mongoid-devise 1.0.1

data/test/rails_app/config/initializers/devise.rb

@@ -0,0 +1,79 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  # Invoke `rake secret` and use the printed value to setup a pepper to generate
+  # the encrypted password. By default no pepper is used.
+  # config.pepper = "rake secret output"
+
+  # Configure how many times you want the password is reencrypted. Default is 10.
+  # config.stretches = 10
+
+  # Define which will be the encryption algorithm. Supported algorithms are :sha1
+  # (default) and :sha512. Devise also supports encryptors from others authentication
+  # frameworks as :clearance_sha1, :authlogic_sha512 (then you should set stretches
+  # above to 20 for default behavior) and :restful_authentication_sha1 (then you
+  # should set stretches to 10, and copy REST_AUTH_SITE_KEY to pepper)
+  # config.encryptor = :sha1
+
+  # Configure which keys are used when authenticating an user. By default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating an user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # config.authentication_keys = [ :email ]
+
+  # The time you want give to your user to confirm his account. During this time
+  # he will be able to access your application without confirming. Default is nil.
+  # config.confirm_within = 2.days
+
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again.
+  # config.timeout_in = 10.minutes
+
+  # Configure the e-mail address which will be shown in DeviseMailer.
+  config.mailer_sender = "please-change-me-omg@yourapp.com"
+
+  # Load and configure the ORM. Supports :active_record, :data_mapper and :mongo_mapper.
+  require "devise/orm/#{DEVISE_ORM}"
+  config.orm = DEVISE_ORM
+
+  # Turn scoped views on. Before rendering "sessions/new", it will first check for
+  # "sessions/users/new". It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = true
+
+  # Number of authentication tries before locking an account.
+  # config.maximum_attempts = 20
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Reanables login after a certain ammount of time (see :unlock_in below)
+  # :both  = enables both strategies
+  # config.unlock_strategy = :both
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # If you want to use other strategies, that are not (yet) supported by Devise,
+  # you can configure them inside the config.warden block. The example below
+  # allows you to setup OAuth, using http://github.com/roman/warden_oauth
+  #
+  # config.warden do |manager|
+  #   manager.oauth(:twitter) do |twitter|
+  #     twitter.consumer_secret = <YOUR CONSUMER SECRET>
+  #     twitter.consumer_key  = <YOUR CONSUMER KEY>
+  #     twitter.options :site => 'http://twitter.com'
+  #   end
+  #   manager.default_strategies.unshift :twitter_oauth
+  # end
+
+  # Configure default_url_options if you are using dynamic segments in :path_prefix
+  # for devise_for.
+  #
+  # config.default_url_options do
+  #   { :locale => I18n.locale }
+  # end
+end

data/test/rails_app/config/initializers/inflections.rb

@@ -0,0 +1,2 @@
+ActiveSupport::Inflector.inflections do |inflect|
+end

data/test/rails_app/config/initializers/new_rails_defaults.rb

@@ -0,0 +1,24 @@
+# Be sure to restart your server when you modify this file.
+
+# These settings change the behavior of Rails 2 apps and will be defaults
+# for Rails 3. You can remove this initializer when Rails 3 is released.
+
+if defined?(ActiveRecord)
+  # Include Active Record class name as root for JSON serialized output.
+  ActiveRecord::Base.include_root_in_json = true
+
+  # Store the full class name (including module namespace) in STI type column.
+  ActiveRecord::Base.store_full_sti_class = true
+end
+
+ActionController::Routing.generate_best_match = false
+
+# Use ISO 8601 format for JSON serialized times and dates.
+ActiveSupport.use_standard_json_time_format = true
+
+# Don't escape HTML entities in JSON, leave that for the #json_escape helper.
+# if you're including raw json in an HTML page.
+ActiveSupport.escape_html_entities_in_json = false
+
+# Clean up silencers
+Rails.backtrace_cleaner.remove_silencers!

