RubyGems - digix_devise_token_auth - Versions diffs - 0.1.44 - Mend

digix_devise_token_auth 0.1.44

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (149) hide show

data/config/locales/vi.yml ADDED

@@ -0,0 +1,50 @@
+vi:
+  devise_token_auth:
+    sessions:
+      not_confirmed: "Mail xác nhận tài khoản đã được gửi tới tài khoản của bạn tại '%{email}'. Bận cần phải làm theo những hướng dẫn trong email để tài khoản có thể xác nhận"
+      bad_credentials: "Thông tin đăng nhập không hợp lệ. Xin thử lại."
+      not_supported: "Sử dụng POST /sign_in để đăng nhập. Phương thức GET không được hỗ trợ."
+      user_not_found: "Người dùng đã không được tìm thấy hoặc không đăng nhập."
+    token_validations:
+      invalid: "Thông tin đăng nhập không hợp lệ."
+    registrations:
+      missing_confirm_success_url: "Thiếu 'confirm_success_url' tham số."
+      redirect_url_not_allowed: "Chuyển hướng tới '%{redirect_url}' không được phép."
+      email_already_exists: "Tài khoản đã tồn tại của '%{email}'"
+      account_with_uid_destroyed: "Tài khoản với UID '%{uid}' vừa bị phá hủy."
+      account_to_destroy_not_found: "Không thể xác định tài khoản cho việc phá hủy."
+      user_not_found: "Người dùng không tìm thấy."
+    passwords:
+      missing_email: "Bạn cần cung cấp địa chỉ email."
+      missing_redirect_url: "Thiếu đường đẫn URL."
+      not_allowed_redirect_url: "Chuyển hướng tới '%{redirect_url}' không được phép."
+      sended: "Mail đã được gửi tới '%{email}' tiếp tục làm theo những hướng dẫn để khởi tạo lại mật khẩu."
+      user_not_found: "Không thể tìm ra người dùng với email '%{email}'."
+      password_not_required: "Tài khoản này không yêu cầu mật khẩu. Thay thế đăng nhập bằng cách sử dụng '%{provider}' của tài khoản ."
+      missing_passwords: "Bạn cần điền đủ những trường như 'mật khẩu' và 'xác nhận mật khẩu'."
+      successfully_updated: "Mật khẩu của bạn vừa được cập nhật thành công."
+    unlocks:
+      missing_email: "Bạn cần phải cung cấp địa chỉ email."
+      sended: "Mail đã được gửi tới '%{email}' tiếp tục làm theo những hướng đẫn để mở khóa tài khoản."
+      user_not_found: "Không thể tìm ra người dùng với email '%{email}'."
+  errors:
+    messages:
+      validate_sign_up_params: "Vui lòng gửi đúng dữ liệu đăng ký trong phần dữ liệu gửi lên."
+      validate_account_update_params: "Vui lòng gửi đúng dữ liệu cập nhật tài khoản trong phần dữ liệu gửi lên ."
+      not_email: "không phải là email"
+  devise:
+    mailer:
+      confirmation_instructions:
+        confirm_link_msg: "Bạn có thể xác nhận tài khoản email bằng đường link dưới đây:"
+        confirm_account_link: "Xác nhận tài khoản"
+      reset_password_instructions:
+        request_reset_link_msg: "Ai đó đã gửi yêu cầu để đổi mật khẩu của bạn. Bạn có thể thực hiện điều này thông qua đường dẫn bên dưới."
+        password_change_link: "Đổi mật khẩu của tôi"
+        ignore_mail_msg: "Nếu bạn đã không gửi yêu cầu này, thì vui lòng bỏ qua email này."
+        no_changes_msg: "Mật khẩu của bạn sẽ không thay đổi cho đến khi bạn truy cập liên kết ở trên và tạo một mật khẩu mới."
+      unlock_instructions:
+        account_lock_msg: "Tài khoản của bạn đã bị khóa do có quá nhiều lần đăng nhập không thành công."
+        unlock_link_msg: "Chọn vào đường dẫn bên dưới để mở khóa tài khoản:"
+        unlock_link: "Mở khóa tài khoản"
+  hello: "xin chào"
+  welcome: "chào mừng"

