nulogy-authlogic 3.1.0.1

data/test/session_test/id_test.rb

@@ -0,0 +1,17 @@
+require 'test_helper'
+
+module SessionTest
+  class IdTest < ActiveSupport::TestCase
+    def test_credentials
+      session = UserSession.new
+      session.credentials = [:my_id]
+      assert_equal :my_id, session.id
+    end
+      
+    def test_id
+      session = UserSession.new
+      session.id = :my_id
+      assert_equal :my_id, session.id
+    end
+  end
+end

data/test/session_test/klass_test.rb

@@ -0,0 +1,40 @@
+require 'test_helper'
+
+module SessionTest
+  module KlassTest
+    class ConfigTest < ActiveSupport::TestCase
+      def test_authenticate_with
+        UserSession.authenticate_with = Employee
+        assert_equal "Employee", UserSession.klass_name
+        assert_equal Employee, UserSession.klass
+
+        UserSession.authenticate_with User
+        assert_equal "User", UserSession.klass_name
+        assert_equal User, UserSession.klass
+      end
+
+      def test_klass
+        assert_equal User, UserSession.klass
+      end
+
+      def test_klass_name
+        assert_equal "User", UserSession.klass_name
+      end
+
+      def test_klass_name_uses_custom_name
+        assert_equal "User", UserSession.klass_name
+        assert_equal "BackOfficeUser", BackOfficeUserSession.klass_name
+      end
+    end
+
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_record_method
+        ben = users(:ben)
+        set_session_for(ben)
+        session = UserSession.find
+        assert_equal ben, session.record
+        assert_equal ben, session.user
+      end
+    end
+  end
+end

data/test/session_test/magic_columns_test.rb

@@ -0,0 +1,62 @@
+require 'test_helper'
+
+module SessionTest
+  module MagicColumnsTest
+    class ConfigTest < ActiveSupport::TestCase
+      def test_last_request_at_threshold_config
+        UserSession.last_request_at_threshold = 2.minutes
+        assert_equal 2.minutes, UserSession.last_request_at_threshold
+    
+        UserSession.last_request_at_threshold 0
+        assert_equal 0, UserSession.last_request_at_threshold
+      end
+    end
+    
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_after_persisting_set_last_request_at
+        ben = users(:ben)
+        assert !UserSession.create(ben).new_session?
+        
+        set_cookie_for(ben)
+        old_last_request_at = ben.last_request_at
+        assert UserSession.find
+        ben.reload
+        assert ben.last_request_at != old_last_request_at
+      end
+    
+      def test_valid_increase_failed_login_count
+        ben = users(:ben)
+        old_failed_login_count = ben.failed_login_count
+        assert UserSession.create(:login => ben.login, :password => "wrong").new_session?
+        ben.reload
+        assert_equal old_failed_login_count + 1, ben.failed_login_count
+      end
+    
+      def test_before_save_update_info
+        ben = users(:ben)
+      
+        # increase failed login count
+        assert UserSession.create(:login => ben.login, :password => "wrong").new_session?
+        ben.reload
+      
+        # grab old values
+        old_login_count = ben.login_count
+        old_failed_login_count = ben.failed_login_count
+        old_last_login_at = ben.last_login_at
+        old_current_login_at = ben.current_login_at
+        old_last_login_ip = ben.last_login_ip
+        old_current_login_ip = ben.current_login_ip
+      
+        assert !UserSession.create(:login => ben.login, :password => "benrocks").new_session?
+        
+        ben.reload
+        assert_equal old_login_count + 1, ben.login_count
+        assert_equal 0, ben.failed_login_count
+        assert_equal old_current_login_at, ben.last_login_at
+        assert ben.current_login_at != old_current_login_at
+        assert_equal old_current_login_ip, ben.last_login_ip
+        assert_equal "1.1.1.1", ben.current_login_ip
+      end
+    end
+  end
+end

data/test/session_test/magic_states_test.rb

@@ -0,0 +1,60 @@
+require 'test_helper'
+
+module SessionTest
+  module SessionTest
+    class ConfigTest < ActiveSupport::TestCase
+      def test_disable_magic_states_config
+        UserSession.disable_magic_states = true
+        assert_equal true, UserSession.disable_magic_states
+    
+        UserSession.disable_magic_states false
+        assert_equal false, UserSession.disable_magic_states
+      end
+    end
+    
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_disabling_magic_states
+        UserSession.disable_magic_states = true
+      
+        ben = users(:ben)
+        ben.update_attribute(:active, false)
+        assert UserSession.create(ben)
+      
+        UserSession.disable_magic_states = false
+      end
+    
+      def test_validate_validate_magic_states_active
+        session = UserSession.new
+        ben = users(:ben)
+        session.unauthorized_record = ben
+        assert session.valid?
+      
+        ben.update_attribute(:active, false)
+        assert !session.valid?
+        assert session.errors[:base].size > 0
+      end
+    
+      def test_validate_validate_magic_states_approved
+        session = UserSession.new
+        ben = users(:ben)
+        session.unauthorized_record = ben
+        assert session.valid?
+      
+        ben.update_attribute(:approved, false)
+        assert !session.valid?
+        assert session.errors[:base].size > 0
+      end
+    
+      def test_validate_validate_magic_states_confirmed
+        session = UserSession.new
+        ben = users(:ben)
+        session.unauthorized_record = ben
+        assert session.valid?
+      
+        ben.update_attribute(:confirmed, false)
+        assert !session.valid?
+        assert session.errors[:base].size > 0
+      end
+    end
+  end
+end

