Module: PrxAuth::Rails::Controller

Extended by:

ActiveSupport::Concern

Includes:

AccountInfo, UserInfo

Defined in:

lib/prx_auth/rails/ext/controller.rb

Defined Under Namespace

Classes: SessionTokenExpiredError

Constant Summary

PRX_AUTH_ENV_KEY =

"prx.auth".freeze

PRX_JWT_SESSION_KEY =

"prx.auth.jwt".freeze

PRX_JWT_REFRESH_TTL =

60

PRX_REFRESH_BACK_KEY =

"prx.auth.back".freeze

Constants included from UserInfo

UserInfo::PRX_ADMIN_SCOPE, UserInfo::PRX_USER_INFO_SESSION_KEY

Constants included from AccountInfo

AccountInfo::PRX_ACCOUNT_MAPPING_SESSION_KEY

Instance Method Summary

• #after_sign_in_user_redirect ⇒ Object
• #authenticate! ⇒ Object
• #prx_auth_needs_refresh?(jwt_ttl) ⇒ Boolean

  trigger refresh on a non-turbo GET request, if possible.

• #prx_auth_token ⇒ Object
• #prx_authenticated? ⇒ Boolean
• #prx_jwt ⇒ Object
• #set_after_sign_in_path(path = nil) ⇒ Object
• #sign_in_user(token) ⇒ Object
• #sign_out_user ⇒ Object

Methods included from UserInfo

#current_user, #current_user_access?, #current_user_admin?, #current_user_apps, #current_user_info, #current_user_name, #current_user_wildcard?

Methods included from AccountInfo

#account_for, #account_name_for, #accounts_for

Instance Method Details

#after_sign_in_user_redirect ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 72

def after_sign_in_user_redirect
  session[PRX_REFRESH_BACK_KEY]
end

#authenticate! ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 45

def authenticate!
  if !current_user
    set_after_sign_in_path
    redirect_to new_sessions_path
  elsif !current_user_access?
    redirect_to access_error_sessions_path
  else
    true
  end
end

#prx_auth_needs_refresh?(jwt_ttl) ⇒ Boolean

trigger refresh on a non-turbo GET request, if possible

Returns:

• (Boolean)

# File 'lib/prx_auth/rails/ext/controller.rb', line 57

def prx_auth_needs_refresh?(jwt_ttl)
  if jwt_ttl < 0
    true
  elsif jwt_ttl < PRX_JWT_REFRESH_TTL
    request.get? && !request.headers["Turbo-Frame"]
  else
    false
  end
end

#prx_auth_token ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 24

def prx_auth_token
  env_token || session_token
rescue SessionTokenExpiredError
  session.delete(PRX_JWT_SESSION_KEY)
  session.delete(PRX_ACCOUNT_MAPPING_SESSION_KEY)
  session.delete(PRX_USER_INFO_SESSION_KEY)
  nil
end

#prx_authenticated? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/prx_auth/rails/ext/controller.rb', line 41

def prx_authenticated?
  !!prx_auth_token
end

#prx_jwt ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 37

def prx_jwt
  session[PRX_JWT_SESSION_KEY]
end

#set_after_sign_in_path(path = nil) ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 33

def set_after_sign_in_path(path = nil)
  session[PRX_REFRESH_BACK_KEY] = path || request.fullpath
end

#sign_in_user(token) ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 67

def sign_in_user(token)
  session[PRX_JWT_SESSION_KEY] = token
  accounts_for(current_user.resources)
end

#sign_out_user ⇒ Object

# File 'lib/prx_auth/rails/ext/controller.rb', line 76

def sign_out_user
  reset_session
end