Contents

module Shield
  module Helpers
    class NoSessionError < StandardError; end

    def session
      env["rack.session"] || raise(NoSessionError)
    end

    def redirect(path, status = 302)
      if defined?(super)
        # If the application context has defined a proper redirect
        # we can simply use that definition.
        super
      else
        # We implement the Cuba redirect here, being Cuba users we
        # are biased towards it of course.
        halt [status, { "Location" => path, "Content-Type" => "text/html" }, []]
      end
    end

    def ensure_authenticated(model, login_url = "/login")
      if authenticated(model)
        return true
      else
        # If you've ever used request.path, it just so happens
        # to be SCRIPT_NAME + PATH_INFO.
        session[:return_to] = env["SCRIPT_NAME"] + env["PATH_INFO"]
        redirect login_url
        return false
      end
    end

    def authenticated(model)
      @_authenticated ||= {}
      @_authenticated[model] ||= session[model.to_s] && model[session[model.to_s]]
    end

    def persist_session!
      if session[:remember_for]
        env["rack.session.options"][:expire_after] = session[:remember_for]
      end
    end

    def login(model, username, password, remember = false, expire = 1209600)
      instance = model.authenticate(username, password)

      if instance
        session[:remember_for] = expire if remember
        session[model.to_s] = instance.id
      else
        return false
      end
    end

    def logout(model)
      session.delete(model.to_s)
      session.delete(:return_to)
      session.delete(:remember_for)

      @_authenticated.delete(model) if defined?(@_authenticated)
    end

    def authenticate(user)
      session[user.class.to_s] = user.id
    end
  end
end

Version data entries

2 entries across 2 versions & 1 rubygems

Version	Path
shield-0.1.0	lib/shield/helpers.rb
shield-0.1.0.rc1	lib/shield/helpers.rb