2011-06-20 23:28:09 +00:00
|
|
|
require 'digest'
|
|
|
|
|
|
|
|
class UserController < ApplicationController
|
2011-06-21 20:44:19 +00:00
|
|
|
|
2011-06-20 23:28:09 +00:00
|
|
|
def auth
|
|
|
|
@res = {}
|
2011-06-21 20:44:19 +00:00
|
|
|
check = check_auth(params)
|
2011-06-20 23:28:09 +00:00
|
|
|
|
2011-06-21 20:44:19 +00:00
|
|
|
if check == true
|
|
|
|
@res[:status] = 'hello'
|
|
|
|
user = User.find_by_vkid(params[:mid])
|
|
|
|
if user.nil?
|
|
|
|
user = User.new
|
|
|
|
user.vkid = params[:mid]
|
|
|
|
user.save
|
|
|
|
end
|
|
|
|
@res[:id] = user.id
|
|
|
|
@res[:username] = user.name
|
|
|
|
elsif check == false
|
|
|
|
@res[:status] = 'bad signature'
|
|
|
|
else
|
|
|
|
@res[:status] = 'bad params'
|
|
|
|
end
|
|
|
|
|
|
|
|
render :json => @res
|
|
|
|
end
|
|
|
|
|
|
|
|
def update
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def check_auth params
|
|
|
|
secret_key = request.host == 'beathaven.org' ? 'sdgwSbl3nNE4ZxafuPrp' : 's5zyjb693z6uV4rbhEyc'
|
2011-06-20 23:28:09 +00:00
|
|
|
unless params[:expire].nil? or params[:mid].nil? or params[:secret].nil? or params[:sid].nil? or params[:sig].nil?
|
|
|
|
# Calculating hash
|
2011-06-21 20:44:19 +00:00
|
|
|
hash = 'expire='+ params[:expire] +'mid='+ params[:mid] +'secret='+ params[:secret] +'sid='+ params[:sid] + secret_key
|
2011-06-20 23:28:09 +00:00
|
|
|
hash_md5 = Digest::MD5.hexdigest(hash)
|
|
|
|
if Digest::MD5.hexdigest(hash) == params[:sig]
|
2011-06-21 20:44:19 +00:00
|
|
|
return true
|
2011-06-20 23:28:09 +00:00
|
|
|
else
|
2011-06-21 20:44:19 +00:00
|
|
|
return false
|
2011-06-20 23:28:09 +00:00
|
|
|
end
|
|
|
|
else
|
2011-06-21 20:44:19 +00:00
|
|
|
return 'bad params'
|
2011-06-20 23:28:09 +00:00
|
|
|
end
|
|
|
|
end
|
2011-06-21 20:44:19 +00:00
|
|
|
|
2011-06-20 23:28:09 +00:00
|
|
|
end
|