RubyGems - warden - Versions diffs - 0.3.1 → 0.3.2 - Mend

@@ -1,26 +1,27 @@
+# encoding: utf-8
 module Warden
   # The middleware for Rack Authentication
   # The middlware requires that there is a session upstream
-  # The middleware injects an authentication object into
+  # The middleware injects an authentication object into
   # the rack environment hash
   class Manager
-    attr_accessor :config, :failure_app
+    attr_accessor :config, :failure_app
     # initialize the middleware.
     # Provide a :failure_app in the options to setup an application to run when there is a failure
     # The manager is yielded when initialized with a block.  This is useful when declaring it in Rack::Builder
-    # :api: public
+    # :api: public
     def initialize(app, config = {})
       @app = app
       @config = config
       yield self if block_given?
       # should ensure there is a failure application defined.
       @failure_app = config[:failure_app] if config[:failure_app]
       raise "No Failure App provided" unless @failure_app
       self
-    end
+    end
     # Set the default strategies to use.
     # :api: public
     def default_strategies(*strategies)
@@ -30,12 +31,12 @@ module Warden
         @config[:default_strategies] = strategies.flatten
       end
     end
     # :api: private
     def call(env) # :nodoc:
       # if this is downstream from another warden instance, don't do anything.
-      return @app.call(env) unless env['warden'].nil?
+      return @app.call(env) unless env['warden'].nil?
       env['warden'] = Proxy.new(env, @config)
       result = catch(:warden) do
         @app.call(env)
@@ -55,17 +56,17 @@ module Warden
         end # case result
       end
     end
-    class << self
+    class << self
       # Does the work of storing the user in the session
       # :api: private
-      def _store_user(user, session, scope = :default) # :nodoc:
+      def _store_user(user, session, scope = :default) # :nodoc:
         return nil if user.nil?
         session["warden.user.#{scope}.key"] = serialize_into_session.call(user)
       end
       # Does the work of fetching the user from the session
       # :api: private
       def _fetch_user(session, scope = :default) # :nodoc:
@@ -73,10 +74,10 @@ module Warden
         return nil if key.nil?
         serialize_from_session.call(key)
       end
       # Prepares the user to serialize into the session.
       # Any object that can be serialized into the session in some way can be used as a "user" object
-      # Generally however complex object should not be stored in the session.
+      # Generally however complex object should not be stored in the session.
       # If possible store only a "key" of the user object that will allow you to reconstitute it.
       #
       # Example:
@@ -87,10 +88,10 @@ module Warden
         @serialize_into_session = block if block_given?
         @serialize_into_session ||= lambda{|user| user}
       end
       # Reconstitues the user from the session.
       # Use the results of user_session_key to reconstitue the user from the session on requests after the initial login
-      #
+      #
       # Example:
       #   Warden::Manager.serialize_from_session{ |id| User.get(id) }
       #
@@ -98,11 +99,11 @@ module Warden
       def serialize_from_session(&blk)
         @serialize_from_session = blk if block_given?
         @serialize_from_session ||= lambda{|key| key}
-      end
+      end
     end
     private
-    # When a request is unauthentiated, here's where the processing occurs.
+    # When a request is unauthentiated, here's where the processing occurs.
     # It looks at the result of the proxy to see if it's been executed and what action to take.
     # :api: private
     def process_unauthenticated(result, env)
@@ -117,7 +118,7 @@ module Warden
         call_failure_app(env, result)
       end # case env['warden'].result
     end
     # Calls the failure app.
     # The before_failure hooks are run on each failure
     # :api: private
@@ -127,10 +128,10 @@ module Warden
       else
         env["PATH_INFO"] = "/#{opts[:action]}"
         env["warden.options"] = opts
         # Call the before failure callbacks
         Warden::Manager._before_failure.each{|hook| hook.call(env,opts)}
         @failure_app.call(env).to_a
       end
     end # call_failure_app

