monban 0.0.7 → 0.0.8

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 93dddea63fce739f0a549c7ef8c97b7fee4cd7d7
-  data.tar.gz: 24df0ad211ea5bd21d23e8fa8607b53854b9be60
+  metadata.gz: 1eea738a714fc0f03f4e0a62079eb8fe979a925d
+  data.tar.gz: b169d1d7730f4ff61ff1f5783a7588ded2dd63bf
 SHA512:
-  metadata.gz: fdbe4a23900c1d89b81aa077b237c394a7120b3840decd40a95bedcb9659bb29697e313aead7f6b837c30f52385bcf3aa2a8c34a7294f0ff658dfbf81c58aba1
-  data.tar.gz: f618ece4acd9ba1128268b0ace5f78d629febc676e7f9dced7ea4b1eea4abb1811b850c9687040f379d53b6b8bf269abf3fd469d64aaf1e8004a73fb99b8241e
+  metadata.gz: df2ae9cdac6f2b795c4b5eb034c712aa0a63ccfe04717431a9ea4b5a4b3d5dc0adc39c749891a81e5d2de93b0183578344dd7e736de6290341ae9deb27a36bd0
+  data.tar.gz: 348dd3613602134b6b956a56cac76262927329b6a5d0ca16db0fcb818c27e3da05ed3d8e1d9b0e243ac39ecbab8587fcf0d565fe316fecccd5bec700097f2913

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    monban (0.0.6)
+    monban (0.0.7)
       bcrypt-ruby
       rails
       warden
@@ -93,7 +93,7 @@ GEM
       rake (>= 0.8.7)
       rdoc (~> 3.4)
       thor (>= 0.14.6, < 2.0)
-    rake (10.0.3)
+    rake (10.1.1)
     rdoc (3.12.1)
       json (~> 1.4)
     rspec (2.12.0)
@@ -126,10 +126,10 @@ GEM
     sqlite3 (1.3.7)
     thor (0.17.0)
     tilt (1.3.3)
-    treetop (1.4.12)
+    treetop (1.4.14)
       polyglot
       polyglot (>= 0.3.1)
-    tzinfo (0.3.35)
+    tzinfo (0.3.37)
     warden (1.2.1)
       rack (>= 1.0)
     websocket (1.0.7)

data/README.md

@@ -14,7 +14,7 @@ Monban makes authentication simple:
 - Uses warden
 - Provides convenient controller helpers
 - Provides a rails generator for default controllers and views
-- TODO: Very customizable
+- Very customizable
 
 Monban doesn't do the following:
 
@@ -25,7 +25,7 @@ Monban doesn't do the following:
 
 ## Installation
 
-Monban was designed to work with Rails > 3.1. Add this line to your Gemfile:
+Monban was designed to work with Rails > 4.0. Add this line to your Gemfile:
 
     gem 'monban'
 
@@ -43,10 +43,10 @@ This will generate a bare bones starting point. If you don't want the full stack
 
 ## Usage
 
-Monban does currently have some expectations, but these will change. Here are the current requirements:
+Monban does currently have some out of the box expectations, but you can configure any of these:
 
-- Your model must be called `User`
-- You must have an `email` and `password_digest` column on your `User`
+- By default the model should be called `User`
+- You should have an `email` and `password_digest` column on your `User`
 - Passwords will be run through BCrypt
 
 ### Controller Additions
@@ -68,31 +68,86 @@ And this filter:
 
 - `require_login`
 
-### Advanced Functionality
+## Usage in Tests
 
-You may perform a look up on a user using multiple fields by doing something like the following:
+### Test mode
+
+Monban provides the follow:
+
+```ruby
+Monban.test_mode!
+```
+
+Which will change password encryption to provide plaintext responses instead of using BCrypt. This will allow you to write factories using the password_digest field:
+
+```ruby
+FactoryGirl.define do
+  factory :user do
+    username 'wombat'
+    password_digest 'password'
+  end
+end
+```
+
+### Spec helpers
+
+A couple of convenience methods are available in your tests.
+
+```ruby
+require 'monban/test/helpers'
 
-    class SessionsController < ApplicationController
-      def create
-        if user = authenticate_session(session_params, email_or_username: [:email, :username])
-          sign_in user
-          redirect_to root_path
-        else
-          flash.now.notice = "Invalid username or password"
-          render :new
-        end
-      end
+Monban.test_mode!
 
