RubyGems - graphql_devise - Versions diffs - 0.18.1 → 1.0.1 - Mend

graphql_devise 0.18.1 → 1.0.1

Files changed (95) hide show

data/app/controllers/graphql_devise/concerns/additional_controller_methods.rb DELETED Viewed

@@ -1,72 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Concerns
-    module AdditionalControllerMethods
-      extend ActiveSupport::Concern
-      included do
-        attr_accessor :client_id, :token, :resource
-      end
-      def gql_devise_context(*models)
-        {
-          current_resource: authenticate_model(*models),
-          controller:       self
-        }
-      end
-      def authenticate_model(*models)
-        models.each do |model|
-          set_resource_by_token(model)
-          return @resource if @resource.present?
-        end
-        nil
-      end
-      def resource_class(resource = nil)
-        # Return the resource class instead of looking for a Devise mapping if resource is already a resource class
-        return resource if resource.respond_to?(:find_by)
-        super
-      end
-      def full_url_without_params
-        request.base_url + request.path
-      end
-      def set_resource_by_token(resource)
-        set_user_by_token(resource)
-      end
-      def graphql_context(resource_name)
-        ActiveSupport::Deprecation.warn(<<-DEPRECATION.strip_heredoc, caller)
-          `graphql_context` is deprecated and will be removed in a future version of this gem.
-           Use `gql_devise_context(model)` instead.
-           EXAMPLE
-           include GraphqlDevise::SetUserByToken
-           DummySchema.execute(params[:query], context: gql_devise_context(User))
-           DummySchema.execute(params[:query], context: gql_devise_context(User, Admin))
-        DEPRECATION
-        {
-          resource_name: resource_name,
-          controller:    self
-        }
-      end
-      def build_redirect_headers(access_token, client, redirect_header_options = {})
-        {
-          DeviseTokenAuth.headers_names[:"access-token"] => access_token,
-          DeviseTokenAuth.headers_names[:client] => client,
-          :config => params[:config],
-          :client_id => client,
-          :token => access_token
-        }.merge(redirect_header_options)
-      end
-    end
-  end
-end

data/app/controllers/graphql_devise/concerns/set_user_by_token.rb DELETED Viewed

@@ -1,21 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Concerns
-    module SetUserByToken
-      extend ActiveSupport::Concern
-      included do
-        include DeviseTokenAuth::Concerns::SetUserByToken
-        include GraphqlDevise::Concerns::AdditionalControllerMethods
-        ActiveSupport::Deprecation.warn(<<-DEPRECATION.strip_heredoc, caller)
-          Including GraphqlDevise::Concerns::SetUserByToken is deprecated and will be removed in a future version of
-          this gem. Please use GraphqlDevise::SetUserByToken instead.
-          EXAMPLE
-          include GraphqlDevise::SetUserByToken
-        DEPRECATION
-      end
-    end
-  end
-end

data/app/helpers/graphql_devise/mailer_helper.rb DELETED Viewed

@@ -1,37 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module MailerHelper
-    def confirmation_query(resource_name:, token:, redirect_url:)
-      name = "#{GraphqlDevise.to_mapping_name(resource_name).camelize(:lower)}ConfirmAccount"
-      raw = <<-GRAPHQL
-        query($token:String!,$redirectUrl:String!){
-          #{name}(confirmationToken:$token,redirectUrl:$redirectUrl){
-            email
-          }
-        }
-      GRAPHQL
-      {
-        query:     raw.delete("\n").delete(' ').html_safe,
-        variables: { token: token, redirectUrl: redirect_url }
-      }
-    end
-    def password_reset_query(token:, redirect_url:, resource_name:)
-      name = "#{GraphqlDevise.to_mapping_name(resource_name).camelize(:lower)}CheckPasswordToken"
-      raw = <<-GRAPHQL
-        query($token:String!,$redirectUrl:String!){
-          #{name}(resetPasswordToken:$token,redirectUrl:$redirectUrl){
-            email
-          }
-        }
-      GRAPHQL
-      {
-        query:     raw.delete("\n").delete(' ').html_safe,
-        variables: { token: token, redirectUrl: redirect_url }
-      }
-    end
-  end
-end

data/app/models/graphql_devise/concerns/additional_model_methods.rb DELETED Viewed

