RubyGems - passwd - Versions diffs - 0.1.5 → 0.2.0 - Mend

passwd 0.1.5 → 0.2.0

Files changed (98) hide show

checksums.yaml +4 -4
data/.travis.yml +4 -1
data/CHANGELOG.md +30 -1
data/Gemfile +0 -5
data/LICENSE.txt +2 -1
data/README.md +96 -156
data/Rakefile +2 -1
data/example/.gitignore +16 -0
data/example/Gemfile +25 -0
data/example/README.rdoc +28 -0
data/example/Rakefile +6 -0
data/example/app/assets/images/.keep +0 -0
data/example/app/assets/javascripts/application.js +16 -0
data/example/app/assets/stylesheets/application.css +16 -0
data/example/app/controllers/application_controller.rb +10 -0
data/example/app/controllers/concerns/.keep +0 -0
data/example/app/controllers/profiles_controller.rb +28 -0
data/example/app/controllers/root_controller.rb +5 -0
data/example/app/controllers/sessions_controller.rb +29 -0
data/example/app/helpers/application_helper.rb +2 -0
data/example/app/mailers/.keep +0 -0
data/example/app/models/.keep +0 -0
data/example/app/models/concerns/.keep +0 -0
data/example/app/models/user.rb +4 -0
data/example/app/views/layouts/application.html.erb +15 -0
data/example/app/views/profiles/edit.html.erb +14 -0
data/example/app/views/profiles/show.html.erb +12 -0
data/example/app/views/root/index.html.erb +5 -0
data/example/app/views/sessions/new.html.erb +6 -0
data/example/bin/bundle +3 -0
data/example/bin/rails +4 -0
data/example/bin/rake +4 -0
data/example/config.ru +4 -0
data/example/config/application.rb +40 -0
data/example/config/boot.rb +4 -0
data/example/config/database.yml +26 -0
data/example/config/environment.rb +5 -0
data/example/config/environments/development.rb +37 -0
data/example/config/environments/production.rb +78 -0
data/example/config/environments/test.rb +39 -0
data/example/config/initializers/assets.rb +8 -0
data/example/config/initializers/backtrace_silencers.rb +7 -0
data/example/config/initializers/cookies_serializer.rb +3 -0
data/example/config/initializers/filter_parameter_logging.rb +4 -0
data/example/config/initializers/inflections.rb +16 -0
data/example/config/initializers/mime_types.rb +4 -0
data/example/config/initializers/passwd.rb +41 -0
data/example/config/initializers/session_store.rb +3 -0
data/example/config/initializers/wrap_parameters.rb +14 -0
data/example/config/locales/en.yml +23 -0
data/example/config/routes.rb +16 -0
data/example/config/secrets.yml +22 -0
data/example/db/migrate/20141122165914_create_users.rb +13 -0
data/example/db/schema.rb +25 -0
data/example/db/seeds.rb +7 -0
data/example/lib/assets/.keep +0 -0
data/example/lib/tasks/.keep +0 -0
data/example/lib/tasks/user.rake +12 -0
data/example/log/.keep +0 -0
data/example/public/404.html +67 -0
data/example/public/422.html +67 -0
data/example/public/500.html +66 -0
data/example/public/favicon.ico +0 -0
data/example/public/robots.txt +5 -0
data/example/vendor/assets/javascripts/.keep +0 -0
data/example/vendor/assets/stylesheets/.keep +0 -0
data/lib/generators/passwd/config_generator.rb +13 -0
data/lib/generators/passwd/templates/passwd_config.rb +41 -0
data/lib/passwd.rb +18 -3
data/lib/passwd/action_controller_ext.rb +48 -0
data/lib/passwd/active_record_ext.rb +65 -0
data/lib/passwd/base.rb +17 -62
data/lib/passwd/configuration.rb +82 -0
data/lib/passwd/errors.rb +6 -13
data/lib/passwd/password.rb +73 -25
data/lib/passwd/policy.rb +28 -0
data/lib/passwd/railtie.rb +19 -0
data/lib/passwd/salt.rb +50 -0
data/lib/passwd/version.rb +2 -1
data/passwd.gemspec +8 -2
data/spec/passwd/.keep +0 -0
data/spec/passwd/active_record_ext_spec.rb +80 -0
data/spec/passwd/base_spec.rb +55 -231
data/spec/passwd/configuration_spec.rb +50 -0
data/spec/passwd/password_spec.rb +129 -123
data/spec/spec_helper.rb +14 -3
data/spec/support/data_util.rb +11 -0
data/spec/support/paths.rb +2 -0
metadata +164 -30
data/lib/passwd/active_record.rb +0 -62
data/lib/passwd/configuration/abstract_config.rb +0 -37
data/lib/passwd/configuration/config.rb +0 -24
data/lib/passwd/configuration/policy.rb +0 -46
data/lib/passwd/configuration/tmp_config.rb +0 -18
data/spec/passwd/active_record_spec.rb +0 -163
data/spec/passwd/configuration/config_spec.rb +0 -250
data/spec/passwd/configuration/policy_spec.rb +0 -133
data/spec/passwd/configuration/tmp_config_spec.rb +0 -265

