authentifyd 0.0.5

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    NjQ0NzE2OGRkMDhhMmFmMmY3OTY2Yjc1YWQ3MzhlOWZmN2YwMTFiZA==
+  data.tar.gz: !binary |-
+    ZDA2ZDc3MTc0YmVkNTkxMGM5ZWQ3YzdmOWYxODJmZGQ3YmM0ODNjNg==
+!binary "U0hBNTEy":
+  metadata.gz: !binary |-
+    NWFlZDAxODNiZjNiMzYwM2UyYTU5MGZiMGI0NDRkN2ZlZTU5ZjRiOWQ5Mzg1
+    NGI5NWE0OTg5Yjg3ZDM2NzFlODA3YmQxMWIxMDE0YzRiYjllNDYzNGEwNGU0
+    ZjljOThlOTdiODVjNzQxZjYzZGI2YTRkMmZiNTAzYzBiMmQwZWY=
+  data.tar.gz: !binary |-
+    NGQzYTFlNjU1NjM0YzQ2ZTNjMWIyOTk5NjJlNmRiN2M5YTBhZDE5YzhjZDY4
+    NjdiZTU3OWI2OWYzZDgxMDYyYmRkZjQzOGQ5MjhmZDBkYmMyNWJjNWJhMDRj
+    YjRmZTNjMDE5OWNlNDkxZjU3YzdmMmNhZmE2YmZhYWI4MTEzZjg=

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2012 YOURNAME
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,26 @@
+= Authentifyd
+
+Devise + Omniauth Authentication encapsulated in an Engine. Uses Devise. Parts taken from perens-instant-user and sso-devise-omniauth-provider.
+
+== Installation
+
+* gem 'authentifyd'
+* rake authentifyd:install:migrations
+* rake db:migrate
+* in config/routes.rb add:
+    mount Authentifyd::Engine => "/#{your root for authentifyd}"
+    * NB: don't mount Engine on root "/". This could be a feature added in the future but for the moment this possibility is not implemented.
+    
+* Configure Devise: copy paste http://raw.github.com/plataformatec/devise/master/lib/generators/templates/devise.rb in config/initializers/devise.rb. Edit it.
+  * NB: set "config.pepper".
+      ex: require 'securerandom' -> SecureRandom.hex(64)
+* Add Facebook and Twitter config files
+  * Example
+      staging:
+        app_id: APP ID FOR STAGING ENV
+        app_secret: APP SECRET FOR STAGING ENV
+      development: &development
+        app_id: APP ID FOR DEV ENV
+        app_secret: APP SECRET FOR DEV ENV
+      test:
+        <<: *development

data/Rakefile

@@ -0,0 +1,34 @@
+#!/usr/bin/env rake
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+begin
+  require 'rdoc/task'
+rescue LoadError
+  require 'rdoc/rdoc'
+  require 'rake/rdoctask'
+  RDoc::Task = Rake::RDocTask
+end
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'Authentifyd'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+
+APP_RAKEFILE = File.expand_path("../spec/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new(:spec)
+
+task :cucumber => 'app:cucumber'
+task :default => [:spec, :cucumber]

data/app/assets/javascripts/authentifyd/application.js

@@ -0,0 +1,15 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// the compiled file.
+//
+// WARNING: THE FIRST BLANK LINE MARKS THE END OF WHAT'S TO BE PROCESSED, ANY BLANK LINE SHOULD
+// GO AFTER THE REQUIRES BELOW.
+//
+//= require jquery
+//= require jquery_ujs
+//= require_tree .

data/app/assets/stylesheets/authentifyd/application.css

@@ -0,0 +1,13 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the top of the
+ * compiled file, but it's generally better to create a new file per style scope.
+ *
+ *= require_self
+ *= require_tree .
+ */

data/app/controllers/authentifyd/application_controller.rb

@@ -0,0 +1,11 @@
+module Authentifyd
+  class ApplicationController < ActionController::Base
+    include Localyzed::LocalyzedController
+  end
+end
+
+class ActionController::Base  
+  def after_sign_out_path_for(resource_or_scope)
+    params[:callback_url] || session[:referrer] || root_path
+  end
+end

