Class: Keycard::Authentication::Result

Inherits:

Object

• Object
• Keycard::Authentication::Result

Defined in:

lib/keycard/authentication/result.rb

Overview

A Result is the central point of information about an authentication attempt. It logs the authentication methods attempted with their statuses and reports the overall status. When authentication is successful, it holds the user/account that was verified.

Instance Attribute Summary

• #account ⇒ Object readonly

  Returns the value of attribute account.

• #log ⇒ Object readonly

  Returns the value of attribute log.

Instance Method Summary

• #authenticated? ⇒ Boolean

  Has this authentication completed successfully?.

• #csrf_safe? ⇒ Boolean

  Does a completed verification protect from Cross-Site Request Forgery?.

• #failed(message) ⇒ Boolean

  Log that the authentication method failed; terminate the chain.

• #failed? ⇒ Boolean

  Was there a failure for an attempted authentication method?.

• #initialize ⇒ Result constructor

  A new instance of Result.

• #skipped(message) ⇒ Boolean

  Log that the authentication method was not applicable; continue the chain.

• #succeeded(account, message, csrf_safe: false) ⇒ Boolean

  Log that the authentication method succeeded; terminate the chain.

Constructor Details

#initialize ⇒ Result

# File 'lib/keycard/authentication/result.rb', line 13

def initialize
  @account = nil
  @log = []
  @failed = false
  @csrf_safe = false
end

Instance Attribute Details

#account ⇒ Object (readonly)

Returns the value of attribute account.

# File 'lib/keycard/authentication/result.rb', line 10

def account
  @account
end

#log ⇒ Object (readonly)

Returns the value of attribute log.

# File 'lib/keycard/authentication/result.rb', line 11

def log
  @log
end

Instance Method Details

#authenticated? ⇒ Boolean

Has this authentication completed successfully?

# File 'lib/keycard/authentication/result.rb', line 21

def authenticated?
  !account.nil?
end

#csrf_safe? ⇒ Boolean

Does a completed verification protect from Cross-Site Request Forgery?

This should be true in cases where the client presents authentication that is not automatic, like an authentication token, rather than automatic credentials like cookies or proxy-applied headers.

# File 'lib/keycard/authentication/result.rb', line 35

def csrf_safe?
  @csrf_safe
end

#failed(message) ⇒ Boolean

Log that the authentication method failed; terminate the chain.

# File 'lib/keycard/authentication/result.rb', line 52

def failed(message)
  log << "[FAILURE] #{message}"
  @failed = true
end

#failed? ⇒ Boolean

Was there a failure for an attempted authentication method?

# File 'lib/keycard/authentication/result.rb', line 26

def failed?
  @failed
end

#skipped(message) ⇒ Boolean

Log that the authentication method was not applicable; continue the chain.

# File 'lib/keycard/authentication/result.rb', line 43

def skipped(message)
  log << "[SKIPPED] #{message}"
  false
end

#succeeded(account, message, csrf_safe: false) ⇒ Boolean

Log that the authentication method succeeded; terminate the chain.

# File 'lib/keycard/authentication/result.rb', line 64

def succeeded(account, message, csrf_safe: false)
  @account = account
  @csrf_safe ||= csrf_safe
  log << "[SUCCESS] #{message}"
  true
end