obscured-doorman 0.4.0

data/spec/helpers/request_helper.rb

@@ -0,0 +1,53 @@
+# frozen_string_literal: true
+
+module Obscured::Doorman::Spec
+  module Helpers
+    FAILURE_APP = ->(_e) { [401, { 'Content-Type' => 'text/plain' }, ['You Fail!']] }
+
+    def env_with_params(path = '/', params = {}, env = {})
+      method = params.delete(:method) || 'GET'
+      env = { 'HTTP_VERSION' => '1.1', 'REQUEST_METHOD' => method.to_s }.merge(env)
+      Rack::MockRequest.env_for("#{path}?#{Rack::Utils.build_query(params)}", env)
+    end
+
+    def setup_rack(app = nil, opts = {}, &block)
+      app ||= block if block_given?
+
+      opts[:failure_app]         ||= failure_app
+      opts[:default_strategies]  ||= [:password]
+      opts[:default_serializers] ||= [:session]
+      blk = opts[:configurator] || proc{}
+
+      Rack::Builder.new do
+        use opts[:session] || Helpers::Session unless opts[:nil_session]
+        use Warden::Manager, opts, &blk
+        run app
+      end
+    end
+
+    def valid_response
+      Rack::Response.new('OK').finish
+    end
+
+    def failure_app
+      Helpers::FAILURE_APP
+    end
+
+    def success_app
+      #lambda ..
+      ->(e) { [200, {'Content-Type' => 'text/plain'}, ['You Win']] }
+    end
+
+    class Session
+      attr_accessor :app
+      def initialize(app, configs = {})
+        @app = app
+      end
+
+      def call(e)
+        e['rack.session'] ||= {}
+        @app.call(e)
+      end
+    end
+  end
+end

data/spec/loggable_spec.rb

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+require 'setup'
+
+describe Obscured::Doorman::Loggable do
+  describe 'logger' do
+    it 'get the default logger' do
+      expect(Obscured::Doorman.logger).to_not eq(nil)
+    end
+  end
+
+  describe '#logger=' do
+    let(:logger) do
+      Logger.new($stdout).tap do |log|
+        log.level = Logger::INFO
+      end
+    end
+
+    before do
+      Obscured::Doorman.logger = logger
+    end
+
+    it 'sets the logger' do
+      expect(Obscured::Doorman.logger).to eq(logger)
+    end
+  end
+end

data/spec/mailer_spec.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+require_relative 'setup'
+
+describe Obscured::Doorman::Mailer do
+  let(:service) do
+    Obscured::Doorman::Mailer.new(
+      to: 'homer.simpson@obscured.se',
+      subject: 'foo/bar',
+      text: 'text',
+      html: '<html></html>'
+    )
+  end
+
+  context 'deliver!' do
+    let(:result) { service.deliver! }
+
+    context 'successful' do
+      before(:each) { allow_any_instance_of(Mail::Message).to receive(:deliver).and_return(true) }
+
+      it 'sends mail upon calling .deliver!' do
+        expect(result).to_not be(nil)
+      end
+    end
+  end
+end

data/spec/matchers/time.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+RSpec::Matchers.define :be_the_same_time_as do |expected|
+  match do |actual|
+    expect(expected.strftime("%Y-%m-%dT%H:%M:%S%z").in_time_zone).to eq(actual.strftime("%Y-%m-%dT%H:%M:%S%z").in_time_zone)
+  end
+end

