devise_token_auth 0.1.42 → 0.1.43.beta1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of devise_token_auth might be problematic. Click here for more details.

Files changed (69) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +39 -38
  3. data/app/controllers/devise_token_auth/application_controller.rb +15 -0
  4. data/app/controllers/devise_token_auth/concerns/resource_finder.rb +38 -0
  5. data/app/controllers/devise_token_auth/concerns/set_user_by_token.rb +21 -19
  6. data/app/controllers/devise_token_auth/confirmations_controller.rb +12 -7
  7. data/app/controllers/devise_token_auth/omniauth_callbacks_controller.rb +3 -7
  8. data/app/controllers/devise_token_auth/passwords_controller.rb +16 -26
  9. data/app/controllers/devise_token_auth/registrations_controller.rb +6 -2
  10. data/app/controllers/devise_token_auth/sessions_controller.rb +3 -14
  11. data/app/controllers/devise_token_auth/unlocks_controller.rb +105 -0
  12. data/app/models/devise_token_auth/concerns/user.rb +29 -12
  13. data/app/models/devise_token_auth/concerns/user_omniauth_callbacks.rb +5 -8
  14. data/app/views/devise/mailer/unlock_instructions.html.erb +1 -1
  15. data/app/views/devise_token_auth/omniauth_external_window.html.erb +1 -1
  16. data/config/initializers/devise.rb +1 -1
  17. data/config/locales/da-DK.yml +50 -0
  18. data/config/locales/en.yml +4 -0
  19. data/lib/devise_token_auth/controllers/helpers.rb +30 -20
  20. data/lib/devise_token_auth/rails/routes.rb +1 -1
  21. data/lib/devise_token_auth/url.rb +1 -1
  22. data/lib/devise_token_auth/version.rb +1 -1
  23. data/lib/generators/devise_token_auth/templates/devise_token_auth_create_users.rb.erb +2 -1
  24. data/lib/generators/devise_token_auth/templates/user.rb +1 -1
  25. data/test/controllers/custom/custom_confirmations_controller_test.rb +5 -10
  26. data/test/controllers/custom/custom_omniauth_callbacks_controller_test.rb +15 -16
  27. data/test/controllers/custom/custom_passwords_controller_test.rb +28 -34
  28. data/test/controllers/custom/custom_registrations_controller_test.rb +23 -21
  29. data/test/controllers/custom/custom_sessions_controller_test.rb +16 -18
  30. data/test/controllers/custom/custom_token_validations_controller_test.rb +13 -11
  31. data/test/controllers/demo_group_controller_test.rb +19 -5
  32. data/test/controllers/demo_mang_controller_test.rb +37 -16
  33. data/test/controllers/demo_user_controller_test.rb +70 -38
  34. data/test/controllers/devise_token_auth/confirmations_controller_test.rb +40 -22
  35. data/test/controllers/devise_token_auth/omniauth_callbacks_controller_test.rb +108 -82
  36. data/test/controllers/devise_token_auth/passwords_controller_test.rb +127 -145
  37. data/test/controllers/devise_token_auth/registrations_controller_test.rb +258 -274
  38. data/test/controllers/devise_token_auth/sessions_controller_test.rb +112 -117
  39. data/test/controllers/devise_token_auth/token_validations_controller_test.rb +14 -15
  40. data/test/controllers/devise_token_auth/unlocks_controller_test.rb +194 -0
  41. data/test/controllers/overrides/confirmations_controller_test.rb +8 -9
  42. data/test/controllers/overrides/omniauth_callbacks_controller_test.rb +16 -12
  43. data/test/controllers/overrides/passwords_controller_test.rb +19 -15
  44. data/test/controllers/overrides/registrations_controller_test.rb +7 -7
  45. data/test/controllers/overrides/sessions_controller_test.rb +6 -6
  46. data/test/controllers/overrides/token_validations_controller_test.rb +7 -4
  47. data/test/dummy/app/controllers/auth_origin_controller.rb +2 -2
  48. data/test/dummy/app/controllers/custom/omniauth_callbacks_controller.rb +0 -2
  49. data/test/dummy/app/controllers/overrides/confirmations_controller.rb +11 -7
  50. data/test/dummy/app/controllers/overrides/passwords_controller.rb +10 -8
  51. data/test/dummy/app/controllers/overrides/sessions_controller.rb +1 -1
  52. data/test/dummy/db/migrate/20140715061447_devise_token_auth_create_users.rb +2 -2
  53. data/test/dummy/db/migrate/20140715061805_devise_token_auth_create_mangs.rb +2 -2
  54. data/test/dummy/db/migrate/20140829044006_add_operating_thetan_to_user.rb +1 -1
  55. data/test/dummy/db/migrate/20140916224624_add_favorite_color_to_mangs.rb +1 -1
  56. data/test/dummy/db/migrate/20140928231203_devise_token_auth_create_evil_users.rb +2 -1
  57. data/test/dummy/db/migrate/20141222035835_devise_token_auth_create_only_email_users.rb +1 -1
  58. data/test/dummy/db/migrate/20141222053502_devise_token_auth_create_unregisterable_users.rb +2 -1
  59. data/test/dummy/db/migrate/20150409095712_devise_token_auth_create_nice_users.rb +2 -1
  60. data/test/dummy/db/migrate/20150708104536_devise_token_auth_create_unconfirmable_users.rb +2 -1
  61. data/test/dummy/db/migrate/20160103235141_devise_token_auth_create_scoped_users.rb +2 -1
  62. data/test/dummy/db/migrate/20160629184441_devise_token_auth_create_lockable_users.rb +2 -1
  63. data/test/dummy/db/schema.rb +157 -162
  64. data/test/dummy/tmp/generators/app/models/user.rb +1 -1
  65. data/test/dummy/tmp/generators/db/migrate/{20170517171822_devise_token_auth_create_users.rb → 20171014052631_devise_token_auth_create_users.rb} +2 -1
  66. data/test/lib/generators/devise_token_auth/install_generator_test.rb +5 -1
  67. data/test/models/user_test.rb +35 -1
  68. data/test/test_helper.rb +17 -11
  69. metadata +85 -80
data/test/controllers/devise_token_auth/registrations_controller_test.rb CHANGED
@@ -6,13 +6,12 @@ require 'test_helper'
6
6
  # was the correct object stored in the response?
7
7
  # was the appropriate message delivered in the json payload?
8
8
 
