password_strength 1.0.2 → 1.1.0

data/test/active_model_test.rb

@@ -1,7 +1,6 @@
-# -*- encoding: utf-8 -*-
 require "test_helper"
 
-class TestActiveModel < Test::Unit::TestCase
+class TestActiveModel < Minitest::Test
   def setup
     PasswordStrength.enabled = true
     Object.class_eval { remove_const("User") } if defined?(User)
@@ -79,7 +78,7 @@ class TestActiveModel < Test::Unit::TestCase
   def test_lambda_incorrect_level
     User.validates_strength_of :password, :level => lambda {|u| 'incorrect_level' }
 
-    assert_raise(ArgumentError, "The :level option must be one of [:weak, :good, :strong], a proc or a lambda") do
+    assert_raises(ArgumentError, "The :level option must be one of [:weak, :good, :strong], a proc or a lambda") do
       @user.update_attributes :username => "johndoe", :password => "johndoe"
     end
   end

data/test/password_strength_test.html

@@ -1,42 +1,20 @@
-<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
-				"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<!doctype html>
+<html>
 <head>
-	<title>JavaScript unit test file</title>
-	<meta http-equiv="content-type" content="text/html; charset=utf-8" />
-	<script src="jsunittest/jsunittest.js" type="text/javascript"></script>
-	<script src="../app/assets/javascripts/password_strength.js" type="text/javascript"></script>
+  <meta charset="utf-8">
+  <title>PasswordStrength</title>
 
-	<link rel="stylesheet" href="jsunittest/unittest.css" type="text/css" />
-
-	<style type="text/css" media="screen">
-		#logger p {
-			background: #ffc;
-			padding: 5px;
-		}
-	</style>
+  <link rel="stylesheet" href="../node_modules/qunitjs/qunit/qunit.css">
+  <script src="../node_modules/qunitjs/qunit/qunit.js"></script>
+  <script src="../node_modules/jquery/dist/jquery.js"></script>
+  <script src="../app/assets/javascripts/password_strength.js"></script>
+  <script src="../app/assets/javascripts/jquery_strength.js"></script>
 </head>
 <body>
 
-<div id="content">
-	<div id="header">
-		<h1>JavaScript unit test file</h1>
-		<p>
-			This file tests <strong>password_strength.js</strong>.
-		</p>
-	</div>
-
-	<!-- Log output (one per Runner, via {testLog: "testlog"} option)-->
-	<div id="testlog"></div>
-
-	<!-- General debugger -->
-	<div id="logger"></div>
-
-	<!-- Put sample/test html here -->
-	<div id="sample">
-	</div>
-</div>
+<div id="qunit"></div>
+<div id="sample"></div>
 
-<script src="password_strength_test.js" type="text/javascript"></script>
+<script src="password_strength_test.js"></script>
 </body>
 </html>

data/test/password_strength_test.js

@@ -1,273 +1,343 @@
-new Test.Unit.Runner({
-  setup: function() {
+var strength;
+
+QUnit.module("PasswordStrength", {
+  beforeEach: function() {
     strength = new PasswordStrength();
     strength.username = "johndoe";
     strength.password = "mypass";
-  },
+  }
+});
 
-  teardown: function() {
-  },
+QUnit.test("shortcut", function(assert) {
+  strength = PasswordStrength.test("johndoe", "mypass");
 
-  // Shortcut
-  testShortcut: function() { with(this) {
-    strength = PasswordStrength.test("johndoe", "mypass");
-
-    assertEqual("johndoe", strength.username);
-    assertEqual("mypass", strength.password);
-    assertNotNull(strength.status);
-  }},
-
-  // Good strength
-  testGoodStrength: function() { with(this) {
-    strength.status = "good";
-    assert(strength.isGood());
-    assert(strength.isValid("good"));
-    assertEqual(false, strength.isWeak());
-    assertEqual(false, strength.isStrong());
-    assertEqual(false, strength.isInvalid());
-  }},
-
-  // Weak strength
-  testWeakStrength: function() { with(this) {
-    strength.status = "weak";
-    assert(strength.isWeak());
-    assert(strength.isValid("weak"));
-    assertEqual(false, strength.isStrong());
-    assertEqual(false, strength.isGood());
-    assertEqual(false, strength.isInvalid());
-  }},
-
-  // Strong strength
-  testStrongStrength: function() { with(this) {
-    strength.status = "strong";
-    assert(strength.isStrong());
-    assert(strength.isValid("strong"));
-    assert(strength.isValid("good"));
-    assertEqual(false, strength.isWeak());
-    assertEqual(false, strength.isGood());
-    assertEqual(false, strength.isInvalid());
-  }},
-
-  // Short password
-  testShortPassword: function() { with(this) {
-    strength.password = "a";
-    strength.test();
+  assert.equal("johndoe", strength.username);
+  assert.equal("mypass", strength.password);
+  assert.ok(strength.status);
+});
 
