devise_instant2fa 1.0.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: a1b1be53c25de64e34b74a41cdd2e37a6b8cdfd9
+  data.tar.gz: 9314e6632e80fa4e8428a1ced354df19e461d967
+SHA512:
+  metadata.gz: bd69fe2574166de4a5925bfe95210c2968c71eb0d7affffbb80e65e2263ce47548f654069fdb708ac8a014c319b013b805fd899550d86af7c4b46e448e127613
+  data.tar.gz: 55950735513bcf851f970886c1bff733aafa074e2e80434003136d87706e79eeab3980c557b62a6146379ab64b4c5d052d24d36cfd3264b8b664c78faf6a164d

data/.gitignore

@@ -0,0 +1,23 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+
+# Temporary files of every sort
+.DS_Store
+.idea
+.rvmrc
+.stgit*
+*.swap
+*.swo
+*.swp
+*~
+bin/*
+nbproject
+patches-*
+capybara-*.html
+dump.rdb
+*.ids
+.rbenv-version
+.ruby-gemset
+.ruby-version

data/.rubocop.yml

@@ -0,0 +1,295 @@
+AllCops:
+  Include:
+    - '**/Gemfile'
+    - '**/Rakefile'
+  UseCache: true
+
+Lint/AssignmentInCondition:
+  Description: Don't use assignment in conditions.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#safe-assignment-in-condition
+  Enabled: true
+  AllowSafeAssignment: true
+Lint/EachWithObjectArgument:
+  Description: Check for immutable argument given to each_with_object.
+  Enabled: true
+Lint/HandleExceptions:
+  Description: Don't suppress exception.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#dont-hide-exceptions
+  Enabled: true
+Lint/LiteralInCondition:
+  Description: Checks of literals used in conditions.
+  Enabled: true
+Lint/LiteralInInterpolation:
+  Description: Checks for literals used in interpolation.
+  Enabled: true
+Lint/ParenthesesAsGroupedExpression:
+  Description: Checks for method calls with a space before the opening parenthesis.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#parens-no-spaces
+  Enabled: true
+
+Metrics/AbcSize:
+  Description: A calculated magnitude based on number of assignments, branches, and
+    conditions.
+  Enabled: true
+  Max: 15
+  Exclude:
+  - spec/**/*
+Metrics/ClassLength:
+  Description: Avoid classes longer than 100 lines of code.
+  Enabled: true
+  CountComments: false
+  Max: 100
+  Exclude:
+  - spec/**/*
+Metrics/CyclomaticComplexity:
+  Description: A complexity metric that is strongly correlated to the number of test
+    cases needed to validate a method.
+  Enabled: true
+  Max: 6
+Metrics/LineLength:
+  Description: Limit lines to 80 characters.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#80-character-limits
+  Enabled: true
+  Max: 100
+  AllowURI: true
+  URISchemes:
+  - http
+  - https
+Metrics/MethodLength:
+  Description: Avoid methods longer than 10 lines of code.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#short-methods
+  Enabled: true
+  CountComments: false
+  Max: 10
+  Exclude:
+  - spec/**/*
+Metrics/ModuleLength:
+  CountComments: false
+  Max: 100
+  Description: Avoid modules longer than 100 lines of code.
+  Enabled: true
+  Exclude:
+  - spec/**/*
+Metrics/ParameterLists:
+  Description: Avoid parameter lists longer than three or four parameters.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#too-many-params
+  Enabled: true
+  Max: 5
+  CountKeywordArgs: true
+Metrics/PerceivedComplexity:
+  Description: A complexity metric geared towards measuring complexity for a human
+    reader.
+  Enabled: true
+  Max: 7
+
+Rails/ScopeArgs:
+  Description: Checks the arguments of ActiveRecord scopes.
+  Enabled: true
+Rails/TimeZone:
+  # The value `strict` means that `Time` should be used with `zone`.
+  # The value `flexible` allows usage of `in_time_zone` instead of `zone`.
+  Enabled: true
+  EnforcedStyle: flexible
+  SupportedStyles:
+    - strict
+    - flexible
+
+Style/AccessorMethodName:
+  Description: Check the naming of accessor methods for get_/set_.
+  Enabled: false
+Style/AndOr:
+  Description: Use &&/|| instead of and/or.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-and-or-or
+  Enabled: true
+  EnforcedStyle: conditionals
+  SupportedStyles:
+  - always
+  - conditionals
+Style/Alias:
+  Description: Use alias_method instead of alias.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#alias-method
+  Enabled: true
+Style/ClassAndModuleChildren:
+  EnforcedStyle: nested
+  SupportedStyles:
+    - nested
+    - compact
+Style/CollectionMethods:
+  Description: Preferred collection methods.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#map-find-select-reduce-size
+  Enabled: true
+  PreferredMethods:
+    collect: map
+    collect!: map!
+    find: detect
+    find_all: select
+    reduce: inject
+Style/Documentation:
+  Description: Document classes and non-namespace modules.
+  Enabled: false
+Style/DotPosition:
+  Description: Checks the position of the dot in multi-line method calls.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#consistent-multi-line-chains
+  Enabled: true
+  EnforcedStyle: trailing
+  SupportedStyles:
+  - leading
+  - trailing
+Style/DoubleNegation:
+  Description: Checks for uses of double negation (!!).
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-bang-bang
+  Enabled: true
+Style/EachWithObject:
+  Description: Prefer `each_with_object` over `inject` or `reduce`.
