Class: Userbin::Authentication

Inherits:

Object

Object
Userbin::Authentication

show all

Defined in:: lib/userbin/authentication.rb

Constant Summary collapse

CLOSING_BODY_TAG =

%r{</body>}

Instance Method Summary collapse

#call(env) ⇒ Object
#generate_response(env, signature, data) ⇒ Object
#initialize(app, options = {}) ⇒ Authentication constructor

A new instance of Authentication.
#inject_tags(body, login_path = nil) ⇒ Object
#render_gateway(current_path) ⇒ Object
#script_tag(login_path) ⇒ Object

Constructor Details

#initialize(app, options = {}) ⇒ `Authentication`

Returns a new instance of Authentication.



6
7
8

# File 'lib/userbin/authentication.rb', line 6

def initialize(app, options = {})
  @app = app
end

Instance Method Details

#call(env) ⇒ `Object`

# File 'lib/userbin/authentication.rb', line 10

def call(env)
  if !Userbin.config.app_id || !Userbin.config.api_secret
    raise ConfigurationError, "app_id and api_secret must be present"
  end

  request = Rack::Request.new(env)

  begin
    if env["PATH_INFO"] == "/userbin" &&
       env["REQUEST_METHOD"] == "POST"
      signature, data = Userbin.authenticate_events!(request)

      MultiJson.decode(data)['events'].each do |event|
        Userbin::Events.trigger(event)
      end

      [ 200, { 'Content-Type' => 'text/html',
        'Content-Length' => '2' }, ['OK'] ]
    else
      signature, data = Userbin.authenticate!(request)

      if !Userbin.authenticated? && Userbin.config.protected_path &&
        env["PATH_INFO"].start_with?(Userbin.config.protected_path)

        return render_gateway(env["PATH_INFO"])
      end

      generate_response(env, signature, data)
    end
  rescue Userbin::SecurityError
    message =
      'Userbin::SecurityError: Invalid signature. Refresh to try again.'
    headers = {
      'Content-Type' => 'text/text'
    }

    Rack::Utils.delete_cookie_header!(
      headers, '_ubs', value = {})
    Rack::Utils.delete_cookie_header!(
      headers, '_ubd', value = {})

    [ 400, headers, [message] ]
  end
end

#generate_response(env, signature, data) ⇒ `Object`

# File 'lib/userbin/authentication.rb', line 102

def generate_response(env, signature, data)
  status, headers, response = @app.call(env)

  if headers['Content-Type'] && headers['Content-Type']['text/html']
   if response.respond_to?(:body)
     body = [*response.body]
   else
     body = response
   end
   if !Userbin.config.skip_script_injection
     body = body.each.map do |chunk|
       inject_tags(chunk)
     end
   end
   if response.respond_to?(:body)
     response.body = body
   else
     response = body
   end
    unless body.empty?
      headers['Content-Length'] = Rack::Utils.bytesize(body.flatten[0]).to_s
    end
  end

  if signature && data
    Rack::Utils.set_cookie_header!(
      headers, '_ubs', value: signature, path: '/')
    Rack::Utils.set_cookie_header!(
      headers, '_ubd', value: data, path: '/')
  else
    Rack::Utils.delete_cookie_header!(
      headers, '_ubs', value = {})
    Rack::Utils.delete_cookie_header!(
      headers, '_ubd', value = {})
  end

  [status, headers, response]
end

#inject_tags(body, login_path = nil) ⇒ `Object`

# File 'lib/userbin/authentication.rb', line 73

def inject_tags(body, login_path = nil)
  if body[CLOSING_BODY_TAG]
    body = body.gsub(CLOSING_BODY_TAG, script_tag(login_path) + '\\0')
  end
  body
end

#render_gateway(current_path) ⇒ `Object`

# File 'lib/userbin/authentication.rb', line 80

def render_gateway(current_path)
  script_url = ENV["USERBIN_SCRIPT_URL"] || '//js.userbin.com'

  login_page = "<!DOCTYPE html>\n<html>\n<head>\n  <title>Log in</title>\n</head>\n<body>\n  <a class=\"ub-login-form\"></a>\n</body>\n</html>\n  LOGIN_PAGE\n\n  login_page = inject_tags(login_page, current_path)\n\n  headers = { 'Content-Type' => 'text/html' }\n\n  [403, headers, [login_page]]\nend\n"

#script_tag(login_path) ⇒ `Object`

# File 'lib/userbin/authentication.rb', line 55

def script_tag(login_path)
  script_url = ENV.fetch('USERBIN_SCRIPT_URL') {
    "//js.userbin.com"
  }
  path = login_path || Userbin.config.protected_path

  tag =  "<script src='#{script_url}?#{Userbin.config.app_id}'></script>\n"
  tag += "<script type='text/javascript'>\n"
  tag += "  Userbin.config({\n"
  if Userbin.config.root_path
    tag += "    logoutRedirectUrl: '#{Userbin.config.root_path}',\n"
  end
  tag += "    loginRedirectUrl: '#{path}',\n" if path
  tag += "    reloadOnSuccess: true\n"
  tag += "  });\n"
  tag += "</script>\n"
end

Class: Userbin::Authentication

Constant Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(app, options = {}) ⇒ Authentication

Instance Method Details

#call(env) ⇒ Object

#generate_response(env, signature, data) ⇒ Object

#inject_tags(body, login_path = nil) ⇒ Object

#render_gateway(current_path) ⇒ Object

#script_tag(login_path) ⇒ Object

#initialize(app, options = {}) ⇒ `Authentication`

#call(env) ⇒ `Object`

#generate_response(env, signature, data) ⇒ `Object`

#inject_tags(body, login_path = nil) ⇒ `Object`

#render_gateway(current_path) ⇒ `Object`

#script_tag(login_path) ⇒ `Object`