-    assertEqual(0, strength.score);
-    assertEqual("weak", strength.status);
-  }},
+QUnit.test("detect good strength", function(assert) {
+  strength.status = "good";
 
-  // Password equals to username
-  testPasswordEqualsToUsername: function() { with(this) {
-    strength.username = "johndoe";
-    strength.password = "johndoe";
-    strength.test();
+  assert.ok(strength.isGood());
+  assert.ok(strength.isValid("good"));
+  assert.equal(strength.isWeak(), false);
+  assert.equal(strength.isStrong(), false);
+  assert.equal(strength.isInvalid(), false);
+});
 
-    assertEqual(0, strength.score);
-    assertEqual("weak", strength.status);
-  }},
+QUnit.test("detect weak strength", function(assert) {
+  strength.status = "weak";
 
-  // Strong password
-  testStrongPassword: function() { with(this) {
-    strength.password = "^P4ssw0rd$";
-    strength.test();
+  assert.ok(strength.isWeak());
+  assert.ok(strength.isValid("weak"));
+  assert.equal(strength.isStrong(), false);
+  assert.equal(strength.isGood(), false);
+  assert.equal(strength.isInvalid(), false);
+});
 
-    assertEqual(100, strength.score);
-    assertEqual("strong", strength.status);
-  }},
+QUnit.test("detect strong strength", function(assert) {
+  strength.status = "strong";
 
-  // Weak password
-  testWeakPassword: function() { with(this) {
-    strength.password = "ytrewq";
-    strength.test()
-    assertEqual("weak", strength.status);
+  assert.ok(strength.isStrong());
+  assert.ok(strength.isValid("strong"));
+  assert.ok(strength.isValid("good"));
+  assert.equal(strength.isWeak(), false);
+  assert.equal(strength.isGood(), false);
+  assert.equal(strength.isInvalid(), false);
+});
 
-    strength.password = "asdfghjklm";
-    strength.test();
-    assertEqual("weak", strength.status);
-  }},
+QUnit.test("test short password", function(assert) {
+  strength.password = "abc";
+  strength.test();
 
-  // Good password
-  testGoodPassword: function() { with(this) {
-    strength.password = "12345asdfg";
-    strength.test();
-    assertEqual("good", strength.status);
+  assert.equal(strength.score, 0);
+  assert.equal(strength.status, "weak");
+});
 
-    strength.password = "12345ASDFG";
-    strength.test();
-    assertEqual("good", strength.status);
+QUnit.test("test password equal to username", function(assert) {
+  strength.username = "johndoe";
+  strength.password = "johndoe";
+  strength.test();
 
-    strength.password = "12345Aa";
-    strength.test();
-    assertEqual("good", strength.status);
-  }},
-
-  // Penalize password with chars only
-  testPenalizePasswordWithCharsOnly: function() { with(this) {
-    strength.password = "abcdef";
-    assertEqual(-15, strength.scoreFor("only_chars"));
-  }},
-
-  // Penalize password with numbers only
-  testPenalizePasswordWithNumbersOnly: function() { with(this) {
-    strength.password = "12345";
-    assertEqual(-15, strength.scoreFor("only_numbers"));
-  }},
-
-  // Penalize password equals to username
-  testPenalizePasswordEqualsToUsername: function() { with(this) {
-    strength.username = "johndoe";
-    strength.password = "johndoe";
-    assertEqual(-100, strength.scoreFor("username"));
-  }},
+  assert.equal(strength.score, 0);
+  assert.equal(strength.status, "weak");
+});
 