data/lib/passwd/active_record.rb DELETED

@@ -1,62 +0,0 @@
-# coding: utf-8
-module Passwd
-  module ActiveRecord
-    module ClassMethods
-      def define_column(options={})
-        id_name = options.fetch(:id, :email)
-        salt_name = options.fetch(:salt, :salt)
-        password_name = options.fetch(:password, :password)
-        define_singleton_auth(id_name, salt_name, password_name)
-        define_instance_auth(id_name, salt_name, password_name)
-        define_set_password(id_name, salt_name, password_name)
-        define_update_password(salt_name, password_name)
-      end
-      private
-      def define_singleton_auth(id_name, salt_name, password_name)
-        define_singleton_method :authenticate do |id, pass|
-          user = self.where(id_name => id).first
-          user if user && Passwd.auth(pass, user.send(salt_name), user.send(password_name))
-        end
-      end
-      def define_instance_auth(id_name, salt_name, password_name)
-        define_method :authenticate do |pass|
-          Passwd.auth(pass, self.send(salt_name), self.send(password_name))
-        end
-      end
-      def define_set_password(id_name, salt_name, password_name)
-        define_method :set_password do |pass=nil|
-          password = pass || Passwd.create
-          salt = self.send(salt_name) || Passwd.hashing("#{self.send(id_name)}#{Time.now.to_s}")
-          self.send("#{salt_name.to_s}=", salt)
-          self.send("#{password_name.to_s}=", Passwd.hashing("#{salt}#{password}"))
-          password
-        end
-      end
-      def define_update_password(salt_name, password_name)
-        define_method :update_password do |old_pass, new_pass, policy_check=false|
-          if Passwd.auth(old_pass, self.send(salt_name), self.send(password_name))
-            if policy_check
-              raise Passwd::PolicyNotMatch, "Policy not match" unless Passwd.policy_check(new_pass)
-            end
-            set_password(new_pass)
-          else
-            raise Passwd::AuthError
-          end
-        end
-      end
-    end
-    class << self
-      def included(base)
-        base.extend ClassMethods
-      end
-    end
-  end
-end

data/lib/passwd/configuration/abstract_config.rb DELETED

@@ -1,37 +0,0 @@
-# coding: utf-8
-module Passwd
-  class AbstractConfig
-    VALID_OPTIONS_KEYS = [
-      :algorithm,
-      :length,
-      :lower,
-      :upper,
-      :number,
-      :letters_lower,
-      :letters_upper,
-      :letters_number
-    ].freeze
-    attr_accessor *VALID_OPTIONS_KEYS
-    def configure
-      yield self
-    end
-    def merge(configs)
-      configs.keys.each do |k|
-        send("#{k}=", configs[k])
-      end
-    end
-    def letters
-      chars = []
-      chars.concat(self.letters_lower) if self.lower
-      chars.concat(self.letters_upper) if self.upper
-      chars.concat(self.letters_number) if self.number
-      raise "letters is empty" if chars.empty?
-      chars
-    end
-  end
-end

data/lib/passwd/configuration/config.rb DELETED

@@ -1,24 +0,0 @@
-# coding: utf-8
-require "passwd/configuration/abstract_config"
-module Passwd
-  class Config < AbstractConfig
-    include Singleton
-    def initialize
-      reset
-    end
-    def reset
-      self.algorithm = :sha512
-      self.length = 8
-      self.lower = true
-      self.upper = true
-      self.number = true
-      self.letters_lower = ("a".."z").to_a
-      self.letters_upper = ("A".."Z").to_a
-      self.letters_number = ("0".."9").to_a
-    end
-  end
-end

