sinatra-authentication-ottoman 0.0.2

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    MTQ2N2FjNDlmNjRiM2FiMTBkNTcwOGNlYWJhOGZjMmJkOTNkYzFmZA==
+  data.tar.gz: !binary |-
+    MDBkNjhmNjUzYWY1M2NmODdlZmQ2YmE3YmRmNTFlMjhhNzNmYzAzOQ==
+SHA512:
+  metadata.gz: !binary |-
+    MGViNGZiOTc1YzJmYjQ3M2FjNDg0NDAxZWE4MzUzY2Y5Mjg0ZjA4ZDM2MDI0
+    YWY3YzI5MGQxMzI4MjAzNjg2M2UyNGJlNTAxZmJhNTJmMmVmNDk2YWJkNDU1
+    NGRjMjZmNThhOWRhY2FkNmMxNjliNTE3OGQ4OWNhYzdjMThmNjM=
+  data.tar.gz: !binary |-
+    MTAxZmFkMDk5MjYxMGI1MzMxMDhhOWUwNDlhY2JlYWI4Mjg2ZTJhNjcwZGQw
+    YTM0ZTlhMWQzNmJjYzZmNWRjMWZjODczMzQ0MTg2M2EzNzFmYTRjZGNiY2M3
+    MGYwNWZhZmQwMjFiY2U5NTI0ZGVkMDRjYTNkMjNmZDI5OGZmNzA=

data/lib/sinatra/authentication.rb

@@ -0,0 +1,26 @@
+require 'sinatra/base'
+
+# NOTE these will have to change when gemified
+require_relative 'authentication/helpers'
+require_relative 'authentication/validations'
+require_relative 'authentication/password'
+require_relative 'authentication/cookies'
+require_relative 'authentication/identification'
+require_relative 'authentication/login_field'
+require_relative 'authentication/user'
+
+module Sinatra
+    module Authentication
+        VERSION = "0.0.1"
+
+        def require_auth(path_prefix)
+            before do
+                if request.fullpath =~ /^#{path_prefix}/
+                    require_auth
+                end
+            end
+        end
+    end
+
+    register Authentication
+end

data/lib/sinatra/authentication/cookies.rb

@@ -0,0 +1,45 @@
+require 'digest/sha2'
+
+module Sinatra
+    module Authentication
+        module Cookies
+            module Hashing
+                extend self
+
+                def encrypt(user_id, ip, key, salt = self.generate_salt)
+                    hash = serialize(hash(user_id, ip, key, salt), salt)
+                    { :hash => hash, :salt => salt }
+                end
+
+                def decrypt(crypted, key)
+                    Encryptor.decrypt(crypted, :key => key)
+                end
+
+                def check?(user_id, ip, key, crypted)
+                    hash, salt = unserialize(crypted)
+                    self.hash(user_id, ip, key, salt) == hash
+                end
+
+            protected
+                def generate_salt
+                    salt = ""
+                    64.times { salt << (i = Kernel.rand(62); i += ((i < 10) ? 48 : ((i < 36) ? 55 : 61))).chr }
+                    salt
+                end
+
+                # This method can be customized
+                def hash(user_id, ip, key, salt)
+                    Digest::SHA512.hexdigest("#{ user_id }:#{ ip }:#{ key }:#{ salt }")
+                end
+
+                def serialize(hash, salt)
+                    hash + salt
+                end
+
+                def unserialize(serialized)
+                    return serialized[0..127], serialized[128..-1]
+                end
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/helpers.rb

@@ -0,0 +1,43 @@
+module Sinatra
+    module Authentication
+        module Helpers
+            def require_auth cookies, required_roles = []
+                __USER__.user_auth(cookies, required_roles)
+            end
+
+            def current_user(finder = lambda { |id| __USER__[id] })
+                # Replace this with OttomanORM shit
+                # NOTE: not keeping session data
+                # @current_user ||= finder.call(session[:user]) if session[:user]
+                nil
+            end
+
+            # def logged_in?
+            #     !!curent_user
+            # end
+
+            def ensure_current_user(user)
+                halt 404 unless user == current_user
+            end
+
+            def logout!
+                # NOTE: not keeping session data
+                # session.delete(:user)
+            end
+
+            def authenticate(opts)
+                if user = __USER__.authenticate(opts[:email], opts[:password])
+                    user.id
+                end
+            end
+
+            def __USER__
+                settings.login_user_class
+            end
+
+            def should_return_to?(path, ignored = settings.ignored_by_return_to)
+                !(path =~ ignored)
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/identification.rb

