[ tonton.rb to app.rm ]
This commit is contained in:
parent
5a18e3b334
commit
1903f6815a
1 changed files with 7 additions and 9 deletions
137
app.rb
Normal file
137
app.rb
Normal file
|
|
@ -0,0 +1,137 @@
|
|||
require 'gollum/app'
|
||||
require 'warden'
|
||||
require 'sinatra/flash'
|
||||
require 'securerandom'
|
||||
require "sqlite3"
|
||||
|
||||
TonTonWeb::User = Struct.new(:id, :username, :email, :name, :password)
|
||||
|
||||
Warden::Manager.serialize_into_session do |user|
|
||||
user.id
|
||||
end
|
||||
|
||||
Warden::Manager.serialize_from_session do |id|
|
||||
TonTonWeb::Wiki.find_user id
|
||||
end
|
||||
|
||||
Warden::Manager.before_failure do |env,opts|
|
||||
env['REQUEST_METHOD'] = "POST"
|
||||
|
||||
env['rack.session']['warden.options'] = opts
|
||||
end
|
||||
|
||||
Warden::Strategies.add(:password) do
|
||||
def valid?
|
||||
params['user'] && params['user']['username'] && params['user']['password']
|
||||
end
|
||||
|
||||
def authenticate!
|
||||
user_params = params['user']
|
||||
|
||||
user = TonTonWeb::Wiki.find_user_by_username user_params['username']
|
||||
|
||||
if user and user.password == user_params['password']
|
||||
success!(user)
|
||||
else
|
||||
throw(:warden)
|
||||
end
|
||||
end
|
||||
end
|
||||
|
||||
class TonTonWeb::Wiki < Precious::App
|
||||
set :host_authorization, { permitted_hosts: ['localhost', 'mytonton.com.br'] }
|
||||
|
||||
use Warden::Manager do |manager|
|
||||
manager.default_strategies :password
|
||||
|
||||
manager.failure_app = self
|
||||
|
||||
manager.scope_defaults :default, strategies: [:password], action: 'unauthenticated'
|
||||
end
|
||||
|
||||
register Sinatra::Flash
|
||||
|
||||
set :root, File.dirname(__FILE__)
|
||||
|
||||
@db = SQLite3::Database.new "database.sqlite"
|
||||
|
||||
def self.find_user id
|
||||
user = nil
|
||||
|
||||
@db.execute("select id, username, email, name, password from users where id = ?", id) do |row|
|
||||
user = TonTonWeb::User.new(*row)
|
||||
end
|
||||
|
||||
return user
|
||||
end
|
||||
|
||||
def self.find_user_by_username username
|
||||
user = nil
|
||||
|
||||
@db.execute("select id, username, email, name, password from users where username = ?", username) do |row|
|
||||
user = TonTonWeb::User.new(*row)
|
||||
end
|
||||
|
||||
return user
|
||||
end
|
||||
|
||||
helpers do
|
||||
def check_authentication
|
||||
if not env['warden'].authenticated?
|
||||
flash[:error] = 'You must log in to access this page.'
|
||||
|
||||
redirect '/login'
|
||||
else
|
||||
session['gollum.author'] = {
|
||||
name: current_user.name,
|
||||
email: current_user.email
|
||||
}
|
||||
end
|
||||
end
|
||||
|
||||
def current_user
|
||||
env['warden'].user
|
||||
end
|
||||
end
|
||||
|
||||
before do
|
||||
puts request.path_info
|
||||
if not env['warden'].authenticated?
|
||||
@allow_editing = false
|
||||
else
|
||||
@allow_editing = true
|
||||
end
|
||||
end
|
||||
|
||||
post '/unauthenticated' do
|
||||
session['warden.return_to'] = env['warden.options'][:attempted_path]
|
||||
|
||||
flash[:error] = 'You must log in to access this page.'
|
||||
|
||||
redirect '/login'
|
||||
end
|
||||
|
||||
get '/login' do
|
||||
@error = flash[:error]
|
||||
|
||||
erb :login
|
||||
end
|
||||
|
||||
post '/login' do
|
||||
env['warden'].authenticate!
|
||||
|
||||
if env['warden'].authenticated?
|
||||
redirect_path = session.delete('warden.return_to') || '/'
|
||||
|
||||
redirect redirect_path
|
||||
else
|
||||
redirect '/login'
|
||||
end
|
||||
end
|
||||
|
||||
get '/logout' do
|
||||
env['warden'].logout
|
||||
|
||||
redirect '/'
|
||||
end
|
||||
end
|
||||
Loading…
Add table
Add a link
Reference in a new issue