morpho 0.1.0 → 0.1.1

data/app/assets/stylesheets/morpho/application.css

@@ -10,6 +10,79 @@
  * files in this directory. Styles in this file should be added after the last require_* statement.
  * It is generally better to create a new file per style scope.
  *
- *= require_tree .
  *= require_self
  */
+ @import 'https://fonts.googleapis.com/css?family=Raleway:400,300,600';
+ @import 'https://cdn.jsdelivr.net/npm/skeleton-css@2.0.4/css/normalize.css';
+ @import 'https://cdn.jsdelivr.net/npm/skeleton-css@2.0.4/css/skeleton.css';
+
+body {
+  padding: 2em 1em;
+}
+
+.alert {
+  display: block;
+  padding: 1em;
+  border-left: 5px solid;
+  margin-bottom: 1em;
+}
+
+.alert-success {
+  background-color: #D5F5E3;
+  border-left-color: #2ECC71;
+  color: #2ECC71;
+}
+
+.alert-info {
+  background-color: #D6EAF8;
+  border-left-color: #3498DB;
+  color: #3498DB;
+}
+
+.alert-warning {
+  background-color: #FCF3CF;
+  border-left-color: #F1C40F;
+  color: #F1C40F;
+}
+
+.alert-error {
+  background-color: #F2D7D5;
+  border-left-color: #C0392B;
+  color: #C0392B;
+}
+
+.field_with_errors {
+  padding-bottom: 1em;
+}
+
+.field_with_errors input, .field_with_errors textarea, .field_with_errors select {
+  margin-bottom: 0.5em;
+}
+
+.field_with_errors span.error {
+  color: #C0392B;
+  text-transform: lowercase;
+}
+
+.input label.boolean {
+  display: inline;
+  font-weight: normal;
+  margin-left: 0.5em;
+}
+
+ul.unstyled {
+  list-style: none;
+}
+
+.sign-in-form, .sign-up-form, .activation-form, .reset-password-form, .unlock-form {
+  position: relative;
+  height: 50vh;
+}
+
+.sign-in-form form, .sign-up-form form, .activation-form form, .reset-password-form form, .unlock-form form {
+  position: absolute;
+  top: 50%;
+  left: 50%;
+  transform: translate(-50%, -50%);
+  width: 50vh;
+}

data/app/controllers/morpho/activations_controller.rb

@@ -0,0 +1,44 @@
+module Morpho
+  class ActivationsController < ApplicationController
+    skip_before_action :require_login, only: [ :new, :create, :show ]
+    helper_method :user
+
+    def create
+      if user && !user.active?
+        user.resend_activation_needed_email!
+        flash.now[:notice] = I18n.t('morpho.messages.activations.create.success')
+        render :new
+      else
+        flash.now[:error] = I18n.t('morpho.messages.activations.create.failure')
+        render :new
+      end
+    end
+
+    def show
+      if user && !user.active?
+        user.activate!
+        redirect_to sign_in_path, success: I18n.t('morpho.messages.activations.activate.success')
+      else
+        redirect_to sign_in_path, error: I18n.t('morpho.messages.activations.activate.failure')
+      end
+    end
+
+    protected
+
+    def user
+      @user ||= case
+      when %w(show).include?(action_name)
+        Morpho::User.load_from_activation_token(params[:token])
+      when %(create).include?(action_name)
+        Morpho::User.find_by(email_params)
+      else
+        Morpho::User.new
+      end
+
+    end
+
+    def email_params
+      params.require(:user).permit(:email)
+    end
+  end
+end

data/app/controllers/morpho/application_controller.rb

@@ -1,5 +1,14 @@
 module Morpho
   class ApplicationController < ActionController::Base
     protect_from_forgery with: :exception
+    add_flash_types :notice, :alert, :error, :success
+    layout 'morpho/application'
+    before_action :require_login
+
+    protected
+
+    def not_authenticated
+      redirect_to sign_in_path, notice: I18n.t('morpho.messages.unauthenticated')
+    end
   end
 end

data/app/controllers/morpho/home_controller.rb

@@ -0,0 +1,6 @@
+module Morpho
+  class HomeController < ApplicationController
+    def index
+    end
+  end
+end

