RubyGems - authentication-zero - Versions diffs - 2.2.8 → 2.2.9 - Mend

authentication-zero 2.2.8 → 2.2.9

Files changed (27) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b36f33fad8ac0fd532efd29f0db68dc51bcac45a8fff39d53f914d7d3f4381e6
-  data.tar.gz: f44735476b0095bd9f4c5dd9db09c16b9e8bc7edf636d32372da2a974bfe249b
+  metadata.gz: e025028c28dd89faa490a953449c4b9176a4ac3ca0060612d87bb3f1cfc1863d
+  data.tar.gz: fa5d9c5ebad6a4362d107b6ceaaa82b384ab15570c4124c69ea14db20eb4de4d
 SHA512:
-  metadata.gz: 1fb6d2a12d39475fa1ced3b188230426ad18fc67bef7c6f560e1744bc73b17e45b676bf8b68c79129474004fbe9e47150c4fd82b36cdd78555772df03f398d8b
-  data.tar.gz: 0d1b0553b77a69ee1a67546c9d2e749abf47481cc2cf7355eda039777ade3ad14d95531ea640b694d698ccac7f7603fdf1d70faf2e1efac2ab59c79b90613e09
+  metadata.gz: 439ce53002ab43e268dfa3be24d9a91f5d94dd033865f4801eb2aa0c32e5f51d05e6a1e11be3655fc31285422302b7a993ac543553734d8b23b6d24d5acceec3
+  data.tar.gz: 41d4aad8d43718e4d9e458cdaa15560b7b45d61e68e2fc734444b2eaa43e632336dad558e731cd882787b03d0156a188de1cd25c6df5f38b73383e930c6fcb6c

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    authentication-zero (2.2.8)
+    authentication-zero (2.2.9)
 GEM
   remote: https://rubygems.org/

data/lib/authentication_zero/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module AuthenticationZero
-  VERSION = "2.2.8"
+  VERSION = "2.2.9"
 end

data/lib/generators/authentication/templates/controllers/api/password_resets_controller.rb.tt CHANGED Viewed

@@ -1,8 +1,8 @@
 class PasswordResetsController < ApplicationController
-  before_action :set_<%= singular_table_name %>, only: :update
   skip_before_action :authenticate
+  before_action :set_<%= singular_table_name %>, only: :update
   def create
     if @<%= singular_table_name %> = <%= class_name %>.find_by(email: params[:email], verified: true)
       IdentityMailer.with(<%= singular_table_name %>: @<%= singular_table_name %>).password_reset_provision.deliver_later

data/lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt CHANGED Viewed

@@ -1,8 +1,8 @@
 class SessionsController < ApplicationController
-  before_action :set_session, only: %i[ show destroy ]
   skip_before_action :authenticate, only: :create
+  before_action :set_session, only: %i[ show destroy ]
   def index
     render json: Current.<%= singular_table_name %>.sessions.order(created_at: :desc)
   end

data/lib/generators/authentication/templates/controllers/html/password_resets_controller.rb.tt CHANGED Viewed

@@ -1,8 +1,8 @@
 class PasswordResetsController < ApplicationController
-  before_action :set_<%= singular_table_name %>, only: %i[ edit update ]
   skip_before_action :authenticate
+  before_action :set_<%= singular_table_name %>, only: %i[ edit update ]
   def new
   end

data/lib/generators/authentication/templates/controllers/html/sessions_controller.rb.tt CHANGED Viewed

@@ -1,8 +1,8 @@
 class SessionsController < ApplicationController
-  before_action :set_session, only: :destroy
   skip_before_action :authenticate, only: %i[ new create ]
+  before_action :set_session, only: :destroy
   def index
     @sessions = Current.<%= singular_table_name %>.sessions.order(created_at: :desc)
   end

data/lib/generators/authentication/templates/models/model.rb.tt CHANGED Viewed

@@ -4,8 +4,10 @@ class <%= class_name %> < ApplicationRecord
   has_many :sessions, dependent: :destroy
   validates :email, presence: true, uniqueness: true
-  validates :email, format: { with: /\A[^@\s]+@[^@\s]+\z/ }
+  validates_format_of :email, with: /\A[^@\s]+@[^@\s]+\z/
   validates_length_of :password, minimum: 8, allow_blank: true
+  validates_format_of :password, with: /(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])/, allow_blank: true, message: "might easily be guessed"
   before_validation do
     self.email = email.downcase.strip

data/lib/generators/authentication/templates/test_unit/controllers/api/email_verifications_controller_test.rb.tt CHANGED Viewed