@@ -1,21 +0,0 @@
-# frozen_string_literal: true
-require 'graphql_devise/model/with_email_updater'
-module GraphqlDevise
-  module Concerns
-    module AdditionalModelMethods
-      extend ActiveSupport::Concern
-      class_methods do
-        def reconfirmable
-          devise_modules.include?(:confirmable) && column_names.include?('unconfirmed_email')
-        end
-      end
-      def update_with_email(attributes = {})
-        GraphqlDevise::Model::WithEmailUpdater.new(self, attributes).call
-      end
-    end
-  end
-end

data/app/models/graphql_devise/concerns/model.rb DELETED Viewed

@@ -1,25 +0,0 @@
-# frozen_string_literal: true
-require 'graphql_devise/model/with_email_updater'
-module GraphqlDevise
-  module Concerns
-    module Model
-      extend ActiveSupport::Concern
-      included do
-        include DeviseTokenAuth::Concerns::User
-        include GraphqlDevise::Concerns::AdditionalModelMethods
-        GraphqlDevise.configure_warden_serializer_for_model(self)
-        ActiveSupport::Deprecation.warn(<<-DEPRECATION.strip_heredoc, caller)
-          Including GraphqlDevise::Concerns::Model is deprecated and will be removed in a future version of
-          this gem. Please use GraphqlDevise::Authenticatable instead.
-          EXAMPLE
-          include GraphqlDevise::Authenticatable
-        DEPRECATION
-      end
-    end
-  end
-end

data/lib/graphql_devise/default_operations/mutations.rb DELETED Viewed

@@ -1,32 +0,0 @@
-# frozen_string_literal: true
-require 'graphql_devise/mutations/base'
-require 'graphql_devise/mutations/login'
-require 'graphql_devise/mutations/logout'
-require 'graphql_devise/mutations/resend_confirmation'
-require 'graphql_devise/mutations/resend_confirmation_with_token'
-require 'graphql_devise/mutations/send_password_reset'
-require 'graphql_devise/mutations/send_password_reset_with_token'
-require 'graphql_devise/mutations/sign_up'
-require 'graphql_devise/mutations/register'
-require 'graphql_devise/mutations/update_password'
-require 'graphql_devise/mutations/update_password_with_token'
-require 'graphql_devise/mutations/confirm_registration_with_token'
-module GraphqlDevise
-  module DefaultOperations
-    MUTATIONS = {
-      login:                           { klass: GraphqlDevise::Mutations::Login, authenticatable: true },
-      logout:                          { klass: GraphqlDevise::Mutations::Logout, authenticatable: true },
-      sign_up:                         { klass: GraphqlDevise::Mutations::SignUp, authenticatable: true, deprecation_reason: 'use register instead' },
-      register:                        { klass: GraphqlDevise::Mutations::Register, authenticatable: true },
-      update_password:                 { klass: GraphqlDevise::Mutations::UpdatePassword, authenticatable: true, deprecation_reason: 'use update_password_with_token instead' },
-      update_password_with_token:      { klass: GraphqlDevise::Mutations::UpdatePasswordWithToken, authenticatable: true },
-      send_password_reset:             { klass: GraphqlDevise::Mutations::SendPasswordReset, authenticatable: false, deprecation_reason: 'use send_password_reset_with_token instead' },
-      send_password_reset_with_token:  { klass: GraphqlDevise::Mutations::SendPasswordResetWithToken, authenticatable: false },
-      resend_confirmation:             { klass: GraphqlDevise::Mutations::ResendConfirmation, authenticatable: false, deprecation_reason: 'use resend_confirmation_with_token instead' },
-      resend_confirmation_with_token:  { klass: GraphqlDevise::Mutations::ResendConfirmationWithToken, authenticatable: false },
-      confirm_registration_with_token: { klass: GraphqlDevise::Mutations::ConfirmRegistrationWithToken, authenticatable: true }
-    }.freeze
-  end
-end

data/lib/graphql_devise/default_operations/resolvers.rb DELETED Viewed

@@ -1,14 +0,0 @@
-# frozen_string_literal: true
-require 'graphql_devise/resolvers/base'
-require 'graphql_devise/resolvers/check_password_token'
-require 'graphql_devise/resolvers/confirm_account'
-module GraphqlDevise
-  module DefaultOperations
-    QUERIES = {
-      confirm_account:      { klass: GraphqlDevise::Resolvers::ConfirmAccount, deprecation_reason: 'use the new confirmation flow as it does not require this query anymore' },
-      check_password_token: { klass: GraphqlDevise::Resolvers::CheckPasswordToken, deprecation_reason: 'use the new password reset flow as it does not require this query anymore' }
-    }.freeze
-  end
-end

