clavis 0.7.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: '0099b35bbd28e750464cbe4cd7233af8fb477942f63b44db348cc47af95b8913'
+  data.tar.gz: bda910114b865849eaf40bd25728519d6ed92d41f54ce084d08bfe7bd0dd6431
+SHA512:
+  metadata.gz: 28363d76a1b6edc7597f511b8d3f138c02459bd5cb4abe738a13dfb783142e45b04323ea5ace431079046e2803563e6fdae2399603a4c5c6e1251cd546eded69
+  data.tar.gz: 3906ff1df9637fc33b56020be75b4745739c7e0d2c90403e61c173d8b855da71011c7e6385c1eca17bb54cc3cd0aa80e6b31c026e2288e45b9bb20f65390adcf

data/.actrc

@@ -0,0 +1,4 @@
+-P ubuntu-latest=node:16-buster-slim
+-P ubuntu-24.04=node:16-buster-slim
+--container-architecture linux/amd64
+-b 

data/.cursor/rules/ruby-gem.mdc

@@ -0,0 +1,49 @@
+---
+description: 
+globs: 
+alwaysApply: false
+---
+DO NOT go off on your own adding or changing things beyond the scope of what we have discussed. Always ask for permission first before making extra and undiscussed enhancements.
+
+Prioritize these qualities:
+
+1. Readability – Choose readable methods, functions, use of lambdas over trying to fit everything on one line
+2. Self-documenting – write code and methods that are easily read and understood.
+3. Rails way – Follow ruby and rails conventions and idioms. When creating new models, controllers, mailers, jobs, migrations etc. always use the rails generators i.e. rails g <thing>
+4. Tested – When adding new behavior, write tests to cover this new behavior and ensure they are passing before moving on.
+5. Secure – Write code that is secure and practices safe data handling.
+6. Performant – Write code that is fast and makes the best use of resources.
+
+We follow this process when adding or modifying features:
+1. I provide you with the requirements/changes
+2. You ask clarifying questions
+3. I answer questions
+4. you write new tests for the enhancements/changes
+5. you implement the required behavior
+6. You run the tests and work with me to fix any errors or failures one at a time
+7. we are done when all the tests are passing and I decide that all requirements are met
+8. When I asked you a question just answer do not make changes. Only make changes when I give a command.
+
+Before coding, make a plan for your implementation inside a <thinking> tag
+1. Identify core requirements
+2. Consider 2-3 implementation options
+3. Choose the simplest option that matches the requirements
+4. Verify with these questions:
+  - can this be split into smaller functions?
+  - are there unecessary abstractions?
+  - will this be clear to a junior/mid level dev?
+
+For example:
+<thinking>
+Let me think this through step by step...
+</thinking>
+
+If you get stuck trying to implement something when you are trying to make tests pass, use debugging statements to print out various states and steps in the code and tests so you can evaluate if the state of the code or tests is what you expect it to be.
+
+Debugging with puts or Rails.logger should be your go to tool for solving back and forth test failure issues.
+
+When it comes to mocks and stubs:
+
+- Mocks are for setting expectations about messages received (or not)
+- Stubs are for avoiding messages being sent and returning known values
+

data/.gemignore

@@ -0,0 +1,6 @@
+# Add .gitignore-style patterns here
+rails-app/
+agent/
+tmp/
+*.gem
+.ruby-lsp/

