RubyGems - shaf - Versions diffs - 1.5.0 → 2.0.0 - Mend

shaf 1.5.0 → 2.0.0

Files changed (165) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +0 -0
data/iana_link_relations.csv.gz +0 -0
data/lib/shaf.rb +6 -0
data/lib/shaf/alps/attribute_serializer.rb +41 -0
data/lib/shaf/alps/json_serializer.rb +50 -0
data/lib/shaf/alps/relation_serializer.rb +70 -0
data/lib/shaf/api_doc/link_relations.rb +77 -0
data/lib/shaf/app.rb +12 -5
data/lib/shaf/authenticator.rb +56 -0
data/lib/shaf/authenticator/base.rb +161 -0
data/lib/shaf/authenticator/basic_auth.rb +25 -0
data/lib/shaf/authenticator/challenge.rb +32 -0
data/lib/shaf/authenticator/parameter.rb +31 -0
data/lib/shaf/authenticator/request.rb +17 -0
data/lib/shaf/command/console.rb +1 -1
data/lib/shaf/command/generate.rb +5 -2
data/lib/shaf/command/new.rb +20 -7
data/lib/shaf/command/templates/Gemfile.erb +1 -0
data/{templates/config/settings.yml → lib/shaf/command/templates/config/settings.yml.erb} +1 -5
data/lib/shaf/errors.rb +11 -0
data/lib/shaf/extensions.rb +3 -3
data/lib/shaf/extensions/api_routes.rb +60 -0
data/lib/shaf/extensions/authorize.rb +11 -9
data/lib/shaf/extensions/log.rb +1 -1
data/lib/shaf/extensions/resource_uris.rb +139 -63
data/lib/shaf/extensions/symbolic_routes.rb +22 -19
data/lib/shaf/formable.rb +1 -2
data/lib/shaf/formable/form.rb +1 -1
data/lib/shaf/generator.rb +2 -0
data/lib/shaf/generator/base.rb +2 -3
data/lib/shaf/generator/controller.rb +11 -7
data/lib/shaf/generator/doc.rb +17 -0
data/lib/shaf/generator/forms.rb +1 -0
data/lib/shaf/generator/helper.rb +2 -1
data/lib/shaf/generator/migration/base.rb +7 -3
data/lib/shaf/generator/migration/type.rb +4 -26
data/lib/shaf/generator/migration/types.rb +45 -16
data/lib/shaf/generator/model.rb +1 -2
data/lib/shaf/generator/profile.rb +52 -0
data/lib/shaf/generator/serializer.rb +38 -73
data/lib/shaf/generator/templates/api/policy.rb.erb +2 -2
data/lib/shaf/generator/templates/api/profile.rb.erb +16 -0
data/lib/shaf/generator/templates/api/serializer.rb.erb +2 -2
data/lib/shaf/generator/templates/spec/integration_spec.rb.erb +1 -2
data/lib/shaf/generator/templates/spec/serializer_spec.rb.erb +5 -5
data/lib/shaf/helpers.rb +4 -0
data/lib/shaf/helpers/authentication.rb +79 -0
data/lib/shaf/helpers/cache_control.rb +1 -2
data/lib/shaf/helpers/json_html.rb +58 -18
data/lib/shaf/helpers/payload.rb +27 -41
data/lib/shaf/helpers/vary.rb +8 -0
data/lib/shaf/logger.rb +12 -0
data/lib/shaf/parser.rb +65 -0
data/lib/shaf/parser/base.rb +44 -0
data/lib/shaf/parser/form_data.rb +15 -0
data/lib/shaf/parser/json.rb +26 -0
data/lib/shaf/profile.rb +110 -0
data/lib/shaf/profile/attribute.rb +29 -0
data/lib/shaf/profile/evaluator.rb +46 -0
data/lib/shaf/profile/relation.rb +29 -0
data/lib/shaf/profile/unique_id.rb +58 -0
data/lib/shaf/profiles.rb +42 -0
data/lib/shaf/profiles/shaf_basic.rb +20 -0
data/lib/shaf/profiles/shaf_error.rb +48 -0
data/lib/shaf/profiles/shaf_form.rb +109 -0
data/lib/shaf/responder.rb +41 -2
data/lib/shaf/responder/alps_json.rb +25 -0
data/lib/shaf/responder/base.rb +20 -17
data/lib/shaf/responder/hal.rb +62 -7
data/lib/shaf/responder/html.rb +65 -9
data/lib/shaf/responder/problem_json.rb +1 -1
data/lib/shaf/serializer.rb +31 -0
data/lib/shaf/settings.rb +25 -12
data/lib/shaf/spec.rb +1 -0
data/lib/shaf/spec/authenticator.rb +13 -0
data/lib/shaf/spec/base.rb +1 -1
data/lib/shaf/spec/http_method_utils.rb +1 -1
data/lib/shaf/spec/integration_spec.rb +25 -13
data/lib/shaf/spec/payload_utils.rb +2 -2
data/lib/shaf/supported_http_methods.rb +15 -0
data/lib/shaf/tasks/api_doc_task.rb +24 -3
data/lib/shaf/tasks/routes_task.rb +14 -17
data/lib/shaf/upgrade/manifest.rb +11 -2
data/lib/shaf/upgrade/package.rb +78 -49
data/lib/shaf/upgrade/version.rb +11 -10
data/lib/shaf/utils.rb +19 -5
data/lib/shaf/version.rb +3 -1
data/lib/shaf/yard.rb +34 -0
