Class: Cafmal::Auth

Inherits:

Object

• Object
• Cafmal::Auth

Defined in:

lib/cafmal/auth.rb

Instance Attribute Summary

• #cafmal_api_url ⇒ Object readonly

  Returns the value of attribute cafmal_api_url.

• #decoded_token ⇒ Object readonly

  Returns the value of attribute decoded_token.

• #token ⇒ Object readonly

  Returns the value of attribute token.

Instance Method Summary

• #expired?(force = false) ⇒ Boolean
• #initialize(api_url) ⇒ Auth constructor

  A new instance of Auth.

• #login(email = 'admin@example.com', password = 'cafmal') ⇒ Object
• #logout(token) ⇒ Object

  we supply the token here, so web does not have to cache the auth obj.

• #refresh(token) ⇒ Object

  refresh token.

Constructor Details

#initialize(api_url) ⇒ Auth

Returns a new instance of Auth.

# File 'lib/cafmal/auth.rb', line 13

def initialize(api_url)
  @cafmal_api_url = api_url
end

Instance Attribute Details

#cafmal_api_url ⇒ Object (readonly)

Returns the value of attribute cafmal_api_url.

# File 'lib/cafmal/auth.rb', line 11

def cafmal_api_url
  @cafmal_api_url
end

#decoded_token ⇒ Object (readonly)

Returns the value of attribute decoded_token.

# File 'lib/cafmal/auth.rb', line 10

def decoded_token
  @decoded_token
end

#token ⇒ Object (readonly)

Returns the value of attribute token.

# File 'lib/cafmal/auth.rb', line 9

def token
  @token
end

Instance Method Details

#expired?(force = false) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/cafmal/auth.rb', line 17

def expired?(force = false)
  is_expired = false
  if @token.nil?
    is_expired = true
  else
    is_expired = (Time.at(@decoded_token['payload']['exp']).utc.to_datetime < Time.now().utc.to_datetime)
    # force is checking against auth from the api itself instead of relying on JWT exp
    if force
      request_user = JSON.parse(Cafmal::User.new(@cafmal_api_url, @token).show(@decoded_token['payload']['sub']))
      is_expired = request_user.nil?
    end
  end
  return is_expired
end

#login(email = 'admin@example.com', password = 'cafmal') ⇒ Object

# File 'lib/cafmal/auth.rb', line 32

def login(email = 'admin@example.com', password = 'cafmal')
  credentials = {auth: {email: email, password: password}}.to_json
  request_auth = Cafmal::Request::Post.new(@cafmal_api_url + '/user_token', credentials, {"Content-Type" => "application/json"})
  if request_auth.response.code < 300
    @token = JSON.parse(request_auth.response.body)["jwt"]
    @decoded_token = {}
    @decoded_token['header'] = JSON.parse(Base64.decode64(@token.split('.')[0]))
    @decoded_token['payload'] = JSON.parse(Base64.decode64(@token.split('.')[1]))

    if (@decoded_token['payload']['role'] != 'worker' && @decoded_token['payload']['role'] != 'alerter')
      team_id = JSON.parse(Cafmal::User.new(@cafmal_api_url, @token).show(@decoded_token['payload']['sub']).body)["team_id"]
      event = Cafmal::Event.new(@cafmal_api_url, @token)
      event.create({name: 'user.login', message: "#{email} has logged in.", kind: 'login', severity: 'info', team_id: team_id})

      #@TODO silence all alerts for your team_id, set silenced_at now + 1h
    end

    true
  end
end

#logout(token) ⇒ Object

we supply the token here, so web does not have to cache the auth obj

# File 'lib/cafmal/auth.rb', line 54

def logout(token)
  headers = {"Content-Type" => "application/json", "Authorization" => "Bearer #{token}"}

  decoded_token = {}
  decoded_token['header'] = JSON.parse(Base64.decode64(token.split('.')[0]))
  decoded_token['payload'] = JSON.parse(Base64.decode64(token.split('.')[1]))

  user = JSON.parse(Cafmal::User.new(@cafmal_api_url, token).show(decoded_token['payload']['sub']).body)
  team_id = user["team_id"]
  email = user["email"]

  # kind has to be login, as it's a label of events
  event_id = JSON.parse(Cafmal::Event.new(@cafmal_api_url, token).create({name: 'user.logout', message: "#{email} has logged out.", kind: 'login', severity: 'info', team_id: team_id}).body)

  if event_id.nil?
    false
  else
    @token = nil
    @decoded_token = nil
    true
  end
end

#refresh(token) ⇒ Object

refresh token

# File 'lib/cafmal/auth.rb', line 78

def refresh(token)
  headers = {"Content-Type" => "application/json", "Authorization" => "Bearer #{token}"}
  credentials = {token: token}.to_json
  request_refresh = Cafmal::Request::Post.new(@cafmal_api_url + '/user_token_refresh', credentials, headers)
  if request_refresh.response.code < 300
    @token = JSON.parse(request_refresh.response.body)['jwt']
    @decoded_token = {}
    @decoded_token['header'] = JSON.parse(Base64.decode64(@token.split('.')[0]))
    @decoded_token['payload'] = JSON.parse(Base64.decode64(@token.split('.')[1]))

    if (@decoded_token['payload']['role'] != 'worker' && @decoded_token['payload']['role'] != 'alerter')
      team_id = JSON.parse(Cafmal::User.new(@cafmal_api_url, @token).show(@decoded_token['payload']['sub']).body)["team_id"]
      event = Cafmal::Event.new(@cafmal_api_url, @token)
      event.create({name: 'user.refresh_login', message: "#{@decoded_token['payload']['email']} has refreshed his login.", kind: 'login', severity: 'info', team_id: team_id})
    end
    return true
  else
    return false
  end
end