devise_openid_authenticatable 1.0.0.alpha5 → 1.0.0.alpha6

data/.gitignore

@@ -1 +1,5 @@
 pkg/*
+log/
+Gemfile.lock
+.bundle
+spec/scenario/db/*.sqlite3

data/Gemfile

@@ -0,0 +1,9 @@
+source "http://rubygems.org"
+
+gem 'rails', '3.0.0.rc'
+gem "devise", ">= 1.1.1"
+gem "rspec", ">= 2.0.0.beta.17"
+gem "rspec-rails", ">= 2.0.0.beta.17"
+gem "rack-openid", ">= 1.0.3"
+gem "mocha"
+gem "sqlite3-ruby"

data/README.md

@@ -62,11 +62,13 @@ aren't using database_authenticatable:
       <p><%= f.submit "Sign in" %></p>
     <% end -%>
 
-Finally, you'll need to add the following in your Rails configuration:
+Finally, you'll need to wire up Rack::OpenID in your Rails configuration.  If you're using Devise 1.0, you can do:
+
+    config.middleware.use "Rack::OpenID"
+
+If you're using Devise 1.1 or a later version, you'll need to do this instead, to ensure that Rack::OpenID sits above Warden in the Rack middleware stack:
 
     config.middleware.insert_before(Warden::Manager, Rack::OpenID)
-    
-which is the Rack middleware that actually does most of the heavy lifting here.
 
 Automatically creating users
 ----------------------------

data/Rakefile

@@ -1,17 +1,12 @@
 require 'rake'
-require 'rake/testtask'
 require 'rake/rdoctask'
+require 'rspec/mocks/version'
+require 'rspec/core/rake_task'
 
-desc 'Default: run unit tests.'
-task :default => :test
+RSpec::Core::RakeTask.new(:spec)
 
-desc 'Test the devise_openid_authenticatable plugin.'
-Rake::TestTask.new(:test) do |t|
-  t.libs << 'lib'
-  t.libs << 'test'
-  t.pattern = 'test/**/*_test.rb'
-  t.verbose = true
-end
+desc 'Default: run specs.'
+task :default => :spec
 
 desc 'Generate documentation for the devise_openid_authenticatable plugin.'
 Rake::RDocTask.new(:rdoc) do |rdoc|
@@ -22,7 +17,6 @@ Rake::RDocTask.new(:rdoc) do |rdoc|
   rdoc.rdoc_files.include('lib/**/*.rb')
 end
 
-
 begin
   require 'jeweler'
   Jeweler::Tasks.new do |gemspec|

data/VERSION

@@ -1 +1 @@
-1.0.0.alpha5
+1.0.0.alpha6

data/devise_openid_authenticatable.gemspec

@@ -5,11 +5,11 @@
 
 Gem::Specification.new do |s|
   s.name = %q{devise_openid_authenticatable}
-  s.version = "1.0.0.alpha5"
+  s.version = "1.0.0.alpha6"
 