data/lib/shaf/yard/attribute_method_handler.rb +19 -0
data/lib/shaf/yard/attribute_object.rb +30 -0
data/lib/shaf/yard/base_method_handler.rb +30 -0
data/lib/shaf/yard/link_method_handler.rb +39 -0
data/lib/shaf/yard/link_object.rb +60 -0
data/lib/shaf/yard/nested_attributes.rb +37 -0
data/lib/shaf/yard/parser.rb +64 -0
data/lib/shaf/yard/profile_method_handler.rb +51 -0
data/lib/shaf/yard/profile_object.rb +21 -0
data/lib/shaf/yard/resource_object.rb +55 -0
data/lib/shaf/yard/serializer_handler.rb +27 -0
data/templates/api/controllers/base_controller.rb +0 -10
data/templates/api/controllers/docs_controller.rb +5 -3
data/templates/api/controllers/root_controller.rb +7 -1
data/templates/api/policies/base_policy.rb +2 -0
data/templates/api/serializers/base_serializer.rb +1 -3
data/templates/api/serializers/error_serializer.rb +1 -5
data/templates/api/serializers/form_serializer.rb +1 -5
data/templates/api/serializers/validation_error_serializer.rb +1 -5
data/templates/config.ru +1 -1
data/templates/config/bootstrap.rb +1 -2
data/templates/config/directories.rb +52 -44
data/templates/config/helpers.rb +1 -1
data/templates/config/initializers.rb +52 -8
data/templates/config/initializers/authentication.rb +18 -0
data/templates/config/initializers/db_migrations.rb +2 -2
data/templates/config/initializers/logging.rb +2 -2
data/templates/frontend/assets/css/main.css +33 -1
data/templates/frontend/views/headers.erb +20 -0
data/templates/frontend/views/layout.erb +7 -1
data/templates/frontend/views/payload.erb +1 -0
data/templates/spec/spec_helper.rb +2 -0
data/upgrades/0.5.0.tar.gz +0 -0
data/upgrades/1.0.4.tar.gz +0 -0
data/upgrades/1.1.0.tar.gz +0 -0
data/upgrades/1.6.0.tar.gz +0 -0
data/upgrades/1.6.1.tar.gz +0 -0
data/upgrades/2.0.0.tar.gz +0 -0
data/yard_templates/api_doc/doc_index/html/body.erb +3 -0
data/yard_templates/api_doc/doc_index/setup.rb +8 -0
data/yard_templates/api_doc/html/css/api-doc.css +222 -0
data/yard_templates/api_doc/html/favicon.ico +0 -0
data/yard_templates/api_doc/html/js/switch_tab.js +17 -0
data/yard_templates/api_doc/html/setup.rb +59 -0
data/yard_templates/api_doc/layout/html/footer.erb +3 -0
data/yard_templates/api_doc/layout/html/header.erb +7 -0
data/yard_templates/api_doc/layout/html/layout.erb +13 -0
data/yard_templates/api_doc/layout/setup.rb +24 -0
data/yard_templates/api_doc/profile/html/attributes.erb +10 -0
data/yard_templates/api_doc/profile/html/profile.erb +6 -0
data/yard_templates/api_doc/profile/html/relations.erb +10 -0
data/yard_templates/api_doc/profile/setup.rb +38 -0
data/yard_templates/api_doc/profile_attribute/html/attribute.erb +23 -0
data/yard_templates/api_doc/profile_attribute/setup.rb +21 -0
data/yard_templates/api_doc/profile_relation/html/relation.erb +37 -0
data/yard_templates/api_doc/profile_relation/setup.rb +41 -0
data/yard_templates/api_doc/resource/html/attributes.erb +10 -0
data/yard_templates/api_doc/resource/html/profile.erb +14 -0
data/yard_templates/api_doc/resource/html/relations.erb +10 -0
data/yard_templates/api_doc/resource/html/resource.erb +5 -0
data/yard_templates/api_doc/resource/setup.rb +56 -0
data/yard_templates/api_doc/resource_attribute/html/attribute.erb +23 -0
data/yard_templates/api_doc/resource_attribute/setup.rb +20 -0
data/yard_templates/api_doc/resource_relation/html/relation.erb +47 -0
data/yard_templates/api_doc/resource_relation/setup.rb +80 -0
data/yard_templates/api_doc/setup.rb +31 -0
data/yard_templates/api_doc/sidebar/html/profile_list.erb +8 -0
data/yard_templates/api_doc/sidebar/html/search.erb +7 -0
data/yard_templates/api_doc/sidebar/html/serializer_list.erb +8 -0
data/yard_templates/api_doc/sidebar/html/sidebar.erb +13 -0
data/yard_templates/api_doc/sidebar/setup.rb +56 -0
metadata +140 -30
metadata.gz.sig +1 -2
data/lib/shaf/extensions/current_user.rb +0 -48
data/lib/shaf/responder/hal_serializable.rb +0 -54