data/spec/setup.rb

@@ -0,0 +1,58 @@
+# frozen_string_literal: true
+
+# Pull in test utilities
+require 'dotenv'
+require 'simplecov'
+require 'factory_bot'
+require 'mongoid'
+require 'pp'
+require 'rack/test'
+require 'rspec'
+
+Dotenv.load(File.join(File.dirname(__FILE__), '../.env'))
+
+# pull in the code
+require_relative '../lib/obscured-doorman'
+
+# pull in test helpers
+Dir.glob('./spec/helpers/*.rb').sort.each(&method(:require))
+Dir.glob('./spec/matchers/*.rb').sort.each(&method(:require))
+
+Mongoid.load!(File.join(File.dirname(__FILE__), '/config/mongoid.yml'), 'spec')
+Mongo::Logger.logger.level = Logger::ERROR
+
+Obscured::Doorman.setup do |cfg|
+  cfg.log_level = Logger::ERROR
+  cfg.db_client = :default
+  cfg.db_name = 'doorman_testing'
+  cfg.registration = true
+  cfg.smtp_domain = ENV['MAILGUN_DOMAIN']
+  cfg.smtp_server = ENV['MAILGUN_SMTP_SERVER']
+  cfg.smtp_username = ENV['MAILGUN_SMTP_LOGIN']
+  cfg.smtp_password = ENV['MAILGUN_SMTP_PASSWORD']
+  cfg.smtp_port = ENV['MAILGUN_SMTP_PORT']
+end
+
+RSpec.configure do |c|
+  c.order = :random
+  c.filter_run :focus
+  c.run_all_when_everything_filtered = true
+
+  c.include FactoryBot::Syntax::Methods
+  c.include Obscured::Doorman::Spec::Helpers
+  c.include Warden::Test::Helpers
+  c.include Warden::Test::Mock
+
+  c.before(:suite) do
+    FactoryBot.find_definitions
+    Mongoid.purge!
+  end
+
+  c.before(:each) do
+    Mongoid.purge!
+  end
+
+  c.after(:suite) do
+    Mongoid.purge!
+  end
+end

data/spec/token_spec.rb

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+
+require_relative 'setup'
+
+describe Obscured::Doorman::Token do
+  before(:each) {
+    Obscured::Doorman::Token.delete_all
+  }
+
+  let!(:user) { FactoryBot.create(:user) }
+  let!(:sha) { Digest::SHA1.hexdigest("--#{user.email}--") }
+
+  context 'make' do
+    let!(:token) { Obscured::Doorman::Token.make(user: user, type: :password, token: sha) }
+
+    it 'returns an unsaved token with values' do
+      expect(token).to_not be_nil
+      expect(token.token).to eq(sha)
+      expect(token.persisted?).to be(false)
+    end
+  end
+
+  context 'make!' do
+    let!(:token) { Obscured::Doorman::Token.make!(user: user, type: :password, token: sha) }
+
+    it 'returns an saved token with values' do
+      expect(token).to_not be_nil
+      expect(token.token).to eq(sha)
+      expect(token.type).to eq(:password)
+      expect(token.used_at).to eq(nil)
+      expect(token.user_id).to_not eq(nil)
+      expect(token.persisted?).to be(true)
+    end
+  end
+
+  context 'use!' do
+    let!(:token) { Obscured::Doorman::Token.make!(user: user, type: :password, token: sha) }
+
+    before(:each) { token.use! }
+
+    it 'sets the token as used' do
+      expect(token.used_at).to_not be(nil)
+      expect(token.used?).to be(true)
+    end
+  end
+
+  context 'used?' do
+    let!(:token) { Obscured::Doorman::Token.make!(user: user, type: :password, token: sha) }
+
+    it 'is should not be used upon creation' do
+      expect(token.used?).to be(false)
+    end
+  end
+
+  context 'usable?' do
+    let!(:token) { Obscured::Doorman::Token.make!(user: user, type: :password, token: sha) }
+
+    it 'is should be usable upon creation' do
+      expect(token.usable?).to be(true)
+    end
+  end
+end