   s.required_rubygems_version = Gem::Requirement.new("> 1.3.1") if s.respond_to? :required_rubygems_version=
   s.authors = ["Nat Budin"]
-  s.date = %q{2010-08-09}
+  s.date = %q{2010-08-19}
   s.description = %q{OpenID authentication module for Devise using Rack::OpenID}
   s.email = %q{natbudin@gmail.com}
   s.extra_rdoc_files = [
@@ -18,6 +18,7 @@ Gem::Specification.new do |s|
   s.files = [
     ".gitignore",
      "CHANGELOG.rdoc",
+     "Gemfile",
      "README.md",
      "Rakefile",
      "VERSION",
@@ -27,13 +28,58 @@ Gem::Specification.new do |s|
      "lib/devise_openid_authenticatable/routes.rb",
      "lib/devise_openid_authenticatable/schema.rb",
      "lib/devise_openid_authenticatable/strategy.rb",
-     "rails/init.rb"
+     "rails/init.rb",
+     "spec/model_spec.rb",
+     "spec/scenario/app/controllers/application_controller.rb",
+     "spec/scenario/app/controllers/home_controller.rb",
+     "spec/scenario/app/controllers/sessions_controller.rb",
+     "spec/scenario/app/models/user.rb",
+     "spec/scenario/app/views/sessions/new.html.erb",
+     "spec/scenario/config.ru",
+     "spec/scenario/config/application.rb",
+     "spec/scenario/config/boot.rb",
+     "spec/scenario/config/database.yml",
+     "spec/scenario/config/environment.rb",
+     "spec/scenario/config/environments/development.rb",
+     "spec/scenario/config/environments/test.rb",
+     "spec/scenario/config/initializers/backtrace_silencers.rb",
+     "spec/scenario/config/initializers/inflections.rb",
+     "spec/scenario/config/initializers/secret_token.rb",
+     "spec/scenario/config/routes.rb",
+     "spec/scenario/db/migrate/20100401102949_create_tables.rb",
+     "spec/scenario/db/schema.rb",
+     "spec/spec_helper.rb",
+     "spec/strategy_spec.rb",
+     "spec/support/migrations.rb",
+     "spec/support/patches.rb"
   ]
   s.homepage = %q{http://github.com/nbudin/devise_openid_authenticatable}
   s.rdoc_options = ["--charset=UTF-8"]
   s.require_paths = ["lib"]
   s.rubygems_version = %q{1.3.7}
   s.summary = %q{OpenID authentication module for Devise}
+  s.test_files = [
+    "spec/model_spec.rb",
+     "spec/scenario/app/controllers/application_controller.rb",
+     "spec/scenario/app/controllers/home_controller.rb",
+     "spec/scenario/app/controllers/sessions_controller.rb",
+     "spec/scenario/app/models/user.rb",
+     "spec/scenario/config/application.rb",
+     "spec/scenario/config/boot.rb",
+     "spec/scenario/config/environment.rb",
+     "spec/scenario/config/environments/development.rb",
+     "spec/scenario/config/environments/test.rb",
+     "spec/scenario/config/initializers/backtrace_silencers.rb",
+     "spec/scenario/config/initializers/inflections.rb",
+     "spec/scenario/config/initializers/secret_token.rb",
+     "spec/scenario/config/routes.rb",
+     "spec/scenario/db/migrate/20100401102949_create_tables.rb",
+     "spec/scenario/db/schema.rb",
+     "spec/spec_helper.rb",
+     "spec/strategy_spec.rb",
+     "spec/support/migrations.rb",
+     "spec/support/patches.rb"
+  ]
 
   if s.respond_to? :specification_version then
     current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION

data/lib/devise_openid_authenticatable/strategy.rb

@@ -4,76 +4,96 @@ require 'rack/openid'
 module Devise
   module Strategies
     class OpenidAuthenticatable < Base
+
       def valid?
-        env[Rack::OpenID::RESPONSE] || (mapping.to.respond_to?(:find_by_identity_url) && 
-          params[scope] && !params[scope]["identity_url"].blank?)
+        valid_mapping? && ( provider_response? || identity_param? )
       end
 
