authlogic 0.10.4

data/test_app/public/robots.txt

@@ -0,0 +1,5 @@
+# See http://www.robotstxt.org/wc/norobots.html for documentation on how to use the robots.txt file
+#
+# To ban all spiders from the entire site uncomment the next two lines:
+# User-Agent: *
+# Disallow: /

data/test_app/public/stylesheets/scaffold.css

@@ -0,0 +1,62 @@
+body { background-color: #fff; color: #333; }
+
+body, p, ol, ul, td {
+  font-family: verdana, arial, helvetica, sans-serif;
+  font-size:   13px;
+  line-height: 18px;
+}
+
+pre {
+  background-color: #eee;
+  padding: 10px;
+  font-size: 11px;
+}
+
+p {
+  margin: 0 0 15px 0;
+}
+
+a { color: #000; }
+a:visited { color: #666; }
+a:hover { color: #fff; background-color:#000; }
+
+.fieldWithErrors {
+  padding: 2px;
+  background-color: red;
+  display: inline;
+}
+
+.fieldWithErrors label {
+  color: white;
+}
+
+#errorExplanation {
+  width: 400px;
+  border: 2px solid red;
+  padding: 7px;
+  padding-bottom: 12px;
+  margin-bottom: 20px;
+  background-color: #f0f0f0;
+}
+
+#errorExplanation h2 {
+  text-align: left;
+  font-weight: bold;
+  padding: 5px 5px 5px 15px;
+  font-size: 12px;
+  margin: -7px;
+  background-color: #c00;
+  color: #fff;
+}
+
+#errorExplanation p {
+  color: #333;
+  margin-bottom: 0;
+  padding: 5px;
+}
+
+#errorExplanation ul li {
+  font-size: 12px;
+  list-style: square;
+}
+

data/test_app/script/about

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+$LOAD_PATH.unshift "#{RAILTIES_PATH}/builtin/rails_info"
+require 'commands/about'

data/test_app/script/console

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/console'

data/test_app/script/dbconsole

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/dbconsole'

data/test_app/script/destroy

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/destroy'

data/test_app/script/generate

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/generate'

data/test_app/script/performance/benchmarker

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/performance/benchmarker'

data/test_app/script/performance/profiler

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/performance/profiler'

data/test_app/script/performance/request

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/performance/request'

data/test_app/script/plugin

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/plugin'

data/test_app/script/process/inspector

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/process/inspector'

data/test_app/script/process/reaper

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/process/reaper'

data/test_app/script/process/spawner

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../../config/boot'
+require 'commands/process/spawner'

data/test_app/script/runner

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/runner'

data/test_app/script/server

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+require File.dirname(__FILE__) + '/../config/boot'
+require 'commands/server'

data/test_app/test/fixtures/companies.yml

@@ -0,0 +1,7 @@
+binary_logic:
+  id: 1
+  name: Binary Logic
+  
+logic_over_data:
+  id: 2
+  name: Logic Over Data

data/test_app/test/fixtures/projects.yml

@@ -0,0 +1,4 @@
+web_services:
+  id: 1
+  name: web services
+  

data/test_app/test/fixtures/users.yml

@@ -0,0 +1,21 @@
+ben:
+  id: 1
+  company_id: 1
+  projects: web_services
+  login: bjohnson
+  password_salt: <%= salt = User.unique_token %>
+  crypted_password: <%= Authlogic::Sha512CryptoProvider.encrypt("benrocks" + salt) %>
+  remember_token: 6cde0674657a8a313ce952df979de2830309aa4c11ca65805dd00bfdc65dbcc2f5e36718660a1d2e68c1a08c276d996763985d2f06fd3d076eb7bc4d97b1e317
+  first_name: Ben
+  last_name: Johnson
+  
+zack:
+  id: 2
+  company_id: 2
+  projects: web_services
+  login: zham
+  password_salt: <%= salt = User.unique_token %>
+  crypted_password: <%= Authlogic::Sha512CryptoProvider.encrypt("zackrocks" + salt) %>
+  remember_token: fd3c2d5ce09ab98e7547d21f1b3dcf9158a9a19b5d3022c0402f32ae197019fce3fdbc6614d7ee57d719bae53bb089e30edc9e5d6153e5bc3afca0ac1d320342
+  first_name: Zack
+  last_name: Ham