-      private
+RSpec.configure do |config|
+  config.include Monban::Test::Helpers, type: :feature
+  config.after :each do
+    Monban.test_reset!
+  end
+end
+```
 
-      def session_params
-        params.require(:session).permit(:email_or_username, :password)
-      end
+```ruby
+feature "A feature spec" do
+  scenario "that requires login" do
+    user = create(:user)
+    sign_in(user)
+    # do something
+    sign_out
+    # do something else
+  end
+end
+```
 
+## Advanced Functionality
+
+You may perform a look up on a user using multiple fields by doing something like the following:
+
+```ruby
+class SessionsController < ApplicationController
+  def create
+    user = authenticate_session(session_params, email_or_username: [:email, :username])
+    sign_in(user) do
+      redirect_to(root_path) and return
     end
+    render :new
+  end
+
+  private
+
+  def session_params
+    params.require(:session).permit(:email_or_username, :password)
+  end
+
+end
+```
 
 This will allow the user to enter either their username or email to login
 
+### Limitations
+
+Here are a few of the current limitations of monban:
+
+- Monban assumes you only have one user model.
 
 ## Contributing
 

data/lib/generators/monban/scaffold/scaffold_generator.rb

@@ -17,10 +17,6 @@ module Monban
         copy_file 'app/views/sessions/new.html.erb'
       end
 
-      def copy_migration
-        migration_template 'db/migrate/create_users.rb'
-      end
-
       def add_helper_module_to_application_controller
         inject_into_class "app/controllers/application_controller.rb", ApplicationController, "  include Monban::ControllerHelpers\n"
       end
@@ -30,13 +26,12 @@ module Monban
       end
 
       def add_model
-        template 'app/models/user.rb', 'app/models/user.rb', config
+        generate 'model', 'user email password_digest'
       end
 
       def display_readme
         readme 'scaffold_readme'
       end
-
     end
   end
 end

data/lib/generators/monban/templates/app/controllers/sessions_controller.rb

@@ -6,8 +6,10 @@ class SessionsController < ApplicationController
 
   def create
     user = authenticate_session(session_params)
-    sign_in(user) or set_flash_message
-    respond_with user, location: root_path
+    sign_in(user) do
+      respond_with(user, location: root_path) and return
+    end
+    render :new
   end
 
   def destroy
@@ -17,10 +19,6 @@ class SessionsController < ApplicationController
 
   private
 
-  def set_flash_message
-    flash.now.notice = "Invalid username or password"
-  end
-
   def session_params
 <% if config[:use_strong_parameters] -%>
     params.require(:session).permit(:email, :password)

data/lib/generators/monban/templates/app/controllers/users_controller.rb

@@ -7,8 +7,10 @@ class UsersController < ApplicationController
 
   def create
     @user = sign_up(user_params)
-    sign_in(@user)
-    respond_with @user, location: root_path
+    sign_in(@user) do
+      respond_with(@user, location: root_path) and return
+    end
+    render :new
   end
 
   private

data/lib/monban/configuration.rb

@@ -3,15 +3,16 @@ module Monban
     attr_accessor :user_class, :user_token_field, :user_token_store_field
     attr_accessor :encryption_method, :token_comparison, :user_lookup_field
     attr_accessor :sign_in_notice
+    attr_accessor :sign_in_service, :sign_up_service, :sign_out_service
+    attr_accessor :authentication_service, :password_reset_service
+    attr_accessor :failure_app
 
     def initialize
-      @user_class = 'User'
-      @user_token_field = 'password'
-      @user_token_store_field = 'password_digest'
-      @user_lookup_field = 'email'
-      @encryption_method = default_encryption_method
-      @token_comparison = default_password_comparison
-      @sign_in_notice = 'You must be signed in'
+      setup_class_defaults
+      setup_token_encryption
+      setup_notices
+      setup_services
+      setup_requirements
     end
 
     def default_encryption_method
@@ -23,5 +24,35 @@ module Monban
         BCrypt::Password.new(digest) == unencrypted_token
       end
     end
+
+    private
+
+    def setup_token_encryption
+      @encryption_method = default_encryption_method
+      @token_comparison = default_password_comparison
+    end
+
+    def setup_notices
+      @sign_in_notice = 'You must be signed in'
+    end
+
+    def setup_class_defaults
+      @user_class = 'User'
+      @user_token_field = :password
+      @user_token_store_field = :password_digest
+      @user_lookup_field = :email
+    end
+
+    def setup_services
+      @authentication_service = Monban::Authentication
+      @sign_in_service = Monban::SignIn
+      @sign_up_service = Monban::SignUp
+      @sign_out_service = Monban::SignOut
+      @password_reset_service = Monban::PasswordReset
+    end
+
+    def setup_requirements
+      @failure_app = lambda{|e|[401, {"Content-Type" => "text/plain"}, ["Authorization Failed"]] }
+    end
   end
 end

