RubyGems - authentication-zero - Versions diffs - 2.16.10 → 2.16.12 - Mend

authentication-zero 2.16.10 → 2.16.12

Files changed (25) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 65348917c3c30813d335ddaa0ded556499189389735612c8c004a44c6fb7ab5c
-  data.tar.gz: dcfff79d0c2ad9098d450923dab94ea849f122c1e31991ce602dec0796d70527
+  metadata.gz: 4cba615fcc2174e4662ce5f805c6b2499638058c9dbcef5bfe520789290c1db2
+  data.tar.gz: 4f73d414bdbaad60361f592f739214d4b97711d7df08f1dc29522f8b03ed942e
 SHA512:
-  metadata.gz: ba5886da3c24e24eff75f138f38846c1a3867075dbbc1199cbe89c73eb26db21b6286bc705129ee9c6925a00b768fe5d9a09e2cc814b2de733caccdfde7ce963
-  data.tar.gz: 5287419cf37c6ee2251414ccf57a544316aea3db54ba06df630f12893c5539154c1a33c5a283a859309050114b39e349dba4e6f367c83b64aa17991ef7a6425c
+  metadata.gz: 930bd997605a77a12d755b59469365124832403a6dddac106350a78c9893329c6f47bf9650e9e9c8ade54a8a648af265dd894cf1818934147fb23ea7ffa7f647
+  data.tar.gz: 4161d49cdecf59dd3d5b412281394373010a4ac08fcb2f07a20fb64b56788c17e40d1445270072efa2e48780dc7659f66091f1a2074786679cd09bcd6350e2e1

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,15 @@
+## Authentication Zero 2.16.12 ##
+* Bring back --sudoable, just for html and you should set before_action yourself
+* Bring back --ratelimit
+* Removed signed in email notification
+## Authentication Zero 2.16.11 ##
+* Added sending invitation
+* Remove password challenge for 2FA
+* Remove lock from sign in
 ## Authentication Zero 2.16.8 ##
 * Verify email using identity/email_verification?sid=xxx instead of

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    authentication-zero (2.16.10)
+    authentication-zero (2.16.12)
 GEM
   remote: https://rubygems.org/

data/README.md CHANGED Viewed

@@ -30,13 +30,15 @@ Since Authentication Zero generates this code into your application instead of b
 - Passwordless authentication (--passwordless)
 - Two factor authentication (--two-factor)
 - Social Login with OmniAuth (--omniauthable)
+- Send invitations (--invitable)
 - Verify email using a link with token
 - Verify email using a six random digits code for api (--code-verifiable)
+- Ask password before sensitive data changes, aka: sudo (--sudoable)
 - Reset the user password and send reset instructions
 - Reset the user password only from verified emails
-- Lock mechanism for resetting password and sign-in (--lockable)
+- Lock mechanism to prevent spamming (--lockable)
+- Rate limiting for your app, 1000 reqs/minute (--ratelimit)
 - Send e-mail confirmation when your email has been changed
-- Send e-mail notification when someone has logged into your account
 - Manage multiple sessions & devices
 - Activity log (--trackable)
 - Log out
@@ -52,6 +54,7 @@ Since Authentication Zero generates this code into your application instead of b
 - [log filtering](https://guides.rubyonrails.org/action_controller_overview.html#log-filtering): Parameters 'token' and 'password' are marked [FILTERED] in the log.
 - [functional tests](https://guides.rubyonrails.org/testing.html#functional-tests-for-your-controllers): In Rails, testing the various actions of a controller is a form of writing functional tests.
 - [system testing](https://guides.rubyonrails.org/testing.html#system-testing): System tests allow you to test user interactions with your application, running tests in either a real or a headless browser.
+- **sudoable**: Use `before_action :require_sudo` in controllers with sensitive information, it will ask for your password on the first access or after 30 minutes.
 ## Development

data/lib/authentication_zero/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module AuthenticationZero
-  VERSION = "2.16.10"
+  VERSION = "2.16.12"
 end

