",
+          contentType: "application/json",
+          url: "/session/has_profile",
+          dataType: 'json',
+          timeout: 600000,
+          success: function (data) {
+              window.location.replace("/");
+          },
+          error: function (e) {
+              setTimeout(function(){ hasProfile(); }, 2000);
+          }
+      });
+  }
+  
+  ready = function() {
+      
+      if($("#qr-container")){
+        displayQR();
+      }
+      if($("#dl-container")) {
+        updateDL();
+      }
+  
+      $("#switch-not-dl").bind("click", function(e){
+          $("#dl-container").addClass("hidden");
+          $("#non-dl-container").removeClass("hidden");
+          $("#selfid-field").focus();
+          $("#qr").width($(".qr-wrapper").width());
+          $("#qr").height($(".qr-wrapper").width());
+      });
+  
+      $("#profile_request").bind("click", function (e) {
+          e.preventDefault(e);
+          $("#profile_help_block").show();
+          console.log("sending ajax request")
+          $.ajax({
+              type: "POST",
+              contentType: "application/json",
+              url: "/profile/fetch",
+              dataType: 'json',
+              data: '{"user":{"connection_id":"'+connectionID()+'"}}',
+              beforeSend: $.rails.CSRFProtection,
+              timeout: 600000,
+              success: function (data) {
+              },
+              error: function (e) {
+                  if(e.status == 502) {
+                      $('#info_messages').append("<div class='alert alert-danger'><button type='button' class='close' data-dismiss='alert' aria-hidden='true'>&times;</button>Request timed out, try again later</div>");
+                  } else {
+                      $('#info_messages').append("<div class='alert alert-danger'><button type='button' class='close' data-dismiss='alert' aria-hidden='true'>&times;</button>"+e.responseJSON.error+"</div>");
+                  }
+                  $("#profile_help_block").hide();
+              }
+          });
+  
+      });
+  
+    $('#form-login').bind("submit", function(e){
+      e.preventDefault();
+      var val = $('#selfid-field')[0].value
+      if(val == null) {
+          return;
+      }
+      if (val.length != 11) {
+        $('#selfid-field').addClass("is-invalid")
+        return;
+      }
+      $('#selfid-field').removeClass("is-invalid")
+      $('#page-wrapper').addClass('page-loading');
+      $(this).blur();
+  
+      //do some verification
+      $("#connection_id")[0].value = connectionID();
+      $("#process").removeClass("hidden");
+      $('#non-dl-container').addClass("hidden");
+      
+      $.ajax({
+        type: 'POST',
+        url: $(this).context.action,
+        data: $(this).serialize()
+      });
+    });
+  
+  };
+  
+$(function () {
+    updateQR()
+})
+
+  

data/app/assets/config/self-auth-rails/cookies.js

@@ -0,0 +1,2 @@
+/*! js-cookie v2.1.4 | MIT */
+!function(a){var b=!1;if("function"==typeof define&&define.amd&&(define(a),b=!0),"object"==typeof exports&&(module.exports=a(),b=!0),!b){var c=window.Cookies,d=window.Cookies=a();d.noConflict=function(){return window.Cookies=c,d}}}(function(){function a(){for(var a=0,b={};a<arguments.length;a++){var c=arguments[a];for(var d in c)b[d]=c[d]}return b}function b(c){function d(b,e,f){var g;if("undefined"!=typeof document){if(arguments.length>1){if(f=a({path:"/"},d.defaults,f),"number"==typeof f.expires){var h=new Date;h.setMilliseconds(h.getMilliseconds()+864e5*f.expires),f.expires=h}f.expires=f.expires?f.expires.toUTCString():"";try{g=JSON.stringify(e),/^[\{\[]/.test(g)&&(e=g)}catch(p){}e=c.write?c.write(e,b):encodeURIComponent(e+"").replace(/%(23|24|26|2B|3A|3C|3E|3D|2F|3F|40|5B|5D|5E|60|7B|7D|7C)/g,decodeURIComponent),b=encodeURIComponent(b+""),b=b.replace(/%(23|24|26|2B|5E|60|7C)/g,decodeURIComponent),b=b.replace(/[\(\)]/g,escape);var i="";for(var j in f)f[j]&&(i+="; "+j,!0!==f[j]&&(i+="="+f[j]));return document.cookie=b+"="+e+i}b||(g={});for(var k=document.cookie?document.cookie.split("; "):[],l=0;l<k.length;l++){var m=k[l].split("="),n=m.slice(1).join("=");'"'===n.charAt(0)&&(n=n.slice(1,-1));try{var o=m[0].replace(/(%[0-9A-Z]{2})+/g,decodeURIComponent);if(n=c.read?c.read(n,o):c(n,o)||n.replace(/(%[0-9A-Z]{2})+/g,decodeURIComponent),this.json)try{n=JSON.parse(n)}catch(p){}if(b===o){g=n;break}b||(g[o]=n)}catch(p){}}return g}}return d.set=d,d.get=function(a){return d.call(d,a)},d.getJSON=function(){return d.apply({json:!0},[].slice.call(arguments))},d.defaults={},d.remove=function(b,c){d(b,"",a(c,{expires:-1}))},d.withConverter=b,d}return b(function(){})});