       def authenticate!
         logger.debug("Authenticating with OpenID for mapping #{mapping.to}")
-        if resp = env[Rack::OpenID::RESPONSE]
-          logger.debug "Attempting OpenID auth: #{env["rack.openid.response"].inspect}"
-          case resp.status
+
+        if provider_response
+          handle_response!
+        else # Delegate authentication to Rack::OpenID by throwing a 401
+          opts = { :identifier => params[scope]["identity_url"] }
+          opts[:optional] = mapping.to.openid_optional_fields if mapping.to.respond_to?(:openid_optional_fields)
+          opts[:required] = mapping.to.openid_required_fields if mapping.to.respond_to?(:openid_required_fields)
+          custom! [401, { Rack::OpenID::AUTHENTICATE_HEADER => Rack::OpenID.build_header(opts) }, "Sign in with OpenID"]
+        end
+      end
+
+      protected
+
+        # Handles incoming provider response
+        def handle_response!
+          logger.debug "Attempting OpenID auth: #{provider_response.inspect}"
+
+          case provider_response.status
           when :success
-            u = mapping.to.find_by_identity_url(resp.identity_url)
-            if u.nil? && mapping.to.respond_to?(:create_from_identity_url)
-              u = mapping.to.create_from_identity_url(resp.identity_url)
+            resource = mapping.to.find_by_identity_url(provider_response.identity_url)
+            if resource.nil? && mapping.to.respond_to?(:create_from_identity_url)
+              resource = mapping.to.create_from_identity_url(provider_response.identity_url)
             end
-            
-            if u
-              if u.respond_to?("openid_fields=")
-                openid_fields = parse_openid_fields(resp)
-              
-                if openid_fields
-                  u.openid_fields = openid_fields
-                  u.save
-                end
-              end
-              
-              success!(u)
+
+            if resource
+              update_resource!(resource)
+              success!(resource)
             else
-              fail!("This OpenID URL is not associated with any registered user")
+              fail! "This OpenID URL is not associated with any registered user"
             end
+
           when :cancel
-            fail!("OpenID auth cancelled")
+            fail! "OpenID authentication cancelled"
           when :failure
-            fail!("OpenID auth failed")
+            fail! "OpenID authentication failed"
           end
-        else
-          header_params = { :identifier => params[scope]["identity_url"] }
-          header_params[:optional] = mapping.to.openid_optional_fields if mapping.to.respond_to?(:openid_optional_fields)
-          header_params[:required] = mapping.to.openid_required_fields if mapping.to.respond_to?(:openid_required_fields)
-          header_data = Rack::OpenID.build_header(header_params)
-          logger.debug header_data
-          custom!([401, {
-                Rack::OpenID::AUTHENTICATE_HEADER => header_data
-              }, "Sign in with OpenID"])
         end
-      end
-      
+
       private
-      def parse_openid_fields(resp)
-        openid_fields = nil
-        axr = OpenID::AX::FetchResponse.from_success_response(resp)
-        if axr
-          openid_fields = axr.data
-        else
-          resp.message.namespaces.each do |uri, ns_alias|
-            if ns_alias.to_s == "sreg"
-              openid_fields = resp.extension_response(uri, true)
-              break
+
+        def provider_response?
+          !!provider_response
+        end
+
+        def provider_response
+          env[Rack::OpenID::RESPONSE]
+        end
+
+        def valid_mapping?
+          mapping.to.respond_to?(:find_by_identity_url)
+        end
+
+        def identity_param?
+          params[scope].try(:[], 'identity_url').present?
+        end
+
+        def update_resource!(resource)
+          return unless resource.respond_to?(:openid_fields=)
+
+          fields = nil
+          if axr = OpenID::AX::FetchResponse.from_success_response(provider_response)
+            fields = axr.data
+          else
+            provider_response.message.namespaces.each do |uri, ns_alias|
+              if ns_alias.to_s == "sreg"
+                fields = provider_response.extension_response(uri, true)
+                break
+              end
             end
           end
+
+          if fields
+            resource.openid_fields = fields
+            resource.save
+          end
         end
-        
-        return openid_fields
-      end
-      
-      def logger
-        @logger ||= ((Rails && Rails.logger) || RAILS_DEFAULT_LOGGER)
-      end
+
+        def logger
+          @logger ||= ((Rails && Rails.logger) || RAILS_DEFAULT_LOGGER)
+        end
+
     end
   end
 end
 
-Warden::Strategies.add(:openid_authenticatable, Devise::Strategies::OpenidAuthenticatable)
+Warden::Strategies.add :openid_authenticatable, Devise::Strategies::OpenidAuthenticatable

data/lib/devise_openid_authenticatable.rb

@@ -4,8 +4,8 @@ require 'devise_openid_authenticatable/schema'
 require 'devise_openid_authenticatable/strategy'
 require 'devise_openid_authenticatable/routes'
 
-Devise.add_module(:openid_authenticatable, 
+Devise.add_module :openid_authenticatable,
   :strategy => true,
   :model => 'devise_openid_authenticatable/model',
   :controller => :sessions,
-  :route => :openid)
+  :route => :openid

data/spec/model_spec.rb

@@ -0,0 +1,10 @@
+require 'spec_helper'
+
+describe Devise::Models::OpenidAuthenticatable do
+
+  it 'should respond to find_by_identity_url' do
+    User.included_modules.should include(Devise::Models::OpenidAuthenticatable)
+    User.should respond_to(:find_by_identity_url)
+  end
+
+end

data/spec/scenario/app/controllers/application_controller.rb

@@ -0,0 +1,4 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery
+  before_filter :authenticate_user!
+end

data/spec/scenario/app/controllers/home_controller.rb

@@ -0,0 +1,5 @@
+class HomeController < ApplicationController
+  def index
+    head(:ok)
+  end
+end

data/spec/scenario/app/controllers/sessions_controller.rb

@@ -0,0 +1,4 @@
+class SessionsController < Devise::SessionsController
+  def new
+  end
+end

