RubyGems - multi_auth - Versions diffs - 0.0.1 - Mend

multi_auth 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (148) hide show

data/README +36 -0
data/app/controllers/application_controller.rb +11 -0
data/app/controllers/auth/email_controller.rb +34 -0
data/app/controllers/auth/open_id_controller.rb +43 -0
data/app/controllers/auth_controller.rb +24 -0
data/app/controllers/credentials/email_controller.rb +156 -0
data/app/controllers/credentials/open_id_controller.rb +85 -0
data/app/controllers/credentials_controller.rb +14 -0
data/app/controllers/signup/email_controller.rb +132 -0
data/app/controllers/signup/open_id_controller.rb +62 -0
data/app/controllers/signup_controller.rb +8 -0
data/app/helpers/application_helper.rb +5 -0
data/app/models/activation_mailer.rb +114 -0
data/app/models/email_credential.rb +89 -0
data/app/models/email_credential_edit_form.rb +52 -0
data/app/models/email_login_form.rb +24 -0
data/app/models/email_password_edit_form.rb +36 -0
data/app/models/open_id_credential.rb +33 -0
data/app/models/open_id_login_form.rb +17 -0
data/app/models/session.rb +19 -0
data/app/models/user.rb +37 -0
data/app/views/activation_mailer/complete_for_credential.erb +4 -0
data/app/views/activation_mailer/complete_for_notice.erb +4 -0
data/app/views/activation_mailer/complete_for_signup.erb +4 -0
data/app/views/activation_mailer/request_for_credential.erb +11 -0
data/app/views/activation_mailer/request_for_notice.erb +11 -0
data/app/views/activation_mailer/request_for_signup.erb +11 -0
data/app/views/auth/email/index.html.erb +90 -0
data/app/views/auth/logged_in.html.erb +21 -0
data/app/views/auth/logged_out.html.erb +21 -0
data/app/views/auth/open_id/index.html.erb +16 -0
data/app/views/credentials/email/activated.html.erb +4 -0
data/app/views/credentials/email/activation.html.erb +15 -0
data/app/views/credentials/email/created.html.erb +15 -0
data/app/views/credentials/email/delete.html.erb +20 -0
data/app/views/credentials/email/edit_password.html.erb +31 -0
data/app/views/credentials/email/new.html.erb +36 -0
data/app/views/credentials/index.html.erb +88 -0
data/app/views/credentials/open_id/delete.html.erb +20 -0
data/app/views/credentials/open_id/new.html.erb +26 -0
data/app/views/signup/email/_progress.html.erb +14 -0
data/app/views/signup/email/activated.html.erb +9 -0
data/app/views/signup/email/activation.html.erb +27 -0
data/app/views/signup/email/created.html.erb +14 -0
data/app/views/signup/email/index.html.erb +34 -0
data/app/views/signup/email/validated.html.erb +21 -0
data/app/views/signup/index.html.erb +51 -0
data/app/views/signup/open_id/authenticated.html.erb +15 -0
data/app/views/signup/open_id/created.html.erb +6 -0
data/app/views/signup/open_id/index.html.erb +16 -0
data/config/boot.rb +110 -0
data/config/database.yml +22 -0
data/config/database.yml.sqlite3 +22 -0
data/config/environment.rb +62 -0
data/config/routes.rb +51 -0
data/config/smtp.yml.example +8 -0
data/db/development.sqlite3 +0 -0
data/db/schema.rb +88 -0
data/db/test.sqlite3 +0 -0
data/lib/action_mailer_util.rb +15 -0
data/lib/multi_auth.rb +64 -0
data/lib/multi_auth_helper.rb +98 -0
data/lib/notice_formatter.rb +106 -0
data/lib/open_id_authentication/result.rb +12 -0
data/lib/token_util.rb +18 -0
data/public/404.html +92 -0
data/public/422.html +91 -0
data/public/500.html +92 -0
data/public/503.html +92 -0
data/public/favicon.ico +0 -0
data/public/images/battery/cell.png +0 -0
data/public/images/battery/level-green.png +0 -0
data/public/images/battery/level-orange.png +0 -0
data/public/images/battery/level-red.png +0 -0
data/public/images/battery/level-yellow.png +0 -0
data/public/images/battery/style.html +82 -0
data/public/images/favicons/livedoor.png +0 -0
data/public/images/favicons/mixi.png +0 -0
data/public/images/favicons/yahoo.png +0 -0
data/public/images/h1-back.png +0 -0
data/public/images/icons/fam/add.png +0 -0
data/public/images/icons/fam/bin.png +0 -0
data/public/images/icons/fam/bomb.png +0 -0
data/public/images/icons/fam/cog.png +0 -0
