Project

breath

0.0
The project is in a healthy, maintained state
breathtestcodev01/breathHomepageDocumentationSource CodeBug TrackerWiki
Breath is a simple authentication gem. Easy introduce login and logout.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
2,049
Stars
1
Forks
0
Watchers
1
 Releases
Current version
0.3.2
Total releases
7
First release
2023-09-24
Latest release
2023-09-30
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2023-09-21
Reverse Dependencies
0

 Dependencies

Runtime

bcrypt
>= 3.0
rails
>= 7.0
 Project Readme

Breath

Rails authentication plugin with API mode.
Easy introducing login, logout.
Compact features set.

Installation

Add this line to your application's Gemfile:

gem "breath"

And then execute:

$ bundle

Or install it yourself as:

$ gem install breath

Usage

Introduce

Model

If you want to introduce a authentication to User model.
Add these lines to user.rb like bellow.

class User < ApplicationRecord
  include Breath::Model

  attr_breath :email
end

Here, with attr_breath, you need to specify the user's attribute with authentication.

Migration

In migration file, you need to add password_digest, and remember_digest attributes.
And if you specify the email attribute within attr_breath, you need to add email attribute in migration file.

class CreateUsers < ActiveRecord::Migration[7.0]
  def change
    create_table :users do |t|
      t.string :email
      t.string :password_digest
      t.string :remember_digest

      t.timestamps
    end
  end
end

After these lines you added, excute bundle exec rails db:migrate.

Controller

You need to construct the directory like bellow.

/app/controllers
  - application_controller.rb

  /users
    - application_controller.rb
    - sessions_controller.rb
  • app/contorllers/users/application_controller.rb
class Users::ApplicationController < ApplicationController
  include Breath::ApplicationControllerHelper
  before_action :authenticate!

  crsf_protect true
end

Here, if csrf_protect is true, CSRF protection is enabled.

  • app/controllers/users/sessions_controller.rb
class Users::SessionsController < Users::ApplicationController
  include Breath::SessionsControllerHelper
end

Breath::ApplicationControllerHelper intoroduce the user's authorization.
Breath::SessionsControllerHelper introduce the actions login, and logout.

Then, you don't need write the codes to introduce authorizations.

You can use current_user method which is current logined user.

Route

Write route.rb

Rails.application.routes.draw do
  breath :users

  ...or...

  breath :users do
    get "test" => "sessions#test"
  end
end

After you added these lines, show bundle exec rails routes command.
You can see these routes are added.

GET /users/login
POST /users/login
DELETE /users/logout

Or, nested users routes.

Config

This plugin need cookie, and you can configure the cookie expires like bellow.

module YourApp
  class Application < Rails::Application
    ...

    config.breath_expires = 3.days
  end
end

If you don't configure this, cookie is set permanently.

Error

When an error occurs when trying to log in or authorize, rescue from the error automatically. Otherwise, you can also overwrite rescue method like bellow.
app/controllers/users/application_controller.rb

class Users::ApplicationController < ApplicationController
  ...

  def render_401(e)
    # Write your programs. Here, e is error class.
    # e.g. Rails.logger.error(e.to_s)

    super({ error: 111, message: "error occur." })
  end

  ...
end

An argument you pass to super is returned to the client side as JSON value.
In addition, breath plugin provides bellow rescue methods.

render_400
render_401 # Unauthorized.
render_404 # Not Found.
render_409 # Conflict.
render_422 # Unprocessable Entity.
render_500 # Internal Server Error.

You can use these rescue methods in controllers like bellow.

class Users::HogeController < Users::ApplicationController
  def index
    ...
    render status: 200
  rescue => e
    render_404 e
  end

  def update
    ...
    render status: 201
  rescue => e
    response_body = { error_code: 100, message: "error" }

    render_409 response_body
  end
end

Breath plugin automatically rescues from CSRF token error which is status 422, and Internal Server Error with status code 500.
And you can overwrite these rescue methods.

Last Work

You need to create view side.
In view side, you have remaining works.
if you csrf_protect true, you need to introduce withCredentials: true option in client side.
And, write csrf token into the cookie with csrf_token key.
If your application needs to be requested by an client side application, you need to configure the Cross-Origin Resource Sharing (CORS) .
You can introduce the CORS configure by rack-cors rails gem.

Contributing

Contribution directions go here.

License

The gem is available as open source under the terms of the MIT License.