clearance 0.8.4 → 0.8.5

data/test/controllers/users_controller_test.rb

@@ -0,0 +1,65 @@
+require 'test_helper'
+
+class UsersControllerTest < ActionController::TestCase
+
+  tests Clearance::UsersController
+
+  should_filter_params :password
+
+  context "when signed out" do
+    setup { sign_out }
+
+    context "on GET to #new" do
+      setup { get :new }
+
+      should_respond_with :success
+      should_render_template :new
+      should_not_set_the_flash
+
+      should_display_a_sign_up_form
+    end
+
+    context "on GET to #new with email" do
+      setup do
+        @email = "a@example.com"
+        get :new, :user => { :email => @email }
+      end
+
+      should "set assigned user's email" do
+        assert_equal @email, assigns(:user).email
+      end
+    end
+
+    context "on POST to #create with valid attributes" do
+      setup do
+        user_attributes = Factory.attributes_for(:user)
+        post :create, :user => user_attributes
+      end
+
+      should_assign_to :user
+      should_change 'User.count', :by => 1
+
+      should "send the confirmation email" do
+        assert_sent_email do |email|
+          email.subject =~ /account confirmation/i
+        end
+      end
+
+      should_set_the_flash_to /confirm/i
+      should_redirect_to_url_after_create
+    end
+  end
+
+  signed_in_user_context do
+    context "GET to new" do
+      setup { get :new }
+      should_redirect_to("the home page") { root_url }
+    end
+
+    context "POST to create" do
+      setup { post :create, :user => {} }
+      should_redirect_to("the home page") { root_url }
+    end
+  end
+
+end

data/test/models/clearance_mailer_test.rb

@@ -0,0 +1,55 @@
+require 'test_helper'
+
+class ClearanceMailerTest < ActiveSupport::TestCase
+
+  context "A change password email" do
+    setup do
+      @user  = Factory(:user)
+      @email = ClearanceMailer.create_change_password @user
+    end
+
+    should "be from DO_NOT_REPLY" do
+      assert_match /#{@email.from[0]}/i, Clearance.configuration.mailer_sender
+    end
+
+    should "be sent to user" do
+      assert_match /#{@user.email}/i, @email.to.first
+    end
+
+    should "contain a link to edit the user's password" do
+      host = ActionMailer::Base.default_url_options[:host]
+      regexp = %r{http://#{host}/users/#{@user.id}/password/edit\?token=#{@user.confirmation_token}}
+      assert_match regexp, @email.body
+    end
+
+    should "set its subject" do
+      assert_match /Change your password/, @email.subject
+    end
+  end
+
+  context "A confirmation email" do
+    setup do
+      @user  = Factory(:user)
+      @email = ClearanceMailer.create_confirmation @user
+    end
+
+    should "be from DO_NOT_REPLY" do
+      assert_match /#{@email.from[0]}/i, Clearance.configuration.mailer_sender
+    end
+
+    should "be sent to user" do
+      assert_match /#{@user.email}/i, @email.to.first
+    end
+
+    should "set its subject" do
+      assert_match /Account confirmation/, @email.subject
+    end
+
+    should "contain a link to confirm the user's account" do
+      host = ActionMailer::Base.default_url_options[:host]
+      regexp = %r{http://#{host}/users/#{@user.id}/confirmation/new\?token=#{@user.confirmation_token}}
+      assert_match regexp, @email.body
+    end
+  end
+
+end