+  Enabled: true
+Style/EmptyLiteral:
+  Description: Prefer literals to Array.new/Hash.new/String.new.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#literal-array-hash
+  Enabled: true
+Style/FileName:
+  Description: Use snake_case for source file names.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#snake-case-files
+  Enabled: true
+  Exclude: []
+Style/GuardClause:
+  Description: Check for conditionals that can be replaced with guard clauses
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-nested-conditionals
+  Enabled: true
+  MinBodyLength: 1
+Style/IfUnlessModifier:
+  Description: Favor modifier if/unless usage when you have a single-line body.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#if-as-a-modifier
+  Enabled: false
+  MaxLineLength: 80
+Style/InlineComment:
+  Description: Avoid inline comments.
+  Enabled: false
+Style/ModuleFunction:
+  Description: Checks for usage of `extend self` in modules.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#module-function
+  Enabled: false
+Style/OneLineConditional:
+  Description: Favor the ternary operator(?:) over if/then/else/end constructs.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#ternary-operator
+  Enabled: false
+Style/OptionHash:
+  Description: Don't use option hashes when you can use keyword arguments.
+  Enabled: false
+Style/PercentLiteralDelimiters:
+  Description: Use `%`-literal delimiters consistently
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#percent-literal-braces
+  Enabled: true
+  PreferredDelimiters:
+    "%": "()"
+    "%i": "()"
+    "%q": "()"
+    "%Q": "()"
+    "%r": "{}"
+    "%s": "()"
+    "%w": "()"
+    "%W": "()"
+    "%x": "()"
+Style/PerlBackrefs:
+  Description: Avoid Perl-style regex back references.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-perl-regexp-last-matchers
+  Enabled: false
+Style/PredicateName:
+  Description: Check the names of predicate methods.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#bool-methods-qmark
+  Enabled: true
+  NamePrefix:
+  - is_
+  - has_
+  - have_
+  NamePrefixBlacklist:
+  - is_
+  Exclude:
+  - spec/**/*
+Style/RaiseArgs:
+  Description: Checks the arguments passed to raise/fail.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#exception-class-messages
+  Enabled: true
+  EnforcedStyle: exploded
+  SupportedStyles:
+  - compact
+  - exploded
+Style/Send:
+  Description: Prefer `Object#__send__` or `Object#public_send` to `send`, as `send`
+    may overlap with existing methods.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#prefer-public-send
+  Enabled: false
+Style/SignalException:
+  Description: Checks for proper usage of fail and raise.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#fail-method
+  Enabled: true
+  EnforcedStyle: semantic
+  SupportedStyles:
+  - only_raise
+  - only_fail
+  - semantic
+Style/SingleLineBlockParams:
+  Description: Enforces the names of some block params.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#reduce-blocks
+  Enabled: true
+  Methods:
+  - reduce:
+    - a
+    - e
+  - inject:
+    - a
+    - e
+Style/SingleLineMethods:
+  Description: Avoid single-line methods.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-single-line-methods
+  Enabled: true
+  AllowIfMethodIsEmpty: true
+Style/SpecialGlobalVars:
+  Description: Avoid Perl-style global variables.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#no-cryptic-perlisms
+  Enabled: false
+Style/StringLiterals:
+  Description: Checks if uses of quotes match the configured preference.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#consistent-string-literals
+  Enabled: true
+  EnforcedStyle: single_quotes
+  SupportedStyles:
+  - single_quotes
+  - double_quotes
+Style/StringLiteralsInInterpolation:
+  Description: Checks if uses of quotes inside expressions in interpolated strings
+    match the configured preference.
+  Enabled: true
+  EnforcedStyle: single_quotes
+  SupportedStyles:
+  - single_quotes
+  - double_quotes
+Style/TrailingCommaInArguments:
+  Description: 'Checks for trailing comma in argument lists.'
+  StyleGuide: 'https://github.com/bbatsov/ruby-style-guide#no-trailing-array-commas'
+  Enabled: true
+  EnforcedStyleForMultiline: no_comma
+  SupportedStyles:
+  - comma
+  - consistent_comma
+  - no_comma
+Style/TrailingCommaInLiteral:
+  Description: 'Checks for trailing comma in array and hash literals.'
+  StyleGuide: 'https://github.com/bbatsov/ruby-style-guide#no-trailing-array-commas'
+  Enabled: true
+  EnforcedStyleForMultiline: no_comma
+  SupportedStyles:
+  - comma
+  - consistent_comma
+  - no_comma
+Style/VariableInterpolation:
+  Description: Don't interpolate global, instance and class variables directly in
+    strings.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#curlies-interpolate
+  Enabled: false
+Style/WhenThen:
+  Description: Use when x then ... for one-line cases.
+  StyleGuide: https://github.com/bbatsov/ruby-style-guide#one-line-cases
+  Enabled: false
+Style/ZeroLengthPredicate:
+  Description: 'Use #empty? when testing for objects of length 0.'
+  Enabled: true