data/lib/shaf/generator/templates/api/policy.rb.erb CHANGED Viewed

@@ -8,9 +8,9 @@ class <%= policy_class_name %> < BasePolicy
   <%= attributes.join("\n  ") %>
-  link :collection
+  link :collection, :up, :proflie
-  link :'create-form', :'edit-form', :delete do
+  link :create_form, :edit_form, :delete do
     write?
   end

data/lib/shaf/generator/templates/api/profile.rb.erb ADDED Viewed

@@ -0,0 +1,16 @@
+module Profiles
+  class <%= profile_class_name %> < Shaf::Profile
+    name '<%= profile_name %>'
+    doc 'FIXME: replace this with a description of the <%= profile_name %> profile'
+    use :delete, from: Shaf::Profiles::ShafBasic
+  <% attributes.each do |name, type| %>
+    attribute :<%= name %>,
+              type: '<%= type %>',
+              doc: 'FIXME: Write documentation for <%= name %>'
+  <% end %>
+  end
+end

data/lib/shaf/generator/templates/api/serializer.rb.erb CHANGED Viewed

@@ -6,9 +6,9 @@ class <%= class_name %> < BaseSerializer
   model <%= model_class_name %>
   policy <%= policy_class_name %>
-  <%= print_nested(attributes_with_doc) %>
+  <%= print(profile_with_doc) %>
-  <%= print_nested(curies_with_doc) %>
+  <%= print_nested(attributes_with_doc) %>
   <%= print_nested(links_with_doc) %>

data/lib/shaf/generator/templates/spec/integration_spec.rb.erb CHANGED Viewed

@@ -14,8 +14,7 @@ describe <%= model_class_name %>, type: :integration do
   end
   it "lists all <%= plural_name %>" do
-    <%= model_class_name %>.create
-    <%= model_class_name %>.create
+    2.times { <%= model_class_name %>.create }
     get <%= plural_name %>_uri
     _(status).must_equal 200

