clearance_http_auth 0.0.1

data/test/dummy/public/javascripts/rails.js

@@ -0,0 +1,175 @@
+(function() {
+  // Technique from Juriy Zaytsev
+  // http://thinkweb2.com/projects/prototype/detecting-event-support-without-browser-sniffing/
+  function isEventSupported(eventName) {
+    var el = document.createElement('div');
+    eventName = 'on' + eventName;
+    var isSupported = (eventName in el);
+    if (!isSupported) {
+      el.setAttribute(eventName, 'return;');
+      isSupported = typeof el[eventName] == 'function';
+    }
+    el = null;
+    return isSupported;
+  }
+
+  function isForm(element) {
+    return Object.isElement(element) && element.nodeName.toUpperCase() == 'FORM'
+  }
+
+  function isInput(element) {
+    if (Object.isElement(element)) {
+      var name = element.nodeName.toUpperCase()
+      return name == 'INPUT' || name == 'SELECT' || name == 'TEXTAREA'
+    }
+    else return false
+  }
+
+  var submitBubbles = isEventSupported('submit'),
+      changeBubbles = isEventSupported('change')
+
+  if (!submitBubbles || !changeBubbles) {
+    // augment the Event.Handler class to observe custom events when needed
+    Event.Handler.prototype.initialize = Event.Handler.prototype.initialize.wrap(
+      function(init, element, eventName, selector, callback) {
+        init(element, eventName, selector, callback)
+        // is the handler being attached to an element that doesn't support this event?
+        if ( (!submitBubbles && this.eventName == 'submit' && !isForm(this.element)) ||
+             (!changeBubbles && this.eventName == 'change' && !isInput(this.element)) ) {
+          // "submit" => "emulated:submit"
+          this.eventName = 'emulated:' + this.eventName
+        }
+      }
+    )
+  }
+
+  if (!submitBubbles) {
+    // discover forms on the page by observing focus events which always bubble
+    document.on('focusin', 'form', function(focusEvent, form) {
+      // special handler for the real "submit" event (one-time operation)
+      if (!form.retrieve('emulated:submit')) {
+        form.on('submit', function(submitEvent) {
+          var emulated = form.fire('emulated:submit', submitEvent, true)
+          // if custom event received preventDefault, cancel the real one too
+          if (emulated.returnValue === false) submitEvent.preventDefault()
+        })
+        form.store('emulated:submit', true)
+      }
+    })
+  }
+
+  if (!changeBubbles) {
+    // discover form inputs on the page
+    document.on('focusin', 'input, select, texarea', function(focusEvent, input) {
+      // special handler for real "change" events
+      if (!input.retrieve('emulated:change')) {
+        input.on('change', function(changeEvent) {
+          input.fire('emulated:change', changeEvent, true)
+        })
+        input.store('emulated:change', true)
+      }
+    })
+  }
+
+  function handleRemote(element) {
+    var method, url, params;
+
+    var event = element.fire("ajax:before");
+    if (event.stopped) return false;
+
+    if (element.tagName.toLowerCase() === 'form') {
+      method = element.readAttribute('method') || 'post';
+      url    = element.readAttribute('action');
+      params = element.serialize();
+    } else {
+      method = element.readAttribute('data-method') || 'get';
+      url    = element.readAttribute('href');
+      params = {};
+    }
+
+    new Ajax.Request(url, {
+      method: method,
+      parameters: params,
+      evalScripts: true,
+
+      onComplete:    function(request) { element.fire("ajax:complete", request); },
+      onSuccess:     function(request) { element.fire("ajax:success",  request); },
+      onFailure:     function(request) { element.fire("ajax:failure",  request); }
+    });
+
+    element.fire("ajax:after");
+  }
+
+  function handleMethod(element) {
+    var method = element.readAttribute('data-method'),
+        url = element.readAttribute('href'),
+        csrf_param = $$('meta[name=csrf-param]')[0],
+        csrf_token = $$('meta[name=csrf-token]')[0];
+
+    var form = new Element('form', { method: "POST", action: url, style: "display: none;" });
+    element.parentNode.insert(form);
+
+    if (method !== 'post') {
+      var field = new Element('input', { type: 'hidden', name: '_method', value: method });
+      form.insert(field);
+    }
+
+    if (csrf_param) {
+      var param = csrf_param.readAttribute('content'),
+          token = csrf_token.readAttribute('content'),
+          field = new Element('input', { type: 'hidden', name: param, value: token });
+      form.insert(field);
+    }
+
+    form.submit();
+  }
+
+
+  document.on("click", "*[data-confirm]", function(event, element) {
+    var message = element.readAttribute('data-confirm');
+    if (!confirm(message)) event.stop();
+  });
+
+  document.on("click", "a[data-remote]", function(event, element) {
+    if (event.stopped) return;
+    handleRemote(element);
+    event.stop();
+  });
+
+  document.on("click", "a[data-method]", function(event, element) {
+    if (event.stopped) return;
+    handleMethod(element);
+    event.stop();
+  });
+
+  document.on("submit", function(event) {
+    var element = event.findElement(),
+        message = element.readAttribute('data-confirm');
+    if (message && !confirm(message)) {
+      event.stop();
+      return false;
+    }
+
+    var inputs = element.select("input[type=submit][data-disable-with]");
+    inputs.each(function(input) {
+      input.disabled = true;
+      input.writeAttribute('data-original-value', input.value);
+      input.value = input.readAttribute('data-disable-with');
+    });
+
+    var element = event.findElement("form[data-remote]");
+    if (element) {
+      handleRemote(element);
+      event.stop();
+    }
+  });
+
+  document.on("ajax:after", "form", function(event, element) {
+    var inputs = element.select("input[type=submit][disabled=true][data-disable-with]");
+    inputs.each(function(input) {
+      input.value = input.readAttribute('data-original-value');
+      input.removeAttribute('data-original-value');
+      input.disabled = false;
+    });
+  });
+})();