-  // Penalize password with username
-  testPenalizePasswordWithUsername: function() { with(this) {
-    strength.username = "johndoe";
-    strength.password = "$1234johndoe^";
-    assertEqual(-15, strength.scoreFor("username"));
-  }},
-
-  // Penalize number sequence
-  testPenalizeNumberSequence: function() { with(this) {
-    strength.password = "123";
-    assertEqual(-15, strength.scoreFor("sequences"));
-
-    strength.password = "123123";
-    assertEqual(-30, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize letter sequence
-  testPenalizeLetterSequence: function() { with(this) {
-    strength.password = "abc";
-    assertEqual(-15, strength.scoreFor("sequences"));
-
-    strength.password = "abcabc";
-    assertEqual(-30, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize number and letter sequence
-  testPenalizeNumberAndLetterSequence: function() { with(this) {
-    strength.password = "123abc";
-    assertEqual(-30, strength.scoreFor("sequences"));
-
-    strength.password = "123abc123abc";
-    assertEqual(-60, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize same letter sequence
-  testPenalizeSameLetterSequence: function() { with(this) {
-    strength.password = "aaa";
-    assertEqual(-30, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize same number sequence
-  testPenalizeSameNumberSequence: function() { with(this) {
-    strength.password = "111";
-    assertEqual(-30, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize reversed sequence
-  testPenalizeReversedSequence: function() { with(this) {
-    strength.password = "cba321";
-    assertEqual(-30, strength.scoreFor("sequences"));
-
-    strength.password = "cba321cba321";
-    assertEqual(-60, strength.scoreFor("sequences"));
-  }},
-
-  // Penalize short password
-  testPenalizeShortPassword: function() { with(this) {
-    strength.password = "123";
-    assertEqual(-100, strength.scoreFor("password_size"));
-  }},
-
-  // Penalize repetitions
-  testPenalizeRepetitions: function() { with(this) {
-    strength.password = "abcdabcdabcd";
-    assertEqual(-36, strength.scoreFor("repetitions"));
-  }},
-
-  // Password length
-  testPasswordLength: function() { with(this) {
-    strength.password = "12345";
-    assertEqual(-100, strength.scoreFor("password_size"));
-  }},
-
-  // Password with numbers
-  testPasswordWithNumbers: function() { with(this) {
-    strength.password = "123";
-    assertEqual(5, strength.scoreFor("numbers"));
-  }},
-
-  // Password with symbols
-  testPasswordWithSymbols: function() { with(this) {
-    strength.password = "$!";
-    assertEqual(5, strength.scoreFor("symbols"));
-  }},
-
-  // Password with uppercase and lowercase
-  testPasswordWithUppercaseAndLowercase: function() { with(this) {
-    strength.password = "aA";
-    assertEqual(10, strength.scoreFor("uppercase_lowercase"));
-  }},
-
-  // numbers and chars
-  testNumbersAndChars: function() { with(this) {
-    strength.password = "a1";
-    assertEqual(15, strength.scoreFor("numbers_chars"));
-  }},
-
-  // Numbers and symbols
-  testNumbersAndSymbols: function() { with(this) {
-    strength.password = "1$";
-    assertEqual(15, strength.scoreFor("numbers_symbols"));
-  }},
-
-  // Symbols and chars
-  testSymbolsAndChars: function() { with(this) {
-    strength.password = "a$";
-    assertEqual(15, strength.scoreFor("symbols_chars"));
-  }},
-
-  // Two char repetition
-  testTwoCharRepetition: function() { with(this) {
-    assertEqual(3, strength.repetitions("11221122", 2));
-  }},
-
-  // Three char repetition
-  testThreeCharRepetition: function() { with(this) {
-    assertEqual(3, strength.repetitions("123123123", 3));
-  }},
-
-  // Four char repetition
-  testFourCharRepetition: function() { with(this) {
-    assertEqual(4, strength.repetitions("abcdabcdabcd", 4));
-  }},
-
-  // Exclude option as regular expression
-  testExcludeOptionAsRegularExpression: function() { with(this) {
-    strength.password = "password with whitespaces";
-    strength.exclude = /\s/;
-    strength.test();
+QUnit.test("test strong password", function(assert) {
+  strength.password = "^P4ssw0rd$";
+  strength.test();
+
+  assert.equal(strength.score, 100);
+  assert.equal(strength.status, "strong");
+});
+
+QUnit.test("test weak password", function(assert) {
+  strength.password = "ytrewq";
+  strength.test()
+  assert.equal(strength.status, "weak");
+
+  strength.password = "asdfghjklm";
+  strength.test();
+  assert.equal(strength.status, "weak");
+});
+
+QUnit.test("test good password", function(assert) {
+  strength.password = "12345asdfg";
+  strength.test();
+  assert.equal(strength.status, "good");
+
+  strength.password = "12345ASDFG";
+  strength.test();
+  assert.equal(strength.status, "good");
+
+  strength.password = "12345Aa";
+  strength.test();
+  assert.equal(strength.status, "good");
+});
+
+QUnit.test("penalize password with chars-only", function(assert) {
+  strength.password = "abcdef";
+  assert.equal(strength.scoreFor("only_chars"), -15);
+});
+
+QUnit.test("penalize password numbers-only", function(assert) {
+  strength.password = "12345";
+  assert.equal(strength.scoreFor("only_numbers"), -15);
+});
+
+QUnit.test("penalize password equal to username", function(assert) {
+  strength.username = "johndoe";
+  strength.password = "johndoe";
+  assert.equal(strength.scoreFor("username"), -100);
+});
+
+QUnit.test("penalize password that contains username", function(assert) {
+  strength.username = "johndoe";
+  strength.password = "$1234johndoe^";
+  assert.equal(strength.scoreFor("username"), -15);
+});
+
+QUnit.test("penalize number sequence", function(assert) {
+  strength.password = "123";
+  assert.equal(strength.scoreFor("sequences"), -15);
+
+  strength.password = "123123";
+  assert.equal(strength.scoreFor("sequences"), -30);
+});
+
+QUnit.test("penalize letter sequence", function(assert) {
+  strength.password = "abc";
+  assert.equal(strength.scoreFor("sequences"), -15);
+
+  strength.password = "abcabc";
+  assert.equal(strength.scoreFor("sequences"), -30);
+});
 