data/lib/monban/controller_helpers.rb

@@ -1,8 +1,4 @@
 require 'bcrypt'
-require 'monban/controller_helpers/sign_in'
-require 'monban/controller_helpers/sign_out'
-require 'monban/controller_helpers/sign_up'
-require 'monban/controller_helpers/authentication'
 require 'active_support/concern'
 
 module Monban
@@ -13,15 +9,23 @@ module Monban
     end
 
     def sign_in user
-      SignIn.new(user, warden).perform
+      Monban.config.sign_in_service.new(user, warden).perform.tap do |status|
+        if status && block_given?
+          yield
+        end
+      end
     end
 
     def sign_out
-      SignOut.new(warden).perform
+      Monban.config.sign_out_service.new(warden).perform
     end
 
     def sign_up user_params
-      SignUp.new(user_params).perform
+      Monban.config.sign_up_service.new(user_params).perform.tap do |status|
+        if status && block_given?
+          yield
+        end
+      end
     end
 
     def authenticate_session session_params, field_map = nil
@@ -31,7 +35,11 @@ module Monban
     end
 
     def authenticate user, password
-      Authentication.new(user, password).perform
+      Monban.config.authentication_service.new(user, password).perform
+    end
+
+    def reset_password user, password
+      Monban.config.password_reset_service.new(user, password).perform
     end
 
     def warden
@@ -43,7 +51,7 @@ module Monban
     end
 
     def signed_in?
-      current_user
+      warden.user
     end
 
     def require_login

data/lib/monban/services/password_reset.rb

@@ -0,0 +1,14 @@
+module Monban
+  class PasswordReset
+    def initialize user, password
+      @user = user
+      @password = password
+    end
+
+    def perform
+      field = Monban.config.user_token_store_field
+      encrypted_password = Monban.encrypt_token(@password)
+      @user[field] = encrypted_password
+    end
+  end
+end

data/lib/monban/services.rb

@@ -0,0 +1,5 @@
+require 'monban/services/sign_in'
+require 'monban/services/sign_out'
+require 'monban/services/sign_up'
+require 'monban/services/authentication'
+require 'monban/services/password_reset'

data/lib/monban/test/helpers.rb

@@ -0,0 +1,15 @@
+module Monban
+  module Test
+    module Helpers
+      include Warden::Test::Helpers
+
+      def sign_in user
+        login_as user
+      end
+
+      def sign_out
+        logout
+      end
+    end
+  end
+end

data/lib/monban/version.rb

@@ -1,3 +1,3 @@
 module Monban
-  VERSION = "0.0.7"
+  VERSION = "0.0.8"
 end

data/lib/monban.rb

@@ -1,5 +1,6 @@
 require "monban/version"
 require "monban/configuration"
+require "monban/services"
 require "monban/controller_helpers"
 require "monban/railtie"
 require "monban/warden_setup"
@@ -11,12 +12,13 @@ module Monban
   mattr_accessor :warden_config
   mattr_accessor :config
 
-  def self.initialize warden_config
-    self.warden_config = warden_config
-    self.config = Monban::Configuration.new
-    if block_given?
-      yield config
-    end
+  module Test
+    autoload :Helpers, "monban/test/helpers"
+  end
+
+  def self.initialize warden_config, &block
+    setup_config(&block)
+    setup_warden_config(warden_config)
   end
 
   def self.compare_token(digest, token)
@@ -35,4 +37,28 @@ module Monban
     fields = FieldMap.new(params, field_map).to_fields
     user_class.where(fields).first
   end
+
+  def self.test_mode!
+    Warden.test_mode!
+    config.encryption_method = ->(password) { password }
+    config.token_comparison = ->(digest, unencrypted_password) { digest == unencrypted_password }
+  end
+
+  def self.test_reset!
+    Warden.test_reset!
+  end
+
+  private
+
+  def self.setup_config
+    self.config = Monban::Configuration.new
+    if block_given?
+      yield config
+    end
+  end
+
+  def self.setup_warden_config(warden_config)
+    warden_config.failure_app = self.config.failure_app
+    self.warden_config = warden_config
+  end
 end