data/lib/generators/authentication/authentication_generator.rb CHANGED Viewed

@@ -6,17 +6,24 @@ class AuthenticationGenerator < Rails::Generators::Base
   class_option :api,             type: :boolean, desc: "Generates API authentication"
   class_option :pwned,           type: :boolean, desc: "Add pwned password validation"
   class_option :code_verifiable, type: :boolean, desc: "Add email verification using a code for api"
+  class_option :sudoable,        type: :boolean, desc: "Add password request before sensitive data changes"
   class_option :lockable,        type: :boolean, desc: "Add password reset locking"
+  class_option :ratelimit,       type: :boolean, desc: "Add request rate limiting"
   class_option :passwordless,    type: :boolean, desc: "Add passwordless sign"
   class_option :omniauthable,    type: :boolean, desc: "Add social login support"
   class_option :trackable,       type: :boolean, desc: "Add activity log support"
   class_option :two_factor,      type: :boolean, desc: "Add two factor authentication"
+  class_option :invitable,       type: :boolean, desc: "Add sending invitations"
   source_root File.expand_path("templates", __dir__)
   def add_gems
     gem "bcrypt", "~> 3.1.7", comment: "Use Active Model has_secure_password [https://guides.rubyonrails.org/active_model_basics.html#securepassword]"
+    if options.ratelimit?
+      gem "rack-ratelimit", group: :production, comment: "Use Rack::Ratelimit to rate limit requests [https://github.com/jeremy/rack-ratelimit]"
+    end
     if redis?
       gem "redis", ">= 4.0.1", comment: "Use Redis adapter to run additional authentication features"
       gem "kredis", comment: "Use Kredis to get higher-level data types in Redis [https://github.com/rails/kredis]"
@@ -40,6 +47,7 @@ class AuthenticationGenerator < Rails::Generators::Base
   def add_environment_configurations
     application "config.action_mailer.default_url_options = { host: \"localhost\", port: 3000 }", env: "development"
     application "config.action_mailer.default_url_options = { host: \"localhost\", port: 3000 }", env: "test"
+    environment ratelimit_block, env: "production" if options.ratelimit?
   end
   def create_configuration_files
@@ -77,8 +85,10 @@ class AuthenticationGenerator < Rails::Generators::Base
     directory "controllers/#{format_folder}/two_factor_authentication", "app/controllers/two_factor_authentication" if two_factor?
     template  "controllers/#{format_folder}/sessions_controller.rb", "app/controllers/sessions_controller.rb"
     template  "controllers/#{format_folder}/passwords_controller.rb", "app/controllers/passwords_controller.rb"
+    template  "controllers/#{format_folder}/invitations_controller.rb", "app/controllers/invitations_controller.rb" if invitable?
     template  "controllers/#{format_folder}/registrations_controller.rb", "app/controllers/registrations_controller.rb"
     template  "controllers/#{format_folder}/home_controller.rb", "app/controllers/home_controller.rb" unless options.api?
+    template  "controllers/#{format_folder}/sessions/sudos_controller.rb", "app/controllers/sessions/sudos_controller.rb" if sudoable?
     template  "controllers/#{format_folder}/sessions/omniauth_controller.rb", "app/controllers/sessions/omniauth_controller.rb" if omniauthable?
     template  "controllers/#{format_folder}/sessions/passwordlesses_controller.rb", "app/controllers/sessions/passwordlesses_controller.rb" if passwordless?
     template  "controllers/#{format_folder}/authentications/events_controller.rb", "app/controllers/authentications/events_controller.rb" if options.trackable?
@@ -87,10 +97,8 @@ class AuthenticationGenerator < Rails::Generators::Base
   def create_views
     if options.api?
       directory "erb/user_mailer", "app/views/user_mailer"
-      directory "erb/session_mailer", "app/views/session_mailer"
     else
       directory "erb/user_mailer", "app/views/user_mailer"
-      directory "erb/session_mailer", "app/views/session_mailer"
       directory "erb/home", "app/views/home"
@@ -98,9 +106,13 @@ class AuthenticationGenerator < Rails::Generators::Base
       directory "erb/passwords", "app/views/passwords"
       directory "erb/registrations", "app/views/registrations"
+      directory "erb/invitations", "app/views/invitations" if invitable?
       template "erb/sessions/index.html.erb", "app/views/sessions/index.html.erb"
       template "erb/sessions/new.html.erb", "app/views/sessions/new.html.erb"
+      directory "erb/sessions/sudos", "app/views/sessions/sudos" if sudoable?
       directory "erb/sessions/passwordlesses", "app/views/sessions/passwordlesses" if passwordless?
       directory "erb/two_factor_authentication", "app/views/two_factor_authentication" if two_factor?
@@ -115,6 +127,10 @@ class AuthenticationGenerator < Rails::Generators::Base
   def add_routes
     route "root 'home#index'" unless options.api?
+    if sudoable?
+      route "resource :sudo, only: [:new, :create]", namespace: :sessions
+    end
     if passwordless?
       route "resource :passwordless, only: [:new, :edit, :create]", namespace: :sessions
     end
@@ -137,8 +153,9 @@ class AuthenticationGenerator < Rails::Generators::Base
     route "resource :password_reset,     only: [:new, :edit, :create, :update]", namespace: :identity
     route "resource :email_verification, only: [:show, :create]", namespace: :identity
     route "resource :email,              only: [:edit, :update]", namespace: :identity
-    route "resource  :password, only: [:edit, :update]"
-    route "resources :sessions, only: [:index, :show, :destroy]"
+    route "resource  :invitation, only: [:new, :create]" if invitable?
+    route "resource  :password,   only: [:edit, :update]"
+    route "resources :sessions,   only: [:index, :show, :destroy]"
     route "post 'sign_up', to: 'registrations#create'"
     route "get  'sign_up', to: 'registrations#new'" unless options.api?
     route "post 'sign_in', to: 'sessions#create'"
@@ -158,6 +175,13 @@ class AuthenticationGenerator < Rails::Generators::Base
       options.api? ? "api" : "html"
     end
+    def ratelimit_block
+      <<~CODE
+        # Rate limit general requests by IP address in a rate of 1000 requests per minute
+        config.middleware.use(Rack::Ratelimit, name: "General", rate: [1000, 1.minute], redis: Redis.new, logger: Rails.logger) { |env| ActionDispatch::Request.new(env).ip }
+      CODE
+    end
     def omniauthable?
       options.omniauthable? && !options.api?
     end
@@ -170,11 +194,19 @@ class AuthenticationGenerator < Rails::Generators::Base
       options.two_factor? && !options.api?
     end
+    def invitable?
+      options.invitable? && !options.api?
+    end
+    def sudoable?
+      options.sudoable? && !options.api?
+    end
     def code_verifiable?
       options.code_verifiable? && options.api?
     end
     def redis?
-      options.lockable? || code_verifiable?
+      options.lockable? || options.ratelimit? || sudoable? || code_verifiable?
     end
 end

