RubyGems - openstax_accounts - Versions diffs - 7.13.0 → 8.1.1 - Mend

openstax_accounts 7.13.0 → 8.1.1

Files changed (120) hide show

data/Rakefile DELETED Viewed

@@ -1,22 +0,0 @@
-#!/usr/bin/env rake
-begin
-  require 'bundler/setup'
-rescue LoadError
-  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
-end
-APP_RAKEFILE = File.expand_path('../spec/dummy/Rakefile', __FILE__)
-load 'rails/tasks/engine.rake'
-Bundler::GemHelper.install_tasks
-Dir[File.join(File.dirname(__FILE__), 'tasks/**/*.rake')].each { |f| load f }
-require 'rspec/core'
-require 'rspec/core/rake_task'
-desc 'Run all specs in spec directory (excluding plugin specs)'
-RSpec::Core::RakeTask.new(spec: 'app:db:test:prepare')
-task default: :spec

data/spec/cassettes/OpenStax_Accounts_FindOrCreateAccount/can_create_users.yml DELETED Viewed

@@ -1,303 +0,0 @@
----
-http_interactions:
-- request:
-    method: post
-    uri: http://localhost:2999/oauth/token
-    body:
-      encoding: UTF-8
-      string: client_id=6f3dbfdbb87bf28db1c8279f44c39ea3c3a702ae4303ebcb5a5d8067dc040f85&client_secret=a439ff2377713b3372f8044062f23ad1eb515237e1711cbe6f442c1bea935373&grant_type=client_credentials
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Content-Type:
-      - application/x-www-form-urlencoded
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 200
-      message: OK
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Cache-Control:
-      - no-store
-      Pragma:
-      - no-cache
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"da2f9b92fc82c5fa07f64029a71cff95"
-      X-Request-Id:
-      - 26a0a272-9fcf-42c9-a702-357b46a5c070
-      X-Runtime:
-      - '0.030377'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"access_token":"c31fe09157c9801c88356a972d0e0c95aa13081cea77ae45f098b5dc7f614642","token_type":"bearer","created_at":1497844427}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:47 GMT
-- request:
-    method: post
-    uri: http://localhost:2999/api/user/find-or-create
-    body:
-      encoding: UTF-8
-      string: '{"email":"alice@example.com","username":null,"password":null,"first_name":null,"last_name":null,"full_name":null,"salesforce_contact_id":null,"faculty_status":null,"role":null,"school_type":null}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Accept:
-      - application/vnd.accounts.openstax.v1
-      Content-Type:
-      - application/json
-      Authorization:
-      - Bearer c31fe09157c9801c88356a972d0e0c95aa13081cea77ae45f098b5dc7f614642
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-  response:
-    status:
-      code: 201
-      message: Created
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Date:
-      - Mon, 19 Jun 2017 03:53:47 GMT
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"c61c434670d5436a6af8a75c120f5bdf"
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      X-Request-Id:
-      - 4d8fb993-d7ef-4820-9248-8c830caf1b78
-      X-Runtime:
-      - '0.227730'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"id":18,"uuid":"8c5c819f-d9d9-46e7-98b9-d737fc0f13fe","support_identifier":"cs_6f3b305b"}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:47 GMT
-- request:
-    method: post
-    uri: http://localhost:2999/oauth/token
-    body:
-      encoding: UTF-8
-      string: client_id=6f3dbfdbb87bf28db1c8279f44c39ea3c3a702ae4303ebcb5a5d8067dc040f85&client_secret=a439ff2377713b3372f8044062f23ad1eb515237e1711cbe6f442c1bea935373&grant_type=client_credentials
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Content-Type:
-      - application/x-www-form-urlencoded
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 200
-      message: OK
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Cache-Control:
-      - no-store
-      Pragma:
-      - no-cache
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"c7a634c41cb04b393e0cd348d63efec1"
-      X-Request-Id:
-      - b977409f-0914-4eac-832e-3d406140ef24
-      X-Runtime:
-      - '0.023528'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"access_token":"1c4df98e8f1b07b4dd33aa81150262c829999aaf0564721c423f01c263c2114f","token_type":"bearer","created_at":1497844427}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:47 GMT
