devise-passwordless 1.0.1 → 1.0.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +39 -9
- data/app/controllers/devise/passwordless/sessions_controller.rb +6 -2
- data/app/mailers/devise/passwordless/mailer.rb +1 -0
- data/lib/devise/hooks/magic_link_authenticatable.rb +1 -1
- data/lib/devise/passwordless/version.rb +1 -1
- data/lib/devise/passwordless.rb +1 -0
- data/lib/generators/devise/passwordless/install_generator.rb +4 -3
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 87feb45c34ca9664c8bd5658e6a4672be4fff2f42cefa63a0b461ac8c0d379bb
|
|
4
|
+
data.tar.gz: e1b082164084eb153a38e15d2bf89906bbf8aec0e3aa683a60a5e23d1ca811a9
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 5662b42412c7eb3bcaabb5b38990b1fff94e5e97a45726e9e68542e775d806b4f0b84b0e55a55cfb129284991de878140f977f5f0a9816752dbae10ed28949f3
|
|
7
|
+
data.tar.gz: a2989bd93174338c3f21293a3606d3d0a9b36104db645260b037c216bdcf7482ef2593590a7a801a59b13e32895c8b1192125c35606f88ce7f33b1c035eaeb05
|
data/README.md
CHANGED
|
@@ -119,9 +119,10 @@ config.passwordless_tokenizer = "SignedGlobalIDTokenizer"
|
|
|
119
119
|
# generate your own secret value with e.g. `rake secret`
|
|
120
120
|
# config.passwordless_secret_key = nil
|
|
121
121
|
|
|
122
|
-
# When using the :trackable module, set to true to
|
|
123
|
-
# generated before the user's current sign in time to
|
|
124
|
-
# each time you sign in, all existing magic links
|
|
122
|
+
# When using the :trackable module and MessageEncryptorTokenizer, set to true to
|
|
123
|
+
# consider magic link tokens generated before the user's current sign in time to
|
|
124
|
+
# be expired. In other words, each time you sign in, all existing magic links
|
|
125
|
+
# will be considered invalid.
|
|
125
126
|
# config.passwordless_expire_old_tokens_on_sign_in = false
|
|
126
127
|
```
|
|
127
128
|
|
|
@@ -233,12 +234,12 @@ you can write something like this:
|
|
|
233
234
|
|
|
234
235
|
```ruby
|
|
235
236
|
class ApplicationController < ActionController::Base
|
|
236
|
-
def after_magic_link_sent_path_for(
|
|
237
|
-
case
|
|
238
|
-
when
|
|
239
|
-
|
|
240
|
-
when
|
|
241
|
-
|
|
237
|
+
def after_magic_link_sent_path_for(resource_or_scope)
|
|
238
|
+
case Devise::Mapping.find_scope!(resource_or_scope)
|
|
239
|
+
when :user
|
|
240
|
+
some_path
|
|
241
|
+
when :admin
|
|
242
|
+
some_other_path
|
|
242
243
|
end
|
|
243
244
|
end
|
|
244
245
|
end
|
|
@@ -589,9 +590,38 @@ Other Ruby libraries that offer passwordless authentication:
|
|
|
589
590
|
* [passwordless](https://github.com/mikker/passwordless)
|
|
590
591
|
* [magic-link](https://github.com/dvanderbeek/magic-link)
|
|
591
592
|
|
|
593
|
+
## Gem development
|
|
594
|
+
|
|
595
|
+
### Running tests
|
|
596
|
+
|
|
597
|
+
To run the set of basic gem tests, do:
|
|
598
|
+
|
|
599
|
+
```
|
|
600
|
+
$ bundle
|
|
601
|
+
$ bundle exec rake
|
|
602
|
+
```
|
|
603
|
+
|
|
604
|
+
The more important and more thorough tests utilize a "dummy" Rails application.