@@ -39,6 +39,6 @@ class EmailVerificationsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/api/emails_controller_test.rb.tt CHANGED Viewed

@@ -6,7 +6,7 @@ class EmailsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update email" do
-    patch email_url, params: { current_password: "secret123", email: "new_email@hey.com" }, headers: { "Authorization" => "Bearer #{@token}" }
+    patch email_url, params: { current_password: "Secret123", email: "new_email@hey.com" }, headers: { "Authorization" => "Bearer #{@token}" }
     assert_response :success
   end
@@ -18,6 +18,6 @@ class EmailsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/api/password_resets_controller_test.rb.tt CHANGED Viewed

@@ -25,7 +25,7 @@ class PasswordResetsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should not send a password reset email to a unverified email" do
-    @<%= singular_table_name %>.update!(verified: false)
+    @<%= singular_table_name %>.update! verified: false
     assert_no_enqueued_emails do
       post password_reset_url, params: { email: @<%= singular_table_name %>.email }
@@ -36,12 +36,12 @@ class PasswordResetsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update password" do
-    patch password_reset_url, params: { token: @sid, password: "new_password", password_confirmation: "new_password" }
+    patch password_reset_url, params: { token: @sid, password: "Secret321", password_confirmation: "Secret321" }
     assert_response :success
   end
   test "should not update password with expired token" do
-    patch password_reset_url, params: { token: @sid_exp, password: "new_password", password_confirmation: "new_password" }
+    patch password_reset_url, params: { token: @sid_exp, password: "Secret321", password_confirmation: "Secret321" }
     assert_response :bad_request
     assert_equal "That password reset link is invalid", response.parsed_body["error"]

data/lib/generators/authentication/templates/test_unit/controllers/api/passwords_controller_test.rb.tt CHANGED Viewed

@@ -6,18 +6,18 @@ class PasswordsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update password" do
-    patch password_url, params: { current_password: "secret123", password: "new_password", password_confirmation: "new_password" }, headers: { "Authorization" => "Bearer #{@token}" }
+    patch password_url, params: { current_password: "Secret123", password: "Secret321", password_confirmation: "Secret321" }, headers: { "Authorization" => "Bearer #{@token}" }
     assert_response :success
   end
   test "should not update password with wrong current password" do
-    patch password_url, params: { current_password: "wrong_password", password: "new_password", password_confirmation: "new_password" }, headers: { "Authorization" => "Bearer #{@token}" }
+    patch password_url, params: { current_password: "wrong_password", password: "Secret321", password_confirmation: "Secret321" }, headers: { "Authorization" => "Bearer #{@token}" }
     assert_response :bad_request
     assert_equal "The current password you entered is incorrect", response.parsed_body["error"]
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/api/registrations_controller_test.rb.tt CHANGED Viewed

@@ -3,7 +3,7 @@ require "test_helper"
 class RegistrationsControllerTest < ActionDispatch::IntegrationTest
   test "should sign up" do
     assert_difference("<%= class_name %>.count") do
-      post sign_up_url, params: { email: "lazaronixon@hey.com", password: "secret123", password_confirmation: "secret123" }
+      post sign_up_url, params: { email: "lazaronixon@hey.com", password: "Secret123", password_confirmation: "Secret123" }
     end
     assert_response :created
@@ -20,6 +20,6 @@ class RegistrationsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/api/sessions_controller_test.rb.tt CHANGED Viewed

@@ -16,7 +16,7 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should sign in" do
-    post sign_in_url, params: { email: @<%= singular_table_name %>.email, password: "secret123" }
+    post sign_in_url, params: { email: @<%= singular_table_name %>.email, password: "Secret123" }
     assert_enqueued_email_with SessionMailer, :signed_in_notification, args: { session: @<%= singular_table_name %>.sessions.last }
     assert_response :created
@@ -33,6 +33,6 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); [<%= singular_table_name %>, response.headers["X-Session-Token"]]
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/html/email_verifications_controller_test.rb.tt CHANGED Viewed

@@ -39,6 +39,6 @@ class EmailVerificationsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); <%= singular_table_name %>
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); <%= singular_table_name %>
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/html/emails_controller_test.rb.tt CHANGED Viewed

@@ -11,7 +11,7 @@ class EmailsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update email" do
-    patch email_url, params: { current_password: "secret123", <%= singular_table_name %>: { email: "new_email@hey.com" } }
+    patch email_url, params: { current_password: "Secret123", <%= singular_table_name %>: { email: "new_email@hey.com" } }
     assert_redirected_to root_path
   end
@@ -23,6 +23,6 @@ class EmailsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); <%= singular_table_name %>
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); <%= singular_table_name %>
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/html/password_resets_controller_test.rb.tt CHANGED Viewed