data/test/dummy/script/rails

@@ -0,0 +1,6 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
+
+APP_PATH = File.expand_path('../../config/application',  __FILE__)
+require File.expand_path('../../config/boot',  __FILE__)
+require 'rails/commands'

data/test/dummy/test/factories/clearance.rb

@@ -0,0 +1,13 @@
+Factory.sequence :email do |n|
+  "user#{n}@example.com"
+end
+
+Factory.define :user do |user|
+  user.email                 { Factory.next :email }
+  user.password              { "password" }
+  user.password_confirmation { "password" }
+end
+
+Factory.define :email_confirmed_user, :parent => :user do |user|
+  user.email_confirmed { true }
+end

data/test/dummy/tmp/capybara/capybara-20101221172010.html

@@ -0,0 +1,42 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  
+  <script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/prototype.js?1292943023" type="text/javascript"></script>
+<script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/effects.js?1292943023" type="text/javascript"></script>
+<script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/dragdrop.js?1292943023" type="text/javascript"></script>
+<script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/controls.js?1292943023" type="text/javascript"></script>
+<script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/rails.js?1292943023" type="text/javascript"></script>
+<script src="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/javascripts/application.js?1292943023" type="text/javascript"></script>
+  
+</head>
+<body>
+
+<h2>Sign in</h2>
+
+<form accept-charset="UTF-8" action="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/session" method="post"><div style="margin:0;padding:0;display:inline"><input name="utf8" type="hidden" value="&#x2713;" /></div>
+  <div class="text_field">
+    <label for="session_email">Email</label>
+    <input id="session_email" name="session[email]" size="30" type="text" />
+  </div>
+  <div class="text_field">
+    <label for="session_password">Password</label>
+    <input id="session_password" name="session[password]" size="30" type="password" />
+  </div>
+  <div class="submit_field">
+    <input data-disable-with="Please wait..." id="session_submit" name="commit" type="submit" value="Sign in" />
+  </div>
+</form>
+<ul>
+  <li>
+    <a href="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/sign_up">Sign up</a>
+  </li>
+  <li>
+    <a href="/Users/karmi/Playground/Rails/PluginsDevelopment/clearance_http_auth/test/dummy/public/passwords/new">Forgot password?</a>
+  </li>
+</ul>
+
+
+</body>
+</html>