data/.travis.yml

@@ -0,0 +1,29 @@
+language: ruby
+
+env:
+  - "RAILS_VERSION=4.0"
+  - "RAILS_VERSION=4.1"
+  - "RAILS_VERSION=4.2"
+  - "RAILS_VERSION=master"
+
+rvm:
+  - 2.1
+  - 2.2
+  - 2.3.1
+
+matrix:
+  allow_failures:
+    - env: "RAILS_VERSION=master"
+  exclude:
+    - rvm: 2.1
+      env: RAILS_VERSION=master
+    - rvm: 2.2
+      env: RAILS_VERSION=master
+
+before_install:
+  - gem update bundler
+
+before_script:
+  - bundle exec rake app:db:migrate
+
+script: bundle exec rake spec

data/Gemfile

@@ -0,0 +1,31 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in devise_ip_filter.gemspec
+gemspec
+
+rails_version = ENV["RAILS_VERSION"] || "default"
+
+rails = case rails_version
+        when "master"
+          {github: "rails/rails"}
+        when "default"
+          "~> 4.1"
+        else
+          "~> #{rails_version}"
+        end
+
+gem "rails", rails
+
+if Gem::Version.new(RUBY_VERSION) >= Gem::Version.new('2.2.0')
+  gem "test-unit", "~> 3.0"
+end
+
+group :test, :development do
+  gem 'sqlite3'
+end
+
+group :test do
+  gem 'rack_session_access'
+  gem 'ammeter'
+  gem 'pry'
+end

data/LICENSE

@@ -0,0 +1,19 @@
+Copyright (C) 2016 Clef, Inc
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,67 @@
+# Instant 2FA for Devise
+
+## Configuration
+
+### Initial Setup
+
+In a Rails environment, require the gem in your Gemfile:
+
+    gem 'devise_instant2fa'
+
+Once that's done, run:
+
+    bundle install
+
+Note that Ruby 2.1 or greater is required.
+
+### Installation
+
+#### Configuration
+
+In order to use Instant 2FA, you'll need to configure your `access_key` and `access_secret` in the `config/initializers/devise.rb` file:
+
+```ruby
+config.instant2fa_access_key = 'YOUR_ACCESS_KEY'
+config.instant2fa_access_secret = 'YOUR_ACCESS_SECRET'
+```
+
+After you've updated your configuration settings, you'll need to add the `:instant2fa_authenticatable` strategy to your user (likely in your `user.rb` file):
+
+```ruby
+devise :instant2fa_authenticatable, :database_authenticatable, :registerable, :recoverable, :rememberable,
+       :trackable, :validatable
+```
+
+With those changes enabled, users who enable Instant 2FA will be prompted for verification on login.
+
+### Customisation and Usage
+
+#### Adding the user settings page
+
+Instant 2FA automatically provides a hosted user settings page. This library provies view helpers to embed that page in your user experience. To use the helpers, you'll need to include the `DeviseInstant2fa::Views::Helpers` module in your `ApplicationHelpers` (or in a more specific module):
+
+```ruby
+module ApplicationHelper
+  include DeviseInstant2fa::Views::Helpers
+end
+```
+
+Once this is included, you'll have access to the `instant2fa_settings_view(user)` method, which you can use in any view:
+
+```html
+<div class="two-factor-settings">
+  <%= instant2fa_settings_view(resource) %>
+</div>
+````
+
+#### Overriding the verification view
+
+The default view that shows the form can be overridden by adding a file named `show.html.erb` (or `show.html.haml` if you prefer HAML) inside `app/views/devise/instant2fa/` and customizing it. The important element to display is the `instant2fa_verification_form` helper.
+
+Below is an example using ERB:
+
+```html
+<p><%= flash[:notice] %></p>
+
+<%= instant2fa_verification_form(resource_name, @hosted_page_url)%>
+```

