# Authenticate Lifecycle methods within
module Authenticate
#
# Lifecycle stores and runs callbacks for authorization events.
#
# Heavily borrowed from warden (https://github.com/hassox/warden).
#
# = Events:
# * :set_user - called after the user object is loaded, either through id/password or via session token.
# * :authentication - called after the user authenticates with id & password
#
# Callbacks are added via after_set_user or after_authentication.
#
# Callbacks can throw(:failure,message) to signal an authentication/authorization failure, or perform
# actions on the user or session.
#
# = Options
#
# The callback options may optionally specify when to run the callback:
# * only - executes the callback only if it matches the event(s) given
# * except - executes the callback except if it matches the event(s) given
#
# The callback may also specify a 'name' key in options. This is for debugging purposes only.
#
# = Callback block parameters
#
# Callbacks are invoked with the following block parameters: |user, session, opts|
# * user - the user object just loaded
# * session - the Authenticate::Session
# * opts - any options you want passed into the callback
#
# = Example
#
# # A callback to track the users successful logins:
# Authenticate.lifecycle.after_set_user do |user, session, opts|
# user.sign_in_count += 1
# end
#
class Lifecycle
include Debug
def initialize
@conditions = [:only, :except, :event].freeze
end
# This callback is triggered after the first time a user is set during per-hit authorization, or during login.
def after_set_user(options = {}, method = :push, &block)
add_callback(after_set_user_callbacks, options, method, &block)
end
# A callback to run after the user successfully authenticates, during the login process.
# Mechanically identical to [#after_set_user].
def after_authentication(options = {}, method = :push, &block)
add_callback(after_authentication_callbacks, options, method, &block)
end
# Run callbacks of the given kind.
#
# * kind - :authenticate or :after_set_user
# * args - user, session, opts hash. Opts is an optional event, e.g. { event: :authentication }
#
# Example:
# Authenticate.lifecycle.run_callbacks(:after_set_user, @current_user, self, { event: :authentication })
#
def run_callbacks(kind, user, session, *args) # args - |user, session, opts|
# Last callback arg MUST be a Hash
options = args.last
send("#{kind}_callbacks").each do |callback, conditions| # each callback has 'conditions' stored with it
conditions = conditions.dup.delete_if { |key, _val| !@conditions.include? key }
invalid = conditions.find do |key, value|
value.is_a?(Array) ? !value.include?(options[key]) : (value != options[key])
end
callback.call(user, session, *args) unless invalid
end
nil
end
def prepend_after_authentication(options = {}, &block)
after_authentication(options, :unshift, &block)
end
private
def add_callback(callbacks, options = {}, method = :push, &block)
raise BlockNotGiven unless block_given?
options = process_opts(options)
callbacks.send(method, [block, options])
end
# set event: to run callback on based on options
def process_opts(options)
if options.key?(:only)
options[:event] = options.delete(:only)
elsif options.key?(:except)
options[:event] = [:set_user, :authentication] - Array(options.delete(:except))
end
options
end
def after_set_user_callbacks
@after_set_user_callbacks ||= []
end
def after_authentication_callbacks
@after_authentication_callbacks ||= []
end
end
# Invoke lifecycle methods. Example:
# Authenticate.lifecycle.run_callbacks(:after_set_user, current_user, authenticate_session, { event: :set_user })
#
def self.lifecycle
@lifecycle ||= Lifecycle.new
end
def self.lifecycle=(lifecycle)
@lifecycle = lifecycle
end
end