data/monban.gemspec

@@ -27,4 +27,5 @@ Gem::Specification.new do |gem|
   gem.add_development_dependency 'pry'
   gem.add_development_dependency 'sqlite3'
   gem.add_development_dependency 'active_hash'
+  gem.add_development_dependency 'pry'
 end

data/spec/features/visitor/visitor_is_unauthorized_spec.rb

@@ -0,0 +1,8 @@
+require 'spec_helper'
+
+feature 'Visitor is unauthorzed' do
+  scenario 'when visiting a resource' do
+    visit failure_path
+    expect(page.status_code).to eq(401)
+  end
+end

data/spec/features/visitor/visitor_signs_up_spec.rb

@@ -9,4 +9,23 @@ feature 'Visitor signs up' do
 
     page.current_path.should eq(posts_path)
   end
+
+  scenario 'multiple users' do
+    visit sign_up_path
+    fill_in 'user_email', with: 'email@example.com'
+    fill_in 'user_password', with: 'password'
+    click_on 'go'
+    click_on 'Sign out'
+    visit sign_up_path
+    fill_in 'user_email', with: 'email2@example.com'
+    fill_in 'user_password', with: 'password2'
+    click_on 'go'
+    click_on 'Sign out'
+    visit sign_in_path
+    fill_in 'session_email', with: 'email@example.com'
+    fill_in 'session_password', with: 'password'
+    click_on 'go'
+
+    page.current_path.should eq(posts_path)
+  end
 end

data/spec/features/visitor/visitor_uses_remember_token_spec.rb

@@ -0,0 +1,13 @@
+require 'spec_helper'
+
+feature 'Visitor signs in' do
+  scenario 'with remember token' do
+    pending
+    Monban::SignUp.new(email: "email@example.com", password: "password").perform
+    visit sign_in_path
+    fill_in 'session_email', with: 'email@example.com'
+    fill_in 'session_password', with: 'password'
+    check 'Remember me'
+    click_on 'go'
+  end
+end

data/spec/monban/controller_helpers_spec.rb

@@ -30,13 +30,24 @@ module Monban
     end
 
     it 'performs a sign in' do
-      user = double()
-      sign_in = double()
-      sign_in.should_receive(:perform)
-      SignIn.should_receive(:new).with(user, @warden).and_return(sign_in)
+      user = stub_sign_in
       @dummy.sign_in user
     end
 
+    it 'runs the block when user is signed in' do
+      user = stub_sign_in
+      expectation = double()
+      expectation.should_receive(:success)
+      @dummy.sign_in(user) { expectation.success }
+    end
+
+    it 'does not run the block when user can not be signed in' do
+      user = stub_sign_in(false)
+      expectation = double()
+      expectation.should_not_receive(:failure)
+      @dummy.sign_in(user) { expectation.failure }
+    end
+
     it 'performs a sign out' do
       sign_out = double()
       sign_out.should_receive(:perform)
@@ -45,38 +56,49 @@ module Monban
     end
 
     it 'performs a sign_up' do
-      user_params = double()
-      sign_up = double()
-      sign_up.should_receive(:perform)
-      SignUp.should_receive(:new).with(user_params).and_return(sign_up)
+      user_params = stub_sign_up
       @dummy.sign_up user_params
     end
 
+    it 'runs the block when user is signed up' do
+      user_params = stub_sign_up
+      expectation = double()
+      expectation.should_receive(:success)
+      @dummy.sign_up(user_params) { expectation.success }
+    end
+
+    it 'does not run the block when user can not be signed up' do
+      user_params = stub_sign_up(false)
+      expectation = double()
+      expectation.should_not_receive(:failure)
+      @dummy.sign_up(user_params) { expecation.failure }
+    end
+
     it 'authenticates a session' do
-      session_params = { 'password' => 'password', 'email' => 'a@b.com' }
+      session_params = { password: 'password', email: 'a@b.com' }
       user = double()
       authentication = double()
       authentication.should_receive(:perform).and_return(user)
-      Monban.should_receive(:lookup).with({'email' => 'a@b.com'}, nil).and_return(user)
+      Monban.should_receive(:lookup).with({email: 'a@b.com'}, nil).and_return(user)
       Authentication.should_receive(:new).with(user, 'password').and_return(authentication)
       @dummy.authenticate_session(session_params).should == user
     end
 