data/app/controllers/authentifyd/authentications_controller.rb

@@ -0,0 +1,94 @@
+class Authentifyd::AuthenticationsController < Authentifyd::ApplicationController
+  include Localyzed::LocalyzedController
+  skip_before_filter :redirect_to_localized_path_if, :only => [:create, :failure]
+
+  before_filter :authenticate_user!, :except => [:create, :link, :add]
+  before_filter :check_id_correct, :only => [:link, :add]
+  
+  def index
+    @authentications = current_user.authentications.all
+
+    respond_to do |format|
+      format.html # index.html.erb
+      format.xml  { render :xml => @authentications }
+    end
+  end
+
+  def new
+    @authentication = Authentifyd::Authentication.new
+  end
+
+  def add
+    @user ||= Authentifyd::User.find(params[:user_id])
+    if @user.valid_password?(params[:user][:password])
+      omniauth = session[:omniauth]
+      @user.authentications.create!(:provider => omniauth['provider'], :uid => omniauth['uid'])
+      session[:omniauth] = nil
+      sign_in_and_redirect(:user, @user)
+    else
+      flash[:notice] = "Incorrect Password"
+      return redirect_to link_accounts_url(@user.id)
+    end
+  end
+
+  def link
+    @user ||= Authentifyd::User.find(params[:user_id])
+  end
+
+  def create
+    omniauth = request.env['omniauth.auth']
+    authentication = Authentifyd::Authentication.find_by_provider_and_uid(omniauth['provider'], omniauth['uid'])
+    if authentication
+      flash[:notice] = "Signed in successfully"
+      sign_in_and_redirect(:user, authentication.user)
+    else
+      user = user_signed_in? ? current_user : Authentifyd::User.new
+      user.apply_omniauth(omniauth)      
+      if user_signed_in?
+        user.save
+        redirect_to accounts_url
+      else
+        omniauth_email = (omniauth["info"] && omniauth["info"]["email"]).try(:to_s)
+        user.email = omniauth_email unless user_signed_in?        
+        if user.save
+          flash[:notice] = "Successfully registered"
+          sign_in_and_redirect(:user, user)
+        else
+          session[:omniauth] = omniauth.except('extra')
+          session[:omniauth_email] = omniauth_email
+
+          # Check if email already taken. If so, ask user to link_accounts
+          if user.errors[:email][0] =~ /has already been taken/ # omniauth? TBD
+            # fetch the user with this email id!
+            user = Authentifyd::User.find_by_email(user.email)
+            return redirect_to link_accounts_url(user.id)
+          end
+          redirect_to new_user_registration_url
+        end
+      end
+    end
+  end
+
+  def failure
+    flash[:notice] = params[:message]
+    redirect_to root_path
+  end
+
+  def destroy
+    @authentication = Authentifyd::Authentication.find(params[:id])
+    @authentication.destroy
+
+    respond_to do |format|
+      format.html { redirect_to(accounts_url) }
+      format.xml  { head :ok }
+    end
+  end
+  
+  private
+  
+  def check_id_correct
+    unless @user = Authentifyd::User.find_by_id(params[:user_id])
+      redirect_to new_user_session_url
+    end
+  end
+end

data/app/controllers/authentifyd/confirmations_controller.rb

@@ -0,0 +1,5 @@
+class Authentifyd::ConfirmationsController < Devise::ConfirmationsController
+  include Localyzed::LocalyzedController
+
+  layout "authentifyd/application"
+end

data/app/controllers/authentifyd/passwords_controller.rb

@@ -0,0 +1,4 @@
+class Authentifyd::PasswordsController < Devise::PasswordsController
+  include Localyzed::LocalyzedController
+  layout "authentifyd/application"
+end

data/app/controllers/authentifyd/registrations_controller.rb

@@ -0,0 +1,42 @@
+class Authentifyd::RegistrationsController < Devise::RegistrationsController
+  include Localyzed::LocalyzedController
+
+  layout "authentifyd/application"
+  before_filter :define_body_class
+  
+  def new
+    # Building the resource with information that MAY BE available from omniauth!
+    build_resource(:email => session[:omniauth_email])
+    render :new
+  end
+
+  def create
+    build_resource
+
+    if session[:omniauth] && @user.errors[:email][0] =~ /has already been taken/
+      user = Authentifyd::User.find_by_email(@user.email)
+      # Link Accounts - if via social connect
+      return redirect_to link_accounts_url(user.id)
+    end
+
+    # normal processing
+    super
+    session[:omniauth] = nil unless @user.new_record?
+  end
+
+  def build_resource(*args)
+    super
+
+    if session[:omniauth]
+      @user.apply_omniauth(session[:omniauth])
+      @user.valid?
+    end
+  end
+  
+  private
+  
+  def define_body_class
+    @body_class = "authentifyd_registrations_#{action_name}"
+  end
+  
+end