data/config/locales/zh-CN.yml ADDED

@@ -0,0 +1,46 @@
+zh-CN:
+  devise_token_auth:
+    sessions:
+      not_confirmed: "您将在几分钟后收到一封电子邮件'%{email}',内有验证账号的步骤说明"
+      bad_credentials: "不正确的登录信息，请重试"
+      not_supported: "请使用 POST /sign_in 进行登录. GET 是不支持的."
+      user_not_found: "没有找到账号或没有成功登录"
+    token_validations:
+      invalid: "不正确的登录资料"
+    registrations:
+      missing_confirm_success_url: "缺少数据 'confirm_success_url'"
+      redirect_url_not_allowed: "不支持转向到 '%{redirect_url}'"
+      email_already_exists: "邮箱'%{email}'已被使用"
+      account_with_uid_destroyed: "账号 '%{uid}' 已被移除。"
+      account_to_destroy_not_found: "无法找到目标帐号。"
+      user_not_found: "找不到帐号。"
+    passwords:
+      missing_email: "必需提供邮箱。"
+      missing_redirect_url: "欠缺 redirect URL."
+      not_allowed_redirect_url: "不支持转向到 '%{redirect_url}'"
+      sended: "您将在几分钟后收到一封电子邮件'%{email}，内含可重新设定密码的链接。"
+      user_not_found: "找不到帐号 '%{email}'。"
+      password_not_required: "这不是一个需要密码的帐号. 请使用 '%{provider}' 进行登入"
+      missing_passwords: "必需填写'密码'与'确认密码'。"
+      successfully_updated: "您的密码已被修改。"
+  errors:
+    messages:
+      validate_sign_up_params: "请在request body中填入有效的注册内容"
+      validate_account_update_params: "请在request body中填入有效的更新帐号资料"
+      not_email: "这不是一个合适的邮箱。"
+  devise:
+    mailer:
+      confirmation_instructions:
+        confirm_link_msg: "可以使用下面的链接确定你的邮箱"
+        confirm_account_link: "确定你的帐号"
+      reset_password_instructions:
+        request_reset_link_msg: "已申请修改您的密码，你可以用下面的链接进入"
+        password_change_link: "修改我的密码"
+        ignore_mail_msg: "如你没有申请，请忽略"
+        no_changes_msg: "在你点击上面链接前，你的密码都没有改变"
+      unlock_instructions:
+        account_lock_msg: "由于多次登入失败，我们已锁定你的帐号"
+        unlock_link_msg: "可以使用下面的链接解锁你的帐号"
+        unlock_link: "解锁帐号"
+  hello: "你好"
+  welcome: "欢迎"

data/config/locales/zh-HK.yml ADDED

@@ -0,0 +1,48 @@
+# Additional translations at https://github.com/plataformatec/devise/wiki/I18n
+zh-TW:
+  devise_token_auth:
+    sessions:
+      not_confirmed: "您將在幾分鐘後收到一封電子郵件'%{email}'，內有驗證帳號的步驟說明。"
+      bad_credentials: "不正確的登入資料。請重試。"
+      not_supported: "請使用 POST /sign_in 進行登入. GET 是不支援的."
+      user_not_found: "未能找到帳號或未能成功登入。"
+    token_validations:
+      invalid: "不正確的登入資料。"
+    registrations:
+      missing_confirm_success_url: "欠缺數值 'confirm_success_url'"
+      redirect_url_not_allowed: "不支援轉向到'%{redirect_url}'"
+      email_already_exists: "電郵'%{email}'已被使用"
+      account_with_uid_destroyed: "帳號 '%{uid}' 已被移除。"
+      account_to_destroy_not_found: "無法找到目標帳號。"
+      user_not_found: "找不到帳號。"
+    passwords:
+      missing_email: "必需提供電郵。"
+      missing_redirect_url: "欠缺 redirect URL."
+      not_allowed_redirect_url: "不支援轉向到 '%{redirect_url}'"
+      sended: "您將在幾分鐘後收到一封電子郵件'%{email}，內含可重新設定密碼連結的電子郵件。"
+      user_not_found: "找不到帳號 '%{email}'。"
+      password_not_required: "這不是一個需要密碼的帳號. 請使用 '%{provider}' 進行登入"
+      missing_passwords: "必需填寫'密碼'與'確認密碼'。"
+      successfully_updated: "您的密碼已被修改。"
+  errors:
+    messages:
+      validate_sign_up_params: "請在request body中填入有效的註冊內容"
+      validate_account_update_params: "請在request body中填入有效的更新帳號資料"
+      not_email: "這不是一個合適的電郵。"
+  devise:
+    mailer:
+      confirmation_instructions:
+        confirm_link_msg: "可以使用下面連結確定你的電郵"
+        confirm_account_link: "確定你的帳號"
+      reset_password_instructions:
+        request_reset_link_msg: "已申請修改您的密碼，你可以用下面連結進入"
+        password_change_link: "修改我的密碼"
+        ignore_mail_msg: "如你沒有申請，請忽略"
+        no_changes_msg: "在你點擊上面連結前，你的密碼都沒有改變"
+      unlock_instructions:
+        account_lock_msg: "由於多失敗登入，我們已鎖定你的帳號"
+        unlock_link_msg: "可以使用下面連結解鎖你的帳號"
+        unlock_link: "解鎖帳號"
+  hello: "你好"
+  welcome: "歡迎"

