psu-libraries · banukutlu · Sep 10, 2020 · Sep 10, 2020
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
@@ -37,21 +37,28 @@ def patron_info_response
     end
 
     def authenticate_user!
-      set_original_fullpath
-
-      return redirect_to root_url unless current_user?
-
+      # Go through auth (which happens at the root_url which is the SessionsController)
+      unless current_user?
+        set_original_fullpath
+        return redirect_to root_url
+      end
+
+      # So current_user is set, Warden has got a user for us. However, our session with Sirsi WS has not gone stale.
+      # We know it's stale because the ping returned something other than 200.
       renew_session_token unless symphony_client.ping?(current_user)
     end
 
+    # This is used in the scenario where a user is not known to Warden yet. The application will redirect the
+    # user back to this originally requested URL after the authentication has taken place.
     def set_original_fullpath
       session[:original_fullpath] = request.original_fullpath unless request.original_fullpath == '/'
     end
 
+    # Things have gotten stale, clear user out by logging Warden out and send back through the authentication pipes.
     def renew_session_token
       request.env['warden'].logout
 
-      authenticate_webaccess
+      authenticate_user!
     end
 
     def item_details

diff --git a/spec/controllers/summaries_controller_spec.rb b/spec/controllers/summaries_controller_spec.rb
@@ -51,10 +51,14 @@
     context 'with a stale session' do
       let(:ping_response) { false }
 
+      before do
+        allow(controller).to receive(:current_user?).and_return(true, false)
+      end
+
       it 'redirects to the application authentication mechanism' do
         get(:index)
 
-        expect(response).to have_http_status '302'
+        expect(response).to redirect_to root_url
       end
     end
   end