Class: Rack::TokenAuth

Inherits:

Object

• Object
• Rack::TokenAuth

Defined in:

lib/rack/token_auth.rb,
lib/rack/token_auth/version.rb

Constant Summary

UnprocessableHeader =

Class.new(ArgumentError)

VERSION =

"0.2.0"

Instance Method Summary

• #call(env) ⇒ Object
• #default_unauthorized_app ⇒ Object
• #default_unprocessable_header_app ⇒ Object
• #initialize(app, options = {}, &block) ⇒ TokenAuth constructor

  A new instance of TokenAuth.

• #token_and_options(header) ⇒ Object

  Taken and adapted from Rails github.com/rails/rails/blob/master/actionpack/lib/action_controller/metal/http_authentication.rb.

• #unauthorized_app ⇒ Object
• #unprocessable_header_app ⇒ Object

Constructor Details

#initialize(app, options = {}, &block) ⇒ TokenAuth

Returns a new instance of TokenAuth.

# File 'lib/rack/token_auth.rb', line 10

def initialize(app, options = {}, &block)
  @app     = app
  @options = options
  @block   = block
end

Instance Method Details

#call(env) ⇒ Object

# File 'lib/rack/token_auth.rb', line 16

def call(env)
  token, options = *token_and_options(env["HTTP_AUTHORIZATION"])
  if @block.call(token, options, env)
    @app.call(env)
  else
    unauthorized_app.call(env)
  end
rescue UnprocessableHeader
  unprocessable_header_app.call(env)
end

#default_unauthorized_app ⇒ Object

# File 'lib/rack/token_auth.rb', line 39

def default_unauthorized_app
  lambda { |_env| Rack::Response.new("Unauthorized", 401).to_a }
end

#default_unprocessable_header_app ⇒ Object

# File 'lib/rack/token_auth.rb', line 35

def default_unprocessable_header_app
  lambda { |_env| Rack::Response.new("Unprocessable Authorization header", 400).to_a }
end

#token_and_options(header) ⇒ Object

Taken and adapted from Rails github.com/rails/rails/blob/master/actionpack/lib/action_controller/metal/http_authentication.rb

# File 'lib/rack/token_auth.rb', line 45

def token_and_options(header)
  token = header.to_s.match(/^Token (.*)/) { |m| m[1] }
  if token
    begin
      values = Hash[token.split(",").map do |value|
        value.strip! # remove any spaces between commas and values
        key, value = value.split(/="?/) # split key=value pairs
        value.chomp!('"') # chomp trailing " in value
        value.gsub!(/\\"/, '"') # unescape remaining quotes
        [key, value]
      end]
      [values.delete("token"), values]
    rescue StandardError => exception
      raise UnprocessableHeader, exception
    end
  else
    [nil, {}]
  end
end

#unauthorized_app ⇒ Object

# File 'lib/rack/token_auth.rb', line 27

def unauthorized_app
  @options.fetch(:unauthorized_app) { default_unauthorized_app }
end

#unprocessable_header_app ⇒ Object

# File 'lib/rack/token_auth.rb', line 31

def unprocessable_header_app
  @options.fetch(:unprocessable_header_app) { default_unprocessable_header_app }
end