data/lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt CHANGED Viewed

@@ -1,9 +1,6 @@
 class SessionsController < ApplicationController
   skip_before_action :authenticate, only: :create
-  <%- if options.lockable? -%>
-  before_action :require_lock, attempts: 20, only: :create
-  <%- end -%>
   before_action :set_session, only: %i[ show destroy ]
   def index

data/lib/generators/authentication/templates/controllers/html/application_controller.rb.tt CHANGED Viewed

@@ -1,6 +1,12 @@
 class ApplicationController < ActionController::Base
   before_action :set_current_request_details
   before_action :authenticate
+  <%- if sudoable? %>
+  def require_sudo
+    return if Current.session.sudo?
+    redirect_to new_sessions_sudo_path(proceed_to_url: request.url)
+  end
+  <%- end -%>
   <%- if options.lockable? %>
   def require_lock(wait: 1.hour, attempts: 10)
     counter = Kredis.counter("require_lock:#{request.remote_ip}:#{controller_path}:#{action_name}", expires_in: wait)

data/lib/generators/authentication/templates/controllers/html/invitations_controller.rb.tt ADDED Viewed

@@ -0,0 +1,25 @@
+class InvitationsController < ApplicationController
+  def new
+    @user = User.new
+  end
+  def create
+    @user = User.new(user_params)
+    if @user.save
+      send_invitation_instructions
+      redirect_to new_invitation_path, notice: "An invitation email has been sent to #{@user.email}"
+    else
+      render :new, status: :unprocessable_entity
+    end
+  end
+  private
+    def user_params
+      params.permit(:email).merge(password: SecureRandom::base58, verified: true)
+    end
+    def send_invitation_instructions
+      UserMailer.with(user: @user).invitation_instructions.deliver_later
+    end
+end

data/lib/generators/authentication/templates/controllers/html/sessions/sudos_controller.rb.tt ADDED Viewed

