Class: Aserto::Authorization

Inherits:

Object

• Object
• Aserto::Authorization

Defined in:

lib/aserto/authorization.rb

Instance Attribute Summary

• #config ⇒ Object readonly

  Returns the value of attribute config.

Instance Method Summary

• #call(env) ⇒ Object
• #initialize(app, options = {}) {|@config| ... } ⇒ Authorization constructor

  A new instance of Authorization.

Constructor Details

#initialize(app, options = {}) {|@config| ... } ⇒ Authorization

Returns a new instance of Authorization.

Yields:

• (@config)

# File 'lib/aserto/authorization.rb', line 7

def initialize(app, options = {})
  @app = app
  @config = Aserto.config(options)
  yield @config if block_given?
end

Instance Attribute Details

#config ⇒ Object (readonly)

Returns the value of attribute config.

# File 'lib/aserto/authorization.rb', line 5

def config
  @config
end

Instance Method Details

#call(env) ⇒ Object

# File 'lib/aserto/authorization.rb', line 13

def call(env)
  request = Rack::Request.new(env)

  allowed = if enabled?(request)
              Aserto.logger.debug("Aserto authorization enabled")
              client = Aserto::AuthClient.new(request)
              res = client.is
              Aserto.logger.debug("Aserto authorization result -> allowed: #{res}")
              res
            else
              Aserto.logger.debug("Aserto authorization not enabled")
              true
            end

  return @app.call env if allowed

  config.on_unauthorized.call(env)
end