Class: Clerk::AuthenticateContext

Inherits:

Object

• Object
• Clerk::AuthenticateContext

Extended by:

Forwardable

Defined in:

lib/clerk/authenticate_context.rb

Overview

This class represents a parameter object used to contain all request and configuration information required by the middleware to resolve the current request state. link: refactoring.guru/introduce-parameter-object

Instance Attribute Summary

• #clerk_url ⇒ Object readonly

  Expose the url of the request that this parameter object was created from as a URI object.

Instance Method Summary

• #accepts_html? ⇒ Boolean
• #active_client? ⇒ Boolean
• #clerk_redirect_url ⇒ Object
• #clerk_synced? ⇒ Boolean
• #cross_origin_request? ⇒ Boolean
• #dev_browser ⇒ Object
• #dev_browser? ⇒ Boolean
• #dev_browser_in_url ⇒ Object
• #dev_browser_in_url? ⇒ Boolean
• #development_instance? ⇒ Boolean
• #document_request? ⇒ Boolean
• #domain ⇒ Object
• #eligible_for_multi_domain? ⇒ Boolean
• #frontend_api ⇒ Object

  The frontend_api returned is without protocol prefix.

• #handshake_token ⇒ Object
• #handshake_token? ⇒ Boolean
• #initialize(request, config) ⇒ AuthenticateContext constructor

  Creates a new parameter object using ::Rack::Request and Clerk::Config objects.

• #is_satellite? ⇒ Boolean
• #production_instance? ⇒ Boolean
• #proxy_url ⇒ Object
• #proxy_url? ⇒ Boolean
• #publishable_key ⇒ Object
• #secret_key ⇒ Object

  The following properties are part of the props supported in all the AuthenticateContext objects across all of our SDKs (eg JS, Go).

• #session_token_in_cookie? ⇒ Boolean
• #session_token_in_header? ⇒ Boolean

Constructor Details

#initialize(request, config) ⇒ AuthenticateContext

Creates a new parameter object using ::Rack::Request and Clerk::Config objects.

# File 'lib/clerk/authenticate_context.rb', line 22

def initialize(request, config)
  @clerk_url = URI.parse(request.url)
  @config = config

  @cookies = OpenStruct.new({
    client_uat: request.cookies[CLIENT_UAT_COOKIE],
    dev_browser: request.cookies[DEV_BROWSER_COOKIE],
    handshake_token: request.cookies[HANDSHAKE_COOKIE],
    session_token_in_cookie: request.cookies[SESSION_COOKIE]
  })

  @headers = OpenStruct.new({
    accept: Utils.retrieve_header_from_request(request, ACCEPT_HEADER),
    host: request.host,
    origin: Utils.retrieve_header_from_request(request, ORIGIN_HEADER),
    port: request.port,
    sec_fetch_dest: Utils.retrieve_header_from_request(request, SEC_FETCH_DEST_HEADER),
    session_token_in_header: Utils.retrieve_header_from_request(request, AUTHORIZATION_HEADER).gsub(/bearer/i, "").strip
  })
end

Instance Attribute Details

#clerk_url ⇒ Object (readonly)

Expose the url of the request that this parameter object was created from as a URI object.

# File 'lib/clerk/authenticate_context.rb', line 14

def clerk_url
  @clerk_url
end

Instance Method Details

#accepts_html? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 95

def accepts_html?
  @headers.accept&.start_with?("text/html")
end

#active_client? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 103

def active_client?
  @cookies.client_uat.to_i.positive?
end

#clerk_redirect_url ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 164

def clerk_redirect_url
  "" # TODO: Add multi-domain support
end

#clerk_synced? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 160

def clerk_synced?
  false # TODO: Add multi-domain support
end

#cross_origin_request? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 107

def cross_origin_request?
  # origin contains scheme+host and optionally port (omitted if 80 or 443)
  # ref. https://www.rfc-editor.org/rfc/rfc6454#section-6.1
  return false if @headers.origin.nil?

  # strip scheme
  origin = @headers.origin.strip.sub(%r{\A(\w+:)?//}, "")
  return false if origin.empty?

  # Rack's host and port helpers are reverse-proxy-aware; that
  # is, they prefer the de-facto X-Forwarded-* headers if they're set
  request_host = @headers.host
  request_host << ":#{@headers.port}" if @headers.port != 80 && @headers.port != 443

  origin != request_host
end

#dev_browser ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 65

def dev_browser
  @dev_browser ||= dev_browser_in_url || @cookies.dev_browser.to_s
end

#dev_browser? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 124

def dev_browser?
  !dev_browser.empty?
end

#dev_browser_in_url ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 140

def dev_browser_in_url
  Utils.retrieve_from_query_string(@clerk_url, DEV_BROWSER_COOKIE)
end

#dev_browser_in_url? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 144

def dev_browser_in_url?
  !!dev_browser_in_url
end

#development_instance? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 83

def development_instance?
  secret_key.start_with?("sk_test_")
end

#document_request? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 91

def document_request?
  @headers.sec_fetch_dest == "document"
end

#domain ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 148

def domain
  "" # TODO: Add multi-domain support
end

#eligible_for_multi_domain? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 99

def eligible_for_multi_domain?
  is_satellite? && document_request? && !clerk_synced?
end

#frontend_api ⇒ Object

The frontend_api returned is without protocol prefix

# File 'lib/clerk/authenticate_context.rb', line 70

def frontend_api
  return "" unless Utils.valid_publishable_key?(publishable_key.to_s)

  @frontend_api ||= if proxy_url?
    proxy_url
  elsif development_instance? && !domain.empty?
    "clerk.#{domain}"
  else
    # remove $ postfix
    Utils.decode_publishable_key(publishable_key).chop.to_s
  end
end

#handshake_token ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 61

def handshake_token
  @handshake_token ||= Utils.retrieve_from_query_string(@clerk_url, HANDSHAKE_COOKIE) || @cookies.handshake_token.to_s
end

#handshake_token? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 132

def handshake_token?
  !handshake_token.to_s.empty?
end

#is_satellite? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 152

def is_satellite?
  false # TODO: Add multi-domain support
end

#production_instance? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 87

def production_instance?
  secret_key.start_with?("sk_live_")
end

#proxy_url ⇒ Object

# File 'lib/clerk/authenticate_context.rb', line 156

def proxy_url
  "" # TODO: Add multi-domain support
end

#proxy_url? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 57

def proxy_url?
  !proxy_url.empty?
end

#publishable_key ⇒ Object

Raises:

• (ConfigurationError)

# File 'lib/clerk/authenticate_context.rb', line 51

def publishable_key
  raise ConfigurationError, "Clerk publishable key is not set" if @config.publishable_key.to_s.to_s.empty?

  @config.publishable_key.to_s
end

#secret_key ⇒ Object

The following properties are part of the props supported in all the AuthenticateContext objects across all of our SDKs (eg JS, Go)

Raises:

• (ConfigurationError)

# File 'lib/clerk/authenticate_context.rb', line 45

def secret_key
  raise ConfigurationError, "Clerk secret key is not set" if @config.secret_key.to_s.empty?

  @config.secret_key.to_s
end

#session_token_in_cookie? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 136

def session_token_in_cookie?
  !session_token_in_cookie.to_s.empty?
end

#session_token_in_header? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/clerk/authenticate_context.rb', line 128

def session_token_in_header?
  !session_token_in_header.to_s.empty?
end