authentication-zero 2.16.13 → 2.16.15

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fd4aba188e6a8763ada4f0cc90f370e8980afd0903e3e5f17a5f4bcc5db7c8d6
-  data.tar.gz: 8e16e20f5ed9d2cf1aadd469bdeffae20e1c51ab030bb5731697ae37dd749079
+  metadata.gz: 85fbe83273139a893939d4f20c3a06de269e0cea2b5fe3a7994f8d66919c3532
+  data.tar.gz: 63396f6a2ceb39fc3a49be717a6ffc7097c29e6782b7a351ca0d6f3bb7f2cae6
 SHA512:
-  metadata.gz: dc0688a6b1fae46b456d7c7ce473f1a4414f13bf9bc29439c6d687a67e9122d58eb76e592ef2796c79f1b0e19816e66e6a92f7278dc9df31c9595382108016ce
-  data.tar.gz: 06d51e04679f0821a4cb296f2e06f588c0614b75ae1f8ca6ce370cbca494d950280b617e8f6346539ddbe8d412838c9fdb9fceb4b6315d47b3471e30b9b7cd19
+  metadata.gz: '0899627eceb12252ec843541a19ec9da8de2e0d4ab12e76e43f34e1117597be485f58a090a66f825f2a1fdb1affe5c83cb55502e2deb7a681e2d70e7578ede31'
+  data.tar.gz: 8ee00bb247a6989e0c930b33ffefc5c546f6e2c4161d77297344343ec5585b6c80f5b11dd18cd06937b6264d4abb1d89b9f47d1ab80494201bf5d523cb289f86

data/.github/workflows/CI.yml

@@ -5,15 +5,12 @@
 # This workflow will install a prebuilt Ruby version, install dependencies, and
 # run tests and linters.
 name: "Generate sample app and run tests"
-on:
-  push:
-    branches: ["*"]
+on: [push]
+
 jobs:
   test_html:
     name: 🧪 Run HTML Tests
     runs-on: ubuntu-latest
-    env:
-      RAILS_ENV: test
     steps:
       - name: Checkout code
         uses: actions/checkout@v3
@@ -24,25 +21,39 @@ jobs:
           bundler-cache: true
 
       - name: Install the latest Rails gem
-        run: gem install rails
+        run: gem install rails -v "~> 7.0.0"
+
+      - name: Install Rubocop
+        run: gem install rubocop rubocop-performance rubocop-minitest rubocop-packaging rubocop-minitest rubocop-rails
 
-      - name: Create fresh Rails app then run generator and tests
-        env:
-          CI: true
+      - name: Create fresh Rails app and run generator
         run: |
           rails new test-app
+          cp .rubocop.yml test-app/.rubocop.yml
           cd test-app
-          bundle add authentication-zero --github ${{ github.repository }} --branch ${{ github.ref_name }}
+          bundle add authentication-zero --path ..
           bin/rails generate authentication
           bundle install
           bin/rails db:migrate
+
+      - name: Rubocop
+        run: cd test-app && rubocop
+
+      - name: Install Brakeman
+        run: gem install brakeman
+
+      - name: Brakeman
+        run: cd test-app && brakeman
+
+      - name: Tests
+        run: |
+          cd test-app
           bin/rails test
           bin/rails test:system
+
   test_api:
     name: 🧪 Run API Tests
     runs-on: ubuntu-latest
-    env:
-      RAILS_ENV: test
     steps:
       - name: Checkout code
         uses: actions/checkout@v3
@@ -53,16 +64,30 @@ jobs:
           bundler-cache: true
 
       - name: Install the latest Rails gem
-        run: gem install rails
+        run: gem install rails -v "~> 7.0.0"
 
-      - name: Create fresh Rails app then run generator and tests
-        env:
-          CI: true
+      - name: Install Rubocop
+        run: gem install rubocop rubocop-performance rubocop-minitest rubocop-packaging rubocop-minitest rubocop-rails
+
+      - name: Create fresh Rails app and run generator
         run: |
-          rails new test-app --api
+          rails new test-app
+          cp .rubocop.yml test-app/.rubocop.yml
           cd test-app
-          bundle add authentication-zero --github ${{ github.repository }} --branch ${{ github.ref_name }}
-          bin/rails generate authentication
+          bundle add authentication-zero --path ..
+          bin/rails generate authentication --api
           bundle install
           bin/rails db:migrate
-          bin/rails test
+
+      - name: Rubocop
+        run: cd test-app && rubocop
+
+      - name: Install Brakeman
+        run: gem install brakeman
+
+      - name: Brakeman
+        run: cd test-app && brakeman
+
+      - name: Tests
+        run: cd test-app && bin/rails test
+

data/.rubocop.yml

@@ -1,15 +1,8 @@
-inherit_from: https://raw.githubusercontent.com/rails/rails/master/.rubocop.yml
+inherit_from: https://raw.githubusercontent.com/rails/rails/v7.0.4/.rubocop.yml
 
