RubyGems - tinytokenauth-rails - Versions diffs - 0.1.4 → 0.1.5 - Mend

tinytokenauth-rails 0.1.4 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/Gemfile.lock +1 -3
data/lib/tinytokenauth/authorizable.rb +54 -60
data/lib/tinytokenauth/configuration.rb +9 -1
data/lib/tinytokenauth/version.rb +1 -1
data/lib/tinytokenauth.rb +1 -0
metadata +1 -15

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2f451e883a64a93e1a4e76cd23bb35b07ba1b1816ede6fd35b74eee2a6aa5249
-  data.tar.gz: f9673304ce562419fef33bbfd4142522d5a956d9cb47fcc33e7efa70e0ff8eb0
+  metadata.gz: 82d81a75b0bbc6caea554a6bfc8ada102b75d61eb033d69566ab30069a50f01a
+  data.tar.gz: 06c397f8ce6c8d65b4eb1b36096d021f18c8f78f8b7ffa344e497de1924287af
 SHA512:
-  metadata.gz: 4b88dea1d640d8e66790bdeb2faea632f5b0d6af94a59b4e528b745f0ba9469e1a456d8e1773abe1eec24671fedd83eec60d61e8da61ef8123833aeacffa3ee3
-  data.tar.gz: f148374f39389139bb58193072d8547e910e73491a589aeb5a896b6a9f9a0f90b736a4855b0fb02476b46d0e3ef9a050541b3585bbc4e558961ba9a06549b8c6
+  metadata.gz: 4e157d5631eeafcaa5f5155879cfe4c6ea6873b173f17fdd225b07b9d57c3a602824722976f523577da36e875652bbf5d966f72f0034c32c9cdaf3a74fb4b4f7
+  data.tar.gz: bf36b14bdb08c99bbbb6d159fb4a4825f13d5060cc0cb15a47be1cda8fe7f1fc437906b87480590935e84441c2f73e70bec0b9a92f8b55ce0604a43e6dff0890

data/Gemfile.lock CHANGED Viewed

@@ -1,8 +1,7 @@
 PATH
   remote: .
   specs:
-    tinytokenauth-rails (0.1.3)
-      bcrypt (~> 3.1)
+    tinytokenauth-rails (0.1.4)
       jwt (~> 2.7)
       rails (>= 6.0)
@@ -76,7 +75,6 @@ GEM
       tzinfo (~> 2.0)
     ast (2.4.2)
     base64 (0.1.1)
-    bcrypt (3.1.19)
     builder (3.2.4)
     concurrent-ruby (1.2.2)
     crass (1.0.6)