data/test/session_test/params_test.rb

@@ -0,0 +1,53 @@
+require 'test_helper'
+
+module SessionTest
+  module ParamsTest
+    class ConfigTest < ActiveSupport::TestCase
+      def test_params_key
+        UserSession.params_key = "my_params_key"
+        assert_equal "my_params_key", UserSession.params_key
+    
+        UserSession.params_key "user_credentials"
+        assert_equal "user_credentials", UserSession.params_key
+      end
+    
+      def test_single_access_allowed_request_types
+        UserSession.single_access_allowed_request_types = ["my request type"]
+        assert_equal ["my request type"], UserSession.single_access_allowed_request_types
+    
+        UserSession.single_access_allowed_request_types ["application/rss+xml", "application/atom+xml"]
+        assert_equal ["application/rss+xml", "application/atom+xml"], UserSession.single_access_allowed_request_types
+      end
+    end
+    
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_persist_persist_by_params
+        ben = users(:ben)
+        session = UserSession.new
+    
+        assert !session.persisting?
+        set_params_for(ben)
+      
+        assert !session.persisting?
+        assert !session.unauthorized_record
+        assert !session.record
+        assert_nil controller.session["user_credentials"]
+      
+        set_request_content_type("text/plain")
+        assert !session.persisting?
+        assert !session.unauthorized_record
+        assert_nil controller.session["user_credentials"]
+      
+        set_request_content_type("application/atom+xml")
+        assert session.persisting?
+        assert_equal ben, session.record
+        assert_nil controller.session["user_credentials"] # should not persist since this is single access
+      
+        set_request_content_type("application/rss+xml")
+        assert session.persisting?
+        assert_equal ben, session.unauthorized_record
+        assert_nil controller.session["user_credentials"]
+      end
+    end
+  end
+end

data/test/session_test/password_test.rb

@@ -0,0 +1,106 @@
+require 'test_helper'
+
+module SessionTest
+  module PasswordTest
+    class ConfigTest < ActiveSupport::TestCase
+      def test_find_by_login_method
+        UserSession.find_by_login_method = "my_login_method"
+        assert_equal "my_login_method", UserSession.find_by_login_method
+    
+        UserSession.find_by_login_method "find_by_login"
+        assert_equal "find_by_login", UserSession.find_by_login_method
+      end
+    
+      def test_verify_password_method
+        UserSession.verify_password_method = "my_login_method"
+        assert_equal "my_login_method", UserSession.verify_password_method
+    
+        UserSession.verify_password_method "valid_password?"
+        assert_equal "valid_password?", UserSession.verify_password_method
+      end
+    
+      def test_generalize_credentials_error_mesages_set_to_false
+        UserSession.generalize_credentials_error_messages false
+        assert !UserSession.generalize_credentials_error_messages
+        session = UserSession.create(:login => users(:ben).login, :password => "invalud-password")
+        assert_equal ["Password is not valid"], session.errors.full_messages
+      end
+      
+      def test_generalize_credentials_error_messages_set_to_true
+        UserSession.generalize_credentials_error_messages true
+        assert UserSession.generalize_credentials_error_messages
+        session = UserSession.create(:login => users(:ben).login, :password => "invalud-password")
+        assert_equal ["Login/Password combination is not valid"], session.errors.full_messages
+      end
+
+      def test_generalize_credentials_error_messages_set_to_string
+        UserSession.generalize_credentials_error_messages= "Custom Error Message"
+        assert UserSession.generalize_credentials_error_messages
+        session = UserSession.create(:login => users(:ben).login, :password => "invalud-password")
+        assert_equal ["Custom Error Message"], session.errors.full_messages
+      end
+
+      
+      def test_login_field
+        UserSession.configured_password_methods = false
+        UserSession.login_field = :saweet
+        assert_equal :saweet, UserSession.login_field
+        session = UserSession.new
+        assert session.respond_to?(:saweet)
+    
+        UserSession.login_field :login
+        assert_equal :login, UserSession.login_field
+        session = UserSession.new
+        assert session.respond_to?(:login)
+      end
+    
+      def test_password_field
+        UserSession.configured_password_methods = false
+        UserSession.password_field = :saweet
+        assert_equal :saweet, UserSession.password_field
+        session = UserSession.new
+        assert session.respond_to?(:saweet)
+    
+        UserSession.password_field :password
+        assert_equal :password, UserSession.password_field
+        session = UserSession.new
+        assert session.respond_to?(:password)
+      end
+    end
+    
+    class InstanceMethodsTest < ActiveSupport::TestCase
+      def test_init
+        session = UserSession.new
+        assert session.respond_to?(:login)
+        assert session.respond_to?(:login=)
+        assert session.respond_to?(:password)
+        assert session.respond_to?(:password=)
+        assert session.respond_to?(:protected_password, true)
+      end
+    
+      def test_credentials
+        session = UserSession.new
+        session.credentials = {:login => "login", :password => "pass"}
+        assert_equal "login", session.login
+        assert_nil session.password
+        assert_equal "pass", session.send(:protected_password)
+        assert_equal({:password => "<protected>", :login => "login"}, session.credentials)
+      end
+    
+      def test_credentials_are_params_safe
+        session = UserSession.new
+        assert_nothing_raised { session.credentials = {:hacker_method => "error!"} }
+      end
+    
+      def test_save_with_credentials
+        ben = users(:ben)
+        session = UserSession.new(:login => ben.login, :password => "benrocks")
+        assert session.save
+        assert !session.new_session?
+        assert_equal 1, session.record.login_count
+        assert Time.now >= session.record.current_login_at
+        assert_equal "1.1.1.1", session.record.current_login_ip
+      end
+    end
+  end
+end