data/test/dummy/tmp/pids/server.pid

@@ -0,0 +1 @@
+18440

data/test/integration/api_test.rb

@@ -0,0 +1,63 @@
+require 'test_helper'
+require 'dummy/test/factories/clearance'
+
+class APITest < ActiveSupport::TestCase
+
+  include Rack::Test::Methods
+
+  def app
+    Dummy::Application
+  end
+
+  def setup
+    Factory.create(:email_confirmed_user,
+                   :email => 'test@example.com',
+                   :password => 'password',
+                   :password_confirmation => 'password')
+  end
+
+  context "When navigating the API, it" do
+
+    should "deny access when no credentials are set" do
+      get '/entrances.json'
+      assert_equal 401, last_response.status
+    end
+
+    should "deny access when bad credentials are set" do
+      authorize 'test@example.com', 'BADSANTA'
+      get '/entrances.json'
+      assert_equal 401, last_response.status
+    end
+
+    should "grant access when proper credentials are set" do
+      authorize 'test@example.com', 'password'
+      get '/entrances.json'
+      assert_equal 200, last_response.status
+      assert_match /Welcome/, last_response.body
+    end
+
+    should "grant access when proper credentials are set for POSTing" do
+      authorize 'test@example.com', 'password'
+      post '/entrances.json'
+      assert_equal 201, last_response.status
+      assert_match /Created/, last_response.body
+    end
+
+    should "invoke HTTP authorization for formats added in configuration" do
+      authorize 'test@example.com', 'password'
+      get '/entrances.csv'
+      assert_equal 200, last_response.status
+      assert_match /Welcome/, last_response.body
+    end
+
+    should "not invoke HTTP authorization for incorrect format" do
+      authorize 'test@example.com', 'password'
+      get '/entrances.santa'
+      assert_equal 302, last_response.status
+      follow_redirect!
+      assert_match /Sign in/, last_response.body
+    end
+
+  end
+
+end

data/test/integration/navigation_test.rb

@@ -0,0 +1,39 @@
+require 'test_helper'
+require 'dummy/test/factories/clearance'
+
+class NavigationTest < ActiveSupport::IntegrationCase
+
+  setup do
+    Factory.create(:email_confirmed_user,
+                   :email => 'test@example.com',
+                   :password => 'password',
+                   :password_confirmation => 'password')
+  end
+
+  context "When navigating the application, it" do
+
+    should "display login form" do
+      visit "/"
+      page.has_content?('Sign in')
+    end
+
+    should "grant access with proper credentials" do
+      visit   "/"
+      fill_in 'Email',    :with => 'test@example.com'
+      fill_in 'Password', :with => 'password'
+      click_link_or_button "Sign in"
+      assert  page.has_content?('Welcome!'), "does not display content"
+    end
+
+    should "deny access with wrong credentials" do
+      visit    "/"
+      fill_in  'Email',    :with => 'test@example.com'
+      fill_in  'Password', :with => 'BADSANTA'
+      click_link_or_button "Sign in"
+      assert ! page.has_content?('Welcome!'), "displays protected content"
+      assert   page.has_content?('Sign in'),  "does not display login form"
+    end
+
+  end
+
+end

data/test/support/integration_case.rb

@@ -0,0 +1,5 @@
+# Define a bare test case to use with Capybara
+class ActiveSupport::IntegrationCase < ActiveSupport::TestCase
+  include Capybara
+  include Rails.application.routes.url_helpers
+end

data/test/test_helper.rb

@@ -0,0 +1,29 @@
+# Configure Rails Envinronment
+ENV["RAILS_ENV"] = "test"
+
+require File.expand_path("../dummy/config/environment.rb",  __FILE__)
+require "rails/test_help"
+
+Rails.backtrace_cleaner.remove_silencers!
+
+# Configure capybara for integration testing
+require "capybara/rails"
+Capybara.default_driver   = :rack_test
+Capybara.default_selector = :css
+
+# Load test infrastructure
+require 'shoulda'
+require 'turn'
+require 'factory_girl'
+require 'rack/test'
+
+# Run any available migration
+ActiveRecord::Migrator.migrate File.expand_path("../dummy/db/migrate/", __FILE__)
+
+# Load support files
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }
+
+# Clear database when the test ends
+def teardown
+  User.delete_all
+end