data/app/controllers/morpho/passwords_controller.rb

@@ -0,0 +1,56 @@
+module Morpho
+  class PasswordsController < ApplicationController
+    skip_before_action :require_login, only: [ :new, :create, :edit, :update ]
+    helper_method :user
+
+    def create
+      if user
+        user.deliver_reset_password_instructions!
+        flash.now[:notice] = I18n.t('morpho.messages.passwords.create.success')
+        render :new
+      else
+        flash.now[:error] = I18n.t('morpho.messages.passwords.create.failure')
+        render :new
+      end
+    end
+
+    def edit
+      unless user
+        flash.now[:error] = I18n.t('morpho.messages.passwords.edit.failure')
+        render :new
+      end
+    end
+
+    def update
+      if user.update_attributes(password_params)
+        user.change_password!(password_params[:password])
+        redirect_to sign_in_path, success: I18n.t('morpho.messages.passwords.update.success')
+      else
+        flash.now[:error] = I18n.t('morpho.messages.passwords.update.failure')
+        render :edit
+      end
+    end
+
+    protected
+
+    def user
+      @user ||= case
+      when %w(edit update).include?(action_name)
+        Morpho::User.load_from_reset_password_token(params[:token])
+      when %(create).include?(action_name)
+        Morpho::User.find_by(email_params)
+      else
+        Morpho::User.new
+      end
+
+    end
+
+    def email_params
+      params.require(:user).permit(:email)
+    end
+
+    def password_params
+      params.require(:user).permit(:password, :password_confirmation)
+    end
+  end
+end

data/app/controllers/morpho/sessions_controller.rb

@@ -0,0 +1,24 @@
+module Morpho
+  class SessionsController < ApplicationController
+    skip_before_action :require_login, only: [ :new, :create ]
+
+    def create
+      if login(session_params[:email], session_params[:password], session_params[:remember_me])
+        redirect_to root_path, success: I18n.t('morpho.messages.sessions.create.success') and return
+      else
+        flash.now[:error] = I18n.t('morpho.messages.sessions.create.failure')
+        render :new
+      end
+    end
+
+    def destroy
+      redirect_to sign_in_path, success: I18n.t('morpho.messages.sessions.destroy.success') and return if logout
+    end
+
+    protected
+
+    def session_params
+      params.require(:session).permit(:email, :password, :remember_me)
+    end
+  end
+end

data/app/controllers/morpho/unlocks_controller.rb

@@ -0,0 +1,44 @@
+module Morpho
+  class UnlocksController < ApplicationController
+    skip_before_action :require_login, only: [ :new, :create, :show ]
+    helper_method :user
+
+    def create
+      if user && user.login_locked?
+        user.resend_unlock_token_email!
+        flash.now[:notice] = I18n.t('morpho.messages.unlocks.unlock.success')
+        render :new
+      else
+        flash.now[:error] = I18n.t('morpho.messages.unlocks.unlock.failure')
+        render :new
+      end
+    end
+
+    def show
+      if user && user.login_locked?
+        user.login_unlock!
+        redirect_to sign_in_path, success: I18n.t('morpho.messages.unlocks.unlock.success')
+      else
+        redirect_to sign_in_path, error: I18n.t('morpho.messages.unlocks.unlock.failure')
+      end
+    end
+
+    protected
+
+    def user
+      @user ||= case
+      when %w(show).include?(action_name)
+        Morpho::User.load_from_unlock_token(params[:token])
+      when %(create).include?(action_name)
+        Morpho::User.find_by(email_params)
+      else
+        Morpho::User.new
+      end
+
+    end
+
+    def email_params
+      params.require(:user).permit(:email)
+    end
+  end
+end

data/app/controllers/morpho/users_controller.rb

@@ -0,0 +1,25 @@
+module Morpho
+  class UsersController < ApplicationController
+    skip_before_action :require_login, only: [ :new, :create ]
+    helper_method :user
+
+    def create
+      if user.update_attributes(user_params)
+        redirect_to sign_in_path, success: I18n.t('morpho.messages.users.create.success')
+      else
+        flash.now[:alert] = I18n.t('morpho.messages.users.create.failure')
+        render :new
+      end
+    end
+
+    protected
+
+    def user
+      @user ||= Morpho::User.new
+    end
+
+    def user_params
+      params.require(:user).permit(:email, :password, :password_confirmation)
+    end
+  end
+end

