two_factor_cookies 0.1.1 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +5 -5
  2. data/README.md +29 -9
  3. data/app/controllers/two_factor_cookies/toggle_two_factor_controller.rb +4 -0
  4. data/config/locales/en.yml +6 -0
  5. data/lib/two_factor_cookies/configuration.rb +2 -1
  6. data/lib/two_factor_cookies/version.rb +1 -1
  7. metadata +3 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
- SHA1:
3
- metadata.gz: 241ec50e9eff97c7afea1414e8b29314cb583d22
4
- data.tar.gz: ba4267a354328a32050c47c161494ecd5b7c46fc
2
+ SHA256:
3
+ metadata.gz: 8ccf0f45cecbc377af4bd82b5ac202731a8c09e160202199dd6133a613bbcc2c
4
+ data.tar.gz: 20d7518de754fbfe4fe5c58cd820d0d04544a55497485ce3ab22967d954cd7ba
5
5
  SHA512:
6
- metadata.gz: 47991ccded64ecaf8a6986c0f04585527d37e5af6775ddfa75cd6bacba313a86406bf017da2b62c7826f57befae17e4a9249684b8f18983ba046da570d6a0706
7
- data.tar.gz: 558a837a8afc2ccc4beca5a3a1331a1d324ce88e8c5a681f10e26422eec7f8e552749ae986f189a514f8958d4bef8c497969e8703611278c0da8ef517d44ef34
6
+ metadata.gz: 696b69c8e9b4b08dbc886b5c7cbcb0fb1b7a085dc92488eecd3d8bcb1b430df5873b6196cc18d5612c1b179fb63a1a1aabaad1fd0e5cfbf622fe66e073ee38ee
7
+ data.tar.gz: e29110160189fe56898b998b68f33bff6d68af084773c57ea7791f68633b71f2f96371ff3cac01e9efb1c89ddc15c8ed0d9453ad1c6d759c7ade83ef33b6af52
data/README.md CHANGED
@@ -94,21 +94,41 @@ If using ActiveRecord or Mongoid, `enabled_two_factor?` and `confirmed_phone_num
94
94
 
95
95
  #### Example implementations
96
96
  ```ruby
97
- def disable_two_factor!
98
- self.enabled_two_factor = false
99
- save
100
- end
97
+ def disable_two_factor!
98
+ self.enabled_two_factor = false
99
+ save
100
+ end
101
101
  ```
102
102
  If for example you want to delete the phone number, when disabling 2fa, it could be done here
103
103
  ```ruby
104
- def disaffirm_phone_number!
105
- self.confirmed_phone_number = false
106
- self.phone_number = nil
107
- save
108
- end
104
+ def disaffirm_phone_number!
105
+ self.confirmed_phone_number = false
106
+ self.phone_number = nil
107
+ save
108
+ end
109
109
  ```
110
110
 
111
111
  When disabling two factor authentication, `disaffirm_phone_number!` is also called and a new confirmation of the phone number is required, if 2fa is enabled again.
112
112
 