     it 'authenticates a session against multiple fields' do
-      session_params = { 'email_or_username' => 'foo', 'password' => 'password' }
+      session_params = { email_or_username: 'foo', password: 'password' }
       field_map = { email_or_username: [:email, :username] }
       user = double()
       authentication = double()
       authentication.should_receive(:perform).and_return(user)
-      Monban.should_receive(:lookup).with(session_params.except('password'), field_map).and_return(user)
+      Monban.should_receive(:lookup).with(session_params.except(:password), field_map).and_return(user)
       Authentication.should_receive(:new).with(user, 'password').and_return(authentication)
       @dummy.authenticate_session(session_params, field_map).should == user
     end
 
     it 'returns false when it could not authenticate the user' do
       session_params = double()
-      session_params.should_receive(:fetch).with('password').and_return('password')
-      session_params.should_receive(:except).with('password').and_return(session_params)
+      session_params.should_receive(:fetch).with(:password).and_return('password')
+      session_params.should_receive(:except).with(:password).and_return(session_params)
       user = double()
       authentication = double()
       authentication.should_receive(:perform).and_return(false)
@@ -101,6 +123,7 @@ module Monban
 
     it 'returns signed_in?' do
       @warden.should_receive(:user)
+      @dummy.should_not_receive(:current_user)
       @dummy.signed_in?
     end
 
@@ -120,5 +143,21 @@ module Monban
     it 'returns warden' do
       @dummy.warden.should == @warden
     end
+
+    def stub_sign_in(success = true)
+      user = double()
+      sign_in = double()
+      sign_in.should_receive(:perform).and_return(success)
+      SignIn.should_receive(:new).with(user, @warden).and_return(sign_in)
+      user
+    end
+
+    def stub_sign_up(success = true)
+      user_params = double()
+      sign_up = double()
+      sign_up.should_receive(:perform).and_return(success)
+      SignUp.should_receive(:new).with(user_params).and_return(sign_up)
+      user_params
+    end
   end
 end

data/spec/monban/{controller_helpers → services}/authentication_spec.rb

@@ -1,10 +1,10 @@
 require 'spec_helper'
-require 'monban/controller_helpers/authentication'
+require 'monban/services/authentication'
 
 describe Monban::Authentication, '#authentication' do
   it 'is authenticated for a valid password' do
     password_digest = BCrypt::Password.create('password')
-    user = stub(password_digest: password_digest)
+    user = double(password_digest: password_digest)
     auth = Monban::Authentication.new(user, 'password')
 
     expect(auth.perform).to eq(user)
@@ -12,7 +12,7 @@ describe Monban::Authentication, '#authentication' do
 
   it 'is not authenticated for the wrong password' do
     password_digest = BCrypt::Password.create('password')
-    user = stub(password_digest: password_digest)
+    user = double(password_digest: password_digest)
     auth = Monban::Authentication.new(user, 'drowssap')
 
     expect(auth.perform).to eq(false)

data/spec/monban/services/password_reset_spec.rb

@@ -0,0 +1,23 @@
+require 'spec_helper'
+require 'monban/services/password_reset'
+require 'ostruct'
+
+describe Monban::PasswordReset do
+  before do
+    Monban.config.encryption_method = ->(password) { password + "secret" }
+  end
+
+  it 'updates the password with the encryption strategy' do
+    password_digest = Monban.encrypt_token('password')
+    user = double()
+    field = Monban.config.user_token_store_field
+    user.should_receive(:[]=).with(field, 'passwordsecret')
+    password_reset = Monban::PasswordReset.new(user, 'password')
+
+    password_reset.perform
+  end
+
+  after do
+    Monban.config.encryption_method = Monban.config.default_encryption_method
+  end
+end

data/spec/monban/{controller_helpers → services}/sign_in_spec.rb

@@ -1,5 +1,5 @@
 require 'spec_helper'
-require 'monban/controller_helpers/sign_in'
+require 'monban/services/sign_in'
 
 describe Monban::SignIn, '#perform' do
   it 'signs the user in' do

data/spec/monban/{controller_helpers → services}/sign_out_spec.rb

@@ -1,5 +1,5 @@
 require 'spec_helper'
-require 'monban/controller_helpers/sign_out'
+require 'monban/services/sign_out'
 
