Class: OMF::SFA::AM::Rest::SessionAuthenticator

Inherits:

Base::LObject

• Object
• Base::LObject
• OMF::SFA::AM::Rest::SessionAuthenticator

Defined in:

lib/omf-sfa/am/am-rest/session_authenticator.rb

Constant Summary

@@store =

{}

@@active =

false

@@expire_after =

Expire authenticated session after being idle for that many seconds

2592000

@@def_authenticator =

nil

Class Method Summary

• .[](key) ⇒ Object
• .[]=(key, value) ⇒ Object
• .active? ⇒ Boolean
• .authenticate ⇒ Object
• .authenticated? ⇒ Boolean
• .logout ⇒ Object

Instance Method Summary

• #call(env) ⇒ Object
• #init_fake_root ⇒ Object
• #initialize(app, opts = {}) ⇒ SessionAuthenticator constructor

  opts - :no_session - Array of regexp to ignore.

Constructor Details

#initialize(app, opts = {}) ⇒ SessionAuthenticator

opts -

:no_session - Array of regexp to ignore

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 44

def initialize(app, opts = {})
  @app = app
  @opts = opts
  @opts[:no_session] = (@opts[:no_session] || []).map { |s| Regexp.new(s) }
  if @opts[:expire_after]
    @@expire_after = @opts[:expire_after]
  end
  @@active = true
end

Class Method Details

.[](key) ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 28

def self.[](key)
  (@@store[key] || {})[:value]
end

.[]=(key, value) ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 32

def self.[]=(key, value)
  @@store[key] = {:value => value, :time => Time.now } # add time for GC
end

.active? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 9

def self.active?
  @@active
end

.authenticate ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 17

def self.authenticate
  self[:authenticated] = true
  self[:valid_until] = Time.now + @@expire_after
end

.authenticated? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 13

def self.authenticated?
  self[:authenticated]
end

.logout ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 22

def self.logout
  self[:authenticated] = false
end

Instance Method Details

#call(env) ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 55

def call(env)
  #puts env.keys.inspect
  req = ::Rack::Request.new(env)
  sid = nil
  path_info = req.path_info
  #puts "REQUEST(#{self.object_id}): #{path_info}"

  unless @opts[:no_session].find {|rx| rx.match(path_info) }
    unless sid = req.cookies['sid']
      sid = "s#{(rand * 10000000).to_i}_#{(rand * 10000000).to_i}"
      debug "Setting session for '#{req.path_info}' to '#{sid}'"
    end
    Thread.current["sessionID"] = sid
    # If 'login_url' is defined, check if this session is authenticated
    login_url = @opts[:login_url]
    if login_url
      unless login_url == req.path_info
        puts ">>>>>> CHECKING FOR LOGIN #{login_url.class}"
        if authenticated = self.class[:authenticated]
          # Check if it hasn't imed out
          if self.class[:valid_until] < Time.now
            debug "Session '#{sid}' expired"
            authenticated = false
          end
        end
        unless authenticated
          return [301, {'Location' => login_url, "Content-Type" => ""}, ['Login first']]
        end
      end
    else
      init_fake_root
    end
    self.class[:valid_until] = Time.now + @@expire_after
  end

  status, headers, body = @app.call(env)
  if sid
    headers['Set-Cookie'] = "sid=#{sid}"  ##: name2=value2; Expires=Wed, 09-Jun-2021 ]
  end
  [status, headers, body]
end

#init_fake_root ⇒ Object

# File 'lib/omf-sfa/am/am-rest/session_authenticator.rb', line 99

def init_fake_root
  unless @@def_authenticator
    auth = {}
    [
      # ACCOUNT
      :can_create_account?, # ()
      :can_view_account?, # (account)
      :can_renew_account?, # (account, until)
      :can_close_account?, # (account)
      # RESOURCE
      :can_create_resource?, # (resource_descr, type)
      :can_view_resource?, # (resource)
      :can_release_resource?, # (resource)
      # LEASE
      :can_create_lease?, # (lease)
      :can_view_lease?, # (lease)
      :can_modify_lease?, # (lease)
      :can_release_lease?, # (lease)
    ].each do |m| auth[m] = true end
    require 'omf-sfa/am/default_authorizer'
    @@def_authenticator = OMF::SFA::AM::DefaultAuthorizer.new(auth)
  end
  Thread.current["authenticator"] = @@def_authenticator
end