9
-
10
9
  class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::IntegrationTest
11
10
  describe DeviseTokenAuth::RegistrationsController do
12
11
  describe 'Validate non-empty body' do
13
12
  before do
14
13
  # need to post empty data
15
- post '/auth', {}
14
+ post '/auth', params: {}
16
15
 
17
16
  @resource = assigns(:resource)
18
17
  @data = JSON.parse(response.body)
@@ -35,48 +34,49 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
35
34
  end
36
35
  end
37
36
 
38
- describe "Successful registration" do
37
+ describe 'Successful registration' do
39
38
  before do
40
39
  @mails_sent = ActionMailer::Base.deliveries.count
41
40
 
42
- post '/auth', {
43
- email: Faker::Internet.email,
44
- password: "secret123",
45
- password_confirmation: "secret123",
46
- confirm_success_url: Faker::Internet.url,
47
- unpermitted_param: '(x_x)'
48
- }
41
+ post '/auth',
42
+ params: {
43
+ email: Faker::Internet.email,
44
+ password: 'secret123',
45
+ password_confirmation: 'secret123',
46
+ confirm_success_url: Faker::Internet.url,
47
+ unpermitted_param: '(x_x)'
48
+ }
49
49
 
50
50
  @resource = assigns(:resource)
51
51
  @data = JSON.parse(response.body)
52
52
  @mail = ActionMailer::Base.deliveries.last
53
53
  end
54
54
 
55
- test "request should be successful" do
55
+ test 'request should be successful' do
56
56
  assert_equal 200, response.status
57
57
  end
58
58
 
59
- test "user should have been created" do
59
+ test 'user should have been created' do
60
60
  assert @resource.id
61
61
  end
62
62
 
63
- test "user should not be confirmed" do
63
+ test 'user should not be confirmed' do
64
64
  assert_nil @resource.confirmed_at
65
65
  end
66
66
 
67
- test "new user data should be returned as json" do
67
+ test 'new user data should be returned as json' do
68
68
  assert @data['data']['email']
69
69
  end
70
70
 
71
- test "new user should receive confirmation email" do
71
+ test 'new user should receive confirmation email' do
72
72
  assert_equal @resource.email, @mail['to'].to_s
73
73
  end
74
74
 
75
- test "new user password should not be returned" do
75
+ test 'new user password should not be returned' do
76
76
  assert_nil @data['data']['password']
77
77
  end
78
78
 
79
- test "only one email was sent" do
79
+ test 'only one email was sent' do
80
80
  assert_equal @mails_sent + 1, ActionMailer::Base.deliveries.count
81
81
  end
82
82
  end
@@ -85,12 +85,11 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
85
85
  test 'can use + sign in email addresses' do
86
86
  @plus_email = 'ak+testing@gmail.com'
87
87
 
88
- post '/auth', {
89
- email: @plus_email,
90
- password: "secret123",
91
- password_confirmation: "secret123",
92
- confirm_success_url: Faker::Internet.url
93
- }
88
+ post '/auth',
89
+ params: { email: @plus_email,
90
+ password: 'secret123',
91
+ password_confirmation: 'secret123',
92
+ confirm_success_url: Faker::Internet.url }
94
93
 
95
94
  @resource = assigns(:resource)
96
95
 
@@ -109,58 +108,55 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
109
108
  DeviseTokenAuth.redirect_whitelist = nil
110
109
  end
111
110
 
112
- test "request to whitelisted redirect should be successful" do
113
- post '/auth', {
114
- email: Faker::Internet.email,
115
- password: "secret123",
116
- password_confirmation: "secret123",
117
- confirm_success_url: @good_redirect_url,
118
- unpermitted_param: '(x_x)'
119
- }
111
+ test 'request to whitelisted redirect should be successful' do
112
+ post '/auth',
113
+ params: { email: Faker::Internet.email,
114
+ password: 'secret123',
115
+ password_confirmation: 'secret123',
116
+ confirm_success_url: @good_redirect_url,
117
+ unpermitted_param: '(x_x)' }
120
118
 
121
119
  assert_equal 200, response.status
122
120
  end
123
121
 
124
- test "request to non-whitelisted redirect should fail" do
125
- post '/auth', {
126
- email: Faker::Internet.email,
127
- password: "secret123",
128
- password_confirmation: "secret123",
129
- confirm_success_url: @bad_redirect_url,
130
- unpermitted_param: '(x_x)'
131
- }
122
+ test 'request to non-whitelisted redirect should fail' do
123
+ post '/auth',
124
+ params: { email: Faker::Internet.email,
125
+ password: 'secret123',
126
+ password_confirmation: 'secret123',
127
+ confirm_success_url: @bad_redirect_url,
128
+ unpermitted_param: '(x_x)' }
132
129
  @data = JSON.parse(response.body)
133
130
 