data/Rakefile

@@ -0,0 +1,14 @@
+require "bundler/gem_tasks"
+
+APP_RAKEFILE = File.expand_path("../spec/rails_app/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+require 'rspec/core/rake_task'
+
+desc "Run all specs in spec directory (excluding plugin specs)"
+RSpec::Core::RakeTask.new(:spec => 'app:db:test:prepare')
+
+task :default => :spec
+
+# To test against a specific version of Rails
+# export RAILS_VERSION=3.2.0; bundle update; rake

data/app/controllers/devise/instant2fa_controller.rb

@@ -0,0 +1,57 @@
+class Devise::Instant2faController < DeviseController
+  prepend_before_action :find_resource_and_require_password_checked, :only => [
+    :show, :update
+  ]
+
+  def show
+    @hosted_page_url = session["#{resource_name}_hosted_page_url"]
+  end
+
+  def update
+    render :show and return if params[:instant2faToken].nil?
+
+    begin
+      Instant2fa.confirm_verification(@resource.id.to_s, params[:instant2faToken])
+      after_two_factor_success_for(@resource)
+    rescue Instant2fa::Errors::VerificationMismatch
+      after_two_factor_fail_for(@resource)
+    rescue Instant2fa::Errors::VerificationFailed
+      after_two_factor_fail_for(@resource)
+    end
+  end
+
+  private
+
+  def find_resource
+    @resource = send("current_#{resource_name}")
+
+    if @resource.nil?
+      @resource = resource_class.find_by_id(session["#{resource_name}_id"])
+    end
+  end
+
+  def find_resource_and_require_password_checked
+    find_resource
+
+    if @resource.nil? || session[:"#{resource_name}_password_checked"].to_s != "true"
+      redirect_to invalid_resource_path
+    end
+  end
+
+  def after_two_factor_success_for(resource)
+    remember_device if params[:remember_device].to_i == 1
+    if session.delete("#{resource_name}_remember_me") == true && resource.respond_to?(:remember_me=)
+      resource.remember_me = true
+    end
+    sign_in(resource_name, resource)
+
+    set_flash_message(:notice, :signed_in) if is_navigational_format?
+    respond_with resource, :location => after_sign_in_path_for(resource)
+  end
+
+  def after_two_factor_fail_for(resource)
+    set_flash_message :alert, :attempt_failed, now: true
+    sign_out(resource)
+    redirect_to :root
+  end
+end

data/app/views/devise/instant2fa/show.html.erb

@@ -0,0 +1,2 @@
+<p><%= flash[:notice] %></p>
+<%= instant2fa_verification_form(resource_name, @hosted_page_url)%>

data/config/locales/en.yml

@@ -0,0 +1,7 @@
+en:
+  devise:
+    instant2fa:
+      user:
+        signed_in: "Two factor authentication successful."
+        success: "Two factor authentication successful."
+        attempt_failed: "Two factor authentication failed."