data/app/assets/config/self-auth-rails/ki.js

@@ -0,0 +1,8 @@
+/*!
+ * ki.js v1.1.0 - 2015-10-06
+ * Copyright (c) 2015 Denis Ciccale (@tdecs)
+ * Released under MIT license
+ */
+!function(a,b,c,d){function e(c){b.push.apply(this,c&&c.nodeType?[c]:""+c===c?a.querySelectorAll(c):d)}$=function(b){return/^f/.test(typeof b)?/c/.test(a.readyState)?b():$(a).on("DOMContentLoaded",b):new e(b)},$[c]=e[c]=$.fn=e.fn={length:0,on:function(a,b){return this.each(function(c){c.addEventListener(a,b)})},off:function(a,b){return this.each(function(c){c.removeEventListener(a,b)})},each:function(a,c){return b.forEach.call(this,a,c),this},splice:b.splice}}(document,[],"prototype");
+
+!function(){$.each=function(a,b){for(var c=0,d=a.length;d>c;++c)b.call(a[c],c,a[c]);return this};var a=["addClass","removeClass","toggleClass"],b=["add","remove","toggle"];a.forEach(function(a,c){$.prototype[a]=function(a){return this.each(function(d){d.classList[b[c]](a)})}}),$.prototype.hasClass=function(a){return this[0].classList.contains(a)},$.prototype.append=function(a){return this.each(function(b){b.appendChild(a[0])})},$.prototype.prepend=function(a){return this.each(function(b){b.insertBefore(a[0],b.firstChild)})},$.prototype.hide=function(){return this.each(function(a){a.style.display="none"})},$.prototype.show=function(){return this.each(function(a){a.style.display=""})},$.prototype.attr=function(a,b){return b===[]._?this[0].getAttribute(a):this.each(function(c){c.setAttribute(a,b)})},$.prototype.removeAttr=function(a){return this.each(function(b){b.removeAttribute(a)})},$.prototype.hasAttr=function(a){return this[0].hasAttribute(a)},$.prototype.before=function(a){return this.each(function(b){b.insertAdjacentHTML("beforebegin",a)})},$.prototype.after=function(a){return this.each(function(b){b.insertAdjacentHTML("afterend",a)})},$.prototype.css=function(a,b){if("object"==typeof a){for(var c in a)this.each(function(b){b.style[c]=a[c]});return this}return b===[]._?this[0].style[a]:this.each(function(c){c.style[a]=b})},$.prototype.first=function(){return $(this[0])},$.prototype.last=function(){return $(this[this.length-1])},$.prototype.get=function(a){return $(this[a])},$.prototype.text=function(a){return a===[]._?this[0].textContent:this.each(function(b){b.textContent=a})},$.prototype.html=function(a){return a===[]._?this[0].innerHTML:this.each(function(b){b.innerHTML=a})},$.prototype.parent=function(){return this.length<2?$(this[0].parentNode):[]},$.prototype.remove=function(){return this.each(function(a){a.parentNode.removeChild(a)})},$.trim=function(a){return a.replace(/^\s+|\s+$/g,"")},$.prototype.trigger=function(a){if(document.createEvent){var b=document.createEvent("HTMLEvents");b.initEvent(a,!0,!1),this.each(function(a){a.dispatchEvent(b)})}else this.each(function(b){b.fireEvent("on"+a)})},$.prototype.is=function(a){var b=this[0].matches||this[0].matchesSelector||this[0].msMatchesSelector||this[0].mozMatchesSelector||this[0].webkitMatchesSelector||this[0].oMatchesSelector;if(b)return b.call(this[0],a);for(var c=this[0].parentNode.querySelectorAll(a),d=c.length;d--;)if(c[d]===this[0])return!0;return!1},"filter map".split(" ").forEach(function(a){$[a]=function(b,c){return b[a](c)}}),$.stop=function(a){a.preventDefault?a.preventDefault():a.returnValue=!1},$.param=function(a,b){var c=[];for(var d in a){var e=b?b+"["+d+"]":d,f=a[d];c.push("object"==typeof f?$.param(f,e):encodeURIComponent(e)+"="+encodeURIComponent(f))}return c.join("&")},$.ajax=function(a,b,c){var d=new XMLHttpRequest,e=new $.Deferred,f="object"==typeof b?1:0,g=["GET","POST"];d.open(g[f],a,!0);var h=f?c:b;return"undefined"==typeof c&&"function"!