devise_ldap_authenticatable 0.4.0 → 0.4.1

data/test/rails_app/public/javascripts/rails.js

@@ -0,0 +1,118 @@
+document.observe("dom:loaded", function() {
+  function handleRemote(element) {
+    var method, url, params;
+
+    if (element.tagName.toLowerCase() === 'form') {
+      method = element.readAttribute('method') || 'post';
+      url    = element.readAttribute('action');
+      params = element.serialize(true);
+    } else {
+      method = element.readAttribute('data-method') || 'get';
+      url    = element.readAttribute('href');
+      params = {};
+    }
+
+    var event = element.fire("ajax:before");
+    if (event.stopped) return false;
+
+    new Ajax.Request(url, {
+      method: method,
+      parameters: params,
+      asynchronous: true,
+      evalScripts: true,
+
+      onLoading:     function(request) { element.fire("ajax:loading", {request: request}); },
+      onLoaded:      function(request) { element.fire("ajax:loaded", {request: request}); },
+      onInteractive: function(request) { element.fire("ajax:interactive", {request: request}); },
+      onComplete:    function(request) { element.fire("ajax:complete", {request: request}); },
+      onSuccess:     function(request) { element.fire("ajax:success", {request: request}); },
+      onFailure:     function(request) { element.fire("ajax:failure", {request: request}); }
+    });
+
+    element.fire("ajax:after");
+  }
+
+  function handleMethod(element) {
+    var method, url, token_name, token;
+
+    method     = element.readAttribute('data-method');
+    url        = element.readAttribute('href');
+    csrf_param = $$('meta[name=csrf-param]').first();
+    csrf_token = $$('meta[name=csrf-token]').first();
+
+    var form = new Element('form', { method: "POST", action: url, style: "display: none;" });
+    element.parentNode.appendChild(form);
+
+    if (method != 'post') {
+      var field = new Element('input', { type: 'hidden', name: '_method', value: method });
+      form.appendChild(field);
+    }
+
+    if (csrf_param) {
+      var param = csrf_param.readAttribute('content');
+      var token = csrf_token.readAttribute('content');
+      var field = new Element('input', { type: 'hidden', name: param, value: token });
+      form.appendChild(field);
+    }
+
+    form.submit();
+  }
+
+  $(document.body).observe("click", function(event) {
+    var message = event.findElement().readAttribute('data-confirm');
+    if (message && !confirm(message)) {
+      event.stop();
+      return false;
+    }
+
+    var element = event.findElement("a[data-remote]");
+    if (element) {
+      handleRemote(element);
+      event.stop();
+      return true;
+    }
+
+    var element = event.findElement("a[data-method]");
+    if (element) {
+      handleMethod(element);
+      event.stop();
+      return true;
+    }
+  });
+
+  // TODO: I don't think submit bubbles in IE
+  $(document.body).observe("submit", function(event) {
+    var element = event.findElement(),
+        message = element.readAttribute('data-confirm');
+    if (message && !confirm(message)) {
+      event.stop();
+      return false;
+    }
+
+    var inputs = element.select("input[type=submit][data-disable-with]");
+    inputs.each(function(input) {
+      input.disabled = true;
+      input.writeAttribute('data-original-value', input.value);
+      input.value = input.readAttribute('data-disable-with');
+    });
+
+    var element = event.findElement("form[data-remote]");
+    if (element) {
+      handleRemote(element);
+      event.stop();
+    }
+  });
+
+  $(document.body).observe("ajax:after", function(event) {
+    var element = event.findElement();
+
+    if (element.tagName.toLowerCase() === 'form') {
+      var inputs = element.select("input[type=submit][disabled=true][data-disable-with]");
+      inputs.each(function(input) {
+        input.value = input.readAttribute('data-original-value');
+        input.writeAttribute('data-original-value', null);
+        input.disabled = false;
+      });
+    }
+  });
+});

data/test/rails_app/script/cucumber

@@ -0,0 +1,10 @@
+#!/usr/bin/env ruby
+
+vendored_cucumber_bin = Dir["#{File.dirname(__FILE__)}/../vendor/{gems,plugins}/cucumber*/bin/cucumber"].first
+if vendored_cucumber_bin
+  load File.expand_path(vendored_cucumber_bin)
+else
+  require 'rubygems' unless ENV['NO_RUBYGEMS']
+  require 'cucumber'
+  load Cucumber::BINARY
+end