data/public/images/icons/fam/delete.png +0 -0
data/public/images/icons/fam/email-with-desc.png +0 -0
data/public/images/icons/fam/email.png +0 -0
data/public/images/icons/fam/feed.png +0 -0
data/public/images/icons/fam/help.png +0 -0
data/public/images/icons/fam/key-with-desc.png +0 -0
data/public/images/icons/fam/key.png +0 -0
data/public/images/icons/fam/lightning.png +0 -0
data/public/images/icons/fam/plugin.png +0 -0
data/public/images/icons/fam/stop.png +0 -0
data/public/images/icons/fam/table_save.png +0 -0
data/public/images/icons/fam/tick.png +0 -0
data/public/images/icons/fam/user.png +0 -0
data/public/images/icons/fam/vcard.png +0 -0
data/public/images/icons/openid-with-desc.png +0 -0
data/public/images/icons/openid.png +0 -0
data/public/images/logo-back.png +0 -0
data/public/images/logo.png +0 -0
data/public/images/side-column-back.png +0 -0
data/public/javascripts/application.js +2 -0
data/public/javascripts/controls.js +963 -0
data/public/javascripts/dragdrop.js +973 -0
data/public/javascripts/effects.js +1128 -0
data/public/javascripts/prototype.js +4320 -0
data/public/robots.txt +5 -0
data/public/stylesheets/application.css +365 -0
data/public/stylesheets/auth.css +22 -0
data/public/stylesheets/home.css +114 -0
data/rails/init.rb +24 -0
data/test/functional/auth/email_controller_test.rb +102 -0
data/test/functional/auth/open_id_controller_test.rb +76 -0
data/test/functional/auth_controller_test.rb +74 -0
data/test/functional/credentials/email_controller_test.rb +488 -0
data/test/functional/credentials/open_id_controller_test.rb +308 -0
data/test/functional/credentials_controller_test.rb +49 -0
data/test/functional/signup/email_controller_test.rb +369 -0
data/test/functional/signup/open_id_controller_test.rb +44 -0
data/test/functional/signup_controller_test.rb +17 -0
data/test/performance/browsing_test.rb +9 -0
data/test/test_helper.rb +82 -0
data/test/unit/action_mailer_util_test.rb +63 -0
data/test/unit/activation_mailer_test.rb +181 -0
data/test/unit/email_credential_edit_form_test.rb +173 -0
data/test/unit/email_credential_test.rb +324 -0
data/test/unit/email_login_form_test.rb +76 -0
data/test/unit/email_password_edit_form_test.rb +117 -0
data/test/unit/helpers/auth_helper_test.rb +4 -0
data/test/unit/helpers/credentials/email_helper_test.rb +4 -0
data/test/unit/helpers/credentials/open_id_helper_test.rb +4 -0
data/test/unit/helpers/credentials_helper_test.rb +4 -0
data/test/unit/helpers/email_auth_helper_test.rb +4 -0
data/test/unit/helpers/email_signup_helper_test.rb +4 -0
data/test/unit/helpers/open_id_auth_helper_test.rb +4 -0
data/test/unit/helpers/open_id_signup_helper_test.rb +4 -0
data/test/unit/helpers/password_auth_helper_test.rb +4 -0
data/test/unit/helpers/password_signup_helper_test.rb +4 -0
data/test/unit/helpers/signup_helper_test.rb +4 -0
data/test/unit/notice_formatter_test.rb +153 -0
data/test/unit/open_id_credential_test.rb +108 -0
data/test/unit/open_id_login_form_test.rb +57 -0
data/test/unit/session_test.rb +53 -0
data/test/unit/token_util_test.rb +51 -0
data/test/unit/user_test.rb +177 -0
metadata +220 -0

data/test/functional/credentials/open_id_controller_test.rb ADDED Viewed

@@ -0,0 +1,308 @@
+# -*- coding: utf-8 -*-
+require 'test_helper'
+class Credentials::OpenIdControllerTest < ActionController::TestCase
+  def setup
+    @yuya           = users(:yuya)
+    @yuya_livedoor  = open_id_credentials(:yuya_livedoor)
+    @shinya_example = open_id_credentials(:shinya_example)
+    @login_form = OpenIdLoginForm.new(
+      :openid_url => "livedoor.com")
+    session_login(@yuya)
+  end
+  test "routes" do
+    base = {:controller => "credentials/open_id"}
+    assert_routing("/credentials/open_id/new",    base.merge(:action => "new"))
+    assert_routing("/credentials/open_id/create", base.merge(:action => "create"))
+    assert_routing("/credential/open_id/1234567890/delete",  base.merge(:action => "delete",  :open_id_credential_id => "1234567890"))
+    assert_routing("/credential/open_id/1234567890/destroy", base.merge(:action => "destroy", :open_id_credential_id => "1234567890"))