@@ -0,0 +1,23 @@
+module Sinatra
+    module Authentication
+        module Identification
+            def authenticate(login, password)
+                if user = find_by_login(login)
+                    if Password::Hashing.check?(password, user.password)
+                        user
+                    end
+                end
+            end
+
+            # NOTE: This is overridden in Ottoman.User
+            def find_by_login(login)
+                find(__LOGIN_FIELD__ => login).first
+            end
+
+        protected
+            def __LOGIN_FIELD__
+                LoginField.attr_name
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/login_field.rb

@@ -0,0 +1,17 @@
+module Sinatra
+    module Authentication
+        module LoginField
+            def self.attr_name(attr_name = nil)
+                @attr_name = attr_name.to_sym if attr_name
+                @attr_name
+            end
+            attr_name :email
+
+            def self.included(user)
+                # NOTE these are Ohm specific, add some Ottoman-ORM shit if needed
+                # user.attribute LoginField.attr_name
+                # user.index LoginField.attr_name
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/password.rb

@@ -0,0 +1,54 @@
+require 'digest/sha2'
+
+module Sinatra
+    module Authentication
+        module Password
+            def self.included(model)
+                # model.attribute :crypted_password
+                # model.send :attr_accessor, :password, :password_confirmation
+            end
+        protected
+            def write
+                if !password.to_s.empty?
+                    # NOTE: This is Ohm specific
+                    # write_local :crypted_password, Hashing.encrypt(password)
+                end
+
+                super
+            end
+
+            module Hashing
+                extend self
+
+                def encrypt(password, salt = self.generate_salt)
+                    serialize(hash(password, salt), salt)
+                end
+
+                def check?(password, crypted)
+                    hash, salt = unserialize(crypted)
+                    self.hash(password, salt) == hash
+                end
+
+            protected
+                def generate_salt
+                    salt = ""
+                    64.times { salt << (i = Kernel.rand(62); i += ((i < 10) ? 48 : ((i < 36) ? 55 : 61))).chr }
+                    salt
+                end
+
+                # This method can be customized
+                def hash(password, salt)
+                    Digest::SHA512.hexdigest("#{ password }:#{ salt }")
+                end
+
+                def serialize(hash, salt)
+                    hash + salt
+                end
+
+                def unserialize(serialized)
+                    return serialized[0..127], serialized[128..-1]
+                end
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/user.rb

@@ -0,0 +1,20 @@
+module Sinatra
+    module Authentication
+        module User
+            # module ClassMethods
+            #     def require_auth required_roles=[]
+            #         user_auth required_roles
+            #     end
+            # end
+
+            def self.included user
+                user.send :include, LoginField
+                user.send :include, Password
+                user.send :include, Validations
+
+                user.extend Identification
+                # user.extend ClassMethods
+            end
+        end
+    end
+end

data/lib/sinatra/authentication/validations.rb

@@ -0,0 +1,38 @@
+module Sinatra
+    module Authentication
+        module Validations
+            EMAIL_FORMAT = /\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i
+
+            def validate
+                login_field = Sinatra::Authentication::LoginField.attr_name
+
+                if login_field == :email
+                    assert_login_using_email :email
+                else
+                    assert_present(login_field) and assert_unique(login_field)
+                end
+
+                assert_password :password
+
+                super
+            end
+
+        protected
+            def assert_login_using_email(attribute, error = [att, :not_email])
+                if assert_present attribute
+                    if assert_format attribute, EMAIL_FORMAT, error
+                        assert_unique attribute
+                    end
+                end
+            end
+
+            def assert_password(attribute, error = [attribute, :not_present])
+                confirmation_attribute = :"#{ attribute }_confirmation"
+
+                if new? && assert_present(attribute) || !send(attribute).to_s.empty?
+                    assert send(attribute) == send(confirmation_attribute), [attribute, :not_confirmed]
+                end
+            end
+        end
+    end
+end

metadata

@@ -0,0 +1,109 @@
+--- !ruby/object:Gem::Specification
+name: sinatra-authentication-ottoman
+version: !ruby/object:Gem::Version
+  version: 0.0.2
+platform: ruby
+authors:
+- Craig McCown
+- Spencer Applegate
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-11-25 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.3.5
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.3.5
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.5
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.5
+description: A lightweight authentication extension for Sinatra with PostgreSQL --
+  longer description
+email: spencer@thotpod.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/sinatra/authentication/cookies.rb
+- lib/sinatra/authentication/helpers.rb
+- lib/sinatra/authentication/identification.rb
+- lib/sinatra/authentication/login_field.rb
+- lib/sinatra/authentication/password.rb
+- lib/sinatra/authentication/user.rb
+- lib/sinatra/authentication/validations.rb
+- lib/sinatra/authentication.rb
+homepage: https://github.com/Thotpod/sinatra-authentication
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.1.5
+signing_key: 
+specification_version: 4
+summary: A lightweight authentication extension for Sinatra with PostgreSQL
+test_files: []