RubyGems - devise - Versions diffs - 4.3.0 → 4.9.2 - Mend

devise 4.3.0 → 4.9.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (259) hide show

checksums.yaml +5 -5
data/CHANGELOG.md +205 -2
data/MIT-LICENSE +2 -1
data/README.md +214 -57
data/app/controllers/devise/confirmations_controller.rb +3 -0
data/app/controllers/devise/omniauth_callbacks_controller.rb +3 -1
data/app/controllers/devise/passwords_controller.rb +5 -2
data/app/controllers/devise/registrations_controller.rb +32 -12
data/app/controllers/devise/sessions_controller.rb +4 -2
data/app/controllers/devise/unlocks_controller.rb +3 -0
data/app/controllers/devise_controller.rb +6 -3
data/app/helpers/devise_helper.rb +23 -18
data/app/mailers/devise/mailer.rb +7 -5
data/app/views/devise/confirmations/new.html.erb +2 -2
data/app/views/devise/passwords/edit.html.erb +3 -3
data/app/views/devise/passwords/new.html.erb +2 -2
data/app/views/devise/registrations/edit.html.erb +6 -6
data/app/views/devise/registrations/new.html.erb +4 -4
data/app/views/devise/sessions/new.html.erb +4 -4
data/app/views/devise/shared/_error_messages.html.erb +15 -0
data/app/views/devise/shared/_links.html.erb +8 -8
data/app/views/devise/unlocks/new.html.erb +2 -2
data/config/locales/en.yml +3 -2
data/lib/devise/controllers/helpers.rb +10 -8
data/lib/devise/controllers/rememberable.rb +2 -0
data/lib/devise/controllers/responder.rb +35 -0
data/lib/devise/controllers/scoped_views.rb +2 -0
data/lib/devise/controllers/sign_in_out.rb +14 -4
data/lib/devise/controllers/store_location.rb +24 -6
data/lib/devise/controllers/url_helpers.rb +3 -1
data/lib/devise/delegator.rb +2 -0
data/lib/devise/encryptor.rb +2 -0
data/lib/devise/failure_app.rb +33 -7
data/lib/devise/hooks/activatable.rb +2 -0
data/lib/devise/hooks/csrf_cleaner.rb +8 -1
data/lib/devise/hooks/forgetable.rb +2 -0
data/lib/devise/hooks/lockable.rb +4 -5
data/lib/devise/hooks/proxy.rb +2 -0
data/lib/devise/hooks/rememberable.rb +2 -0
data/lib/devise/hooks/timeoutable.rb +4 -2
data/lib/devise/hooks/trackable.rb +2 -0
data/lib/devise/mailers/helpers.rb +2 -0
data/lib/devise/mapping.rb +3 -1
data/lib/devise/models/authenticatable.rb +55 -50
data/lib/devise/models/confirmable.rb +36 -40
data/lib/devise/models/database_authenticatable.rb +57 -36
data/lib/devise/models/lockable.rb +18 -4
data/lib/devise/models/omniauthable.rb +4 -2
data/lib/devise/models/recoverable.rb +10 -19
data/lib/devise/models/registerable.rb +4 -0
data/lib/devise/models/rememberable.rb +5 -3
data/lib/devise/models/timeoutable.rb +3 -1
data/lib/devise/models/trackable.rb +15 -1
data/lib/devise/models/validatable.rb +7 -10
data/lib/devise/models.rb +3 -0
data/lib/devise/modules.rb +2 -0
data/lib/devise/omniauth/config.rb +2 -0
data/lib/devise/omniauth/url_helpers.rb +2 -0
data/lib/devise/omniauth.rb +4 -5
data/lib/devise/orm/active_record.rb +2 -0
data/lib/devise/orm/mongoid.rb +2 -0
data/lib/devise/orm.rb +71 -0
data/lib/devise/parameter_filter.rb +4 -0
data/lib/devise/parameter_sanitizer.rb +15 -1
data/lib/devise/rails/deprecated_constant_accessor.rb +39 -0
data/lib/devise/rails/routes.rb +8 -6
data/lib/devise/rails/warden_compat.rb +2 -0
data/lib/devise/rails.rb +3 -5
data/lib/devise/secret_key_finder.rb +27 -0
data/lib/devise/strategies/authenticatable.rb +3 -1
data/lib/devise/strategies/base.rb +2 -0
data/lib/devise/strategies/database_authenticatable.rb +8 -1
data/lib/devise/strategies/rememberable.rb +2 -0
data/lib/devise/test/controller_helpers.rb +6 -1
data/lib/devise/test/integration_helpers.rb +3 -1
data/lib/devise/test_helpers.rb +2 -0
data/lib/devise/time_inflector.rb +2 -0
data/lib/devise/token_generator.rb +2 -0
data/lib/devise/version.rb +3 -1
data/lib/devise.rb +38 -12
data/lib/generators/active_record/devise_generator.rb +40 -12
data/lib/generators/active_record/templates/migration.rb +3 -1