data/app/mailers/morpho/application_mailer.rb

@@ -1,6 +1,5 @@
 module Morpho
   class ApplicationMailer < ActionMailer::Base
-    default from: 'from@example.com'
     layout 'mailer'
   end
 end

data/app/mailers/morpho/user_mailer.rb

@@ -0,0 +1,31 @@
+module Morpho
+  class UserMailer < ApplicationMailer
+    def activation_needed_email(user)
+      @user = user
+      @url = activate_url(token: @user.activation_token)
+
+      mail(to: @user.email, subject: t('morpho.mailer.activation_needed.subject'))
+    end
+
+    def activation_success_email(user)
+      @user = user
+      @url = sign_in_url()
+
+      mail(to: @user.email, subject: t('morpho.mailer.activation_success.subject'))
+    end
+
+    def reset_password_email(user)
+      @user = user
+      @url = new_password_url(token: @user.reset_password_token)
+
+      mail(to: @user.email, subject: t('morpho.mailer.reset_password.subject'))
+    end
+
+    def unlock_token_email(user)
+      @user = user
+      @url = unlock_url(token: @user.unlock_token)
+
+      mail(to: @user.email, subject: t('morpho.mailer.unlock_token.subject'))
+    end
+  end
+end

data/app/models/morpho/authentication.rb

@@ -0,0 +1,5 @@
+module Morpho
+  class Authentication < ApplicationRecord
+    belongs_to :user
+  end
+end

data/app/models/morpho/user.rb

@@ -0,0 +1,60 @@
+module Morpho
+  class User < ApplicationRecord
+    authenticates_with_sorcery!
+
+    has_many :authentications, dependent: :destroy
+    accepts_nested_attributes_for :authentications
+
+    validates :password, length: { minimum: 12 }
+    validates :password, confirmation: true
+    validates :email, uniqueness: true
+    validates_email_format_of :email
+
+    def active?
+      self.activation_state == 'active'
+    end
+
+    def resend_activation_needed_email!
+      self.setup_activation
+      self.reload
+      self.send_activation_needed_email!
+    end
+
+    def resend_unlock_token_email!
+      self.login_lock!
+    end
+
+    class << self
+      # bugfix: https://github.com/Sorcery/sorcery/issues/146
+      def create_and_validate_from_provider(provider, uid, attrs)
+        user = new(attrs)
+
+        user.send(sorcery_config.authentications_class.name.demodulize.underscore.pluralize).build(
+          sorcery_config.provider_uid_attribute_name => uid,
+          sorcery_config.provider_attribute_name => provider
+        )
+
+        saved = user.sorcery_adapter.save
+        [user, saved]
+      end
+    end
+
+    # bugfix: https://github.com/Sorcery/sorcery/issues/146
+    def add_provider_to_user(provider, uid)
+      authentications = sorcery_config.authentications_class.name.demodulize.underscore.pluralize
+
+      if sorcery_adapter.find_authentication_by_oauth_credentials(authentications, provider, uid).nil?
+        user = send(authentications).build(
+          sorcery_config.provider_uid_attribute_name => uid,
+          sorcery_config.provider_attribute_name => provider
+        )
+
+        user.sorcery_adapter.save(validate: false)
+      else
+        user = false
+      end
+
+      user
+    end
+  end
+end

data/app/views/layouts/morpho/application.html.erb

@@ -5,12 +5,14 @@
   <%= csrf_meta_tags %>
   <%= csp_meta_tag %>
 
-  <%= stylesheet_link_tag    "morpho/application", media: "all" %>
-  <%= javascript_include_tag "morpho/application" %>
+  <%= stylesheet_link_tag    'morpho/application', media: 'all' %>
+  <%= javascript_include_tag 'morpho/application' %>
 </head>
 <body>
-
-<%= yield %>
+  <div class="container">
+    <%= render_flash_messages %>
+    <%= yield %>
+  </div>
 
 </body>
 </html>

data/app/views/layouts/morpho/mailer.html.erb

@@ -0,0 +1,13 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+    <style>
+      /* Email styles need to be inline */
+    </style>
+  </head>
+
+  <body>
+    <%= yield %>
+  </body>
+</html>