data/config/locales/zh-TW.yml ADDED

@@ -0,0 +1,48 @@
+# Additional translations at https://github.com/plataformatec/devise/wiki/I18n
+zh-TW:
+  devise_token_auth:
+    sessions:
+      not_confirmed: "您將在幾分鐘後收到一封電子郵件'%{email}'，內有驗證帳號的步驟說明。"
+      bad_credentials: "不正確的登入資料。請重試。"
+      not_supported: "請使用 POST /sign_in 進行登入. GET 是不支援的."
+      user_not_found: "未能找到帳號或未能成功登入。"
+    token_validations:
+      invalid: "不正確的登入資料。"
+    registrations:
+      missing_confirm_success_url: "欠缺數值 'confirm_success_url'"
+      redirect_url_not_allowed: "不支援轉向到'%{redirect_url}'"
+      email_already_exists: "電郵'%{email}'已被使用"
+      account_with_uid_destroyed: "帳號 '%{uid}' 已被移除。"
+      account_to_destroy_not_found: "無法找到目標帳號。"
+      user_not_found: "找不到帳號。"
+    passwords:
+      missing_email: "必需提供電郵。"
+      missing_redirect_url: "欠缺 redirect URL."
+      not_allowed_redirect_url: "不支援轉向到 '%{redirect_url}'"
+      sended: "您將在幾分鐘後收到一封電子郵件'%{email}，內含可重新設定密碼連結的電子郵件。"
+      user_not_found: "找不到帳號 '%{email}'。"
+      password_not_required: "這不是一個需要密碼的帳號. 請使用 '%{provider}' 進行登入"
+      missing_passwords: "必需填寫'密碼'與'確認密碼'。"
+      successfully_updated: "您的密碼已被修改。"
+  errors:
+    messages:
+      validate_sign_up_params: "請在request body中填入有效的註冊內容"
+      validate_account_update_params: "請在request body中填入有效的更新帳號資料"
+      not_email: "這不是一個合適的電郵。"
+  devise:
+    mailer:
+      confirmation_instructions:
+        confirm_link_msg: "可以使用下面連結確定你的電郵"
+        confirm_account_link: "確定你的帳號"
+      reset_password_instructions:
+        request_reset_link_msg: "已申請修改您的密碼，你可以用下面連結進入"
+        password_change_link: "修改我的密碼"
+        ignore_mail_msg: "如你沒有申請，請忽略"
+        no_changes_msg: "在你點擊上面連結前，你的密碼都沒有改變"
+      unlock_instructions:
+        account_lock_msg: "由於多失敗登入，我們已鎖定你的帳號"
+        unlock_link_msg: "可以使用下面連結解鎖你的帳號"
+        unlock_link: "解鎖帳號"
+  hello: "你好"
+  welcome: "歡迎"

data/lib/devise_token_auth.rb ADDED

@@ -0,0 +1,8 @@
+require "devise"
+require "devise_token_auth/engine"
+require "devise_token_auth/controllers/helpers"
+require "devise_token_auth/controllers/url_helpers"
+require "devise_token_auth/url"
+module DeviseTokenAuth
+end

