RubyGems - devise-security - Versions diffs - 0.15.0 → 0.16.0 - Mend

devise-security 0.15.0 → 0.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (62) hide show

checksums.yaml +4 -4
data/README.md +27 -19
data/app/controllers/devise/password_expired_controller.rb +1 -5
data/config/locales/by.yml +1 -0
data/config/locales/cs.yml +1 -0
data/config/locales/de.yml +1 -0
data/config/locales/en.yml +1 -0
data/config/locales/es.yml +1 -0
data/config/locales/fa.yml +1 -0
data/config/locales/fr.yml +1 -0
data/config/locales/hi.yml +21 -20
data/config/locales/it.yml +1 -0
data/config/locales/ja.yml +1 -0
data/config/locales/nl.yml +1 -0
data/config/locales/pt.yml +1 -0
data/config/locales/ru.yml +1 -0
data/config/locales/tr.yml +1 -0
data/config/locales/uk.yml +1 -0
data/config/locales/zh_CN.yml +1 -0
data/config/locales/zh_TW.yml +1 -0
data/lib/devise-security.rb +6 -3
data/lib/devise-security/controllers/helpers.rb +2 -2
data/lib/devise-security/hooks/session_limitable.rb +10 -6
data/lib/devise-security/models/secure_validatable.rb +15 -1
data/lib/devise-security/version.rb +1 -1
data/lib/generators/devise_security/install_generator.rb +3 -3
data/lib/generators/templates/{devise-security.rb → devise_security.rb} +3 -0
data/test/controllers/test_password_expired_controller.rb +67 -98
data/test/controllers/test_security_question_controller.rb +16 -40
data/test/dummy/config/environments/test.rb +3 -13
data/test/dummy/config/initializers/migration_class.rb +1 -8
data/test/dummy/config/mongoid.yml +1 -1
data/test/dummy/log/development.log +883 -0
data/test/dummy/log/test.log +19890 -0
data/test/integration/test_password_expirable_workflow.rb +0 -4
data/test/orm/mongoid.rb +2 -1
data/test/support/integration_helpers.rb +14 -32
data/test/support/mongoid.yml +1 -1
data/test/test_helper.rb +4 -4
data/test/test_install_generator.rb +1 -1
data/test/test_secure_validatable.rb +76 -0
data/test/tmp/config/initializers/devise-security.rb +3 -0
data/test/tmp/config/locales/devise.security_extension.by.yml +49 -0
data/test/tmp/config/locales/devise.security_extension.cs.yml +41 -0
data/test/tmp/config/locales/devise.security_extension.de.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.en.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.es.yml +10 -9
data/test/tmp/config/locales/devise.security_extension.fa.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.fr.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.hi.yml +42 -0
data/test/tmp/config/locales/devise.security_extension.it.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.ja.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.nl.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.pt.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.ru.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.tr.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.uk.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.zh_CN.yml +1 -0
data/test/tmp/config/locales/devise.security_extension.zh_TW.yml +41 -0
metadata +19 -40
data/lib/devise-security/orm/active_record.rb +0 -20
data/lib/devise-security/schema.rb +0 -66

data/test/tmp/config/locales/devise.security_extension.nl.yml CHANGED Viewed

@@ -3,6 +3,7 @@ nl:
     messages:
       taken_in_past: is eerder gebruikt.
       equal_to_current_password: moet verschillen van het huidige wachtwoord.
+      equal_to_email: moet anders zijn dan de e-mail
       password_complexity:
         digit:
           one: moet minimaal 1 cijfer bevatten

data/test/tmp/config/locales/devise.security_extension.pt.yml CHANGED Viewed

@@ -3,6 +3,7 @@ pt:
     messages:
       taken_in_past: 'foi usada anteriormente.'
       equal_to_current_password: 'deve ser diferente da senha atual.'
+      equal_to_email: 'deve ser diferente do e-mail.'
       password_complexity:
         digit:
           one: deve conter ao menos um dígito

