Module: CastleDevise::Patches::RegistrationsController
- Extended by:
- ActiveSupport::Concern
- Defined in:
- lib/castle_devise/patches/registrations_controller.rb
Overview
Monkey-patch for Devise::RegistrationsController which includes Castle in the registration workflow.
Class Method Summary collapse
Instance Method Summary collapse
-
#castle_filter ⇒ Object
Sends a /v1/filter request to Castle.
-
#update ⇒ Object
PUT /resource.
Class Method Details
.prepended(klass) ⇒ Object
12 13 14 15 16 |
# File 'lib/castle_devise/patches/registrations_controller.rb', line 12 def self.prepended(klass) klass.class_eval do before_action :castle_filter, only: :create end end |
Instance Method Details
#castle_filter ⇒ Object
Sends a /v1/filter request to Castle
67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 |
# File 'lib/castle_devise/patches/registrations_controller.rb', line 67 def castle_filter return unless resource_class.castle_hooks[:before_registration] response = CastleDevise.sdk_facade.filter( event: "$registration", context: CastleDevise::Context.from_rack_env(request.env, resource_name) ) return if CastleDevise.monitoring_mode? case response.dig(:policy, :action) when "deny" (:alert, "blocked_by_castle") flash.alert = "Account cannot be created at this moment. Please try again later." redirect_to new_session_path(resource_name) false else # everything fine, continue end rescue Castle::InvalidParametersError # log error and allow CastleDevise.logger.warn( "[CastleDevise] /v1/filter request contained invalid parameters." ) rescue Castle::InvalidRequestTokenError CastleDevise.logger.warn( "[CastleDevise] /v1/filter request contained invalid request token." \ " This means that either you didn't configure Castle's Javascript properly, or" \ " a request has been made without Javascript (eg. cURL/bot)." \ " Such a request is treated as if Castle responded with a 'deny' action in" \ " non-monitoring mode." ) unless CastleDevise.monitoring_mode? (:alert, "blocked_by_castle") redirect_to new_session_path(resource_name) false end rescue Castle::Error => e # log API errors and allow CastleDevise.logger.error("[CastleDevise] filter($registration): #{e}") end |
#update ⇒ Object
PUT /resource
19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 |
# File 'lib/castle_devise/patches/registrations_controller.rb', line 19 def update context = CastleDevise::Context.from_rack_env(request.env, scope_name, resource) if resource_class.castle_hooks[:profile_update] begin # TODO: Implement a verification mechanism for this action. CastleDevise.sdk_facade.risk( event: "$profile_update", status: "$attempted", context: context ) rescue Castle::InvalidParametersError # log API error and allow CastleDevise.logger.warn( "[CastleDevise] /v1/risk request contained invalid parameters." ) rescue Castle::InvalidRequestTokenError CastleDevise.logger.warn( "[CastleDevise] /v1/risk request contained invalid token." \ " This means that either you didn't configure Castle's Javascript properly," \ " or a request has been made without Javascript (eg. cURL/bot)." \ " Such a request is treated as if Castle responded with a 'deny' action in" \ " non-monitoring mode." ) # TODO: Implement a deny mechanism for this action. rescue Castle::Error => e # log API errors and allow CastleDevise.logger.error("[CastleDevise] risk($profile_update): #{e}") end end super do |resource| next unless resource_class.castle_hooks[:profile_update] begin CastleDevise.sdk_facade.log( event: "$profile_update", status: resource.saved_changes? ? "$succeeded" : "$failed", context: context ) rescue Castle::Error => e # log API errors and pass-through it CastleDevise.logger.error("[CastleDevise] log($password_reset_request): #{e}") end end end |