Class: OpenID::Store::ActiveRecord

Inherits:
Interface
  • Object
show all
Defined in:
lib/openid/store/active_record.rb

Instance Method Summary collapse

Instance Method Details

#cleanupObject

Remove expired nonces and associations from the store Not called during normal library operation, this method is for store admins to keep their storage from filling up with expired data



68
69
70
71
# File 'lib/openid/store/active_record.rb', line 68

def cleanup
  cleanup_nonces
  cleanup_associations
end

#cleanup_associationsObject

Remove expired associations from the store Not called during normal library operation, this method is for store admins to keep their storage from filling up with expired data



76
77
78
79
80
81
# File 'lib/openid/store/active_record.rb', line 76

def cleanup_associations
  oas = OpenidAssociation.all.collect do |oa|
    oa.id if build_association(oa).expires_in == 0
  end
  OpenidAssociation.delete oas.compact
end

#cleanup_noncesObject

Remove expired nonces from the store Discards any nonce that is old enough that it wouldn’t pass use_nonce Not called during normal library operation, this method is for store admins to keep their storage from filling up with expired data



87
88
89
90
91
92
# File 'lib/openid/store/active_record.rb', line 87

def cleanup_nonces
  now = Time.now.to_i
  nonces = OpenidNonce.all
  ids = nonces.collect { |n| n.id if (n.timestamp - now).abs > Nonce.skew }
  OpenidNonce.delete ids.compact
end

#get_association(server_url, handle = nil) ⇒ Object

Returns a Association object from storage that matches the server_url. Returns nil if no such association is found or if the one matching association is expired. (Is allowed to GC expired associations when found.)



31
32
33
34
35
36
37
38
39
# File 'lib/openid/store/active_record.rb', line 31

def get_association(server_url, handle=nil)
  oas = OpenidAssociation.find_all_by_target targetize(server_url)
  return nil if oas.empty?
  unless handle.nil?
    return nil unless oas.collect(&:handle).include? handle
    return build_association(oas.find { |oa| oa.handle == handle })
  end
  oas.sort_by(&:issued_at).collect { |oa| build_association(oa) }.last
end

#remove_association(server_url, handle) ⇒ Object

If there is a matching association, remove it from the store and return true, otherwise return false.



43
44
45
46
47
# File 'lib/openid/store/active_record.rb', line 43

def remove_association(server_url, handle)
  oas = OpenidAssociation.find_all_by_target targetize(server_url)
  return false unless oas.collect(&:handle).include? handle
  oas.find_all { |oa| oa.handle == handle }.each(&:delete).size > 0
end

#store_association(server_url, association) ⇒ Object

Put a Association object into storage. When implementing a store, don’t assume that there are any limitations on the character set of the server_url. In particular, expect to see unescaped non-url-safe characters in the server_url field.



14
15
16
17
18
19
20
21
22
23
24
25
# File 'lib/openid/store/active_record.rb', line 14

def store_association(server_url, association)
  OpenidAssociation.create!(
    :server_url => server_url,
    :target     => targetize(server_url),
    :handle     => association.handle,
    :secret     => association.secret,
    :issued_at  => association.issued,
    :lifetime   => association.lifetime,
    :assoc_type => association.assoc_type
  )
  true
end

#use_nonce(server_url, timestamp, salt) ⇒ Object

Return true if the nonce has not been used before, and store it for a while to make sure someone doesn’t try to use the same value again. Return false if the nonce has already been used or if the timestamp is not current. You can use OpenID::Store::Nonce::SKEW for your timestamp window. server_url: URL of the server from which the nonce originated timestamp: time the nonce was created in seconds since unix epoch salt: A random string that makes two nonces issued by a server in

the same second unique


58
59
60
61
62
63
# File 'lib/openid/store/active_record.rb', line 58

def use_nonce(server_url, timestamp, salt)
  return false if (timestamp - Time.now.to_i).abs > Nonce.skew
  params = [timestamp, salt, targetize(server_url)]
  return false if OpenidNonce.exists_by_target?(*params)
  return create_nonce(server_url, timestamp, salt)
end