weixin_rails_middleware 1.0.4 → 1.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/app/controllers/weixin_rails_middleware/weixin_controller.rb +1 -45
  3. data/config/routes.rb +2 -2
  4. data/lib/weixin_rails_middleware.rb +1 -1
  5. data/lib/weixin_rails_middleware/engine.rb +1 -8
  6. data/lib/weixin_rails_middleware/helpers/weixin_authorize_helper.rb +54 -0
  7. data/lib/weixin_rails_middleware/version.rb +1 -1
  8. metadata +3 -3
  9. data/lib/weixin_rails_middleware/helpers/weixin_server_url.rb +0 -69
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: f864df00b4c607bd3d9c96217d8a448ca8d4b9ff
4
- data.tar.gz: cf2e9c7be77b62d6e7bdb87c70eaad6351e2b00d
3
+ metadata.gz: 7f65d96d4e58350a83ec0fba14b711b4250e79c3
4
+ data.tar.gz: 21999d40da51005a1ad025473a6fd987a3e77af5
5
5
  SHA512:
6
- metadata.gz: ae8b8f0bd47219fe7876db2d728334d7c269320ab3b2a71a77ce1290f46baf3046ab765d2f3226ce1ce807e1ea8f5929536d688fac6fb8fd75cbfe451300a5a0
7
- data.tar.gz: a674a9bfa8f46348b62aaa51cc15613544449f82ac40a5c8c725f3bf2e42b431e03f042c51d3a0ff4553e6a12efc0ecdf3180dd675f6e37f933af53a79776950
6
+ metadata.gz: f7178de0133a47bf05e75c1bbc9d11bcab4a1b9b86b5bfad3cecb255f206c7b6638d5c2daa5dd09edae8bf1bb8fcda83068b91bb9ac126e6464a937f82b37ef6
7
+ data.tar.gz: 20d4da31eb5d6fce51b72f40bd7ce1ffc672d1e82c4d408efdd2f574091a1fda836239e39b2692546bcae5d5bdcbf817b05e2b821c14de83ca2919335898da06
data/app/controllers/weixin_rails_middleware/weixin_controller.rb CHANGED
@@ -2,6 +2,7 @@ module WeixinRailsMiddleware
2
2
  class WeixinController < ActionController::Base
3
3
  include ReplyWeixinMessageHelper
4
4
  include ConfigurationHelpers
5
+ include WeixinAuthorizeHelper
5
6
 
6
7
  skip_before_action :verify_authenticity_token
7
8
  before_action :check_weixin_params, only: [:index, :reply]
@@ -16,37 +17,6 @@ module WeixinRailsMiddleware
16
17
 
17
18
  protected
18
19
 
19
- def check_weixin_params
20
- if check_weixin_token_valid? && !is_hexdigest?
21
- render text: "Forbidden", status: 403
22
- end
23
- end
24
-
25
- # check the token from Weixin Service is exist in local store.
26
- def check_weixin_token_valid?
27
- if token_string.blank?
28
- if token_model_instance.blank?
29
- render text: "Forbidden", status: 403
30
- return false
31
- end
32
- else
33
- if current_weixin_token != token_string
34
- render text: "Forbidden", status: 403
35
- return false
36
- end
37
- end
38
- true
39
- end
40
-
41
- def is_hexdigest?
42
- signature = params[:signature] || ''
43
- timestamp = params[:timestamp] || ''
44
- nonce = params[:nonce] || ''
45
- current_signature = Digest::SHA1.hexdigest([current_weixin_token, timestamp, nonce].sort.join)
46
- return true if current_signature == signature
47
- false
48
- end
49
-
50
20
  ## Callback
51
21
  # e.g. will generate +@weixin_public_account+
52
22
  def set_weixin_public_account
@@ -59,19 +29,5 @@ module WeixinRailsMiddleware
59
29
  @weixin_message ||= current_weixin_message
60
30
  end
61
31
 
62
- def current_weixin_token
63
- @weixin_token = params[:weixin_token]
64
- end
65
-
66
- def token_model_instance
67
- token_model_instance = token_model_class.where("#{token_column}" => current_weixin_token).first
68
- token_model_instance
69
- end
70
-
71
- # return a message class with current_weixin_params
72
- def current_weixin_message
73
- Message.factory(request.body.read)
74
- end
75
-
76
32
  end
77
33
  end
data/config/routes.rb CHANGED
@@ -1,4 +1,4 @@
1
1
  WeixinRailsMiddleware::Engine.routes.draw do
2
- get 'weixin/:weixin_token', to: 'weixin#index'
3
- post 'weixin/:weixin_token', to: 'weixin#reply'
2
+ get 'weixin/:weixin_token', to: 'weixin#index', as: :weixin_index
3
+ post 'weixin/:weixin_token', to: 'weixin#reply', as: :weixin_reply
4
4
  end
data/lib/weixin_rails_middleware.rb CHANGED
@@ -5,7 +5,7 @@ require "weixin_rails_middleware/models/reply_message"
5
5
  require "weixin_rails_middleware/helpers/reply_weixin_message_helper"
6
6
  require "weixin_rails_middleware/helpers/weixin_token_form_helper"
7
7
  require "weixin_rails_middleware/helpers/unique_token_helper"
8
- require "weixin_rails_middleware/helpers/weixin_server_url"
8
+ require "weixin_rails_middleware/helpers/weixin_authorize_helper"
9
9
 