data/test/rails_app/script/rails

@@ -0,0 +1,6 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
+
+APP_PATH = File.expand_path('../../config/application',  __FILE__)
+require File.expand_path('../../config/boot',  __FILE__)
+require 'rails/commands'

data/test/rails_app/test/factories/users.rb

@@ -0,0 +1,9 @@
+Factory.define :user do |f|
+  f.email "example.user@test.com"
+  f.password "secret"
+end
+
+Factory.define :admin, :class => "user" do |f|
+  f.email "example.admin@test.com"
+  f.password "admin_secret"
+end

data/test/rails_app/test/functional/posts_controller_test.rb

@@ -0,0 +1,58 @@
+require 'test_helper'
+
+class PostsControllerTest < ActionController::TestCase
+  
+  include Devise::TestHelpers
+
+  context "not logged in" do
+    should "should get INDEX" do
+      get :index
+      assert_response :success
+      assert_equal(response.body, "posts#index")
+    end
+    
+    context "go to NEW page" do
+      setup do
+        get :new
+      end
+
+      should "not get NEW" do
+        assert_response :redirect
+      end      
+    end
+  end
+  
+  context "logged in" do
+    setup do
+      @user = Factory(:user)
+      sign_in(@user)
+    end
+
+    context "get NEW action" do
+      setup do
+        get :new
+      end
+
+      should "get the NEW action" do
+        assert_response :success
+        assert_equal(response.body, "posts#new")
+      end
+    end
+    
+    context "log out user" do
+      setup do
+        sign_out(@user)
+        get :new
+      end
+
+      should "get redirected to the login page" do
+        assert_response :redirect
+      end
+    end
+    
+
+  end
+  
+
+
+end

data/test/rails_app/test/performance/browsing_test.rb

@@ -0,0 +1,9 @@
+require 'test_helper'
+require 'rails/performance_test_help'
+
+# Profiling results for each test method are written to tmp/performance.
+class BrowsingTest < ActionDispatch::PerformanceTest
+  def test_homepage
+    get '/'
+  end
+end

data/test/rails_app/test/test_helper.rb

@@ -0,0 +1,22 @@
+ENV["RAILS_ENV"] = "test"
+require File.expand_path('../../config/environment', __FILE__)
+require 'rails/test_help'
+
+class ActiveSupport::TestCase
+  
+  def reset_ldap_server!
+    `ldapmodify -x -h localhost -p 3389 -D "cn=admin,dc=test,dc=com" -w secret -f ../ldap/clear.ldif`
+    `ldapadd -x -h localhost -p 3389 -D "cn=admin,dc=test,dc=com" -w secret -f ../ldap/base.ldif`
+  end
+  
+  def default_devise_settings!
+    ::Devise.ldap_logger = true
+    ::Devise.ldap_create_user = false
+    ::Devise.ldap_update_password = true
+    ::Devise.ldap_config = "#{Rails.root}/config/ldap.yml"
+    ::Devise.ldap_check_group_membership = false
+    ::Devise.ldap_check_attributes = false
+    ::Devise.authentication_keys = [:email]
+  end
+  
+end

data/test/rails_app/test/unit/helpers/posts_helper_test.rb

@@ -0,0 +1,4 @@
+require 'test_helper'
+
+class PostsHelperTest < ActionView::TestCase
+end

data/test/rails_app/test/unit/post_test.rb

@@ -0,0 +1,8 @@
+require 'test_helper'
+
+class PostTest < ActiveSupport::TestCase
+  # Replace this with your real tests.
+  test "the truth" do
+    assert true
+  end
+end