data/app/controllers/authentifyd/sessions_controller.rb

@@ -0,0 +1,13 @@
+class Authentifyd::SessionsController < Devise::SessionsController
+  include Localyzed::LocalyzedController
+  layout "authentifyd/application"
+  # before_filter :define_body_class
+
+  before_filter :define_body_class
+  private
+  
+  def define_body_class
+    @body_class = "authentifyd_sessions_#{action_name}"
+  end
+  
+end

data/app/controllers/authentifyd/unlocks_controller.rb

@@ -0,0 +1,4 @@
+class Authentifyd::UnlocksController < Devise::UnlocksController
+  include Localyzed::LocalyzedController
+  layout "authentifyd/application"
+end

data/app/helpers/authentifyd/application_helper.rb

@@ -0,0 +1,4 @@
+module Authentifyd
+  module ApplicationHelper
+  end
+end

data/app/models/authentifyd.rb

@@ -0,0 +1,5 @@
+module Authentifyd
+  def self.table_name_prefix
+    'authentifyd_'
+  end
+end

data/app/models/authentifyd/authentication.rb

@@ -0,0 +1,16 @@
+class Authentifyd::Authentication < ActiveRecord::Base
+  attr_accessible :provider, :uid, :user_id
+  belongs_to :user
+  
+  def displayable_name
+    displayable_names(provider).try(:capitalize)
+  end
+  
+  def displayable_names(provder)
+    case provder
+    when 'google_oauth2' then 'google'
+    else
+      provder
+    end
+  end
+end

data/app/models/authentifyd/user.rb

@@ -0,0 +1,66 @@
+class Authentifyd::User < ActiveRecord::Base
+  has_many :authentications, :dependent => :delete_all
+
+  # Include default devise modules. Others available are:
+  # :encryptable, :timeoutable and :omniauthable
+  devise  :database_authenticatable
+  devise  :registerable,
+          :recoverable, :rememberable, :trackable, :validatable,
+          :confirmable, :lockable, :token_authenticatable, :timeoutable
+
+  def apply_omniauth(omniauth)
+    authentications.build(:provider => omniauth['provider'], :uid => omniauth['uid'])
+  end
+
+  # Setup accessible (or protected) attributes for your model
+  attr_accessible :email, :password, :password_confirmation, :remember_me, :language
+
+  ##
+  # :method: before_create__:ensure_password_exists
+  #
+  # creates a password, allowing user to signup 
+  # also creates a reset_password_token so that the user can be redirected to a reste_password url automatically
+  #
+  before_validation :generate_password_token, :confirm_if_already_confirmed
+
+  before_save :store_language
+  
+  private
+
+  # creates a password for the user if the password is not set
+  # allowing registration via omniauth and with email only
+  #
+  # called before_validation
+  #
+  def generate_password_token
+    unless self.encrypted_password && !self.encrypted_password.blank?
+      pwd = Devise.friendly_token[0,20]
+      self.password = pwd
+      set_reset_password_token
+    end
+  end
+
+  def set_reset_password_token
+    # if is not created from omniauth, generate reset_password_token
+    # we have also customized the confirmation logic to directly send a reset password
+    self.reset_password_token = Devise.friendly_token[0,20] if self.reset_password_token.nil?
+    self.reset_password_sent_at = Time.new
+  end
+
+  # sets confirmed_at to the user if the user is_already_confirmed
+  #
+  # called before_validation
+  #
+  def confirm_if_already_confirmed
+    if self.email && self.authentications.any?
+      new_record? ? skip_confirmation! : skip_reconfirmation!
+    end
+  end
+  
+  # sets the language with with the user has registered
+  # 
+  def store_language
+    self.language ||= I18n.locale.to_s
+  end
+
+end

data/app/views/authentifyd/authentications/_authentication.html.erb

@@ -0,0 +1,15 @@
+<div class='span12 <%= "provider-li #{authentication.provider}" %>'>
+  <div class='pull-left'>
+    <%= image_tag "authentifyd/#{authentication.displayable_name.downcase}-logo.png", :class=>'pull-left', :width => '30'%>
+    &nbsp;
+    <%= authentication.displayable_name %>
+  </div>
+  <div class='pull-right'>
+    <%= link_to destroy_account_path(authentication), method: :delete do %>
+      <i class='icon-unlink'></i>&nbsp;
+      <%= t("Unlink_account") %>
+    <% end %>
+  </div>
+  <div class='clearfix'></div>
+  </br>
+</div>