=typeof b&&(h=function(){}),d.onerror=function(){e.reject(this),h(this,!0)},d.onreadystatechange=function(){4===this.readyState&&(this.status>=200&&this.status<400?(e.resolve(this.response),h(this.response,!0)):(e.reject(this),h(this,!0)))},f?(d.setRequestHeader("Content-type","application/x-www-form-urlencoded"),d.send($.param(b))):d.send(),d=null,e.promise()},function(a){function b(a){return"[object Array]"===Object.prototype.toString.call(a)}function c(a,c){if(b(a))for(var d=0;d<a.length;d++)c(a[d]);else c(a)}function d(a){var e="pending",f=[],g=[],h=[],i=[],j={done:function(){for(var a=0;a<arguments.length;a++)if(arguments[a])if(b(arguments[a]))for(var c=arguments[a],d=0;d<c.length;d++)"resolved"===e&&c[d].apply(this,i),f.push(c[d]);else"resolved"===e&&arguments[a].apply(this,i),f.push(arguments[a]);return this},fail:function(){for(var a=0;a<arguments.length;a++)if(arguments[a])if(b(arguments[a]))for(var c=arguments[a],d=0;d<c.length;d++)"rejected"===e&&c[d].apply(this,i),g.push(c[d]);else"rejected"===e&&arguments[a].apply(this,i),g.push(arguments[a]);return this},always:function(){return this.done.apply(this,arguments).fail.apply(this,arguments)},progress:function(){for(var a=0;a<arguments.length;a++)if(arguments[a])if(b(arguments[a]))for(var c=arguments[a],d=0;d<c.length;d++)"pending"===e&&h.push(c[d]);else"pending"===e&&h.push(arguments[a]);return this},then:function(){arguments.length>1&&arguments[1]&&this.fail(arguments[1]),arguments.length>0&&arguments[0]&&this.done(arguments[0]),arguments.length>2&&arguments[2]&&this.progress(arguments[2])},promise:function(a){if("undefined"==typeof a)return j;for(var b in j)a[b]=j[b];return a},state:function(){return e},debug:function(){console.log("[debug]",f,g,e)},isRejected:function(){return"rejected"===e},isResolved:function(){return"resolved"===e},pipe:function(a,b,e){return d(function(d){c(a,function(a){"function"==typeof a?k.done(function(){var b=a.apply(this,arguments);b&&"function"==typeof b?b.promise().then(d.resolve,d.reject,d.notify):d.resolve(b)}):k.done(d.resolve)}),c(b,function(a){"function"==typeof a?k.fail(function(){var b=a.apply(this,arguments);b&&"function"==typeof b?b.promise().then(d.resolve,d.reject,d.notify):d.reject(b)}):k.fail(d.reject)})}).promise()}},k={resolveWith:function(a){if("pending"===e){e="resolved";for(var b=i=arguments.length>1?arguments[1]:[],c=0;c<f.length;c++)f[c].apply(a,b)}return this},rejectWith:function(a){if("pending"===e){e="rejected";for(var b=i=arguments.length>1?arguments[1]:[],c=0;c<g.length;c++)g[c].apply(a,b)}return this},notifyWith:function(a){if("pending"===e)for(var b=i=arguments.length>1?arguments[1]:[],c=0;c<h.length;c++)h[c].apply(a,b);return this},resolve:function(){return this.resolveWith(this,arguments)},reject:function(){return this.rejectWith(this,arguments)},notify:function(){return this.notifyWith(this,arguments)}},l=j.promise(k);return a&&a.apply(l,[l]),l}var e=function(){if(arguments.length<2){var a=arguments.length?arguments[0]:void 0;return a&&"function"==typeof a.isResolved&&"function"==typeof a.isRejected?a.promise():d().resolve(a).promise()}return function(a){for(var b=d(),c=a.length,e=0,f=new Array(c),g=0;g<a.length;g++)!function(d){var g=null;a[d].done?a[d].done(function(){f[d]=arguments.length<2?arguments[0]:arguments,++e==c&&b.resolve.apply(b,f)}).fail(function(){b.reject(arguments)}):(g=a[d],a[d]=new Deferred,a[d].done(function(){f[d]=arguments.length<2?arguments[0]:arguments,++e==c&&b.resolve.apply(b,f)}).fail(function(){b.reject(arguments)}).resolve(g))}(g);return b.promise()}(arguments)};a.Deferred=d,a.when=d.when=e}($)}();