+  end
+  test "GET new" do
+    get :new
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_empty
+    assert_logged_in(@yuya)
+    assert_equal(
+      OpenIdLoginForm.new.attributes,
+      assigns(:login_form).attributes)
+  end
+  test "GET new, abnormal, no login" do
+    session_logout
+    get :new
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  # MEMO: 実際にエンドポイントにアクセスに行く（インターネットへのアクセスが発生）
+  test "POST create(begin)" do
+    musha = Kagemusha.new(ActionController::Base).
+      def(:open_id_redirect_url) { "http://openid/providor" }
+    musha.swap {
+      post :create, :login_form => @login_form.attributes
+    }
+    assert_response(:redirect)
+    assert_redirected_to("http://openid/providor")
+    assert_flash_empty
+    assert_logged_in(@yuya)
+    assert_equal(@login_form.attributes, assigns(:login_form).attributes)
+    assert_equal(nil, assigns(:status))
+  end
+  test "POST create(begin), invalid form" do
+    @login_form.openid_url = nil
+    post :create, :login_form => @login_form.attributes
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+  end
+  test "POST create(begin), result is invalid" do
+    musha = Kagemusha.new(ActionController::Base).
+      def(:normalize_identifier) { raise(OpenIdAuthentication::InvalidOpenId) }
+    musha.swap {
+      post :create, :login_form => @login_form.attributes
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(:invalid, assigns(:status))
+  end
+  test "POST create(begin), result is missing" do
+    musha = Kagemusha.new(ActionController::Base).
+      def(:normalize_identifier) { raise(OpenID::OpenIDError) }
+    musha.swap {
+      post :create, :login_form => @login_form.attributes
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(:missing, assigns(:status))
+  end
+  test "GET create(complete)" do
+    identity_url = "http://openid/"
+    musha = create_openid_musha(identity_url, OpenID::Consumer::SUCCESS)
+    assert_difference("OpenIdCredential.count", +1) {
+      musha.swap {
+        get :create, :open_id_complete => "1"
+      }
+    }
+    assert_response(:redirect)
+    assert_redirected_to(:controller => "/credentials", :action => "index")
+    assert_flash_notice
+    assert_equal(:successful, assigns(:status))
+    assigns(:open_id_credential).reload
+    assert_equal(@yuya.id,     assigns(:open_id_credential).user_id)
+    assert_equal(identity_url, assigns(:open_id_credential).identity_url)
+  end
+  test "GET create(complete), already exists" do
+    identity_url = open_id_credentials(:yuya_livedoor).identity_url
+    musha = create_openid_musha(identity_url, OpenID::Consumer::SUCCESS)
+    musha.swap {
+      get :create, :open_id_complete => "1"
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(identity_url, assigns(:login_form).openid_url)
+    assert_equal(:successful, assigns(:status))
+  end
+  test "GET create(complete), result is canceled" do
+    identity_url = "http://openid/"
+    musha = create_openid_musha(identity_url, OpenID::Consumer::CANCEL)
+    musha.swap {
+      get :create, :open_id_complete => "1"
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(identity_url, assigns(:login_form).openid_url)
+    assert_equal(:canceled, assigns(:status))
+  end
+  test "GET create(complete), result is failed" do
+    musha = create_openid_musha("http://openid/", OpenID::Consumer::FAILURE)
+    musha.swap {
+      get :create, :open_id_complete => "1"
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(:failed, assigns(:status))
+  end
+  test "GET create(complete), result is setup needed" do
+    musha = create_openid_musha("http://openid/", OpenID::Consumer::SETUP_NEEDED)
+    musha.swap {
+      get :create, :open_id_complete => "1"
+    }
+    assert_response(:success)
+    assert_template("new")
+    assert_flash_error
+    assert_equal(:setup_needed, assigns(:status))
+  end
+  test "POST create, abnormal, no login" do
+    session_logout
+    post :create
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "GET delete" do