data/test_app/test/functional/companies_controller_test.rb

@@ -0,0 +1,8 @@
+require 'test_helper'
+
+class CompaniesControllerTest < ActionController::TestCase
+  # Replace this with your real tests.
+  def test_truth
+    assert true
+  end
+end

data/test_app/test/functional/user_sessions_controller_test.rb

@@ -0,0 +1,36 @@
+require 'test_helper'
+
+class UserSessionsControllerTest < ActionController::TestCase
+  def setup
+    @controller = UserSessionsController.new
+    @request = ActionController::TestRequest.new
+    @response = ActionController::TestResponse.new
+  end
+  
+  def test_new
+    get :new
+    assert @controller.instance_variable_get(:@user_session).is_a?(UserSession)
+  end
+  
+  def test_successful_create
+    get :create, {:user_session => {:login => "bjohnson", :password => "benrocks"}}
+    assert_equal "6cde0674657a8a313ce952df979de2830309aa4c11ca65805dd00bfdc65dbcc2f5e36718660a1d2e68c1a08c276d996763985d2f06fd3d076eb7bc4d97b1e317", session[:user_credentials]
+    assert_equal ["6cde0674657a8a313ce952df979de2830309aa4c11ca65805dd00bfdc65dbcc2f5e36718660a1d2e68c1a08c276d996763985d2f06fd3d076eb7bc4d97b1e317"], cookies["user_credentials"]
+    assert_redirected_to account_url
+  end
+  
+  def test_unsuccessful_create
+    get :create, {:user_session => {:login => "bjohnson", :password => "badpassword"}}
+    assert_equal nil, session[:user_credentials]
+    assert_equal nil, cookies["user_credentials"]
+    assert_template "new"
+  end
+  
+  def test_destroy
+    get :destroy
+    assert_equal nil, session[:user_credentials]
+    assert_equal nil, cookies["user_credentials"]
+    assert_redirected_to new_user_session_url
+    assert flash.key?(:notice)
+  end
+end

data/test_app/test/functional/users_controller_test.rb

@@ -0,0 +1,8 @@
+require 'test_helper'
+
+class UsersControllerTest < ActionController::TestCase
+  # Replace this with your real tests.
+  def test_truth
+    assert true
+  end
+end

data/test_app/test/integration/company_user_session_stories_test.rb

@@ -0,0 +1,46 @@
+require 'test_helper'
+
+class CompanyUserSessionStoriesTest < ActionController::IntegrationTest
+  def setup
+    super
+    self.scope = Company.first
+  end
+  
+  def test_login_process
+    # Try to access the company account area without being logged in
+    get scoped_url("account_url")
+    assert_redirected_to scoped_url("new_user_session_url")
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "user_sessions/new"
+    
+    # Try to login unsuccessfully
+    assert_unsuccessful_login
+    assert_unsuccessful_login("bjohnson", "badpassword")
+    assert_unsuccessful_login("zham", "zackrocks") # this is correct, but zack does not belong to this company
+    
+    assert_successful_login("bjohnson", "benrocks")
+    
+    # Try to log in again after a successful login
+    get scoped_url("new_user_session_url")
+    assert_redirected_to scoped_url("account_url")
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "users/show"
+    
+    # Try to register after a successful login
+    get scoped_url("new_account_url")
+    assert_redirected_to scoped_url("account_url")
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "users/show"
+    
+    assert_account_access
+    assert_successful_logout(scoped_url("new_account_url")) # before I tried to register, it stored my location
+    
+    # Try to access my account again
+    get scoped_url("account_url")
+    assert_redirected_to scoped_url("new_user_session_url")
+    assert flash.key?(:notice)
+  end
+end