data/lib/warden/mixins/common.rb CHANGED

@@ -1,25 +1,33 @@
+# encoding: utf-8
 module Warden
   module Mixins
     module Common
       # Convinience method to access the session
       # :api: public
       def session
-        @env['rack.session']
+        env['rack.session']
       end # session
+      alias_method :raw_session, :session
       # Convenience method to access the rack request
       # :api: public
       def request
         @request ||= Rack::Request.new(@env)
       end # request
       # Convenience method to access the rack request params
       # :api: public
       def params
         request.params
       end # params
+      # Resets the session.  By using this non-hash like sessions can
+      # be cleared by overwriting this method in a plugin
+      # @api overwritable
+      def reset_session!
+        raw_session.clear
+      end
     end # Common
   end # Mixins
 end # Warden

data/lib/warden/proxy.rb CHANGED

@@ -1,18 +1,18 @@
+# encoding: utf-8
 module Warden
   class UserNotSet < RuntimeError; end
   class Proxy
     # :api: private
     attr_accessor :winning_strategy
     # An accessor to the rack env hash
     # :api: public
     attr_reader :env
     extend ::Forwardable
     include ::Warden::Mixins::Common
-    alias_method :_session, :session
     # :api: private
     def_delegators :winning_strategy, :headers, :_status, :custom_response
@@ -26,25 +26,25 @@ module Warden
     # Check to see if there is an authenticated user for the given scope.
     # When scope is not specified, :default is assumed.
-    # This will not try to reconstitute the user from the session and will simply check for the
+    # This will not try to reconstitute the user from the session and will simply check for the
     # existance of a session key
-    #
-    # Parameters:
+    #
+    # Parameters:
     #   scope - the scope to check for authentication.  Defaults to :default
     #
-    # Example:
+    # Example:
     #   env['warden'].authenticated?(:admin)
     # :api: public
     def authenticated?(scope = :default)
-      !_session["warden.user.#{scope}.key"].nil?
+      !raw_session["warden.user.#{scope}.key"].nil?
     end # authenticated?
-    # Run the authentiation strategies for the given strategies.
+    # Run the authentiation strategies for the given strategies.
     # If there is already a user logged in for a given scope, the strategies are not run
     # This does not halt the flow of control and is a passive attempt to authenticate only
     # When scope is not specified, :default is assumed.
-    #
-    # Parameters:
+    #
+    # Parameters:
     #   args - a list of symbols (labels) that name the strategies to attempt
     #   opts - an options hash that contains the :scope of the user to check
     #
@@ -56,11 +56,11 @@ module Warden
       _perform_authentication(*args)
       user(scope)
     end
     # The same as +authenticate+ except on failure it will throw an :warden symbol causing the request to be halted
     # and rendered through the +failure_app+
-    #
-    # Example
+    #
+    # Example
     #   env['warden'].authenticate!(:password, :scope => :publisher) # throws if it cannot authenticate
     #
     # :api: public
@@ -71,38 +71,38 @@ module Warden
       throw(:warden, opts.merge(:action => :unauthenticated)) if !user(scope)
       user(scope)
     end
     # Manually set the user into the session and auth proxy
-    #
+    #
     # Parameters:
     #   user - An object that has been setup to serialize into and out of the session.
     #   opts - An options hash.  Use the :scope option to set the scope of the user
     # :api: public
     def set_user(user, opts = {})
       scope = (opts[:scope] ||= :default)
-      Warden::Manager._store_user(user, _session, scope) # Get the user into the session
+      Warden::Manager._store_user(user, raw_session, scope) # Get the user into the session
       # Run the after hooks for setting the user
       Warden::Manager._after_set_user.each{|hook| hook.call(user, self, opts)}
       @users[scope] = user # Store the user in the proxy user object
     end
     # Provides acccess to the user object in a given scope for a request.
     # will be nil if not logged in
-    #
+    #
     # Example:
     #   # without scope (default user)
     #   env['warden'].user
     #
-    #   # with scope
+    #   # with scope
     #   env['warden'].user(:admin)
     #
     # :api: public
     def user(scope = :default)
       @users[scope] ||= lookup_user_from_session(scope)
     end
     # Provides a scoped session data for authenticated users.
     # Warden manages clearing out this data when a user logs out
     #
@@ -116,10 +116,10 @@ module Warden
     # :api: public
     def session(scope = :default)
       raise NotAuthenticated, "#{scope.inspect} user is not logged in" unless authenticated?(scope)
-      _session["warden.user.#{scope}.session"] ||= {}
+      raw_session["warden.user.#{scope}.session"] ||= {}
     end
-    # Provides logout functionality.
+    # Provides logout functionality.
     # The logout also manages any authenticated data storage and clears it when a user logs out.
     #
     # Parameters:
@@ -134,57 +134,57 @@ module Warden
     #
     #  # Logout the :publisher and :admin user
     #  env['warden'].logout(:publisher, :admin)
-    #
+    #
     # :api: public
     def logout(*scopes)
       if scopes.empty?
-        _session.clear
+        reset_session!
         @users.clear
       else
         scopes.each do |s|
-          _session["warden.user.#{s}.key"] = nil
-          _session["warden.user.#{s}.session"] = nil
+          raw_session["warden.user.#{s}.key"] = nil
+          raw_session["warden.user.#{s}.session"] = nil
           @users.delete(s)
         end
       end
     end
     # proxy methods through to the winning strategy
     # :api: private
-    def result # :nodoc:
+    def result # :nodoc:
        winning_strategy.nil? ? nil : winning_strategy.result
     end
     # Proxy through to the authentication strategy to find out the message that was generated.
     # :api: public
     def message
       winning_strategy.nil? ? "" : winning_strategy.message
     end
     # Provides a way to return a 401 without warden defering to the failure app
     # The result is a direct passthrough of your own response
     # :api: public
     def custom_failure!
       @custom_failure = true
     end
     # Check to see if the custom failur flag has been set
     # :api: public
     def custom_failure?
       !!@custom_failure
     end
-    private
+    private
     # :api: private
     def _perform_authentication(*args)
       scope = scope_from_args(args)
       opts = opts_from_args(args)
       # Look for an existing user in the session for this scope
       if the_user = user(scope)
         return the_user
       end
       # If there was no user in the session.  See if we can get one from the request
       strategies = args.empty? ? @strategies : args
       raise "No Strategies Found" if strategies.empty? || !(strategies - Warden::Strategies._strategies.keys).empty?
@@ -195,23 +195,23 @@ module Warden
         strategy._run!
         break if strategy.halted?
       end
       if winning_strategy && winning_strategy.user
         set_user(winning_strategy.user, opts)
         # Run the after_authentication hooks
         Warden::Manager._after_authentication.each{|hook| hook.call(winning_strategy.user, self, opts)}
       end
       winning_strategy
     end
     # :api: private
     def scope_from_args(args)
       Hash === args.last ? args.last.fetch(:scope, :default) : :default
     end
     # :api: private
     def opts_from_args(args)
       Hash === args.last ? args.pop : {}
@@ -219,7 +219,7 @@ module Warden
     # :api: private
     def lookup_user_from_session(scope)
-      set_user(Warden::Manager._fetch_user(_session, scope), :scope => scope)
+      set_user(Warden::Manager._fetch_user(raw_session, scope), :scope => scope)
     end
   end # Proxy
-end # Warden
+end # Warden