data/test/models/user_test.rb

@@ -0,0 +1,227 @@
+require 'test_helper'
+
+class UserTest < ActiveSupport::TestCase
+
+  # signing up
+
+  context "When signing up" do
+    should_validate_presence_of :email, :password
+    should_allow_values_for     :email, "foo@example.com"
+    should_not_allow_values_for :email, "foo"
+    should_not_allow_values_for :email, "example.com"
+
+    should "require password confirmation on create" do
+      user = Factory.build(:user, :password              => 'blah',
+                                  :password_confirmation => 'boogidy')
+      assert ! user.save
+      assert user.errors.on(:password)
+    end
+
+    should "require non blank password confirmation on create" do
+      user = Factory.build(:user, :password              => 'blah',
+                                  :password_confirmation => '')
+      assert ! user.save
+      assert user.errors.on(:password)
+    end
+
+    should "initialize salt" do
+      assert_not_nil Factory(:user).salt
+    end
+
+    should "initialize confirmation token" do
+      assert_not_nil Factory(:user).confirmation_token
+    end
+
+    context "encrypt password" do
+      setup do
+        @salt = "salt"
+        @user = Factory.build(:user, :salt => @salt)
+        def @user.initialize_salt; end
+        @user.save!
+        @password = @user.password
+
+        @user.send(:encrypt, @password)
+        @expected = Digest::SHA1.hexdigest("--#{@salt}--#{@password}--")
+      end
+
+      should "create an encrypted password using SHA1 encryption" do
+        assert_equal @expected, @user.encrypted_password
+      end
+    end
+
+    should "store email in exact case" do
+      user = Factory(:user, :email => "John.Doe@example.com")
+      assert_equal "John.Doe@example.com", user.email
+    end
+
+    should "send the confirmation email" do
+      assert_sent_email do |email|
+        email.subject =~ /account confirmation/i
+      end
+    end
+  end
+
+  context "When signing up with email already confirmed" do
+    setup do
+      ActionMailer::Base.deliveries.clear
+      Factory(:user, :email_confirmed => true)
+    end
+
+    should "not send the confirmation email" do
+      assert_did_not_send_email
+    end
+  end
+
+  context "When multiple users have signed up" do
+    setup { @user = Factory(:user) }
+    should_validate_uniqueness_of :email
+  end
+
+  # confirming email
+
+  context "A user without email confirmation" do
+    setup do
+      @user = Factory(:user)
+      assert ! @user.email_confirmed?
+    end
+
+    context "after #confirm_email!" do
+      setup do
+        assert @user.confirm_email!
+        @user.reload
+      end
+
+      should "have confirmed their email" do
+        assert @user.email_confirmed?
+      end
+
+      should "reset confirmation token" do
+        assert_nil @user.confirmation_token
+      end
+    end
+  end
+
+  # authenticating
+
+  context "A user" do
+    setup do
+      @user     = Factory(:user)
+      @password = @user.password
+    end
+
+    should "authenticate with good credentials" do
+      assert ::User.authenticate(@user.email, @password)
+      assert @user.authenticated?(@password)
+    end
+
+    should "not authenticate with bad credentials" do
+      assert ! ::User.authenticate(@user.email, 'bad_password')
+      assert ! @user.authenticated?('bad_password')
+    end
+  end
+
+  # remember me
+
+  context "When authenticating with remember_me!" do
+    setup do
+      @user  = Factory(:email_confirmed_user)
+      assert_nil @user.remember_token
+      @user.remember_me!
+    end
+
+    should "set the remember token" do
+      assert_not_nil @user.remember_token
+    end
+  end
+
+  # updating password
+
+  context "An email confirmed user" do
+    setup do
+      @user = Factory(:email_confirmed_user)
+      @old_encrypted_password = @user.encrypted_password
+    end
+
+    context "who updates password with confirmation" do
+      setup do
+        @user.update_password("new_password", "new_password")
+      end
+
+      should "change encrypted password" do
+        assert_not_equal @user.encrypted_password,
+                         @old_encrypted_password
+      end
+    end
+  end
+
+  should "not generate the same remember token for users with the same password at the same time" do
+    password    = 'secret'
+    first_user  = Factory(:email_confirmed_user,
+                          :password              => password,
+                          :password_confirmation => password)
+    second_user = Factory(:email_confirmed_user,
+                          :password              => password,
+                          :password_confirmation => password)
+
+    Time.stubs(:now => Time.now)
+    first_user.remember_me!
+    second_user.remember_me!
+
+    assert_not_equal first_user.remember_token, second_user.remember_token
+  end
+
+  # recovering forgotten password
+
+  context "An email confirmed user" do
+    setup do
+      @user = Factory(:email_confirmed_user)
+      @old_encrypted_password = @user.encrypted_password
+      @user.confirm_email!
+    end
+
+    context "who requests password reminder" do
+      setup do
+        assert_nil @user.confirmation_token
+        @user.forgot_password!
+      end
+
+      should "generate confirmation token" do
+        assert_not_nil @user.confirmation_token
+      end
+
+      context "and then updates password" do
+        context 'with confirmation' do
+          setup do
+            @user.update_password("new_password", "new_password")
+          end
+
+          should "change encrypted password" do
+            assert_not_equal @user.encrypted_password,
+                             @old_encrypted_password
+          end
+
+          should "clear confirmation token" do
+            assert_nil @user.confirmation_token
+          end
+        end
+
+        context 'without confirmation' do
+          setup do
+            @user.update_password("new_password", "")
+          end
+
+          should "not change encrypted password" do
+            assert_equal @user.encrypted_password,
+                         @old_encrypted_password
+          end
+
+          should "not clear confirmation token" do
+            assert_not_nil @user.confirmation_token
+          end
+        end
+      end
+    end
+
+  end
+
+end

