RubyGems - authlogic - Versions diffs - 1.0.0 → 1.1.0 - Mend

authlogic 1.0.0 → 1.1.0

Potentially problematic release.

This version of authlogic might be problematic. Click here for more details.

Files changed (54) hide show

data/CHANGELOG.rdoc +19 -0
data/Manifest +29 -15
data/README.rdoc +17 -15
data/Rakefile +1 -1
data/authlogic.gemspec +7 -7
data/lib/authlogic.rb +21 -4
data/lib/authlogic/controller_adapters/abstract_adapter.rb +19 -4
data/lib/authlogic/controller_adapters/merb_adapter.rb +0 -27
data/lib/authlogic/controller_adapters/rails_adapter.rb +0 -14
data/lib/authlogic/crypto_providers/sha1.rb +24 -0
data/lib/authlogic/crypto_providers/sha512.rb +30 -0
data/lib/authlogic/orm_adapters/active_record_adapter/acts_as_authentic.rb +89 -0
data/lib/authlogic/orm_adapters/active_record_adapter/acts_as_authentic/credentials.rb +144 -0
data/lib/authlogic/orm_adapters/active_record_adapter/acts_as_authentic/logged_in.rb +41 -0
data/lib/authlogic/orm_adapters/active_record_adapter/acts_as_authentic/persistence.rb +62 -0
data/lib/authlogic/orm_adapters/active_record_adapter/acts_as_authentic/session_maintenance.rb +83 -0
data/lib/authlogic/orm_adapters/active_record_adapter/authenticates_many.rb +58 -0
data/lib/authlogic/{active_record/scoped_session.rb → session/authenticates_many_association.rb} +12 -3
data/lib/authlogic/session/base.rb +63 -93
data/lib/authlogic/session/callbacks.rb +15 -3
data/lib/authlogic/session/config.rb +130 -26
data/lib/authlogic/session/cookies.rb +39 -0
data/lib/authlogic/session/openid.rb +106 -0
data/lib/authlogic/session/params.rb +28 -0
data/lib/authlogic/session/session.rb +33 -0
data/lib/authlogic/testing/shoulda_macros.rb +17 -0
data/lib/authlogic/version.rb +1 -1
data/test/fixtures/users.yml +2 -2
data/{test_libs → test/libs}/aes128_crypto_provider.rb +0 -0
data/{test_libs → test/libs}/mock_controller.rb +7 -0
data/{test_libs → test/libs}/mock_cookie_jar.rb +0 -0
data/{test_libs → test/libs}/mock_request.rb +0 -0
data/{test_libs → test/libs}/ordered_hash.rb +0 -0
data/test/orm_adapters_tests/active_record_adapter_tests/acts_as_authentic_test.rb +217 -0
data/test/orm_adapters_tests/active_record_adapter_tests/authenticates_many_test.rb +32 -0
data/test/session_tests/active_record_trickery_test.rb +14 -0
data/test/session_tests/authenticates_many_association_test.rb +20 -0
data/test/session_tests/base_test.rb +264 -0
data/test/session_tests/config_test.rb +165 -0
data/test/session_tests/cookies_test.rb +32 -0
data/test/session_tests/params_test.rb +16 -0
data/test/session_tests/scopes_test.rb +60 -0
data/test/session_tests/session_test.rb +45 -0
data/test/test_helper.rb +14 -5
metadata +57 -29
data/lib/authlogic/active_record/acts_as_authentic.rb +0 -297
data/lib/authlogic/active_record/authenticates_many.rb +0 -56
data/lib/authlogic/sha512_crypto_provider.rb +0 -18
data/test/active_record_acts_as_authentic_test.rb +0 -213
data/test/active_record_authenticates_many_test.rb +0 -28
data/test/user_session_active_record_trickery_test.rb +0 -12
data/test/user_session_base_test.rb +0 -316
data/test/user_session_config_test.rb +0 -144
data/test/user_session_scopes_test.rb +0 -19