@@ -0,0 +1,14 @@
+class Sessions::SudosController < ApplicationController
+  def new
+  end
+  def create
+    session = Current.session
+    if session.user.authenticate(params[:password])
+      session.sudo.mark; redirect_to(params[:proceed_to_url])
+    else
+      redirect_to new_sessions_sudo_path(proceed_to_url: params[:proceed_to_url]), alert: "The password you entered is incorrect"
+    end
+  end
+end

data/lib/generators/authentication/templates/controllers/html/sessions_controller.rb.tt CHANGED Viewed

@@ -1,9 +1,6 @@
 class SessionsController < ApplicationController
   skip_before_action :authenticate, only: %i[ new create ]
-  <%- if options.lockable? -%>
-  before_action :require_lock, attempts: 20, only: :create
-  <%- end -%>
   before_action :set_session, only: :destroy
   def index

data/lib/generators/authentication/templates/controllers/html/two_factor_authentication/totps_controller.rb.tt CHANGED Viewed

@@ -7,9 +7,7 @@ class TwoFactorAuthentication::TotpsController < ApplicationController
   end
   def create
-    if !@user.authenticate(params[:current_password])
-      redirect_to new_two_factor_authentication_totp_path, alert: "The password you entered is incorrect"
-    elsif @totp.verify(params[:code], drift_behind: 15)
+    if @totp.verify(params[:code], drift_behind: 15)
       @user.update! otp_secret: params[:secret]
       redirect_to root_path, notice: "2FA is enabled on your account"
     else

data/lib/generators/authentication/templates/erb/home/index.html.erb.tt CHANGED Viewed

@@ -19,6 +19,11 @@
     <%%= link_to "Activity Log", authentications_events_path %>
   </div>
   <%- end -%>
+  <%- if invitable? %>
+  <div>
+    <%%= link_to "Send invitation", new_invitation_path %>
+  </div>
+  <%- end -%>
   <%- if two_factor? %>
   <div>
     <%%= link_to "Two-Factor Authentication", new_two_factor_authentication_totp_path %>

data/lib/generators/authentication/templates/erb/invitations/new.html.erb.tt ADDED Viewed

@@ -0,0 +1,26 @@
+<p style="color: green"><%%= notice %></p>
+<h1>Send invitation</h1>
+<%%= form_with(url: invitation_path) do |form| %>
+  <%% if @user.errors.any? %>
+    <div style="color: red">
+      <h2><%%= pluralize(@user.errors.count, "error") %> prohibited this user from being saved:</h2>
+      <ul>
+        <%% @user.errors.each do |error| %>
+          <li><%%= error.full_message %></li>
+        <%% end %>
+      </ul>
+    </div>
+  <%% end %>
+  <div>
+    <%%= form.label :email, style: "display: block" %>
+    <%%= form.email_field :email, required: true, autofocus: true %>
+  </div>
+  <div>
+    <%%= form.submit "Send an invitation" %>
+  </div>
+<%% end %>

data/lib/generators/authentication/templates/erb/sessions/sudos/new.html.erb.tt ADDED Viewed

@@ -0,0 +1,28 @@
+<p style="color: red"><%%= alert %></p>
+<h1>Enter your password to continue</h1>
+<%%= form_with(url: sessions_sudo_path) do |form| %>
+  <%%= form.hidden_field :proceed_to_url, value: params[:proceed_to_url] %>
+  <div>
+    <%%= form.password_field :password, required: true, autofocus: true, autocomplete: "current-password" %>
+  </div>
+  <div>
+    <%%= form.submit "Continue" %>
+  </div>
+<%% end %>
+<br>
+<p>
+  <strong>Why are you asking me to do this?</strong><br>
+  To better protect your account, we'll occasionally ask you to confirm your password before performing sensitive actions.
+</p>
+<p>
+  <strong>Forgot your password?</strong><br>
+  We'll help you <%%= link_to "reset it", new_identity_password_reset_path %> so you can continue.
+</p>

data/lib/generators/authentication/templates/erb/two_factor_authentication/totps/new.html.erb.tt CHANGED Viewed

