RubyGems - thecore_backend_commons - Versions diffs - 3.1.3 → 3.1.4 - Mend

thecore_backend_commons 3.1.3 → 3.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/config/initializers/application_config.rb +1 -1
data/config/initializers/concern_application_record.rb +11 -3
data/config/initializers/concern_cable_connection.rb +4 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cb20c15ff661ae29da36dd49e741a06f2fcebfe66d6d396ab8d13e56bc19cfaf
-  data.tar.gz: 0eb50b593ab125d7ea382429cd8c5239bff1bdcbecf374684696afe07decc2b4
+  metadata.gz: 7497a63c6b2cf568f786b24734477b49d8a38a8b6dbec82f370ee1c02d463038
+  data.tar.gz: 4659432eab9e8b37b37c7e412010f82d8ba0aba879eadffc1ab22d79bae33dc0
 SHA512:
-  metadata.gz: 11f14abba150e961335fc6ba119606c2e4fed084294fbc0896f31069441eced1310dfa1c243e1638375b7afe8c38e75ddf1e0b5036df2378f51ab5c5e7e9a176
-  data.tar.gz: 546044d1eef76e68c3542cc4fc23692259e527e5e3dc544912f1d95e12bee58bbcca58eea668fe22491ce74da6e4d8e29bfbe89afda71c053ee0b764a382d758
+  metadata.gz: 3da399e4ee0c80efb21447a3c50088a50e1a302531faf16d4f0fc8b0acc247b5f63968a738bc99dfd2b8b0f7ccca84f0242d0cdc2f365a9ae2d4d4c470910515
+  data.tar.gz: da3e94fa7c2c17da98d4c2aeac681a9fb59362d49738a6f17fd486ccfaa759767073e2a4dd70843ea1de1e0b04d3983a0b3fd606e8b2099276b36a75ddd00425

data/config/initializers/application_config.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 Rails.application.config.active_storage.configure :Disk, root: Rails.root.join("storage")
 Rails.application.config.action_mailer.delivery_method = :smtp
-Rails.application.config.action_cable.allowed_request_origins = [ ENV["FRONTEND_URL"].presence || /http:\/\/*/, ENV["BACKEND_URL"].presence || /http:\/\/*/ ].uniq
+Rails.application.config.action_cable.allowed_request_origins = [ ENV["FRONTEND_URL"].presence || /http:\/\/*/, ENV["BACKEND_URL"].presence || /http:\/\/*/, "https://localhost:8100" ].uniq

data/config/initializers/concern_application_record.rb CHANGED Viewed

@@ -10,15 +10,23 @@ module ApplicationRecordConcern
     after_rollback :message_ko
     def validation_ko
-      ActionCable.server.broadcast("messages", { topic: :record, action: detect_action, success: false, valid: false, errors: self.errors.full_messages.uniq, record: self}) if self.errors.any?
+      ActionCable.server.broadcast("messages", build_message(false, false, self.errors.full_messages.uniq)) if self.errors.any? && !is_model_forbidden
     end
     def message_ok
-      ActionCable.server.broadcast("messages", { topic: :record, action: detect_action, success: true, valid: true, errors: [], record: self})
+      ActionCable.server.broadcast("messages", build_message(true, true, [])) unless is_model_forbidden
     end
     def message_ko
-      ActionCable.server.broadcast("messages", { topic: :record, action: detect_action, success: false, valid: true, errors: [], record: self})
+      ActionCable.server.broadcast("messages", build_message(false, true, [])) unless is_model_forbidden
+    end
+    def is_model_forbidden
+      [ 'User', 'Role' ].include?(self.class.name)
+    end
+    def build_message success, valid, errors
+      { topic: :record, action: detect_action, class: self.class.name, success: success, valid: valid, errors: errors, record: self}
     end
     def detect_action

data/config/initializers/concern_cable_connection.rb CHANGED Viewed

@@ -12,7 +12,10 @@ module CableConnectionConcern
     protected
     def find_verified_user # this checks whether a user is authenticated with devise
-      if verified_user = env['warden'].user
+      m = request.query_parameters["token"]
+      body = ::HashWithIndifferentAccess.new(::JWT.decode(m, ::Rails.application.credentials.dig(:secret_key_base).presence||ENV["SECRET_KEY_BASE"], false)[0]) rescue nil
+      if verified_user = (env['warden'].user.presence || User.find_by(id: body[:user_id]))
         verified_user
       else
         reject_unauthorized_connection

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: thecore_backend_commons
 version: !ruby/object:Gem::Version
-  version: 3.1.3
+  version: 3.1.4
 platform: ruby
 authors:
 - Gabriele Tassoni