Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow disabling of authentication #78

Merged
merged 2 commits into from
Aug 23, 2022
Merged

Allow disabling of authentication #78

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
b9c7da7
Prototype making authentication optional #54
oneiros Jun 2, 2022
8d44a16
Add a few tests for disabled auth #54
oneiros Aug 16, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 12 additions & 7 deletions app/controllers/application_controller.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,18 +9,23 @@ class ApplicationController < ActionController::Base
private

def current_user
if User.none?
session[:user_id] = nil
end
@current_user ||=
if Rails.configuration.hdm.authentication_disabled
DummyUser.new
else
if User.none?
session[:user_id] = nil
end

if session[:user_id]
Current.user ||= User.find(session[:user_id])
end
if session[:user_id]
Current.user ||= User.find(session[:user_id])
end
end
end

def authentication_required
unless current_user
if User.none?
if User.none? && !Rails.configuration.hdm.authentication_disabled
redirect_to new_user_path, notice: 'Please create an admin user first.'
else
redirect_to login_path
Expand Down
21 changes: 21 additions & 0 deletions app/models/dummy_user.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
class DummyUser
def initialize
raise "cannot be used unless authentication is disabled" unless Rails.configuration.hdm.authentication_disabled
end

def id
nil
end

def email
"anonymous"
end

def admin?
false
end

def user?
true
end
end
8 changes: 5 additions & 3 deletions app/views/shared/_top_navigation.html.erb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,9 +17,11 @@
</a>
<div class="dropdown-menu" aria-labelledby="navbarDropdown">
<% if current_user %>
<%= link_to edit_user_path(current_user), class: 'dropdown-item' do %>
<%= icon "person" %>
Edit Profile
<% if can? :update, current_user %>
<%= link_to edit_user_path(current_user), class: 'dropdown-item' do %>
<%= icon "person" %>
Edit Profile
<% end %>
<% end %>
<%= link_to logout_path, class: 'dropdown-item' do %>
<%= icon "box-arrow-right" %>
Expand Down
107 changes: 70 additions & 37 deletions test/integration/required_authentication_test.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,52 +1,85 @@
require "test_helper"

class RequiredAuthenticationTest < ActionDispatch::IntegrationTest
class AuthenticationEnabledTest < ActionDispatch::IntegrationTest
test "authentication requirements for environments" do
authentication_required_for :get, environments_path
end

test "authentication requirements for environments" do
authentication_required_for :get, environments_path
end
test "authentication requiremens for nodes" do
authentication_required_for :get, environment_nodes_path("development")
end

test "authentication requiremens for nodes" do
authentication_required_for :get, environment_nodes_path("development")
end
test "authentication requirements for keys" do
authentication_required_for :get,
environment_node_keys_path("development", "testhost")
authentication_required_for :get,
environment_node_key_path("development", "testhost", "hdm::integer")
authentication_required_for :patch,
environment_node_key_path("development", "testhost", "hdm::integer")
authentication_required_for :delete,
environment_node_key_path("development", "testhost", "hdm::integer")
end

test "authentication requirements for keys" do
authentication_required_for :get,
environment_node_keys_path("development", "testhost")
authentication_required_for :get,
environment_node_key_path("development", "testhost", "hdm::integer")
authentication_required_for :patch,
environment_node_key_path("development", "testhost", "hdm::integer")
authentication_required_for :delete,
environment_node_key_path("development", "testhost", "hdm::integer")
end
test "authentication requirements for decrypted values" do
authentication_required_for :post,
environment_node_decrypted_values_path("development", "testhost")
end

test "authentication requirements for decrypted values" do
authentication_required_for :post,
environment_node_decrypted_values_path("development", "testhost")
end
test "authentication requirements for encrypted values" do
authentication_required_for :post,
environment_node_encrypted_values_path("development", "testhost")
end

test "authentication requirements for encrypted values" do
authentication_required_for :post,
environment_node_encrypted_values_path("development", "testhost")
end
test "authentication requirements for users" do
user = FactoryBot.create(:user, admin: true)

authentication_required_for :get, users_path
authentication_required_for :get, user_path(user)
authentication_required_for :get, new_user_path
authentication_required_for :post, users_path
authentication_required_for :get, edit_user_path(user)
authentication_required_for :patch, user_path(user)
authentication_required_for :delete, user_path(user)
end

test "authentication requirements for users" do
user = FactoryBot.create(:user, admin: true)
private

authentication_required_for :get, users_path
authentication_required_for :get, user_path(user)
authentication_required_for :get, new_user_path
authentication_required_for :post, users_path
authentication_required_for :get, edit_user_path(user)
authentication_required_for :patch, user_path(user)
authentication_required_for :delete, user_path(user)
def authentication_required_for(method, path)
send(method, path)
assert_redirected_to login_path
end
end

private
class AuthenticationDisabledTest < ActionDispatch::IntegrationTest
setup do
Rails.configuration.hdm["authentication_disabled"] = true
end

teardown do
Rails.configuration.hdm["authentication_disabled"] = nil
end

test "authentication requirements for environments" do
no_authentication_required_for :get, environments_path
end

test "authentication requiremens for nodes" do
no_authentication_required_for :get, environment_nodes_path("development")
end

test "authentication requirements for keys" do
no_authentication_required_for :get,
environment_node_keys_path("development", "testhost")
no_authentication_required_for :get,
environment_node_key_path("development", "testhost", "hdm::integer")
end

private

def authentication_required_for(method, path)
send(method, path)
assert_redirected_to login_path
def no_authentication_required_for(method, path)
send(method, path)
assert_response :success
end
end
end