113
+ ## ToggleTwoFactorController
114
+ ### Toggling two factor on and off
115
+ Toggling two factor on and off is handled by the `ToggleTwoFactorController` in the action also named `toggle_two_factor`. It requires whatever form is used for this to supply parameters in the format
116
+ ```ruby
117
+ { user: { enabled_two_factor: '1' } }
118
+ ```
119
+ `user` in the param is the name of the user model in the app, taken from the configuration. If enabled_two_factor is '1', two factor is toggled on. If enabled_two_factor is anything else, two factor will be toggled off
120
+
121
+ #### Logging
122
+ The gem can be configured to log, when 2fa is toggled on or off. To do this you must configure `logging_module` with a module that has `log` defined in whatever way makes sense in your project. The method will be passed a message consisting of a translation with a user id.
123
+ ```
124
+ module Log
125
+ extend ActiveSupport::Concern
126
+
127
+ def log(message)
128
+ Rails.logger.info message
129
+ end
130
+ end
131
+ ```
132
+
113
133
  ## License
114
134
  The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
data/app/controllers/two_factor_cookies/toggle_two_factor_controller.rb CHANGED
@@ -1,5 +1,7 @@
1
1
  TwoFactorCookies.const_set('ToggleTwoFactorController',
2
2
  Class.new('TwoFactorCookies::TwoFactorAuthenticationController'.constantize) do
3
+ include TwoFactorCookies.configuration.logging_module.constantize if TwoFactorCookies.configuration.logging_module
4
+
3
5
  def update
4
6
  if TwoFactorCookies::OneTimePasswordGenerator.verify_code(
5
7
  confirm_phone_number_params[:one_time_password],
@@ -23,9 +25,11 @@ TwoFactorCookies.const_set('ToggleTwoFactorController',
23
25
  current_user.enable_two_factor!
24
26
  current_user.update(update_params) if TwoFactorCookies.configuration.update_params
25
27
  set_authenticated_cookie
28
+ log(I18n.t('two_factor_cookies.logger.toggle_2fa_on', id: current_user.id)) if TwoFactorCookies.configuration.logging_module
26
29
  else
27
30
  current_user.disable_two_factor!
28
31
  current_user.disaffirm_phone_number!
32
+ log(I18n.t('two_factor_cookies.logger.toggle_2fa_off', id: current_user.id)) if TwoFactorCookies.configuration.logging_module
29
33
  end
30
34
 
31
35
  redirect_to eval(TwoFactorCookies.configuration.engine_name).public_send(
data/config/locales/en.yml CHANGED
@@ -14,3 +14,9 @@ en:
14
14
  flash:
15
15
  confirmed: Phone number confirmed
16
16
  wrong_one_time_password: Wrong code - try again
17
+ logger:
18
+ toggle_2fa_on: "Two factor toggled on for user id %{id}"
19
+ toggle_2fa_off: "Two factor toggled off for user id %{id}"
20
+ confirm_phone_number_success: "Confirmation of phone number %{phone_number} successful for user id %{id}"
21
+ confirm_phone_number_fail: "Confirmation of phone number %{phone_number} failed for user id %{id}"
22
+
data/lib/two_factor_cookies/configuration.rb CHANGED
@@ -4,7 +4,7 @@ module TwoFactorCookies
4
4
  :toggle_two_factor_success_route, :two_factor_authentication_expiry, :otp_expiry, :twilio_account_sid,
5
5
  :twilio_phone_number, :twilio_auth_token, :phone_number_field_name, :user_model_name, :username_field_name,
6
6
  :two_factor_authentication_controller_parent, :skip_before_action, :layout_path, :additional_authentication_values,
7
- :update_params, :engine_name
7
+ :update_params, :engine_name, :logging_module
8
8
 
9
9
  def initialize
10
10
  @otp_generation_secret_key = nil
@@ -24,6 +24,7 @@ module TwoFactorCookies
24
24
  @confirm_phone_number_success_route = nil
25
25
  @layout_path = nil
26
26
  @two_factor_authentication_controller_parent = '::ApplicationController'
27
+ @logging_module = nil
27
28
 
28
29
  @additional_authentication_values = {}
29
30
 
data/lib/two_factor_cookies/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module TwoFactorCookies
2
- VERSION = '0.1.1'
2
+ VERSION = '0.1.2'
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: two_factor_cookies
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.1
4
+ version: 0.1.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Nicolai Bach Woller
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2019-08-02 00:00:00.000000000 Z
11
+ date: 2019-08-19 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rails
@@ -159,9 +159,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
159
159
  version: '0'
160
160
  requirements: []
161
161
  rubyforge_project:
162
- rubygems_version: 2.5.2
162
+ rubygems_version: 2.7.6
163
163
  signing_key:
164
164
  specification_version: 4
165
165
  summary: Simple two factor logon - with Twilio SMS for code delivery
166
166
  test_files: []
167
- has_rdoc: