authlogic 1.4.3 → 2.0.0

data/test/acts_as_authentic_test/perishable_token_test.rb

@@ -0,0 +1,56 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+module ActsAsAuthenticTest
+  class PerishableTokenTest < ActiveSupport::TestCase
+    def test_perishable_token_valid_for_config
+      assert_equal 10.minutes.to_i, User.perishable_token_valid_for
+      assert_equal 10.minutes.to_i, Employee.perishable_token_valid_for
+      
+      User.perishable_token_valid_for = 1.hour
+      assert_equal 1.hour.to_i, User.perishable_token_valid_for
+      User.perishable_token_valid_for 10.minutes
+      assert_equal 10.minutes.to_i, User.perishable_token_valid_for
+    end
+    
+    def test_disable_perishable_token_maintenance_config
+      assert !User.disable_perishable_token_maintenance
+      assert !Employee.disable_perishable_token_maintenance
+      
+      User.disable_perishable_token_maintenance = true
+      assert User.disable_perishable_token_maintenance
+      User.disable_perishable_token_maintenance false
+      assert !User.disable_perishable_token_maintenance
+    end
+    
+    def test_validates_uniqueness_of_perishable_token
+      u = User.new
+      u.perishable_token = users(:ben).perishable_token
+      assert !u.valid?
+      assert u.errors.on(:perishable_token)
+    end
+    
+    def test_before_save_reset_perishable_token
+      ben = users(:ben)
+      old_perishable_token = ben.perishable_token
+      assert ben.save
+      assert_not_equal old_perishable_token, ben.perishable_token
+    end
+    
+    def test_reset_perishable_token
+      ben = users(:ben)
+      old_perishable_token = ben.perishable_token
+      
+      assert ben.reset_perishable_token
+      assert_not_equal old_perishable_token, ben.perishable_token
+      
+      ben.reload
+      assert_equal old_perishable_token, ben.perishable_token
+      
+      assert ben.reset_perishable_token!
+      assert_not_equal old_perishable_token, ben.perishable_token
+      
+      ben.reload
+      assert_not_equal old_perishable_token, ben.perishable_token
+    end
+  end
+end

data/test/acts_as_authentic_test/persistence_token_test.rb

@@ -0,0 +1,55 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+module ActsAsAuthenticTest
+  class PersistenceTokenTest < ActiveSupport::TestCase
+    def test_after_password_set_reset_persistence_token
+      ben = users(:ben)
+      old_persistence_token = ben.persistence_token
+      ben.password = "newpass"
+      assert_not_equal old_persistence_token, ben.persistence_token
+    end
+    
+    def test_after_password_verification_reset_persistence_token
+      ben = users(:ben)
+      old_persistence_token = ben.persistence_token
+      assert ben.valid_password?(password_for(ben))
+      assert_equal old_persistence_token, ben.persistence_token
+      
+      # only update it if it is nil
+      assert ben.update_attribute(:persistence_token, nil)
+      assert ben.valid_password?(password_for(ben))
+      assert_not_equal old_persistence_token, ben.persistence_token
+    end
+    
+    def test_before_validate_reset_persistence_token
+      u = User.new
+      assert !u.valid?
+      assert_not_nil u.persistence_token
+    end
+    
+    def test_forget_all
+      http_basic_auth_for(users(:ben)) { UserSession.find }
+      http_basic_auth_for(users(:zack)) { UserSession.find(:ziggity_zack) }
+      assert UserSession.find
+      assert UserSession.find(:ziggity_zack)
+      User.forget_all
+      assert !UserSession.find
+      assert !UserSession.find(:ziggity_zack)
+    end
+    
+    def test_forget
+      ben = users(:ben)
+      zack = users(:zack)
+      http_basic_auth_for(ben) { UserSession.find }
+      http_basic_auth_for(zack) { UserSession.find(:ziggity_zack) }
+
+      assert ben.reload.logged_in?
+      assert zack.reload.logged_in?
+
+      ben.forget!
+
+      assert !UserSession.find
+      assert UserSession.find(:ziggity_zack)
+    end
+  end
+end