data/lib/tinytokenauth/authorizable.rb CHANGED Viewed

@@ -1,10 +1,6 @@
 module Tinytokenauth
   module Authorizable
-    # class Configuration
-    #   attr_accessor :token_duration
-    # end
     class << self
       def configuration
         @configuration ||= Configuration.new
@@ -15,16 +11,15 @@ module Tinytokenauth
       end
     end
-    def authorize_with_header(klass = User)
+    def authorize_with_header
       token = ''
       header = request.headers['Authorization']
       token = header.split(' ').last if header
-      # p "token from header: #{token}"
       begin
         @decoded = JsonWebToken.decode(token)
         # @current_user = User.find(@decoded[:user_id])
-        @current_user = klass.send 'find', @decoded[:user_id]
+        @current_user = Authorizable.configuration.user_class.send 'find', @decoded[:user_id]
       rescue ActiveRecord::RecordNotFound => e
         render json: { errors: e.message }, status: :unauthorized
       rescue JWT::DecodeError => e
@@ -32,33 +27,29 @@ module Tinytokenauth
       end
     end
-    # Tinytokenauth.configure do |config|
-    #   config.token_duration = 24.hours
+    # def require_current_user(klass = User)
+    #   token = cookies['klap-auth']
+    #   # p "token from cookie: #{token}"
+    #
+    #   begin
+    #     @decoded = JsonWebToken.decode(token)
+    #     # @current_user = User.find(@decoded[:user_id])
+    #     @current_user = klass.send 'find', @decoded[:user_id]
+    #     @exp = @decoded[:exp]
+    #     # if @exp < 24.hours.from_now.to_i # Always refresh token
+    #     if @exp < 4.hours.from_now.to_i # Always refresh token
+    #       sign_in @current_user
+    #     end
+    #   rescue ActiveRecord::RecordNotFound => e
+    #     # TODO: evaluate if we should always forward
+    #     redirect_to new_session_path(forward_to: request.path), notice: "Please sign in again" #, status: :unauthorized
+    #   rescue JWT::DecodeError => e
+    #     # TODO: evaluate if we should always forward
+    #     # render json: { errors: e.message }, status: :unauthorized
+    #     redirect_to new_session_path(forward_to: request.path), notice: "Please sign in again" #, status: :unauthorized
+    #   end
     # end
-    def require_current_user(klass = User)
-      token = cookies['klap-auth']
-      # p "token from cookie: #{token}"
-      begin
-        @decoded = JsonWebToken.decode(token)
-        # @current_user = User.find(@decoded[:user_id])
-        @current_user = klass.send 'find', @decoded[:user_id]
-        @exp = @decoded[:exp]
-        # if @exp < 24.hours.from_now.to_i # Always refresh token
-        if @exp < 4.hours.from_now.to_i # Always refresh token
-          sign_in @current_user
-        end
-      rescue ActiveRecord::RecordNotFound => e
-        # TODO: evaluate if we should always forward
-        redirect_to new_session_path(forward_to: request.path), notice: "Please sign in again" #, status: :unauthorized
-      rescue JWT::DecodeError => e
-        # TODO: evaluate if we should always forward
-        # render json: { errors: e.message }, status: :unauthorized
-        redirect_to new_session_path(forward_to: request.path), notice: "Please sign in again" #, status: :unauthorized
-      end
-    end
     # def require_current_user2(klass = User, &block)
     #   current_user = set_current_user(klass)
     #   if block_given? && current_user.nil?
@@ -68,16 +59,16 @@ module Tinytokenauth
     #   end
     # end
-    def require_current_user2(klass = User, &block)
-      token = cookies['klap-auth']
+    def require_current_user(&block)
+      token = cookies[Authorizable.configuration.cookie_name]
       # p "token from cookie: #{token}"
       begin
         @decoded = JsonWebToken.decode(token)
         # @current_user = User.find(@decoded[:user_id])
-        @current_user = klass.send 'find', @decoded[:user_id]
+        @current_user = Authorizable.configuration.user_class.send 'find', @decoded[:user_id]
         @exp = @decoded[:exp]
-        # if @exp < 24.hours.from_now.to_i # Always refresh token
-        if @exp < 4.hours.from_now.to_i # Always refresh token
+        if Authorizable.configuration.token_auto_renew_hours &&
+          @exp < Authorizable.configuration.token_auto_renew_hours.hours.from_now.to_i
           sign_in @current_user
         end
       rescue ActiveRecord::RecordNotFound, JWT::DecodeError => e
@@ -89,30 +80,30 @@ module Tinytokenauth
       end
     end
-    def set_current_user(klass = User)
-      token = cookies['klap-auth']
-      begin
-        @decoded = JsonWebToken.decode(token)
-        # @current_user = User.find(@decoded[:user_id])
-        @current_user = klass.send 'find', @decoded[:user_id]
-        @exp = @decoded[:exp]
-        # if @exp < 24.hours.from_now.to_i # Always refresh token
-        if @exp < 4.hours.from_now.to_i # Always refresh token
-          # token = JsonWebToken.encode(user_id: @current_user.id)
-          # cookies['klap-auth'] = token
-          sign_in @current_user
-        end
-      rescue ActiveRecord::RecordNotFound
-        # Ignored
-      rescue JWT::DecodeError
-        # Ignored
-      end
-      @current_user
-    end
+    # def set_current_user(klass = User)
+    #   token = cookies[Authorizable.configuration.cookie_name]
+    #   begin
+    #     @decoded = JsonWebToken.decode(token)
+    #     # @current_user = User.find(@decoded[:user_id])
+    #     @current_user = klass.send 'find', @decoded[:user_id]
+    #     @exp = @decoded[:exp]
+    #     # if @exp < 24.hours.from_now.to_i # Always refresh token
+    #     if @exp < 4.hours.from_now.to_i # Always refresh token
+    #       # token = JsonWebToken.encode(user_id: @current_user.id)
+    #       # cookies['klap-auth'] = token
+    #       sign_in @current_user
+    #     end
+    #   rescue ActiveRecord::RecordNotFound
+    #     # Ignored
+    #   rescue JWT::DecodeError
+    #     # Ignored
+    #   end
+    #   @current_user
+    # end
-    def set_current_user2(klass = User)
+    def set_current_user
       begin
-        require_current_user2(klass)
+        require_current_user
       rescue ActiveRecord::RecordNotFound
         # Ignored
       rescue JWT::DecodeError
@@ -123,7 +114,10 @@ module Tinytokenauth
     def sign_in(user)
       @current_user = user
-      cookies['klap-auth'] = JsonWebToken.encode(user_id: user.id)
+      jwt = JsonWebToken.encode(user_id: user.id,
+                                exp: Authorizable.configuration.token_validity_hours.hours.from_now,
+                                secret: Authorizable.configuration.token_secret)
+      cookies[Authorizable.configuration.cookie_name] = jwt
     end
     def current_user

data/lib/tinytokenauth/configuration.rb CHANGED Viewed

@@ -1,6 +1,14 @@
 module Tinytokenauth
   class Configuration
-    attr_accessor :token_duration
+    attr_accessor :user_class, :token_validity_hours, :token_auto_renew_hours, :token_secret, :cookie_name
+    def initialize
+      @user_class = User
+      @token_validity_hours = 24
+      @token_auto_renew_hours = 4
+      @token_secret = Rails.application.credentials.secret_key_base
+      @cookie_name = 'ttauth'
+    end
   end
 end

data/lib/tinytokenauth/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Tinytokenauth
-  VERSION = "0.1.4"
+  VERSION = "0.1.5"
 end

data/lib/tinytokenauth.rb CHANGED Viewed

@@ -4,6 +4,7 @@ module Tinytokenauth
   require_relative "tinytokenauth/version"
   require_relative "tinytokenauth/railtie"
   require_relative 'tinytokenauth/configuration'
+  require_relative 'tinytokenauth/json_web_token'
   require_relative "tinytokenauth/authorizable"
   require_relative "tinytokenauth/view_helpers"

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: tinytokenauth-rails
 version: !ruby/object:Gem::Version
-  version: 0.1.4
+  version: 0.1.5
 platform: ruby
 authors:
 - Kim Laplume
@@ -38,20 +38,6 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.7'
-- !ruby/object:Gem::Dependency
-  name: bcrypt
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.1'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '3.1'
 description: Soon
 email:
 - kim.laplume@protonmail.com