data/devise_instant2fa.gemspec

@@ -0,0 +1,30 @@
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "devise_instant2fa/version"
+
+Gem::Specification.new do |s|
+  s.name        = "devise_instant2fa"
+  s.version     = DeviseInstant2fa::VERSION.dup
+  s.authors     = ["Jesse Pollak"]
+  s.email       = ["jesse@instant2fa.com"]
+  s.homepage    = "https://github.com/clef/instant2fa-devise"
+  s.summary     = %q{Instant 2FA plugin for devise}
+
+  s.rubyforge_project = "devise_instant2fa"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+
+  s.add_runtime_dependency 'rails', '>= 3.1.1'
+  s.add_runtime_dependency 'devise'
+  s.add_runtime_dependency 'instant2fa', '~> 1'
+
+  s.add_development_dependency 'bundler'
+  s.add_development_dependency 'rake'
+  s.add_development_dependency 'rspec-rails', '>= 3.0.1'
+  s.add_development_dependency 'capybara', '2.4.1'
+  s.add_development_dependency 'pry'
+  s.add_development_dependency 'timecop'
+end

data/lib/devise_instant2fa/controllers/helpers.rb

@@ -0,0 +1,61 @@
+module DeviseInstant2fa
+  module Controllers
+    module Helpers
+      extend ActiveSupport::Concern
+
+      included do
+        before_action :handle_two_factor_authentication, :if => :is_signing_in?
+      end
+
+      def is_devise_sessions_controller?
+        self.class == Devise::SessionsController || self.class.ancestors.include?(Devise::SessionsController)
+      end
+
+      def is_signing_in?
+        if devise_controller? && signed_in?(resource_name) &&
+           is_devise_sessions_controller? &&
+           self.action_name == "create"
+          return true
+        end
+
+        return false
+      end
+
+      private
+
+      def handle_two_factor_authentication
+        Devise.mappings.keys.flatten.any? do |scope|
+          if signed_in?(scope) and warden.session(scope)[DeviseInstant2fa::NEED_AUTHENTICATION]
+            check_request_and_redirect_to_verify(scope)
+          end
+        end
+      end
+
+      def check_request_and_redirect_to_verify(scope)
+        id = warden.session(resource_name)[:id]
+        hosted_page_url = warden.session(resource_name)[DeviseInstant2fa::HOSTED_PAGE_URL]
+
+        remember_me = (params.fetch(resource_name, {})[:remember_me].to_s == "1")
+        return_to = session["#{resource_name}_return_to"]
+        warden.logout
+        warden.reset_session! # make sure the session reset
+
+        session["#{resource_name}_id"] = id
+        session["#{resource_name}_hosted_page_url"] = hosted_page_url
+        # this is safe to put in the session because the cookie is signed
+        session["#{resource_name}_password_checked"] = true
+        session["#{resource_name}_remember_me"] = remember_me
+        session["#{resource_name}_return_to"] = return_to if return_to
+
+        redirect_to two_factor_authentication_path_for(scope)
+        return
+      end
+
+      def two_factor_authentication_path_for(resource_or_scope = nil)
+        scope = Devise::Mapping.find_scope!(resource_or_scope)
+        change_path = "#{scope}_two_factor_authentication_path"
+        send(change_path)
+      end
+    end
+  end
+end

data/lib/devise_instant2fa/hooks/instant2fa_authenticatable.rb

@@ -0,0 +1,11 @@
+require 'instant2fa'
+
+Warden::Manager.after_authentication do |user, auth, options|
+  begin
+    hosted_page_url = Instant2fa.create_verification(user.id.to_s)
+    auth.session(options[:scope])[DeviseInstant2fa::NEED_AUTHENTICATION] = true
+    auth.session(options[:scope])[DeviseInstant2fa::HOSTED_PAGE_URL] = hosted_page_url
+    auth.session(options[:scope])[:id] = user.id
+  rescue Instant2fa::Errors::MFANotEnabled
+  end
+end

data/lib/devise_instant2fa/rails.rb

@@ -0,0 +1,7 @@
+module DeviseInstant2fa
+  class Engine < ::Rails::Engine
+    ActiveSupport.on_load(:action_controller) do
+      include DeviseInstant2fa::Controllers::Helpers
+    end
+  end
+end

data/lib/devise_instant2fa/routes.rb

@@ -0,0 +1,10 @@
+module ActionDispatch::Routing
+  class Mapper
+    protected
+
+      def devise_instant2fa(mapping, controllers)
+        resource :two_factor_authentication, :only => [:show, :update], :path => 'verify', :controller => controllers[:instant2fa] do
+        end
+      end
+  end
+end