data/test_app/test/integration/user_sesion_stories_test.rb

@@ -0,0 +1,105 @@
+require 'test_helper'
+
+class UserSessionStoriesTest < ActionController::IntegrationTest
+  def test_registration    
+    # Try to access the account area without being logged in
+    get account_url
+    assert_redirected_to new_user_session_url
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "user_sessions/new"
+    
+    # Try to register with no info
+    post account_url
+    assert_template "users/new"
+    
+    # Register successfully
+    post account_url, {:user => {:login => "binarylogic", :password => "pass", :confirm_password => "pass", :first_name => "Ben", :last_name => "Johnson"}}
+    assert_redirected_to account_url
+    assert flash.key?(:notice)
+        
+    assert_account_access(User.last)
+  end
+  
+  def test_login_process
+    # Try to access the account area without being logged in
+    get account_url
+    assert_redirected_to new_user_session_url
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "user_sessions/new"
+    
+    assert_unsuccessful_login
+    assert_unsuccessful_login("bjohnson", "badpassword")
+    assert_successful_login("bjohnson", "benrocks")
+    
+    # Try to log in again after a successful login
+    get new_user_session_url
+    assert_redirected_to account_url
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "users/show"
+    
+    # Try to register after a successful login
+    get new_account_url
+    assert_redirected_to account_url
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "users/show"
+    
+    assert_account_access
+    assert_successful_logout(new_account_url) # before I tried to register, it stored my location
+    
+    # Try to access my account again
+    get account_url
+    assert_redirected_to new_user_session_url
+    assert flash.key?(:notice)
+  end
+  
+  def test_changing_password
+    # Try logging in with correct credentials
+    assert_successful_login("bjohnson", "benrocks")
+    
+    # Go to edit form
+    get edit_account_path
+    assert_template "users/edit"
+    
+    # Edit password
+    put account_path, :user => {:login => "bjohnson", :password => "sillywilly", :confirm_password => "sillywilly", :first_name => "Ben", :last_name => "Johnson"}
+    assert_redirected_to account_url
+    follow_redirect!
+    assert flash.key?(:notice)
+    assert_template "users/show"
+    
+    assert_account_access
+    assert_successful_logout
+    
+    # Try to access my account again
+    get account_url
+    assert_redirected_to new_user_session_url
+    assert flash.key?(:notice)
+    
+    assert_successful_login("bjohnson", "sillywilly")
+    assert_account_access
+  end
+  
+  def test_updating_user_with_no_password_change
+    ben = users(:ben)
+    profile_views = ben.profile_views
+    assert_no_account_access
+    get user_url(ben)
+    ben.reload
+    assert ben.profile_views > profile_views
+    assert_no_account_access
+  end
+  
+  def test_updating_user_with_password_change
+    ben = users(:ben)
+    crypted_password = ben.crypted_password
+    assert_no_account_access
+    get reset_password_user_url(ben)
+    ben.reload
+    assert_not_equal crypted_password, ben.crypted_password
+    assert_account_access
+  end
+end

data/test_app/test/integration/user_session_config_test.rb

@@ -0,0 +1,24 @@
+require 'test_helper'
+
+class UserSessionConfigTest < ActionController::IntegrationTest
+=begin
+  def test_authenticate_with
+    UserSession.authenticate_with = Account
+    assert_equal Account, UserSession.authenticate_with
+    
+    UserSession.authenticate_with User
+    assert_equal User, UserSession.authenticate_with
+  end
+  
+  def test_login_field
+    UserSession.login_field = :email
+    assert :email, UserSession.login_field
+    
+    UserSession.login_field :email2
+    assert :email2, UserSession.login_field
+    
+    UserSession.login_field = :login
+    assert :login, UserSession.login_field
+  end
+=end
+end