-- request:
-    method: post
-    uri: http://localhost:2999/api/user/find-or-create
-    body:
-      encoding: UTF-8
-      string: '{"email":null,"username":"alice","password":null,"first_name":null,"last_name":null,"full_name":null,"salesforce_contact_id":null,"faculty_status":null,"role":null,"school_type":null}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Accept:
-      - application/vnd.accounts.openstax.v1
-      Content-Type:
-      - application/json
-      Authorization:
-      - Bearer 1c4df98e8f1b07b4dd33aa81150262c829999aaf0564721c423f01c263c2114f
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-  response:
-    status:
-      code: 201
-      message: Created
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Date:
-      - Mon, 19 Jun 2017 03:53:47 GMT
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"a6c213351d9df66ee31997f7ed447fbc"
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      X-Request-Id:
-      - ee7c0cba-d530-4a21-b94c-5adf7efb994a
-      X-Runtime:
-      - '0.067316'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"id":19,"uuid":"c1ebaa86-b8ef-4100-9213-a16ca741d47f","support_identifier":"cs_edc0b069"}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:47 GMT
-- request:
-    method: post
-    uri: http://localhost:2999/oauth/token
-    body:
-      encoding: UTF-8
-      string: client_id=6f3dbfdbb87bf28db1c8279f44c39ea3c3a702ae4303ebcb5a5d8067dc040f85&client_secret=a439ff2377713b3372f8044062f23ad1eb515237e1711cbe6f442c1bea935373&grant_type=client_credentials
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Content-Type:
-      - application/x-www-form-urlencoded
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-      Accept:
-      - "*/*"
-  response:
-    status:
-      code: 200
-      message: OK
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Cache-Control:
-      - no-store
-      Pragma:
-      - no-cache
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"a0d885d8947b3be5da25673a937640fc"
-      X-Request-Id:
-      - 21711558-b1df-4a12-b141-1e0a073f71db
-      X-Runtime:
-      - '0.022856'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"access_token":"21bb7c60df067e7354ec7e3b2e83d2d39831aece5938d20e8e68e6ea52ab59ff","token_type":"bearer","created_at":1497844427}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:47 GMT
-- request:
-    method: post
-    uri: http://localhost:2999/api/user/find-or-create
-    body:
-      encoding: UTF-8
-      string: '{"email":null,"username":"alice2","password":"abcdefghijklmnop","first_name":null,"last_name":null,"full_name":null,"salesforce_contact_id":null,"faculty_status":null,"role":null,"school_type":null}'
-    headers:
-      User-Agent:
-      - Faraday v0.9.2
-      Accept:
-      - application/vnd.accounts.openstax.v1
-      Content-Type:
-      - application/json
-      Authorization:
-      - Bearer 21bb7c60df067e7354ec7e3b2e83d2d39831aece5938d20e8e68e6ea52ab59ff
-      Accept-Encoding:
-      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
-  response:
-    status:
-      code: 201
-      message: Created
-    headers:
-      X-Frame-Options:
-      - SAMEORIGIN
-      X-Xss-Protection:
-      - 1; mode=block
-      X-Content-Type-Options:
-      - nosniff
-      Date:
-      - Mon, 19 Jun 2017 03:53:48 GMT
-      Content-Type:
-      - application/json; charset=utf-8
-      P3p:
-      - CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
-      Etag:
-      - W/"1574b45433f3e6117795d9e71a8a7fc9"
-      Cache-Control:
-      - max-age=0, private, must-revalidate
-      X-Request-Id:
-      - 818cfe0a-9264-43c8-a73f-48cfbea35672
-      X-Runtime:
-      - '0.142613'
-      Connection:
-      - close
-      Server:
-      - thin
-    body:
-      encoding: UTF-8
-      string: '{"id":20,"uuid":"76c36a75-5b5a-4dbd-8800-5c1916c6f1f2","support_identifier":"cs_bccb058a"}'
-    http_version:
-  recorded_at: Mon, 19 Jun 2017 03:53:48 GMT
-recorded_with: VCR 3.0.3