134
131
  assert_equal 422, response.status
135
- assert @data["errors"]
136
- assert_equal @data["errors"], [I18n.t("devise_token_auth.registrations.redirect_url_not_allowed", redirect_url: @bad_redirect_url)]
132
+ assert @data['errors']
133
+ assert_equal @data['errors'],
134
+ [I18n.t('devise_token_auth.registrations.redirect_url_not_allowed',
135
+ redirect_url: @bad_redirect_url)]
137
136
  end
138
137
  end
139
138
 
140
139
  describe 'failure if not redirecturl' do
141
-
142
- test "request should fail if not redirect_url" do
143
- post '/auth', {
144
- email: Faker::Internet.email,
145
- password: "secret123",
146
- password_confirmation: "secret123",
147
- unpermitted_param: '(x_x)'
148
- }
140
+ test 'request should fail if not redirect_url' do
141
+ post '/auth',
142
+ params: { email: Faker::Internet.email,
143
+ password: 'secret123',
144
+ password_confirmation: 'secret123',
145
+ unpermitted_param: '(x_x)' }
149
146
 
150
147
  assert_equal 422, response.status
151
148
  end
152
149
 
153
- test "request to non-whitelisted redirect should fail" do
154
- post '/auth', {
155
- email: Faker::Internet.email,
156
- password: "secret123",
157
- password_confirmation: "secret123",
158
- unpermitted_param: '(x_x)'
159
- }
150
+ test 'request to non-whitelisted redirect should fail' do
151
+ post '/auth',
152
+ params: { email: Faker::Internet.email,
153
+ password: 'secret123',
154
+ password_confirmation: 'secret123',
155
+ unpermitted_param: '(x_x)' }
160
156
  @data = JSON.parse(response.body)
161
157
 
162
- assert @data["errors"]
163
- assert_equal @data["errors"], [I18n.t("devise_token_auth.registrations.missing_confirm_success_url")]
158
+ assert @data['errors']
159
+ assert_equal @data['errors'], [I18n.t('devise_token_auth.registrations.missing_confirm_success_url')]
164
160
  end
165
161
  end
166
162
 
@@ -171,12 +167,12 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
171
167
 
172
168
  DeviseTokenAuth.default_confirm_success_url = @redirect_url
173
169
 
174
- post '/auth', {
175
- email: Faker::Internet.email,
176
- password: "secret123",
177
- password_confirmation: "secret123",
178
- unpermitted_param: '(x_x)'
179
- }
170
+ assert_difference 'ActionMailer::Base.deliveries.size', 1 do
171
+ post '/auth', params: { email: Faker::Internet.email,
172
+ password: 'secret123',
173
+ password_confirmation: 'secret123',
174
+ unpermitted_param: '(x_x)' }
175
+ end
180
176
 
181
177
  @resource = assigns(:resource)
182
178
  @data = JSON.parse(response.body)
@@ -188,14 +184,10 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
188
184
  DeviseTokenAuth.default_confirm_success_url = nil
189
185
  end
190
186
 
191
- test "request should be successful" do
187
+ test 'request should be successful' do
192
188
  assert_equal 200, response.status
193
189
  end
194
190
 
195
- test "the email was sent" do
196
- assert_equal @mails_sent + 1, ActionMailer::Base.deliveries.count
197
- end
198
-
199
191
  test 'email contains the default redirect url' do
200
192
  assert_equal @redirect_url, @sent_redirect_url
201
193
  end
@@ -205,10 +197,10 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
205
197
  before do
206
198
  @mails_sent = ActionMailer::Base.deliveries.count
207
199
 
208
- post '/api/v1/auth', {
200
+ post '/api/v1/auth', params: {
209
201
  email: Faker::Internet.email,
210
- password: "secret123",
211
- password_confirmation: "secret123",
202
+ password: 'secret123',
203
+ password_confirmation: 'secret123',
212
204
  confirm_success_url: Faker::Internet.url,
213
205
  unpermitted_param: '(x_x)'
214
206
  }
@@ -218,58 +210,55 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
218
210
  @mail = ActionMailer::Base.deliveries.last
219
211
  end
220
212
 
221
- test "request should be successful" do
213
+ test 'request should be successful' do
222
214
  assert_equal 200, response.status
223
215
  end
224
216
 
225
- test "user should have been created" do
217
+ test 'user should have been created' do
226
218
  assert @resource.id
227
219
  end
228
220
  end
229
221
 
230
- describe "case-insensitive email" do
231
-
222
+ describe 'case-insensitive email' do
232
223
  before do
233
224
  @resource_class = User
234
225
  @request_params = {
235
- email: "AlternatingCase@example.com",
236
- password: "secret123",
237
- password_confirmation: "secret123",
226
+ email: 'AlternatingCase@example.com',
227
+ password: 'secret123',
228
+ password_confirmation: 'secret123',
238
229
  confirm_success_url: Faker::Internet.url
239
230
  }
240
231
  end
241
232
 
242
- test "success should downcase uid if configured" do
233
+ test 'success should downcase uid if configured' do
243
234
  @resource_class.case_insensitive_keys = [:email]
244
- post '/auth', @request_params
235
+ post '/auth', params: @request_params
245
236
  assert_equal 200, response.status
246
237
  @data = JSON.parse(response.body)
247
- assert_equal "alternatingcase@example.com", @data['data']['uid']
238
+ assert_equal 'alternatingcase@example.com', @data['data']['uid']
248
239
  end
249
240
 