data/spec/scenario/app/models/user.rb

@@ -0,0 +1,18 @@
+class User < ActiveRecord::Base
+  devise :openid_authenticatable
+
+  def self.create_from_identity_url(identity_url)
+    create do |user|
+      user.identity_url = identity_url
+    end
+  end
+
+  def self.openid_required_fields
+    ["http://axschema.org/contact/email"]
+  end
+
+  def openid_fields=(fields)
+    self.email = fields["http://axschema.org/contact/email"].first
+  end
+
+end

data/spec/scenario/app/views/sessions/new.html.erb

@@ -0,0 +1,10 @@
+<h2>Sign in</h2>
+
+<%= form_for(resource, :as => resource_name, :url => session_path(resource_name)) do |f| %>
+  <p><%= f.label :identity_url %><br />
+  <%= f.text_field :identity_url %></p>
+
+  <p><%= f.submit "Sign in" %></p>
+<% end %>
+
+<%= render :partial => "devise/shared/links" %>

data/spec/scenario/config/application.rb

@@ -0,0 +1,18 @@
+require File.expand_path('../boot', __FILE__)
+
+require "rails/all"
+Bundler.require :default, Rails.env
+
+require "devise"
+require "devise_openid_authenticatable"
+
+Devise.setup do |config|
+  require "devise/orm/active_record"
+end
+
+module Scenario
+  class Application < Rails::Application
+    config.active_support.deprecation = :stderr
+    config.middleware.insert_before(Warden::Manager, Rack::OpenID)
+  end
+end

data/spec/scenario/config/boot.rb

@@ -0,0 +1,15 @@
+require 'rubygems'
+
+# Set up gems listed in the Gemfile.
+gemfile = File.expand_path('../../../../Gemfile', __FILE__)
+begin
+  ENV['BUNDLE_GEMFILE'] = gemfile
+  require 'bundler'
+  Bundler.setup
+rescue Bundler::GemNotFound => e
+  STDERR.puts e.message
+  STDERR.puts "Try running `bundle install`."
+  exit!
+end if File.exist?(gemfile)
+
+$:.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/scenario/config/database.yml

@@ -0,0 +1,5 @@
+test:
+  adapter: sqlite3
+  database: db/test.sqlite3
+  pool: 5
+  timeout: 5000

data/spec/scenario/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the rails application
+require File.expand_path('../application', __FILE__)
+
+# Initialize the rails application
+Scenario::Application.initialize!

data/spec/scenario/config/environments/development.rb

@@ -0,0 +1,19 @@
+Scenario::Application.configure do
+  # Settings specified here will take precedence over those in config/environment.rb
+
+  # In the development environment your application's code is reloaded on
+  # every request.  This slows down response time but is perfect for development
+  # since you don't have to restart the webserver when you make code changes.
+  config.cache_classes = false
+
+  # Log error messages when you accidentally call methods on nil.
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_view.debug_rjs             = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send
+  config.action_mailer.raise_delivery_errors = false
+end

data/spec/scenario/config/environments/test.rb

@@ -0,0 +1,33 @@
+Scenario::Application.configure do
+  # Settings specified here will take precedence over those in config/environment.rb
+
+  # The test environment is used exclusively to run your application's
+  # test suite.  You never need to work with it otherwise.  Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs.  Don't rely on the data there!
+  config.cache_classes = true
+
+  # Log error messages when you accidentally call methods on nil.
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Disable request forgery protection in test environment
+  config.action_controller.allow_forgery_protection    = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  config.action_mailer.delivery_method = :test
+
+  # Use SQL instead of Active Record's schema dumper when creating the test database.
+  # This is necessary if your schema can't be completely dumped by the schema dumper,
+  # like if you have constraints or database-specific column types
+  # config.active_record.schema_format = :sql
+
+  config.action_dispatch.show_exceptions = false
+
+  config.active_support.deprecation = :stderr
+end

data/spec/scenario/config/initializers/backtrace_silencers.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
+# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
+
+# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
+Rails.backtrace_cleaner.remove_silencers!

