RubyGems - clavis - Versions diffs - 0.7.1 → 0.7.2 - Mend

clavis 0.7.1 → 0.7.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

checksums.yaml +4 -4
data/.brakeman.ignore +1 -0
data/CHANGELOG.md +27 -15
data/README.md +271 -537
data/Rakefile +52 -4
data/lib/clavis/version.rb +1 -1
data/lib/generators/clavis/install_generator.rb +34 -17
data/lib/generators/clavis/user_method/user_method_generator.rb +5 -16
data/llms.md +256 -347
metadata +2 -4
data/UPGRADE.md +0 -57
data/docs/integration.md +0 -272
data/testing_plan.md +0 -710

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: clavis
 version: !ruby/object:Gem::Version
-  version: 0.7.1
+  version: 0.7.2
 platform: ruby
 authors:
 - Clayton Lengel-Zigich
@@ -158,6 +158,7 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".actrc"
+- ".brakeman.ignore"
 - ".cursor/rules/ruby-gem.mdc"
 - ".gemignore"
 - ".rspec"
@@ -168,14 +169,12 @@ files:
 - LICENSE.txt
 - README.md
 - Rakefile
-- UPGRADE.md
 - app/assets/stylesheets/clavis.css
 - app/controllers/clavis/auth_controller.rb
 - config/database.yml
 - config/routes.rb
 - docs/SECURITY.md
 - docs/TESTING.md
-- docs/integration.md
 - error_handling.md
 - file_structure.md
 - gemfiles/rails_80.gemfile
@@ -228,7 +227,6 @@ files:
 - log/development.log
 - log/test.log
 - sig/clavis.rbs
-- testing_plan.md
 homepage: https://github.com/clayton/clavis
 licenses:
 - MIT

data/UPGRADE.md DELETED Viewed

@@ -1,57 +0,0 @@
-# Clavis Upgrade Guide
-## Upgrading to 0.2.0 from 0.1.x
-Version 0.2.0 brings several important fixes and improvements to the Clavis gem, focusing on better documentation, improved compatibility with existing Rails applications, and bug fixes for various integration issues.
-### Key Changes
-1. **Module Alias Consistency**:
-   - The module `Clavis::Models::OauthAuthenticatable` is now properly aliased to `Clavis::Models::Concerns::OauthAuthenticatable`
-   - This means either reference can be used in your application code: `include Clavis::Models::OauthAuthenticatable` or `include Clavis::Models::Concerns::OauthAuthenticatable`
-2. **View Helper Integration**:
-   - Improved automatic inclusion of view helpers in Rails applications
-   - Fixed issues with helper availability in `ApplicationHelper`
-   - View helpers like `clavis_oauth_button` should now work out of the box
-3. **Installation Generator Improvements**:
-   - Updated the `clavis:install` generator to properly handle the creation of OAuth identity tables
-   - Fixed issues with duplicate migrations
-   - Added better support for integrating with existing User models
-4. **Documentation Updates**:
-   - Added comprehensive guide for integrating with existing authentication systems
-   - Corrected inconsistencies between code examples and actual implementations
-   - Updated installation and configuration guidance
-### Migration Steps
-**For most users, no changes are required**. The improvements in 0.2.0 are backward compatible.
-If you encountered any of the specific issues addressed in this release, upgrade to 0.2.0 and follow these steps:
-1. Update your Gemfile:
-   ```ruby
-   gem 'clavis', '~> 0.2.0'
-   ```
-2. Run bundle install:
-   ```bash
-   bundle install
-   ```
-3. If you've manually implemented workarounds for any of the fixed issues, you can now remove them.
-4. If you're integrating with an existing application, refer to the new integration guide at `/docs/integration.md` for detailed instructions.
-### New Documentation
-- `docs/integration.md` - Guide for integrating Clavis with existing authentication systems
-- Updated README with clearer instructions and example code
-- Improved error handling documentation
-### Known Issues
-- Rails 7.1+ and Ruby 3.4+ compatibility testing is ongoing
-- Full test suite coverage requires a Rails environment for some specs