data/lib/shaf/generator/templates/spec/serializer_spec.rb.erb CHANGED Viewed

@@ -15,8 +15,8 @@ describe <%= class_name %> do
     end
     it "serializes attributes" do
-<% attributes.each do |attr| -%>
-      _(attributes.keys).must_include(<%= attr %>)
+<% attribute_names.each do |attr| -%>
+      _(attributes.keys).must_include(:<%= attr %>)
 <% end -%>
     end
@@ -33,13 +33,13 @@ describe <%= class_name %> do
     end
     it "serializes attributes" do
-<% attributes.each do |attr| -%>
-      _(attributes.keys).must_include(<%= attr %>)
+<% attribute_names.each do |attr| -%>
+      _(attributes.keys).must_include(:<%= attr %>)
 <% end -%>
     end
     it "serializes links" do
-<% links.each do |rel| -%>
+<% link_relations.each do |rel| -%>
       _(link_rels).must_include(:'<%= rel %>')
 <% end -%>
     end

data/lib/shaf/helpers.rb CHANGED Viewed

@@ -3,6 +3,8 @@ require 'shaf/helpers/json_html'
 require 'shaf/helpers/paginate'
 require 'shaf/helpers/payload'
 require 'shaf/helpers/http_header'
+require 'shaf/helpers/authentication'
+require 'shaf/helpers/vary'
 module Shaf
   def self.helpers
@@ -12,6 +14,8 @@ module Shaf
       Paginate,
       Payload,
       HttpHeader,
+      Authentication,
+      Vary,
     ]
   end
 end

data/lib/shaf/helpers/authentication.rb ADDED Viewed

@@ -0,0 +1,79 @@
+# frozen_string_literal: true
+require 'set'
+require 'shaf/authenticator'
+require 'shaf/errors'
+module Shaf
+  module Authentication
+    class NoChallengesError < Error
+      def initialize(realm)
+        super("No Authentication challenges for realm: #{realm.inspect}")
+      end
+    end
+    class RealmChangedError < Error
+      def initialize(from:, to:)
+        super <<~ERR
+          Realm was changed from "#{from}" to "#{to}". This is not allowed!
+          Each request corresponds to a certain realm and cannot be changed.
+          This is probably caused by a call to `current_user` using the
+          default realm (from `Shaf::Settings.default_authentication_realm`)
+          and then using `#authenticate realm: 'some_other_realm'
+        ERR
+      end
+    end
+    def www_authenticate(realm: Settings.default_authentication_realm)
+      challenges = Authenticator.challenges_for(realm: realm)
+      raise NoChallengesError.new(realm) if challenges.empty?
+      headers 'WWW-Authenticate' => challenges.map(&:to_s)
+    end
+    def authenticate(realm: Settings.default_authentication_realm)
+      if defined?(@current_realm) && @current_realm&.to_s != realm&.to_s
+        raise RealmChangedError.new(from: @current_realm , to: realm)
+      else
+        @current_realm = realm
+      end
+      current_user.tap do |user|
+        www_authenticate(realm: realm) unless user
+      end
+    end
+    def authenticate!(realm: Settings.default_authentication_realm)
+      user = authenticate(realm: realm)
+      return user if user
+      msg = +"Unauthorized action"
+      msg << " (Realm: #{realm})" if realm
+      raise Shaf::Errors::UnauthorizedError, msg
+    end
+    alias current_user! authenticate!
+    def authenticated?
+      !current_user.nil?
+    end
+    def current_user
+      unless defined? @current_realm
+        if Settings.key? :default_authentication_realm
+          @current_realm = Settings.default_authentication_realm
+        else
+          Shaf.logger.info <<~MSG
+            No realm has been provided!
+            Authentication/authorization cannot be performed. Did you perhaps
+            forget to configure a realm in
+            `Settings.default_authentication_realm` or provide it when calling
+            `#authenticate!` (or `#authenticate!`)
+          MSG
+          return
+        end
+      end
+      @current_user ||= Authenticator.user(request.env, realm: @current_realm)
+    end
+  end
+end