data/lib/devise_token_auth/controllers/helpers.rb ADDED

@@ -0,0 +1,149 @@
+module DeviseTokenAuth
+  module Controllers
+    module Helpers
+      extend ActiveSupport::Concern
+      module ClassMethods
+        # Define authentication filters and accessor helpers for a group of mappings.
+        # These methods are useful when you are working with multiple mappings that
+        # share some functionality. They are pretty much the same as the ones
+        # defined for normal mappings.
+        #
+        # Example:
+        #
+        #   inside BlogsController (or any other controller, it doesn't matter which):
+        #     devise_group :blogger, contains: [:user, :admin]
+        #
+        #   Generated methods:
+        #     authenticate_blogger!             # Redirects unless user or admin are signed in
+        #     blogger_signed_in?                # Checks whether there is either a user or an admin signed in
+        #     current_blogger                   # Currently signed in user or admin
+        #     current_bloggers                  # Currently signed in user and admin
+        #     render_authenticate_error         # Render error unless user or admin are signed in
+        #
+        #   Use:
+        #     before_action :authenticate_blogger!              # Redirects unless either a user or an admin are authenticated
+        #     before_action ->{ authenticate_blogger! :admin }  # Redirects to the admin login page
+        #     current_blogger :user                             # Preferably returns a User if one is signed in
+        #
+        def devise_token_auth_group(group_name, opts={})
+          mappings = "[#{ opts[:contains].map { |m| ":#{m}" }.join(',') }]"
+          class_eval <<-METHODS, __FILE__, __LINE__ + 1
+            def authenticate_#{group_name}!(favourite=nil, opts={})
+              unless #{group_name}_signed_in?
+                mappings = #{mappings}
+                mappings.unshift mappings.delete(favourite.to_sym) if favourite
+                mappings.each do |mapping|
+                  set_user_by_token(mapping)
+                end
+                unless current_#{group_name}
+                  render_authenticate_error
+                end
+              end
+            end
+            def #{group_name}_signed_in?
+              #{mappings}.any? do |mapping|
+                set_user_by_token(mapping)
+              end
+            end
+            def current_#{group_name}(favourite=nil)
+              mappings = #{mappings}
+              mappings.unshift mappings.delete(favourite.to_sym) if favourite
+              mappings.each do |mapping|
+                current = set_user_by_token(mapping)
+                return current if current
+              end
+              nil
+            end
+            def current_#{group_name.to_s.pluralize}
+              #{mappings}.map do |mapping|
+                set_user_by_token(mapping)
+              end.compact
+            end
+            def render_authenticate_error
+              return render json: {
+                errors: [I18n.t('devise.failure.unauthenticated')]
+              }, status: 401
+            end
+            if respond_to?(:helper_method)
+              helper_method "current_#{group_name}", "current_#{group_name.to_s.pluralize}", "#{group_name}_signed_in?", "render_authenticate_error"
+            end
+          METHODS
+        end
+        def log_process_action(payload)
+          payload[:status] ||= 401 unless payload[:exception]
+          super
+        end
+      end
+      # Define authentication filters and accessor helpers based on mappings.
+      # These filters should be used inside the controllers as before_actions,
+      # so you can control the scope of the user who should be signed in to
+      # access that specific controller/action.
+      # Example:
+      #
+      #   Roles:
+      #     User
+      #     Admin
+      #
+      #   Generated methods:
+      #     authenticate_user!                   # Signs user in or 401
+      #     authenticate_admin!                  # Signs admin in or 401
+      #     user_signed_in?                      # Checks whether there is a user signed in or not
+      #     admin_signed_in?                     # Checks whether there is an admin signed in or not
+      #     current_user                         # Current signed in user
+      #     current_admin                        # Current signed in admin
+      #     user_session                         # Session data available only to the user scope
+      #     admin_session                        # Session data available only to the admin scope
+      #     render_authenticate_error            # Render error unless user or admin is signed in
+      #
+      #   Use:
+      #     before_action :authenticate_user!  # Tell devise to use :user map
+      #     before_action :authenticate_admin! # Tell devise to use :admin map
+      #
+      def self.define_helpers(mapping) #:nodoc:
+        mapping = mapping.name
+        class_eval <<-METHODS, __FILE__, __LINE__ + 1
+          def authenticate_#{mapping}!(opts={})
+            unless current_#{mapping}
+              render_authenticate_error
+            end
+          end
+          def #{mapping}_signed_in?
+            !!current_#{mapping}
+          end
+          def current_#{mapping}
+            @current_#{mapping} ||= set_user_by_token(:#{mapping})
+          end
+          def #{mapping}_session
+            current_#{mapping} && warden.session(:#{mapping})
+          end
+          def render_authenticate_error
+            return render json: {
+              errors: [I18n.t('devise.failure.unauthenticated')]
+            }, status: 401
+          end
+        METHODS
+        ActiveSupport.on_load(:action_controller) do
+          if respond_to?(:helper_method)
+            helper_method "current_#{mapping}", "#{mapping}_signed_in?", "#{mapping}_session", "render_authenticate_error"
+          end
+        end
+      end
+    end
+  end
+end