data/lib/graphql_devise/mutations/resend_confirmation.rb DELETED Viewed

@@ -1,45 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Mutations
-    class ResendConfirmation < Base
-      argument :email,        String, required: true, prepare: ->(email, _) { email.downcase }
-      argument :redirect_url, String, required: true
-      field :message, String, null: false
-      def resolve(email:, redirect_url:)
-        check_redirect_url_whitelist!(redirect_url)
-        resource = find_confirmable_resource(email)
-        if resource
-          yield resource if block_given?
-          if resource.confirmed? && !resource.pending_reconfirmation?
-            raise_user_error(I18n.t('graphql_devise.confirmations.already_confirmed'))
-          end
-          resource.send_confirmation_instructions(
-            redirect_url:  redirect_url,
-            template_path: ['graphql_devise/mailer'],
-            schema_url:    controller.full_url_without_params
-          )
-          { message: I18n.t('graphql_devise.confirmations.send_instructions', email: email) }
-        else
-          raise_user_error(I18n.t('graphql_devise.confirmations.user_not_found', email: email))
-        end
-      end
-      private
-      def find_confirmable_resource(email)
-        email_insensitive = get_case_insensitive_field(:email, email)
-        resource = find_resource(:unconfirmed_email, email_insensitive) if resource_class.reconfirmable
-        resource ||= find_resource(:email, email_insensitive)
-        resource
-      end
-    end
-  end
-end

data/lib/graphql_devise/mutations/send_password_reset.rb DELETED Viewed

@@ -1,38 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Mutations
-    class SendPasswordReset < Base
-      argument :email,        String, required: true
-      argument :redirect_url, String, required: true
-      field :message, String, null: false
-      def resolve(email:, redirect_url:)
-        check_redirect_url_whitelist!(redirect_url)
-        resource = find_resource(:email, get_case_insensitive_field(:email, email))
-        if resource
-          yield resource if block_given?
-          resource.send_reset_password_instructions(
-            email:         email,
-            provider:      'email',
-            redirect_url:  redirect_url,
-            template_path: ['graphql_devise/mailer'],
-            schema_url:    controller.full_url_without_params
-          )
-          if resource.errors.empty?
-            { message: I18n.t('graphql_devise.passwords.send_instructions') }
-          else
-            raise_user_error_list(I18n.t('graphql_devise.invalid_resource'), errors: resource.errors.full_messages)
-          end
-        else
-          raise_user_error(I18n.t('graphql_devise.user_not_found'))
-        end
-      end
-    end
-  end
-end

data/lib/graphql_devise/mutations/sign_up.rb DELETED Viewed

@@ -1,61 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Mutations
-    class SignUp < Base
-      argument :email,                 String, required: true
-      argument :password,              String, required: true
-      argument :password_confirmation, String, required: true
-      argument :confirm_success_url,   String, required: false
-      field :credentials,
-            GraphqlDevise::Types::CredentialType,
-            null:        true,
-            description: 'Authentication credentials. Null if after signUp resource is not active for authentication (e.g. Email confirmation required).'
-      def resolve(confirm_success_url: nil, **attrs)
-        resource = build_resource(attrs.merge(provider: provider))
-        raise_user_error(I18n.t('graphql_devise.resource_build_failed')) if resource.blank?
-        redirect_url = confirm_success_url || DeviseTokenAuth.default_confirm_success_url
-        if confirmable_enabled? && redirect_url.blank?
-          raise_user_error(I18n.t('graphql_devise.registrations.missing_confirm_redirect_url'))
-        end
-        check_redirect_url_whitelist!(redirect_url)
-        resource.skip_confirmation_notification! if resource.respond_to?(:skip_confirmation_notification!)
-        if resource.save
-          yield resource if block_given?
-          unless resource.confirmed?
-            resource.send_confirmation_instructions(
-              redirect_url:  redirect_url,
-              template_path: ['graphql_devise/mailer'],
-              schema_url:    controller.full_url_without_params
-            )
-          end
-          response_payload = { authenticatable: resource }
-          response_payload[:credentials] = set_auth_headers(resource) if resource.active_for_authentication?
-          response_payload
-        else
-          resource.try(:clean_up_passwords)
-          raise_user_error_list(
-            I18n.t('graphql_devise.registration_failed'),
-            errors: resource.errors.full_messages
-          )
-        end
-      end
-      private
-      def build_resource(attrs)
-        resource_class.new(attrs)
-      end
-    end
-  end
-end

data/lib/graphql_devise/mutations/update_password.rb DELETED Viewed

@@ -1,46 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Mutations
-    class UpdatePassword < Base
-      argument :password,              String, required: true
-      argument :password_confirmation, String, required: true
-      argument :current_password,      String, required: false
-      def resolve(current_password: nil, **attrs)
-        if current_resource.blank?
-          raise_user_error(I18n.t('graphql_devise.not_authenticated'))
-        elsif current_resource.provider != 'email'
-          raise_user_error(
-            I18n.t('graphql_devise.passwords.password_not_required', provider: current_resource.provider.humanize)
-          )
-        end
-        if update_resource_password(current_password, attrs)
-          current_resource.allow_password_change = false if recoverable_enabled?
-          current_resource.save!
-          yield current_resource if block_given?
-          { authenticatable: current_resource }
-        else
-          raise_user_error_list(
-            I18n.t('graphql_devise.passwords.update_password_error'),
-            errors: current_resource.errors.full_messages
-          )
-        end
-      end
-      private
-      def update_resource_password(current_password, attrs)
-        allow_password_change = recoverable_enabled? && current_resource.allow_password_change == true
-        if DeviseTokenAuth.check_current_password_before_update == false || allow_password_change
-          current_resource.public_send(:update, attrs)
-        else
-          current_resource.public_send(:update_with_password, attrs.merge(current_password: current_password))
-        end
-      end
-    end
-  end
-end

