Class: CookieManager

Inherits:

Object

• Object
• CookieManager

Defined in:

lib/uber_login/cookie_manager.rb

Overview

This class handles the :uid and :ulogin cookies It builds and sets the cookies, clears them, checks for their validity.

Instance Method Summary

• #clear ⇒ Object

  Clears :uid and :ulogin cookies.

• #expiration(row) ⇒ Object
• #hashed_token ⇒ Object
• #initialize(cookies, request) ⇒ CookieManager constructor

  A new instance of CookieManager.

• #ip_equality(row) ⇒ Object
• #persistent_login(uid, sequence, token) ⇒ Object
• #sequence ⇒ Object
• #sequence_and_token ⇒ Object
• #token ⇒ Object
• #token_match(row) ⇒ Object

  Validity checks.

• #ulogin_cookie(sequence, token) ⇒ Object
• #valid? ⇒ Boolean

Constructor Details

#initialize(cookies, request) ⇒ CookieManager

Returns a new instance of CookieManager.

# File 'lib/uber_login/cookie_manager.rb', line 5

def initialize(cookies, request)
  @cookies = cookies
  @request = request
  @validity_checks = [ :token_match ]

  @validity_checks << :ip_equality if UberLogin.configuration.tie_tokens_to_ip
  @validity_checks << :expiration if UberLogin.configuration.token_expiration
end

Instance Method Details

#clear ⇒ Object

Clears :uid and :ulogin cookies

# File 'lib/uber_login/cookie_manager.rb', line 16

def clear
  @cookies.delete :uid
  @cookies.delete :ulogin
end

#expiration(row) ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 63

def expiration(row)
  row.updated_at >= Time.now - UberLogin.configuration.token_expiration
end

#hashed_token ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 28

def hashed_token
  BCrypt::Password.create(token).to_s
end

#ip_equality(row) ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 59

def ip_equality(row)
  row.ip_address == @request.remote_ip
end

#persistent_login(uid, sequence, token) ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 32

def persistent_login(uid, sequence, token)
  @cookies.permanent[:uid] = uid
  @cookies.permanent[:ulogin] = ulogin_cookie(sequence, token)
end

#sequence ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 45

def sequence
  sequence_and_token[0]
end

#sequence_and_token ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 41

def sequence_and_token
  @cookies[:ulogin].split(':')
end

#token ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 49

def token
  sequence_and_token[1]
end

#token_match(row) ⇒ Object

Validity checks

# File 'lib/uber_login/cookie_manager.rb', line 55

def token_match(row)
  BCrypt::Password.new(row.token) == token
end

#ulogin_cookie(sequence, token) ⇒ Object

# File 'lib/uber_login/cookie_manager.rb', line 37

def ulogin_cookie(sequence, token)
  sequence + ':' + token
end

#valid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/uber_login/cookie_manager.rb', line 21

def valid?
  token_row = LoginToken.find_by(uid: @cookies[:uid], sequence: sequence)
  @validity_checks.all? { |check| send(check, token_row) }
rescue
  false
end