joshuaclayton-clearance 0.6.4

Sign up to get free protection for your applications and to get access to all the features.
Files changed (44) hide show
  1. data/CHANGELOG.textile +135 -0
  2. data/LICENSE +21 -0
  3. data/README.textile +113 -0
  4. data/Rakefile +73 -0
  5. data/TODO.textile +6 -0
  6. data/app/controllers/clearance/confirmations_controller.rb +46 -0
  7. data/app/controllers/clearance/passwords_controller.rb +65 -0
  8. data/app/controllers/clearance/sessions_controller.rb +45 -0
  9. data/app/controllers/clearance/users_controller.rb +29 -0
  10. data/app/models/clearance_mailer.rb +19 -0
  11. data/app/views/clearance_mailer/change_password.html.erb +7 -0
  12. data/app/views/clearance_mailer/confirmation.html.erb +2 -0
  13. data/app/views/passwords/edit.html.erb +23 -0
  14. data/app/views/passwords/new.html.erb +15 -0
  15. data/app/views/sessions/new.html.erb +28 -0
  16. data/app/views/users/_form.html.erb +13 -0
  17. data/app/views/users/new.html.erb +6 -0
  18. data/config/routes.rb +19 -0
  19. data/generators/clearance/USAGE +1 -0
  20. data/generators/clearance/clearance_generator.rb +41 -0
  21. data/generators/clearance/lib/insert_commands.rb +103 -0
  22. data/generators/clearance/lib/rake_commands.rb +22 -0
  23. data/generators/clearance/templates/README +22 -0
  24. data/generators/clearance/templates/factories.rb +13 -0
  25. data/generators/clearance/templates/migrations/create_users.rb +20 -0
  26. data/generators/clearance/templates/migrations/update_users.rb +41 -0
  27. data/generators/clearance/templates/user.rb +3 -0
  28. data/generators/clearance_features/USAGE +1 -0
  29. data/generators/clearance_features/clearance_features_generator.rb +20 -0
  30. data/generators/clearance_features/templates/features/password_reset.feature +33 -0
  31. data/generators/clearance_features/templates/features/sign_in.feature +42 -0
  32. data/generators/clearance_features/templates/features/sign_out.feature +23 -0
  33. data/generators/clearance_features/templates/features/sign_up.feature +28 -0
  34. data/generators/clearance_features/templates/features/step_definitions/clearance_steps.rb +110 -0
  35. data/generators/clearance_features/templates/features/step_definitions/factory_girl_steps.rb +5 -0
  36. data/generators/clearance_features/templates/features/support/paths.rb +22 -0
  37. data/lib/clearance.rb +5 -0
  38. data/lib/clearance/authentication.rb +96 -0
  39. data/lib/clearance/extensions/errors.rb +4 -0
  40. data/lib/clearance/extensions/rescue.rb +1 -0
  41. data/lib/clearance/user.rb +115 -0
  42. data/rails/init.rb +1 -0
  43. data/shoulda_macros/clearance.rb +261 -0
  44. metadata +129 -0
data/app/controllers/clearance/sessions_controller.rb ADDED
@@ -0,0 +1,45 @@
1
+ class Clearance::SessionsController < ApplicationController
2
+ unloadable
3
+
4
+ protect_from_forgery :except => :create
5
+ filter_parameter_logging :password
6
+
7
+ def new
8
+ render :template => 'sessions/new'
9
+ end
10
+
11
+ def create
12
+ @user = ::User.authenticate(params[:session][:email],
13
+ params[:session][:password])
14
+ if @user.nil?
15
+ flash.now[:failure] = "Bad email or password."
16
+ render :template => 'sessions/new', :status => :unauthorized
17
+ else
18
+ if @user.email_confirmed?
19
+ sign_user_in(@user)
20
+ remember(@user) if remember?
21
+ flash[:success] = "Signed in."
22
+ redirect_back_or url_after_create
23
+ else
24
+ ::ClearanceMailer.deliver_confirmation(@user)
25
+ deny_access("User has not confirmed email. Confirmation email will be resent.")