data/test/active_record_authenticates_many_test.rb DELETED

@@ -1,28 +0,0 @@
-require File.dirname(__FILE__) + '/test_helper.rb'
-class ActiveRecordAuthenticatesManyTest < ActiveSupport::TestCase
-  def test_authenticates_many_new
-    binary_logic = companies(:binary_logic)
-    user_session = binary_logic.user_sessions.new
-    assert_equal({:find_options => {:conditions => "\"users\".company_id = #{binary_logic.id}"}, :id => nil}, user_session.scope)
-    employee_session = binary_logic.employee_sessions.new
-    assert_equal({:find_options => {:conditions => "\"employees\".company_id = #{binary_logic.id}"}, :id => nil}, employee_session.scope)
-  end
-  def test_authenticates_many_create_and_find
-    binary_logic = companies(:binary_logic)
-    logic_over_data = companies(:logic_over_data)
-    ben = users(:ben)
-    zack = users(:zack)
-    assert !binary_logic.user_sessions.find
-    assert !logic_over_data.user_sessions.find
-    assert logic_over_data.user_sessions.create(zack)
-    assert !binary_logic.user_sessions.find
-    assert logic_over_data.user_sessions.find
-    assert binary_logic.user_sessions.create(ben)
-    assert binary_logic.user_sessions.find
-    assert !logic_over_data.user_sessions.find
-  end
-end

data/test/user_session_active_record_trickery_test.rb DELETED

@@ -1,12 +0,0 @@
-require File.dirname(__FILE__) + '/test_helper.rb'
-class UserSessionActiveRecordTrickeryTest < ActiveSupport::TestCase
-  def test_human_attribute_name
-    assert_equal "Some attribute", UserSession.human_attribute_name("some_attribute")
-  end
-  def test_new_record
-    session = UserSession.new
-    assert session.new_record?
-  end
-end

