devise-secure_password 1.0.2 → 1.0.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA256:
-  metadata.gz: c23c3cb825e696e08b4d7372a7fe9937efe3e020e3489beff3771ff9d82f5ea1
-  data.tar.gz: 1a6eeafafd3c8dcd5f11b237996a765a516072459faf072f2a67b21fbb547ef6
+SHA1:
+  metadata.gz: 4418ca0d39c77406b7c40fd212e7ea9d9350161e
+  data.tar.gz: 790c1e7930482d7360db0c30e5d8843ffcd379c8
 SHA512:
-  metadata.gz: 7fc0d878a23ebc82c33fc627d3e85f1543d8313d72d8c734dddfd938e7e0499106bd195eb7aca83a5475cb948b4b65d3f07ab319d4b2bcf72ebd4c5ff8b33e6d
-  data.tar.gz: 3c315663ba6d03acce331c201d618f0de380e0ba6472a2a71116672b019db000b845262fb851717656f391d7b006cab9c932680f8b0f089ab3290204f0d18ff6
+  metadata.gz: 4ad7c9e4ea88d6973aeabc5120fbd0132f1a724218a1de433f7d32b746af9d19c8be0022ad51833b7e2dbca657ba87bc07fd8e975e50f636148747baf1f1c580
+  data.tar.gz: 570c5ed613307d3c26c242cc1f674913f81dc40ac0c3e7610210f8fa6d7e168e673f70dd3d08505e4d80ef62d8aa57058320723d4392f262b982761c2ab10e25

data/Gemfile.lock

@@ -1,280 +1,87 @@
-GIT
-  remote: https://github.com/thoughtbot/shoulda-matchers.git
-  revision: 4b160bd19ecca7f97d7ac22dccd5fde9b0da5a9f
-  branch: rails-5
-  specs:
-    shoulda-matchers (3.1.2)
-      activesupport (>= 4.2.0)
-
 PATH
   remote: .
   specs:
-    devise-secure_password (1.0.2)
+    devise-secure_password (0.9.4)
       devise (>= 4.0.0, < 5.0.0)
       railties (>= 5.0.0, < 6.0.0)
 