data/spec/controllers/openstax/accounts/dev/accounts_controller_spec.rb DELETED Viewed

@@ -1,27 +0,0 @@
-require 'spec_helper'
-module OpenStax::Accounts
-  module Dev
-    RSpec.describe AccountsController, type: :controller do
-      routes { Engine.routes }
-      let!(:account) { FactoryBot.create :openstax_accounts_account,
-                                          username: 'some_user',
-                                          openstax_uid: 10 }
-      it 'should allow users not in production to become other users' do
-        expect(controller.current_account).to eq(AnonymousAccount.instance)
-        expect(controller.current_account.is_anonymous?).to eq(true)
-        post :become, id: account.openstax_uid
-        expect(controller.current_account).to eq(account)
-        expect(controller.current_account.is_anonymous?).to eq(false)
-      end
-      it 'should not set X-Frame-Options header' do
-        get :index
-        expect(response.header['X-Frame-Options']).to be_nil
-      end
-    end
-  end
-end

data/spec/controllers/openstax/accounts/forwards_params_spec.rb DELETED Viewed

@@ -1,75 +0,0 @@
-require 'spec_helper'
-RSpec.describe "Forwards params", type: :request do
-  class ForwardsParamsController < OpenStax::Accounts::ApplicationController
-    before_filter :set_login_param
-    before_filter :authenticate_user!
-    def action_needing_authentication; end
-    def set_login_param
-      login_params[:signup_at] = "foo"
-      login_params[:go] = "bar"
-      login_params[:sp] = "blah"
-    end
-  end
-  before(:all) do
-    Rails.application.routes.send(:eval_block, Proc.new do
-      get '/forwards_params_route' => 'forwards_params#action_needing_authentication'
-    end)
-  end
-  it 'should forward signup_at' do
-    test_forwards(key: :signup_at, value: "foo")
-  end
-  it "should forward go" do
-    test_forwards(key: :go, value: "bar")
-  end
-  it "should forward go" do
-    test_forwards(key: :sp, value: "blah")
-  end
-  def test_forwards(key:, value:)
-    silence_omniauth do
-      get '/forwards_params_route'
-      expect(redirect_path).to eq "/accounts/login"
-      expect(redirect_query_hash).to include(key => value)
-      with_stubbing(false) do
-        get redirect_path_and_query
-      end
-      expect(redirect_path).to eq "/accounts/auth/openstax"
-      expect(redirect_query_hash).to include(key => value)
-      get redirect_path_and_query
-      expect(redirect_path).to eq("/oauth/authorize")
-      expect(redirect_query_hash).to include(key => value)
-      # This last redirect was to Accounts, so we don't follow it
-    end
-  end
-  def redirect_path
-    redirect_uri.path
-  end
-  def redirect_path_and_query
-    "#{redirect_uri.path}?#{redirect_uri.query}"
-  end
-  def redirect_query_hash
-    Rack::Utils.parse_nested_query(redirect_uri.query).symbolize_keys
-  end
-  def redirect_uri
-    expect(response.code).to eq "302"
-    uri = URI.parse(response.headers["Location"])
-  end
-end

data/spec/controllers/openstax/accounts/sessions_controller_spec.rb DELETED Viewed

@@ -1,71 +0,0 @@
-require 'spec_helper'
-module OpenStax::Accounts
-  RSpec.describe SessionsController, type: :controller do
-    routes { Engine.routes }
-    let!(:account) { FactoryBot.create :openstax_accounts_account,
-                                        username: 'some_user',
-                                        openstax_uid: 10 }
-    after(:all) {
-      OpenStax::Accounts.configuration.logout_redirect_url = nil
-      OpenStax::Accounts.configuration.return_to_url_approver = nil
-    }
-    it 'should redirect users to the login path' do
-      c = controller
-      get :new
-      expect(response).to redirect_to(c.dev_accounts_path)
-      expect(response.code).to eq('302')
-    end
-    it 'should authenticate users based on the oauth callback' do
-      # TODO
-    end
-    it 'should let users logout' do
-      controller.sign_in account
-      expect(controller.current_account).to eq(account)
-      expect(controller.current_account.is_anonymous?).to eq(false)
-      delete :destroy
-      expect(controller.current_account).to eq(AnonymousAccount.instance)
-      expect(controller.current_account.is_anonymous?).to eq(true)
-    end
-    it 'should get signout redirect URL from configured setting' do
-      my_lambda = ->(request) { "http://www.google.com" }
-      OpenStax::Accounts.configuration.logout_redirect_url = my_lambda
-      allow(OpenStax::Accounts.configuration).to receive(:enable_stubbing?) {false}
-      expect(my_lambda).to receive(:call).with(anything())
-      controller.sign_in account
-      delete :destroy
-    end
-    it 'should store specified url for redirection after to login if approved' do
-      OpenStax::Accounts.configuration.return_to_url_approver = ->(url) { true }
-      allow(OpenStax::Accounts.configuration).to receive(:enable_stubbing?) {false}
-      get :new, return_to: "https://woohoo"
-      expect(session["accounts_return_to"]).to eq "https://woohoo"
-    end
-    it 'should not store specified url for redirection after login if not approved' do
-      OpenStax::Accounts.configuration.return_to_url_approver = ->(url) { false }
-      allow(OpenStax::Accounts.configuration).to receive(:enable_stubbing?) {false}
-      get :new, return_to: "https://woohoo"
-      expect(session["accounts_return_to"]).to eq nil
-    end
-    it 'should give the return_to url to the config approver' do
-      my_lambda = ->(url) { true }
-      OpenStax::Accounts.configuration.return_to_url_approver = my_lambda
-      allow(OpenStax::Accounts.configuration).to receive(:enable_stubbing?) {false}
-      expect(my_lambda).to receive(:call).with("http://jimmy")
-      get :new, return_to: 'http://jimmy'
-    end
-  end
-end