 describe Monban::SignOut, '#perform' do
   it 'signs out the user' do

data/spec/monban/{controller_helpers → services}/sign_up_spec.rb

@@ -1,11 +1,11 @@
 require 'spec_helper'
-require 'monban/controller_helpers/sign_up'
+require 'monban/services/sign_up'
 
 describe Monban::SignUp, '#perform' do
   it 'creates a user with the right parameters' do
     create = double
     stub_const('User', create)
-    user_params = { 'email' => 'email@example.com', 'password' => 'password' }
+    user_params = { email: 'email@example.com', password: 'password' }
 
     create.should_receive(:create) do |args|
       args[:email].should eq(user_params[:email])

data/spec/monban/test_helpers_spec.rb

@@ -0,0 +1,94 @@
+require 'spec_helper'
+require 'monban/test/helpers'
+
+module Warden::Spec
+  module Helpers
+    FAILURE_APP = lambda{|e|[401, {"Content-Type" => "text/plain"}, ["You Fail!"]] }
+
+    def env_with_params(path = "/", params = {}, env = {})
+      method = params.delete(:method) || "GET"
+      env = { 'HTTP_VERSION' => '1.1', 'REQUEST_METHOD' => "#{method}" }.merge(env)
+      Rack::MockRequest.env_for("#{path}?#{Rack::Utils.build_query(params)}", env)
+    end
+
+    def setup_rack(app = nil, opts = {}, &block)
+      app ||= block if block_given?
+
+      opts[:failure_app]         ||= failure_app
+      opts[:default_strategies]  ||= [:password]
+      opts[:default_serializers] ||= [:session]
+      blk = opts[:configurator] || proc{}
+
+      Rack::Builder.new do
+        use opts[:session] || Warden::Spec::Helpers::Session unless opts[:nil_session]
+        use Warden::Manager, opts, &blk
+        run app
+      end
+    end
+
+    def valid_response
+      Rack::Response.new("OK").finish
+    end
+
+    def failure_app
+      Warden::Spec::Helpers::FAILURE_APP
+    end
+
+    def success_app
+      lambda{|e| [200, {"Content-Type" => "text/plain"}, ["You Win"]]}
+    end
+
+    class Session
+      attr_accessor :app
+      def initialize(app,configs = {})
+        @app = app
+      end
+
+      def call(e)
+        e['rack.session'] ||= {}
+        @app.call(e)
+      end
+    end # session
+  end
+end
+
+module Monban
+  module Test
+    describe Helpers do
+      include Monban::Test::Helpers
+      include Warden::Spec::Helpers
+
+      before { $captures = [] }
+      after { Monban.test_reset! }
+
+      it 'performs a sign in' do
+        user = double(id: 1)
+        sign_in(user)
+        app = lambda do |env|
+          $captures << :run
+          env['warden'].should be_authenticated
+          env['warden'].user.should eq(user)
+          valid_response
+        end
+        setup_rack(app).call(env_with_params)
+        $captures.should eq([:run])
+      end
+
+      it 'performs a sign out' do
+        user = double(id: 1)
+        sign_in(user)
+        sign_out
+
+        app = lambda do |env|
+          $captures << :run
+          warden = env['warden']
+          warden.user.should be_nil
+          warden.should_not be_authenticated
+        end
+
+        setup_rack(app).call(env_with_params)
+        $captures.should eq([:run])
+      end
+    end
+  end
+end

data/spec/monban_spec.rb

@@ -4,4 +4,10 @@ describe 'Monban' do
   it "stores the warden config" do
     expect(Monban.warden_config).to be_a Warden::Config
   end
+
+  it "provides a .test_mode!" do
+    Monban.test_mode!
+    expect(Monban.encrypt_token('password')).to eql('password')
+    expect(Monban.compare_token('password', 'password')).to be_true
+  end
 end

data/spec/rails_app/app/controllers/failures_controller.rb

@@ -0,0 +1,5 @@
+class FailuresController < ApplicationController
+  def show
+    render status: :unauthorized, text: "Unauthorized"
+  end
+end

data/spec/rails_app/app/controllers/posts_controller.rb

@@ -2,6 +2,5 @@ class PostsController < ApplicationController
   before_filter :require_login
 
   def index
-    render nothing: true
   end
 end

data/spec/rails_app/app/controllers/sessions_controller.rb

@@ -2,10 +2,11 @@ class SessionsController < ApplicationController
   def new; end
 
   def create
-    user = User.find_by_email(params[:session][:email])
+    user = User.where(email: params[:session][:email]).first
 
     if authenticate(user, params[:session][:password])
       sign_in user
+      redirect_to posts_path
     else
       redirect_to root_path, notice: "Invalid email or password"
     end

data/spec/rails_app/app/views/layouts/application.html.erb

@@ -7,7 +7,9 @@
   <%= csrf_meta_tags %>
 </head>
 <body>
-
+  <% if signed_in? %>
+    <%= link_to "Sign out", sign_out_path, method: :delete %>
+  <% end %>
 <%= yield %>
 