data/lib/generators/active_record/templates/migration_existing.rb +2 -0
data/lib/generators/devise/controllers_generator.rb +3 -1
data/lib/generators/devise/devise_generator.rb +5 -3
data/lib/generators/devise/install_generator.rb +3 -5
data/lib/generators/devise/orm_helpers.rb +9 -3
data/lib/generators/devise/views_generator.rb +8 -9
data/lib/generators/mongoid/devise_generator.rb +7 -5
data/lib/generators/templates/README +9 -1
data/lib/generators/templates/controllers/confirmations_controller.rb +2 -0
data/lib/generators/templates/controllers/omniauth_callbacks_controller.rb +3 -1
data/lib/generators/templates/controllers/passwords_controller.rb +2 -0
data/lib/generators/templates/controllers/registrations_controller.rb +2 -0
data/lib/generators/templates/controllers/sessions_controller.rb +2 -0
data/lib/generators/templates/controllers/unlocks_controller.rb +2 -0
data/lib/generators/templates/devise.rb +43 -7
data/lib/generators/templates/simple_form_for/confirmations/new.html.erb +5 -1
data/lib/generators/templates/simple_form_for/passwords/edit.html.erb +10 -2
data/lib/generators/templates/simple_form_for/passwords/new.html.erb +4 -1
data/lib/generators/templates/simple_form_for/registrations/edit.html.erb +12 -4
data/lib/generators/templates/simple_form_for/registrations/new.html.erb +11 -3
data/lib/generators/templates/simple_form_for/sessions/new.html.erb +7 -2
data/lib/generators/templates/simple_form_for/unlocks/new.html.erb +4 -1
metadata +24 -307
data/.gitignore +0 -10
data/.travis.yml +0 -58
data/.yardopts +0 -9
data/CODE_OF_CONDUCT.md +0 -22
data/CONTRIBUTING.md +0 -79
data/Gemfile +0 -40
data/Gemfile.lock +0 -194
data/Rakefile +0 -36
data/bin/test +0 -13
data/devise.gemspec +0 -26
data/devise.png +0 -0
data/gemfiles/Gemfile.rails-4.1-stable +0 -30
data/gemfiles/Gemfile.rails-4.1-stable.lock +0 -171
data/gemfiles/Gemfile.rails-4.2-stable +0 -30
data/gemfiles/Gemfile.rails-4.2-stable.lock +0 -192
data/gemfiles/Gemfile.rails-5.0-stable +0 -34
data/gemfiles/Gemfile.rails-5.0-stable.lock +0 -193
data/guides/bug_report_templates/integration_test.rb +0 -104
data/test/controllers/custom_registrations_controller_test.rb +0 -40
data/test/controllers/custom_strategy_test.rb +0 -64
data/test/controllers/helper_methods_test.rb +0 -22
data/test/controllers/helpers_test.rb +0 -316
data/test/controllers/inherited_controller_i18n_messages_test.rb +0 -51
data/test/controllers/internal_helpers_test.rb +0 -127
data/test/controllers/load_hooks_controller_test.rb +0 -19
data/test/controllers/passwords_controller_test.rb +0 -32
data/test/controllers/sessions_controller_test.rb +0 -106
data/test/controllers/url_helpers_test.rb +0 -65
data/test/delegator_test.rb +0 -19
data/test/devise_test.rb +0 -107
data/test/failure_app_test.rb +0 -338
data/test/generators/active_record_generator_test.rb +0 -83
data/test/generators/controllers_generator_test.rb +0 -48
data/test/generators/devise_generator_test.rb +0 -39
data/test/generators/install_generator_test.rb +0 -24
data/test/generators/mongoid_generator_test.rb +0 -23
data/test/generators/views_generator_test.rb +0 -103
data/test/helpers/devise_helper_test.rb +0 -49
data/test/integration/authenticatable_test.rb +0 -698
data/test/integration/confirmable_test.rb +0 -324
data/test/integration/database_authenticatable_test.rb +0 -95
data/test/integration/http_authenticatable_test.rb +0 -106
data/test/integration/lockable_test.rb +0 -240
data/test/integration/mounted_engine_test.rb +0 -36
data/test/integration/omniauthable_test.rb +0 -135
data/test/integration/recoverable_test.rb +0 -347
data/test/integration/registerable_test.rb +0 -363
data/test/integration/rememberable_test.rb +0 -217
data/test/integration/timeoutable_test.rb +0 -184
data/test/integration/trackable_test.rb +0 -92