data/app/assets/config/self-auth-rails/manifest.js

@@ -0,0 +1,8 @@
+ //= link self-auth-rails/application.css
+
+//= require ./ki.js
+//= require ./cookies.js
+//= require ./cable.js
+//= require ./app.js
+//= require_tree .
+

data/app/assets/stylesheets/self-auth-rails/application.css

@@ -0,0 +1,27 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS
+ * files in this directory. Styles in this file should be added after the last require_* statement.
+ * It is generally better to create a new file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */
+
+ #auth-ok {
+    position: absolute;
+    padding-left: 190px;
+    padding-top: 110px;
+    font-size: 100px;
+    display: none;
+}
+
+div.hidden {
+    display: none;
+}

data/app/channels/application_cable/channel.rb

@@ -0,0 +1,4 @@
+module ApplicationCable
+  class Channel < ActionCable::Channel::Base
+  end
+end

data/app/channels/application_cable/connection.rb

@@ -0,0 +1,15 @@
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    identified_by :current_user
+
+    def connect
+      self.current_user = find_verified_user
+    end
+
+    protected
+
+    def find_verified_user
+      SecureRandom.urlsafe_base64
+    end
+  end
+end

data/app/channels/messages_channel.rb

@@ -0,0 +1,9 @@
+class MessagesChannel < ApplicationCable::Channel
+  def subscribed
+    stream_from "conversation_#{params['conversation_id']}_channel"
+  end
+
+  def unsubscribed
+    # Any cleanup needed when channel is unsubscribed
+  end
+end

data/app/controllers/self_auth_rails/application_controller.rb

@@ -0,0 +1,4 @@
+module SelfAuthRails
+  class ApplicationController < ::ApplicationController
+  end
+end

data/app/controllers/self_auth_rails/sessions_controller.rb

@@ -0,0 +1,90 @@
+module SelfAuthRails
+  class SessionsController < ::ApplicationController
+    def new; end
+
+    # Authenticates a user with the given token
+    def create
+      if session_params[:token].empty? # AJAX request
+        SelfAuthRails.self_client.facts.request(session_params[:selfid],
+                                        [:display_name],
+                                        auth: true,
+                                        cid: session_params[:connection_id],
+                                        async: true)
+
+        request.format = :json
+        respond_to do |format|
+          format.json { head :no_content }
+        end
+      else # Form submission
+        reset_user_token(session_params[:token])
+        respond_to do |format|
+          format.html { redirect_to SelfAuthRails.authenticated_path, notice: 'Welcome.' }
+        end
+      end
+    end
+
+    # Logs out the current user.
+    def logout
+      session[:user_id] = nil
+
+      respond_to do |format|
+        format.html { redirect_to new_url }
+        format.json { head :no_content }
+      end
+    end
+
+    # Generates a QR code for authenticating users.
+    def qr
+      if Rails.env.test?
+        send_data("test")
+      else
+        uuid = "qr::#{params[:uuid]}"
+
+        img = ::SelfClient.authentication.generate_qr(
+          facts: SelfAuthRails.auth_facts,
+          cid: uuid,
+          exp_timeout: 86_400
+        )
+
+        send_data(img.as_png(border: 0, size: 400),
+                  type: 'image/png',
+                  disposition: 'inline')
+      end
+    end
+
+    # Generates a dynamic link to authenticate users.
+    def dl
+      link = '#'
+      unless Rails.env.test?
+        uuid = "dl::#{params[:uuid]}"
+        link = SelfAuthRails.self_client.facts.generate_deep_link(SelfAuthRails.auth_facts,
+                                                                  SelfAuthRails.authenticated_path,
+                                                                  cid: uuid,
+                                                                  auth: true)
+      end
+      render json: { url: link }
+    end
+
+    protected
+
+    # Never trust parameters from the scary internet, only allow the white list through.
+    def session_params
+      params.permit(:selfid, :token, :connection_id, :qr_url, :dl_url, :authenticity_token)
+    end
+
+    def auto_join_authenticated_users
+      redirect_to SelfAuthRails.authenticated_path unless session[:user_id].nil?
+    end
+
+    def reset_user_token(token)
+      @user = SelfAuthRails.session_class.find_by(token: token)
+      if @user.nil? # The user is already created on a different tab
+        @user = helpers.current_user
+      else
+        @user.token = ''
+        @user.save!
+        session[:user_id] = @user.id.to_s
+      end
+    end
+  end
+end