metadata

@@ -0,0 +1,215 @@
+--- !ruby/object:Gem::Specification 
+name: clearance_http_auth
+version: !ruby/object:Gem::Version 
+  hash: 29
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 1
+  version: 0.0.1
+platform: ruby
+authors: 
+- Karel Minarik
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-12-26 00:00:00 +01:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 23
+        segments: 
+        - 1
+        - 0
+        - 0
+        version: 1.0.0
+  requirement: *id001
+  name: bundler
+  type: :runtime
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">"
+      - !ruby/object:Gem::Version 
+        hash: 25
+        segments: 
+        - 0
+        - 9
+        version: "0.9"
+  requirement: *id002
+  name: clearance
+  type: :runtime
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">"
+      - !ruby/object:Gem::Version 
+        hash: 11
+        segments: 
+        - 1
+        - 2
+        version: "1.2"
+  requirement: *id003
+  name: rack
+  type: :runtime
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id004
+  name: thin
+  type: :development
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id005
+  name: turn
+  type: :development
+- !ruby/object:Gem::Dependency 
+  prerelease: false
+  version_requirements: &id006 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id006
+  name: shoulda
+  type: :development
+description: "   Simple, instant HTTP Basic Authentication for applications\n   using Clearance [https://github.com/thoughtbot/clearance].\n"
+email: karmi@karmi.cz
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.rdoc
+- MIT-LICENSE
+files: 
+- README.rdoc
+- Rakefile
+- MIT-LICENSE
+- lib/clearance_http_auth/configuration.rb
+- lib/clearance_http_auth/current_user_override.rb
+- lib/clearance_http_auth/engine.rb
+- lib/clearance_http_auth/middleware.rb
+- lib/clearance_http_auth/version.rb
+- lib/clearance_http_auth.rb
+- test/clearance_http_auth_test.rb
+- test/dummy/app/controllers/application_controller.rb
+- test/dummy/app/controllers/entrances_controller.rb
+- test/dummy/app/helpers/application_helper.rb
+- test/dummy/app/helpers/entrance_helper.rb
+- test/dummy/app/models/user.rb
+- test/dummy/app/views/layouts/application.html.erb
+- test/dummy/config/application.rb
+- test/dummy/config/boot.rb
+- test/dummy/config/database.yml
+- test/dummy/config/environment.rb
+- test/dummy/config/environments/development.rb
+- test/dummy/config/environments/production.rb
+- test/dummy/config/environments/test.rb
+- test/dummy/config/initializers/backtrace_silencers.rb
+- test/dummy/config/initializers/clearance.rb
+- test/dummy/config/initializers/inflections.rb
+- test/dummy/config/initializers/mime_types.rb
+- test/dummy/config/initializers/secret_token.rb
+- test/dummy/config/initializers/session_store.rb
+- test/dummy/config/locales/en.yml
+- test/dummy/config/routes.rb
+- test/dummy/config.ru
+- test/dummy/db/development.sqlite3
+- test/dummy/db/migrate/20101221153914_clearance_create_users.rb
+- test/dummy/db/schema.rb
+- test/dummy/db/test.sqlite3
+- test/dummy/log/development.log
+- test/dummy/log/production.log
+- test/dummy/log/server.log
+- test/dummy/log/test.log
+- test/dummy/public/404.html
+- test/dummy/public/422.html
+- test/dummy/public/500.html
+- test/dummy/public/favicon.ico
+- test/dummy/public/javascripts/application.js
+- test/dummy/public/javascripts/controls.js
+- test/dummy/public/javascripts/dragdrop.js
+- test/dummy/public/javascripts/effects.js
+- test/dummy/public/javascripts/prototype.js
+- test/dummy/public/javascripts/rails.js
+- test/dummy/Rakefile
+- test/dummy/script/rails
+- test/dummy/test/factories/clearance.rb
+- test/dummy/tmp/capybara/capybara-20101221172010.html
+- test/dummy/tmp/pids/server.pid
+- test/integration/api_test.rb
+- test/integration/navigation_test.rb
+- test/support/integration_case.rb
+- test/test_helper.rb
+has_rdoc: true
+homepage: http://github.com/karmi/clearance_http_auth
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 23
+      segments: 
+      - 1
+      - 3
+      - 6
+      version: 1.3.6
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: HTTP Basic Authentication for Clearance
+test_files: []
+