data/test/mailers/confirmation_instructions_test.rb +0 -115
data/test/mailers/email_changed_test.rb +0 -130
data/test/mailers/mailer_test.rb +0 -18
data/test/mailers/reset_password_instructions_test.rb +0 -96
data/test/mailers/unlock_instructions_test.rb +0 -91
data/test/mapping_test.rb +0 -134
data/test/models/authenticatable_test.rb +0 -23
data/test/models/confirmable_test.rb +0 -536
data/test/models/database_authenticatable_test.rb +0 -281
data/test/models/lockable_test.rb +0 -350
data/test/models/omniauthable_test.rb +0 -7
data/test/models/recoverable_test.rb +0 -261
data/test/models/registerable_test.rb +0 -7
data/test/models/rememberable_test.rb +0 -182
data/test/models/serializable_test.rb +0 -54
data/test/models/timeoutable_test.rb +0 -51
data/test/models/trackable_test.rb +0 -41
data/test/models/validatable_test.rb +0 -119
data/test/models_test.rb +0 -153
data/test/omniauth/config_test.rb +0 -59
data/test/omniauth/url_helpers_test.rb +0 -51
data/test/orm/active_record.rb +0 -17
data/test/orm/mongoid.rb +0 -13
data/test/parameter_sanitizer_test.rb +0 -75
data/test/rails_app/Rakefile +0 -6
data/test/rails_app/app/active_record/admin.rb +0 -6
data/test/rails_app/app/active_record/shim.rb +0 -2
data/test/rails_app/app/active_record/user.rb +0 -7
data/test/rails_app/app/active_record/user_on_engine.rb +0 -7
data/test/rails_app/app/active_record/user_on_main_app.rb +0 -7
data/test/rails_app/app/active_record/user_without_email.rb +0 -8
data/test/rails_app/app/controllers/admins/sessions_controller.rb +0 -6
data/test/rails_app/app/controllers/admins_controller.rb +0 -6
data/test/rails_app/app/controllers/application_controller.rb +0 -11
data/test/rails_app/app/controllers/application_with_fake_engine.rb +0 -30
data/test/rails_app/app/controllers/custom/registrations_controller.rb +0 -31
data/test/rails_app/app/controllers/home_controller.rb +0 -29
data/test/rails_app/app/controllers/publisher/registrations_controller.rb +0 -2
data/test/rails_app/app/controllers/publisher/sessions_controller.rb +0 -2
data/test/rails_app/app/controllers/users/omniauth_callbacks_controller.rb +0 -14
data/test/rails_app/app/controllers/users_controller.rb +0 -31
data/test/rails_app/app/helpers/application_helper.rb +0 -3
data/test/rails_app/app/mailers/users/from_proc_mailer.rb +0 -3
data/test/rails_app/app/mailers/users/mailer.rb +0 -3
data/test/rails_app/app/mailers/users/reply_to_mailer.rb +0 -4
data/test/rails_app/app/mongoid/admin.rb +0 -29
data/test/rails_app/app/mongoid/shim.rb +0 -23
data/test/rails_app/app/mongoid/user.rb +0 -39
data/test/rails_app/app/mongoid/user_on_engine.rb +0 -39
data/test/rails_app/app/mongoid/user_on_main_app.rb +0 -39
data/test/rails_app/app/mongoid/user_without_email.rb +0 -33
data/test/rails_app/app/views/admins/index.html.erb +0 -1
data/test/rails_app/app/views/admins/sessions/new.html.erb +0 -2
data/test/rails_app/app/views/home/admin_dashboard.html.erb +0 -1
data/test/rails_app/app/views/home/index.html.erb +0 -1
data/test/rails_app/app/views/home/join.html.erb +0 -1
data/test/rails_app/app/views/home/private.html.erb +0 -1
data/test/rails_app/app/views/home/user_dashboard.html.erb +0 -1
data/test/rails_app/app/views/layouts/application.html.erb +0 -24
data/test/rails_app/app/views/users/edit_form.html.erb +0 -1
data/test/rails_app/app/views/users/index.html.erb +0 -1
data/test/rails_app/app/views/users/mailer/confirmation_instructions.erb +0 -1
data/test/rails_app/app/views/users/sessions/new.html.erb +0 -1
data/test/rails_app/bin/bundle +0 -3
data/test/rails_app/bin/rails +0 -4
data/test/rails_app/bin/rake +0 -4
data/test/rails_app/config/application.rb +0 -44
data/test/rails_app/config/boot.rb +0 -20
data/test/rails_app/config/database.yml +0 -18
data/test/rails_app/config/environment.rb +0 -5
data/test/rails_app/config/environments/development.rb +0 -30