data/docs/integration.md DELETED Viewed

@@ -1,272 +0,0 @@
-# Integrating Clavis with Existing Applications
-This guide covers how to integrate Clavis with your existing Ruby on Rails application, particularly if you already have an authentication system in place.
-## Table of Contents
-1. [Overview](#overview)
-2. [Database Setup](#database-setup)
-3. [User Model Integration](#user-model-integration)
-4. [Controller Integration](#controller-integration)
-5. [View Integration](#view-integration)
-6. [Route Configuration](#route-configuration)
-7. [Working with Multiple Authentication Methods](#working-with-multiple-authentication-methods)
-8. [Troubleshooting](#troubleshooting)
-## Overview
-Clavis is designed to work alongside your existing authentication system, providing OAuth/OIDC capabilities without replacing your current setup. This guide assumes you have an existing application with:
-- A `User` model
-- Some form of authentication (e.g., `has_secure_password`, Devise, etc.)
-- Session management
-## Database Setup
-Clavis stores OAuth identities in a separate table with a polymorphic relationship to your user model.
-1. **Run the installation generator**:
-   ```bash
-   rails generate clavis:install
-   ```
-2. **Review and run the migration**:
-   ```bash
-   rails db:migrate
-   ```
-   This creates a `clavis_oauth_identities` table with:
-   ```ruby
-   create_table :clavis_oauth_identities do |t|
-     t.references :user, polymorphic: true, null: false, index: true
-     t.string :provider, null: false
-     t.string :uid, null: false
-     t.json :auth_data
-     t.string :token
-     t.string :refresh_token
-     t.datetime :expires_at
-     t.timestamps
-     t.index [:provider, :uid], unique: true
-   end
-   ```
-## User Model Integration
-Include the `OauthAuthenticatable` concern in your User model:
-```ruby
-# app/models/user.rb
-class User < ApplicationRecord
-  include Clavis::Models::OauthAuthenticatable
-  # Your existing authentication code (e.g., has_secure_password)
-  # Optional: Customize how users are created/found from OAuth data
-  def self.find_for_oauth(auth_hash)
-    super do |user, auth|
-      # Set additional attributes based on the OAuth data
-      user.name = auth[:info][:name] if user.respond_to?(:name=)
-      user.username = auth[:info][:nickname] if user.respond_to?(:username=)
-      # You can access profile image with auth[:info][:image]
-      # You can access email with auth[:info][:email]
-    end
-  end
-end
-```
-## Controller Integration
-You have a few options for controller integration:
-### Option 1: Use your existing authentication controller
-```ruby
-# app/controllers/sessions_controller.rb
-class SessionsController < ApplicationController
-  include Clavis::Controllers::Concerns::Authentication
-  # Your existing login/logout actions...
-  # Add OAuth callback handler
-  def oauth_callback
-    auth_hash = process_callback(params[:provider])
-    # Find or create a user with the OAuth data
-    @user = User.find_for_oauth(auth_hash)
-    # Sign in the user (using your existing authentication system)
-    session[:user_id] = @user.id
-    redirect_to root_path, notice: "Signed in successfully!"
-  rescue Clavis::AuthenticationError => e
-    redirect_to login_path, alert: "Authentication failed: #{e.message}"
-  end
-  # Add OAuth authorization handler
-  def oauth_authorize
-    redirect_to auth_url(params[:provider])
-  end
-end
-```
-### Option 2: Generate a dedicated OAuth controller
-```bash
-rails generate clavis:controller Auth
-```
-This creates:
-- `app/controllers/auth_controller.rb` with OAuth methods
-- Views for login/etc.
-- Routes for the OAuth flow
-## View Integration
-### Add OAuth buttons to your login form:
-```erb
-<%# app/views/sessions/new.html.erb %>