 GEM
   remote: https://rubygems.org/
   specs:
-    actioncable (5.1.5)
-      actionpack (= 5.1.5)
-      nio4r (~> 2.0)
-      websocket-driver (~> 0.6.1)
-    actionmailer (5.1.5)
-      actionpack (= 5.1.5)
-      actionview (= 5.1.5)
-      activejob (= 5.1.5)
-      mail (~> 2.5, >= 2.5.4)
-      rails-dom-testing (~> 2.0)
-    actionpack (5.1.5)
-      actionview (= 5.1.5)
-      activesupport (= 5.1.5)
+    actionpack (5.1.4)
+      actionview (= 5.1.4)
+      activesupport (= 5.1.4)
       rack (~> 2.0)
       rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (5.1.5)
-      activesupport (= 5.1.5)
+    actionview (5.1.4)
+      activesupport (= 5.1.4)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.0.3)
-    activejob (5.1.5)
-      activesupport (= 5.1.5)
-      globalid (>= 0.3.6)
-    activemodel (5.1.5)
-      activesupport (= 5.1.5)
-    activerecord (5.1.5)
-      activemodel (= 5.1.5)
-      activesupport (= 5.1.5)
-      arel (~> 8.0)
-    activesupport (5.1.5)
+    activesupport (5.1.4)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (~> 0.7)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
-    addressable (2.5.2)
-      public_suffix (>= 2.0.2, < 4.0)
-    ansi (1.5.0)
-    arel (8.0.0)
-    ast (2.4.0)
     bcrypt (3.1.11)
     builder (3.2.3)
-    capybara (2.18.0)
-      addressable
-      mini_mime (>= 0.1.3)
-      nokogiri (>= 1.3.3)
-      rack (>= 1.0.0)
-      rack-test (>= 0.5.4)
-      xpath (>= 2.0, < 4.0)
-    capybara-screenshot (1.0.18)
-      capybara (>= 1.0, < 3)
-      launchy
-    childprocess (0.8.0)
-      ffi (~> 1.0, >= 1.0.11)
-    coffee-rails (4.2.2)
-      coffee-script (>= 2.2.0)
-      railties (>= 4.0.0)
-    coffee-script (2.4.1)
-      coffee-script-source
-      execjs
-    coffee-script-source (1.12.2)
     concurrent-ruby (1.0.5)
     crass (1.0.3)
-    database_cleaner (1.6.2)
-    devise (4.4.1)
+    devise (4.4.0)
       bcrypt (~> 3.0)
       orm_adapter (~> 0.1)
       railties (>= 4.1.0, < 5.2)
       responders
       warden (~> 1.2.3)
-    diff-lcs (1.3)
-    docile (1.1.5)
-    erubi (1.7.1)
-    erubis (2.7.0)
-    execjs (2.7.0)
-    ffi (1.9.23)
-    flay (2.10.0)
-      erubis (~> 2.7.0)
-      path_expander (~> 1.0)
-      ruby_parser (~> 3.0)
-      sexp_processor (~> 4.0)
-    globalid (0.4.1)
-      activesupport (>= 4.2.0)
-    hirb (0.7.3)
-    i18n (0.9.5)
+    erubi (1.7.0)
+    i18n (0.9.1)
       concurrent-ruby (~> 1.0)
-    json (2.1.0)
-    launchy (2.4.3)
-      addressable (~> 2.3)
-    libv8 (3.16.14.19)
-    loofah (2.2.0)
+    loofah (2.1.1)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
-    mail (2.7.0)
-      mini_mime (>= 0.1.1)
     method_source (0.9.0)
-    mini_mime (1.0.0)
     mini_portile2 (2.3.0)
-    minitest (5.11.3)
-    nio4r (2.2.0)
-    nokogiri (1.8.2)
+    minitest (5.11.1)
+    nokogiri (1.8.1)
       mini_portile2 (~> 2.3.0)
     orm_adapter (0.5.0)
-    parallel (1.12.1)
-    parser (2.5.0.3)
-      ast (~> 2.4.0)
-    path_expander (1.0.2)
-    powerpack (0.1.1)
-    public_suffix (3.0.2)
-    rack (2.0.4)
-    rack-test (0.8.3)
+    rack (2.0.3)
+    rack-test (0.8.2)
       rack (>= 1.0, < 3)
-    rails (5.1.5)
-      actioncable (= 5.1.5)
-      actionmailer (= 5.1.5)
-      actionpack (= 5.1.5)
-      actionview (= 5.1.5)
-      activejob (= 5.1.5)
-      activemodel (= 5.1.5)
-      activerecord (= 5.1.5)
-      activesupport (= 5.1.5)
-      bundler (>= 1.3.0)
-      railties (= 5.1.5)
-      sprockets-rails (>= 2.0.0)
     rails-dom-testing (2.0.3)
       activesupport (>= 4.2.0)
       nokogiri (>= 1.6)
     rails-html-sanitizer (1.0.3)