data/test/rails_app/config/environments/production.rb +0 -86
data/test/rails_app/config/environments/test.rb +0 -45
data/test/rails_app/config/initializers/backtrace_silencers.rb +0 -7
data/test/rails_app/config/initializers/devise.rb +0 -180
data/test/rails_app/config/initializers/inflections.rb +0 -2
data/test/rails_app/config/initializers/secret_token.rb +0 -3
data/test/rails_app/config/initializers/session_store.rb +0 -1
data/test/rails_app/config/routes.rb +0 -126
data/test/rails_app/config.ru +0 -4
data/test/rails_app/db/migrate/20100401102949_create_tables.rb +0 -75
data/test/rails_app/db/schema.rb +0 -55
data/test/rails_app/lib/shared_admin.rb +0 -21
data/test/rails_app/lib/shared_user.rb +0 -30
data/test/rails_app/lib/shared_user_without_email.rb +0 -26
data/test/rails_app/lib/shared_user_without_omniauth.rb +0 -13
data/test/rails_app/public/404.html +0 -26
data/test/rails_app/public/422.html +0 -26
data/test/rails_app/public/500.html +0 -26
data/test/rails_app/public/favicon.ico +0 -0
data/test/rails_test.rb +0 -9
data/test/routes_test.rb +0 -279
data/test/support/action_controller/record_identifier.rb +0 -10
data/test/support/assertions.rb +0 -28
data/test/support/helpers.rb +0 -77
data/test/support/http_method_compatibility.rb +0 -51
data/test/support/integration.rb +0 -92
data/test/support/locale/en.yml +0 -8
data/test/support/mongoid.yml +0 -6
data/test/support/webrat/integrations/rails.rb +0 -33
data/test/test/controller_helpers_test.rb +0 -186
data/test/test/integration_helpers_test.rb +0 -32
data/test/test_helper.rb +0 -34
data/test/test_models.rb +0 -33

data/test/integration/registerable_test.rb DELETED Viewed

@@ -1,363 +0,0 @@
-require 'test_helper'
-class RegistrationTest < Devise::IntegrationTest
-  test 'a guest admin should be able to sign in successfully' do
-    get new_admin_session_path
-    click_link 'Sign up'
-    assert_template 'registrations/new'
-    fill_in 'email', with: 'new_user@test.com'
-    fill_in 'password', with: 'new_user123'
-    fill_in 'password confirmation', with: 'new_user123'
-    click_button 'Sign up'
-    assert_contain 'You have signed up successfully'
-    assert warden.authenticated?(:admin)
-    assert_current_url "/admin_area/home"
-    admin = Admin.to_adapter.find_first(order: [:id, :desc])
-    assert_equal admin.email, 'new_user@test.com'
-  end
-  test 'a guest admin should be able to sign in and be redirected to a custom location' do
-    Devise::RegistrationsController.any_instance.stubs(:after_sign_up_path_for).returns("/?custom=1")
-    get new_admin_session_path
-    click_link 'Sign up'
-    fill_in 'email', with: 'new_user@test.com'
-    fill_in 'password', with: 'new_user123'
-    fill_in 'password confirmation', with: 'new_user123'
-    click_button 'Sign up'
-    assert_contain 'Welcome! You have signed up successfully.'
-    assert warden.authenticated?(:admin)
-    assert_current_url "/?custom=1"
-  end
-  test 'a guest admin should not see a warning about minimum password length' do
-    get new_admin_session_path
-    assert_not_contain 'characters minimum'
-  end
-  def user_sign_up
-    ActionMailer::Base.deliveries.clear
-    get new_user_registration_path
-    fill_in 'email', with: 'new_user@test.com'
-    fill_in 'password', with: 'new_user123'
-    fill_in 'password confirmation', with: 'new_user123'
-    click_button 'Sign up'
-  end
-  test 'a guest user should see a warning about minimum password length' do
-    get new_user_registration_path
-    assert_contain '7 characters minimum'
-  end
-  test 'a guest user should be able to sign up successfully and be blocked by confirmation' do
-    user_sign_up
-    assert_contain 'A message with a confirmation link has been sent to your email address. Please follow the link to activate your account.'