250
- test "request should not downcase uid if not configured" do
241
+ test 'request should not downcase uid if not configured' do
251
242
  @resource_class.case_insensitive_keys = []
252
- post '/auth', @request_params
243
+ post '/auth', params: @request_params
253
244
  assert_equal 200, response.status
254
245
  @data = JSON.parse(response.body)
255
- assert_equal "AlternatingCase@example.com", @data['data']['uid']
246
+ assert_equal 'AlternatingCase@example.com', @data['data']['uid']
256
247
  end
257
-
258
248
  end
259
249
 
260
- describe "Adding extra params" do
250
+ describe 'Adding extra params' do
261
251
  before do
262
252
  @redirect_url = Faker::Internet.url
263
253
  @operating_thetan = 2
264
254
 
265
- post '/auth', {
266
- email: Faker::Internet.email,
267
- password: "secret123",
268
- password_confirmation: "secret123",
269
- confirm_success_url: @redirect_url,
270
- favorite_color: @fav_color,
271
- operating_thetan: @operating_thetan
272
- }
255
+ post '/auth',
256
+ params: { email: Faker::Internet.email,
257
+ password: 'secret123',
258
+ password_confirmation: 'secret123',
259
+ confirm_success_url: @redirect_url,
260
+ favorite_color: @fav_color,
261
+ operating_thetan: @operating_thetan }
273
262
 
274
263
  @resource = assigns(:resource)
275
264
  @data = JSON.parse(response.body)
@@ -284,7 +273,7 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
284
273
  assert_equal @redirect_url, @mail_redirect_url
285
274
  end
286
275
 
287
- test "additional sign_up params should be considered" do
276
+ test 'additional sign_up params should be considered' do
288
277
  assert_equal @operating_thetan, @resource.operating_thetan
289
278
  end
290
279
 
@@ -293,130 +282,125 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
293
282
  end
294
283
 
295
284
  test "client config name falls back to 'default'" do
296
- assert_equal "default", @mail_config_name
285
+ assert_equal 'default', @mail_config_name
297
286
  end
298
287
  end
299
288
 
300
289
  describe 'bad email' do
301
290
  before do
302
- post '/auth', {
303
- email: "false_email@",
304
- password: "secret123",
305
- password_confirmation: "secret123",
306
- confirm_success_url: Faker::Internet.url
307
- }
291
+ post '/auth',
292
+ params: { email: 'false_email@',
293
+ password: 'secret123',
294
+ password_confirmation: 'secret123',
295
+ confirm_success_url: Faker::Internet.url }
308
296
 
309
297
  @resource = assigns(:resource)
310
298
  @data = JSON.parse(response.body)
311
299
  end
312
300
 
313
- test "request should not be successful" do
301
+ test 'request should not be successful' do
314
302
  assert_equal 422, response.status
315
303
  end
316
304
 
317
- test "user should not have been created" do
305
+ test 'user should not have been created' do
318
306
  assert_nil @resource.id
319
307
  end
320
308
 
321
- test "error should be returned in the response" do
309
+ test 'error should be returned in the response' do
322
310
  assert @data['errors'].length
323
311
  end
324
312
 
325
- test "full_messages should be included in error hash" do
313
+ test 'full_messages should be included in error hash' do
326
314
  assert @data['errors']['full_messages'].length
327
315
  end
328
316
  end
329
317
 
330
318
  describe 'missing email' do
331
319
  before do
332
- post '/auth', {
333
- password: "secret123",
334
- password_confirmation: "secret123",
335
- confirm_success_url: Faker::Internet.url
336
- }
320
+ post '/auth',
321
+ params: { password: 'secret123',
322
+ password_confirmation: 'secret123',
323
+ confirm_success_url: Faker::Internet.url }
337
324
 
338
325
  @resource = assigns(:resource)
339
326
  @data = JSON.parse(response.body)
340
327
  end
341
328
 
342
- test "request should not be successful" do
329
+ test 'request should not be successful' do
343
330
  assert_equal 422, response.status
344
331
  end
345
332
 
346
- test "user should not have been created" do
333
+ test 'user should not have been created' do
347
334
  assert_nil @resource.id
348
335
  end
349
336
 
350
- test "error should be returned in the response" do
337
+ test 'error should be returned in the response' do
351
338
  assert @data['errors'].length
352
339
  end
353
340
 
354
- test "full_messages should be included in error hash" do
341
+ test 'full_messages should be included in error hash' do
355
342
  assert @data['errors']['full_messages'].length
356
343
  end
357
344
  end
358
345
 
359
- describe "Mismatched passwords" do
346
+ describe 'Mismatched passwords' do
360
347
  before do
361
- post '/auth', {
362
- email: Faker::Internet.email,
363
- password: "secret123",
364
- password_confirmation: "bogus",
365
- confirm_success_url: Faker::Internet.url
366
- }
348
+ post '/auth',
349
+ params: { email: Faker::Internet.email,
350
+ password: 'secret123',
351
+ password_confirmation: 'bogus',
352
+ confirm_success_url: Faker::Internet.url }
367
353
 
368
354
  @resource = assigns(:resource)
369
355
  @data = JSON.parse(response.body)
370
356
  end
371
357
 
372
- test "request should not be successful" do
358
+ test 'request should not be successful' do
373
359
  assert_equal 422, response.status
374
360
  end
375
361
 