data/spec/spec_helper.rb CHANGED

@@ -1,7 +1,7 @@
 $TESTING=true
-$:.push File.join(File.dirname(__FILE__), '..', 'lib')
 require 'rubygems'
 require 'rack'
+$:.unshift File.join(File.dirname(__FILE__), '..', 'lib')
 require 'warden'
 Dir[File.join(File.dirname(__FILE__), "warden", "strategies", "**/*.rb")].each do |f|
@@ -13,4 +13,4 @@ end
 Spec::Runner.configure do |config|
   config.include(Warden::Spec::Helpers)
-end
+end

data/spec/warden/authenticated_data_store_spec.rb CHANGED

@@ -1,23 +1,23 @@
 require File.dirname(__FILE__) + '/../spec_helper'
 describe "authenticated data store" do
   before(:each) do
     @env = env_with_params
     @env['rack.session'] = {
-        "warden.user.foo.key"      => "foo user",
-        "warden.user.default.key"  => "default user",
+        "warden.user.foo.key"      => "foo user",
+        "warden.user.default.key"  => "default user",
         :foo => "bar"
     }
   end
   it "should store data for the default scope" do
     app = lambda do |e|
       e['warden'].authenticate(:pass)
       e['warden'].authenticate(:pass, :scope => :foo)
       e['warden'].should be_authenticated
       e['warden'].should be_authenticated(:foo)
       # Store the data for :deafult
       e['warden'].session[:key] = "value"
       valid_response
@@ -26,7 +26,7 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.default.session'].should == {:key => "value"}
     @env['rack.session']['warden.user.foo.session'].should be_nil
   end
   it "should store data for the foo user" do
     app = lambda do |e|
       e['warden'].session(:foo)[:key] = "value"
@@ -35,7 +35,7 @@ describe "authenticated data store" do
     setup_rack(app).call(@env)
     @env['rack.session']['warden.user.foo.session'].should == {:key => "value"}
   end
   it "should store the data seperately" do
     app = lambda do |e|
       e['warden'].session[:key] = "value"
@@ -46,7 +46,7 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.default.session'].should == {:key => "value"}
     @env['rack.session']['warden.user.foo.session'    ].should == {:key => "another value"}
   end
   it "should clear the foo scoped data when foo logs out" do
     app = lambda do |e|
       e['warden'].session[:key] = "value"
@@ -58,7 +58,7 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.default.session'].should == {:key => "value"}
     @env['rack.session']['warden.user.foo.session'    ].should be_nil
   end
   it "should clear out the default data when :default logs out" do
     app = lambda do |e|
       e['warden'].session[:key] = "value"
@@ -70,7 +70,7 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.default.session'].should be_nil
     @env['rack.session']['warden.user.foo.session'    ].should == {:key => "another value"}
   end
   it "should clear out all data when a general logout is performed" do
     app = lambda do |e|
       e['warden'].session[:key] = "value"
@@ -82,10 +82,10 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.default.session'].should be_nil
     @env['rack.session']['warden.user.foo.session'    ].should be_nil
   end
   it "should logout multuiple personas at once" do
     @env['rack.session']['warden.user.bar.key'] = "bar user"
     app = lambda do |e|
       e['warden'].session[:key] = "value"
       e['warden'].session(:foo)[:key] = "another value"
@@ -98,16 +98,16 @@ describe "authenticated data store" do
     @env['rack.session']['warden.user.foo.session'    ].should == {:key => "another value"}
     @env['rack.session']['warden.user.bar.session'    ].should be_nil
   end
   it "should not store data for a user who is not logged in" do
     @env['rack.session']
     app = lambda do |e|
       e['warden'].session(:not_here)[:key] = "value"
       valid_response
     end
     lambda do
       setup_rack(app).call(@env)
     end.should raise_error(Warden::NotAuthenticated)
   end
-end
+end