data/lib/passwd/configuration/policy.rb DELETED

@@ -1,46 +0,0 @@
-# coding: utf-8
-module Passwd
-  class Policy
-    include Singleton
-    VALID_OPTIONS_KEYS = [
-      :min_length,
-      :require_lower,
-      :require_upper,
-      :require_number
-    ].freeze
-    attr_accessor *VALID_OPTIONS_KEYS
-    def initialize
-      reset
-    end
-    def configure
-      yield self
-    end
-    def valid?(password, config)
-      return false if self.min_length > password.size
-      return false if self.require_lower && !include_char?(config.letters_lower, password)
-      return false if self.require_upper && !include_char?(config.letters_upper, password)
-      return false if self.require_number && !include_char?(config.letters_number, password)
-      true
-    end
-    def include_char?(letters, strings)
-      strings.each_char do |c|
-        return true if letters.include? c
-      end
-      false
-    end
-    def reset
-      self.min_length = 8
-      self.require_lower = true
-      self.require_upper = false
-      self.require_number = true
-    end
-  end
-end

data/lib/passwd/configuration/tmp_config.rb DELETED

@@ -1,18 +0,0 @@
-# coding: utf-8
-require "passwd/configuration/abstract_config"
-module Passwd
-  class TmpConfig < AbstractConfig
-    def initialize(config, options)
-      config.instance_variables.each do |v|
-        key = v.to_s.sub(/^@/, "").to_sym
-        if options.has_key? key
-          instance_variable_set v, options[key]
-        else
-          instance_variable_set v, config.instance_variable_get(v)
-        end
-      end
-    end
-  end
-end