 </body>

data/spec/rails_app/app/views/posts/index.html.erb

@@ -0,0 +1 @@
+Posts

data/spec/rails_app/app/views/sessions/new.html.erb

@@ -0,0 +1,5 @@
+<%= form_for :session do |f| %>
+  <%= f.text_field :email %>
+  <%= f.text_field :password %>
+  <%= f.submit 'go' %>
+<% end %>

data/spec/rails_app/config/environments/test.rb

@@ -11,9 +11,6 @@ RailsApp::Application.configure do
   config.serve_static_assets = true
   config.static_cache_control = "public, max-age=3600"
 
-  # Log error messages when you accidentally call methods on nil
-  config.whiny_nils = true
-
   # Show full error reports and disable caching
   config.consider_all_requests_local       = true
   config.action_controller.perform_caching = false
@@ -26,4 +23,6 @@ RailsApp::Application.configure do
 
   # Print deprecation notices to the stderr
   config.active_support.deprecation = :stderr
+  config.eager_load  = false
+  config.secret_key_base = "1"
 end

data/spec/rails_app/config/routes.rb

@@ -1,6 +1,8 @@
 RailsApp::Application.routes.draw do
   resources :posts, only: [:index]
   resources :users, only: [:create]
+  resource :failure, only: [:show]
+  root to: "users#new"
   get "sign_in" => "sessions#new"
   post "sign_in" => "sessions#create"
   delete "sign_out" => "sessions#destroy"

