Contents

require 'rack'

module SoarAuthenticationToken
  class RackMiddleware
    def initialize(app, configuration, auditing = nil)
      @app = app
      @configuration = configuration
      @auditing = auditing
    end

    def call(env)
      request = Rack::Request.new env
      session, params = request.session, request.params
      token_valid, token_meta, message = validate_and_resolve_token(request.env['HTTP_AUTHORIZATION'],params['flow_identifier'])
      if token_valid
        session['user'] = token_meta['authenticated_identifier']
        session['auth_token_meta'] = token_meta
        @app.call env
      else
        audit_token_rejection("Token rejected due to #{message}",params['flow_identifier'])
        [401, {"Content-Type" => "text/html"}, ["401 - Not authenticated"]]
      end
    end

    private

    def validate_and_resolve_token(authentication_token,flow_identifier)
      token_validator = SoarAuthenticationToken::TokenValidator.new(@configuration)
      token_validator.validate(authentication_token: authentication_token,flow_identifier: flow_identifier)
    end

    def audit_token_rejection(message, flow_id)
      @auditing.warn(message,flow_id) if @auditing
    end
  end
end

Version data entries

6 entries across 6 versions & 1 rubygems

Version	Path
soar_authentication_token-3.0.5	lib/soar_authentication_token/rack_middleware.rb
soar_authentication_token-3.0.4	lib/soar_authentication_token/rack_middleware.rb
soar_authentication_token-3.0.3	lib/soar_authentication_token/rack_middleware.rb
soar_authentication_token-3.0.2	lib/soar_authentication_token/rack_middleware.rb
soar_authentication_token-3.0.1	lib/soar_authentication_token/rack_middleware.rb
soar_authentication_token-3.0.0	lib/soar_authentication_token/rack_middleware.rb