@@ -35,7 +35,7 @@ class PasswordResetsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should not send a password reset email to a unverified email" do
-    @<%= singular_table_name %>.update!(verified: false)
+    @<%= singular_table_name %>.update! verified: false
     assert_no_enqueued_emails do
       post password_reset_url, params: { email: @<%= singular_table_name %>.email }
@@ -46,12 +46,12 @@ class PasswordResetsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update password" do
-    patch password_reset_url, params: { token: @sid, <%= singular_table_name %>: { password: "new_password", password_confirmation: "new_password" } }
+    patch password_reset_url, params: { token: @sid, <%= singular_table_name %>: { password: "Secret321", password_confirmation: "Secret321" } }
     assert_redirected_to sign_in_path
   end
   test "should not update password with expired token" do
-    patch password_reset_url, params: { token: @sid_exp, password: "new_password", password_confirmation: "new_password" }
+    patch password_reset_url, params: { token: @sid_exp, password: "Secret321", password_confirmation: "Secret321" }
     assert_redirected_to new_password_reset_path
     assert_equal "That password reset link is invalid", flash[:alert]

data/lib/generators/authentication/templates/test_unit/controllers/html/passwords_controller_test.rb.tt CHANGED Viewed

@@ -11,18 +11,18 @@ class PasswordsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should update password" do
-    patch password_url, params: { current_password: "secret123", <%= singular_table_name %>: { password: "new_password", password_confirmation: "new_password" } }
+    patch password_url, params: { current_password: "Secret123", <%= singular_table_name %>: { password: "Secret321", password_confirmation: "Secret321" } }
     assert_redirected_to root_path
   end
   test "should not update password with wrong current password" do
-    patch password_url, params: { current_password: "wrong_password", <%= singular_table_name %>: { password: "new_password", password_confirmation: "new_password" } }
+    patch password_url, params: { current_password: "wrong_password", <%= singular_table_name %>: { password: "Secret321", password_confirmation: "Secret321" } }
     assert_redirected_to edit_password_path
     assert_equal "The current password you entered is incorrect", flash[:alert]
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); <%= singular_table_name %>
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); <%= singular_table_name %>
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/html/registrations_controller_test.rb.tt CHANGED Viewed

@@ -8,7 +8,7 @@ class RegistrationsControllerTest < ActionDispatch::IntegrationTest
   test "should sign up" do
     assert_difference("<%= class_name %>.count") do
-      post sign_up_url, params: { <%= singular_table_name %>: { email: "lazaronixon@hey.com", password: "secret123", password_confirmation: "secret123" } }
+      post sign_up_url, params: { <%= singular_table_name %>: { email: "lazaronixon@hey.com", password: "Secret123", password_confirmation: "Secret123" } }
     end
     assert_redirected_to root_url
@@ -25,6 +25,6 @@ class RegistrationsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); <%= singular_table_name %>
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); <%= singular_table_name %>
   end
 end

data/lib/generators/authentication/templates/test_unit/controllers/html/sessions_controller_test.rb.tt CHANGED Viewed

@@ -18,7 +18,7 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   end
   test "should sign in" do
-    post sign_in_url, params: { email: @<%= singular_table_name %>.email, password: "secret123" }
+    post sign_in_url, params: { email: @<%= singular_table_name %>.email, password: "Secret123" }
     assert_enqueued_email_with SessionMailer, :signed_in_notification, args: { session: @<%= singular_table_name %>.sessions.last }
     assert_redirected_to root_url
@@ -47,6 +47,6 @@ class SessionsControllerTest < ActionDispatch::IntegrationTest
   end
   def sign_in_as(<%= singular_table_name %>)
-    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "secret123" }); <%= singular_table_name %>
+    post(sign_in_url, params: { email: <%= singular_table_name %>.email, password: "Secret123" }); <%= singular_table_name %>
   end
 end

data/lib/generators/authentication/templates/test_unit/fixtures.yml.tt CHANGED Viewed

@@ -2,5 +2,5 @@
 lazaro_nixon:
   email: lazaronixon@hotmail.com
-  password_digest: <%%= BCrypt::Password.create("secret123") %>
+  password_digest: <%%= BCrypt::Password.create("Secret123") %>
   verified: true

data/lib/generators/authentication/templates/test_unit/system/emails_test.rb.tt CHANGED Viewed