26
+ end
27
+ end
28
+ end
29
+
30
+ def destroy
31
+ forget(current_user)
32
+ flash[:success] = "Signed out."
33
+ redirect_to url_after_destroy
34
+ end
35
+
36
+ private
37
+
38
+ def url_after_create
39
+ root_url
40
+ end
41
+
42
+ def url_after_destroy
43
+ new_session_url
44
+ end
45
+ end
data/app/controllers/clearance/users_controller.rb ADDED
@@ -0,0 +1,29 @@
1
+ class Clearance::UsersController < ApplicationController
2
+ unloadable
3
+
4
+ before_filter :redirect_to_root, :only => [:new, :create], :if => :signed_in?
5
+ filter_parameter_logging :password
6
+
7
+ def new
8
+ @user = ::User.new(params[:user])
9
+ render :template => 'users/new'
10
+ end
11
+
12
+ def create
13
+ @user = ::User.new params[:user]
14
+ if @user.save
15
+ ::ClearanceMailer.deliver_confirmation @user
16
+ flash[:notice] = "You will receive an email within the next few minutes. " <<
17
+ "It contains instructions for confirming your account."
18
+ redirect_to url_after_create
19
+ else
20
+ render :template => 'users/new'
21
+ end
22
+ end
23
+
24
+ private
25
+
26
+ def url_after_create
27
+ new_session_url
28
+ end
29
+ end
data/app/models/clearance_mailer.rb ADDED
@@ -0,0 +1,19 @@
1
+ class ClearanceMailer < ActionMailer::Base
2
+
3
+ default_url_options[:host] = HOST
4
+
5
+ def change_password(user)
6
+ from DO_NOT_REPLY
7
+ recipients user.email
8
+ subject "Change your password"
9
+ body :user => user
10
+ end
11
+
12
+ def confirmation(user)
13
+ from DO_NOT_REPLY
14
+ recipients user.email
15
+ subject "Account confirmation"
16
+ body :user => user
17
+ end
18
+
19
+ end
data/app/views/clearance_mailer/change_password.html.erb ADDED
@@ -0,0 +1,7 @@
1
+ Someone, hopefully you, has requested that we send you a link to change your password.
2
+
3
+ Here's the link:
4
+
5
+ <%= edit_user_password_url(@user, :token => @user.token, :escape => false) %>
6
+
7
+ If you didn't request this, ignore this email. Don't worry. Your password hasn't been changed.
data/app/views/clearance_mailer/confirmation.html.erb ADDED
@@ -0,0 +1,2 @@
1
+
2
+ <%= new_user_confirmation_url :user_id => @user, :token => @user.token, :encode => false %>
data/app/views/passwords/edit.html.erb ADDED
@@ -0,0 +1,23 @@
1
+ <h2>Change your password</h2>
2
+
3
+ <p>
4
+ Your password has been reset. Choose a new password below.
5
+ </p>
6
+
7
+ <%= error_messages_for :user %>
8
+
9
+ <% form_for(:user,
10
+ :url => user_password_path(@user, :token => @user.token),
11
+ :html => { :method => :put }) do |form| %>
12
+ <div class="password_field">
13
+ <%= form.label :password, "Choose password" %>
14
+ <%= form.password_field :password %>
15
+ </div>
16
+ <div class="password_field">
17
+ <%= form.label :password_confirmation, "Confirm password" %>
18
+ <%= form.password_field :password_confirmation %>
19
+ </div>
20
+ <div class="submit_field">
21
+ <%= form.submit "Save this password", :disable_with => "Please wait..." %>
22
+ </div>
23
+ <% end %>
data/app/views/passwords/new.html.erb ADDED
@@ -0,0 +1,15 @@
1
+ <h2>Change your password</h2>
2
+
3
+ <p>
4
+ We will email you a link to change your password.