data/test/rails_app/config/initializers/session_store.rb

@@ -0,0 +1,15 @@
+# Be sure to restart your server when you modify this file.
+
+# Your secret key for verifying cookie session data integrity.
+# If you change this key, all old sessions will become invalid!
+# Make sure the secret is at least 30 characters and all random, 
+# no regular words or you'll be exposed to dictionary attacks.
+ActionController::Base.session = {
+  :key         => '_rails_app_session',
+  :secret      => '89e8147901a0d7c221ac130e0ded3eeab6dab4a97127255909f08fedaae371918b41dec9d4d75c5b27a55c3772d43c2b6a3cbac232c5cc2ce4b8ec22242f5e60'
+}
+
+# Use the database for sessions instead of the cookie-based default,
+# which shouldn't be used to store highly confidential information
+# (create the session table with "rake db:sessions:create")
+# ActionController::Base.session_store = :active_record_store

data/test/rails_app/config/routes.rb

@@ -0,0 +1,21 @@
+ActionController::Routing::Routes.draw do |map|
+  map.devise_for :users
+  map.devise_for :admin, :as => 'admin_area'
+  map.devise_for :accounts, :scope => 'manager', :path_prefix => ':locale',
+    :class_name => "User", :requirements => { :extra => 'value' }, :path_names => {
+      :sign_in => 'login', :sign_out => 'logout',
+      :password => 'secret', :confirmation => 'verification',
+      :unlock => 'unblock', :sign_up => 'register'
+    }
+
+  map.resources :users, :only => [:index], :member => { :expire => :get }
+  map.resources :admins, :only => :index
+  map.root :controller => :home
+
+  map.connect '/admin_area/password/new', :controller => "passwords", :action => "new"
+  map.admin_root '/admin_area/home', :controller => "admins", :action => "index"
+
+  map.connect '/sign_in', :controller => "sessions", :action => "new"
+  map.connect ':controller/:action/:id'
+  map.connect ':controller/:action/:id.:format'
+end

data/test/routes_test.rb

@@ -0,0 +1,110 @@
+require 'test/test_helper'
+
+class MapRoutingTest < ActionController::TestCase
+
+  test 'map new user session' do
+    assert_recognizes({:controller => 'sessions', :action => 'new'}, {:path => 'users/sign_in', :method => :get})
+  end
+
+  test 'map create user session' do
+    assert_recognizes({:controller => 'sessions', :action => 'create'}, {:path => 'users/sign_in', :method => :post})
+  end
+
+  test 'map destroy user session' do
+    assert_recognizes({:controller => 'sessions', :action => 'destroy'}, {:path => 'users/sign_out', :method => :get})
+  end
+
+  test 'map new user confirmation' do
+    assert_recognizes({:controller => 'confirmations', :action => 'new'}, 'users/confirmation/new')
+  end
+
+  test 'map create user confirmation' do
+    assert_recognizes({:controller => 'confirmations', :action => 'create'}, {:path => 'users/confirmation', :method => :post})
+  end
+
+  test 'map show user confirmation' do
+    assert_recognizes({:controller => 'confirmations', :action => 'show'}, {:path => 'users/confirmation', :method => :get})
+  end
+
+  test 'map new user password' do
+    assert_recognizes({:controller => 'passwords', :action => 'new'}, 'users/password/new')
+  end
+
+  test 'map create user password' do
+    assert_recognizes({:controller => 'passwords', :action => 'create'}, {:path => 'users/password', :method => :post})
+  end
+
+  test 'map edit user password' do
+    assert_recognizes({:controller => 'passwords', :action => 'edit'}, 'users/password/edit')
+  end
+
+  test 'map update user password' do
+    assert_recognizes({:controller => 'passwords', :action => 'update'}, {:path => 'users/password', :method => :put})
+  end
+
+  test 'map new user unlock' do
+    assert_recognizes({:controller => 'unlocks', :action => 'new'}, 'users/unlock/new')
+  end
+
+  test 'map create user unlock' do
+    assert_recognizes({:controller => 'unlocks', :action => 'create'}, {:path => 'users/unlock', :method => :post})
+  end
+
+  test 'map show user unlock' do
+    assert_recognizes({:controller => 'unlocks', :action => 'show'}, {:path => 'users/unlock', :method => :get})
+  end
+
+  test 'map new user registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'new'}, 'users/sign_up')
+  end
+
+  test 'map create user registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'create'}, {:path => 'users', :method => :post})
+  end
+
+  test 'map edit user registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'edit'}, {:path => 'users/edit', :method => :get})
+  end
+
+  test 'map update user registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'update'}, {:path => 'users', :method => :put})
+  end
+
+  test 'map destroy user registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'destroy'}, {:path => 'users', :method => :delete})
+  end
+
+  test 'map admin session with :as option' do
+    assert_recognizes({:controller => 'sessions', :action => 'new'}, {:path => 'admin_area/sign_in', :method => :get})
+  end
+
+  test 'does not map admin confirmation' do
+    assert_raise ActionController::RoutingError do
+      assert_recognizes({:controller => 'confirmations', :action => 'new'}, 'admin_area/confirmation/new')
+    end
+  end
+
+  test 'map account with custom path name for session sign in' do
+    assert_recognizes({:controller => 'sessions', :action => 'new', :locale => 'en', :extra => 'value'}, '/en/accounts/login')
+  end
+
+  test 'map account with custom path name for session sign out' do
+    assert_recognizes({:controller => 'sessions', :action => 'destroy', :locale => 'en', :extra => 'value'}, '/en/accounts/logout')
+  end
+
+  test 'map account with custom path name for password' do
+    assert_recognizes({:controller => 'passwords', :action => 'new', :locale => 'en', :extra => 'value'}, '/en/accounts/secret/new')
+  end
+
+  test 'map account with custom path name for confirmation' do
+    assert_recognizes({:controller => 'confirmations', :action => 'new', :locale => 'en', :extra => 'value'}, '/en/accounts/verification/new')
+  end
+
+  test 'map account with custom path name for unlock' do
+    assert_recognizes({:controller => 'unlocks', :action => 'new', :locale => 'en', :extra => 'value'}, '/en/accounts/unblock/new')
+  end
+
+  test 'map account with custom path name for registration' do
+    assert_recognizes({:controller => 'registrations', :action => 'new', :locale => 'en', :extra => 'value'}, '/en/accounts/register')
+  end
+end