@@ -22,11 +22,6 @@
     <%%= form.text_field :code, required: true, autofocus: true, autocomplete: :off %>
   </div>
-  <div>
-    <%%= form.label :current_password, style: "display: block" %>
-    <%%= form.password_field :current_password, required: true, autocomplete: "current-password" %>
-  </div>
   <div>
     <%%= form.submit "Verify and activate" %>
   </div>

data/lib/generators/authentication/templates/erb/user_mailer/invitation_instructions.html.erb.tt ADDED Viewed

@@ -0,0 +1,11 @@
+<p>Hey there,</p>
+<p>Someone has invited you to the application, you can accept it through the link below.</p>
+<p><%%= link_to "Accept invitation", edit_identity_password_reset_url(sid: @signed_id) %></p>
+<p>If you don't want to accept the invitation, please ignore this email. Your account won't be created until you access the link above and set your password.</p>
+<hr>
+<p>Have questions or need help? Just reply to this email and our support team will help you sort it out.</p>

data/lib/generators/authentication/templates/mailers/user_mailer.rb.tt CHANGED Viewed

@@ -24,4 +24,12 @@ class UserMailer < ApplicationMailer
     mail to: @user.email, subject: "Your sign in link"
   end
   <%- end -%>
+  <%- if invitable? %>
+  def invitation_instructions
+    @user = params[:user]
+    @signed_id = @user.password_reset_tokens.create.signed_id(expires_in: 2.days)
+    mail to: @user.email, subject: "Invitation instructions"
+  end
+  <%- end -%>
 end

data/lib/generators/authentication/templates/models/session.rb.tt CHANGED Viewed

@@ -1,21 +1,18 @@
 class Session < ApplicationRecord
   belongs_to :user
+  <%- if sudoable? %>
+  kredis_flag :sudo, expires_in: 30.minutes
+  <%- end -%>
   before_create do
     self.user_agent = Current.user_agent
     self.ip_address = Current.ip_address
   end
-  after_create_commit do
-    SessionMailer.with(session: self).signed_in_notification.deliver_later
-  end
+  <%- if sudoable? %>
+  after_create { sudo.mark }
+  <%- end -%>
   <%- if options.trackable? %>
-  after_create do
-    user.events.create! action: "signed_in"
-  end
-  after_destroy do
-    user.events.create! action: "signed_out"
-  end
+  after_create  { user.events.create! action: "signed_in" }
+  after_destroy { user.events.create! action: "signed_out" }
   <%- end -%>
 end

data/lib/generators/authentication/templates/test_unit/controllers/api/sessions_controller_test.rb.tt CHANGED Viewed

@@ -21,8 +21,6 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   test "should sign in" do
     post sign_in_url, params: { email: @user.email, password: "Secret1*3*5*" }
-    assert_enqueued_email_with SessionMailer, :signed_in_notification, args: { session: @user.sessions.last }
     assert_response :created
   end

data/lib/generators/authentication/templates/test_unit/controllers/html/sessions_controller_test.rb.tt CHANGED Viewed

@@ -19,8 +19,6 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   test "should sign in" do
     post sign_in_url, params: { email: @user.email, password: "Secret1*3*5*" }
-    assert_enqueued_email_with SessionMailer, :signed_in_notification, args: { session: @user.sessions.last }
     assert_redirected_to root_url
     get root_url

