puffer 0.0.28 → 0.0.29

data/Gemfile

@@ -9,6 +9,7 @@ group :development, :test do
   gem "mongoid"
   gem "bson_ext"
 
+  gem 'devise'
 
   gem "rspec-rails"
   gem "capybara"

data/Gemfile.lock

@@ -45,6 +45,10 @@ GEM
     childprocess (0.2.2)
       ffi (~> 1.0.6)
     database_cleaner (0.6.7)
+    devise (1.4.5)
+      bcrypt-ruby (~> 3.0)
+      orm_adapter (~> 0.0.3)
+      warden (~> 1.0.3)
     diff-lcs (1.1.3)
     erubis (2.7.0)
     fabrication (1.1.0)
@@ -142,6 +146,8 @@ GEM
       polyglot
       polyglot (>= 0.3.1)
     tzinfo (0.3.29)
+    warden (1.0.5)
+      rack (>= 1.0)
     xpath (0.1.4)
       nokogiri (~> 1.3)
 
@@ -152,6 +158,7 @@ DEPENDENCIES
   bson_ext
   capybara
   database_cleaner
+  devise
   fabrication
   forgery
   guard

data/VERSION

@@ -1 +1 @@
-0.0.28
+0.0.29

data/app/controllers/admin/puffer_users_controller.rb

@@ -0,0 +1,3 @@
+class Admin::PufferUsersController < Puffer::PufferUsersBase
+
+end

data/app/controllers/admin/sessions_controller.rb

@@ -1,35 +1,23 @@
 class Admin::SessionsController < Puffer::SessionsBase
-  unloadable
-  # This is example session controller for puffer authentication.
-  # You can define your own actions.
-  # Also, you can redefine <tt>new<tt> action view as you wish,
-  # but more effectively will be definig fields with standart
-  # puffer DSL:
-  #   create do
-  #     field :login
-  #     field :password
-  #     field :remember_me
-  #   end
-  #
-  # By default defined <tt>email<tt> and <tt>password<tt> fields.
-  # If puffer can`t calculate field type, just set it manually.
 
   def new
-    # @record = UserSession.new
+    @record = PufferUser.new
   end
 
   def create
-    # @record = UserSession.new params[:user_session]
-    # if @record.save
-    #   redirect_back_or_default puffer_root_url
-    # else
-    #   render 'new'
-    # end
+    @record = PufferUser.find_by_email(params[:puffer_user][:email])
+    if @record && @record.authenticate(params[:puffer_user][:password])
+      session[:puffer_user_id] = @record.id
+      redirect_to admin_root_url
+    else
+      @record = PufferUser.new :email => params[:puffer_user][:email]
+      render 'new'
+    end
   end
 
   def destroy
-    # current_user_session.destroy
-    # redirect_to new_puffer_session_url
+    session.delete(:puffer_user_id)
+    redirect_to new_admin_session_url
   end
 
 end

data/app/controllers/puffer/base.rb

@@ -1,8 +1,10 @@
 module Puffer
   class Base < ApplicationController
     unloadable
-
     pufferize!
+
+    before_filter :require_puffer_user
+
     define_fieldset :index, :form
     define_fieldset :show, :fallbacks => :index
     define_fieldset :create, :update, :fallbacks => :form

data/app/controllers/puffer/dashboard_base.rb

@@ -1,8 +1,9 @@
 class Puffer::DashboardBase < ApplicationController
   unloadable
-
   pufferize!
 
+  before_filter :require_puffer_user
+
   layout 'puffer_dashboard'
 
   def index

data/app/controllers/puffer/puffer_users_base.rb

@@ -0,0 +1,21 @@
+module Puffer
+  class PufferUsersBase < Puffer::Base
+
+    setup do
+      group :users
+    end
+
+    index do
+      field :email
+      field :roles
+    end
+
+    form do
+      field :email
+      field :password
+      field :password_confirmation
+      field :roles
+    end
+
+  end
+end

data/app/controllers/puffer/sessions_base.rb

@@ -1,7 +1,9 @@
 class Puffer::SessionsBase < ApplicationController
   unloadable
-
   pufferize!
+
+  before_filter :require_puffer_user, :only => :destroy
+
   define_fieldset :create
 
   layout 'puffer_sessions'
@@ -13,4 +15,22 @@ class Puffer::SessionsBase < ApplicationController
     field :password, :type => :password
   end
 