data/spec/spec_helper.rb

@@ -5,3 +5,7 @@ require 'rails_app/config/environment'
 require 'rspec/rails'
 require 'monban'
 require 'capybara'
+
+RSpec.configure do |config|
+  config.include Warden::Test::Helpers
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: monban
 version: !ruby/object:Gem::Version
-  version: 0.0.7
+  version: 0.0.8
 platform: ruby
 authors:
 - halogenandtoast
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-06-24 00:00:00.000000000 Z
+date: 2014-01-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -151,6 +151,20 @@ dependencies:
     - - '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: simple rails authentication
 email:
 - halogenandtoast@gmail.com
@@ -169,43 +183,51 @@ files:
 - lib/generators/monban/scaffold/scaffold_generator.rb
 - lib/generators/monban/templates/app/controllers/sessions_controller.rb
 - lib/generators/monban/templates/app/controllers/users_controller.rb
-- lib/generators/monban/templates/app/models/user.rb
 - lib/generators/monban/templates/app/views/sessions/new.html.erb
 - lib/generators/monban/templates/app/views/users/new.html.erb
-- lib/generators/monban/templates/db/migrate/create_users.rb
 - lib/generators/monban/templates/scaffold_readme
 - lib/monban.rb
 - lib/monban/configuration.rb
 - lib/monban/controller_helpers.rb
-- lib/monban/controller_helpers/authentication.rb
-- lib/monban/controller_helpers/sign_in.rb
-- lib/monban/controller_helpers/sign_out.rb
-- lib/monban/controller_helpers/sign_up.rb
 - lib/monban/field_map.rb
 - lib/monban/railtie.rb
+- lib/monban/services.rb
+- lib/monban/services/authentication.rb
+- lib/monban/services/password_reset.rb
+- lib/monban/services/sign_in.rb
+- lib/monban/services/sign_out.rb
+- lib/monban/services/sign_up.rb
 - lib/monban/strategies/password_strategy.rb
+- lib/monban/test/helpers.rb
 - lib/monban/version.rb
 - lib/monban/warden_setup.rb
 - monban.gemspec
+- spec/features/visitor/visitor_is_unauthorized_spec.rb
 - spec/features/visitor/visitor_signs_up_spec.rb
-- spec/monban/controller_helpers/authentication_spec.rb
-- spec/monban/controller_helpers/sign_in_spec.rb
-- spec/monban/controller_helpers/sign_out_spec.rb
-- spec/monban/controller_helpers/sign_up_spec.rb
+- spec/features/visitor/visitor_uses_remember_token_spec.rb
 - spec/monban/controller_helpers_spec.rb
 - spec/monban/field_map_spec.rb
+- spec/monban/services/authentication_spec.rb
+- spec/monban/services/password_reset_spec.rb
+- spec/monban/services/sign_in_spec.rb
+- spec/monban/services/sign_out_spec.rb
+- spec/monban/services/sign_up_spec.rb
+- spec/monban/test_helpers_spec.rb
 - spec/monban_spec.rb
 - spec/rails_app/Rakefile
 - spec/rails_app/app/assets/images/rails.png
 - spec/rails_app/app/assets/javascripts/application.js
 - spec/rails_app/app/assets/stylesheets/application.css
 - spec/rails_app/app/controllers/application_controller.rb
+- spec/rails_app/app/controllers/failures_controller.rb
 - spec/rails_app/app/controllers/posts_controller.rb
 - spec/rails_app/app/controllers/sessions_controller.rb
 - spec/rails_app/app/controllers/users_controller.rb
 - spec/rails_app/app/helpers/application_helper.rb
 - spec/rails_app/app/models/user.rb
 - spec/rails_app/app/views/layouts/application.html.erb
+- spec/rails_app/app/views/posts/index.html.erb
+- spec/rails_app/app/views/sessions/new.html.erb
 - spec/rails_app/app/views/users/new.html.erb
 - spec/rails_app/config.ru
 - spec/rails_app/config/application.rb
@@ -251,25 +273,32 @@ signing_key:
 specification_version: 4
 summary: Making rails authentication as simple as possible
 test_files:
+- spec/features/visitor/visitor_is_unauthorized_spec.rb
 - spec/features/visitor/visitor_signs_up_spec.rb
-- spec/monban/controller_helpers/authentication_spec.rb
-- spec/monban/controller_helpers/sign_in_spec.rb
-- spec/monban/controller_helpers/sign_out_spec.rb
-- spec/monban/controller_helpers/sign_up_spec.rb
+- spec/features/visitor/visitor_uses_remember_token_spec.rb
 - spec/monban/controller_helpers_spec.rb
 - spec/monban/field_map_spec.rb
+- spec/monban/services/authentication_spec.rb
+- spec/monban/services/password_reset_spec.rb
+- spec/monban/services/sign_in_spec.rb
+- spec/monban/services/sign_out_spec.rb
+- spec/monban/services/sign_up_spec.rb
+- spec/monban/test_helpers_spec.rb
 - spec/monban_spec.rb
 - spec/rails_app/Rakefile
 - spec/rails_app/app/assets/images/rails.png
 - spec/rails_app/app/assets/javascripts/application.js
 - spec/rails_app/app/assets/stylesheets/application.css
 - spec/rails_app/app/controllers/application_controller.rb
+- spec/rails_app/app/controllers/failures_controller.rb
 - spec/rails_app/app/controllers/posts_controller.rb
 - spec/rails_app/app/controllers/sessions_controller.rb
 - spec/rails_app/app/controllers/users_controller.rb
 - spec/rails_app/app/helpers/application_helper.rb
 - spec/rails_app/app/models/user.rb
 - spec/rails_app/app/views/layouts/application.html.erb
+- spec/rails_app/app/views/posts/index.html.erb
+- spec/rails_app/app/views/sessions/new.html.erb
 - spec/rails_app/app/views/users/new.html.erb
 - spec/rails_app/config.ru
 - spec/rails_app/config/application.rb
@@ -291,3 +320,4 @@ test_files:
 - spec/rails_app/public/favicon.ico
 - spec/rails_app/script/rails
 - spec/spec_helper.rb
+has_rdoc: 

data/lib/generators/monban/templates/app/models/user.rb

@@ -1,7 +0,0 @@
-class User < ActiveRecord::Base
-<% if !config[:use_strong_parameters] -%>
-  attr_accessible :email, :password_digest
-<% elsif Gem::Version.new(Rails.version).segments[0] < 4 -%>
-  include ActiveModel::ForbiddenAttributesProtection
-<% end -%>
-end

data/lib/generators/monban/templates/db/migrate/create_users.rb

@@ -1,10 +0,0 @@
-class CreateUsers < ActiveRecord::Migration
-  def change
-    create_table :users do |t|
-      t.string :email
-      t.string :password_digest
-
-      t.timestamps
-    end
-  end
-end