data/test/tmp/config/locales/devise.security_extension.ru.yml CHANGED Viewed

@@ -3,6 +3,7 @@ ru:
     messages:
       taken_in_past: 'уже ранее использовался.'
       equal_to_current_password: 'должен отличаться от текущего пароля.'
+      equal_to_email: 'должно отличаться от адреса электронной почты.'
       password_complexity:
         digit:
           one: 'должен содержать хотя бы одну цифру'

data/test/tmp/config/locales/devise.security_extension.tr.yml CHANGED Viewed

@@ -3,6 +3,7 @@ tr:
     messages:
       taken_in_past: "daha önce kullanıldı."
       equal_to_current_password: "mevcut paroladan farklı olmalı."
+      equal_to_email: "e-postadan farklı olmalı."
       password_format: "büyük, küçük harfler ve sayılar içermeli."
   devise:
     invalid_captcha: "Captcha hatalı."

data/test/tmp/config/locales/devise.security_extension.uk.yml CHANGED Viewed

@@ -3,6 +3,7 @@ uk:
     messages:
       taken_in_past: 'раніше використовувався.'
       equal_to_current_password: 'має відрізнятися від поточного паролю.'
+      equal_to_email: 'має відрізнятися від електронної пошти.'
       password_complexity:
         digit:
           one: 'повинен включати хоча б одну цифру'

data/test/tmp/config/locales/devise.security_extension.zh_CN.yml CHANGED Viewed

@@ -3,6 +3,7 @@ zh_CN:
     messages:
       taken_in_past: '曾被使用过。'
       equal_to_current_password: '必须与当前密码不同。'
+      equal_to_email: '必须与电子邮件地址不同。'
       password_complexity:
         digit:
           one: 必须包含至少1个数字

data/test/tmp/config/locales/devise.security_extension.zh_TW.yml ADDED Viewed

@@ -0,0 +1,41 @@
+zh_TW:
+  errors:
+    messages:
+      taken_in_past: '曾被使用過。'
+      equal_to_current_password: '必須與目前密碼不同。'
+      equal_to_email: '必須與電子郵件地址不同。'
+      password_complexity:
+        digit:
+          one: 必須包含至少一個數字
+          other: 必須包含至少 %{count} 個數字
+        lower:
+          one: 必須包含至少一個小寫字母
+          other: 必須包含至少 %{count} 個小寫字母
+        symbol:
+          one: 必須包含至少一個特殊符號
+          other: 必須包含至少 %{count} 個特殊符號
+        upper:
+          one: 必須包含至少一個大寫字母
+          other: 必須包含至少 %{count} 個大寫字母
+  devise:
+    invalid_captcha: '輸入的驗證碼無效。'
+    invalid_security_question: '安全問題答案無效。'
+    paranoid_verify:
+      code_required: '請輸入由我們客服團隊提供的代碼'
+    paranoid_verification_code:
+      show:
+        submit_verification_code: 送出驗證碼
+        verification_code: 驗證碼
+        submit: 送出
+    password_expired:
+      updated: '你的新密碼已儲存'
+      change_required: '你的密碼已經過期，請更新密碼。'
+      show:
+        renew_your_password: 更新你的密碼
+        current_password: 目前密碼
+        new_password: 新密碼
+        new_password_confirmation: 確認新密碼
+        change_my_password: 更改我的密碼
+    failure:
+      session_limited: '你的登入憑證已在另一個瀏覽器上被使用，請重新登入以在此瀏覽器繼續使用。'
+      expired: '你的帳號因過久沒使用而已經過期，請洽網站管理員。'