data/test/support/assertions_helper.rb

@@ -0,0 +1,37 @@
+class ActiveSupport::TestCase
+  def assert_not(assertion)
+    assert !assertion
+  end
+
+  def assert_blank(assertion)
+    assert assertion.blank?
+  end
+
+  def assert_not_blank(assertion)
+    assert !assertion.blank?
+  end
+  alias :assert_present :assert_not_blank
+
+  def assert_email_sent(&block)
+    assert_difference('ActionMailer::Base.deliveries.size') { yield }
+  end
+
+  def assert_email_not_sent(&block)
+    assert_no_difference('ActionMailer::Base.deliveries.size') { yield }
+  end
+
+  # Execute the block setting the given values and restoring old values after
+  # the block is executed.
+  def swap(object, new_values)
+    old_values = {}
+    new_values.each do |key, value|
+      old_values[key] = object.send key
+      object.send :"#{key}=", value
+    end
+    yield
+  ensure
+    old_values.each do |key, value|
+      object.send :"#{key}=", value
+    end
+  end
+end

data/test/support/integration_tests_helper.rb

@@ -0,0 +1,71 @@
+class ActionController::IntegrationTest
+
+  def warden
+    request.env['warden']
+  end
+
+  def create_user(options={})
+    @user ||= begin
+      user = User.create!(
+        :username => 'usertest',
+        :email => 'user@test.com',
+        :password => '123456',
+        :password_confirmation => '123456',
+        :created_at => Time.now.utc
+      )
+      user.confirm! unless options[:confirm] == false
+      user.lock! if options[:locked] == true
+      user
+    end
+  end
+
+  def create_admin(options={})
+    @admin ||= begin
+      admin = Admin.create!(
+        :email => 'admin@test.com', :password => '123456', :password_confirmation => '123456'
+      )
+      admin
+    end
+  end
+
+  def sign_in_as_user(options={}, &block)
+    user = create_user(options)
+    visit new_user_session_path unless options[:visit] == false
+    fill_in 'email', :with => 'user@test.com'
+    fill_in 'password', :with => '123456'
+    check 'remember me' if options[:remember_me] == true
+    yield if block_given?
+    click_button 'Sign In'
+    user
+  end
+
+  def sign_in_as_admin(options={}, &block)
+    admin = create_admin(options)
+    visit new_admin_session_path unless options[:visit] == false
+    fill_in 'email', :with => 'admin@test.com'
+    fill_in 'password', :with => '123456'
+    yield if block_given?
+    click_button 'Sign In'
+    admin
+  end
+
+  # Fix assert_redirect_to in integration sessions because they don't take into
+  # account Middleware redirects.
+  #
+  def assert_redirected_to(url)
+    assert [301, 302].include?(@integration_session.status),
+           "Expected status to be 301 or 302, got #{@integration_session.status}"
+
+    url = prepend_host(url)
+    location = prepend_host(@integration_session.headers["Location"])
+    assert_equal url, location
+  end
+
+  protected
+
+    def prepend_host(url)
+      url = "http://#{request.host}#{url}" if url[0] == ?/
+      url
+    end
+
+end

