Class: Anoubis::Sso::Client::ApplicationController

Inherits:

Core::ApplicationController

• Object
• Core::ApplicationController
• Anoubis::Sso::Client::ApplicationController

Defined in:

app/controllers/anoubis/sso/client/application_controller.rb

Direct Known Subclasses

IndexController

Instance Method Summary

• #authentication ⇒ Object
• #get_session_from_sso_server(session) ⇒ Object
• #get_user_data_by_uuid(uuid, sso_data = nil, force = false) ⇒ Object

  Returns user data by UUI.

• #menu_access(controller, exit = true) ⇒ Object

  Return access status for current user.

• #sso_server ⇒ Object
• #sso_system_secret ⇒ Object
• #sso_system_uuid ⇒ Object
• #user_model ⇒ Object

Instance Method Details

#authentication ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 25

def authentication
  if !self.token
    self.error_exit({ error: I18n.t('errors.authentication_required') })
    return false
  end

  session = self.redis.get(self.redis_prefix + 'session:' + self.token)

  if !session
    session = self.get_session_from_sso_server self.token
  else
    session = JSON.parse(session,{ symbolize_names: true })
  end

  if !session
    self.error_exit({ error: I18n.t('errors.authentication_required') })
    return false
  end

  if session[:update].to_datetime + 300.seconds < Time.now
    session = self.get_session_from_sso_server self.token
  end

  if !session
    self.redis.del self.redis_prefix + 'session:' + self.token
    self.error_exit({ error: I18n.t('errors.authentication_required') })
    return false
  end

  if session[:time].to_datetime + session[:timeout].to_f / 86400 < Time.now
    self.redis.del self.redis_prefix + 'session:' + self.token
    self.error_exit({ error: I18n.t('errors.authentication_required') })
    return false
  end

  session[:time] = Time.now

  self.redis.set(self.redis_prefix + 'session:' + self.token, session.to_json, ex: session[:timeout])

  begin
    self.current_user = self.user_model.new(self.user_model.load_cache(self.redis, session[:uuid]))
  rescue
    self.current_user = nil
  end

  true
end

#get_session_from_sso_server(session) ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 73

def get_session_from_sso_server(session)
  #require 'rest-client'

  #session = JSON.parse(RestClient.get(self.sso_server + 'api/1/login/' + session + '?sso_system=' + self.sso_system_uuid + '&secret_key=' + self.sso_system_secret + '&locale=' + self.locale), { symbolize_names: true })
  begin
    ses_data = JSON.parse(RestClient.get(self.sso_server + 'api/1/login/' + session + '?sso_system=' + self.sso_system_uuid + '&secret_key=' + self.sso_system_secret + '&locale=' + self.locale), { symbolize_names: true })
  rescue
    return nil
  end

  return nil if ses_data[:result] != 0


  user_data = self.get_user_data_by_uuid ses_data[:uuid], ses_data, true


  return {
    uuid: user_data.uuid,
    login: ses_data[:login_time],
    time: Time.now,
    timeout: user_data.timeout,
    update: Time.now
  }
end

#get_user_data_by_uuid(uuid, sso_data = nil, force = false) ⇒ Object

Returns user data by UUI

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 100

def get_user_data_by_uuid(uuid, sso_data = nil, force = false)
  unless force
    begin
      user_data = self.user_model.new(JSON.parse(self.redis.get(self.redis_prefix + 'user:' + uuid), { symbolize_names: true }))
    rescue
      user_data = nil
    end
  end

  unless user_data
    user_data = self.user_model.find_or_create_by(uuid: uuid)

    user_data.save_cache(sso_data) if user_data
  end

  user_data
end

#menu_access(controller, exit = true) ⇒ Object

Return access status for current user

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 120

def menu_access(controller, exit = true)
  menu_access_status = 'not'

  if self.current_user
    if self.current_user.menus
      if self.current_user.menus.key? controller.to_s.to_sym
        menu_access_status = self.current_user.menus[controller.to_s.to_sym]
      end
    end
  end

  if menu_access_status == 'not'
    self.error_exit({ error: I18n.t('errors.access_not_allowed') }) if exit
    return false
  end

  self.writer = true if menu_access_status == 'write'
  true
end

#sso_server ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 3

def sso_server
  Rails.configuration.sso_server
end

#sso_system_secret ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 11

def sso_system_secret
  Rails.configuration.sso_system_secret
end

#sso_system_uuid ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 7

def sso_system_uuid
  Rails.configuration.sso_system_uuid
end

#user_model ⇒ Object

# File 'app/controllers/anoubis/sso/client/application_controller.rb', line 15

def user_model
  begin
    model = Rails.configuration.user_model.classify.constantize
  rescue
    model = Anoubis::Sso::Server::User
  end

  model
end