data/test/rails_app/test/unit/user_test.rb

@@ -0,0 +1,172 @@
+require 'test_helper'
+
+class UserTest < ActiveSupport::TestCase
+
+  def should_be_validated(user, password, message = "Password is invalid")
+    assert(user.valid_ldap_authentication?(password), message)
+  end
+  
+  def should_not_be_validated(user, password, message = "Password is not properly set")
+     assert(!user.valid_ldap_authentication?(password), message)
+  end
+
+  context "With default settings" do
+    setup do
+      reset_ldap_server!
+      default_devise_settings!
+    end
+  
+    context "create a basic user" do
+      setup do
+        @user = Factory(:user)
+      end
+
+      should "check for password validation" do
+        assert_equal(@user.email, "example.user@test.com")
+        should_be_validated @user, "secret"
+        should_not_be_validated @user, "wrong_secret"
+        should_not_be_validated @user, "Secret"
+      end
+    end
+  
+    context "change a LDAP password" do
+      setup do
+        @user = Factory(:user)
+      end
+
+      should "change password" do
+        should_be_validated @user, "secret"
+        @user.reset_password!("changed","changed")
+        should_be_validated @user, "changed", "password was not changed properly on the LDAP sevrer"
+      end
+    
+      should "not allow to change password if setting is false" do
+        should_be_validated @user, "secret"
+        ::Devise.ldap_update_password = false
+        @user.reset_password!("wrong_secret", "wrong_secret")
+        should_not_be_validated @user, "wrong_secret"
+        should_be_validated @user, "secret"
+      end
+    end
+  
+    context "create new local user if user is in LDAP" do
+    
+      setup do
+        assert(User.all.blank?, "There shouldn't be any users in the database")
+      end
+    
+      should "don't create user in the database" do
+        @user = User.authenticate_with_ldap(:email => "example.user@test.com", :password => "secret")
+        assert(User.all.blank?)
+      end
+    
+      context "creating users is enabled" do
+        setup do
+          ::Devise.ldap_create_user = true
+        end
+      
+        should "create a user in the database" do
+          @user = User.authenticate_with_ldap(:email => "example.user@test.com", :password => "secret")
+          assert_equal(User.all.size, 1)
+          assert_contains(User.all.collect(&:email), "example.user@test.com", "user not in database")
+        end
+
+        should "not create a user in the database if the password is wrong_secret" do
+          @user = User.authenticate_with_ldap(:email => "example.user", :password => "wrong_secret")
+          assert(User.all.blank?, "There's users in the database")
+        end
+      
+        should "create a user if the user is not in LDAP" do
+          @user = User.authenticate_with_ldap(:email => "wrong_secret.user@test.com", :password => "wrong_secret")
+          assert(User.all.blank?, "There's users in the database")
+        end
+      end
+    
+    end
+  
+    context "use groups for authorization" do
+      setup do
+        @admin = Factory(:admin)
+        @user = Factory(:user)
+        ::Devise.authentication_keys = [:email]
+        ::Devise.ldap_check_group_membership = true
+      end
+
+      should "admin should be allowed in" do
+        should_be_validated @admin, "admin_secret"
+      end
+    
+      should "admin should have the proper groups set" do
+        assert_contains(@admin.ldap_groups, /cn=admins/, "groups attribute not being set properly")
+      end
+    
+      should "user should not be allowed in" do
+        should_not_be_validated @user, "secret"
+      end
+    end
+  
+    context "use role attribute for authorization" do
+      setup do
+        @admin = Factory(:admin)
+        @user = Factory(:user)
+        ::Devise.ldap_check_attributes = true
+      end
+
+      should "admin should be allowed in" do
+        should_be_validated @admin, "admin_secret"
+      end
+    
+      should "user should not be allowed in" do
+        should_not_be_validated @user, "secret"
+      end
+    end
+    
+    context "use admin setting to bind" do
+      setup do
+        @admin = Factory(:admin)
+        @user = Factory(:user)
+        ::Devise.ldap_use_admin_to_bind = true
+      end
+
+      should "description" do
+        should_be_validated @admin, "admin_secret"
+      end
+    end
+  
+  end
+  
+  context "use uid for login" do
+    setup do
+      reset_ldap_server!
+      default_devise_settings!
+      ::Devise.ldap_config = "#{Rails.root}/config/ldap_with_uid.yml"
+      ::Devise.authentication_keys = [:uid]
+    end
+
+    context "description" do
+      setup do
+        @admin = Factory(:admin)
+        @user = Factory(:user, :uid => "example_user")
+      end
+
+      should "be able to authenticate using uid" do
+        should_be_validated @user, "secret"
+        should_not_be_validated @admin, "admin_secret"
+      end
+    end
+    
+    context "create user" do
+      setup do
+        ::Devise.ldap_create_user = true
+      end
+
+      should "create a user in the database" do
+        @user = User.authenticate_with_ldap(:uid => "example_user", :password => "secret")
+        assert_equal(User.all.size, 1)
+        assert_contains(User.all.collect(&:uid), "example_user", "user not in database")
+      end
+    end    
+  end
+  
+  
+end

data/test/test_helper.rb

@@ -0,0 +1,3 @@
+require 'rubygems'
+require 'active_support'
+require 'active_support/test_case'

metadata

@@ -1,21 +1,21 @@
 --- !ruby/object:Gem::Specification 
 name: devise_ldap_authenticatable
 version: !ruby/object:Gem::Version 
+  hash: 13
   prerelease: false
   segments: 
   - 0
   - 4
-  - 0
-  version: 0.4.0
+  - 1
+  version: 0.4.1
 platform: ruby
 authors: 
-- Daniel McNevin
 - Curtis Schiewek
 autorequire: 
 bindir: bin
 cert_chain: []
 