data/spec/warden/proxy_spec.rb CHANGED

@@ -1,14 +1,14 @@
 require File.dirname(__FILE__) + '/../spec_helper'
 describe Warden::Proxy do
   before(:all) do
     Dir[File.join(File.dirname(__FILE__), "strategies/**/*.rb")].each{|f| load f}
   end
   before(:each) do
     @basic_app = lambda{|env| [200,{'Content-Type' => 'text/plain'},'OK']}
-    @authd_app = lambda do |e|
+    @authd_app = lambda do |e|
       e['warden'].authenticate
       if e['warden'].authenticated?
         [200,{'Content-Type' => 'text/plain'},"OK"]
@@ -19,7 +19,7 @@ describe Warden::Proxy do
     @env = Rack::MockRequest.
       env_for('/', 'HTTP_VERSION' => '1.1', 'REQUEST_METHOD' => 'GET')
   end # before(:each)
   describe "authentication" do
     it "should not check the authentication if it is not checked" do
@@ -45,9 +45,9 @@ describe Warden::Proxy do
       resp = app.call(env)
       resp.first.should == 200
     end
     describe "authenticate!" do
       it "should allow authentication in my application" do
         env = env_with_params('/', :username => "fred", :password => "sekrit")
         app = lambda do |env|
@@ -56,7 +56,7 @@ describe Warden::Proxy do
           env['warden.spec.strategies'].should == [:password]
         end
       end
       it "should be false in my application" do
         env = env_with_params("/", :foo => "bar")
         app = lambda do |env|
@@ -67,7 +67,7 @@ describe Warden::Proxy do
         end
         setup_rack(app).call(env)
       end
       it "should allow me to select which strategies I use in my appliction" do
         env = env_with_params("/", :foo => "bar")
         app = lambda do |env|
@@ -78,7 +78,7 @@ describe Warden::Proxy do
         end
         setup_rack(app).call(env)
       end
       it "should allow me to get access to the user at warden.user." do
         env = env_with_params("/")
         app = lambda do |env|
@@ -89,7 +89,7 @@ describe Warden::Proxy do
         end
         setup_rack(app).call(env)
       end
       it "should try multiple authentication strategies" do
         env = env_with_params("/")
         app = lambda do |env|
@@ -100,7 +100,7 @@ describe Warden::Proxy do
         end
         setup_rack(app).call(env)
       end
       it "should look for an active user in the session with authenticate!" do
         app = lambda do |env|
           env['rack.session']["warden.user.default.key"] = "foo as a user"
@@ -111,7 +111,7 @@ describe Warden::Proxy do
         setup_rack(app).call(env)
         env['warden'].user.should == "foo as a user"
       end
       it "should look for an active user in the session with authenticate?" do
         app = lambda do |env|
           env['rack.session']['warden.user.foo_scope.key'] = "a foo user"
@@ -123,7 +123,7 @@ describe Warden::Proxy do
         setup_rack(app).call(env)
         env['warden'].user(:foo_scope).should == "a foo user"
       end
       it "should login 2 different users from the session" do
         app = lambda do |env|
           env['rack.session']['warden.user.foo.key'] = 'foo user'
@@ -144,7 +144,7 @@ describe Warden::Proxy do
       end
     end
   end # describe "authentication"
   describe "set user" do
     it "should store the user into the session" do
       env = env_with_params("/")
@@ -158,13 +158,13 @@ describe Warden::Proxy do
       setup_rack(app).call(env)
     end
   end
   describe "get user" do
     before(:each) do
       @env['rack.session'] ||= {}
       @env['rack.session'].delete("warden.user.default.key")
     end
     it "should return nil when not logged in" do
       app = lambda do |env|
         env['warden'].user.should be_nil
@@ -172,7 +172,7 @@ describe Warden::Proxy do
       end
       setup_rack(app).call(@env)
     end
     it "should not run strategies when not logged in" do
       app = lambda do |env|
         env['warden'].user.should be_nil
@@ -181,13 +181,13 @@ describe Warden::Proxy do
       end