376
- test "user should have been created" do
362
+ test 'user should have been created' do
377
363
  assert_nil @resource.id
378
364
  end
379
365
 
380
- test "error should be returned in the response" do
366
+ test 'error should be returned in the response' do
381
367
  assert @data['errors'].length
382
368
  end
383
369
 
384
- test "full_messages should be included in error hash" do
370
+ test 'full_messages should be included in error hash' do
385
371
  assert @data['errors']['full_messages'].length
386
372
  end
387
373
  end
388
374
 
389
- describe "Existing users" do
375
+ describe 'Existing users' do
390
376
  before do
391
377
  @existing_user = users(:confirmed_email_user)
392
378
 
393
- post "/auth", {
394
- email: @existing_user.email,
395
- password: "secret123",
396
- password_confirmation: "secret123",
397
- confirm_success_url: Faker::Internet.url
398
- }
379
+ post '/auth',
380
+ params: { email: @existing_user.email,
381
+ password: 'secret123',
382
+ password_confirmation: 'secret123',
383
+ confirm_success_url: Faker::Internet.url }
399
384
 
400
385
  @resource = assigns(:resource)
401
386
  @data = JSON.parse(response.body)
402
387
  end
403
388
 
404
- test "request should not be successful" do
389
+ test 'request should not be successful' do
405
390
  assert_equal 422, response.status
406
391
  end
407
392
 
408
- test "user should have been created" do
393
+ test 'user should have been created' do
409
394
  assert_nil @resource.id
410
395
  end
411
396
 
412
- test "error should be returned in the response" do
397
+ test 'error should be returned in the response' do
413
398
  assert @data['errors'].length
414
399
  end
415
400
  end
416
401
 
417
-
418
- describe "Destroy user account" do
419
- describe "success" do
402
+ describe 'Destroy user account' do
403
+ describe 'success' do
420
404
  before do
421
405
  @existing_user = users(:confirmed_email_user)
422
406
  @auth_headers = @existing_user.create_new_auth_token
@@ -425,7 +409,7 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
425
409
  # ensure request is not treated as batch request
426
410
  age_token(@existing_user, @client_id)
427
411
 
428
- delete "/auth", {}, @auth_headers
412
+ delete '/auth', params: {}, headers: @auth_headers
429
413
 
430
414
  @data = JSON.parse(response.body)
431
415
  end
@@ -434,18 +418,20 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
434
418
  assert_equal 200, response.status
435
419
  end
436
420
 
437
- test "message should be returned" do
438
- assert @data["message"]
439
- assert_equal @data["message"], I18n.t("devise_token_auth.registrations.account_with_uid_destroyed", uid: @existing_user.uid)
421
+ test 'message should be returned' do
422
+ assert @data['message']
423
+ assert_equal @data['message'],
424
+ I18n.t('devise_token_auth.registrations.account_with_uid_destroyed',
425
+ uid: @existing_user.uid)
440
426
  end
441
- test "existing user should be deleted" do
427
+ test 'existing user should be deleted' do
442
428
  refute User.where(id: @existing_user.id).first
443
429
  end
444
430
  end
445
431
 
446
432
  describe 'failure: no auth headers' do
447
433
  before do
448
- delete "/auth"
434
+ delete '/auth'
449
435
  @data = JSON.parse(response.body)
450
436
  end
451
437
 
@@ -455,14 +441,13 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
455
441
 
456
442
  test 'error should be returned' do
457
443
  assert @data['errors'].length
458
- assert_equal @data['errors'], [I18n.t("devise_token_auth.registrations.account_to_destroy_not_found")]
444
+ assert_equal @data['errors'], [I18n.t('devise_token_auth.registrations.account_to_destroy_not_found')]
459
445
  end
460
446
  end
461
447
  end
462
448
 
463
-
464
- describe "Update user account" do
465
- describe "existing user" do
449
+ describe 'Update user account' do
450
+ describe 'existing user' do
466
451
  before do
467
452
  @existing_user = users(:confirmed_email_user)
468
453
  @auth_headers = @existing_user.create_new_auth_token
@@ -472,37 +457,38 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
472
457
  age_token(@existing_user, @client_id)
473
458
  end
474
459
 
475
- describe "without password check" do
476
- describe "success" do
460
+ describe 'without password check' do
461
+ describe 'success' do
477
462
  before do
478
463
  # test valid update param
479
464
  @resource_class = User
480
- @new_operating_thetan = 1000000
481
- @email = "AlternatingCase2@example.com"
465
+ @new_operating_thetan = 1_000_000
466
+ @email = 'AlternatingCase2@example.com'
482
467
  @request_params = {
483
468
  operating_thetan: @new_operating_thetan,
484
469
  email: @email
485
470
  }
486
471
  end
487
472
 
488
- test "Request was successful" do
489
- put "/auth", @request_params, @auth_headers
473
+ test 'Request was successful' do
474
+ put '/auth', params: @request_params, headers: @auth_headers
490
475
  assert_equal 200, response.status
491
476
  end
492
477
 
493
- test "Case sensitive attributes update" do
478
+ test 'Case sensitive attributes update' do
494
479
  @resource_class.case_insensitive_keys = []
495
- put "/auth", @request_params, @auth_headers
480
+ put '/auth', params: @request_params, headers: @auth_headers
496
481
  @data = JSON.parse(response.body)
497
482
  @existing_user.reload
498
- assert_equal @new_operating_thetan, @existing_user.operating_thetan
483
+ assert_equal @new_operating_thetan,
484
+ @existing_user.operating_thetan
499
485
  assert_equal @email, @existing_user.email
500
486
  assert_equal @email, @existing_user.uid
501
487
  end
502
488
 
