sudo_rails 0.4.1 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1aa6956d2120662918a32a2836cfcfb942b3a0bea1b030220259fa6817e8d1c6
-  data.tar.gz: a606c584d4f250e429b1b95f1bc24081cb8778b244c3c981d552650434cd818a
+  metadata.gz: cde0b8c08400028fee437eac2352ebfeb2676209ef14fc55ce1da3f407a10072
+  data.tar.gz: 5d150b96bc25cc3366d2d498a4883a3e0a75c56b80b400b35f985791eb27aca4
 SHA512:
-  metadata.gz: 2706d6bcaf8a48c6bfa240035bb3b96f2f31455191e675436aa901d5e89e87a4b712db12d523d07c887104fc42d94e475b90e27dadf0c681e07fd5083991a0ca
-  data.tar.gz: 81a8c15d835268f6efb29836a7da163558b1abcc454c11fb3c53e8439f74df0f7950f9ec1ae1d217a08ef2a1238399b0da0563d90973014ee9c3ee47ae5b21ac
+  metadata.gz: 4b7fd91b40ad9d1659943ad5ebcb2a160462aa1bc019d1c332a7f36bf82cd7ea404336523c14e4b40d0ee6d6efafb61433407e6d6160e653da40a4673e13d9b0
+  data.tar.gz: f16c2166aea71899e9b7c8f051ee991e9bbe1e17a18366b16db48b55f029f4a76124f5bccbdf4d02626a4526f8f7d620a5bdced0370caaff5e27383567d10181

data/LICENSE

@@ -1,4 +1,4 @@
-Copyright 2019 Marc Anguera Insa @markets
+Copyright 2019-2020 Marc Anguera Insa @markets
 
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the

data/README.md

@@ -1,7 +1,7 @@
 # Sudo Rails
 
 [![Gem](https://img.shields.io/gem/v/sudo_rails.svg?style=flat-square)](https://rubygems.org/gems/sudo_rails)
-[![Build Status](https://travis-ci.org/markets/sudo_rails.svg)](https://travis-ci.org/markets/sudo_rails)
+[![Build Status](https://travis-ci.com/markets/sudo_rails.svg?branch=master)](https://travis-ci.com/markets/sudo_rails)
 [![Maintainability](https://api.codeclimate.com/v1/badges/322350adc7ab052beccb/maintainability)](https://codeclimate.com/github/markets/sudo_rails/maintainability)
 