data/test/acts_as_authentic_test/session_maintenance_test.rb

@@ -0,0 +1,68 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+module ActsAsAuthenticTest
+  class SessionMaintenanceTest < ActiveSupport::TestCase
+    def test_login_after_create
+      assert User.create(:login => "awesome", :password => "saweet", :password_confirmation => "saweet", :email => "awesome@awesome.com")
+      assert UserSession.find
+    end
+
+    def test_update_session_after_password_modify
+      ben = users(:ben)
+      UserSession.create(ben)
+      old_session_key = @controller.session["user_credentials"]
+      old_cookie_key = @controller.cookies["user_credentials"]
+      ben.password = "newpass"
+      ben.password_confirmation = "newpass"
+      assert ben.save
+      assert @controller.session["user_credentials"]
+      assert @controller.cookies["user_credentials"]
+      assert_not_equal @controller.session["user_credentials"], old_session_key
+      assert_not_equal @controller.cookies["user_credentials"], old_cookie_key
+    end
+
+    def test_no_session_update_after_modify
+      ben = users(:ben)
+      UserSession.create(ben)
+      old_session_key = @controller.session["user_credentials"]
+      old_cookie_key = @controller.cookies["user_credentials"]
+      ben.first_name = "Ben"
+      assert ben.save
+      assert_equal @controller.session["user_credentials"], old_session_key
+      assert_equal @controller.cookies["user_credentials"], old_cookie_key
+    end
+    
+    def test_creating_other_user
+      ben = users(:ben)
+      UserSession.create(ben)
+      old_session_key = @controller.session["user_credentials"]
+      old_cookie_key = @controller.cookies["user_credentials"]
+      assert User.create(:login => "awesome", :password => "saweet", :password_confirmation => "saweet", :email => "awesome@saweet.com")
+      assert_equal @controller.session["user_credentials"], old_session_key
+      assert_equal @controller.cookies["user_credentials"], old_cookie_key
+    end
+
+    def test_updating_other_user
+      ben = users(:ben)
+      UserSession.create(ben)
+      old_session_key = @controller.session["user_credentials"]
+      old_cookie_key = @controller.cookies["user_credentials"]
+      zack = users(:zack)
+      zack.password = "newpass"
+      zack.password_confirmation = "newpass"
+      assert zack.save
+      assert_equal @controller.session["user_credentials"], old_session_key
+      assert_equal @controller.cookies["user_credentials"], old_cookie_key
+    end
+
+    def test_resetting_password_when_logged_out
+      ben = users(:ben)
+      assert !UserSession.find
+      ben.password = "newpass"
+      ben.password_confirmation = "newpass"
+      assert ben.save
+      assert UserSession.find
+      assert_equal ben, UserSession.find.record
+    end
+  end
+end

data/test/acts_as_authentic_test/single_access_test.rb

@@ -0,0 +1,39 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+module ActsAsAuthenticTest
+  class SingleAccessTest < ActiveSupport::TestCase
+    def test_change_single_access_token_with_password_config
+      assert !User.change_single_access_token_with_password
+      assert !Employee.change_single_access_token_with_password
+      
+      User.change_single_access_token_with_password = true
+      assert User.change_single_access_token_with_password
+      User.change_single_access_token_with_password false
+      assert !User.change_single_access_token_with_password
+    end
+    
+    def test_validates_uniqueness_of_single_access_token
+      u = User.new
+      u.single_access_token = users(:ben).single_access_token
+      assert !u.valid?
+      assert u.errors.on(:single_access_token)
+    end
+    
+    def test_before_validation_reset_single_access_token
+      u = User.new
+      assert !u.valid?
+      assert_not_nil u.single_access_token
+    end
+    
+    def test_after_password_set_reset_single_access_token
+      User.change_single_access_token_with_password = true
+      
+      ben = users(:ben)
+      old_single_access_token = ben.single_access_token
+      ben.password = "new_pass"
+      assert_not_equal old_single_access_token, ben.single_access_token
+      
+      User.change_single_access_token_with_password = false
+    end
+  end
+end

data/test/authenticates_many_test.rb

@@ -0,0 +1,16 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+
+class AuthenticatesManyTest < ActiveSupport::TestCase
+  def test_scoping
+    zack = users(:zack)
+    ben = users(:ben)
+    binary_logic = companies(:binary_logic)
+    set_session_for(zack)
+    
+    assert !binary_logic.user_sessions.find
+    
+    set_session_for(ben)
+    
+    assert binary_logic.user_sessions.find
+  end
+end

data/test/{crypto_provider_tests → crypto_provider_test}/aes256_test.rb

@@ -1,6 +1,6 @@
 require File.dirname(__FILE__) + '/../test_helper.rb'
 