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authentication-zero
 version: !ruby/object:Gem::Version
-  version: 2.16.10
+  version: 2.16.12
 platform: ruby
 authors:
 - Nixon
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-03-26 00:00:00.000000000 Z
+date: 2023-04-03 00:00:00.000000000 Z
 dependencies: []
 description:
 email:
@@ -51,10 +51,12 @@ files:
 - lib/generators/authentication/templates/controllers/html/identity/email_verifications_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/identity/emails_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/identity/password_resets_controller.rb.tt
+- lib/generators/authentication/templates/controllers/html/invitations_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/passwords_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/registrations_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/sessions/omniauth_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/sessions/passwordlesses_controller.rb.tt
+- lib/generators/authentication/templates/controllers/html/sessions/sudos_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/sessions_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/two_factor_authentication/challenges_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/two_factor_authentication/totps_controller.rb.tt
@@ -63,18 +65,19 @@ files:
 - lib/generators/authentication/templates/erb/identity/emails/edit.html.erb.tt
 - lib/generators/authentication/templates/erb/identity/password_resets/edit.html.erb.tt
 - lib/generators/authentication/templates/erb/identity/password_resets/new.html.erb.tt
+- lib/generators/authentication/templates/erb/invitations/new.html.erb.tt
 - lib/generators/authentication/templates/erb/passwords/edit.html.erb.tt
 - lib/generators/authentication/templates/erb/registrations/new.html.erb.tt
-- lib/generators/authentication/templates/erb/session_mailer/signed_in_notification.html.erb.tt
 - lib/generators/authentication/templates/erb/sessions/index.html.erb.tt
 - lib/generators/authentication/templates/erb/sessions/new.html.erb.tt
 - lib/generators/authentication/templates/erb/sessions/passwordlesses/new.html.erb.tt
+- lib/generators/authentication/templates/erb/sessions/sudos/new.html.erb.tt
 - lib/generators/authentication/templates/erb/two_factor_authentication/challenges/new.html.erb.tt
 - lib/generators/authentication/templates/erb/two_factor_authentication/totps/new.html.erb.tt
 - lib/generators/authentication/templates/erb/user_mailer/email_verification.html.erb.tt
+- lib/generators/authentication/templates/erb/user_mailer/invitation_instructions.html.erb.tt
 - lib/generators/authentication/templates/erb/user_mailer/password_reset.html.erb.tt
 - lib/generators/authentication/templates/erb/user_mailer/passwordless.html.erb.tt
-- lib/generators/authentication/templates/mailers/session_mailer.rb.tt
 - lib/generators/authentication/templates/mailers/user_mailer.rb.tt
 - lib/generators/authentication/templates/migrations/create_email_verification_tokens_migration.rb.tt
 - lib/generators/authentication/templates/migrations/create_events_migration.rb.tt
@@ -102,7 +105,6 @@ files:
 - lib/generators/authentication/templates/test_unit/controllers/html/passwords_controller_test.rb.tt
 - lib/generators/authentication/templates/test_unit/controllers/html/registrations_controller_test.rb.tt
 - lib/generators/authentication/templates/test_unit/controllers/html/sessions_controller_test.rb.tt
-- lib/generators/authentication/templates/test_unit/mailers/session_mailer_test.rb.tt
 - lib/generators/authentication/templates/test_unit/mailers/user_mailer_test.rb.tt
 - lib/generators/authentication/templates/test_unit/system/identity/emails_test.rb.tt
 - lib/generators/authentication/templates/test_unit/system/identity/password_resets_test.rb.tt

data/lib/generators/authentication/templates/erb/session_mailer/signed_in_notification.html.erb.tt DELETED Viewed

@@ -1,21 +0,0 @@
-<p>Hey there,</p>
-<p>A new device just signed in to your account (<%%= @session.user.email %>).</p>
-<p>
-  <strong><%%= @session.user_agent %></strong>
-  <br>
-  <%%= @session.created_at %>
-  <br>
-  IP address: <%%= @session.ip_address %>
-</p>
-<p><strong>If this was you, carry on.</strong> We could notify you about sign-ins from this device again.</p>
-<p><strong>If you don't recognize this device</strong>, someone else may have accessed your account. You should immediately <%%= link_to "change your password", new_identity_password_reset_url %>.</p>
-<p><strong>Tip:</strong> It's a good idea to periodically review all of the <%%= link_to "devices and sessions", sessions_url %> in your account for suspicious activity.</p>
-<hr>
-<p>Have questions or need help? Just reply to this email and our support team will help you sort it out.</p>

data/lib/generators/authentication/templates/mailers/session_mailer.rb.tt DELETED Viewed

@@ -1,6 +0,0 @@
-class SessionMailer < ApplicationMailer
-  def signed_in_notification
-    @session = params[:session]
-    mail to: @session.user.email, subject: "New sign-in to your account"
-  end
-end

data/lib/generators/authentication/templates/test_unit/mailers/session_mailer_test.rb.tt DELETED Viewed

@@ -1,13 +0,0 @@
-require "test_helper"
-class SessionMailerTest < ActionMailer::TestCase
-  setup do
-    @session = users(:lazaro_nixon).sessions.create!
-  end
-  test "signed_in_notification" do
-    mail = SessionMailer.with(session: @session).signed_in_notification
-    assert_equal "New sign-in to your account", mail.subject
-    assert_equal [@session.user.email], mail.to
-  end
-end