-    assert_not_contain 'You have to confirm your account before continuing'
-    assert_current_url "/"
-    refute warden.authenticated?(:user)
-    user = User.to_adapter.find_first(order: [:id, :desc])
-    assert_equal user.email, 'new_user@test.com'
-    refute user.confirmed?
-  end
-  test 'a guest user should receive the confirmation instructions from the default mailer' do
-    user_sign_up
-    assert_equal ['please-change-me@config-initializers-devise.com'], ActionMailer::Base.deliveries.first.from
-  end
-  test 'a guest user should receive the confirmation instructions from a custom mailer' do
-    User.any_instance.stubs(:devise_mailer).returns(Users::Mailer)
-    user_sign_up
-    assert_equal ['custom@example.com'], ActionMailer::Base.deliveries.first.from
-  end
-  test 'a guest user should be blocked by confirmation and redirected to a custom path' do
-    Devise::RegistrationsController.any_instance.stubs(:after_inactive_sign_up_path_for).returns("/?custom=1")
-    get new_user_registration_path
-    fill_in 'email', with: 'new_user@test.com'
-    fill_in 'password', with: 'new_user123'
-    fill_in 'password confirmation', with: 'new_user123'
-    click_button 'Sign up'
-    assert_current_url "/?custom=1"
-    refute warden.authenticated?(:user)
-  end
-  test 'a guest user cannot sign up with invalid information' do
-    # Dirty tracking behavior prevents email validations from being applied:
-    #    https://github.com/mongoid/mongoid/issues/756
-    (pending "Fails on Mongoid < 2.1"; break) if defined?(Mongoid) && Mongoid::VERSION.to_f < 2.1
-    get new_user_registration_path
-    fill_in 'email', with: 'invalid_email'
-    fill_in 'password', with: 'new_user123'
-    fill_in 'password confirmation', with: 'new_user321'
-    click_button 'Sign up'
-    assert_template 'registrations/new'
-    assert_have_selector '#error_explanation'
-    assert_contain "Email is invalid"
-    assert_contain "Password confirmation doesn't match Password"
-    assert_contain "2 errors prohibited"
-    assert_nil User.to_adapter.find_first
-    refute warden.authenticated?(:user)
-  end
-  test 'a guest should not sign up with email/password that already exists' do
-    # Dirty tracking behavior prevents email validations from being applied:
-    #    https://github.com/mongoid/mongoid/issues/756
-    (pending "Fails on Mongoid < 2.1"; break) if defined?(Mongoid) && Mongoid::VERSION.to_f < 2.1
-    create_user
-    get new_user_registration_path
-    fill_in 'email', with: 'user@test.com'
-    fill_in 'password', with: '123456'
-    fill_in 'password confirmation', with: '123456'
-    click_button 'Sign up'
-    assert_current_url '/users'
-    assert_contain(/Email.*already.*taken/)
-    refute warden.authenticated?(:user)
-  end
-  test 'a guest should not be able to change account' do
-    get edit_user_registration_path
-    assert_redirected_to new_user_session_path
-    follow_redirect!
-    assert_contain 'You need to sign in or sign up before continuing.'
-  end
-  test 'a signed in user should not be able to access sign up' do
-    sign_in_as_user
-    get new_user_registration_path
-    assert_redirected_to root_path
-  end
-  test 'a signed in user should be able to edit their account' do
-    sign_in_as_user
-    get edit_user_registration_path
-    fill_in 'email', with: 'user.new@example.com'
-    fill_in 'current password', with: '12345678'
-    click_button 'Update'
-    assert_current_url '/'
-    assert_contain 'Your account has been updated successfully.'
-    assert_equal "user.new@example.com", User.to_adapter.find_first.email
-  end
-  test 'a signed in user should still be able to use the website after changing their password' do
-    sign_in_as_user
-    get edit_user_registration_path
-    fill_in 'password', with: '1234567890'
-    fill_in 'password confirmation', with: '1234567890'
-    fill_in 'current password', with: '12345678'
-    click_button 'Update'
-    assert_contain 'Your account has been updated successfully.'
