warden_cookie_session 0.1.0.18557

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 46a015924a170feeea0d09f25da23bc658db4ba2588b8bb1f2c7f6d19c7c2471
+  data.tar.gz: b2b6c4ac6f14348f28dc277498016c7c435eee4f599c6d6a2ce71b9df9591abb
+SHA512:
+  metadata.gz: 05305ede70cd30e474c833c53abb1ed332145606139f829be05366641cd199f4dd15fd91e6594c060184b401019b7cc4088decef1a57e4807705e0d370143d32
+  data.tar.gz: c92c8c6e667722973dc3b5ae1dc288a9f790941966c8f1f234e0180e1fed354a47634db4d21361f91b93894a91b3c1eea4f09f064baa21c4dd321b7f4c26733f

data/LICENSE

@@ -0,0 +1,19 @@
+Copyright (c) 2014-2019 Рнд Софт
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,88 @@
+# Warden Cookie Session
+
+Warden Cookie Session is a warden strategy to store auth in custom encrypted cookie(instead of rack:session).
+The main puprpose to allow store authorization between multiple rails applications, without sharing `secret_key_base`.  
+
+
+# Usage
+
+Setup `Warden::CookieSession` in initializer and provide wrapper.
+
+```ruby
+
+Warden::CookieSession.configure do |config|
+  config.cookie = Rails.application.secrets['shared_cookie']
+  config.secret = Rails.application.secrets['shared_secret']
+
+  config.wrapper = Warden::CookieSession::DefaultWrapper.new(User)
+end
+```
+
+Default wrapper just fetch user from model:
+```ruby
+module Warden
+  module CookieSession
+    class DefaultWrapper
+
+      def initialize(klass = nil)
+        @klass = klass
+      end
+
+      def serialize_record(record)
+        # like in https://github.com/plataformatec/devise/blob/master/lib/devise/models/authenticatable.rb
+        [record.to_key, record.authenticatable_salt]
+      end
+
+      def fetch_record(key)
+        @klass.find(key.first)
+      end
+
+      def validate_record(record, salt)
+        # like in https://github.com/plataformatec/devise/blob/master/lib/devise/models/authenticatable.rb
+        record if record && record.authenticatable_salt == salt
+      end
+
+    end
+  end
+end
+```
+
+# Advansed Usage
+
+With `Warden::CookieSession` we can fetch user data remotly ex. from API:
+
+```ruby
+
+Warden::CookieSession.configure do |config|
+  config.cookie = Rails.application.secrets['shared_cookie']
+  config.secret = Rails.application.secrets['shared_secret']
+
+    class RemoteWrapper
+      def serialize_record(record)
+        [record.to_key, record.authenticatable_salt]
+      end
+
+      def fetch_record(key)
+        FetchRemoteUserAndSalt.run!(key)
+      end
+
+      def validate_record(record, salt)
+        record if record && record.authenticatable_salt == salt
+      end
+
+    end
+
+  config.wrapper = Warden::CookieSession::DefaultWrapper.new(User)
+end
+
+
+# Installation
+
+It's a gem:
+```bash
+  gem install warden_cookie_session
+```
+There's also the wonders of [the Gemfile](http://bundler.io):
+```ruby
+  gem 'warden_cookie_session'
+```

data/lib/warden/cookie_session/configuration.rb

@@ -0,0 +1,34 @@
+require 'logger'
+
+module Warden
+  module CookieSession
+    class Configuration
+
+      attr_accessor :cookie, :secret, :wrapper, :logger
+
+      # Override defaults for configuration
+      # @param cookie [String] cookie name to store encrypted data
+      # @param secret [String] secret key(shared between applications) to use in ActiveSupport::MessageEncryptor
+      def initialize(cookie = 'cookie_session', secret = nil)
+        @cookie = cookie
+        @secret = secret
+        @logger = Logger.new(STDOUT, level: Logger::INFO, progname: 'CookieSession')
+      end
+
+      def serialize_record(record)
+        @wrapper&.serialize_record(record)
+      end
+
+      def fetch_record(key)
+        @wrapper&.fetch_record(key)
+      end
+
+      def validate_record(record, salt)
+        @wrapper&.validate_record(record, salt)
+      end
+
+
+    end
+  end
+end
+