-    assertEqual("invalid", strength.status);
-    assert(strength.isInvalid());
-    assertEqual(false, strength.isValid());
-  }},
+QUnit.test("penalize number and letter sequence", function(assert) {
+  strength.password = "123abc";
+  assert.equal(strength.scoreFor("sequences"), -30);
 
-  // Set common words
-  testSetCommonWords: function() { with(this) {
-    assert(PasswordStrength.commonWords.length > 500);
-  }},
+  strength.password = "123abc123abc";
+  assert.equal(strength.scoreFor("sequences"), -60);
+});
+
+QUnit.test("penalize same letter sequence", function(assert) {
+  strength.password = "aaa";
+  assert.equal(strength.scoreFor("sequences"), -30);
+});
+
+QUnit.test("penalize same number sequence", function(assert) {
+  strength.password = "111";
+  assert.equal(strength.scoreFor("sequences"), -30);
+});
+
+QUnit.test("penalize reversed sequence", function(assert) {
+  strength.password = "cba321";
+  assert.equal(strength.scoreFor("sequences"), -30);
+
+  strength.password = "cba321cba321";
+  assert.equal(strength.scoreFor("sequences"), -60);
+});
+
+QUnit.test("penalize short password", function(assert) {
+  strength.password = "123";
+  assert.equal(strength.scoreFor("password_size"), -100);
+});
+
+QUnit.test("penalize repetitions", function(assert) {
+  strength.password = "abcdabcdabcd";
+  assert.equal(strength.scoreFor("repetitions"), -36);
+});
+
+QUnit.test("penalize password length", function(assert) {
+  strength.password = "12345";
+  assert.equal(strength.scoreFor("password_size"), -100);
+});
 