data/test/user_session_base_test.rb DELETED

@@ -1,316 +0,0 @@
-require File.dirname(__FILE__) + '/test_helper.rb'
-class UserSessionBaseTest < ActiveSupport::TestCase
-  def test_activated
-    assert UserSession.activated?
-    Authlogic::Session::Base.reset_controllers!
-    assert !UserSession.activated?
-  end
-  def test_controllers
-    Authlogic::Session::Base.reset_controllers!
-    assert_equal 0, Authlogic::Session::Base.send(:controllers).size
-    thread1 = Thread.new do
-      controller = MockController.new
-      Authlogic::Session::Base.controller = controller
-      assert_equal controller, Authlogic::Session::Base.controller
-    end
-    thread1.join
-    assert_equal 1, Authlogic::Session::Base.send(:controllers).size
-    assert_equal nil, Authlogic::Session::Base.controller
-    thread2 = Thread.new do
-      controller = MockController.new
-      Authlogic::Session::Base.controller = controller
-      assert_equal controller, Authlogic::Session::Base.controller
-    end
-    thread2.join
-    assert_equal 2, Authlogic::Session::Base.send(:controllers).size
-    assert_equal nil, Authlogic::Session::Base.controller
-  end
-  def test_create
-    ben = users(:ben)
-    assert !UserSession.create(ben.login, "badpw")
-    assert UserSession.create(ben.login, "benrocks")
-    assert_raise(Authlogic::Session::SessionInvalid) { UserSession.create!(ben.login, "badpw") }
-    assert UserSession.create!(ben.login, "benrocks")
-  end
-  def test_find
-    ben = users(:ben)
-    assert !UserSession.find
-    http_basic_auth_for(ben) { assert UserSession.find }
-    set_cookie_for(ben)
-    assert UserSession.find
-    unset_cookie
-    set_session_for(ben)
-    session = UserSession.find
-    assert session
-    assert !session.record.last_request_at.nil?
-  end
-  def test_klass
-    assert_equal User, UserSession.klass
-  end
-  def test_klass_name
-    assert_equal "User", UserSession.klass_name
-  end
-  def test_scope_method # test_scope is reserved
-    UserSession.with_scope(:find_options => {:conditions => "1 = 1"}, :id => "some_id") do
-      assert_equal({:find_options => {:conditions => "1 = 1"}, :id => "some_id"}, UserSession.scope)
-      ben = users(:ben)
-      session = UserSession.new
-      assert_equal({:find_options => {:conditions => "1 = 1"}, :id => "some_id"}, session.scope)
-      session.id = :another_id
-      session.unauthorized_record = ben
-      assert session.save
-      assert_equal ben.remember_token, @controller.session["another_id_some_id_user_credentials"]
-      assert_equal ben.remember_token, @controller.cookies["another_id_some_id_user_credentials"]
-    end
-    assert_equal nil, UserSession.scope
-  end
-  def test_with_scope_method # test_with_scope is reserved
-    assert_raise(ArgumentError) { UserSession.with_scope }
-    # the rest of the method was tested in test_scope
-  end
-  def test_init
-    UserSession.reset_controllers!
-    assert_raise(Authlogic::Session::NotActivated) { UserSession.new }
-    UserSession.controller = @controller
-    session = UserSession.new
-    assert session.respond_to?(:login)
-    assert session.respond_to?(:login=)
-    assert session.respond_to?(:password)
-    assert session.respond_to?(:password=)
-    assert session.respond_to?(:protected_password, true)
-    session = UserSession.new(:my_id)
-    assert_equal :my_id, session.id
-    session = UserSession.new("login", "pass", true, :my_id)
-    assert_equal "login", session.login
-    assert_equal nil, session.password
-    assert_equal "pass", session.send(:protected_password)
-    assert_equal true, session.remember_me
-    assert_equal :my_id, session.id
-    session = UserSession.new({:login => "login", :password => "pass", :remember_me => true}, :my_id)
-    assert_equal "login", session.login
-    assert_equal nil, session.password
-    assert_equal "pass", session.send(:protected_password)
-    assert_equal true, session.remember_me
-    assert_equal :my_id, session.id
-    session = UserSession.new(users(:ben), :my_id)
-    assert_equal nil, session.login
-    assert_equal nil, session.password
-    assert_equal nil, session.send(:protected_password)
-    assert_equal nil, session.remember_me
-    assert_equal :my_id, session.id
-    assert_equal users(:ben), session.unauthorized_record
-  end
-  def test_credentials
-    session = UserSession.new
-    session.credentials = {:login => "login", :password => "pass", :remember_me => true}
-    assert_equal "login", session.login
-    assert_equal nil, session.password
-    assert_equal "pass", session.send(:protected_password)
-    assert_equal true, session.remember_me
-    assert_equal({:password => "<Protected>", :login => "login"}, session.credentials)
-  end
-  def test_destroy
-    ben = users(:ben)
-    session = UserSession.create(ben)
-    assert session
-    assert_equal ben.remember_token, @controller.session["user_credentials"]
-    assert_equal ben.remember_token, @controller.cookies["user_credentials"]
-    session.destroy
-    assert_equal nil, @controller.session["user_credentials"]
-    assert_equal nil, @controller.cookies["user_credentials"]
-  end