5
+ </p>
6
+
7
+ <% form_for :password, :url => passwords_path do |form| %>
8
+ <div class="text_field">
9
+ <%= form.label :email, "Email address" %>
10
+ <%= form.text_field :email %>
11
+ </div>
12
+ <div class="submit_field">
13
+ <%= form.submit "Reset password", :disable_with => "Please wait..." %>
14
+ </div>
15
+ <% end %>
data/app/views/sessions/new.html.erb ADDED
@@ -0,0 +1,28 @@
1
+ <h2>Sign in</h2>
2
+
3
+ <% form_for :session, :url => session_path do |form| %>
4
+ <div class="text_field">
5
+ <%= form.label :email %>
6
+ <%= form.text_field :email %>
7
+ </div>
8
+ <div class="text_field">
9
+ <%= form.label :password %>
10
+ <%= form.password_field :password %>
11
+ </div>
12
+ <div class="text_field">
13
+ <%= form.check_box :remember_me %>
14
+ <%= form.label :remember_me %>
15
+ </div>
16
+ <div class="submit_field">
17
+ <%= form.submit "Sign in", :disable_with => "Please wait..." %>
18
+ </div>
19
+ <% end %>
20
+
21
+ <ul>
22
+ <li>
23
+ <%= link_to "Sign up", new_user_path %>
24
+ </li>
25
+ <li>
26
+ <%= link_to "Forgot password?", new_password_path %>
27
+ </li>
28
+ </ul>
data/app/views/users/_form.html.erb ADDED
@@ -0,0 +1,13 @@
1
+ <%= form.error_messages %>
2
+ <div class="text_field">
3
+ <%= form.label :email %>
4
+ <%= form.text_field :email %>
5
+ </div>
6
+ <div class="password_field">
7
+ <%= form.label :password %>
8
+ <%= form.password_field :password %>
9
+ </div>
10
+ <div class="password_field">
11
+ <%= form.label :password_confirmation, "Confirm password" %>
12
+ <%= form.password_field :password_confirmation %>
13
+ </div>
data/app/views/users/new.html.erb ADDED
@@ -0,0 +1,6 @@
1
+ <h2>Sign up</h2>
2
+
3
+ <% form_for @user do |form| %>
4
+ <%= render :partial => '/users/form', :object => form %>
5
+ <%= form.submit 'Sign up', :disable_with => 'Please wait...' %>
6
+ <% end %>
data/config/routes.rb ADDED
@@ -0,0 +1,19 @@
1
+ ActionController::Routing::Routes.draw do |map|
2
+ map.resources :passwords,
3
+ :controller => 'clearance/passwords',
4
+ :only => [:new, :create]
5
+
6
+ map.resource :session,
7
+ :controller => 'clearance/sessions',
8
+ :only => [:new, :create, :destroy]
9
+
10
+ map.resources :users, :controller => 'clearance/users' do |users|
11
+ users.resource :password,
12
+ :controller => 'clearance/passwords',
13
+ :only => [:create, :edit, :update]
14
+
15
+ users.resource :confirmation,
16
+ :controller => 'clearance/confirmations',
17
+ :only => [:new, :create]
18
+ end
19
+ end
data/generators/clearance/USAGE ADDED
@@ -0,0 +1 @@
1
+ script/generate clearance
data/generators/clearance/clearance_generator.rb ADDED
@@ -0,0 +1,41 @@
1
+ require File.expand_path(File.dirname(__FILE__) + "/lib/insert_commands.rb")
2
+ require File.expand_path(File.dirname(__FILE__) + "/lib/rake_commands.rb")
3
+ require 'factory_girl'
4
+
5
+ class ClearanceGenerator < Rails::Generator::Base
6
+
7
+ def manifest
8
+ record do |m|
9
+ m.insert_into "app/controllers/application_controller.rb",
10
+ "include Clearance::Authentication"
11
+
12
+ user_model = "app/models/user.rb"
13
+ if File.exists?(user_model)
14
+ m.insert_into user_model, "include Clearance::User"
15
+ else
16
+ m.directory File.join("app", "models")
17
+ m.file "user.rb", user_model
18
+ end
19
+
20
+ m.directory File.join("test", "factories")
21