       setup_rack(app).call(@env)
     end
     describe "previously logged in" do
       before(:each) do
         @env['rack.session']['warden.user.default.key'] = "A Previous User"
       end
       it "should take the user from the session when logged in" do
         app = lambda do |env|
           env['warden'].user.should == "A Previous User"
@@ -195,7 +195,7 @@ describe Warden::Proxy do
         end
         setup_rack(app).call(@env)
       end
       it "should not run strategies when the user exists in the session"
     end
   end
@@ -211,7 +211,7 @@ describe Warden::Proxy do
       end
       @app = setup_rack(app)
     end
     it "should logout only the scoped foo user" do
       @env['warden.spec.which_logout'] = :foo
       @app.call(@env)
@@ -219,15 +219,15 @@ describe Warden::Proxy do
       @env['rack.session']['warden.user.foo.key'].should be_nil
       @env['rack.session'][:foo].should == "bar"
     end
-    it "should logout only the scoped default user" do
+    it "should logout only the scoped default user" do
       @env['warden.spec.which_logout'] = :default
       @app.call(@env)
       @env['rack.session']['warden.user.default.key'].should be_nil
       @env['rack.session']['warden.user.foo.key'].should == "foo key"
       @env['rack.session'][:foo].should == "bar"
     end
     it "should clear the session when no argument is given to logout" do
       @env['rack.session'].should_not be_nil
       app = lambda do |e|
@@ -237,7 +237,7 @@ describe Warden::Proxy do
       setup_rack(app).call(@env)
       @env['rack.session'].should be_empty
     end
     it "should clear the user when logging out" do
       @env['rack.session'].should_not be_nil
       app = lambda do |e|
@@ -249,7 +249,7 @@ describe Warden::Proxy do
       end
       setup_rack(app).call(@env)
       @env['warden'].user.should be_nil
     end
     it "should clear the session data when logging out" do
@@ -263,10 +263,21 @@ describe Warden::Proxy do
       end
       setup_rack(app).call(@env)
     end
+    it "should clear out the session by calling reset_session! so that plugins can setup their own session clearing" do
+      @env['rack.session'].should_not be_nil
+      app = lambda do |e|
+        e['warden'].user.should_not be_nil
+        e['warden'].should_receive(:reset_session!)
+        e['warden'].logout
+        valid_response
+      end
+      setup_rack(app).call(@env)
+    end
   end
   describe "messages" do
     it "should allow access to the failure message" do
       failure = lambda do |e|
         [401, {"Content-Type" => "text/plain"}, [e['warden'].message]]
@@ -277,7 +288,7 @@ describe Warden::Proxy do
       result = setup_rack(app, :failure_app => failure).call(env_with_params)
       result.last.should == ["The Fails Strategy Has Failed You"]
     end
     it "should not die when accessing a message from a source where no authentication has occured" do
       app = lambda do |e|
         [200, {"Content-Type" => "text/plain"}, [e['warden'].message]]
@@ -286,7 +297,7 @@ describe Warden::Proxy do
       result[2].should == [""]
     end
   end
   describe "when all strategies are not valid?" do
     it "should return false for authenticated when there are no valid? strategies" do
      @env['rack.session'] = {}
@@ -295,7 +306,7 @@ describe Warden::Proxy do
      end
      setup_rack(app).call(@env)
     end
     it "should return nil for authenticate when there are no valid strategies" do
       @env['rack.session'] = {}
       app = lambda do |e|
@@ -303,18 +314,18 @@ describe Warden::Proxy do
       end
       setup_rack(app).call(@env)
     end
     it "should respond with a 401 when authenticate! cannot find any valid strategies" do
       @env['rack.session'] = {}
-      app = lambda do |e|
+      app = lambda do |e|
         e['warden'].authenticate!(:invalid)
       end
       result = setup_rack(app).call(@env)
       result.first.should == 401
     end
   end
 end