-  def test_errors
-    session = UserSession.new
-    assert session.errors.is_a?(Authlogic::Session::Errors)
-  end
-  def test_find_record
-    # tested thoroughly in test_find
-  end
-  def test_id
-    ben = users(:ben)
-    session = UserSession.new(ben, :my_id)
-    assert_equal :my_id, session.id
-    assert session.save
-    assert_equal ben.remember_token, @controller.session["my_id_user_credentials"]
-    assert_equal ben.remember_token, @controller.cookies["my_id_user_credentials"]
-  end
-  def test_inspect
-    session = UserSession.new
-    assert_equal "#<UserSession {:unauthorized_record=>\"<protected>\"}>", session.inspect
-    session.login = "login"
-    session.password = "pass"
-    assert "#<UserSession {:login=>\"login\", :password=>\"<protected>\"}>" == session.inspect || "#<UserSession {:password=>\"<protected>\", :login=>\"login\"}>" == session.inspect
-  end
-  def test_new_session
-    session = UserSession.new
-    assert session.new_session?
-    set_session_for(users(:ben))
-    session = UserSession.find
-    assert !session.new_session?
-  end
-  def test_remember_me
-    session = UserSession.new
-    assert_equal nil, session.remember_me
-    assert !session.remember_me?
-    session.remember_me = false
-    assert_equal false, session.remember_me
-    assert !session.remember_me?
-    session.remember_me = true
-    assert_equal true, session.remember_me
-    assert session.remember_me?
-    session.remember_me = nil
-    assert_equal nil, session.remember_me
-    assert !session.remember_me?
-    session.remember_me = "1"
-    assert_equal "1", session.remember_me
-    assert session.remember_me?
-    session.remember_me = "true"
-    assert_equal "true", session.remember_me
-    assert session.remember_me?
-  end
-  def test_remember_me_until
-    session = UserSession.new
-    assert_equal nil, session.remember_me_until
-    session.remember_me = true
-    assert 3.months.from_now <= session.remember_me_until
-  end
-  def test_save_with_nothing
-    session = UserSession.new
-    assert !session.save
-    assert session.new_session?
-  end
-  def test_save_with_record
-    ben = users(:ben)
-    session = UserSession.new(ben.login, "benrocks")
-    assert session.save
-    assert !session.new_session?
-    assert_equal ben.remember_token, @controller.session["user_credentials"]
-    assert_equal ben.remember_token, @controller.cookies["user_credentials"]
-    assert_equal 1, session.record.login_count
-    assert Time.now >= session.record.current_login_at
-    assert_equal "1.1.1.1", session.record.current_login_ip
-    unset_cookie
-    unset_session
-  end
-  def test_save_with_credentials
-    ben = users(:ben)
-    session = UserSession.new(ben)
-    assert session.save
-    assert !session.new_session?
-    assert_equal ben.remember_token, @controller.session["user_credentials"]
-    assert_equal ben.remember_token, @controller.cookies["user_credentials"]
-    assert_equal 1, session.record.login_count
-    assert Time.now >= session.record.current_login_at
-    assert_equal "1.1.1.1", session.record.current_login_ip
-  end
-  def test_save_with_bang
-    session = UserSession.new
-    assert_raise(Authlogic::Session::SessionInvalid) { session.save! }
-    session.unauthorized_record = users(:ben)
-    assert session.save!
-  end
-  def test_unauthorized_record
-    session = UserSession.new
-    ben = users(:ben)
-    session.unauthorized_record = ben
-    assert_equal ben, session.unauthorized_record
-    assert_equal :unauthorized_record, session.login_with
-  end
-  def test_valid
-    session = UserSession.new
-    assert !session.valid?
-    assert_equal nil, session.record
-    assert session.errors.count > 0
-    ben = users(:ben)
-    session.unauthorized_record = ben
-    assert session.valid?
-    assert_equal ben, session.record
-    assert session.errors.empty?
-  end
-  def test_valid_http_auth
-    ben = users(:ben)
-    session = UserSession.new
-    http_basic_auth_for { assert !session.valid_http_auth? }
-    http_basic_auth_for(ben) do
-      assert session.valid_http_auth?
-      assert_equal ben, session.record
-      assert_equal ben.remember_token, @controller.session["user_credentials"]
-      assert_equal ben.login, session.login
-      assert_equal ben.crypted_password, session.send(:protected_password)
-      assert !session.new_session?
-    end
-  end
-  def test_valid_cookie
-    ben = users(:ben)
-    session = UserSession.new
-    assert !session.valid_cookie?
-    set_cookie_for(ben)
-    assert session.valid_cookie?
-    assert_equal ben, session.record
-    assert_equal ben.remember_token, @controller.session["user_credentials"]
-    assert_equal ben, session.unauthorized_record
-    assert !session.new_session?
-  end
-  def test_valid_session
-    ben = users(:ben)
-    session = UserSession.new
-    assert !session.valid_session?
-    set_session_for(ben)
-    assert session.valid_session?
-    assert_equal ben, session.record
-    assert_equal ben.remember_token, @controller.session["user_credentials"]
-    assert_equal ben, session.unauthorized_record
-    assert !session.new_session?
-  end
-end