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/.rubocop.yml

@@ -0,0 +1,88 @@
+AllCops:
+  TargetRubyVersion: 3.3
+  SuggestExtensions: false
+  NewCops: enable
+  Exclude:
+    - lib/generators/clavis/templates/**/*
+    - vendor/**/*
+    - bin/**/*
+    - db/**/*
+    - node_modules/**/*
+    - rails-app/**/*
+    - tmp/**/*
+
+# For gems it's typical to declare development dependencies in the gemspec
+Gemspec/DevelopmentDependencies:
+  Enabled: false
+
+Metrics/MethodLength:
+  Max: 45
+  Exclude:
+    - 'spec/**/*'
+    - 'lib/clavis/controllers/concerns/authentication.rb'
+    - 'lib/clavis/providers/base.rb'
+    - 'lib/generators/clavis/user_method/user_method_generator.rb'
+
+Metrics/AbcSize:
+  Max: 45
+  Exclude:
+    - 'spec/**/*'
+    - 'lib/clavis/providers/base.rb'
+    - 'lib/clavis/controllers/concerns/authentication.rb'
+    - 'lib/clavis.rb'
+    - 'lib/generators/clavis/install_generator.rb'
+
+Metrics/CyclomaticComplexity:
+  Max: 20
+  Exclude:
+    - spec/**/*
+
+Metrics/PerceivedComplexity:
+  Max: 20
+  Exclude:
+    - spec/**/*
+
+Metrics/ClassLength:
+  Max: 400
+
+Metrics/ModuleLength:
+  Max: 250
+
+Metrics/BlockLength:
+  Max: 60
+  Exclude:
+    - spec/**/*
+    - clavis.gemspec
+
+Layout/LineLength:
+  Max: 120
+  Exclude:
+    - spec/**/*
+
+Style/Documentation:
+  Enabled: false
+
+Style/StringLiterals:
+  EnforcedStyle: double_quotes
+
+Style/StringLiteralsInInterpolation:
+  EnforcedStyle: double_quotes
+
+Lint/EmptyClass:
+  Exclude:
+    - spec/**/*
+
+# Ignore certain spec files with duplicate methods
+Lint/DuplicateMethods:
+  Exclude:
+    - 'spec/integration/oauth_callback_spec.rb'
+
+# Ignore missing super in test files
+Lint/MissingSuper:
+  Exclude:
+    - 'spec/dummy/app/models/application_record.rb'
+    - 'spec/dummy/app/models/user.rb'
+
+Naming/VariableNumber:
+  Exclude:
+    - 'lib/clavis/engine.rb'

data/.vscode/settings.json

@@ -0,0 +1,22 @@
+{
+  "workbench.colorCustomizations": {
+    "activityBar.activeBackground": "#1cac52",
+    "activityBar.background": "#1cac52",
+    "activityBar.foreground": "#e7e7e7",
+    "activityBar.inactiveForeground": "#e7e7e799",
+    "activityBarBadge.background": "#ece4fb",
+    "activityBarBadge.foreground": "#15202b",
+    "commandCenter.border": "#e7e7e799",
+    "sash.hoverBorder": "#1cac52",
+    "statusBar.background": "#15803d",
+    "statusBar.foreground": "#e7e7e7",
+    "statusBarItem.hoverBackground": "#1cac52",
+    "statusBarItem.remoteBackground": "#15803d",
+    "statusBarItem.remoteForeground": "#e7e7e7",
+    "titleBar.activeBackground": "#15803d",
+    "titleBar.activeForeground": "#e7e7e7",
+    "titleBar.inactiveBackground": "#15803d99",
+    "titleBar.inactiveForeground": "#e7e7e799"
+  },
+  "peacock.color": "#15803d"
+}