data/spec/passwd/active_record_spec.rb DELETED

@@ -1,163 +0,0 @@
-# coding: utf-8
-require "spec_helper"
-describe Passwd::ActiveRecord do
-  class User
-    include Passwd::ActiveRecord
-    define_column
-  end
-  let(:salt) {Digest::SHA512.hexdigest("salt")}
-  let(:password_text) {"secret"}
-  let(:password_hash) {Digest::SHA512.hexdigest("#{salt}#{password_text}")}
-  describe ".#included" do
-    it "define singleton methods" do
-      expect(User.respond_to? :define_column).to be_true
-    end
-  end
-  describe "extend methods" do
-    describe ".#define_column" do
-      let(:user) {User.new}
-      it "define singleton methods" do
-        expect(User.respond_to? :authenticate).to be_true
-      end
-      it "define authenticate method" do
-        expect(user.respond_to? :authenticate).to be_true
-      end
-      it "define set_password method" do
-        expect(user.respond_to? :set_password).to be_true
-      end
-      it "define update_password" do
-        expect(user.respond_to? :update_password).to be_true
-      end
-    end
-  end
-  describe "defined methods from define_column" do
-    describe ".#authenticate" do
-      let!(:record) {
-        record = double("record mock")
-        record.stub(:salt).and_return(salt)
-        record.stub(:password).and_return(password_hash)
-        response = [record]
-        User.stub(:where).and_return(response)
-        record
-      }
-      it "user should be returned if authentication is successful" do
-        User.should_receive(:where)
-        expect(User.authenticate("valid_id", password_text)).to eq(record)
-      end
-      it "should return nil if authentication failed" do
-        User.should_receive(:where)
-        expect(User.authenticate("valid_id", "invalid_secret")).to be_nil
-      end
-      it "should return nil if user not found" do
-        User.should_receive(:where).with(:email => "invalid_id").and_return([])
-        expect(User.authenticate("invalid_id", password_text)).to be_nil
-      end
-    end
-    describe "#authenticate" do
-      let!(:user) {
-        user = User.new
-        user.stub(:salt).and_return(salt)
-        user.stub(:password).and_return(password_hash)
-        user
-      }
-      it "should return true if authentication is successful" do
-        expect(user.authenticate(password_text)).to be_true
-      end
-      it "should return false if authentication failed" do
-        expect(user.authenticate("invalid_pass")).to be_false
-      end
-    end
-    describe "#set_password" do
-      let!(:user) {
-        user = User.new
-        user.stub(:salt).and_return(salt)
-        user
-      }
-      it "should return set password" do
-        user.should_receive(:salt=).with(salt)
-        user.should_receive(:password=).with(Passwd.hashing("#{salt}#{password_text}"))
-        expect(user.set_password(password_text)).to eq(password_text)
-      end
-      it "should set random password if not specified" do
-        user.should_receive(:salt=).with(salt)
-        random_password = Passwd.create
-        Passwd.should_receive(:create).and_return(random_password)
-        user.should_receive(:password=).with(Passwd.hashing("#{salt}#{random_password}"))
-        user.set_password
-      end
-      it "should set salt if salt is nil" do
-        mail_addr = "foo@example.com"
-        time_now = Time.now
-        salt2 = Passwd.hashing("#{mail_addr}#{time_now.to_s}")
-        Time.stub(:now).and_return(time_now)
-        user.stub(:email).and_return(mail_addr)
-        user.should_receive(:salt).and_return(nil)
-        user.should_receive(:salt=).with(salt2)
-        user.should_receive(:password=).with(Passwd.hashing("#{salt2}#{password_text}"))
-        user.set_password(password_text)
-      end
-    end
-    describe "#update_password" do
-      let!(:user) {
-        user = User.new
-        user.stub(:salt).and_return(salt)
-        user.stub(:password).and_return(password_hash)
-        user
-      }
-      context "without policy check" do
-        it "should return update password" do
-          pass = "new_password"
-          user.should_receive(:set_password).with(pass).and_return(pass)
-          expect(user.update_password(password_text, pass)).to eq(pass)
-        end
-        it "should generate exception if authentication failed" do
-          Passwd.should_receive(:auth).and_return(false)
-          user.should_not_receive(:set_password)
-          expect {
-            user.update_password("invalid_password", "new_password")
-          }.to raise_error(Passwd::AuthError)
-        end
-      end
-      context "with policy check" do
-        it "should return update password" do
-          pass = "new_password"
-          Passwd.should_receive(:policy_check).and_return(true)
-          user.should_receive(:set_password).with(pass).and_return(pass)
-          expect(user.update_password(password_text, pass, true)).to eq(pass)
-        end
-        it "should generate exception if policy not match" do
-          pass = "new_password"
-          Passwd.should_receive(:policy_check).and_return(false)
-          expect {
-            user.update_password(password_text, pass, true)
-            }.to raise_error(Passwd::PolicyNotMatch)
-        end
-      end
-    end
-  end
-end