data/spec/scenario/config/initializers/inflections.rb

@@ -0,0 +1,2 @@
+ActiveSupport::Inflector.inflections do |inflect|
+end

data/spec/scenario/config/initializers/secret_token.rb

@@ -0,0 +1,2 @@
+Rails.application.config.secret_token = 'ea942c41850d502f2c8283e26bdc57829f471bb18224ddff0a192c4f32cdf6cb5aa0d82b3a7a7adbeb640c4b06f3aa1cd5f098162d8240f669b39d6b49680571'
+Rails.application.config.session_store :cookie_store, :key => "_my_scenario"

data/spec/scenario/config/routes.rb

@@ -0,0 +1,4 @@
+Rails.application.routes.draw do
+  devise_for :users, :controllers => { :sessions => 'sessions' }
+  root :to => "home#index"
+end

data/spec/scenario/db/migrate/20100401102949_create_tables.rb

@@ -0,0 +1,13 @@
+class CreateTables < ActiveRecord::Migration
+  def self.up
+    create_table :users do |t|
+      t.openid_authenticatable
+      t.string :email
+      t.timestamps
+    end
+  end
+
+  def self.down
+    drop_table :users
+  end
+end

data/spec/scenario/db/schema.rb

@@ -0,0 +1,38 @@
+# This file is auto-generated from the current state of the database. Instead of editing this file,
+# please use the migrations feature of Active Record to incrementally modify your database, and
+# then regenerate this schema definition.
+#
+# Note that this schema.rb definition is the authoritative source for your database schema. If you need
+# to create the application database on another system, you should be using db:schema:load, not running
+# all the migrations from scratch. The latter is a flawed and unsustainable approach (the more migrations
+# you'll amass, the slower it'll run and the greater likelihood for issues).
+#
+# It's strongly recommended to check this file into your version control system.
+
+ActiveRecord::Schema.define(:version => 20100401102949) do
+
+  create_table "users", :force => true do |t|
+    t.string   "email",                :default => "", :null => false
+    t.string   "encrypted_password",   :default => "", :null => false
+    t.string   "password_salt",        :default => "", :null => false
+    t.string   "username"
+    t.string   "confirmation_token"
+    t.datetime "confirmed_at"
+    t.datetime "confirmation_sent_at"
+    t.string   "reset_password_token"
+    t.string   "remember_token"
+    t.datetime "remember_created_at"
+    t.integer  "sign_in_count",        :default => 0
+    t.datetime "current_sign_in_at"
+    t.datetime "last_sign_in_at"
+    t.string   "current_sign_in_ip"
+    t.string   "last_sign_in_ip"
+    t.integer  "failed_attempts",      :default => 0
+    t.string   "unlock_token"
+    t.datetime "locked_at"
+    t.string   "authentication_token"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+end

data/spec/spec_helper.rb

@@ -0,0 +1,14 @@
+ENV["RAILS_ENV"] = "test"
+$:.unshift File.dirname(__FILE__)
+$:.unshift File.expand_path('../../lib', __FILE__)
+
+require "scenario/config/environment"
+require "rails/test_help"
+require 'rspec/rails'
+
+Webrat.configure do |config|
+  config.mode = :rails
+  config.open_error_files = false
+end
+
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }

data/spec/strategy_spec.rb

@@ -0,0 +1,163 @@
+require 'spec_helper'
+
+describe Devise::Strategies::OpenidAuthenticatable do
+  include Rspec::Rails::RequestExampleGroup
+
+  def openid_params
+    {
+      "openid.identity"=>identity,
+      "openid.sig"=>"OWYQspA5zZhoqRFhfSMFX/hLkok=",
+      "openid.return_to"=>"http://www.example.com/users/sign_in?_method=post",
+      "openid.op_endpoint"=>"http://openid.example.org",
+      "openid.mode"=>"id_res",
+      "openid.response_nonce"=>"2010-01-11T00:00:00Zeru5O3ETpTNX0A",
+      "openid.ns"=>"http://specs.openid.net/auth/2.0",
+      "openid.ns.ext1"=>"http://openid.net/srv/ax/1.0",
+      "openid.ext1.value.ext0"=>"dimitrij@example.com",
+      "openid.ext1.type.ext0"=>"http://axschema.org/contact/email",
+      "openid.assoc_handle"=>"AOQobUeSdDcZUnQEYna4AZeTREaJiCDoii26u_x7wdrRrU5TqkGaqq9N",
+      "openid.claimed_id"=>identity,
+      "openid.signed"=>"op_endpoint,claimed_id,identity,return_to,response_nonce,assoc_handle,ns.ext1,ext1.mode,ext1.type.ext0,ext1.value.ext0"
+    }
+  end
+
+  def stub_completion
+    ax_info  = mock('AXInfo', :data => { "http://axschema.org/contact/email" => ["dimitrij@example.com"] })
+    OpenID::AX::FetchResponse.stubs(:from_success_response).returns(ax_info)
+
+    endpoint = mock('EndPoint', :claimed_id => identity)
+    success  = OpenID::Consumer::SuccessResponse.new(endpoint, OpenID::Message.new, "ANY")
+    OpenID::Consumer.any_instance.stubs(:complete_id_res).returns(success)
+  end
+
+  def identity
+    @identity || 'http://openid.example.org/myid'
+  end
+
+  before do
+    User.create! do |u|
+      u.identity_url = "http://openid.example.org/myid"
+    end
+  end
+
+  after do
+    User.delete_all
+  end
+
+  describe "GET /protected/resource" do
+    before { get '/' }
+
+    it 'should redirect to sign-in' do
+      response.should be_redirect
+      response.should redirect_to('/users/sign_in')
+    end
+  end
+
+  describe "GET /users/sign_in" do
+    before { get '/users/sign_in' }
+
+    it 'should render the page' do
+      response.should be_success
+      response.should render_template("sessions/new")
+    end
+  end
+
+  describe "POST /users/sign_in (without a identity URL param)" do
+    before { post '/users/sign_in' }
+
+    it 'should render the sign-in form' do
+      response.should be_success
+      response.should render_template("sessions/new")
+    end
+  end
+
+  describe "POST /users/sign_in (with an empty identity URL param)" do
+    before { post '/users/sign_in', 'user' => { 'identity_url' => '' } }
+
+    it 'should render the sign-in form' do
+      response.should be_success
+      response.should render_template("sessions/new")
+    end
+  end
+
+  describe "POST /users/sign_in (with a valid identity URL param)" do
+    before do
+      Rack::OpenID.any_instance.stubs(:begin_authentication).returns([302, {'location' => 'http://openid.example.org/auth'}, ''])
+      post '/users/sign_in', 'user' => { 'identity_url' => 'http://openid.example.org/myid' }
+    end
+
+    it 'should forward request to provider' do
+      response.should be_redirect
+      response.should redirect_to('http://openid.example.org/auth')
+    end
+  end
+
+  describe "POST /users/sign_in (from OpenID provider, with failure)" do
+
+    before do
+      post '/users/sign_in', "openid.mode"=>"failure", "openid.ns"=>"http://specs.openid.net/auth/2.0", "_method"=>"post"
+    end
+
+    it 'should fail authentication with failure' do
+      response.should be_success
+      response.should render_template("sessions/new")
+      flash[:alert].should match(/failed/i)
+    end
+  end
+
+  describe "POST /users/sign_in (from OpenID provider, when cancelled failure)" do
+
+    before do
+      post '/users/sign_in', "openid.mode"=>"cancel", "openid.ns"=>"http://specs.openid.net/auth/2.0", "_method"=>"post"
+    end
+
+    it 'should fail authentication with failure' do
+      response.should be_success
+      response.should render_template("sessions/new")
+      flash[:alert].should match(/cancelled/i)
+    end
+  end
+
+  describe "POST /users/sign_in (from OpenID provider, success, user already present)" do
+
+    before do
+      stub_completion
+      post '/users/sign_in', openid_params.merge("_method"=>"post")
+    end
+
+    it 'should accept authentication with success' do
+      response.should be_redirect
+      response.should redirect_to('http://www.example.com/')
+      flash[:notice].should match(/success/i)
+    end
+
+    it 'should update user-records with retrieved information' do
+      User.should have(1).record
+      User.first.email.should == 'dimitrij@example.com'
+    end
+  end
+
+  describe "POST /users/sign_in (from OpenID provider, success, new user)" do
+
+    before do
+      @identity = 'http://openid.example.org/newid'
+      stub_completion
+      post '/users/sign_in', openid_params.merge("_method"=>"post")
+    end
+
+    it 'should accept authentication with success' do
+      response.should be_redirect
+      response.should redirect_to('http://www.example.com/')
+      flash[:notice].should match(/success/i)
+    end
+
+    it 'should auto-create user-records (if supported)' do
+      User.should have(2).records
+    end
+
+    it 'should update new user-records with retrieved information' do
+      User.order(:id).last.email.should == 'dimitrij@example.com'
+    end
+  end
+
+end