-<h1>Sign In</h1>
-<%# Your existing login form... %>
-<div class="oauth-buttons">
-  <p>Or sign in with:</p>
-  <%= clavis_oauth_button :google %>
-  <%= clavis_oauth_button :github %>
-</div>
-```
-### Customize button appearance:
-```erb
-<%= clavis_oauth_button :google, text: "Continue with Google", class: "my-custom-button" %>
-```
-## Route Configuration
-Add the necessary routes to your application:
-```ruby
-# config/routes.rb
-Rails.application.routes.draw do
-  # Your existing routes...
-  # OAuth routes
-  get '/auth/:provider', to: 'sessions#oauth_authorize', as: :auth
-  get '/auth/:provider/callback', to: 'sessions#oauth_callback'
-end
-```
-## Working with Multiple Authentication Methods
-When a user signs in with OAuth, you'll need to decide how to handle users who might already have password-based accounts:
-### Email Matching Strategy
-This is the default strategy in Clavis - when a user signs in with OAuth:
-1. Clavis tries to find an existing `OauthIdentity` for the provider/uid
-2. If not found, it looks for a user with a matching email address
-3. If a user with matching email is found, it associates the OAuth identity with that user
-4. If no user is found, it creates a new user and associates the OAuth identity
-### Linking Accounts
-You might want to allow users to link multiple OAuth providers to their account:
-```ruby
-# app/controllers/profiles_controller.rb
-def link_oauth
-  # Store the user_id in the session
-  session[:linking_user_id] = current_user.id
-  # Redirect to the OAuth provider
-  redirect_to auth_path(params[:provider])
-end
-# app/controllers/sessions_controller.rb
-def oauth_callback
-  auth_hash = process_callback(params[:provider])
-  # Check if we're linking an existing account
-  if session[:linking_user_id].present?
-    user = User.find(session[:linking_user_id])
-    session.delete(:linking_user_id)
-    # Find or create the identity
-    identity = Clavis::OauthIdentity.find_or_initialize_by(
-      provider: auth_hash[:provider],
-      uid: auth_hash[:uid]
-    )
-    # Associate with the user
-    identity.user = user
-    identity.auth_data = auth_hash[:info]
-    identity.token = auth_hash[:credentials][:token]
-    identity.refresh_token = auth_hash[:credentials][:refresh_token]
-    identity.expires_at = auth_hash[:credentials][:expires_at] ? Time.at(auth_hash[:credentials][:expires_at]) : nil
-    identity.save!
-    redirect_to edit_profile_path, notice: "Successfully linked #{params[:provider].capitalize} account"
-  else
-    # Normal login flow...
-  end
-end
-```
-## Troubleshooting
-### View Helper Issues
-If you're having trouble with the `clavis_oauth_button` helper, ensure your application helper includes Clavis's view helpers:
-```ruby
-# app/helpers/application_helper.rb
-module ApplicationHelper
-  include Clavis::ViewHelpers
-  # ...
-end
-```
-### Database Issues
-If you see errors about the `clavis_oauth_identities` table, make sure you've run:
-```bash
-rails db:migrate
-```
-### Session Issues
-If you're experiencing session-related issues:
-1. Ensure you're not using `session.clear` which would remove Clavis's state parameters
-2. Consider enabling session rotation in your Clavis configuration:
-```ruby
-Clavis.configure do |config|
-  config.rotate_session_after_login = true
-end
-```
-### Missing Routes
-If you see errors about missing routes for OAuth buttons, ensure you've added:
-```ruby
-get '/auth/:provider', to: 'sessions#oauth_authorize', as: :auth
-get '/auth/:provider/callback', to: 'sessions#oauth_callback'
-```
-### Security Concerns
-For production environments, always ensure:
-1. You're using HTTPS
-2. Your OAuth provider credentials are properly secured (e.g., using Rails credentials)
-3. You've configured allowed redirect hosts in Clavis configuration