+ m.file "factories.rb", "test/factories/clearance.rb"
22
+
23
+ m.migration_template "migrations/#{migration_name}.rb",
24
+ 'db/migrate',
25
+ :migration_file_name => "clearance_#{migration_name}"
26
+
27
+ m.readme "README"
28
+ end
29
+ end
30
+
31
+ private
32
+
33
+ def migration_name
34
+ if ActiveRecord::Base.connection.table_exists?(:users)
35
+ 'update_users'
36
+ else
37
+ 'create_users'
38
+ end
39
+ end
40
+
41
+ end
data/generators/clearance/lib/insert_commands.rb ADDED
@@ -0,0 +1,103 @@
1
+ # Mostly pinched from http://github.com/ryanb/nifty-generators/tree/master
2
+
3
+ Rails::Generator::Commands::Base.class_eval do
4
+ def file_contains?(relative_destination, line)
5
+ File.read(destination_path(relative_destination)).include?(line)
6
+ end
7
+ end
8
+
9
+ Rails::Generator::Commands::Create.class_eval do
10
+
11
+ def route_resources(resource_list)
12
+ sentinel = 'ActionController::Routing::Routes.draw do |map|'
13
+
14
+ logger.route "map.resources #{resource_list}"
15
+ unless options[:pretend] || file_contains?('config/routes.rb', resource_list)
16
+ gsub_file 'config/routes.rb', /(#{Regexp.escape(sentinel)})/mi do |match|
17
+ "#{match}\n map.resources #{resource_list}"
18
+ end
19
+ end
20
+ end
21
+
22
+ def route_resource(resource_list)
23
+ sentinel = 'ActionController::Routing::Routes.draw do |map|'
24
+
25
+ logger.route "map.resource #{resource_list}"
26
+ unless options[:pretend] || file_contains?('config/routes.rb', resource_list)
27
+ gsub_file 'config/routes.rb', /(#{Regexp.escape(sentinel)})/mi do |match|
28
+ "#{match}\n map.resource #{resource_list}"
29
+ end
30
+ end
31
+ end
32
+
33
+ def route_name(name, path, route_options = {})
34
+ sentinel = 'ActionController::Routing::Routes.draw do |map|'
35
+
36
+ logger.route "map.#{name} '#{path}', :controller => '#{route_options[:controller]}', :action => '#{route_options[:action]}'"
37
+ unless options[:pretend]
38
+ gsub_file_once 'config/routes.rb', /(#{Regexp.escape(sentinel)})/mi do |match|
39
+ "#{match}\n map.#{name} '#{path}', :controller => '#{route_options[:controller]}', :action => '#{route_options[:action]}'"
40
+ end
41
+ end
42
+ end
43
+
44
+ def insert_into(file, line)
45
+ logger.insert "#{line} into #{file}"
46
+ unless options[:pretend] || file_contains?(file, line)
47
+ gsub_file file, /^(class|module) .+$/ do |match|
48
+ "#{match}\n #{line}"
49
+ end
50
+ end
51
+ end
52
+ end
53
+
54
+ Rails::Generator::Commands::Destroy.class_eval do
55
+ def route_resource(resource_list)
56
+ look_for = " map.resource #{resource_list}\n".gsub(/[\[\]]/, '\\\\\0')
57
+ logger.route "map.resource #{resource_list} #{look_for}"
58
+ unless options[:pretend]
59
+ gsub_file 'config/routes.rb', /(#{look_for})/mi, ''
60
+ end
61
+ end
62
+
63
+ def route_resources(resource_list)
64
+ look_for = " map.resources #{resource_list}\n".gsub(/[\[\]]/, '\\\\\0')
65
+ logger.route "map.resources #{resource_list} #{look_for}"
66
+ unless options[:pretend]
67
+ gsub_file 'config/routes.rb', /(#{look_for})/mi, ''
68
+ end
69
+ end
70
+
71
+ def route_name(name, path, route_options = {})
72
+ look_for = "\n map.#{name} '#{path}', :controller => '#{route_options[:controller]}', :action => '#{route_options[:action]}'"
73
+ logger.route "map.#{name} '#{path}', :controller => '#{route_options[:controller]}', :action => '#{route_options[:action]}'"