-    get users_path
-    assert warden.authenticated?(:user)
-  end
-  test 'a signed in user should not change their current user with invalid password' do
-    sign_in_as_user
-    get edit_user_registration_path
-    fill_in 'email', with: 'user.new@example.com'
-    fill_in 'current password', with: 'invalid'
-    click_button 'Update'
-    assert_template 'registrations/edit'
-    assert_contain 'user@test.com'
-    assert_have_selector 'form input[value="user.new@example.com"]'
-    assert_equal "user@test.com", User.to_adapter.find_first.email
-  end
-  test 'a signed in user should be able to edit their password' do
-    sign_in_as_user
-    get edit_user_registration_path
-    fill_in 'password', with: 'pass1234'
-    fill_in 'password confirmation', with: 'pass1234'
-    fill_in 'current password', with: '12345678'
-    click_button 'Update'
-    assert_current_url '/'
-    assert_contain 'Your account has been updated successfully.'
-    assert User.to_adapter.find_first.valid_password?('pass1234')
-  end
-  test 'a signed in user should not be able to edit their password with invalid confirmation' do
-    sign_in_as_user
-    get edit_user_registration_path
-    fill_in 'password', with: 'pas123'
-    fill_in 'password confirmation', with: ''
-    fill_in 'current password', with: '12345678'
-    click_button 'Update'
-    assert_contain "Password confirmation doesn't match Password"
-    refute User.to_adapter.find_first.valid_password?('pas123')
-  end
-  test 'a signed in user should see a warning about minimum password length' do
-    sign_in_as_user
-    get edit_user_registration_path
-    assert_contain 'characters minimum'
-  end
-  test 'a signed in user should be able to cancel their account' do
-    sign_in_as_user
-    get edit_user_registration_path
-    click_button "Cancel my account"
-    assert_contain "Bye! Your account has been successfully cancelled. We hope to see you again soon."
-    assert User.to_adapter.find_all.empty?
-  end
-  test 'a user should be able to cancel sign up by deleting data in the session' do
-    get "/set"
-    assert_equal "something", @request.session["devise.foo_bar"]
-    get "/users/sign_up"
-    assert_equal "something", @request.session["devise.foo_bar"]
-    get "/users/cancel"
-    assert_nil @request.session["devise.foo_bar"]
-    assert_redirected_to new_user_registration_path
-  end
-  test 'a user with XML sign up stub' do
-    get new_user_registration_path(format: 'xml')
-    assert_response :success
-    assert_match %(<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<user>), response.body
-    assert_no_match(/<confirmation-token/, response.body)
-  end
-  test 'a user with JSON sign up stub' do
-    get new_user_registration_path(format: 'json')
-    assert_response :success
-    assert_match %({"user":), response.body
-    assert_no_match(/"confirmation_token"/, response.body)
-  end
-  test 'an admin sign up with valid information in XML format should return valid response' do
-    post admin_registration_path(format: 'xml'), params: { admin: { email: 'new_user@test.com', password: 'new_user123', password_confirmation: 'new_user123' } }
-    assert_response :success
-    assert response.body.include? %(<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<admin>)
-    admin = Admin.to_adapter.find_first(order: [:id, :desc])
-    assert_equal admin.email, 'new_user@test.com'
-  end
-  test 'a user sign up with valid information in XML format should return valid response' do
-    post user_registration_path(format: 'xml'), params: { user: { email: 'new_user@test.com', password: 'new_user123', password_confirmation: 'new_user123' } }
-    assert_response :success
-    assert response.body.include? %(<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<user>)
-    user = User.to_adapter.find_first(order: [:id, :desc])
-    assert_equal user.email, 'new_user@test.com'
-  end
-  test 'a user sign up with invalid information in XML format should return invalid response' do
-    post user_registration_path(format: 'xml'), params: { user: { email: 'new_user@test.com', password: 'new_user123', password_confirmation: 'invalid' } }
-    assert_response :unprocessable_entity
-    assert response.body.include? %(<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<errors>)
-  end
-  test 'a user update information with valid data in XML format should return valid response' do
-    user = sign_in_as_user
-    put user_registration_path(format: 'xml'), params: { user: { current_password: '12345678', email: 'user.new@test.com' } }
-    assert_response :success
-    assert_equal user.reload.email, 'user.new@test.com'
-  end
-  test 'a user update information with invalid data in XML format should return invalid response' do
-    user = sign_in_as_user
-    put user_registration_path(format: 'xml'), params: { user: { current_password: 'invalid', email: 'user.new@test.com' } }