data/spec/support/migrations.rb

@@ -0,0 +1,4 @@
+FileUtils.rm File.expand_path("../../scenario/db/*.sqlite3", __FILE__), :force => true
+ActiveRecord::Base.logger = Logger.new(nil)
+ActiveRecord::Migration.verbose = false
+ActiveRecord::Migrator.migrate(File.expand_path("../../scenario/db/migrate/", __FILE__))

data/spec/support/patches.rb

@@ -0,0 +1,4 @@
+# Patch Webrat
+Webrat::Methods.module_eval do
+  undef_method :response
+end

metadata

@@ -1,13 +1,14 @@
 --- !ruby/object:Gem::Specification 
 name: devise_openid_authenticatable
 version: !ruby/object:Gem::Version 
+  hash: -1710980388
   prerelease: true
   segments: 
   - 1
   - 0
   - 0
-  - alpha5
-  version: 1.0.0.alpha5
+  - alpha6
+  version: 1.0.0.alpha6
 platform: ruby
 authors: 
 - Nat Budin
@@ -15,7 +16,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-08-09 00:00:00 -04:00
+date: 2010-08-19 00:00:00 -04:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -26,6 +27,7 @@ dependencies:
     requirements: 
     - - ">="
       - !ruby/object:Gem::Version 
+        hash: 27
         segments: 
         - 1
         - 0
@@ -41,6 +43,7 @@ dependencies:
     requirements: 
     - - ">="
       - !ruby/object:Gem::Version 
+        hash: 17
         segments: 
         - 1
         - 0
@@ -59,6 +62,7 @@ extra_rdoc_files:
 files: 
 - .gitignore
 - CHANGELOG.rdoc
+- Gemfile
 - README.md
 - Rakefile
 - VERSION
@@ -69,6 +73,29 @@ files:
 - lib/devise_openid_authenticatable/schema.rb
 - lib/devise_openid_authenticatable/strategy.rb
 - rails/init.rb
+- spec/model_spec.rb
+- spec/scenario/app/controllers/application_controller.rb
+- spec/scenario/app/controllers/home_controller.rb
+- spec/scenario/app/controllers/sessions_controller.rb
+- spec/scenario/app/models/user.rb
+- spec/scenario/app/views/sessions/new.html.erb
+- spec/scenario/config.ru
+- spec/scenario/config/application.rb
+- spec/scenario/config/boot.rb
+- spec/scenario/config/database.yml
+- spec/scenario/config/environment.rb
+- spec/scenario/config/environments/development.rb
+- spec/scenario/config/environments/test.rb
+- spec/scenario/config/initializers/backtrace_silencers.rb
+- spec/scenario/config/initializers/inflections.rb
+- spec/scenario/config/initializers/secret_token.rb
+- spec/scenario/config/routes.rb
+- spec/scenario/db/migrate/20100401102949_create_tables.rb
+- spec/scenario/db/schema.rb
+- spec/spec_helper.rb
+- spec/strategy_spec.rb
+- spec/support/migrations.rb
+- spec/support/patches.rb
 has_rdoc: true
 homepage: http://github.com/nbudin/devise_openid_authenticatable
 licenses: []
@@ -83,6 +110,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
+      hash: 3
       segments: 
       - 0
       version: "0"
@@ -91,6 +119,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">"
     - !ruby/object:Gem::Version 
+      hash: 25
       segments: 
       - 1
       - 3
@@ -103,5 +132,24 @@ rubygems_version: 1.3.7
 signing_key: 
 specification_version: 3
 summary: OpenID authentication module for Devise
-test_files: []
-
+test_files: 
+- spec/model_spec.rb
+- spec/scenario/app/controllers/application_controller.rb
+- spec/scenario/app/controllers/home_controller.rb
+- spec/scenario/app/controllers/sessions_controller.rb
+- spec/scenario/app/models/user.rb
+- spec/scenario/config/application.rb
+- spec/scenario/config/boot.rb
+- spec/scenario/config/environment.rb
+- spec/scenario/config/environments/development.rb
+- spec/scenario/config/environments/test.rb
+- spec/scenario/config/initializers/backtrace_silencers.rb
+- spec/scenario/config/initializers/inflections.rb
+- spec/scenario/config/initializers/secret_token.rb
+- spec/scenario/config/routes.rb
+- spec/scenario/db/migrate/20100401102949_create_tables.rb
+- spec/scenario/db/schema.rb
+- spec/spec_helper.rb
+- spec/strategy_spec.rb
+- spec/support/migrations.rb
+- spec/support/patches.rb