data/lib/shaf/helpers/cache_control.rb CHANGED Viewed

@@ -1,7 +1,6 @@
 module Shaf
   module CacheControl
     def cache_control(*args, **kwargs)
-      return unless Shaf::Settings.http_cache
       __rewrite_max_age(kwargs)
       super(*args, **kwargs)
     end
@@ -11,7 +10,7 @@ module Shaf
     def __rewrite_max_age(kwargs)
       max_age = kwargs.delete(:http_cache_max_age)
       if max_age.is_a? Symbol
-        key = "http_cache_max_age_#{max_age}".to_sym
+        key = :"http_cache_max_age_#{max_age}"
         max_age = Settings.respond_to?(key) ? Settings.send(key) : 86_400
       end
       kwargs[:max_age] ||= max_age

data/lib/shaf/helpers/json_html.rb CHANGED Viewed

@@ -1,5 +1,8 @@
+# frozen_string_literal: true
 module Shaf
   module JsonHtml
+    STRUCTURAL_PATTERN = /^[\[\]\{\}:,]$/.freeze
     def json2html(json)
       as_html JSON.parse(json)
@@ -18,7 +21,7 @@ module Shaf
       when Hash
         html_hash(obj, indent, pre_indent)
       else
-        html_scalar(obj, indent, pre_indent)
+        html_scalar(obj, pre_indent)
       end
     end
@@ -28,41 +31,78 @@ module Shaf
       end
       <<~EOS.chomp
-        #{pre_indent}<span>[</span>
-        #{array_of_strings.join(",\n")}
-        #{indentation(indent)}<span>]</span>
+        #{pre_indent}#{span '['}
+        #{array_of_strings.join(item_separator)}
+        #{indentation(indent)}#{span ']'}
       EOS
     end
     def html_hash(h, indent, pre_indent)
       <<~EOS.chomp
-        #{pre_indent}<span>{</span>
-        #{h.map { |k,v| sub_hash(k,v, indent + 1) }.join(",\n")},
-        #{indentation(indent)}<span>}</span>
+        #{pre_indent}#{span '{'}
+        #{h.map { |k,v| sub_hash(k,v, indent + 1) }.join(item_separator)}#{item_separator}
+        #{indentation(indent)}#{span '}'}
       EOS
     end
-    def html_scalar(s, indent, pre_indent)
-      q = around(s)
-      format "%s%s%s%s", pre_indent, q, s, q
+    def html_scalar(s, pre_indent)
+      format '%s%s', pre_indent, span(s)
     end
     def sub_hash(key, value, indent)
-      if key == 'href'
-        %Q(#{indentation(indent)}"#{key}"<span>:</span> <a href="#{value}">#{value}</a>)
-      else
-        "#{indentation(indent)}\"#{key}\"<span>:</span> #{to_html(value, indent: indent) }"
-      end
+	  left_side = format '%s%s%s ', indentation(indent), quoted(key), span(':')
+      left_side +
+        if key.to_s == 'href'
+          link(value)
+        else
+          to_html(value, indent: indent)
+        end
     end
     def indentation(i)
       "  " * i
     end
-    def around(obj)
-      return '"' if obj.is_a? String
-      ""
+    def quoted(obj)
+      case obj
+      when STRUCTURAL_PATTERN
+        obj
+      when String, Symbol
+        format '"%s"', obj
+      when NilClass
+        'null'
+      else
+        obj
+      end
+    end
+    def link(href)
+      format '<a href="%s">%s</a>', href, quoted(href)
     end
+    def span(value)
+      clazz = span_class(value)
+      value = quoted(value)
+      format '<span class="%s">%s</span>', clazz, value
+    end
+    def span_class(obj)
+      case obj
+      when TrueClass, FalseClass
+        'boolean'
+      when NilClass
+        'null'
+      when Numeric
+        'number'
+      when STRUCTURAL_PATTERN
+        'structural'
+      else
+        'string'
+      end
+    end
+    def item_separator
+      "#{span ','}\n"
+    end
   end
 end