data/test/support/test_silencer.rb

@@ -0,0 +1,5 @@
+module Devise
+  module TestSilencer
+    def test(*args, &block); end
+  end
+end

data/test/support/tests_helper.rb

@@ -0,0 +1,39 @@
+class ActiveSupport::TestCase
+  VALID_AUTHENTICATION_TOKEN = 'AbCdEfGhIjKlMnOpQrSt'.freeze
+
+  def setup_mailer
+    ActionMailer::Base.deliveries = []
+  end
+
+  def store_translations(locale, translations, &block)
+    begin
+      I18n.backend.store_translations locale, translations
+      yield
+    ensure
+      I18n.reload!
+    end
+  end
+
+  # Helpers for creating new users
+  #
+  def generate_unique_email
+    @@email_count ||= 0
+    @@email_count += 1
+    "test#{@@email_count}@email.com"
+  end
+
+  def valid_attributes(attributes={})
+    { :username => "usertest",
+      :email => generate_unique_email,
+      :password => '123456',
+      :password_confirmation => '123456' }.update(attributes)
+  end
+
+  def new_user(attributes={})
+    User.new(valid_attributes(attributes))
+  end
+
+  def create_user(attributes={})
+    User.create!(valid_attributes(attributes))
+  end
+end

data/test/test_helper.rb

@@ -0,0 +1,21 @@
+require 'rubygems'
+
+ENV["RAILS_ENV"] = "test"
+DEVISE_ORM = (ENV["DEVISE_ORM"] || :active_record).to_sym
+
+puts "\n==> Devise.orm = #{DEVISE_ORM.inspect}"
+require File.join(File.dirname(__FILE__), 'orm', DEVISE_ORM.to_s)
+
+require 'webrat'
+require 'mocha'
+
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each {|f| require f}
+
+ActionMailer::Base.delivery_method = :test
+ActionMailer::Base.perform_deliveries = true
+ActionMailer::Base.default_url_options[:host] = 'test.com'
+
+Webrat.configure do |config|
+  config.mode = :rails
+  config.open_error_files = false
+end

data/test/test_helpers_test.rb

@@ -0,0 +1,57 @@
+require 'test/test_helper'
+
+class TestHelpersTest < ActionController::TestCase
+  tests UsersController
+  include Devise::TestHelpers
+
+  test "redirects if attempting to access a page unauthenticated" do
+    get :show
+    assert_redirected_to "/users/sign_in?unauthenticated=true"
+  end
+
+  test "redirects if attempting to access a page with a unconfirmed account" do
+    swap Devise, :confirm_within => 0 do
+      sign_in create_user
+      get :show
+      assert_redirected_to "/users/sign_in?unconfirmed=true"
+    end
+  end
+
+  test "does not redirect with valid user" do
+    user = create_user
+    user.confirm!
+
+    sign_in user
+    get :show
+    assert_response :success
+  end
+
+  test "redirects if valid user signed out" do
+    user = create_user
+    user.confirm!
+
+    sign_in user
+    get :show
+
+    sign_out user
+    get :show
+    assert_redirected_to "/users/sign_in?unauthenticated=true"
+  end
+
+  test "allows to sign in with different users" do
+    first_user = create_user
+    first_user.confirm!
+
+    sign_in first_user
+    get :show
+    assert_equal first_user.id.to_s, @response.body
+    sign_out first_user
+
+    second_user = create_user
+    second_user.confirm!
+
+    sign_in second_user
+    get :show
+    assert_equal second_user.id.to_s, @response.body
+  end
+end