503
- test "Case insensitive attributes update" do
489
+ test 'Case insensitive attributes update' do
504
490
  @resource_class.case_insensitive_keys = [:email]
505
- put "/auth", @request_params, @auth_headers
491
+ put '/auth', params: @request_params, headers: @auth_headers
506
492
  @data = JSON.parse(response.body)
507
493
  @existing_user.reload
508
494
  assert_equal @new_operating_thetan, @existing_user.operating_thetan
@@ -510,16 +496,14 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
510
496
  assert_equal @email.downcase, @existing_user.uid
511
497
  end
512
498
 
513
- test "Supply current password" do
514
- @request_params.merge!(
515
- current_password: "secret123",
516
- email: "new.email@example.com",
517
- )
499
+ test 'Supply current password' do
500
+ @request_params[:current_password] = 'secret123'
501
+ @request_params[:email] = 'new.email@example.com'
518
502
 
519
- put "/auth", @request_params, @auth_headers
503
+ put '/auth', params: @request_params, headers: @auth_headers
520
504
  @data = JSON.parse(response.body)
521
505
  @existing_user.reload
522
- assert_equal @existing_user.email, "new.email@example.com"
506
+ assert_equal @existing_user.email, 'new.email@example.com'
523
507
  end
524
508
  end
525
509
 
@@ -527,7 +511,7 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
527
511
  before do
528
512
  # get the email so we can check it wasn't updated
529
513
  @email = @existing_user.email
530
- put '/auth', {}, @auth_headers
514
+ put '/auth', params: {}, headers: @auth_headers
531
515
 
532
516
  @data = JSON.parse(response.body)
533
517
  @existing_user.reload
@@ -550,29 +534,29 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
550
534
  end
551
535
  end
552
536
 
553
- describe "error" do
537
+ describe 'error' do
554
538
  before do
555
539
  # test invalid update param
556
- @new_operating_thetan = "blegh"
557
- put "/auth", {
558
- operating_thetan: @new_operating_thetan
559
- }, @auth_headers
540
+ @new_operating_thetan = 'blegh'
541
+ put '/auth',
542
+ params: { operating_thetan: @new_operating_thetan },
543
+ headers: @auth_headers
560
544
 
561
545
  @data = JSON.parse(response.body)
562
546
  @existing_user.reload
563
547
  end
564
548
 
565
- test "Request was NOT successful" do
549
+ test 'Request was NOT successful' do
566
550
  assert_equal 422, response.status
567
551
  end
568
552
 
569
- test "Errors were provided with response" do
570
- assert @data["errors"].length
553
+ test 'Errors were provided with response' do
554
+ assert @data['errors'].length
571
555
  end
572
556
  end
573
557
  end
574
558
 
575
- describe "with password check for password update only" do
559
+ describe 'with password check for password update only' do
576
560
  before do
577
561
  DeviseTokenAuth.check_current_password_before_update = :password
578
562
  end
@@ -581,25 +565,25 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
581
565
  DeviseTokenAuth.check_current_password_before_update = false
582
566
  end
583
567
 
584
- describe "success without password update" do
568
+ describe 'success without password update' do
585
569
  before do
586
570
  # test valid update param
587
571
  @resource_class = User
588
- @new_operating_thetan = 1000000
589
- @email = "AlternatingCase2@example.com"
572
+ @new_operating_thetan = 1_000_000
573
+ @email = 'AlternatingCase2@example.com'
590
574
  @request_params = {
591
575
  operating_thetan: @new_operating_thetan,
592
576
  email: @email
593
577
  }
594
578
  end
595
579
 
596
- test "Request was successful" do
597
- put "/auth", @request_params, @auth_headers
580
+ test 'Request was successful' do
581
+ put '/auth', params: @request_params, headers: @auth_headers
598
582
  assert_equal 200, response.status
599
583
  end
600
584
  end
601
585
 
602
- describe "success with password update" do
586
+ describe 'success with password update' do
603
587
  before do
604
588
  @existing_user.update password: 'secret123', password_confirmation: 'secret123'
605
589
  @request_params = {
@@ -609,15 +593,16 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
609
593
  }
610
594
  end
611
595
 
612
- test "Request was successful" do
613
- put "/auth", @request_params, @auth_headers
596
+ test 'Request was successful' do
597
+ put '/auth', params: @request_params, headers: @auth_headers
614
598
  assert_equal 200, response.status
615
599
  end
616
600
  end
617
601
 
618
- describe "error with password mismatch" do
602
+ describe 'error with password mismatch' do
619
603
  before do
620
- @existing_user.update password: 'secret123', password_confirmation: 'secret123'
604
+ @existing_user.update password: 'secret123',
605
+ password_confirmation: 'secret123'
621
606
  @request_params = {
622
607
  password: 'the_new_secret456',
623
608
  password_confirmation: 'the_new_secret456',
@@ -625,27 +610,28 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
625
610
  }
626
611
  end
627
612
 
628
- test "Request was NOT successful" do
629
- put "/auth", @request_params, @auth_headers
613
+ test 'Request was NOT successful' do
614
+ put '/auth', params: @request_params, headers: @auth_headers
630
615
  assert_equal 422, response.status
631
616
  end
632
617
  end
633
618
  end
634
619
 
