Module: SpreeCmCommissioner::WaitingRoomAuthorization

Extended by:

ActiveSupport::Concern

Defined in:

app/controllers/concerns/spree_cm_commissioner/waiting_room_authorization.rb

Instance Method Summary

• #ensure_waiting_room_session_token ⇒ Object
• #handle_waiting_room_session_token_error ⇒ Object
• #request_from_client? ⇒ Boolean

  temporary disable session check from any client server requests.

• #required_waiting_room_session? ⇒ Boolean

Instance Method Details

#ensure_waiting_room_session_token ⇒ Object

# File 'app/controllers/concerns/spree_cm_commissioner/waiting_room_authorization.rb', line 13

def ensure_waiting_room_session_token
  return if ENV['WAITING_ROOM_DISABLED'] == 'yes'
  return if request_from_client?
  return unless required_waiting_room_session?

  JWT.decode(params[:waiting_room_session_token], ENV.fetch('WAITING_ROOM_SESSION_SIGNATURE', nil), true, { algorithm: 'HS256' })
end

#handle_waiting_room_session_token_error ⇒ Object

# File 'app/controllers/concerns/spree_cm_commissioner/waiting_room_authorization.rb', line 33

def handle_waiting_room_session_token_error
  render_error_payload(Spree.t(:invalid_session_token), 400)
end

#request_from_client? ⇒ Boolean

temporary disable session check from any client server requests.

Returns:

• (Boolean)

# File 'app/controllers/concerns/spree_cm_commissioner/waiting_room_authorization.rb', line 29

def request_from_client?
  request.headers['X-Cm-Api-Client-Version'].present?
end

#required_waiting_room_session? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/controllers/concerns/spree_cm_commissioner/waiting_room_authorization.rb', line 21

def required_waiting_room_session?
  # temporary disable
  apis = []

  apis.any? { |prefix| request.path.start_with?(prefix) }
end