jcs.org / rubywarden
An unofficial, mostly Bitwarden-compatible API server written in Ruby (Sinatra and ActiveRecord)
fork atom
rubywarden / lib / helpers / request_helpers.rb
at master 63 lines 1.8 kB view raw
Johannes / universa1 Adding support for attachments (#65)
ce9d0c42
1# 2# Copyright (c) 2017 joshua stein <jcs@jcs.org> 3# 4# Permission to use, copy, modify, and distribute this software for any 5# purpose with or without fee is hereby granted, provided that the above 6# copyright notice and this permission notice appear in all copies. 7# 8# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 9# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 10# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 11# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 12# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 13# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 14# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 15# 16 17module Rubywarden 18 module RequestHelpers 19 def device_from_bearer 20 if m = request.env["HTTP_AUTHORIZATION"].to_s.match(/^Bearer (.+)/) 21 token = m[1] 22 if (d = Device.find_by_access_token(token)) 23 if d.token_expires_at >= Time.now 24 return d 25 end 26 end 27 end 28 29 nil 30 end 31 32 def need_params(*ps) 33 ps.each do |p| 34 if params[p].to_s.blank? 35 yield(p) 36 end 37 end 38 end 39 40 def validation_error(msg) 41 [ 400, { 42 "ValidationErrors" => { "" => [ 43 msg, 44 ]}, 45 "Object" => "error", 46 }.to_json ] 47 end 48 49 def delete_cipher app:, uuid: 50 d = device_from_bearer 51 if !d 52 halt validation_error("invalid bearer") 53 end 54 55 c = nil 56 if uuid.blank? || !(c = Cipher.find_by_user_uuid_and_uuid(d.user_uuid, uuid)) 57 halt validation_error("invalid cipher") 58 end 59 c.destroy 60 "" 61 end # delete_cipher 62 end 63end