Class: KStor::Controller::Authentication

Inherits:

Object

• Object
• KStor::Controller::Authentication

Defined in:

lib/kstor/controller/authentication.rb

Overview

Specialized controller for user authentication and sessions.

Instance Method Summary

• #allowed?(user) ⇒ Boolean

  Check if user is allowed to access the application.

• #authenticate(req) ⇒ KStor::Model::User

  Authenticate request user.

• #initialize(store, session_store) ⇒ KStor::Controller::Authentication constructor

  Create new auth controller.

Constructor Details

#initialize(store, session_store) ⇒ KStor::Controller::Authentication

Create new auth controller.

Parameters:

• store (KStor::Store) —

  data store where users are

• session_store (KStor::SessionStore) —

  where user sessions are

# File 'lib/kstor/controller/authentication.rb', line 18

def initialize(store, session_store)
  @store = store
  @sessions = session_store
end

Instance Method Details

#allowed?(user) ⇒ Boolean

Check if user is allowed to access the application.

Parameters:

• user (KStor::Model::User) —

  client user

Returns:

• (Boolean) —

  true if login is allowed to access application data.

# File 'lib/kstor/controller/authentication.rb', line 45

def allowed?(user)
  user.status == 'new' || user.status == 'active'
end

#authenticate(req) ⇒ KStor::Model::User

Authenticate request user.

Request may either contain a login/password, or a session ID.

Parameters:

• req (KStor::Message::Base) —

  client request

Returns:

• (KStor::Model::User) —

  client user

Raises:

• (KStor::InvalidSession) —

  if session ID is invalid

• (KStor::UserNotAllowed) —

  if user is not allowed

• (KStor::MissingLoginPassword) —

  if database is empty and request only contains a session ID

# File 'lib/kstor/controller/authentication.rb', line 33

def authenticate(req)
  if @store.users?
    unlock_user(req)
  else
    create_first_user(req)
  end
end