       loofah (~> 2.0)
-    railties (5.1.5)
-      actionpack (= 5.1.5)
-      activesupport (= 5.1.5)
+    railties (5.1.4)
+      actionpack (= 5.1.4)
+      activesupport (= 5.1.4)
       method_source
       rake (>= 0.8.7)
       thor (>= 0.18.1, < 2.0)
-    rainbow (3.0.0)
     rake (12.3.0)
-    rb-fsevent (0.10.3)
-    rb-inotify (0.9.10)
-      ffi (>= 0.5.0, < 2)
-    ref (2.0.0)
     responders (2.4.0)
       actionpack (>= 4.2.0, < 5.3)
       railties (>= 4.2.0, < 5.3)
-    rspec (3.7.0)
-      rspec-core (~> 3.7.0)
-      rspec-expectations (~> 3.7.0)
-      rspec-mocks (~> 3.7.0)
-    rspec-core (3.7.1)
-      rspec-support (~> 3.7.0)
-    rspec-expectations (3.7.0)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.7.0)
-    rspec-mocks (3.7.0)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.7.0)
-    rspec-rails (3.7.2)
-      actionpack (>= 3.0)
-      activesupport (>= 3.0)
-      railties (>= 3.0)
-      rspec-core (~> 3.7.0)
-      rspec-expectations (~> 3.7.0)
-      rspec-mocks (~> 3.7.0)
-      rspec-support (~> 3.7.0)
-    rspec-support (3.7.1)
-    rspec_junit_formatter (0.3.0)
-      rspec-core (>= 2, < 4, != 2.12.0)
-    rubocop (0.53.0)
-      parallel (~> 1.10)
-      parser (>= 2.5)
-      powerpack (~> 0.1)
-      rainbow (>= 2.2.2, < 4.0)
-      ruby-progressbar (~> 1.7)
-      unicode-display_width (~> 1.0, >= 1.0.1)
-    ruby-progressbar (1.9.0)
-    ruby2ruby (2.4.1)
-      ruby_parser (~> 3.1)
-      sexp_processor (~> 4.6)
-    ruby_parser (3.11.0)
-      sexp_processor (~> 4.9)
-    rubyzip (1.2.1)
-    sass (3.5.5)
-      sass-listen (~> 4.0.0)
-    sass-listen (4.0.0)
-      rb-fsevent (~> 0.9, >= 0.9.4)
-      rb-inotify (~> 0.9, >= 0.9.7)
-    sass-rails (5.0.7)
-      railties (>= 4.0.0, < 6)
-      sass (~> 3.1)
-      sprockets (>= 2.8, < 4.0)
-      sprockets-rails (>= 2.0, < 4.0)
-      tilt (>= 1.1, < 3)
-    selenium-webdriver (3.10.0)
-      childprocess (~> 0.5)
-      rubyzip (~> 1.2)
-    sexp_processor (4.10.1)
-    simplecov (0.15.1)
-      docile (~> 1.1.0)
-      json (>= 1.8, < 3)
-      simplecov-html (~> 0.10.0)
-    simplecov-console (0.4.2)
-      ansi
-      hirb
-      simplecov
-    simplecov-html (0.10.2)
-    sprockets (3.7.1)
-      concurrent-ruby (~> 1.0)
-      rack (> 1, < 3)
-    sprockets-rails (3.2.1)
-      actionpack (>= 4.0)
-      activesupport (>= 4.0)
-      sprockets (>= 3.0.0)
-    sqlite3 (1.3.13)
-    therubyracer (0.12.3)
-      libv8 (~> 3.16.14.15)
-      ref
     thor (0.20.0)
     thread_safe (0.3.6)
-    tilt (2.0.8)
-    tzinfo (1.2.5)
+    tzinfo (1.2.4)
       thread_safe (~> 0.1)
-    unicode-display_width (1.3.0)
     warden (1.2.7)
       rack (>= 1.0)
-    websocket-driver (0.6.5)
-      websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.3)
-    xpath (3.0.0)
-      nokogiri (~> 1.8)
+    yard (0.9.12)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  bundler (~> 1.16, >= 1.16.1)
-  capybara (~> 2.16, >= 2.16.1)
-  capybara-screenshot (~> 1.0, >= 1.0.18)
-  coffee-rails (~> 4.2)
-  database_cleaner (~> 1.6, >= 1.6.2)
-  devise (~> 4.0)
+  bundler (~> 1.16.1)
   devise-secure_password!
-  flay (~> 2.10, >= 2.10.0)
-  launchy (~> 2.4, >= 2.4.3)
-  rails (~> 5.1, >= 5.1.4)
-  rake (~> 12.3)
-  rspec (~> 3.7)
-  rspec-rails (~> 3.7)
-  rspec_junit_formatter (~> 0.3)
-  rubocop (>= 0.49.0)
-  ruby2ruby (~> 2.4, >= 2.4.0)
-  sass-rails (~> 5.0)
-  selenium-webdriver (~> 3.7, >= 3.7.0)
-  shoulda-matchers!
-  simplecov (~> 0.15.1)
-  simplecov-console (~> 0.4.2)
-  sqlite3 (~> 1.3, >= 1.3.13)
-  therubyracer (~> 0.12.3)
+  rake (~> 12.0)
+  yard
 