data/test/session_test/perishability_test.rb

@@ -0,0 +1,15 @@
+require 'test_helper'
+
+module SessionTest
+  class PerishabilityTest < ActiveSupport::TestCase
+    def test_after_save
+      ben = users(:ben)
+      old_perishable_token = ben.perishable_token
+      session = UserSession.create(ben)
+      assert_not_equal old_perishable_token, ben.perishable_token
+      
+      drew = employees(:drew)
+      assert UserSession.create(drew)
+    end
+  end
+end

data/test/session_test/persistence_test.rb

@@ -0,0 +1,21 @@
+require 'test_helper'
+
+module SessionTest
+  class PersistenceTest < ActiveSupport::TestCase
+    def test_find
+      ben = users(:ben)
+      assert !UserSession.find
+      http_basic_auth_for(ben) { assert UserSession.find }
+      set_cookie_for(ben)
+      assert UserSession.find
+      unset_cookie
+      set_session_for(ben)
+      session = UserSession.find
+      assert session
+    end
+    
+    def test_persisting
+      # tested thoroughly in test_find
+    end
+  end
+end

data/test/session_test/scopes_test.rb

@@ -0,0 +1,60 @@
+require 'test_helper'
+
+module SessionTest
+  class ScopesTest < ActiveSupport::TestCase
+    def test_scope_method
+      assert_nil Authlogic::Session::Base.scope
+
+      thread1 = Thread.new do
+        scope = {:id => :scope1}
+        Authlogic::Session::Base.send(:scope=, scope)
+        assert_equal scope, Authlogic::Session::Base.scope
+      end
+      thread1.join
+
+      assert_nil Authlogic::Session::Base.scope
+
+      thread2 = Thread.new do
+        scope = {:id => :scope2}
+        Authlogic::Session::Base.send(:scope=, scope)
+        assert_equal scope, Authlogic::Session::Base.scope
+      end
+      thread2.join
+
+      assert_nil Authlogic::Session::Base.scope
+    end
+
+    def test_with_scope_method
+      assert_raise(ArgumentError) { UserSession.with_scope }
+
+      UserSession.with_scope(:find_options => {:conditions => "awesome = 1"}, :id => "some_id") do
+        assert_equal({:find_options => {:conditions => "awesome = 1"}, :id => "some_id"}, UserSession.scope)
+      end
+
+      assert_nil UserSession.scope
+    end
+
+    def test_initialize
+      UserSession.with_scope(:find_options => {:conditions => "awesome = 1"}, :id => "some_id") do
+        session = UserSession.new
+        assert_equal({:find_options => {:conditions => "awesome = 1"}, :id => "some_id"}, session.scope)
+        session.id = :another_id
+        assert_equal "another_id_some_id_test", session.send(:build_key, "test")
+      end
+    end
+
+    def test_search_for_record_with_scopes
+      binary_logic = companies(:binary_logic)
+      ben = users(:ben)
+      zack = users(:zack)
+
+      session = UserSession.new
+      assert_equal zack, session.send(:search_for_record, "find_by_login", zack.login)
+
+      session.scope = {:find_options => {:conditions => ["company_id = ?", binary_logic.id]}}
+      assert_nil session.send(:search_for_record, "find_by_login", zack.login)
+
+      assert_equal ben, session.send(:search_for_record, "find_by_login", ben.login)
+    end
+  end
+end