-module CryptoProviderTests
+module CryptoProviderTest
   class AES256Test < ActiveSupport::TestCase
     def test_encrypt
       assert Authlogic::CryptoProviders::AES256.encrypt("mypass")

data/test/{crypto_provider_tests → crypto_provider_test}/bcrypt_test.rb

@@ -1,6 +1,6 @@
 require File.dirname(__FILE__) + '/../test_helper.rb'
 
-module CryptoProviderTests
+module CryptoProviderTest
   class BCrpytTest < ActiveSupport::TestCase
     def test_encrypt
       assert Authlogic::CryptoProviders::BCrypt.encrypt("mypass")

data/test/{crypto_provider_tests → crypto_provider_test}/sha1_test.rb

@@ -1,6 +1,6 @@
 require File.dirname(__FILE__) + '/../test_helper.rb'
 
-module CryptoProviderTests
+module CryptoProviderTest
   class Sha1Test < ActiveSupport::TestCase
     def test_encrypt
       assert Authlogic::CryptoProviders::Sha1.encrypt("mypass")

data/test/{crypto_provider_tests → crypto_provider_test}/sha512_test.rb

@@ -1,6 +1,6 @@
 require File.dirname(__FILE__) + '/../test_helper.rb'
 
-module CryptoProviderTests
+module CryptoProviderTest
   class Sha512Test < ActiveSupport::TestCase
     def test_encrypt
       assert Authlogic::CryptoProviders::Sha512.encrypt("mypass")

data/test/fixtures/employees.yml

@@ -1,8 +1,8 @@
 drew:
   company: binary_logic
   email: dgainor@binarylogic.com
-  password_salt: <%= salt = Employee.unique_token %>
-  crypted_password: '<%= Employee.acts_as_authentic_config[:crypto_provider].encrypt("drewrocks" + salt) %>'
+  password_salt: <%= salt = Authlogic::Random.hex_token %>
+  crypted_password: '<%= Employee.crypto_provider.encrypt("drewrocks" + salt) %>'
   persistence_token: 5273d85ed156e9dbd6a7c1438d319ef8c8d41dd24368db6c222de11346c7b11e53ee08d45ecf619b1c1dc91233d22b372482b751b066d0a6f6f9bac42eacaabf
   first_name: Drew
   last_name: Gainor
@@ -10,8 +10,8 @@ drew:
 jennifer:
   company: logic_over_data
   email: jjohnson@logicoverdata.com
-  password_salt: <%= salt = Employee.unique_token %>
-  crypted_password: '<%= Employee.acts_as_authentic_config[:crypto_provider].encrypt("jenniferocks" + salt) %>'
+  password_salt: <%= salt = Authlogic::Random.hex_token %>
+  crypted_password: '<%= Employee.crypto_provider.encrypt("jenniferocks" + salt) %>'
   persistence_token: 2be52a8f741ad00056e6f94eb6844d5316527206da7a3a5e3d0e14d19499ef9fe4c47c89b87febb59a2b41a69edfb4733b6b79302040f3de83f297c6991c75a2
   first_name: Jennifer
   last_name: Johnson

data/test/fixtures/users.yml

@@ -2,11 +2,11 @@ ben:
   company: binary_logic
   projects: web_services
   login: bjohnson
-  password_salt: <%= salt = User.unique_token %>
+  password_salt: <%= salt = Authlogic::Random.hex_token %>
   crypted_password: <%= Authlogic::CryptoProviders::Sha512.encrypt("benrocks" + salt) %>
   persistence_token: 6cde0674657a8a313ce952df979de2830309aa4c11ca65805dd00bfdc65dbcc2f5e36718660a1d2e68c1a08c276d996763985d2f06fd3d076eb7bc4d97b1e317
-  single_access_token: <%= User.friendly_unique_token %>
-  perishable_token: <%= User.friendly_unique_token %>
+  single_access_token: <%= Authlogic::Random.friendly_token %>
+  perishable_token: <%= Authlogic::Random.friendly_token %>
   email: bjohnson@binarylogic.com
   first_name: Ben
   last_name: Johnson
@@ -14,11 +14,11 @@ ben:
 zack:
   company: logic_over_data
   projects: web_services
-  login: zham
-  password_salt: <%= salt = User.unique_token %>
+  login: zackham
+  password_salt: <%= salt = Authlogic::Random.hex_token %>
   crypted_password: <%= Authlogic::CryptoProviders::Sha512.encrypt("zackrocks" + salt) %>
   persistence_token: fd3c2d5ce09ab98e7547d21f1b3dcf9158a9a19b5d3022c0402f32ae197019fce3fdbc6614d7ee57d719bae53bb089e30edc9e5d6153e5bc3afca0ac1d320342
-  single_access_token: <%= User.friendly_unique_token %>
+  single_access_token: <%= Authlogic::Random.friendly_token %>
   email: zham@ziggityzack.com
   first_name: Zack
   last_name: Ham