-Performance:
+Style/HashSyntax:
   Exclude:
-    - 'test/**/*'
+    - Gemfile
 
 Style/FrozenStringLiteralComment:
   Enabled: false
-
-Style/StringLiterals:
-  Enabled: true
-  EnforcedStyle: double_quotes
-  Include:
-    - 'app/**/*'
-    - 'test/**/*'

data/.ruby-version

@@ -1 +1 @@
-3.1.2
+3.2.2

data/CHANGELOG.md

@@ -1,3 +1,13 @@
+## Authentication Zero 2.16.15 ##
+
+* Add sign-in as button functionallity (--masqueradable)
+
+## Authentication Zero 2.16.14 ##
+
+* Remove password requirements
+* Rubocop compliant
+* Brakeman compliant
+
 ## Authentication Zero 2.16.13 ##
 
 * Enable resend invitation

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    authentication-zero (2.16.13)
+    authentication-zero (2.16.15)
 
 GEM
   remote: https://rubygems.org/

data/README.md

@@ -31,6 +31,7 @@ Since Authentication Zero generates this code into your application instead of b
 - Two factor authentication (--two-factor)
 - Social Login with OmniAuth (--omniauthable)
 - Send invitations (--invitable)
+- Sign-in as button functionallity (--masqueradable)
 - Verify email using a link with token
 - Verify email using a six random digits code for api (--code-verifiable)
 - Ask password before sensitive data changes, aka: sudo (--sudoable)

data/lib/authentication_zero/version.rb

@@ -1,3 +1,3 @@
 module AuthenticationZero
-  VERSION = "2.16.13"
+  VERSION = "2.16.15"
 end

data/lib/generators/authentication/authentication_generator.rb

@@ -14,6 +14,7 @@ class AuthenticationGenerator < Rails::Generators::Base
   class_option :trackable,       type: :boolean, desc: "Add activity log support"
   class_option :two_factor,      type: :boolean, desc: "Add two factor authentication"
   class_option :invitable,       type: :boolean, desc: "Add sending invitations"
+  class_option :masqueradable,   type: :boolean, desc: "Add sign-in as button functionallity"
 
   source_root File.expand_path("templates", __dir__)
 
@@ -86,6 +87,7 @@ class AuthenticationGenerator < Rails::Generators::Base
     template  "controllers/#{format_folder}/sessions_controller.rb", "app/controllers/sessions_controller.rb"
     template  "controllers/#{format_folder}/passwords_controller.rb", "app/controllers/passwords_controller.rb"
     template  "controllers/#{format_folder}/invitations_controller.rb", "app/controllers/invitations_controller.rb" if invitable?
+    template  "controllers/#{format_folder}/masquerades_controller.rb", "app/controllers/masquerades_controller.rb" if masqueradable?
     template  "controllers/#{format_folder}/registrations_controller.rb", "app/controllers/registrations_controller.rb"
     template  "controllers/#{format_folder}/home_controller.rb", "app/controllers/home_controller.rb" unless options.api?
     template  "controllers/#{format_folder}/sessions/sudos_controller.rb", "app/controllers/sessions/sudos_controller.rb" if sudoable?
@@ -125,7 +127,7 @@ class AuthenticationGenerator < Rails::Generators::Base
   end
 
   def add_routes
-    route "root 'home#index'" unless options.api?
+    route 'root "home#index"' unless options.api?
 
     if sudoable?
       route "resource :sudo, only: [:new, :create]", namespace: :sessions
@@ -135,10 +137,14 @@ class AuthenticationGenerator < Rails::Generators::Base
       route "resource :passwordless, only: [:new, :edit, :create]", namespace: :sessions
     end
 
+    if masqueradable?
+      route 'post "users/:user_id/masquerade", to: "masquerades#create", as: :user_masquerade'
+    end
+
     if omniauthable?
-      route "post '/auth/:provider/callback', to: 'sessions/omniauth#create'"
-      route "get  '/auth/:provider/callback', to: 'sessions/omniauth#create'"
-      route "get  '/auth/failure',            to: 'sessions/omniauth#failure'"
+      route 'post "/auth/:provider/callback", to: "sessions/omniauth#create"'
+      route 'get  "/auth/:provider/callback", to: "sessions/omniauth#create"'
+      route 'get  "/auth/failure",            to: "sessions/omniauth#failure"'
     end
 
     if two_factor?
@@ -153,13 +159,14 @@ class AuthenticationGenerator < Rails::Generators::Base
     route "resource :password_reset,     only: [:new, :edit, :create, :update]", namespace: :identity
     route "resource :email_verification, only: [:show, :create]", namespace: :identity
     route "resource :email,              only: [:edit, :update]", namespace: :identity
+
     route "resource  :invitation, only: [:new, :create]" if invitable?
     route "resource  :password,   only: [:edit, :update]"
     route "resources :sessions,   only: [:index, :show, :destroy]"
-    route "post 'sign_up', to: 'registrations#create'"
-    route "get  'sign_up', to: 'registrations#new'" unless options.api?
-    route "post 'sign_in', to: 'sessions#create'"
-    route "get  'sign_in', to: 'sessions#new'" unless options.api?
+    route 'post "sign_up", to: "registrations#create"'
+    route 'get  "sign_up", to: "registrations#new"' unless options.api?
+    route 'post "sign_in", to: "sessions#create"'
+    route 'get  "sign_in", to: "sessions#new"' unless options.api?
   end
 
   def create_test_files
@@ -198,6 +205,10 @@ class AuthenticationGenerator < Rails::Generators::Base
       options.invitable? && !options.api?
     end
 