74
+ unless options[:pretend]
75
+ gsub_file 'config/routes.rb', /(#{look_for})/mi, ''
76
+ end
77
+ end
78
+
79
+ def insert_into(file, line)
80
+ logger.remove "#{line} from #{file}"
81
+ unless options[:pretend]
82
+ gsub_file file, "\n #{line}", ''
83
+ end
84
+ end
85
+ end
86
+
87
+ Rails::Generator::Commands::List.class_eval do
88
+ def route_resource(resources_list)
89
+ logger.route "map.resource #{resource_list}"
90
+ end
91
+
92
+ def route_resources(resources_list)
93
+ logger.route "map.resource #{resource_list}"
94
+ end
95
+
96
+ def route_name(name, path, options = {})
97
+ logger.route "map.#{name} '#{path}', :controller => '{options[:controller]}', :action => '#{options[:action]}'"
98
+ end
99
+
100
+ def insert_into(file, line)
101
+ logger.insert "#{line} into #{file}"
102
+ end
103
+ end
data/generators/clearance/lib/rake_commands.rb ADDED
@@ -0,0 +1,22 @@
1
+ Rails::Generator::Commands::Create.class_eval do
2
+ def rake_db_migrate
3
+ logger.rake "db:migrate"
4
+ unless system("rake db:migrate")
5
+ logger.rake "db:migrate failed. Rolling back"
6
+ command(:destroy).invoke!
7
+ end
8
+ end
9
+ end
10
+
11
+ Rails::Generator::Commands::Destroy.class_eval do
12
+ def rake_db_migrate
13
+ logger.rake "db:rollback"
14
+ system "rake db:rollback"
15
+ end
16
+ end
17
+
18
+ Rails::Generator::Commands::List.class_eval do
19
+ def rake_db_migrate
20
+ logger.rake "db:migrate"
21
+ end
22
+ end
data/generators/clearance/templates/README ADDED
@@ -0,0 +1,22 @@
1
+
2
+ *******************************************************************************
3
+
4
+ Ok, enough fancy automatic stuff. Time for some old school monkey copy-pasting.
5
+
6
+ 1. Define a HOST constant in your environments files.
7
+ In config/environments/test.rb and config/environments/development.rb it can be:
8
+
9
+ HOST = "localhost"
10
+
11
+ In production.rb it must be the actual host your application is deployed to.
12
+ The constant is used by mailers to generate URLs in emails.
13
+
14
+ 2. In config/environment.rb:
15
+
16
+ DO_NOT_REPLY = "donotreply@example.com"
17
+
18
+ 3. Define root_url to *something* in your config/routes.rb:
19
+
20
+ map.root :controller => 'home'
21
+
22
+ *******************************************************************************
data/generators/clearance/templates/factories.rb ADDED
@@ -0,0 +1,13 @@
1
+ Factory.sequence :email do |n|
2
+ "user#{n}@example.com"
3
+ end
4
+
5
+ Factory.define :user do |user|
6
+ user.email { Factory.next :email }
7
+ user.password { "password" }
8
+ user.password_confirmation { "password" }
9
+ end
10
+
11
+ Factory.define :email_confirmed_user, :parent => :user do |user|
12
+ user.email_confirmed { true }
13
+ end
data/generators/clearance/templates/migrations/create_users.rb ADDED
@@ -0,0 +1,20 @@
1
+ class ClearanceCreateUsers < ActiveRecord::Migration
2
+ def self.up
3
+ create_table(:users) do |t|
4
+ t.string :email
5
+ t.string :encrypted_password, :limit => 128
6
+ t.string :salt, :limit => 128
7
+ t.string :token, :limit => 128
8
+ t.datetime :token_expires_at
9
+ t.boolean :email_confirmed, :default => false, :null => false
10
+ end
11
+
12
+ add_index :users, [:id, :token]
13
+ add_index :users, :email
14
+ add_index :users, :token
15
+ end
16
+
17
+ def self.down
18
+ drop_table :users
19
+ end
20
+ end