10
10
  module WeixinRailsMiddleware
11
11
 
data/lib/weixin_rails_middleware/engine.rb CHANGED
@@ -1,14 +1,7 @@
1
1
  module WeixinRailsMiddleware
2
2
  class Engine < ::Rails::Engine
3
- include ConfigurationHelpers
4
-
5
3
  isolate_namespace WeixinRailsMiddleware
6
-
7
- config.after_initialize do
8
- if token_model_class.present?
9
- token_model_class.send(:include, WeixinServerUrl::InstanceMethods)
10
- end
11
- end
4
+ engine_name :weixin_engine
12
5
 
13
6
  end
14
7
  end
data/lib/weixin_rails_middleware/helpers/weixin_authorize_helper.rb ADDED
@@ -0,0 +1,54 @@
1
+ module WeixinRailsMiddleware
2
+ module WeixinAuthorizeHelper
3
+ extend ActiveSupport::Concern
4
+
5
+ protected
6
+
7
+ def check_weixin_params
8
+ if check_weixin_token_valid? && !is_hexdigest?
9
+ render text: "Forbidden", status: 403
10
+ end
11
+ end
12
+
13
+ # check the token from Weixin Service is exist in local store.
14
+ def check_weixin_token_valid?
15
+ if token_string.blank?
16
+ if token_model_instance.blank?
17
+ render text: "Forbidden", status: 403
18
+ return false
19
+ end
20
+ else
21
+ if current_weixin_token != token_string
22
+ render text: "Forbidden", status: 403
23
+ return false
24
+ end
25
+ end
26
+ true
27
+ end
28
+
29
+ def is_hexdigest?
30
+ signature = params[:signature] || ''
31
+ timestamp = params[:timestamp] || ''
32
+ nonce = params[:nonce] || ''
33
+ current_signature = Digest::SHA1.hexdigest([current_weixin_token, timestamp, nonce].sort.join)
34
+ return true if current_signature == signature
35
+ false
36
+ end
37
+
38
+ def current_weixin_token
39
+ @weixin_token = params[:weixin_token]
40
+ end
41
+
42
+ def token_model_instance
43
+ token_model_instance = token_model_class.where("#{token_column}" => current_weixin_token).first
44
+ token_model_instance
45
+ end
46
+
47
+ # return a message class with current_weixin_params
48
+ def current_weixin_message
49
+ Message.factory(request.body.read)
50
+ end
51
+
52
+ end
53
+ end
54
+
data/lib/weixin_rails_middleware/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module WeixinRailsMiddleware
2
- VERSION = "1.0.4".freeze
2
+ VERSION = "1.0.5".freeze
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: weixin_rails_middleware
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.4
4
+ version: 1.0.5
5
5
  platform: ruby
6
6
  authors:
7
7
  - lanrion
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2014-03-09 00:00:00.000000000 Z
11
+ date: 2014-03-19 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: railties
@@ -114,7 +114,7 @@ files:
114
114
  - lib/weixin_rails_middleware/engine.rb
115
115
  - lib/weixin_rails_middleware/helpers/reply_weixin_message_helper.rb
116
116
  - lib/weixin_rails_middleware/helpers/unique_token_helper.rb
117
- - lib/weixin_rails_middleware/helpers/weixin_server_url.rb
117
+ - lib/weixin_rails_middleware/helpers/weixin_authorize_helper.rb
118
118
  - lib/weixin_rails_middleware/helpers/weixin_token_form_helper.rb
119
119
  - lib/weixin_rails_middleware/models/message.rb
120
120
  - lib/weixin_rails_middleware/models/reply_message.rb
data/lib/weixin_rails_middleware/helpers/weixin_server_url.rb DELETED
@@ -1,69 +0,0 @@
1
- # TODO: added weixin_server_url for User
2
- # if config +token_model+, e.g. user = User.first; user.weixin_server_url
3
- # if config +token_string+, e.g. weixin_server_url
4
- # a public url looks like: weixin_server_url
5
- module WeixinRailsMiddleware
6
- module WeixinServerUrl
7
-
8
- module Base
9
-
10
- private
11
-
12
- def weixin_server_url_with_public_account(public_account)
13
- base_host_url + current_token(public_account)
14
- end
15
-
16
- def weixin_server_url_without_public_account
17
- base_host_url + token_string
18
- end
19
-
20
- def current_token(public_account)
21
- if public_account.blank?
22
- token_string
23
- else
24
- public_account.try(token_column)
25
- end
26
- end
27
-
28
- def base_host_url
29
- host_url = request.base_url
30
- if is_default_engine_path? # "/"
31
- "#{host_url}/weixin/"
32
- else
33
- "#{host_url}/#{engine_path}/weixin/"
34
- end
35
- end
36
- end
37
-
38
- module ViewHelpers
39
- extend ActiveSupport::Concern
40
- include ConfigurationHelpers
41
- include Base
42
- included do
43
- def weixin_server_url(public_account=nil)
44
- raise "You need pass a public_account instance." if token_string.blank? && public_account.blank?
45
- if public_account.present?
46
- weixin_server_url_with_public_account(public_account)
47
- else
48
- weixin_server_url_without_public_account(public_account)
49
- end
50
- end
51
- end
52
-
53
- end
54
-
55
- module InstanceMethods
56
- extend ActiveSupport::Concern
57
- include ConfigurationHelpers
58
- include Base
59
- included do
60
- def weixin_server_url
61
- # base_host_url + self.send(token_column)
62
- warn "Hi, this method is Pending, please use view helper: +weixin_server_url+ :)"
63
- end
64
- end
65
- end
66
- end
67
- end
68
-
69
- ActionView::Base.send :include, WeixinRailsMiddleware::WeixinServerUrl::ViewHelpers