data/app/helpers/self_auth_rails/application_helper.rb

@@ -0,0 +1,24 @@
+module SelfAuthRails
+  module ApplicationHelper
+    def authenticate_user!
+      current_url = request.base_url + request.path
+
+      uri = URI(main_app.root_url)
+
+      new_url = SelfAuthRails::Engine.routes.url_helpers.new_url(host: uri.host, port: uri.port)
+      create_url = SelfAuthRails::Engine.routes.url_helpers.create_url(host: uri.host, port: uri.port)
+      qr_url = SelfAuthRails::Engine.routes.url_helpers.qr_url(host: uri.host, port: uri.port)
+      dl_url = SelfAuthRails::Engine.routes.url_helpers.dl_url(host: uri.host, port: uri.port)
+
+      if [new_url, create_url, qr_url, dl_url].include? current_url
+        redirect_to root_url unless current_user.nil?
+      else
+        redirect_to new_url if current_user.nil?
+      end
+    end
+
+    def current_user
+      SelfAuthRails.session_class.find_by(id: session[:user_id])
+    end
+  end
+end

data/app/helpers/self_auth_rails/sessions_helper.rb

@@ -0,0 +1,4 @@
+module SelfAuthRails
+  module SessionsHelper
+  end
+end

data/app/jobs/self_auth_rails/application_job.rb

@@ -0,0 +1,4 @@
+module SelfAuthRails
+  class ApplicationJob < ActiveJob::Base
+  end
+end

data/app/mailers/self_auth_rails/application_mailer.rb

@@ -0,0 +1,6 @@
+module SelfAuthRails
+  class ApplicationMailer < ActionMailer::Base
+    default from: "from@example.com"
+    layout "mailer"
+  end
+end

data/app/models/self_auth_rails/application_record.rb

@@ -0,0 +1,5 @@
+module SelfAuthRails
+  class ApplicationRecord < ActiveRecord::Base
+    self.abstract_class = true
+  end
+end

data/app/services/self_auth_response_manager_service.rb

@@ -0,0 +1,76 @@
+# Manages self authentication responses
+class SelfAuthResponseManagerService
+  STATUS_ERR = 'errored'.freeze
+  STATUS_REJ = 'rejected'.freeze
+  STATUS_OK = 'accepted'.freeze
+  STATUS_COM = 'completed'.freeze
+  STATUS_RECIEVED = 'received'.freeze
+
+  def initialize(broadcaster)
+    @broadcaster = broadcaster
+  end
+
+  # Processes a Self authentication response
+  def process_response(self_auth_response)
+    return if self_auth_response.nil?
+
+    cid = self_auth_response.id.split('_').first.split('::').last
+    channel = "conversation_#{cid}_channel"
+
+    if self_auth_response.errored?
+      broadcast_status_change channel, STATUS_ERR, message: 'A timeout ocured while waiting for your device response'
+      return
+    end
+
+    if self_auth_response.rejected?
+      broadcast_status_change channel, STATUS_REJ
+      return
+    end
+
+    unless admin?(self_auth_response.from)
+      broadcast_status_change channel, STATUS_ERR, message: 'You are forbidden to access this service'
+      return
+    end
+
+    user = set_user_token(self_auth_response.from, self_auth_response)
+    broadcast_status_change channel, STATUS_COM, token: user[:token]
+  end
+
+  private
+
+  # creates or updates a user setting a random token.
+  def set_user_token(selfid, self_auth_response)
+    user = {
+      token: SecureRandom.uuid,
+      selfid: selfid,
+      facts: {}
+    }
+
+    SelfAuthRails.auth_facts.each do |fact|
+      user[:facts][fact] = self_auth_response.attestation_values_for(fact).first
+    end
+
+    u = SelfAuthRails.session_class.find_by(selfid: user[:selfid])
+    u = SelfAuthRails.session_class.new(selfid: user[:selfid]) if u.nil?
+    u.token = user[:token]
+    SelfAuthRails.fact_mapping.each do |fact_name, field|
+      u.send("#{field}=", user[:facts][fact_name.to_sym])
+    end
+    u.save!
+
+    user
+  end
+
+  # broadcasts a status change through websockets to the web client
+  def broadcast_status_change(channel, status, opts = {})
+    token = opts.fetch(:token, '')
+    message = opts.fetch(:message, '')
+    type = opts.fetch(:type, 'auth')
+    @broadcaster.broadcast channel, { status: status, token: token, message: message, type: type }
+  end
+
+  # checks if the given id is in the admins list
+  def admin?(id)
+    ENV['ADMIN_IDS'].split(',').include? id
+  end
+end