data/lib/graphql_devise/rails/routes.rb DELETED Viewed

@@ -1,15 +0,0 @@
-# frozen_string_literal: true
-module ActionDispatch::Routing
-  class Mapper
-    def mount_graphql_devise_for(resource, options = {})
-      clean_options = GraphqlDevise::ResourceLoader.new(resource, options, true).call(
-        GraphqlDevise::Types::QueryType,
-        GraphqlDevise::Types::MutationType
-      )
-      post clean_options.at, to: 'graphql_devise/graphql#auth'
-      get  clean_options.at, to: 'graphql_devise/graphql#auth'
-    end
-  end
-end

data/lib/graphql_devise/resolvers/check_password_token.rb DELETED Viewed

@@ -1,43 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Resolvers
-    class CheckPasswordToken < Base
-      argument :reset_password_token, String, required: true
-      argument :redirect_url,         String, required: false
-      def resolve(reset_password_token:, redirect_url: nil)
-        resource = resource_class.with_reset_password_token(reset_password_token)
-        raise_user_error(I18n.t('graphql_devise.passwords.reset_token_not_found')) if resource.blank?
-        if resource.reset_password_period_valid?
-          token_info = client_and_token(resource.create_token)
-          resource.skip_confirmation! if confirmable_enabled? && !resource.confirmed_at
-          resource.allow_password_change = true if recoverable_enabled?
-          resource.save!
-          yield resource if block_given?
-          redirect_header_options = { reset_password: true }
-          built_redirect_headers = redirect_headers(
-            token_info,
-            redirect_header_options
-          )
-          if redirect_url.present?
-            check_redirect_url_whitelist!(redirect_url)
-            controller.redirect_to(resource.build_auth_url(redirect_url, built_redirect_headers))
-          else
-            set_auth_headers(resource)
-          end
-          resource
-        else
-          raise_user_error(I18n.t('graphql_devise.passwords.reset_token_expired'))
-        end
-      end
-    end
-  end
-end

data/lib/graphql_devise/resolvers/confirm_account.rb DELETED Viewed

@@ -1,42 +0,0 @@
-# frozen_string_literal: true
-module GraphqlDevise
-  module Resolvers
-    class ConfirmAccount < Base
-      argument :confirmation_token, String, required: true
-      argument :redirect_url,       String, required: true
-      def resolve(confirmation_token:, redirect_url:)
-        check_redirect_url_whitelist!(redirect_url)
-        resource = resource_class.confirm_by_token(confirmation_token)
-        if resource.errors.empty?
-          yield resource if block_given?
-          redirect_header_options = { account_confirmation_success: true }
-          redirect_to_link = if controller.signed_in?(resource_name)
-            url = resource.build_auth_url(
-              redirect_url,
-              redirect_headers(
-                client_and_token(resource.create_token),
-                redirect_header_options
-              )
-            )
-            resource.save!
-            url
-          else
-            DeviseTokenAuth::Url.generate(redirect_url, redirect_header_options)
-          end
-          controller.redirect_to(redirect_to_link)
-          resource
-        else
-          raise_user_error(I18n.t('graphql_devise.confirmations.invalid_token'))
-        end
-      end
-    end
-  end
-end

data/spec/dummy/app/graphql/mutations/sign_up.rb DELETED Viewed

@@ -1,14 +0,0 @@
-# frozen_string_literal: true
-module Mutations
-  class SignUp < GraphqlDevise::Mutations::SignUp
-    argument :name, String, required: false
-    field :user, Types::UserType, null: true
-    def resolve(email:, **attrs)
-      original_payload = super
-      original_payload.merge(user: original_payload[:authenticatable])
-    end
-  end
-end

data/spec/dummy/app/graphql/resolvers/confirm_admin_account.rb DELETED Viewed

@@ -1,13 +0,0 @@
-# frozen_string_literal: true
-module Resolvers
-  class ConfirmAdminAccount < GraphqlDevise::Resolvers::ConfirmAccount
-    type Types::AdminType, null: false
-    def resolve(confirmation_token:, redirect_url:)
-      super do |admin|
-        controller.sign_in(admin)
-      end
-    end
-  end
-end