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: devise-security
 version: !ruby/object:Gem::Version
-  version: 0.15.0
+  version: 0.16.0
 platform: ruby
 authors:
 - Marco Scholl
@@ -12,7 +12,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-01-13 00:00:00.000000000 Z
+date: 2021-05-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: devise
@@ -122,16 +122,16 @@ dependencies:
   name: omniauth
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "<"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "<"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
 - !ruby/object:Gem::Dependency
   name: pry-byebug
   requirement: !ruby/object:Gem::Requirement
@@ -230,34 +230,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: sqlite3
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: wwtd
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: An enterprise security extension for devise.
 email: natebird@gmail.com
 executables: []
@@ -306,7 +278,6 @@ files:
 - lib/devise-security/models/secure_validatable.rb
 - lib/devise-security/models/security_questionable.rb
 - lib/devise-security/models/session_limitable.rb
-- lib/devise-security/orm/active_record.rb
 - lib/devise-security/orm/mongoid.rb
 - lib/devise-security/patches.rb
 - lib/devise-security/patches/confirmations_controller_captcha.rb
@@ -321,11 +292,10 @@ files:
 - lib/devise-security/patches/unlocks_controller_security_question.rb
 - lib/devise-security/rails.rb
 - lib/devise-security/routes.rb
-- lib/devise-security/schema.rb
 - lib/devise-security/validators/password_complexity_validator.rb
 - lib/devise-security/version.rb
 - lib/generators/devise_security/install_generator.rb
-- lib/generators/templates/devise-security.rb
+- lib/generators/templates/devise_security.rb
 - test/controllers/test_captcha_controller.rb
 - test/controllers/test_password_expired_controller.rb
 - test/controllers/test_security_question_controller.rb
@@ -396,6 +366,7 @@ files:
 - test/dummy/lib/shared_user_without_email.rb
 - test/dummy/lib/shared_user_without_omniauth.rb
 - test/dummy/lib/shared_verification_fields.rb
+- test/dummy/log/development.log
 - test/dummy/log/test.log
 - test/integration/test_password_expirable_workflow.rb
 - test/integration/test_session_limitable_workflow.rb
@@ -413,11 +384,14 @@ files:
 - test/test_secure_validatable.rb
 - test/test_session_limitable.rb
 - test/tmp/config/initializers/devise-security.rb
+- test/tmp/config/locales/devise.security_extension.by.yml
+- test/tmp/config/locales/devise.security_extension.cs.yml
 - test/tmp/config/locales/devise.security_extension.de.yml
 - test/tmp/config/locales/devise.security_extension.en.yml
 - test/tmp/config/locales/devise.security_extension.es.yml
 - test/tmp/config/locales/devise.security_extension.fa.yml
 - test/tmp/config/locales/devise.security_extension.fr.yml
+- test/tmp/config/locales/devise.security_extension.hi.yml
 - test/tmp/config/locales/devise.security_extension.it.yml
 - test/tmp/config/locales/devise.security_extension.ja.yml
 - test/tmp/config/locales/devise.security_extension.nl.yml
@@ -426,12 +400,12 @@ files:
 - test/tmp/config/locales/devise.security_extension.tr.yml
 - test/tmp/config/locales/devise.security_extension.uk.yml
 - test/tmp/config/locales/devise.security_extension.zh_CN.yml
+- test/tmp/config/locales/devise.security_extension.zh_TW.yml
 homepage: https://github.com/devise-security/devise-security
 licenses:
 - MIT
 metadata: {}
-post_install_message: 'WARNING: devise-security will drop support for Rails 4.2 in
-  version 0.16.0'
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -446,7 +420,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.8
+rubygems_version: 3.0.9
 signing_key:
 specification_version: 4
 summary: Security extension for devise
@@ -520,6 +494,7 @@ test_files:
 - test/dummy/db/migrate/20150407162345_add_verification_attempt_column.rb
 - test/dummy/db/migrate/20180318105329_add_confirmable_columns.rb
 - test/dummy/log/test.log
+- test/dummy/log/development.log
 - test/test_install_generator.rb
 - test/test_paranoid_verification.rb
 - test/integration/test_session_limitable_workflow.rb
@@ -536,11 +511,13 @@ test_files:
 - test/controllers/test_security_question_controller.rb
 - test/controllers/test_captcha_controller.rb
 - test/controllers/test_password_expired_controller.rb
+- test/tmp/config/locales/devise.security_extension.by.yml
 - test/tmp/config/locales/devise.security_extension.nl.yml
 - test/tmp/config/locales/devise.security_extension.tr.yml
 - test/tmp/config/locales/devise.security_extension.ru.yml
 - test/tmp/config/locales/devise.security_extension.fr.yml
 - test/tmp/config/locales/devise.security_extension.fa.yml
+- test/tmp/config/locales/devise.security_extension.hi.yml
 - test/tmp/config/locales/devise.security_extension.ja.yml
 - test/tmp/config/locales/devise.security_extension.en.yml
 - test/tmp/config/locales/devise.security_extension.pt.yml
@@ -549,5 +526,7 @@ test_files:
 - test/tmp/config/locales/devise.security_extension.es.yml
 - test/tmp/config/locales/devise.security_extension.zh_CN.yml
 - test/tmp/config/locales/devise.security_extension.uk.yml
+- test/tmp/config/locales/devise.security_extension.zh_TW.yml
+- test/tmp/config/locales/devise.security_extension.cs.yml
 - test/tmp/config/initializers/devise-security.rb
 - test/test_complexity_validator.rb

