zas-client 0.1.3 → 0.2.0

data/lib/zas/middleware/zas_authenticator.rb

@@ -0,0 +1,47 @@
+module Zas
+  module Middleware
+    # A Rack Middleware implementation that can pass HTTP basic auth credentials to a ZAS service
+    # for authentication. If the requestor is authenticated then the user's identifier will
+    # be added to the request environment as `env['zas.user.identifier']`.
+    class ZasAuthenticator
+      # Initialize the middleware with given app.
+      def initialize(app)
+        @app = app
+
+        require 'zas/client'
+        client_config = Zas::ClientConfiguration.new
+        client_config.logger.level = Logger::INFO
+        @zas_client = Zas::Client.new(client_config)
+      end
+      
+      # Call the middleware
+      def call(env)
+        type, credentials = authorization_header_value(env)
+        if type && type.downcase == 'basic'
+          auth_result = @zas_client.authenticate(Zas::HttpBasicCredentials.new(credentials))
+          if auth_result.authenticated?
+            env['zas.user.identifier'] = auth_result.identifier
+            @app.call(env)
+          else
+            authentication_failed
+          end
+        else
+          authentication_failed
+        end
+      end
+
+      private
+      def authorization_header_value(env)
+        if v = env['HTTP_AUTHORIZATION']
+          v.split
+        else
+          [nil, nil]
+        end
+      end
+
+      def authentication_failed
+        [401, {'Content-Type' => 'application/json'}, [Yajl::Encoder.encode({"errors" => "Authentication failed"})]]
+      end
+    end
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: zas-client
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.2.0
   prerelease: 
 platform: ruby
 authors:
@@ -86,6 +86,7 @@ files:
 - lib/zas/client_configuration.rb
 - lib/zas/credentials.rb
 - lib/zas/http_basic_credentials.rb
+- lib/zas/middleware/zas_authenticator.rb
 - lib/zas.rb
 - LICENSE
 - README.md