635
- describe "with password check for all attributes" do
620
+ describe 'with password check for all attributes' do
636
621
  before do
637
622
  DeviseTokenAuth.check_current_password_before_update = :password
638
- @new_operating_thetan = 1000000
639
- @email = "AlternatingCase2@example.com"
623
+ @new_operating_thetan = 1_000_000
624
+ @email = 'AlternatingCase2@example.com'
640
625
  end
641
626
 
642
627
  after do
643
628
  DeviseTokenAuth.check_current_password_before_update = false
644
629
  end
645
630
 
646
- describe "success with password update" do
631
+ describe 'success with password update' do
647
632
  before do
648
- @existing_user.update password: 'secret123', password_confirmation: 'secret123'
633
+ @existing_user.update password: 'secret123',
634
+ password_confirmation: 'secret123'
649
635
  @request_params = {
650
636
  operating_thetan: @new_operating_thetan,
651
637
  email: @email,
@@ -653,15 +639,16 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
653
639
  }
654
640
  end
655
641
 
656
- test "Request was successful" do
657
- put "/auth", @request_params, @auth_headers
642
+ test 'Request was successful' do
643
+ put '/auth', params: @request_params, headers: @auth_headers
658
644
  assert_equal 200, response.status
659
645
  end
660
646
  end
661
647
 
662
- describe "error with password mismatch" do
648
+ describe 'error with password mismatch' do
663
649
  before do
664
- @existing_user.update password: 'secret123', password_confirmation: 'secret123'
650
+ @existing_user.update password: 'secret123',
651
+ password_confirmation: 'secret123'
665
652
  @request_params = {
666
653
  operating_thetan: @new_operating_thetan,
667
654
  email: @email,
@@ -669,15 +656,15 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
669
656
  }
670
657
  end
671
658
 
672
- test "Request was NOT successful" do
673
- put "/auth", @request_params, @auth_headers
659
+ test 'Request was NOT successful' do
660
+ put '/auth', params: @request_params, headers: @auth_headers
674
661
  assert_equal 422, response.status
675
662
  end
676
663
  end
677
664
  end
678
665
  end
679
666
 
680
- describe "invalid user" do
667
+ describe 'invalid user' do
681
668
  before do
682
669
  @existing_user = users(:confirmed_email_user)
683
670
  @auth_headers = @existing_user.create_new_auth_token
@@ -689,80 +676,80 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
689
676
  # test valid update param
690
677
  @new_operating_thetan = 3
691
678
 
692
- put "/auth", {
693
- operating_thetan: @new_operating_thetan
694
- }, @auth_headers
679
+ put '/auth',
680
+ params: {
681
+ operating_thetan: @new_operating_thetan
682
+ },
683
+ headers: @auth_headers
695
684
 
696
685
  @data = JSON.parse(response.body)
697
686
  @existing_user.reload
698
687
  end
699
688
 
700
- test "Response should return 404 status" do
689
+ test 'Response should return 404 status' do
701
690
  assert_equal 404, response.status
702
691
  end
703
692
 
704
- test "error should be returned" do
705
- assert @data["errors"].length
706
- assert_equal @data["errors"], [I18n.t("devise_token_auth.registrations.user_not_found")]
693
+ test 'error should be returned' do
694
+ assert @data['errors'].length
695
+ assert_equal @data['errors'], [I18n.t('devise_token_auth.registrations.user_not_found')]
707
696
  end
708
697
 
709
- test "User should not be updated" do
698
+ test 'User should not be updated' do
710
699
  refute_equal @new_operating_thetan, @existing_user.operating_thetan
711
700
  end
712
701
  end
713
702
  end
714
703
 
715
- describe "Ouath user has existing email" do
704
+ describe 'Ouath user has existing email' do
716
705
  before do
717
706
  @existing_user = users(:duplicate_email_facebook_user)
718
707
 
719
- post "/auth", {
720
- email: @existing_user.email,
721
- password: "secret123",
722
- password_confirmation: "secret123",
723
- confirm_success_url: Faker::Internet.url
724
- }
708
+ post '/auth',
709
+ params: { email: @existing_user.email,
710
+ password: 'secret123',
711
+ password_confirmation: 'secret123',
712
+ confirm_success_url: Faker::Internet.url }
725
713
 
726
714
  @resource = assigns(:resource)
727
715
  @data = JSON.parse(response.body)
728
716
  end
729
717
 
730
- test "request should be successful" do
718
+ test 'request should be successful' do
731
719
  assert_equal 200, response.status
732
720
  end
733
721
 
734
- test "user should have been created" do
722
+ test 'user should have been created' do
735
723
  assert @resource.id
736
724
  end
737
725
 
738
- test "new user data should be returned as json" do
726
+ test 'new user data should be returned as json' do
739
727
  assert @data['data']['email']
740
728
  end
741
729
  end
742
730
 
743
- describe "Alternate user class" do
731
+ describe 'Alternate user class' do
744
732
  before do
745
- post "/mangs", {
746
- email: Faker::Internet.email,
747
- password: "secret123",
748
- password_confirmation: "secret123",
749
- confirm_success_url: Faker::Internet.url
750
- }
733
+ post '/mangs',
734
+ params: { email: Faker::Internet.email,
735
+ password: 'secret123',
736
+ password_confirmation: 'secret123',
737
+ confirm_success_url: Faker::Internet.url }
751
738
 
752
739
  @resource = assigns(:resource)
753
740
  @data = JSON.parse(response.body)
754
741
  @mail = ActionMailer::Base.deliveries.last
755
742
  end
756
743
 