+    def masqueradable?
+      options.masqueradable? && !options.api?
+    end
+
     def sudoable?
       options.sudoable? && !options.api?
     end

data/lib/generators/authentication/templates/controllers/api/identity/emails_controller.rb.tt

@@ -2,7 +2,7 @@ class Identity::EmailsController < ApplicationController
   before_action :set_user
 
   def update
-   if !@user.authenticate(params[:current_password])
+    if !@user.authenticate(params[:current_password])
       render json: { error: "The password you entered is incorrect" }, status: :bad_request
     elsif @user.update(user_params)
       render_show

data/lib/generators/authentication/templates/controllers/html/identity/emails_controller.rb.tt

@@ -5,7 +5,7 @@ class Identity::EmailsController < ApplicationController
   end
 
   def update
-   if !@user.authenticate(params[:current_password])
+    if !@user.authenticate(params[:current_password])
       redirect_to edit_identity_email_path, alert: "The password you entered is incorrect"
     elsif @user.update(user_params)
       redirect_to_root

data/lib/generators/authentication/templates/controllers/html/invitations_controller.rb.tt

@@ -16,7 +16,7 @@ class InvitationsController < ApplicationController
 
   private
     def user_params
-      params.permit(:email).merge(password: SecureRandom::base58, verified: true)
+      params.permit(:email).merge(password: SecureRandom.base58, verified: true)
     end
 
     def send_invitation_instructions

data/lib/generators/authentication/templates/controllers/html/masquerades_controller.rb.tt

@@ -0,0 +1,20 @@
+class MasqueradesController < ApplicationController
+  before_action :authorize
+  before_action :set_user
+
+  def create
+    session = @user.sessions.create!
+    cookies.signed.permanent[:session_token] = { value: session.id, httponly: true }
+
+    redirect_to root_path, notice: "Signed in successfully"
+  end
+
+  private
+    def set_user
+      @user = User.find(params[:user_id])
+    end
+
+    def authorize
+      redirect_to(root_path, alert: "You must be in development") unless Rails.env.development?
+    end
+end

data/lib/generators/authentication/templates/controllers/html/sessions/omniauth_controller.rb.tt

@@ -21,7 +21,7 @@ class Sessions::OmniauthController < ApplicationController
 
   private
     def user_params
-      { email: omniauth.info.email, password: SecureRandom::base58, verified: true }
+      { email: omniauth.info.email, password: SecureRandom.base58, verified: true }
     end
 
     def omniauth_params

data/lib/generators/authentication/templates/erb/home/index.html.erb.tt

@@ -24,6 +24,11 @@
     <%%= link_to "Send invitation", new_invitation_path %>
   </div>
   <%- end -%>
+  <%- if masqueradable? %>
+  <div>
+    <%%= button_to "Signin as last user", user_masquerade_path(User.last) %>
+  </div>
+  <%- end -%>
   <%- if two_factor? %>
   <div>
     <%%= link_to "Two-Factor Authentication", new_two_factor_authentication_totp_path %>

data/lib/generators/authentication/templates/models/user.rb.tt

@@ -16,7 +16,7 @@ class User < ApplicationRecord
   <%- end -%>
 
   validates :email, presence: true, uniqueness: true, format: { with: URI::MailTo::EMAIL_REGEXP }
-  validates :password, allow_nil: true, length: { minimum: 12 }, format: { with: /(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])/ }
+  validates :password, allow_nil: true, length: { minimum: 12 }
   <%- if options.pwned? -%>
   validates :password, not_pwned: { message: "might easily be guessed" }
   <%- end -%>

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: authentication-zero
 version: !ruby/object:Gem::Version
-  version: 2.16.13
+  version: 2.16.15
 platform: ruby
 authors:
 - Nixon
@@ -52,6 +52,7 @@ files:
 - lib/generators/authentication/templates/controllers/html/identity/emails_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/identity/password_resets_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/invitations_controller.rb.tt
+- lib/generators/authentication/templates/controllers/html/masquerades_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/passwords_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/registrations_controller.rb.tt
 - lib/generators/authentication/templates/controllers/html/sessions/omniauth_controller.rb.tt
@@ -135,7 +136,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.4.10
 signing_key:
 specification_version: 4
 summary: An authentication system generator for Rails applications