data/spec/user_spec.rb

@@ -0,0 +1,151 @@
+# frozen_string_literal: true
+
+require_relative 'setup'
+
+describe Obscured::Doorman::User do
+  before(:each) { Obscured::Doorman::User.delete_all }
+
+  let!(:email) { 'homer.simpson@obscured.se' }
+  let!(:password) { 'Password123!' }
+
+  context 'make' do
+    let!(:user) { Obscured::Doorman::User.make(username: email, password: password) }
+
+    it 'returns an unsaved document' do
+      expect(user).to_not be_nil
+      expect(user.persisted?).to be(false)
+    end
+  end
+
+  context 'make!' do
+    let!(:user) { Obscured::Doorman::User.make!(username: email, password: password, first_name: 'Homer', last_name: 'Simpson') }
+
+    it 'returns an saved document' do
+      expect(user).to_not be_nil
+      expect(user.persisted?).to be(true)
+    end
+  end
+
+  context 'optionals and/or defaults' do
+    let!(:user) { FactoryBot.create(:user) }
+
+    it 'returns a name' do
+      expect(user.name).to eq('Homer Simpson')
+    end
+    it 'returns a mobile number' do
+      expect(user.mobile). to eq('+467855568')
+    end
+    it 'returns a role' do
+      expect(user.role). to eq(:admin)
+    end
+  end
+
+  context 'name' do
+    let!(:user) { FactoryBot.create(:user) }
+
+    before(:each) {
+      user.name = { first_name: 'Marge', last_name: 'Simpson' }
+      user.save
+      user.reload
+    }
+
+    it 'updates and returns correct name' do
+      expect(user.first_name).to eq('Marge')
+      expect(user.last_name).to eq('Simpson')
+      expect(user.name).to eq('Marge Simpson')
+    end
+  end
+
+  context 'authenticate' do
+    let!(:user) { FactoryBot.create(:user) }
+    let!(:result) { Obscured::Doorman::User.authenticate(user.username, 'Password123') }
+
+    it 'authenticates with correct username and password' do
+      expect(result).to_not eq(nil)
+      expect(result.username).to eq(user.username)
+    end
+  end
+
+  context 'password?' do
+    let!(:user) { FactoryBot.create(:user) }
+
+    it 'return true if correct password is provided' do
+      expect(user.authenticated?('Password123')).to eq(true)
+    end
+    it 'return false if faulty password is provided' do
+      expect(user.password?('123Password')).to eq(false)
+    end
+  end
+
+  context 'remember_me' do
+    let!(:user) { FactoryBot.create(:user) }
+    let!(:result) { user.remember_me! }
+
+    it 'stores and returns token' do
+      expect(result).to_not be(nil)
+      expect(result.type).to be(:remember)
+      expect(result.expires_at).to be_the_same_time_as(DateTime.now + 30.days)
+      expect(result.user_id).to eq(user.id)
+    end
+  end
+
+  context 'confirm' do
+    let!(:user) { Obscured::Doorman::User.make(username: email, password: password) }
+    let!(:token) { user.confirm }
+
+    before(:each) { user.save }
+
+    it 'stores and returns token' do
+      expect(token).to_not be(nil)
+      expect(token.type).to be(:confirm)
+      expect(token.expires_at).to be_the_same_time_as(DateTime.now + 14.days)
+    end
+  end
+
+  context 'forget_me' do
+    let!(:user) { FactoryBot.create(:user) }
+    let!(:result) { user.remember_me! }
+
+    before(:each) { user.save }
+
+    it 'stores and returns token' do
+      expect(result).to_not be(nil)
+      expect(result.type).to be(:remember)
+      expect(result.expires_at).to be_the_same_time_as(DateTime.now + 30.days)
+    end
+
+    it 'removes the saved remember_me token' do
+      expect(user.forget_me!).to be(1)
+      expect(Obscured::Doorman::Token.where(type: :remember).count).to be(0)
+    end
+  end
+
+  context 'forget password' do
+    let!(:user) { FactoryBot.create(:user) }
+    let!(:result) { user.forgot_password! }
+    let(:token) { Obscured::Doorman::Token.where(type: :password).first }
+
+    before(:each) { user.save }
+
+    it 'stores and returns token' do
+      expect(result).to_not be(nil)
+      expect(result.type).to be(:password)
+      expect(result.expires_at).to be_the_same_time_as(DateTime.now + 2.hours)
+    end
+
+    it 'updates password if reset is successful' do
+      expect(user.reset_password!('morotskaka123', result.token)).to be(true)
+      expect(user.password?('morotskaka123')).to eq(true)
+      expect(token).to_not be(nil)
+    end
+
+    it 'returns false if token is not found' do
+      expect(user.reset_password!('morotskaka123', 'boogus')).to be(false)
+    end
+
+    it 'removes token if user was successfully signed in' do
+      expect(user.remembered_password!).to be(1)
+      expect(Obscured::Doorman::Token.where(type: :password).count).to be(0)
+    end
+  end
+end