data/test/rails_root/app/controllers/accounts_controller.rb

@@ -0,0 +1,10 @@
+class AccountsController < ApplicationController
+   before_filter :authenticate
+
+   def edit
+   end
+
+   def create
+     redirect_to edit_account_path
+   end
+end

data/test/rails_root/app/controllers/application_controller.rb

@@ -0,0 +1,5 @@
+class ApplicationController < ActionController::Base
+  helper :all
+  protect_from_forgery
+  include Clearance::Authentication
+end

data/test/rails_root/app/helpers/application_helper.rb

@@ -0,0 +1,5 @@
+module ApplicationHelper
+  def body_class
+    "#{controller.controller_name} #{controller.controller_name}-#{controller.action_name}"
+  end
+end

data/test/rails_root/app/helpers/confirmations_helper.rb

@@ -0,0 +1,2 @@
+module ConfirmationsHelper
+end

data/test/rails_root/app/helpers/passwords_helper.rb

@@ -0,0 +1,2 @@
+module PasswordsHelper
+end

data/test/rails_root/app/models/user.rb

@@ -0,0 +1,3 @@
+class User < ActiveRecord::Base
+  include Clearance::User
+end

data/test/rails_root/config/boot.rb

@@ -0,0 +1,110 @@
+# Don't change this file!
+# Configure your app in config/environment.rb and config/environments/*.rb
+
+RAILS_ROOT = "#{File.dirname(__FILE__)}/.." unless defined?(RAILS_ROOT)
+
+module Rails
+  class << self
+    def boot!
+      unless booted?
+        preinitialize
+        pick_boot.run
+      end
+    end
+
+    def booted?
+      defined? Rails::Initializer
+    end
+
+    def pick_boot
+      (vendor_rails? ? VendorBoot : GemBoot).new
+    end
+
+    def vendor_rails?
+      File.exist?("#{RAILS_ROOT}/vendor/rails")
+    end
+
+    def preinitialize
+      load(preinitializer_path) if File.exist?(preinitializer_path)
+    end
+
+    def preinitializer_path
+      "#{RAILS_ROOT}/config/preinitializer.rb"
+    end
+  end
+
+  class Boot
+    def run
+      load_initializer
+      Rails::Initializer.run(:set_load_path)
+    end
+  end
+
+  class VendorBoot < Boot
+    def load_initializer
+      require "#{RAILS_ROOT}/vendor/rails/railties/lib/initializer"
+      Rails::Initializer.run(:install_gem_spec_stubs)
+      Rails::GemDependency.add_frozen_gem_path
+    end
+  end
+
+  class GemBoot < Boot
+    def load_initializer
+      self.class.load_rubygems
+      load_rails_gem
+      require 'initializer'
+    end
+
+    def load_rails_gem
+      if version = self.class.gem_version
+        gem 'rails', version
+      else
+        gem 'rails'
+      end
+    rescue Gem::LoadError => load_error
+      $stderr.puts %(Missing the Rails #{version} gem. Please `gem install -v=#{version} rails`, update your RAILS_GEM_VERSION setting in config/environment.rb for the Rails version you do have installed, or comment out RAILS_GEM_VERSION to use the latest version installed.)
+      exit 1
+    end
+
+    class << self
+      def rubygems_version
+        Gem::RubyGemsVersion rescue nil
+      end
+
+      def gem_version
+        if defined? RAILS_GEM_VERSION
+          RAILS_GEM_VERSION
+        elsif ENV.include?('RAILS_GEM_VERSION')
+          ENV['RAILS_GEM_VERSION']
+        else
+          parse_gem_version(read_environment_rb)
+        end
+      end
+
+      def load_rubygems
+        require 'rubygems'
+        min_version = '1.3.1'
+        unless rubygems_version >= min_version
+          $stderr.puts %Q(Rails requires RubyGems >= #{min_version} (you have #{rubygems_version}). Please `gem update --system` and try again.)
+          exit 1
+        end
+
+      rescue LoadError
+        $stderr.puts %Q(Rails requires RubyGems >= #{min_version}. Please install RubyGems and try again: http://rubygems.rubyforge.org)
+        exit 1
+      end
+
+      def parse_gem_version(text)
+        $1 if text =~ /^[^#]*RAILS_GEM_VERSION\s*=\s*["']([!~<>=]*\s*[\d.]+)["']/
+      end
+
+      private
+        def read_environment_rb
+          File.read("#{RAILS_ROOT}/config/environment.rb")
+        end
+    end
+  end
+end
+
+# All that for this:
+Rails.boot!