data/lib/devise-security/orm/active_record.rb DELETED Viewed

@@ -1,20 +0,0 @@
-# frozen_string_literal: true
-module DeviseSecurity
-  module Orm
-    # This module contains some helpers and handle schema (migrations):
-    #
-    #   create_table :accounts do |t|
-    #     t.password_expirable
-    #   end
-    #
-    module ActiveRecord
-      module Schema
-        include DeviseSecurity::Schema
-      end
-    end
-  end
-end
-ActiveRecord::ConnectionAdapters::Table.send :include, DeviseSecurity::Orm::ActiveRecord::Schema
-ActiveRecord::ConnectionAdapters::TableDefinition.send :include, DeviseSecurity::Orm::ActiveRecord::Schema

data/lib/devise-security/schema.rb DELETED Viewed

@@ -1,66 +0,0 @@
-# frozen_string_literal: true
-module DeviseSecurity
-  # add schema helper for migrations
-  module Schema
-    # Add password_changed_at columns in the resource's database table.
-    #
-    # Examples
-    #
-    # # For a new resource migration:
-    # create_table :the_resources do |t|
-    #   t.password_expirable
-    # ...
-    # end
-    #
-    # # or if the resource's table already exists, define a migration and put this in:
-    # change_table :the_resources do |t|
-    #   t.datetime :password_changed_at
-    # end
-    #
-    def password_expirable
-      apply_devise_schema :password_changed_at, DateTime
-    end
-    # Add password_archivable columns
-    #
-    # Examples
-    #
-    # create_table :old_passwords do
-    #   t.password_archivable
-    # end
-    # add_index :old_passwords, [:password_archivable_type, :password_archivable_id], name: 'index_password_archivable'
-    #
-    def password_archivable
-      apply_devise_schema :encrypted_password, String, limit: 128, null: false
-      apply_devise_schema :password_salt, String
-      apply_devise_schema :password_archivable_id, Integer, null: false
-      apply_devise_schema :password_archivable_type, String, null: false
-      apply_devise_schema :created_at, DateTime
-    end
-    # Add session_limitable columns in the resource's database table.
-    #
-    # Examples
-    #
-    # # For a new resource migration:
-    # create_table :the_resources do |t|
-    #   t.session_limitable
-    # ...
-    # end
-    #
-    # # or if the resource's table already exists, define a migration and put this in:
-    # change_table :the_resources do |t|
-    #   t.string :unique_session_id, limit: 20
-    # end
-    #
-    def session_limitable
-      apply_devise_schema :unique_session_id, String, limit: 20
-    end
-    def expirable
-      apply_devise_schema :expired_at, DateTime
-      apply_devise_schema :last_activity_at, DateTime
-    end
-  end
-end