data/spec/passwd/configuration/config_spec.rb DELETED

@@ -1,250 +0,0 @@
-# coding: utf-8
-require "spec_helper"
-describe Passwd::Config do
-  let(:config) {Passwd::Config.instance}
-  describe "defined accessors" do
-    it "defined algorithm" do
-      expect(config.respond_to? :algorithm).to be_true
-    end
-    it "defined length" do
-      expect(config.respond_to? :length).to be_true
-    end
-    it "defined lower" do
-      expect(config.respond_to? :lower).to be_true
-    end
-    it "defined upper" do
-      expect(config.respond_to? :upper).to be_true
-    end
-    it "defined number" do
-      expect(config.respond_to? :number).to be_true
-    end
-    it "defined letters_lower" do
-      expect(config.respond_to? :letters_lower).to be_true
-    end
-    it "defined letters_upper" do
-      expect(config.respond_to? :letters_upper).to be_true
-    end
-    it "defined letters_number" do
-      expect(config.respond_to? :letters_number).to be_true
-    end
-  end
-  describe "#initialize" do
-    it "algorithm should be a default" do
-      expect(config.algorithm).to eq(:sha512)
-    end
-    it "length should be a default" do
-      expect(config.length).to eq(8)
-    end
-    it "lower should be a default" do
-      expect(config.lower).to be_true
-    end
-    it "upper should be a default" do
-      expect(config.upper).to be_true
-    end
-    it "number should be a default" do
-      expect(config.number).to be_true
-    end
-    it "letters_lower should be a default" do
-      expect(config.letters_lower).to eq(("a".."z").to_a)
-    end
-    it "letters_upper should be a default" do
-      expect(config.letters_upper).to eq(("A".."Z").to_a)
-    end
-    it "letters_number should be a default" do
-      expect(config.letters_number).to eq(("0".."9").to_a)
-    end
-  end
-  describe "#configure" do
-    before {
-      config.configure do |c|
-        c.length = 20
-        c.lower = false
-        c.upper = false
-        c.number = false
-        c.letters_lower = ["a"]
-        c.letters_upper = ["A"]
-        c.letters_number = ["0"]
-      end
-    }
-    it "set length from block" do
-      expect(config.length).to eq(20)
-    end
-    it "set lower from block" do
-      expect(config.lower).to be_false
-    end
-    it "set upper from block" do
-      expect(config.upper).to be_false
-    end
-    it "set number from block" do
-      expect(config.number).to be_false
-    end
-    it "set letters_lower from block" do
-      expect(config.letters_lower).to eq(["a"])
-    end
-    it "set letters_upper from block" do
-      expect(config.letters_upper).to eq(["A"])
-    end
-    it "set letters_number from block" do
-      expect(config.letters_number).to eq(["0"])
-    end
-    it "raise error unknown setting" do
-      expect {
-        config.configure do |c|
-          c.unknown = true
-        end
-      }.to raise_error
-    end
-  end
-  describe "#merge" do
-    it "set length from hash" do
-      config.merge(length: 10)
-      expect(config.length).to eq(10)
-    end
-    it "set lower from hash" do
-      config.merge(lower: false)
-      expect(config.lower).to be_false
-    end
-    it "set upper from hash" do
-      config.merge(upper: false)
-      expect(config.upper).to be_false
-    end
-    it "set number from hash" do
-      config.merge(number: false)
-      expect(config.number).to be_false
-    end
-    it "set letters_lower from hash" do
-      config.merge(letters_lower: ["a"])
-      expect(config.letters_lower).to eq(["a"])
-    end
-    it "set letters_upper from hash" do
-      config.merge(letters_upper: ["A"])
-      expect(config.letters_upper).to eq(["A"])
-    end
-    it "set letters_number from hash" do
-      config.merge(letters_number: ["0"])
-      expect(config.letters_number).to eq(["0"])
-    end
-    it "raise error unknown setting" do
-      expect {
-        config.merge(unknown: true)
-      }.to raise_error
-    end
-  end
-  describe "#letters" do
-    it "return Array object" do
-      expect(config.letters.is_a? Array).to be_true
-    end
-    it "all elements of the string" do
-      config.letters.each do |l|
-        expect(l.is_a? String).to be_true
-      end
-    end
-    it "return all letters" do
-      all_letters = ("a".."z").to_a.concat(("A".."Z").to_a).concat(("0".."9").to_a)
-      expect(config.letters).to eq(all_letters)
-    end
-    it "return except for the lower case" do
-      config.merge(lower: false)
-      expect(config.letters.include? "a").to be_false
-    end
-    it "return except for the upper case" do
-      config.merge(upper: false)
-      expect(config.letters.include? "A").to be_false
-    end
-    it "return except for the number case" do
-      config.merge(number: false)
-      expect(config.letters.include? "0").to be_false
-    end
-    it "raise error if letters is empty" do
-      config.merge(lower: false, upper: false, number: false)
-      expect {
-        config.letters
-      }.to raise_error
-    end
-  end
-  describe "#reset" do
-    before {
-      config.configure do |c|
-        c.length = 20
-        c.lower = false
-        c.upper = false
-        c.number = false
-        c.letters_lower = ["a"]
-        c.letters_upper = ["A"]
-        c.letters_number = ["0"]
-      end
-      config.reset
-    }
-    it "length should be a default" do
-      expect(config.length).to eq(8)
-    end
-    it "lower should be a default" do
-      expect(config.lower).to be_true
-    end
-    it "upper should be a default" do
-      expect(config.upper).to be_true
-    end
-    it "number should be a default" do
-      expect(config.number).to be_true
-    end
-    it "letters_lower should be a default" do
-      expect(config.letters_lower).to eq(("a".."z").to_a)
-    end
-    it "letters_upper should be a default" do
-      expect(config.letters_upper).to eq(("A".."Z").to_a)
-    end
-    it "letters_number should be a default" do
-      expect(config.letters_number).to eq(("0".."9").to_a)
-    end
-  end
-end