data/lib/shaf/helpers/payload.rb CHANGED Viewed

@@ -2,49 +2,32 @@
 require 'set'
 require 'shaf/responder'
+require 'shaf/parser'
+require 'shaf/errors'
 module Shaf
   module Payload
-    EXCLUDED_FORM_PARAMS = ['captures', 'splat'].freeze
+    NO_VALUE = Object.new.freeze
     private
     def payload
-      @payload ||= parse_payload
-    end
-    def read_input
-      request.body.rewind unless request.body.pos.zero?
-      request.body.read
-    ensure
-      request.body.rewind
+      return @payload if defined? @payload
+      @payload = parse_payload
     end
     def parse_payload
-      if request.env['CONTENT_TYPE'] == 'application/x-www-form-urlencoded'
-        return params.reject { |key, _| EXCLUDED_FORM_PARAMS.include? key }
-      end
-      input = read_input
-      return {} if input.empty?
+      return unless Parser.input? request
-      raise raise_unsupported_media_type_error(request) unless suported_media_type?
+      parser = Parser.for(request)
+      raise Errors::UnsupportedMediaTypeError.new(request: request) unless parser
-      JSON.parse(input, symbolize_names: true)
-    rescue Errors::UnsupportedMediaTypeError
-      raise
-    rescue StandardError => e
+      log.debug "Parsing input using: #{parser.class}"
+      parser.call
+    rescue Parser::Error => e
       raise Errors::BadRequestError, "Failed to parse input payload: #{e.message}"
     end
-    def suported_media_type?
-      request.env['CONTENT_TYPE'].match? %r{\Aapplication/(hal\+)?json}
-    end
-    def raise_unsupported_media_type_error(request)
-      raise Errors::UnsupportedMediaTypeError.new(request: request)
-    end
     def safe_params(*fields)
       return {} unless payload
@@ -57,12 +40,8 @@ module Shaf
       end
     end
-    def ignore_form_input?(name)
-      name == '_method'
-    end
-    def profile(value = nil)
-      return @profile unless value
+    def profile(value = NO_VALUE)
+      return @profile if value == NO_VALUE
       @profile = value
     end
@@ -72,6 +51,7 @@ module Shaf
         status: status,
         serializer: serializer,
         collection: true,
+        preload: preload,
         **kwargs
       )
     end
@@ -80,14 +60,12 @@ module Shaf
       status ||= resource.respond_to?(:http_status) ? resource.http_status : 200
       status(status)
-      kwargs.merge!(
-        profile: profile,
-        serializer: serializer,
-        collection: collection
-      )
+      kwargs.merge!(serializer: serializer, collection: collection)
+      kwargs[:profile] ||= profile
       log.info "#{request.request_method} #{request.path_info} => #{status}"
-      payload = Responder.for(request, resource).call(self, resource, preload: preload, **kwargs)
+      responder = Responder.for(request, resource)
+      payload = responder.call(self, resource, preload: preload, **kwargs)
       add_cache_headers(payload, kwargs)
       payload
     rescue StandardError => err
@@ -95,6 +73,8 @@ module Shaf
       if status == 500
         content_type mime_type(:json)
         body JSON.generate(failure: err.message)
+      elsif err.is_a? Errors::ServerError
+        respond_with(err)
       else
         respond_with(Errors::ServerError.new(err.message))
       end
@@ -102,10 +82,16 @@ module Shaf
     def add_cache_headers(payload, kwargs)
       return unless kwargs.delete(:http_cache) { Settings.http_cache }
+      chksum, kind = etag_for(payload)
+      etag(chksum, kind: kind) if chksum
+    end
+    def etag_for(payload)
       return if payload.nil? || payload.empty?
       sha1 = Digest::SHA1.hexdigest payload
-      etag sha1, :weak # Weak or Strong??
+     [sha1, :weak] # Weak or Strong??
     end
   end
 end

data/lib/shaf/helpers/vary.rb ADDED Viewed

@@ -0,0 +1,8 @@
+module Shaf
+  module Vary
+    def vary(*varying)
+      current = headers['Vary']
+      headers('Vary' => [current, *varying].compact.join(','))
+    end
+  end
+end