Class: VersacommerceAPI::Session

Inherits:

Object

• Object
• VersacommerceAPI::Session

Defined in:

lib/versacommerce_api/session.rb

Instance Attribute Summary

• #name ⇒ Object

  Returns the value of attribute name.

• #token ⇒ Object

  Returns the value of attribute token.

• #url ⇒ Object

  Returns the value of attribute url.

Class Method Summary

• .get_password ⇒ Object
• .request_token(domain) ⇒ Object
• .setup(params) ⇒ Object

Instance Method Summary

• #create_permission_url ⇒ Object
• #initialize(url, token = nil, params = nil) ⇒ Session constructor

  A new instance of Session.

• #shop ⇒ Object
• #site ⇒ Object

  Used by ActiveResource::Base to make all non-authentication API calls.

• #valid? ⇒ Boolean

Constructor Details

#initialize(url, token = nil, params = nil) ⇒ Session

Returns a new instance of Session.

# File 'lib/versacommerce_api/session.rb', line 16

def initialize(url, token = nil, params = nil)
  self.url, self.token = url, token
  
  if params && params[:signature]
    unless self.class.validate_signature(params) && params[:timestamp].to_i > 24.hours.ago.utc.to_i
      raise "Invalid Signature: Possible malicious login"
    end
  end
  
  self.class.prepare_url(self.url)
end

Instance Attribute Details

#name ⇒ Object

Returns the value of attribute name.

# File 'lib/versacommerce_api/session.rb', line 13

def name
  @name
end

#token ⇒ Object

Returns the value of attribute token.

# File 'lib/versacommerce_api/session.rb', line 13

def token
  @token
end

#url ⇒ Object

Returns the value of attribute url.

# File 'lib/versacommerce_api/session.rb', line 13

def url
  @url
end

Class Method Details

.get_password ⇒ Object

# File 'lib/versacommerce_api/session.rb', line 45

def self.get_password
  return nil if domain.blank? || api_key.blank? || secret.blank?
  
  token = request_token(domain)
  return if token.blank?
  
  Digest::MD5.hexdigest(secret + token)
end

.request_token(domain) ⇒ Object

# File 'lib/versacommerce_api/session.rb', line 34

def self.request_token(domain)
  return nil if domain.blank? || api_key.blank?
  begin
    uri = URI("https://#{domain}/api/auth.xml?api_key=#{api_key}")
    res = Net::HTTP.get_response(uri)
    Hash.from_xml(res.body)["token"] if res&.body
  rescue
    nil
  end
end

.setup(params) ⇒ Object

# File 'lib/versacommerce_api/session.rb', line 29

def self.setup(params)
  params.each { |k,value| send("#{k}=", value) }
end

Instance Method Details

#create_permission_url ⇒ Object

# File 'lib/versacommerce_api/session.rb', line 61

def create_permission_url
  return nil if url.blank? || api_key.blank?
  "#{protocol}://#{url}/api/auth?api_key=#{api_key}"
end

#shop ⇒ Object

# File 'lib/versacommerce_api/session.rb', line 56

def shop
  Shop.current
end

#site ⇒ Object

Used by ActiveResource::Base to make all non-authentication API calls

# File 'lib/versacommerce_api/session.rb', line 68

def site
  "#{protocol}://#{api_key}:#{computed_password}@#{url}/api/"
end

#valid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/versacommerce_api/session.rb', line 73

def valid?
  url.present? && token.present?
end