data/app/views/self_auth_rails/sessions/create.html.erb

@@ -0,0 +1,2 @@
+<h1>Sessions#create</h1>
+<p>Find me in app/views/sessions/create.html.erb</p>

data/app/views/self_auth_rails/sessions/new.html.erb

@@ -0,0 +1,75 @@
+<%= hidden_field_tag "conversation_id", "", id: "conversation_id" %>
+<%= form_with(model: @user, url: create_path, local: true, id: "form-login", class: "form-horizontal form-bordered form-control-borderless") do |form| %>
+  <%= form.hidden_field 'qr_url', id: 'qr_url', value: qr_path %>
+  <%= form.hidden_field 'dl_url', id: 'dl_url', value: dl_path %>
+  <%= form.hidden_field 'connection_id', id: "connection_id" %>
+  <%= form.hidden_field :token, id: "login-token" %>
+
+  <div id="app">
+    <section class="section">
+      <div class="container mt-5">
+        <div class="row">
+          <div class="col-12 col-sm-8 offset-sm-2 col-md-6 offset-md-3 col-lg-6 offset-lg-3 col-xl-6 offset-xl-3">
+            <div class="card card-primary">
+              <div class="card-body">
+
+                <div id="dl-container" class="hidden">
+                    <div class="col-xs-12">
+                        <h4>Welcome to Self</h4>
+                        <p>Please click the button below to authenticate using your Self App</p>
+                    </div>
+                    <div class="text-center form-group" style="border:0px; background-color: #f4f4f4; padding-top:20px; padding-bottom:20px">
+                        <a href="#" class='btn btn-success' id="dl">Authenticate with <strong>Self</strong></a>
+                        <button id="switch-not-dl" class="btn btn-info"><i class="fa fa-qrcode"></i> </button>
+                    </div>
+                </div>
+
+                <div id="non-dl-container">
+                    <div id="qr-container" class='text-center form-group' style="border:0px;">
+                    <div class="qr-wrapper" style='min-height:400px'>
+                        <div id="auth-ok">
+                            <i class="fa fa-check text-success"></i>
+                        </div>
+
+                        <img src="" id="qr" style="max-width:400px;max-height:400px;width: inherit;height: inherit;">
+                    </div>
+                    </div>
+
+                    <div id='login-form-group' class="form-group" style="padding: 0 25px 0 25px;">
+                        <div class="input-group mb-3">
+                            <div class="input-group-prepend">
+                                <div class="input-group-text">
+                                <i class="fas fa-user"></i>
+                                </div>
+                            </div>        
+                            <%= form.text_field :selfid, placeholder: "Self identifier", class: "form-control input-lg", id: "selfid-field", required: true %>
+                            <div class="invalid-feedback invalid-pad">Oh no! Self identifier does not exist.</div>
+                            <div class="input-group-append">
+                                <button id="sign-in" class="btn btn-primary"><i class="fa fa-angle-right"></i> Sign in</button>
+                            </div>
+                        </div>
+                    </div>
+
+
+                    <div class="form-group form-actions login-new-identifier">
+                    <div class="row justify-content-md-center">
+                        <div class="col">
+                            <small>Don't have a Self Identifier?</small><br />
+                            <a href="javascript:void(0)" id="link-register-login"><small class="text-info">Download the Self app and create a Self identifier</small></a>
+                        </div>
+                        <div class="col col-lg-4 text-right" style="padding-top:10px;">
+                        <button class="btn btn-sm btn-info"><i class="fa fa-angle-right"></i> Get the app</button>
+                        </div>
+                    </div>
+
+                    </div>
+                </div>
+
+              </div>
+            </div>
+          </div>
+        </div>
+      </div>
+    </section>
+  </div>
+<% end %>

data/config/routes.rb

@@ -0,0 +1,11 @@
+SelfAuthRails::Engine.routes.draw do
+  get 'new', to: 'sessions#new'
+  post 'create', to: 'sessions#create'
+  get 'qr', to: 'sessions#qr'
+  get 'dl', to: 'sessions#dl'
+  get 'logout', to: 'sessions#logout'
+
+  # Serve websocket cable requests in-process
+  mount ActionCable.server => '/auth'
+end
+

data/lib/self-auth-rails/engine.rb

@@ -0,0 +1,18 @@
+module SelfAuthRails
+  class Engine < ::Rails::Engine
+    isolate_namespace SelfAuthRails
+
+    initializer "self-auth-rails.helpers" do
+      ActiveSupport.on_load(:action_controller_base) do
+        helper SelfAuthRails::Engine.helpers
+        include SelfAuthRails::Engine.helpers
+      end
+    end
+
+    initializer "self-auth-rails.assets.precompile" do |app|
+      app.config.assets.precompile << "manifest.js"
+      app.config.assets.precompile << "application.css"
+    end
+
+  end
+end