 > Sudo mode for your Rails controllers
@@ -71,12 +71,20 @@ SudoRails.setup do |config|
 end
 ```
 
+### Sudo sessions
+
+Using the `sudo_session_duration` option you are able to configure the `sudo` session duration (30 minutes by default).
+
+If you set it to `nil`, your `sudo` session won't expire automatically and you will have to do it manually by using the `reset_sudo_session!` helper.
+
 ### Styling
 
 Using the `custom_logo`, `primary_color` and `background_color` options, you can customize the confirmation page. In case you want full control of the styles, you can use your own layout (and consequently your own styles too) using the `layout` option.
 
 See some [examples here](support/images/).
 
+**NOTE** If you are using your own layout, don't forget to render the flash messages in that layout. You can do something like [this](app/views/sudo_rails/_flash_alert.html.erb).
+
 ### Confirmation strategy
 
 You should define how to validate the password using the `confirm_strategy` option. It must be a `lambda`, which will receive 2 arguments: the controller instance (`context`) and the password from the user.

data/app/assets/stylesheets/sudo_rails/application.scss

@@ -2,13 +2,21 @@ body {
   text-align: center;
   font-family: Helvetica, Arial, sans-serif;
   background-color: #ececec;
-  transform: translateY(20%);
+  margin: 0 auto;
 }
 
 a {
   color: #000;
 }
 
+input {
+  -webkit-appearance: none;
+}
+
+.sudo-container {
+  transform: translateY(25%);
+}
+
 .sudo-header {
   margin: 2em auto;
 
@@ -50,4 +58,11 @@ a {
 .sudo-tip {
   margin-top: 2em;
   font-size: 14px;
-}
+}
+
+.sudo-alert {
+  background: #000;
+  color: #fff;
+  padding: 10px;
+  font-weight: bold;
+}

data/app/controllers/sudo_rails/application_controller.rb

@@ -3,12 +3,13 @@ module SudoRails
     before_action :sudo_enabled?
 
     def confirm
-      if request.post? && SudoRails.confirm?(self, params[:password])
+      if SudoRails.confirm?(self, params[:password])
         session[:sudo_session] = Time.zone.now.to_s
-        redirect_to params[:target_path]
       else
-        render 'sudo_rails/confirm_form', layout: SudoRails.get_layout
+        flash[:alert] = I18n.t('sudo_rails.invalid_pass')
       end
+
+      redirect_to params[:target_path]
     end
 
     private

data/app/views/layouts/sudo_rails/application.html.erb

@@ -7,6 +7,9 @@
   <%= render 'sudo_rails/inject_custom_styles' if SudoRails.custom_styles? %>
 </head>
 <body>
-  <%= yield %>
+  <%= render 'sudo_rails/flash_alert' %>
+  <div class="sudo-container">
+    <%= yield %>
+  </div>
 </body>
 </html>

data/app/views/sudo_rails/_flash_alert.html.erb

@@ -0,0 +1,5 @@
+<% if flash[:alert].present? %>
+  <div class="sudo-alert">
+    <span><%= flash[:alert] %></span>
+  </div>
+<% end %>

data/app/views/sudo_rails/_inject_custom_styles.html.erb

@@ -4,6 +4,11 @@
       background-color: <%= SudoRails.background_color %>;
       color: <%= SudoRails.color_contrast(SudoRails.background_color) %>;
     }
+
+    .sudo-alert {
+      background-color: <%= SudoRails.color_contrast(SudoRails.background_color) %>;
+      color: <%= SudoRails.background_color %>;
+    }
   <% end %>
 
   <% if SudoRails.primary_color.present? %>
@@ -16,4 +21,4 @@
       color: <%= SudoRails.color_contrast(SudoRails.primary_color) %>;
     }
   <% end %>
-</style>
+</style>

data/app/views/sudo_rails/confirm_form.html.erb

@@ -1,10 +1,10 @@
-<header class='sudo-header'>
+<div class='sudo-header'>
   <% if SudoRails.custom_logo %>
     <%= image_tag SudoRails.custom_logo %>
   <% end %>
 
   <h2><%= t('sudo_rails.page_header') %></h2>
-</header>
+</div>
 
 <div class='sudo-form'>
   <%= form_tag '/sudo_rails/confirm' do |f| %>
@@ -18,6 +18,8 @@
   <% end %>
 </div>
 
-<div class='sudo-tip'>
-  <%= t('sudo_rails.tip', session_duration: time_ago_in_words(SudoRails.sudo_session_duration.ago)).html_safe %>
-</div>
+<% unless SudoRails.sudo_session_duration.nil? %>
+  <div class='sudo-tip'>
+    <%= t('sudo_rails.tip', session_duration: time_ago_in_words(SudoRails.sudo_session_duration.ago)).html_safe %>
+  </div>
+<% end %>

data/config/locales/en.yml

@@ -4,6 +4,7 @@ en:
     button: Confirm password
     password: Password
     forgot_pass: Forgot your password?
+    invalid_pass: Invalid password
     tip: |-
       You are entering <b>sudo mode</b>.<br>
       We won’t ask for your password again for <i>%{session_duration}</i>.

data/lib/sudo_rails.rb

@@ -30,6 +30,7 @@ module SudoRails
 
     def valid_sudo_session?(started_at)
       return false unless started_at
+      return true if sudo_session_duration.nil?
 
       DateTime.parse(started_at) + sudo_session_duration > Time.zone.now
     end

data/lib/sudo_rails/engine.rb

@@ -10,7 +10,7 @@ module SudoRails
 
     initializer 'sudo_rails.routes' do |app|
       app.routes.append do
-        match '/sudo_rails/confirm' => 'sudo_rails/application#confirm', via: [:get, :post]
+        post '/sudo_rails/confirm' => 'sudo_rails/application#confirm'
       end
     end
 

data/lib/sudo_rails/version.rb

@@ -1,3 +1,3 @@
 module SudoRails
-  VERSION = "0.4.1"
+  VERSION = "0.6.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: sudo_rails
 version: !ruby/object:Gem::Version
-  version: 0.4.1
+  version: 0.6.0
 platform: ruby
 authors:
 - markets
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-05-30 00:00:00.000000000 Z
+date: 2020-12-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -65,6 +65,7 @@ files:
 - app/assets/stylesheets/sudo_rails/application.scss
 - app/controllers/sudo_rails/application_controller.rb
 - app/views/layouts/sudo_rails/application.html.erb
+- app/views/sudo_rails/_flash_alert.html.erb
 - app/views/sudo_rails/_inject_custom_styles.html.erb
 - app/views/sudo_rails/confirm_form.html.erb
 - config/locales/en.yml