757
- test "request should be successful" do
744
+ test 'request should be successful' do
758
745
  assert_equal 200, response.status
759
746
  end
760
747
 
761
- test "use should be a Mang" do
762
- assert_equal "Mang", @resource.class.name
748
+ test 'use should be a Mang' do
749
+ assert_equal 'Mang', @resource.class.name
763
750
  end
764
751
 
765
- test "Mang should be destroyed" do
752
+ test 'Mang should be destroyed' do
766
753
  @resource.skip_confirmation!
767
754
  @resource.save!
768
755
  @auth_headers = @resource.create_new_auth_token
@@ -771,24 +758,25 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
771
758
  # ensure request is not treated as batch request
772
759
  age_token(@resource, @client_id)
773
760
 
774
- xhr :delete, "/mangs", {}, @auth_headers
761
+ delete '/mangs',
762
+ params: {},
763
+ headers: @auth_headers
775
764
 
776
765
  assert_equal 200, response.status
777
766
  refute Mang.where(id: @resource.id).first
778
767
  end
779
768
  end
780
769
 
781
- describe "Passing client config name" do
770
+ describe 'Passing client config name' do
782
771
  before do
783
772
  @config_name = 'altUser'
784
773
 
785
- post "/mangs", {
786
- email: Faker::Internet.email,
787
- password: "secret123",
788
- password_confirmation: "secret123",
789
- confirm_success_url: Faker::Internet.url,
790
- config_name: @config_name
791
- }
774
+ post '/mangs',
775
+ params: { email: Faker::Internet.email,
776
+ password: 'secret123',
777
+ password_confirmation: 'secret123',
778
+ confirm_success_url: Faker::Internet.url,
779
+ config_name: @config_name }
792
780
 
793
781
  @resource = assigns(:resource)
794
782
  @data = JSON.parse(response.body)
@@ -808,70 +796,66 @@ class DeviseTokenAuth::RegistrationsControllerTest < ActionDispatch::Integration
808
796
 
809
797
  describe 'Excluded :registrations module' do
810
798
  test 'UnregisterableUser should not be able to access registration routes' do
811
- assert_raises(ActionController::RoutingError) {
812
- post '/unregisterable_user_auth', {
813
- email: Faker::Internet.email,
814
- password: "secret123",
815
- password_confirmation: "secret123",
816
- confirm_success_url: Faker::Internet.url
817
- }
818
- }
799
+ assert_raises(ActionController::RoutingError) do
800
+ post '/unregisterable_user_auth',
801
+ params: { email: Faker::Internet.email,
802
+ password: 'secret123',
803
+ password_confirmation: 'secret123',
804
+ confirm_success_url: Faker::Internet.url }
805
+ end
819
806
  end
820
807
  end
821
808
 
822
- describe "Skipped confirmation" do
809
+ describe 'Skipped confirmation' do
823
810
  setup do
824
811
  User.set_callback(:create, :before, :skip_confirmation!)
825
812
 
826
- post "/auth", {
827
- email: Faker::Internet.email,
828
- password: "secret123",
829
- password_confirmation: "secret123",
830
- confirm_success_url: Faker::Internet.url
831
- }
813
+ post '/auth',
814
+ params: { email: Faker::Internet.email,
815
+ password: 'secret123',
816
+ password_confirmation: 'secret123',
817
+ confirm_success_url: Faker::Internet.url }
832
818
 
833
819
  @resource = assigns(:resource)
834
- @token = response.headers["access-token"]
835
- @client_id = response.headers["client"]
820
+ @token = response.headers['access-token']
821
+ @client_id = response.headers['client']
836
822
  end
837
823
 
838
824
  teardown do
839
825
  User.skip_callback(:create, :before, :skip_confirmation!)
840
826
  end
841
827
 
842
- test "user was created" do
828
+ test 'user was created' do
843
829
  assert @resource
844
830
  end
845
831
 
846
- test "user was confirmed" do
832
+ test 'user was confirmed' do
847
833
  assert @resource.confirmed?
848
834
  end
849
835
 
850
- test "auth headers were returned in response" do
851
- assert response.headers["access-token"]
852
- assert response.headers["token-type"]
853
- assert response.headers["client"]
854
- assert response.headers["expiry"]
855
- assert response.headers["uid"]
836
+ test 'auth headers were returned in response' do
837
+ assert response.headers['access-token']
838
+ assert response.headers['token-type']
839
+ assert response.headers['client']
840
+ assert response.headers['expiry']
841
+ assert response.headers['uid']
856
842
  end
857
843
 
858
- test "response token is valid" do
844
+ test 'response token is valid' do
859
845
  assert @resource.valid_token?(@token, @client_id)
860
846
  end
861
847
  end
862
848
 
863
-
864
849
  describe 'User with only :database_authenticatable and :registerable included' do
865
850
  setup do
866
851
  @mails_sent = ActionMailer::Base.deliveries.count
867
852
 
868
- post '/only_email_auth', {
869
- email: Faker::Internet.email,
870
- password: "secret123",
871
- password_confirmation: "secret123",
872
- confirm_success_url: Faker::Internet.url,
873
- unpermitted_param: '(x_x)'
874
- }
853
+ post '/only_email_auth',
854
+ params: { email: Faker::Internet.email,
855
+ password: 'secret123',
856
+ password_confirmation: 'secret123',
857
+ confirm_success_url: Faker::Internet.url,
858
+ unpermitted_param: '(x_x)' }
875
859
 
876
860
  @resource = assigns(:resource)
877
861
  @data = JSON.parse(response.body)