Module: GDS::SSO::ControllerMethods
- Defined in:
- lib/gds-sso/controller_methods.rb
Defined Under Namespace
Classes: PermissionDeniedException
Class Method Summary
collapse
Instance Method Summary
collapse
Class Method Details
.included(base) ⇒ Object
7
8
9
10
11
12
13
|
# File 'lib/gds-sso/controller_methods.rb', line 7
def self.included(base)
base.rescue_from PermissionDeniedException do |e|
render "authorisations/unauthorised", layout: "unauthorised", status: :forbidden, locals: { message: e.message }
end
base.helper_method :user_signed_in?
base.helper_method :current_user
end
|
Instance Method Details
#authenticate_user! ⇒ Object
33
34
35
36
37
38
39
40
|
# File 'lib/gds-sso/controller_methods.rb', line 33
def authenticate_user!
if user_remotely_signed_out?
message = "You have been remotely signed out."
skip_slimmer
render "authorisations/unauthorised", layout: "unauthorised", status: :forbidden, locals: { message: message }
end
warden.authenticate!
end
|
#authorise_user!(permission) ⇒ Object
16
17
18
19
20
21
22
23
24
|
# File 'lib/gds-sso/controller_methods.rb', line 16
def authorise_user!(permission)
authenticate_user!
if not current_user.has_permission?(permission)
raise PermissionDeniedException, "Sorry, you don't seem to have the #{permission} permission for this app."
end
end
|
#current_user ⇒ Object
50
51
52
|
# File 'lib/gds-sso/controller_methods.rb', line 50
def current_user
warden.user if user_signed_in?
end
|
#log_out ⇒ Object
54
55
56
|
# File 'lib/gds-sso/controller_methods.rb', line 54
def log_out
warden.log_out
end
|
#require_signin_permission! ⇒ Object
26
27
28
29
30
31
|
# File 'lib/gds-sso/controller_methods.rb', line 26
def require_signin_permission!
authorise_user!('signin')
rescue PermissionDeniedException
skip_slimmer
render "authorisations/cant_signin", layout: "unauthorised", status: :forbidden
end
|
#skip_slimmer ⇒ Object
62
63
64
65
|
# File 'lib/gds-sso/controller_methods.rb', line 62
def skip_slimmer
["X-Slimmer-Skip"] = "1"
end
|
#user_remotely_signed_out? ⇒ Boolean
42
43
44
|
# File 'lib/gds-sso/controller_methods.rb', line 42
def user_remotely_signed_out?
warden.authenticated? && warden.user.remotely_signed_out?
end
|
#user_signed_in? ⇒ Boolean
46
47
48
|
# File 'lib/gds-sso/controller_methods.rb', line 46
def user_signed_in?
warden.authenticated? && ! warden.user.remotely_signed_out?
end
|
#warden ⇒ Object
58
59
60
|
# File 'lib/gds-sso/controller_methods.rb', line 58
def warden
request.env['warden']
end
|