data/CHANGELOG.md

@@ -0,0 +1,127 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+## [Unreleased]
+
+### Fixed
+- Fixed HTML escaping issue in `clavis_oauth_button` helper so it works properly with `<%= %>` without requiring `<%== %>`
+- Fixed routing for OAuth providers by respecting configured callback paths instead of hardcoding `/auth/`
+- Improved button rendering to handle different engine mount points and configurations
+- Improved documentation to clarify how OAuth buttons and routes work with the engine
+
+## [0.6.8] - 2024-03-20
+
+### Fixed
+- Fixed route conflict issues in engine mounting
+- Improved route handling with proper tracking of registered routes
+- Replaced global variables with Engine instance variables for route tracking
+- Fixed bcrypt dependency issues in CI test Rails app
+- Updated Rails test app to use the built-in Rails 8 authentication generator
+- Removed oauth_button legacy alias in favor of clavis_oauth_button
+
+## [0.6.7] - 2024-03-19
+
+### Fixed
+- Fixed bcrypt dependency for test Rails application in CI
+- Improved dependency management in test environment
+- Added explicit bcrypt installation to prevent authentication failures
+
+## [0.6.6] - 2024-03-19
+
+### Fixed
+- Fixed CI issues with Rails application testing
+- Improved test suite reliability with better error handling
+- Enhanced Rails generator tests to handle bootsnap dependency
+- Added automatic fixes for common Rails initialization issues
+
+## [0.6.0] - 2024-05-10
+
+### Added
+- Added `oauth_user?` method to `OauthAuthenticatable` concern to easily check if a user has any OAuth identities
+- Added automatic route setup to simplify integration (no need to manually define routes anymore)
+
+### Changed
+- Enhanced the built-in AuthController to handle OAuth flows without requiring a custom controller
+- Improved documentation on route setup and OAuth integration
+- Added Quick Start guides to README and LLMs documentation
+
+## [0.5.2] - 2023-03-18
+
+### Changed
+- Removed unnecessary bigdecimal and mutex_m dependencies
+
+## [0.5.1] - 2023-03-18
+
+### Fixed
+- Updated release workflow to use Ruby 3.3
+- Fixed RuboCop target Ruby version to match required version
+
+## [0.5.0] - 2023-03-18
+
+### Changed
+- Updated to require Rails 8.0 only
+- Updated minimum Ruby version to 3.3.0
+- Removed support for Rails 7.x
+- Simplified serialization code now that we only support Rails 8.0+
+
+## [0.3.4] - 2023-03-18
+
+### Fixed
+- Resolved compatibility issues with Rails 8 eager loading
+- Fixed timezone handling in OauthIdentity expirations
+- Added test coverage for Rails 8.0 and Ruby 3.4
+
+## [0.3.1] - 2023-03-19
+
+### Added
+- Improved provider buttons with proper branding according to each provider's guidelines
+- Enhanced SVG icons for all supported providers with official logos and colors
+- Added branded provider button styles to match each provider's requirements
+- Updated documentation with information about the branded buttons
+
+### Changed
+- Redesigned button CSS to provide a more professional look and feel
+- Refined the display of button icons and text for better alignment
+- Updated the README to clarify information about button styling options
+
+## [0.3.0] - 2023-03-18
+
+### Added
+- Standardized user information extraction from all OAuth providers
+- Added methods to access email, name, and avatar URL from any provider
+- Helper methods on User model via OauthAuthenticatable: `oauth_email`, `oauth_name`, and `oauth_avatar_url`
+- Storage of standardized user info in the auth_data JSON field
+
+## [0.2.3] - 2023-03-25
+
+### Fixed
+- Added missing `process_callback` method to Provider::Base class for handling OAuth callbacks
+- Fixed authorization code validation to handle special characters in Google's OAuth codes
+- Improved JSON parsing to handle both string and hash response bodies from OAuth providers
+- Made token and userinfo validation more permissive to work with various OAuth provider responses
+- Added comprehensive integration tests for the OAuth callback flow
+
+## [0.2.2] - 2023-03-19
+
+### Fixed
+- Added `allow_other_host: true` to OAuth redirects to fix `ActionController::Redirecting::UnsafeRedirectError` errors in Rails 7
+- This ensures compatibility with stricter cross-origin redirect security in newer Rails versions
+
+## [0.2.1] - 2023-03-18
+
+### Changed
+- Namespaced view helper methods to prevent conflicts with Rails form helpers
+  - `oauth_button` -> `clavis_oauth_button`
+  - `provider_svg` -> `clavis_provider_svg`
+- Made view helper inclusion configurable through `config.view_helpers_auto_include` option
+- Updated documentation to reflect the new helper naming and inclusion options
+- Engine configuration now defaults to automatically include view helpers
+
+### Fixed
+- Conflicts between Clavis view helpers and Rails form helpers when using `form_with`
+
+## [0.2.0] - 2023-03-17
+
+### Fixed
+- Module name inconsistency between `Clavis::Models::OauthAuthenticatable` and `Clavis::Models::Concerns::OauthAuthenticatable`

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,3 @@
+# Contributor Covenant Code of Conduct
+
+Don't be a jerk.

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2025 Clayton Lengel-Zigich
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.