 BUNDLED WITH
    1.16.1

data/README.md

@@ -147,7 +147,8 @@ The following database migration needs to be applied:
 prompt> rails generate migration create_previous_passwords salt:string encrypted_password:string user:references
 ```
 
-Edit the resulting file to disallow null values for the hash and to add indexes for both hash and user_id fields:
+Edit the resulting file to disallow null values for the hash,add indexes for both hash and user_id fields, and to also
+add the timestamp (created_at, updated_at) fields:
 
 ```ruby
 class CreatePreviousPasswords < ActiveRecord::Migration[5.1]
@@ -194,7 +195,7 @@ prompt> bundle exec rake
 To determine the Ruby on Rails versions supported by this release, run the following commands:
 
 ```bash
-prompt> gem install flay ruby2ruby rubucop rspec
+prompt> gem install flay ruby2ruby rubocop rspec
 prompt> rake test:spec:targets
 
 Available Rails targets: 5.0.6, 5.1.4

data/lib/devise/secure_password/models/password_disallows_frequent_changes.rb

@@ -7,7 +7,7 @@ module Devise
 
       included do
         include ActionView::Helpers::DateHelper
-        validate :validate_password_frequent_change
+        validate :validate_password_frequent_change, if: :password_required?
 
         set_callback(:initialize, :before, :before_resource_initialized)
         set_callback(:initialize, :after, :after_resource_initialized)

data/lib/devise/secure_password/models/password_disallows_frequent_reuse.rb

@@ -12,7 +12,7 @@ module Devise
                  class_name: 'Devise::Models::PreviousPassword',
                  foreign_key: 'user_id',
                  dependent: :destroy
-        validate :validate_password_frequent_reuse
+        validate :validate_password_frequent_reuse, if: :password_required?
 
         set_callback(:save, :before, :before_resource_saved)
         set_callback(:save, :after, :after_resource_saved, if: :dirty_password?)
@@ -53,6 +53,7 @@ module Devise
       end
 
       def dirty_password?
+        return false unless password_required?
         if Rails.version > '5.1'
           saved_change_to_encrypted_password?
         else

data/lib/devise/secure_password/models/password_has_required_content.rb

@@ -8,8 +8,8 @@ module Devise
       LENGTH_MAX = 255
 
       included do
-        validate :validate_password_content
-        validate :validate_password_confirmation_content
+        validate :validate_password_content, if: :password_required?
+        validate :validate_password_confirmation_content, if: :password_required?
       end
 
       def validate_password_content

data/lib/devise/secure_password/version.rb

@@ -1,5 +1,5 @@
 module Devise
   module SecurePassword
-    VERSION = '1.0.2'.freeze
+    VERSION = '1.0.3'.freeze
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: devise-secure_password
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 1.0.3
 platform: ruby
 authors:
 - Mark Eissler
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-03-15 00:00:00.000000000 Z
+date: 2018-04-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: devise
@@ -424,6 +424,7 @@ files:
 - "./bin/console"
 - "./bin/setup"
 - "./config/locales/en.yml"
+- "./devise-secure_password-1.0.0.gem"
 - "./devise-secure_password.gemspec"
 - "./docker-entrypoint.sh"
 - "./gemfiles/rails-5_0_6.gemfile"
@@ -443,8 +444,6 @@ files:
 - "./lib/generators/devise/templates/README.txt"
 - "./lib/generators/devise/templates/secure_password.rb"
 - "./lib/support/string/character_counter.rb"
-- "./pkg/devise-secure_password-1.0.0.gem"
-- "./pkg/devise-secure_password-1.0.1.gem"
 homepage: https://github.com/valimail/devise-secure_password
 licenses:
 - MIT
@@ -465,7 +464,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.7.5
+rubygems_version: 2.6.14
 signing_key: 
 specification_version: 4
 summary: A devise password policy enforcement extension.