data/test_app/test/integration/user_session_test.rb

@@ -0,0 +1,161 @@
+require 'test_helper'
+
+# I know these tests are not really integration tests, but since UserSessions deals with cookies, models, etc. It was easiest and best to test it via an integration.
+class UserSessionTest < ActionController::IntegrationTest
+  def test_activated
+    UserSession.controller = nil
+    assert !UserSession.activated?
+    get new_user_session_url # reactive
+    assert UserSession.activated?
+  end
+  
+  def test_create
+    assert !UserSession.create("unknown", "bad")
+    assert UserSession.create("bjohnson", "benrocks")
+    assert_raise(Authlogic::Session::SessionInvalid) { assert !UserSession.create!("unknown", "bad") }
+    assert_nothing_raised { UserSession.create!("bjohnson", "benrocks") }
+  end
+  
+  def test_klass
+    assert_equal User, UserSession.klass
+  end
+  
+  def test_klass_name
+    assert_equal "User", UserSession.klass_name
+  end
+  
+  def test_find
+    assert_equal nil, UserSession.find
+    assert_successful_login("bjohnson", "benrocks")
+    assert UserSession.find
+  end
+  
+  def test_initialize
+    session = UserSession.new
+    assert !session.valid?
+    assert_equal nil, session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new(:secure)
+    assert_equal :secure, session.id
+    assert !session.valid?
+    assert_equal nil, session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new("user", "pass")
+    assert_equal nil, session.id
+    assert !session.valid?
+    assert_equal "user", session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new("user", "pass", :secure)
+    assert_equal :secure, session.id
+    assert !session.valid?
+    assert_equal "user", session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new(:login => "user", :password => "pass")
+    assert_equal nil, session.id
+    assert !session.valid?
+    assert_equal "user", session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new({:login => "user", :password => "pass"}, :secure)
+    assert_equal :secure, session.id
+    assert !session.valid?
+    assert_equal "user", session.login
+    assert_equal nil, session.unauthorized_record
+    
+    session = UserSession.new(users(:ben))
+    assert_equal nil, session.id
+    assert session.valid?
+    assert_equal nil, session.login
+    assert_equal users(:ben), session.unauthorized_record
+    
+    session = UserSession.new(users(:ben), :secure)
+    assert_equal :secure, session.id
+    assert session.valid?
+    assert_equal nil, session.login
+    assert_equal users(:ben), session.unauthorized_record
+  end
+  
+  def test_credentials
+    session = UserSession.new
+    session.credentials = nil
+    assert_equal({:login => nil, :password => "<Protected>"}, session.credentials)
+    
+    session = UserSession.new
+    session.credentials = {:login => "ben"}
+    assert_equal({:login => "ben", :password => "<Protected>"}, session.credentials)
+    
+    session = UserSession.new
+    assert_nothing_raised { session.credentials = {:login => "ben", :random_field => "test"} }
+    
+    session = UserSession.new
+    session.credentials = {:login => "ben", :password => "awesome"}
+    assert_equal({:login => "ben", :password => "<Protected>"}, session.credentials)
+    assert_equal "awesome", session.send(:protected_password)
+  end
+  
+  def test_destroy
+    # tested thoroughly in stories
+  end
+  
+  def test_errors
+    # don't need to go crazy here since we are using ActiveRecord's error class, which has been thorough tested there
+    session = UserSession.new
+    assert !session.valid?
+    session.login = ""
+    session.password = ""
+    assert !session.valid?
+    assert session.errors.on(:login)
+    assert session.errors.on(:password)
+  end
+  
+  def test_id
+    session = UserSession.new
+    assert_equal nil, session.id
+    session.id = :secure
+    assert_equal :secure, session.id
+  end
+  
+  def test_inspect
+    session = UserSession.new
+    assert_equal "#<UserSession {:login=>nil, :password=>\"<protected>\"}>", session.inspect
+    
+    session = UserSession.new("user", "pass")
+    assert_equal "#<UserSession {:login=>\"user\", :password=>\"<protected>\"}>", session.inspect
+    
+    session = UserSession.new(users(:ben))
+    assert_equal "#<UserSession {:unauthorized_record=>\"<protected>\"}>", session.inspect
+  end
+  
+  def test_new_session
+    session = UserSession.new
+    assert session.new_session?
+    
+    session.login = "bjohnson"
+    session.password = "benrocks"
+    session.save
+    assert !session.new_session?
+    
+    assert_successful_login("bjohnson", "benrocks")
+    session = UserSession.find
+    assert !session.new_session?
+  end
+  
+  def test_remember_me
+    session = UserSession.new
+    session.remember_me = true
+    assert_equal 3.months, session.remember_me_for
+    assert session.remember_me_until > Time.now
+    
+    session.remember_me = false
+    assert_equal nil, session.remember_me_for
+    assert_equal nil, session.remember_me_until
+  end
+  
+  def test_save
+    # tested thoroughly in stories and in create above
+  end
+end