data/test/user_session_config_test.rb DELETED

@@ -1,144 +0,0 @@
-require File.dirname(__FILE__) + '/test_helper.rb'
-class UserSessionConfigTest < ActiveSupport::TestCase
-  def test_authenticate_with
-    UserSession.authenticate_with = Employee
-    assert_equal "Employee", UserSession.klass_name
-    assert_equal Employee, UserSession.klass
-    UserSession.authenticate_with User
-    assert_equal "User", UserSession.klass_name
-    assert_equal User, UserSession.klass
-  end
-  def test_cookie_key
-    UserSession.cookie_key = "my_cookie_key"
-    assert_equal "my_cookie_key", UserSession.cookie_key
-    session = UserSession.new
-    assert_equal "my_cookie_key", session.cookie_key
-    UserSession.cookie_key "user_credentials"
-    assert_equal "user_credentials", UserSession.cookie_key
-    session = UserSession.new
-    assert_equal "user_credentials", session.cookie_key
-  end
-  def test_find_by_login_method
-    UserSession.find_by_login_method = "my_login_method"
-    assert_equal "my_login_method", UserSession.find_by_login_method
-    session = UserSession.new
-    assert_equal "my_login_method", session.find_by_login_method
-    UserSession.find_by_login_method "find_by_login"
-    assert_equal "find_by_login", UserSession.find_by_login_method
-    session = UserSession.new
-    assert_equal "find_by_login", session.find_by_login_method
-  end
-  def test_find_with
-    UserSession.find_with = [:session]
-    assert_equal [:session], UserSession.find_with
-    session = UserSession.new
-    assert_equal [:session], session.find_with
-    set_cookie_for(users(:ben))
-    assert !UserSession.find
-    UserSession.find_with :session, :cookie, :http_auth
-    assert_equal [:session, :cookie, :http_auth], UserSession.find_with
-    session = UserSession.new
-    assert_equal [:session, :cookie, :http_auth], session.find_with
-    assert UserSession.find
-  end
-  def test_login_field
-    UserSession.login_field = :saweet
-    assert_equal :saweet, UserSession.login_field
-    session = UserSession.new
-    assert_equal :saweet, session.login_field
-    assert session.respond_to?(:saweet)
-    UserSession.login_field :login
-    assert_equal :login, UserSession.login_field
-    session = UserSession.new
-    assert_equal :login, session.login_field
-    assert session.respond_to?(:login)
-  end
-  def test_password_field
-    UserSession.password_field = :saweet
-    assert_equal :saweet, UserSession.password_field
-    session = UserSession.new
-    assert_equal :saweet, session.password_field
-    assert session.respond_to?(:saweet)
-    UserSession.password_field :password
-    assert_equal :password, UserSession.password_field
-    session = UserSession.new
-    assert_equal :password, session.password_field
-    assert session.respond_to?(:password)
-  end
-  def test_remember_me
-    UserSession.remember_me = true
-    assert_equal true, UserSession.remember_me
-    session = UserSession.new
-    assert_equal true, session.remember_me
-    UserSession.remember_me false
-    assert_equal false, UserSession.remember_me
-    session = UserSession.new
-    assert_equal false, session.remember_me
-  end
-  def test_remember_me_for
-    UserSession.remember_me_for = 3.years
-    assert_equal 3.years, UserSession.remember_me_for
-    session = UserSession.new
-    session.remember_me = true
-    assert_equal 3.years, session.remember_me_for
-    UserSession.remember_me_for 3.months
-    assert_equal 3.months, UserSession.remember_me_for
-    session = UserSession.new
-    session.remember_me = true
-    assert_equal 3.months, session.remember_me_for
-  end
-  def test_remember_token_field
-    UserSession.remember_token_field = :saweet
-    assert_equal :saweet, UserSession.remember_token_field
-    session = UserSession.new
-    assert_equal :saweet, session.remember_token_field
-    UserSession.remember_token_field :remember_token
-    assert_equal :remember_token, UserSession.remember_token_field
-    session = UserSession.new
-    assert_equal :remember_token, session.remember_token_field
-  end
-  def test_session_key
-    UserSession.session_key = "my_session_key"
-    assert_equal "my_session_key", UserSession.session_key
-    session = UserSession.new
-    assert_equal "my_session_key", session.session_key
-    UserSession.session_key "user_credentials"
-    assert_equal "user_credentials", UserSession.session_key
-    session = UserSession.new
-    assert_equal "user_credentials", session.session_key
-  end
-  def test_verify_password_method
-    UserSession.verify_password_method = "my_login_method"
-    assert_equal "my_login_method", UserSession.verify_password_method
-    session = UserSession.new
-    assert_equal "my_login_method", session.verify_password_method
-    UserSession.verify_password_method "valid_password?"
-    assert_equal "valid_password?", UserSession.verify_password_method
-    session = UserSession.new
-    assert_equal "valid_password?", session.verify_password_method
-  end
-end