data/lib/devise_instant2fa/version.rb

@@ -0,0 +1,3 @@
+module DeviseInstant2fa
+  VERSION = "1.0.0".freeze
+end

data/lib/devise_instant2fa/views/helpers.rb

@@ -0,0 +1,21 @@
+module DeviseInstant2fa
+  module Views
+    module Helpers
+      def instant2fa_settings_view(resource)
+        instant2fa_javascript_tag resource.instant2fa_settings_url
+      end
+
+      def instant2fa_verification_form(resource_name, url)
+        form_tag([resource_name, :two_factor_authentication], :method => :put) do
+          instant2fa_javascript_tag url
+        end
+      end
+
+      private
+
+      def instant2fa_javascript_tag(uri)
+        javascript_include_tag 'https://js.instant2fa.com/hosted.js', class: 'instant2fa-page', 'data-uri' => uri 
+      end
+    end
+  end
+end

data/lib/devise_instant2fa.rb

@@ -0,0 +1,61 @@
+require 'devise_instant2fa/version'
+require 'devise'
+require 'active_support/concern'
+require 'active_support/core_ext/class/attribute_accessors'
+require 'instant2fa'
+
+module Devise
+
+  @@instant2fa_access_key = nil
+  def self.instant2fa_access_key
+    @@instant2fa_access_key
+  end
+
+  def self.instant2fa_access_key=(instant2fa_access_key)
+    @@instant2fa_access_key = @@instant2fa_access_key
+    Instant2fa.configure do |config|
+      config.access_key = instant2fa_access_key
+    end
+  end
+
+  @@instant2fa_access_secret = nil
+  def self.instant2fa_access_secret
+    @@instant2fa_access_secret
+  end
+
+  def self.instant2fa_access_secret=(instant2fa_access_secret)
+    @@instant2fa_access_secret = @@instant2fa_access_secret
+    Instant2fa.configure do |config|
+      config.access_secret = instant2fa_access_secret
+    end
+  end
+end
+
+module DeviseInstant2fa
+  NEED_AUTHENTICATION = 'need_two_factor_authentication'
+  HOSTED_PAGE_URL = 'hosted_page_url'
+
+  module Controllers
+    autoload :Helpers, 'devise_instant2fa/controllers/helpers'
+  end
+
+  module Views
+    autoload :Helpers, 'devise_instant2fa/views/helpers'
+  end
+end
+
+module Devise
+  module Models
+    module Instant2faAuthenticatable
+      def instant2fa_settings_url
+        Instant2fa.create_settings(self.id)
+      end
+    end
+  end
+end
+
+Devise.add_module :instant2fa_authenticatable, :controller => :instant2fa, :route => :instant2fa
+
+require 'devise_instant2fa/hooks/instant2fa_authenticatable'
+require 'devise_instant2fa/routes'
+require 'devise_instant2fa/rails'

data/spec/spec_helper.rb

@@ -0,0 +1,26 @@
+ENV["RAILS_ENV"] ||= "test"
+require File.expand_path("../rails_app/config/environment.rb",  __FILE__)
+
+require 'rspec/rails'
+require 'timecop'
+require 'rack_session_access/capybara'
+
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  config.run_all_when_everything_filtered = true
+  config.filter_run :focus
+
+  config.use_transactional_examples = true
+
+  config.include Capybara::DSL
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  config.order = 'random'
+
+  config.after(:each) { Timecop.return }
+end
+
+Dir["#{Dir.pwd}/spec/support/**/*.rb"].each {|f| require f}

metadata

@@ -0,0 +1,189 @@
+--- !ruby/object:Gem::Specification
+name: devise_instant2fa
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- Jesse Pollak
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-11-09 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.1.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.1.1
+- !ruby/object:Gem::Dependency
+  name: devise
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: instant2fa
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.0.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.0.1
+- !ruby/object:Gem::Dependency
+  name: capybara
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.4.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.4.1
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: timecop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- jesse@instant2fa.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rubocop.yml"
+- ".travis.yml"
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- app/controllers/devise/instant2fa_controller.rb
+- app/views/devise/instant2fa/show.html.erb
+- config/locales/en.yml
+- devise_instant2fa.gemspec
+- lib/devise_instant2fa.rb
+- lib/devise_instant2fa/controllers/helpers.rb
+- lib/devise_instant2fa/hooks/instant2fa_authenticatable.rb
+- lib/devise_instant2fa/rails.rb
+- lib/devise_instant2fa/routes.rb
+- lib/devise_instant2fa/version.rb
+- lib/devise_instant2fa/views/helpers.rb
+- spec/spec_helper.rb
+homepage: https://github.com/clef/instant2fa-devise
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: devise_instant2fa
+rubygems_version: 2.5.1
+signing_key: 
+specification_version: 4
+summary: Instant 2FA plugin for devise
+test_files:
+- spec/spec_helper.rb