data/test/libs/company.rb

@@ -0,0 +1,6 @@
+class Company < ActiveRecord::Base
+  authenticates_many :employee_sessions
+  authenticates_many :user_sessions
+  has_many :employees, :dependent => :destroy
+  has_many :users, :dependent => :destroy
+end

data/test/libs/employee.rb

@@ -0,0 +1,7 @@
+class Employee < ActiveRecord::Base
+  acts_as_authentic do |c|
+    c.crypto_provider Authlogic::CryptoProviders::AES256
+  end
+  
+  belongs_to :company
+end

data/test/libs/employee_session.rb

@@ -0,0 +1,2 @@
+class EmployeeSession < Authlogic::Session::Base
+end

data/test/libs/project.rb

@@ -0,0 +1,3 @@
+class Project < ActiveRecord::Base
+  has_and_belongs_to_many :users
+end

data/test/libs/user_session.rb

@@ -0,0 +1,2 @@
+class UserSession < Authlogic::Session::Base
+end

data/test/random_test.rb

@@ -0,0 +1,49 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+class RandomTest < ActiveSupport::TestCase
+  def test_random_tokens_have_consisten_length
+    with_any_random do
+      assert_equal 128, Authlogic::Random.hex_token.length
+      assert_equal 20,  Authlogic::Random.friendly_token.length
+    end
+  end
+  
+  def test_random_tokens_are_indeed_random
+    # this might fail if you are *really* unlucky :)
+    with_any_random do
+      assert_not_equal Authlogic::Random.hex_token,       Authlogic::Random.hex_token
+      assert_not_equal Authlogic::Random.friendly_token,  Authlogic::Random.friendly_token
+    end
+  end
+
+  private
+    def with_any_random(&block)
+      [true, false].each {|val| with_secure_random_enabled(val, &block)}
+    end
+
+    def with_secure_random_enabled(enabled = true)
+      # can't really test SecureRandom if we don't have an implementation
+      return if enabled && !Authlogic::Random::SecureRandom
+    
+      current_sec_rand = Authlogic::Random::SecureRandom
+      reload_authlogic_with_sec_random!(current_sec_rand, enabled)
+  
+      yield
+    ensure
+      reload_authlogic_with_sec_random!(current_sec_rand)
+    end
+
+    def reload_authlogic_with_sec_random!(secure_random, enabled = true)
+      silence_warnings do
+        secure_random.parent.const_set(secure_random.name.sub("#{secure_random.parent}::", ''), enabled ? secure_random : nil)
+        load(File.dirname(__FILE__) + '/../../lib/authlogic/random.rb')
+      end
+    end
+
+    def silence_warnings
+      old_verbose, $VERBOSE = $VERBOSE, nil
+      yield
+    ensure
+      $VERBOSE = old_verbose
+    end
+end

data/test/session_test/activation_test.rb

@@ -0,0 +1,43 @@
+require File.dirname(__FILE__) + '/../test_helper.rb'
+
+module SessionTest
+  module ActivationTest
+    class ClassMethodsTest < ActiveSupport::TestCase
+      def test_activated
+        assert UserSession.activated?
+        Authlogic::Session::Base.controller = nil
+        assert !UserSession.activated?
+      end
+    
+      def test_controller
+        Authlogic::Session::Base.controller = nil
+        assert_nil Authlogic::Session::Base.controller
+        thread1 = Thread.new do
+          controller = MockController.new
+          Authlogic::Session::Base.controller = controller
+          assert_equal controller, Authlogic::Session::Base.controller
+        end
+        thread1.join
+
+        assert_nil Authlogic::Session::Base.controller
+      
+        thread2 = Thread.new do
+          controller = MockController.new
+          Authlogic::Session::Base.controller = controller
+          assert_equal controller, Authlogic::Session::Base.controller
+        end
+        thread2.join
+      
+        assert_nil Authlogic::Session::Base.controller
+      end
+    end
+    
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_init
+        UserSession.controller = nil
+        assert_raise(Authlogic::Session::Activation::NotActivatedError) { UserSession.new }
+        UserSession.controller = @controller
+      end
+    end
+  end
+end