data/lib/self-auth-rails/version.rb

@@ -0,0 +1,3 @@
+module SelfAuthRails
+  VERSION = "0.1.1"
+end

data/lib/self-auth-rails.rb

@@ -0,0 +1,50 @@
+require "self-auth-rails/version"
+require "self-auth-rails/engine"
+
+module SelfAuthRails
+  mattr_accessor :self_client,
+                 :session_class_name,
+                 :auth_facts,
+                 :fact_mapping,
+                 :authenticated_path,
+                 :authenticated_path
+
+  class Engine < ::Rails::Engine
+    default_auth_facts = [:display_name]
+    default_authenticated_path = '/'
+
+    config.after_initialize do
+      unless SelfAuthRails::self_client.nil?
+        SelfAuthRails.auth_facts ||= default_auth_facts
+        SelfAuthRails.authenticated_path ||= default_authenticated_path
+
+        response_manager = SelfAuthResponseManagerService.new(ActionCable.server)
+
+        # Subscribe to fact responses
+        SelfAuthRails::self_client.facts.subscribe do |auth|
+          response_manager.process_response(auth)
+        end
+
+        # Subscribe to authentication responses
+        SelfAuthRails::self_client.authentication.subscribe do |auth|
+          response_manager.process_response(auth)
+        end
+      end
+    end
+  end
+
+  def self.session_class
+    class_name = session_class_name || 'User'
+    Object.const_get(class_name)
+  end
+
+  # this function maps the vars from your app into your engine
+  def self.setup(&block)
+    yield self
+  end
+
+  def authenticated_path
+    SelfAuthRails::authenticated_path || SelfAuthRails::default_authenticated_path
+  end
+
+end

data/lib/tasks/initializer.rb.tpl

@@ -0,0 +1,45 @@
+require 'selfsdk'
+
+if defined?(Rails::Server) && !defined?(::SelfClient)
+  # If self client is already initialized skip this initialization
+  return unless defined?(::SelfClient).nil?
+
+  # Initializes self client
+  ::SelfClient = SelfSDK::App.new(
+    ENV['SELF_APP_ID'],
+    ENV['SELF_APP_KEY'],
+    ENV['SELF_STORAGE_KEY'],
+    ENV['SELF_STORAGE_DIR'],
+    env: ENV['SELF_ENVIRONMENT'],
+  )
+
+  # Setup self-auth-rails engine
+  SelfAuthRails.setup do |config|
+    # Initializes the self-ruby-sdk client.
+    config.self_client = ::SelfClient
+
+    # Sets rails logger as default self-ruby-sdk logger (optional).
+    SelfSDK.logger = Rails.logger
+
+    # Defines the facts we're going to require for a user to authenticate.
+    # If not provided it will default to [:display_name].
+    config.auth_facts = [:display_name, :email_address]
+
+    # Defines the model class name to be used for persistance. The active
+    # model provided must have `selfid` and `token` attributes. 
+    # Note this config entry is optional and defaults to `User`.
+    config.session_class_name = 'User'
+
+    # Defines the path to redirect the user when authentication succeeds.
+    # Optional entry defaulting to '/'.
+    config.authenticated_path = '/'
+
+    # In case you want to persist the authentication returning facts, you 
+    # can provide a map for the fact_name and the ActiveModel object property.
+    #
+    # This is an optional entry and you only need to provide it if you're intending
+    # to request and store facts during the authentication process with 
+    # config.auth_facts
+    config.fact_mapping = { display_name: :name }
+  end
+end