data/lib/warden/cookie_session/encrypted_cookie.rb

@@ -0,0 +1,29 @@
+class Warden::CookieSession::EncryptedCookie
+
+  attr_reader :store, :cookie, :secret, :encryptor
+
+  def initialize(store:, cookie:, secret:)
+    @store = store
+    @cookie = cookie
+    @secret = secret
+
+    @encryptor ||= ActiveSupport::MessageEncryptor.new(secret)
+  end
+
+  def get
+    value = store[cookie]
+    return nil unless value
+
+    JSON(encryptor.decrypt_and_verify(value))
+  end
+
+  def put(data)
+    store[cookie] = encryptor.encrypt_and_sign(data.to_json)
+  end
+
+  def clear
+    store.delete(cookie)
+  end
+
+end
+

data/lib/warden/cookie_session/strategy.rb

@@ -0,0 +1,42 @@
+require 'warden/cookie_session/encrypted_cookie'
+
+class Warden::CookieSession::Strategy < ::Warden::Strategies::Base
+
+  def valid?
+    cookies[Warden::CookieSession.config.cookie]
+  end
+
+  def store?
+    false
+  end
+
+  def authenticate!
+    key, salt = encrypted_cookie.get
+    record = Warden::CookieSession.config.fetch_record(key)
+    success!(record) if record && Warden::CookieSession.config.validate_record(record, salt)
+  rescue StandardError => e
+    logger.warn "Warden::CookieSession::Strategy failed: #{e}"
+    fail!(e)
+    logger.debug { e.backtrace }
+  end
+
+  def self.encrypted_cookie(cookies)
+    Warden::CookieSession::EncryptedCookie.new(
+      store:  cookies,
+      cookie: Warden::CookieSession.config.cookie,
+      secret: Warden::CookieSession.config.secret
+    )
+  end
+
+  def encrypted_cookie
+    @encrypted_cookie ||= Warden::CookieSession::Strategy.encrypted_cookie(cookies)
+  end
+
+  private
+
+    def logger
+      Warden::CookieSession.config.logger || Logger.new(nil)
+    end
+
+end
+

data/lib/warden/cookie_session/version.rb

@@ -0,0 +1,8 @@
+module Warden
+  module CookieSession
+
+    VERSION = '0.1.0'.freeze
+
+  end
+end
+

data/lib/warden/cookie_session.rb

@@ -0,0 +1,44 @@
+require 'warden'
+require 'warden/cookie_session/version'
+require 'warden/cookie_session/default_wrapper'
+require 'warden/cookie_session/configuration'
+require 'warden/cookie_session/strategy'
+
+module Warden
+  module CookieSession
+
+    class << self
+
+      attr_accessor :config
+
+    end
+
+    self.config ||= Warden::CookieSession::Configuration.new
+
+    class << self
+
+      def configure
+        self.config ||= Warden::CookieSession::Configuration.new
+        yield(config)
+        setup_warden(config)
+      end
+
+      def setup_warden(config)
+        Warden::Strategies.add(:cookie_session, Warden::CookieSession::Strategy)
+
+        Warden::Manager.after_set_user do |user, auth, _opts|
+          encrypted_cookie = Warden::CookieSession::Strategy.encrypted_cookie(auth.cookies)
+          encrypted_cookie.put(config.serialize_record(user))
+        end
+
+        Warden::Manager.before_logout do |_user, auth, _opts|
+          encrypted_cookie = Warden::CookieSession::Strategy.encrypted_cookie(auth.cookies)
+          encrypted_cookie.clear
+        end
+      end
+
+    end
+
+  end
+end
+

data/lib/warden_cookie_session.rb

@@ -0,0 +1,2 @@
+require 'warden/cookie_session'
+

metadata

@@ -0,0 +1,155 @@
+--- !ruby/object:Gem::Specification
+name: warden_cookie_session
+version: !ruby/object:Gem::Version
+  version: 0.1.0.18557
+platform: ruby
+authors:
+- Samoilenko Yuri
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-11-01 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.0.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.0.1
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec_junit_formatter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov-console
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: warden
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: "!!!!"
+email:
+- kinnalru@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE
+- README.md
+- lib/warden/cookie_session.rb
+- lib/warden/cookie_session/configuration.rb
+- lib/warden/cookie_session/encrypted_cookie.rb
+- lib/warden/cookie_session/strategy.rb
+- lib/warden/cookie_session/version.rb
+- lib/warden_cookie_session.rb
+homepage: https://github.com/RnD-Soft/timeouter
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.3
+signing_key: 
+specification_version: 4
+summary: "!!!!"
+test_files: []