data/warden.gemspec CHANGED

@@ -1,12 +1,15 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE
+# Instead, edit Jeweler::Tasks in Rakefile, and run `rake gemspec`
 # -*- encoding: utf-8 -*-
 Gem::Specification.new do |s|
   s.name = %q{warden}
-  s.version = "0.3.1"
+  s.version = "0.3.2"
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Daniel Neighman"]
-  s.date = %q{2009-08-10}
+  s.date = %q{2009-09-05}
   s.email = %q{has.sox@gmail.com}
   s.extra_rdoc_files = [
     "LICENSE",
@@ -50,7 +53,7 @@ Gem::Specification.new do |s|
   s.rdoc_options = ["--charset=UTF-8"]
   s.require_paths = ["lib"]
   s.rubyforge_project = %q{warden}
-  s.rubygems_version = %q{1.3.4}
+  s.rubygems_version = %q{1.3.5}
   s.summary = %q{Rack middleware that provides authentication for rack applications}
   s.test_files = [
     "spec/helpers/request_helper.rb",

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: warden
 version: !ruby/object:Gem::Version
-  version: 0.3.1
+  version: 0.3.2
 platform: ruby
 authors:
 - Daniel Neighman
@@ -9,7 +9,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2009-08-10 00:00:00 +10:00
+date: 2009-09-05 00:00:00 +10:00
 default_executable:
 dependencies:
 - !ruby/object:Gem::Dependency
@@ -88,7 +88,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
 requirements: []
 rubyforge_project: warden
-rubygems_version: 1.3.4
+rubygems_version: 1.3.5
 signing_key:
 specification_version: 3
 summary: Rack middleware that provides authentication for rack applications