-    assert_response :unprocessable_entity
-    assert_equal user.reload.email, 'user@test.com'
-  end
-  test 'a user cancel their account in XML format should return valid response' do
-    sign_in_as_user
-    delete user_registration_path(format: 'xml')
-    assert_response :success
-    assert_equal User.to_adapter.find_all.size, 0
-  end
-end
-class ReconfirmableRegistrationTest < Devise::IntegrationTest
-  test 'a signed in admin should see a more appropriate flash message when editing their account if reconfirmable is enabled' do
-    sign_in_as_admin
-    get edit_admin_registration_path
-    fill_in 'email', with: 'admin.new@example.com'
-    fill_in 'current password', with: '123456'
-    click_button 'Update'
-    assert_current_url '/admin_area/home'
-    assert_contain 'but we need to verify your new email address'
-    assert_equal 'admin.new@example.com', Admin.to_adapter.find_first.unconfirmed_email
-    get edit_admin_registration_path
-    assert_contain 'Currently waiting confirmation for: admin.new@example.com'
-  end
-  test 'a signed in admin should not see a reconfirmation message if they did not change their password' do
-    sign_in_as_admin
-    get edit_admin_registration_path
-    fill_in 'password', with: 'pas123'
-    fill_in 'password confirmation', with: 'pas123'
-    fill_in 'current password', with: '123456'
-    click_button 'Update'
-    assert_current_url '/admin_area/home'
-    assert_contain 'Your account has been updated successfully.'
-    assert Admin.to_adapter.find_first.valid_password?('pas123')
-  end
-  test 'a signed in admin should not see a reconfirmation message if they did not change their email, despite having an unconfirmed email' do
-    sign_in_as_admin
-    get edit_admin_registration_path
-    fill_in 'email', with: 'admin.new@example.com'
-    fill_in 'current password', with: '123456'
-    click_button 'Update'
-    get edit_admin_registration_path
-    fill_in 'password', with: 'pas123'
-    fill_in 'password confirmation', with: 'pas123'
-    fill_in 'current password', with: '123456'
-    click_button 'Update'
-    assert_current_url '/admin_area/home'
-    assert_contain 'Your account has been updated successfully.'
-    assert_equal "admin.new@example.com", Admin.to_adapter.find_first.unconfirmed_email
-    assert Admin.to_adapter.find_first.valid_password?('pas123')
-  end
-end

data/test/integration/rememberable_test.rb DELETED Viewed

@@ -1,217 +0,0 @@
-require 'test_helper'
-class RememberMeTest < Devise::IntegrationTest
-  def create_user_and_remember(add_to_token='')
-    user = create_user
-    user.remember_me!
-    raw_cookie = User.serialize_into_cookie(user).tap { |a| a[1] << add_to_token }
-    cookies['remember_user_token'] = generate_signed_cookie(raw_cookie)
-    user
-  end
-  def generate_signed_cookie(raw_cookie)
-    request = if Devise::Test.rails51?
-      ActionController::TestRequest.create(Class.new) # needs a "controller class"
-    elsif Devise::Test.rails5?
-      ActionController::TestRequest.create
-    else
-      ActionController::TestRequest.new
-    end
-    request.cookie_jar.signed['raw_cookie'] = raw_cookie
-    request.cookie_jar['raw_cookie']
-  end
-  def signed_cookie(key)
-    controller.send(:cookies).signed[key]
-  end
-  def cookie_expires(key)
-    cookie  = response.headers["Set-Cookie"].split("\n").grep(/^#{key}/).first
-    expires = cookie.split(";").map(&:strip).grep(/^expires=/).first
-    Time.parse(expires).utc
-  end
-  test 'do not remember the user if they have not checked remember me option' do
-    sign_in_as_user
-    assert_nil request.cookies["remember_user_cookie"]
-  end
-  test 'handle unverified requests gets rid of caches' do
-    swap ApplicationController, allow_forgery_protection: true do
-      post exhibit_user_url(1)
-      refute warden.authenticated?(:user)
-      create_user_and_remember
-      post exhibit_user_url(1)
-      assert_equal "User is not authenticated", response.body
-      refute warden.authenticated?(:user)
-    end
-  end
-  test 'handle unverified requests does not create cookies on sign in' do
-    swap ApplicationController, allow_forgery_protection: true do
-      get new_user_session_path
-      assert request.session[:_csrf_token]
-      post user_session_path, params: {
-          authenticity_token: "oops",
-          user: { email: "jose.valim@gmail.com", password: "123456", remember_me: "1" }
-        }
-      refute warden.authenticated?(:user)
-      refute request.cookies['remember_user_token']
-    end
-  end
-  test 'generate remember token after sign in' do
-    sign_in_as_user remember_me: true
-    assert request.cookies['remember_user_token']
-  end
-  test 'generate remember token after sign in setting cookie options' do
-    # We test this by asserting the cookie is not sent after the redirect
-    # since we changed the domain. This is the only difference with the
-    # previous test.