metadata

@@ -0,0 +1,361 @@
+--- !ruby/object:Gem::Specification
+name: obscured-doorman
+version: !ruby/object:Gem::Version
+  version: 0.4.0
+platform: ruby
+authors:
+- Erik Hennerfors
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2021-05-13 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bcrypt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: geocoder
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: haml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mail
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mongoid
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-contrib
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rest-client
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-contrib
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-flash
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-partial
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: warden
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: dotenv
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: factory_bot
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-test
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Doorman is a front of Warden used by Obscured and it's applications
+email:
+- erik.hennerfors@obscured.se
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".codeclimate.yml"
+- ".github/dependabot.yml"
+- ".github/workflows/publish.yml"
+- ".gitignore"
+- ".rubocop.yml"
+- ".ruby-gemset"
+- ".ruby-version"
+- ".simplecov"
+- ".travis.yml"
+- CHANGELOG.md
+- Gemfile
+- Gemfile.lock
+- README.md
+- lib/obscured-doorman.rb
+- lib/obscured-doorman/base.rb
+- lib/obscured-doorman/configuration.rb
+- lib/obscured-doorman/errors.rb
+- lib/obscured-doorman/helpers.rb
+- lib/obscured-doorman/loggable.rb
+- lib/obscured-doorman/mailer.rb
+- lib/obscured-doorman/messages.rb
+- lib/obscured-doorman/models/token.rb
+- lib/obscured-doorman/models/user.rb
+- lib/obscured-doorman/providers/base/configuration.rb
+- lib/obscured-doorman/providers/bitbucket.rb
+- lib/obscured-doorman/providers/bitbucket/access_token.rb
+- lib/obscured-doorman/providers/bitbucket/configuration.rb
+- lib/obscured-doorman/providers/bitbucket/messages.rb
+- lib/obscured-doorman/providers/bitbucket/strategy.rb
+- lib/obscured-doorman/providers/github.rb
+- lib/obscured-doorman/providers/github/access_token.rb
+- lib/obscured-doorman/providers/github/configuration.rb
+- lib/obscured-doorman/providers/github/messages.rb
+- lib/obscured-doorman/providers/github/strategy.rb
+- lib/obscured-doorman/strategies/forgot_password.rb
+- lib/obscured-doorman/strategies/password.rb
+- lib/obscured-doorman/strategies/remember_me.rb
+- lib/obscured-doorman/utilities/roles.rb
+- lib/obscured-doorman/utilities/types.rb
+- lib/obscured-doorman/version.rb
+- obscured-doorman.gemspec
+- spec/config/mongoid.yml
+- spec/doorman_spec.rb
+- spec/errors_spec.rb
+- spec/factories/token_factory.rb
+- spec/factories/user_factory.rb
+- spec/helpers/application_helper.rb
+- spec/helpers/request_helper.rb
+- spec/loggable_spec.rb
+- spec/mailer_spec.rb
+- spec/matchers/time.rb
+- spec/setup.rb
+- spec/token_spec.rb
+- spec/user_spec.rb
+homepage: https://github.com/gonace/Obscured.Doorman.git
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '2'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.6
+signing_key: 
+specification_version: 4
+summary: Doorman is a front of Warden used by Obscured and it's applications
+test_files:
+- spec/config/mongoid.yml
+- spec/doorman_spec.rb
+- spec/errors_spec.rb
+- spec/factories/token_factory.rb
+- spec/factories/user_factory.rb
+- spec/helpers/application_helper.rb
+- spec/helpers/request_helper.rb
+- spec/loggable_spec.rb
+- spec/mailer_spec.rb
+- spec/matchers/time.rb
+- spec/setup.rb
+- spec/token_spec.rb
+- spec/user_spec.rb