+    get :delete, :open_id_credential_id => @yuya_livedoor.id
+    assert_response(:success)
+    assert_template("delete")
+    assert_flash_empty
+    assert_logged_in(@yuya)
+    assert_equal(@yuya_livedoor, assigns(:open_id_credential))
+  end
+  test "GET delete, abnormal, no login" do
+    session_logout
+    get :delete, :open_id_credential_id => @yuya_livedoor.id
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "GET delete, abnormal, invalid openid credential id" do
+    get :delete, :open_id_credential_id => "0"
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "GET delete, abnormal, other's openid credential" do
+    get :delete, :open_id_credential_id => @shinya_example.id
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "POST destroy" do
+    assert_difference("OpenIdCredential.count", -1) {
+      post :destroy, :open_id_credential_id => @yuya_livedoor.id
+    }
+    assert_response(:redirect)
+    assert_redirected_to(:controller => "/credentials", :action => "index")
+    assert_flash_notice
+    assert_logged_in(@yuya)
+    assert_equal(@yuya_livedoor, assigns(:open_id_credential))
+    assert_equal(nil, OpenIdCredential.find_by_id(@yuya_livedoor.id))
+  end
+  test "GET destroy, abnormal, method not allowed" do
+    get :destroy, :open_id_credential_id => @yuya_livedoor.id
+    assert_response(405)
+    assert_template(nil)
+  end
+  test "POST destroy, abnormal, no login" do
+    session_logout
+    post :destroy, :open_id_credential_id => @yuya_livedoor.id
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "POST destroy, abnormal, invalid openid credential id" do
+    post :destroy, :open_id_credential_id => "0"
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  test "POST destroy, abnormal, other's openid credential" do
+    post :destroy, :open_id_credential_id => @shinya_example.id
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+  private
+  def create_openid_musha(identity_url, status)
+    composite = Kagemusha::Composite.new
+    composite << Kagemusha.new(ActionController::Base).
+      def(:timeout_protection_from_identity_server) {
+        obj = Object.new
+        meta = (class << obj; self; end)
+        meta.__send__(:define_method, :identity_url) { identity_url }
+        meta.__send__(:define_method, :display_identifier) { identity_url }
+        meta.__send__(:define_method, :status) { status }
+        meta.__send__(:define_method, :setup_url) { nil }
+        obj
+      }
+    composite << Kagemusha.new(OpenID::SReg::Response).
+      defs(:from_success_response) { nil }
+    composite << Kagemusha.new(OpenID::AX::FetchResponse).
+      defs(:from_success_response) { nil }
+    return composite
+  end
+end

data/test/functional/credentials_controller_test.rb ADDED Viewed

@@ -0,0 +1,49 @@
+require 'test_helper'
+class CredentialsControllerTest < ActionController::TestCase
+  def setup
+    @yuya = users(:yuya)
+    session_login(@yuya)
+  end
+  test "routes" do
+    base = {:controller => "credentials"}
+    assert_routing("/credentials", base.merge(:action => "index"))
+  end
+  test "GET index" do
+    get :index
+    assert_response(:success)
+    assert_template("index")
+    assert_flash_empty
+    assert_logged_in(@yuya)
+    open_id_credentials = assigns(:open_id_credentials)
+    assert_equal(@yuya.open_id_credentials.size, open_id_credentials.size)
+    assert_equal(true, open_id_credentials.all? { |o| o.user == @yuya })
+    assert_equal(
+      open_id_credentials.sort_by(&:identity_url),
+      open_id_credentials)
+    email_credentials = assigns(:email_credentials)
+    assert_equal(@yuya.email_credentials.size, email_credentials.size)
+    assert_equal(true, email_credentials.all? { |e| e.user == @yuya})
+    assert_equal(
+      email_credentials.sort_by(&:email),
+      email_credentials)
+  end
+  test "GET index, abnormal, no login" do
+    session_logout
+    get :index
+    assert_response(:redirect)
+    assert_redirected_to(root_path)
+    assert_flash_error
+  end
+end