|
|
605
|
+
|
|
606
|
+
To run this full suite of dummy app tests across all supported versions of Ruby and Rails,
|
|
607
|
+
you can use [nektos/act][] to run the same tests that run in our GitHub Workflow CI:
|
|
608
|
+
|
|
609
|
+
```
|
|
610
|
+
$ act -W .github/workflows/test.yml -P ubuntu-latest=ghcr.io/catthehacker/ubuntu:act-latest --no-cache-server
|
|
611
|
+
```
|
|
612
|
+
|
|
613
|
+
To run only against specific versions of Ruby or Rails, you can use the `--matrix` flag of `act`:
|
|
614
|
+
|
|
615
|
+
```
|
|
616
|
+
$ act -W .github/workflows/test.yml -P ubuntu-latest=ghcr.io/catthehacker/ubuntu:act-latest --no-cache-server --matrix ruby-version:3.2 --matrix rails-version:7 --matrix rails-version:6.1
|
|
617
|
+
```
|
|
618
|
+
|
|
619
|
+
The above example will only run the tests for Rails 7 and Rails 6.1 using Ruby 3.2.
|
|
620
|
+
|
|
592
621
|
## License
|
|
593
622
|
|
|
594
623
|
The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
|
|
595
624
|
|
|
596
625
|
[Devise]: https://github.com/heartcombo/devise
|
|
597
626
|
[devise-i18n]: https://github.com/heartcombo/devise#i18n
|
|
627
|
+
[nektos/act]: https://github.com/nektos/act
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
class Devise::Passwordless::SessionsController < Devise::SessionsController
|
|
2
2
|
def create
|
|
3
|
-
if (self.resource = resource_class.
|
|
4
|
-
|
|
3
|
+
if (self.resource = resource_class.find_for_authentication(email: create_params[:email]))
|
|
4
|
+
send_magic_link(resource)
|
|
5
5
|
if Devise.paranoid
|
|
6
6
|
set_flash_message!(:notice, :magic_link_sent_paranoid)
|
|
7
7
|
else
|
|
@@ -23,6 +23,10 @@ class Devise::Passwordless::SessionsController < Devise::SessionsController
|
|
|
23
23
|
|
|
24
24
|
protected
|
|
25
25
|
|
|
26
|
+
def send_magic_link(resource)
|
|
27
|
+
resource.send_magic_link(remember_me: create_params[:remember_me])
|
|
28
|
+
end
|
|
29
|
+
|
|
26
30
|
def translation_scope
|
|
27
31
|
if action_name == "create"
|
|
28
32
|
"devise.passwordless"
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
# Deny user access when magic link authentication is disabled
|
|
4
4
|
Warden::Manager.after_set_user do |record, warden, options|
|
|
5
|
-
if record && record.respond_to?(:active_for_magic_link_authentication?) && !record.active_for_magic_link_authentication?
|
|
5
|
+
if record && record.respond_to?(:active_for_magic_link_authentication?) && !record.active_for_magic_link_authentication? && warden.winning_strategy.is_a?(Devise::Strategies::MagicLinkAuthenticatable)
|
|
6
6
|
scope = options[:scope]
|
|
7
7
|
warden.logout(scope)
|
|
8
8
|
throw :warden, scope: scope, message: record.magic_link_inactive_message
|
data/lib/devise/passwordless.rb
CHANGED
|
@@ -33,9 +33,10 @@ module Devise::Passwordless
|
|
|
33
33
|
# generate your own secret value with e.g. `rake secret`
|
|
34
34
|
# config.passwordless_secret_key = nil
|
|
35
35
|
|
|
36
|
-
# When using the :trackable module, set to true to
|
|
37
|
-
# generated before the user's current sign in time to
|
|
38
|
-
# each time you sign in, all existing magic links
|
|
36
|
+
# When using the :trackable module and MessageEncryptorTokenizer, set to true to
|
|
37
|
+
# consider magic link tokens generated before the user's current sign in time to
|
|
38
|
+
# be expired. In other words, each time you sign in, all existing magic links
|
|
39
|
+
# will be considered invalid.
|
|
39
40
|
# config.passwordless_expire_old_tokens_on_sign_in = false
|
|
40
41
|
CONFIG
|
|
41
42
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: devise-passwordless
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Abe Voelker
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-05-01 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: devise
|
|
@@ -101,7 +101,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
101
101
|
- !ruby/object:Gem::Version
|
|
102
102
|
version: '0'
|
|
103
103
|
requirements: []
|
|
104
|
-
rubygems_version: 3.4.
|
|
104
|
+
rubygems_version: 3.4.19
|
|
105
105
|
signing_key:
|
|
106
106
|
specification_version: 4
|
|
107
107
|
summary: Passwordless (email-only) login strategy for Devise
|