@@ -8,7 +8,7 @@ class EmailsTest < ApplicationSystemTestCase
   test "updating the email" do
     click_on "Change email address"
-    fill_in "Current password", with: "secret123"
+    fill_in "Current password", with: "Secret123"
     fill_in "New email", with: "new_email@hey.com"
     click_on "Save changes"
@@ -27,7 +27,7 @@ class EmailsTest < ApplicationSystemTestCase
   def sign_in_as(<%= singular_table_name %>)
     visit sign_in_url
     fill_in :email, with: <%= singular_table_name %>.email
-    fill_in :password, with: "secret123"
+    fill_in :password, with: "Secret123"
     click_on "Sign in"
     return <%= singular_table_name %>

data/lib/generators/authentication/templates/test_unit/system/password_resets_test.rb.tt CHANGED Viewed

@@ -19,8 +19,8 @@ class PasswordResetsTest < ApplicationSystemTestCase
   test "updating password" do
     visit edit_password_reset_url(token: @sid)
-    fill_in "New password", with: "new_password"
-    fill_in "Confirm new password", with: "new_password"
+    fill_in "New password", with: "Secret321"
+    fill_in "Confirm new password", with: "Secret321"
     click_on "Save changes"
     assert_text "Your password was reset successfully. Please sign in"

data/lib/generators/authentication/templates/test_unit/system/passwords_test.rb.tt CHANGED Viewed

@@ -8,9 +8,9 @@ class PasswordsTest < ApplicationSystemTestCase
   test "updating the password" do
     click_on "Change password"
-    fill_in "Current password", with: "secret123"
-    fill_in "New password", with: "new_password"
-    fill_in "Confirm new password", with: "new_password"
+    fill_in "Current password", with: "Secret123"
+    fill_in "New password", with: "Secret321"
+    fill_in "Confirm new password", with: "Secret321"
     click_on "Save changes"
     assert_text "Your password has been changed"
@@ -19,7 +19,7 @@ class PasswordsTest < ApplicationSystemTestCase
   def sign_in_as(<%= singular_table_name %>)
     visit sign_in_url
     fill_in :email, with: <%= singular_table_name %>.email
-    fill_in :password, with: "secret123"
+    fill_in :password, with: "Secret123"
     click_on "Sign in"
     return <%= singular_table_name %>

data/lib/generators/authentication/templates/test_unit/system/registrations_test.rb.tt CHANGED Viewed

@@ -10,8 +10,8 @@ class RegistrationsTest < ApplicationSystemTestCase
     click_on "Sign up"
     fill_in "Email", with: "lazaronixon@hey.com"
-    fill_in "Password", with: "new_password"
-    fill_in "Password confirmation", with: "new_password"
+    fill_in "Password", with: "Secret321"
+    fill_in "Password confirmation", with: "Secret321"
     click_on "Sign up"
     assert_text "Welcome! You have signed up successfully"
@@ -27,7 +27,7 @@ class RegistrationsTest < ApplicationSystemTestCase
   def sign_in_as(<%= singular_table_name %>)
     visit sign_in_url
     fill_in :email, with: <%= singular_table_name %>.email
-    fill_in :password, with: "secret123"
+    fill_in :password, with: "Secret123"
     click_on "Sign in"
     return <%= singular_table_name %>

data/lib/generators/authentication/templates/test_unit/system/sessions_test.rb.tt CHANGED Viewed

@@ -15,7 +15,7 @@ class SessionsTest < ApplicationSystemTestCase
   test "signing in" do
     visit sign_in_url
     fill_in "Email", with: @<%= singular_table_name %>.email
-    fill_in "Password", with: "secret123"
+    fill_in "Password", with: "Secret123"
     click_on "Sign in"
     assert_text "Signed in successfully"
@@ -31,7 +31,7 @@ class SessionsTest < ApplicationSystemTestCase
   def sign_in_as(<%= singular_table_name %>)
     visit sign_in_url
     fill_in :email, with: <%= singular_table_name %>.email
-    fill_in :password, with: "secret123"
+    fill_in :password, with: "Secret123"
     click_on "Sign in"
     return <%= singular_table_name %>

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authentication-zero
 version: !ruby/object:Gem::Version
-  version: 2.2.8
+  version: 2.2.9
 platform: ruby
 authors:
 - Nixon
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-02-24 00:00:00.000000000 Z
+date: 2022-02-25 00:00:00.000000000 Z
 dependencies: []
 description:
 email: