Module: LobbyBoy::SessionHelper

Defined in:

app/helpers/lobby_boy/session_helper.rb

Instance Method Summary

• #confirm_login! ⇒ Object

  Call in host rails controller to confirm that the user was logged in.

• #finish_logout! ⇒ Object
• #finish_reauthentication! ⇒ Object
• #id_token ⇒ Object
• #id_token_expired? ⇒ Boolean
• #logout_at_op!(return_url = nil) ⇒ Object
• #reauthentication? ⇒ Boolean

Instance Method Details

#confirm_login! ⇒ Object

Call in host rails controller to confirm that the user was logged in.

# File 'app/helpers/lobby_boy/session_helper.rb', line 5

def confirm_login!
  if LobbyBoy.configured?
    session['lobby_boy.id_token'] = env['lobby_boy.id_token'].jwt_token
    cookies[:oidc_rp_state] = env['lobby_boy.cookie']
  end
end

#finish_logout! ⇒ Object

# File 'app/helpers/lobby_boy/session_helper.rb', line 20

def finish_logout!
  redirect_to(lobby_boy_path + 'session/state?state=logout')
end

#finish_reauthentication! ⇒ Object

# File 'app/helpers/lobby_boy/session_helper.rb', line 12

def finish_reauthentication!
  redirect_to(lobby_boy_path + 'session/state')
end

#id_token ⇒ Object

# File 'app/helpers/lobby_boy/session_helper.rb', line 28

def id_token
  token = session['lobby_boy.id_token']
  ::LobbyBoy::OpenIDConnect::IdToken.new token if token
end

#id_token_expired? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/helpers/lobby_boy/session_helper.rb', line 24

def id_token_expired?
  id_token && id_token.expires_in == 0
end

#logout_at_op!(return_url = nil) ⇒ Object

# File 'app/helpers/lobby_boy/session_helper.rb', line 33

def logout_at_op!(return_url = nil)
  return false unless LobbyBoy.configured?

  id_token_hint = id_token && id_token.jwt_token
  logout_url = LobbyBoy::Util::URI.add_query_params(
      LobbyBoy.provider.end_session_endpoint,
      id_token_hint: id_token_hint,
      post_logout_redirect_uri: return_url)

  cookies.delete :oidc_rp_state, domain: LobbyBoy.client.cookie_domain

  if logout_url # may be nil if not configured
    redirect_to logout_url # log out at OpenIDConnect SSO provider too
    true
  else
    false
  end
end

#reauthentication? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/helpers/lobby_boy/session_helper.rb', line 16

def reauthentication?
  env['omniauth.origin'] == '/session/state'
end