-date: 2010-07-18 00:00:00 -04:00
+date: 2010-08-01 00:00:00 -04:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -24,13 +24,14 @@ dependencies:
   requirement: &id001 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
-    - - ~>
+    - - ">"
       - !ruby/object:Gem::Version 
+        hash: 31
         segments: 
         - 1
-        - 1
-        - rc2
-        version: 1.1.rc2
+        - 0
+        - 4
+        version: 1.0.4
   type: :runtime
   version_requirements: *id001
 - !ruby/object:Gem::Dependency 
@@ -39,25 +40,32 @@ dependencies:
   requirement: &id002 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version 
+        hash: 31
         segments: 
         - 0
-        - 1
-        - 1
-        version: 0.1.1
+        - 0
+        - 0
+        version: 0.0.0
   type: :runtime
   version_requirements: *id002
-description: LDAP Authentication for Devise
-email: 
-- dpmcnevin@gmail.com
+description: LDAP authentication module for Devise
+email: curtis.schiewek@gmail.com
 executables: []
 
 extensions: []
 
-extra_rdoc_files: []
-
+extra_rdoc_files: 
+- README.md
 files: 
+- .gitignore
+- MIT-LICENSE
+- README.md
+- Rakefile
+- VERSION
+- devise_ldap_authenticatable.gemspec
+- lib/devise_ldap_authenticatable.rb
 - lib/devise_ldap_authenticatable/exception.rb
 - lib/devise_ldap_authenticatable/ldap_adapter.rb
 - lib/devise_ldap_authenticatable/logger.rb
@@ -66,17 +74,84 @@ files:
 - lib/devise_ldap_authenticatable/schema.rb
 - lib/devise_ldap_authenticatable/strategy.rb
 - lib/devise_ldap_authenticatable/version.rb
-- lib/devise_ldap_authenticatable.rb
 - lib/generators/devise_ldap_authenticatable/install_generator.rb
 - lib/generators/devise_ldap_authenticatable/templates/ldap.yml
-- README.md
+- rails/init.rb
+- test/devise_ldap_authenticatable_test.rb
+- test/ldap/base.ldif
+- test/ldap/clear.ldif
+- test/ldap/local.schema
+- test/ldap/run-server.sh
+- test/ldap/slapd-test.conf
+- test/rails_app/Gemfile
+- test/rails_app/Rakefile
+- test/rails_app/app/controllers/application_controller.rb
+- test/rails_app/app/controllers/posts_controller.rb
+- test/rails_app/app/helpers/application_helper.rb
+- test/rails_app/app/helpers/posts_helper.rb
+- test/rails_app/app/models/post.rb
+- test/rails_app/app/models/user.rb
+- test/rails_app/app/views/layouts/application.html.erb
+- test/rails_app/app/views/posts/index.html.erb
+- test/rails_app/config.ru
+- test/rails_app/config/application.rb
+- test/rails_app/config/boot.rb
+- test/rails_app/config/cucumber.yml
+- test/rails_app/config/database.yml
+- test/rails_app/config/environment.rb
+- test/rails_app/config/environments/development.rb
+- test/rails_app/config/environments/production.rb
+- test/rails_app/config/environments/test.rb
+- test/rails_app/config/initializers/backtrace_silencers.rb
+- test/rails_app/config/initializers/devise.rb
+- test/rails_app/config/initializers/inflections.rb
+- test/rails_app/config/initializers/mime_types.rb
+- test/rails_app/config/initializers/secret_token.rb
+- test/rails_app/config/initializers/session_store.rb
+- test/rails_app/config/ldap.yml
+- test/rails_app/config/ldap_with_uid.yml
+- test/rails_app/config/locales/devise.en.yml
+- test/rails_app/config/locales/en.yml
+- test/rails_app/config/routes.rb
+- test/rails_app/db/migrate/20100708120302_create_posts.rb
+- test/rails_app/db/migrate/20100708120448_devise_create_users.rb
+- test/rails_app/db/schema.rb
+- test/rails_app/db/seeds.rb
+- test/rails_app/features/manage_logins.feature
+- test/rails_app/features/step_definitions/login_steps.rb
+- test/rails_app/features/step_definitions/web_steps.rb
+- test/rails_app/features/support/env.rb
+- test/rails_app/features/support/paths.rb
+- test/rails_app/lib/tasks/.gitkeep
+- test/rails_app/lib/tasks/cucumber.rake
+- test/rails_app/public/404.html
+- test/rails_app/public/422.html
+- test/rails_app/public/500.html
+- test/rails_app/public/images/rails.png
+- test/rails_app/public/javascripts/application.js
+- test/rails_app/public/javascripts/controls.js
+- test/rails_app/public/javascripts/dragdrop.js
+- test/rails_app/public/javascripts/effects.js
+- test/rails_app/public/javascripts/prototype.js
+- test/rails_app/public/javascripts/rails.js
+- test/rails_app/public/stylesheets/.gitkeep
+- test/rails_app/script/cucumber
+- test/rails_app/script/rails
+- test/rails_app/test/factories/users.rb
+- test/rails_app/test/functional/posts_controller_test.rb
+- test/rails_app/test/performance/browsing_test.rb
+- test/rails_app/test/test_helper.rb
+- test/rails_app/test/unit/helpers/posts_helper_test.rb
+- test/rails_app/test/unit/post_test.rb
+- test/rails_app/test/unit/user_test.rb
+- test/test_helper.rb
 has_rdoc: true
-homepage: http://github.com/cschiewek/devise_ldap_authenticatable/tree/rails3
+homepage: http://github.com/cschiewek/devise_ldap_authenticatable
 licenses: []
 