-    swap Devise, rememberable_options: { domain: "omg.somewhere.com" } do
-      sign_in_as_user remember_me: true
-      assert_nil request.cookies["remember_user_token"]
-    end
-  end
-  test 'generate remember token with a custom key' do
-    swap Devise, rememberable_options: { key: "v1lat_token" } do
-      sign_in_as_user remember_me: true
-      assert request.cookies["v1lat_token"]
-    end
-  end
-  test 'generate remember token after sign in setting session options' do
-    begin
-      Rails.configuration.session_options[:domain] = "omg.somewhere.com"
-      sign_in_as_user remember_me: true
-      assert_nil request.cookies["remember_user_token"]
-    ensure
-      Rails.configuration.session_options.delete(:domain)
-    end
-  end
-  test 'remember the user before sign in' do
-    user = create_user_and_remember
-    get users_path
-    assert_response :success
-    assert warden.authenticated?(:user)
-    assert warden.user(:user) == user
-  end
-  test 'remember the user before sign up and redirect them to their home' do
-    create_user_and_remember
-    get new_user_registration_path
-    assert warden.authenticated?(:user)
-    assert_redirected_to root_path
-  end
-  test 'does not extend remember period through sign in' do
-    swap Devise, extend_remember_period: true, remember_for: 1.year do
-      user = create_user
-      user.remember_me!
-      user.remember_created_at = old = 10.days.ago
-      user.save
-      sign_in_as_user remember_me: true
-      user.reload
-      assert warden.user(:user) == user
-      assert_equal old.to_i, user.remember_created_at.to_i
-    end
-  end
-  test 'extends remember period when extend remember period config is true' do
-    swap Devise, extend_remember_period: true, remember_for: 1.year do
-      create_user_and_remember
-      old_remember_token = nil
-      travel_to 1.day.ago do
-        get root_path
-        old_remember_token = request.cookies['remember_user_token']
-      end
-      get root_path
-      current_remember_token = request.cookies['remember_user_token']
-      refute_equal old_remember_token, current_remember_token
-    end
-  end
-  test 'does not extend remember period when extend period config is false' do
-    swap Devise, extend_remember_period: false, remember_for: 1.year do
-      create_user_and_remember
-      old_remember_token = nil
-      travel_to 1.day.ago do
-        get root_path
-        old_remember_token = request.cookies['remember_user_token']
-      end
-      get root_path
-      current_remember_token = request.cookies['remember_user_token']
-      assert_equal old_remember_token, current_remember_token
-    end
-  end
-  test 'do not remember other scopes' do
-    create_user_and_remember
-    get root_path
-    assert_response :success
-    assert warden.authenticated?(:user)
-    refute warden.authenticated?(:admin)
-  end
-  test 'do not remember with invalid token' do
-    create_user_and_remember('add')
-    get users_path
-    refute warden.authenticated?(:user)
-    assert_redirected_to new_user_session_path
-  end
-  test 'do not remember with expired token' do
-    create_user_and_remember
-    swap Devise, remember_for: 0.days do
-      get users_path
-      refute warden.authenticated?(:user)
-      assert_redirected_to new_user_session_path
-    end
-  end
-  test 'do not remember the user anymore after forget' do
-    create_user_and_remember
-    get users_path
-    assert warden.authenticated?(:user)
-    delete destroy_user_session_path
-    refute warden.authenticated?(:user)
-    assert_nil warden.cookies['remember_user_token']
-    get users_path
-    refute warden.authenticated?(:user)
-  end
-  test 'changing user password expires remember me token' do
-    user = create_user_and_remember
-    user.password = "another_password"
-    user.password_confirmation = "another_password"
-    user.save!
-    get users_path
-    refute warden.authenticated?(:user)
-  end
-  test 'valid sign in calls after_remembered callback' do
-    user = create_user_and_remember
-    User.expects(:serialize_from_cookie).returns user
-    user.expects :after_remembered
-    get new_user_registration_path
-  end
-end