data/lib/tasks/self_auth_rails_tasks.rake

@@ -0,0 +1,69 @@
+# desc "Explaining what the task does"
+# task :self-auth-rails do
+#   # Task goes here
+# end
+
+desc 'Creates the self-auth-rails initializer on your application'
+namespace :self_auth_rails do
+  task :init do
+    # Getting model to be used as authentication
+    puts "What model do you want to use for authentication? (Defaults to \"User\")"
+    model_name = STDIN.gets.strip
+    model_name = 'User' if model_name.empty?
+
+    log 'Generating migrations'
+    if Object.const_defined? model_name
+      log "#{model_name} already initialized, adding necessary columns"
+      system "SKIP_SELF=1 bin/rails g migration add_auth_to_#{model_name.downcase}s selfid:string name:string token:string"
+    else
+      system "SKIP_SELF=1 bin/rails g model #{model_name.downcase} selfid:string name:string token:string"
+    end
+    log 'migration file created!'
+
+    # Adding initializer to your application
+    log 'Creating self-auth-rails initializer from template'
+    body = File.read(__FILE__.gsub('self_auth_rails_tasks.rake', 'initializer.rb.tpl'))
+    body.gsub!("{{AuthModel}}", model_name)
+    File.open("#{Dir.pwd}/config/initializers/self_auth_rails.rb", 'w') { |file| file << body }
+    log 'config/initializers/self_auth_rails.rb created'
+
+    # Adding routes to your application
+    puts "What alias do you want to use to mount this rails engine? (Defaults to \"auth\")"
+    as = STDIN.gets.strip
+    as = 'auth' if as.empty?
+
+    log 'Adding routes to config/routes.rb'
+    file_path = "#{Dir.pwd}/config/routes.rb"
+    body = File.read(file_path)
+    if body.include? 'SelfAuthRails'
+      log 'skipping... (self-auth-rails routes already added)'
+    else
+      pattern = 'Rails.application.routes.draw do'
+      content = body.gsub(pattern, "#{pattern}\n  # Mounting self-auth-rails engine\n  mount SelfAuthRails::Engine => \"/auth\", as: \"#{as}\"")
+      File.open(file_path, 'w') { |file| file << content }
+      log 'self-auth-rails routes added'
+    end
+
+    puts 'Adding assets headers'
+    assets_file_path = "#{Dir.pwd}/app/views/layouts/application.html.erb"
+    body = File.read(assets_file_path)
+    header1 = '<%= javascript_include_tag "self-auth-rails/manifest" %>'
+    header2 = '<%= stylesheet_link_tag "self-auth-rails/application.css" %>'
+    body.gsub!("</head>", "#{header1}\n\t#{header2}\n\t</head>")
+    File.open(assets_file_path, 'w') { |file| file << body }
+    log 'asset headers set'
+
+    manifest_file_path = "#{Dir.pwd}/app/assets/config/manifest.js"
+    body = File.read(manifest_file_path)
+    body += "\n//= link self-auth-rails/manifest.js"
+    File.open(manifest_file_path, 'w') { |file| file << body }
+
+    log 'All set!'
+    puts 'Remember to run `bin/rails db:migrate` to create your authentication table'
+  end
+end
+
+def log(str)
+  str = "[self_auth_rails::init] #{str}"
+  puts "\e[#{36}m#{str}\e[0m"
+end

metadata

@@ -0,0 +1,116 @@
+--- !ruby/object:Gem::Specification
+name: self-auth-rails
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- Adrià Cidre
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2022-08-11 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '7.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 7.0.2.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '7.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 7.0.2.3
+- !ruby/object:Gem::Dependency
+  name: selfsdk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.0.200
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.0.200
+description: Provides an out of the box implementation for self authentication
+email:
+- 593270+adriacidre@users.noreply.github.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/assets/config/self-auth-rails/app.js
+- app/assets/config/self-auth-rails/cable.js
+- app/assets/config/self-auth-rails/channels/auth.js
+- app/assets/config/self-auth-rails/channels/messages_channel.js
+- app/assets/config/self-auth-rails/cookies.js
+- app/assets/config/self-auth-rails/ki.js
+- app/assets/config/self-auth-rails/manifest.js
+- app/assets/stylesheets/self-auth-rails/application.css
+- app/channels/application_cable/channel.rb
+- app/channels/application_cable/connection.rb
+- app/channels/messages_channel.rb
+- app/controllers/self_auth_rails/application_controller.rb
+- app/controllers/self_auth_rails/sessions_controller.rb
+- app/helpers/self_auth_rails/application_helper.rb
+- app/helpers/self_auth_rails/sessions_helper.rb
+- app/jobs/self_auth_rails/application_job.rb
+- app/mailers/self_auth_rails/application_mailer.rb
+- app/models/self_auth_rails/application_record.rb
+- app/services/self_auth_response_manager_service.rb
+- app/views/self_auth_rails/sessions/create.html.erb
+- app/views/self_auth_rails/sessions/new.html.erb
+- config/routes.rb
+- lib/self-auth-rails.rb
+- lib/self-auth-rails/engine.rb
+- lib/self-auth-rails/version.rb
+- lib/tasks/initializer.rb.tpl
+- lib/tasks/self_auth_rails_tasks.rake
+homepage: https://joinself.com
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://joinself.com
+  source_code_uri: https://joinself.com
+  changelog_uri: https://joinself.com/changelog
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.6
+signing_key: 
+specification_version: 4
+summary: Joinself rails authentication gem
+test_files: []