-  // Reject common passwords
-  testRejectCommonPasswords: function() { with(this) {
-    strength.password = PasswordStrength.commonWords[0];
+QUnit.test("reward password with numbers", function(assert) {
+  strength.password = "123";
+  assert.equal(strength.scoreFor("numbers"), 5);
+});
+
+QUnit.test("reward password with symbols", function(assert) {
+  strength.password = "$!";
+  assert.equal(strength.scoreFor("symbols"), 5);
+});
+
+QUnit.test("reward mixed-case passwords", function(assert) {
+  strength.password = "aA";
+  assert.equal(strength.scoreFor("uppercase_lowercase"), 10);
+});
+
+QUnit.test("reward password that contains both numbers and letters", function(assert) {
+  strength.password = "a1";
+  assert.equal(strength.scoreFor("numbers_chars"), 15);
+});
+
+QUnit.test("reward password that contains both numbers and symbols", function(assert) {
+  strength.password = "1$";
+  assert.equal(strength.scoreFor("numbers_symbols"), 15);
+});
+
+QUnit.test("reward password that contains symbols and chars", function(assert) {
+  strength.password = "a$";
+  assert.equal(strength.scoreFor("symbols_chars"), 15);
+});
+
+QUnit.test("detect two-chars repetitions", function(assert) {
+  assert.equal(strength.repetitions("11221122", 2), 3);
+});
+
+QUnit.test("detect three-chars repetitions", function(assert) {
+  assert.equal(strength.repetitions("123123123", 3), 3);
+});
+
+QUnit.test("detect four-chars repetitions", function(assert) {
+  assert.equal(strength.repetitions("abcdabcdabcd", 4), 4);
+});
+
+QUnit.test("use exclude option as regular expression", function(assert) {
+  strength.password = "password with whitespaces";
+  strength.exclude = /\s/;
+  strength.test();
+
+  assert.equal(strength.status, "invalid");
+  assert.ok(strength.isInvalid());
+  assert.equal(strength.isValid(), false);
+});
+
+QUnit.test("set common words", function(assert) {
+  assert.ok(PasswordStrength.commonWords.length > 500);
+});
+
+QUnit.test("reject common passwords", function(assert) {
+  strength.password = PasswordStrength.commonWords[0];
+  strength.test();
+
+  assert.equal(strength.status, "invalid");
+  assert.ok(strength.isInvalid());
+  assert.equal(strength.isValid(), false);
+});
+
+QUnit.test("reject long passwords using same character", function(assert) {
+    strength.password = "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa";
     strength.test();
+    assert.equal(strength.status, "invalid");
+    // assert @strength.invalid?
+    // refute @strength.valid?
+});
+
+QUnit.module("PasswordStrength: jQuery integration", {
+  beforeEach: function() {
+    $("#sample").html('<input type="text" id="username"><input type="text" id="password">');
+    $("#username").val("johndoe");
+    $("#password").val("mypass");
+  },
+
+  afterEach: function() {
+    $("#sample").empty();
+  }
+});
+
+QUnit.test("test defaults", function(assert) {
+  $.strength("#username", "#password");
+  $("#password").trigger("keydown");
+
+  assert.equal($("img.strength").length, 1);
+});
+
+QUnit.test("custom callback", function(assert) {
+  assert.expect(5);
+
+  $.strength("#username", "#password", function(username, password, strength){
+    assert.ok($(username).is("#username"));
+    assert.ok($(password).is("#password"));
+    assert.equal(strength.username, "johndoe");
+    assert.equal(strength.password, "mypass");
+    assert.equal(strength.status, "weak");
+  });
+
+  $("#password").trigger("keydown");
+});
+
+QUnit.test("apply callback when username is triggered", function(assert) {
+  $.strength("#username", "#password");
+  $("#username").trigger("keydown");
+
+  assert.equal($("img.strength").length, 1);
+});
+
+QUnit.test("apply weak status to image", function(assert) {
+  $.strength("#username", "#password");
+  $("#password").trigger("keydown");
+
+  assert.equal($("img.weak").length, 1);
+  assert.equal($("img.strength").attr("src"), "/images/weak.png");
+});
+
+QUnit.test("apply good status to image", function(assert) {
+  $("#password").val("12345asdfg");
+  $.strength("#username", "#password");
+  $("#password").trigger("keydown");
+
+  assert.equal($("img.good").length, 1);
+  assert.equal($("img.strength").attr("src"), "/images/good.png");
+});
+
+QUnit.test("apply strong status to image", function(assert) {
+  $("#password").val("^P4ssw0rd$");
+  $.strength("#username", "#password");
+  $("#password").trigger("keydown");
+
+  assert.equal($("img.strong").length, 1);
+  assert.equal($("img.strength").attr("src"), "/images/strong.png");
+});
+
+QUnit.test("missing username element: use selector as text", function(assert) {
+  $("#password").val("^P4ssw0rd$");
+  $.strength("root", "#password", function(username, password, strength){
+    assert.equal(strength.username, "root");
+    assert.equal(strength.password, "^P4ssw0rd$");
+  });
+
+  $("#password").trigger("keydown");
+});
+
+QUnit.test("missing password element: use selector as text", function(assert) {
+  $.strength("#username", "mypass", function(username, password, strength){
+    assert.equal(strength.username, "johndoe");
+    assert.equal(strength.password, "mypass");
+  });
+
+  $("#username").trigger("keydown");
+});
+
+QUnit.test("test exclude option as regular expression", function(assert) {
+  $.strength("#username", "password with whitespaces", {exclude: /\s/}, function(username, password, strength){
+    assert.equal(strength.status, "invalid");
+    assert.ok(strength.isInvalid());
+  });
 
-    assertEqual("invalid", strength.status);
-    assert(strength.isInvalid());
-    assertEqual(false, strength.isValid());
-  }}
+  $("#username").trigger("keydown");
 });