Module: Cassette::Authentication::Filter

Extended by:

ActiveSupport::Concern

Defined in:

lib/cassette/authentication/filter.rb

Defined Under Namespace

Modules: ClassMethods

Instance Method Summary

• #validate_authentication_ticket(service = Cassette.config.service) ⇒ Object
• #validate_raw_role!(role) ⇒ Object
• #validate_role!(role) ⇒ Object

Instance Method Details

#validate_authentication_ticket(service = Cassette.config.service) ⇒ Object

# File 'lib/cassette/authentication/filter.rb', line 20

def validate_authentication_ticket(service = Cassette.config.service)
  ticket = request.headers["Service-Ticket"] || params[:ticket]

  if ENV["NOAUTH"] && !ticket
    Cassette.logger.debug "NOAUTH set and no Service Ticket, skipping authentication"
    self.current_user = Cassette::Authentication::User.new
    return
  end

  self.current_user = Cassette::Authentication.validate_ticket(ticket, service)
end

#validate_raw_role!(role) ⇒ Object

Raises:

• (Cassette::Errors::Forbidden)

# File 'lib/cassette/authentication/filter.rb', line 37

def validate_raw_role!(role)
  return if ENV["NOAUTH"]
  raise Cassette::Errors::Forbidden unless current_user.has_raw_role?(role)
end

#validate_role!(role) ⇒ Object

Raises:

• (Cassette::Errors::Forbidden)

# File 'lib/cassette/authentication/filter.rb', line 32

def validate_role!(role)
  return if ENV["NOAUTH"]
  raise Cassette::Errors::Forbidden unless current_user.has_role?(role)
end