 post_install_message: 
-rdoc_options: []
-
+rdoc_options: 
+- --charset=UTF-8
 require_paths: 
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement 
@@ -84,6 +159,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
+      hash: 3
       segments: 
       - 0
       version: "0"
@@ -92,17 +168,51 @@ required_rubygems_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
+      hash: 3
       segments: 
-      - 1
-      - 3
-      - 6
-      version: 1.3.6
+      - 0
+      version: "0"
 requirements: []
 
-rubyforge_project: devise_ldap_authenticatable
+rubyforge_project: 
 rubygems_version: 1.3.7
 signing_key: 
 specification_version: 3
-summary: LDAP Authentication for Devise
-test_files: []
-
+summary: LDAP authentication module for Devise
+test_files: 
+- test/devise_ldap_authenticatable_test.rb
+- test/rails_app/app/controllers/application_controller.rb
+- test/rails_app/app/controllers/posts_controller.rb
+- test/rails_app/app/helpers/application_helper.rb
+- test/rails_app/app/helpers/posts_helper.rb
+- test/rails_app/app/models/post.rb
+- test/rails_app/app/models/user.rb
+- test/rails_app/config/application.rb
+- test/rails_app/config/boot.rb
+- test/rails_app/config/environment.rb
+- test/rails_app/config/environments/development.rb
+- test/rails_app/config/environments/production.rb
+- test/rails_app/config/environments/test.rb
+- test/rails_app/config/initializers/backtrace_silencers.rb
+- test/rails_app/config/initializers/devise.rb
+- test/rails_app/config/initializers/inflections.rb
+- test/rails_app/config/initializers/mime_types.rb
+- test/rails_app/config/initializers/secret_token.rb
+- test/rails_app/config/initializers/session_store.rb
+- test/rails_app/config/routes.rb
+- test/rails_app/db/migrate/20100708120302_create_posts.rb
+- test/rails_app/db/migrate/20100708120448_devise_create_users.rb
+- test/rails_app/db/schema.rb
+- test/rails_app/db/seeds.rb
+- test/rails_app/features/step_definitions/login_steps.rb
+- test/rails_app/features/step_definitions/web_steps.rb
+- test/rails_app/features/support/env.rb
+- test/rails_app/features/support/paths.rb
+- test/rails_app/test/factories/users.rb
+- test/rails_app/test/functional/posts_controller_test.rb
+- test/rails_app/test/performance/browsing_test.rb
+- test/rails_app/test/test_helper.rb
+- test/rails_app/test/unit/helpers/posts_helper_test.rb
+- test/rails_app/test/unit/post_test.rb
+- test/rails_app/test/unit/user_test.rb
+- test/test_helper.rb