Contents

require 'sinatra'
require 'sinatra/content_for'

module SnowmanIO
  class API < Sinatra::Base
    def self.start(options)
      sinatra_options = {}
      sinatra_options[:port] = options[:port]
      run!(sinatra_options)
    end

    enable :sessions
    helpers Sinatra::ContentFor
    set :public_folder, File.dirname(__FILE__) + "/api/public"
    set :views, File.dirname(__FILE__) + "/api/views"
    # TODO: fix it
    set :session_secret, 'super secret'

    ADMIN_PASSWORD_KEY = "admin_password_hash"

    def admin_exists?
      !!SnowmanIO.redis.get(ADMIN_PASSWORD_KEY)
    end

    def admin_authenticated?
      admin_exists? && !!session[:user]
    end

    before do
      if !admin_exists?
        redirect to('/unpacking') if request.path_info != '/unpacking'
      elsif !admin_authenticated?
        redirect to('/login') if request.path_info != '/login'
      end
    end

    get "/" do
      erb :index
    end

    get "/login" do
      erb :login
    end

    post "/login" do
      if BCrypt::Password.new(SnowmanIO.redis.get(ADMIN_PASSWORD_KEY)) == params["password"]
        session[:user] = "admin"
        redirect to('/')
      else
        @wrong_password_warning = true
        erb :login
      end
    end

    get "/logout" do
      session[:user] = nil
      redirect to("/login")
    end

    get "/unpacking" do
      erb :unpacking
    end

    post "/unpacking" do
      if params["password"].empty?
        @empty_password_warning = true
        erb :unpacking
      else
        session[:user] = "admin"
        SnowmanIO.redis.set(ADMIN_PASSWORD_KEY, BCrypt::Password.create(params["password"]))
        redirect to('/')
      end
    end
  end
end

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
snowman-io-0.0.4	lib/snowman-io/api.rb