data/lib/devise_token_auth/controllers/url_helpers.rb ADDED

@@ -0,0 +1,8 @@
+module DeviseTokenAuth
+  module Controllers
+    module UrlHelpers
+      def self.define_helpers(mapping)
+      end
+    end
+  end
+end

data/lib/devise_token_auth/engine.rb ADDED

@@ -0,0 +1,90 @@
+require 'devise_token_auth/rails/routes'
+module DeviseTokenAuth
+  class Engine < ::Rails::Engine
+    isolate_namespace DeviseTokenAuth
+    initializer "devise_token_auth.url_helpers" do
+      Devise.helpers << DeviseTokenAuth::Controllers::Helpers
+    end
+  end
+  mattr_accessor :change_headers_on_each_request,
+                 :max_number_of_devices,
+                 :token_lifespan,
+                 :batch_request_buffer_throttle,
+                 :omniauth_prefix,
+                 :default_confirm_success_url,
+                 :default_password_reset_url,
+                 :redirect_whitelist,
+                 :check_current_password_before_update,
+                 :enable_standard_devise_support,
+                 :remove_tokens_after_password_reset,
+                 :default_callbacks,
+                 :headers_names,
+                 :bypass_sign_in
+  self.change_headers_on_each_request       = true
+  self.max_number_of_devices                = 10
+  self.token_lifespan                       = 2.weeks
+  self.batch_request_buffer_throttle        = 5.seconds
+  self.omniauth_prefix                      = '/omniauth'
+  self.default_confirm_success_url          = nil
+  self.default_password_reset_url           = nil
+  self.redirect_whitelist                   = nil
+  self.check_current_password_before_update = false
+  self.enable_standard_devise_support       = false
+  self.remove_tokens_after_password_reset   = false
+  self.default_callbacks                    = true
+  self.headers_names                        = {:'access-token' => 'access-token',
+                                               :'client' => 'client',
+                                               :'expiry' => 'expiry',
+                                               :'uid' => 'uid',
+                                               :'token-type' => 'token-type' }
+  self.bypass_sign_in                       = true
+  def self.setup(&block)
+    yield self
+    Rails.application.config.after_initialize do
+      if defined?(::OmniAuth)
+        ::OmniAuth::config.path_prefix = Devise.omniauth_path_prefix = self.omniauth_prefix
+        # Omniauth currently does not pass along omniauth.params upon failure redirect
+        # see also: https://github.com/intridea/omniauth/issues/626
+        OmniAuth::FailureEndpoint.class_eval do
+          def redirect_to_failure
+            message_key = env['omniauth.error.type']
+            origin_query_param = env['omniauth.origin'] ? "&origin=#{CGI.escape(env['omniauth.origin'])}" : ""
+            strategy_name_query_param = env['omniauth.error.strategy'] ? "&strategy=#{env['omniauth.error.strategy'].name}" : ""
+            extra_params = env['omniauth.params'] ? "&#{env['omniauth.params'].to_query}" : ""
+            new_path = "#{env['SCRIPT_NAME']}#{OmniAuth.config.path_prefix}/failure?message=#{message_key}#{origin_query_param}#{strategy_name_query_param}#{extra_params}"
+            Rack::Response.new(["302 Moved"], 302, 'Location' => new_path).finish
+          end
+        end
+        # Omniauth currently removes omniauth.params during mocked requests
+        # see also: https://github.com/intridea/omniauth/pull/812
+        OmniAuth::Strategy.class_eval do
+          def mock_callback_call
+            setup_phase
+            @env['omniauth.origin'] = session.delete('omniauth.origin')
+            @env['omniauth.origin'] = nil if env['omniauth.origin'] == ''
+            @env['omniauth.params'] = session.delete('omniauth.params') || {}
+            mocked_auth = OmniAuth.mock_auth_for(name.to_s)
+            if mocked_auth.is_a?(Symbol)
+              fail!(mocked_auth)
+            else
+              @env['omniauth.auth'] = mocked_auth
+              OmniAuth.config.before_callback_phase.call(@env) if OmniAuth.config.before_callback_phase
+              call_app!
+            end
+          end
+        end
+      end
+    end
+  end
+end