+  def new
+    # @record = UserSession.new
+  end
+
+  def create
+    # @record = UserSession.new params[:user_session]
+    # if @record.save
+    #   redirect_back_or_default puffer_root_url
+    # else
+    #   render 'new'
+    # end
+  end
+
+  def destroy
+    # current_user_session.destroy
+    # redirect_to new_puffer_session_url
+  end
+
 end

data/app/controllers/puffer/sessions_devise_base.rb

@@ -0,0 +1,34 @@
+class Puffer::SessionsDeviseBase < Puffer::SessionsBase
+  # include Devise::Controllers::InternalHelpers
+
+  # GET /resource/sign_in
+  # def new
+  #   @record = User.new
+  # end
+
+  # POST /resource/sign_in
+  # def create
+  #   @record = warden.authenticate!(:scope => :user, :recall => "#{controller_path}#new")
+  #   sign_in(user, @record)
+  #   respond_with @record, :location => params[:return_to]
+  # end
+
+  # GET /resource/sign_out
+  # def destroy
+  #   signed_in = signed_in?(resource_name)
+  #   Devise.sign_out_all_scopes ? sign_out : sign_out(resource_name)
+  #   set_flash_message :notice, :signed_out if signed_in
+
+  #   # We actually need to hardcode this, as Rails default responder doesn't
+  #   # support returning empty response on GET request
+  #   respond_to do |format|
+  #     format.any(*navigational_formats) { redirect_to after_sign_out_path_for(resource_name) }
+  #     format.all do
+  #       method = "to_#{request_format}"
+  #       text = {}.respond_to?(method) ? {}.send(method) : ""
+  #       render :text => text, :status => :ok
+  #     end
+  #   end
+  # end
+  
+end

data/app/models/puffer/puffer_user.rb

@@ -0,0 +1,24 @@
+class Puffer::PufferUser < ActiveRecord::Base
+  self.abstract_class = true
+
+  attr_protected :password_digest
+  
+  has_secure_password
+
+  validates :email, :uniqueness => true, :presence => true
+  validates :password, :presence => true, :length => {:minimum => 6}, :on => :create
+
+  def roles= value
+    value = value.split(',').map(&:strip).map(&:presence) if value.is_a?(String)
+    write_attribute(:roles, value.join(', '))
+  end
+
+  def roles_array
+    roles.split(',').map(&:strip).map(&:presence)
+  end
+
+  def has_role? role
+    roles_array.include?(role.to_s)
+  end
+
+end

data/app/models/puffer_user.rb

@@ -0,0 +1,3 @@
+class PufferUser < Puffer::PufferUser
+
+end

data/app/views/layouts/puffer_base.html.erb

@@ -16,7 +16,7 @@
           <%= link_to t('puffer.logo'), admin_root_path %>
         </div>
         <%= yield :header %>
-        <% if respond_to?(:current_user) && !current_user %>
+        <% if current_puffer_user %>
           <div class="logout">
             <%= link_to t('puffer.logout'), admin_session_url, :method => :delete %>
           </div>

data/app/views/puffer/sessions_base/new.html.erb

@@ -1,4 +1,4 @@
-<%= form_for record, :url => puffer_session_path do |f| %>
+<%= form_for record, :url => admin_session_path, :method => :post do |f| %>
   <ul class="form">
   <% create_fields.each do |field| -%>
     <li><%= f.puffer_field field %></li>
@@ -9,4 +9,3 @@
     <%= f.submit 'Login' %>
   </div>
 <% end %>
-

data/config/routes.rb

@@ -1,8 +1,7 @@
-Puffer::Engine.routes.draw do
+Rails.application.routes.draw do
 
   namespace :admin do
-  	root :to => 'dashboard#index'
-    resource :session
+    resource :session, :only => [:new, :create, :destroy]
   end
   
 end

data/db/migrate/20110912095647_create_puffer_users.rb

@@ -0,0 +1,11 @@
+class CreatePufferUsers < ActiveRecord::Migration
+  def change
+    create_table :puffer_users do |t|
+      t.string :email
+      t.string :password_digest
+      t.string :roles
+
+      t.timestamps
+    end
+  end
+end

data/lib/puffer/controller/auth.rb

@@ -0,0 +1,31 @@
+module Puffer
+  module Controller
+    module Auth
+      extend ActiveSupport::Concern
+
+      included do
+        helper_method :current_puffer_user
+      end
+
+      module InstanceMethods
+
+        def current_puffer_user
+          @current_puffer_user ||= super rescue PufferUser.find(session[:puffer_user_id]) if session[:puffer_user_id]
+        end
+
+        def require_puffer_user
+          unless has_puffer_access?(namespace)
+            redirect_to new_admin_session_url(:return_to => request.fullpath)
+            return false
+          end
+        end
+
+        def has_puffer_access? namespace
+          super rescue (current_puffer_user && current_puffer_user.has_role?(namespace))
+        end
+
+      end
+
+    end
+  end
+end

data/lib/puffer/controller/mutate.rb

@@ -6,12 +6,16 @@ module Puffer
       included do
         layout 'puffer'
         helper :puffer
-        delegate :namespace, :model, :model_name, :to => 'self.class'
+        delegate :model, :model_name, :to => 'self.class'
         helper_method :namespace, :resource, :record, :records
       end
 
       module InstanceMethods
 
+        def namespace
+          params[:namespace] || self.class.namespace
+        end
+
         def resource
           @resource ||= Puffer::Resource.new params, self
         end

data/lib/puffer/extensions/controller.rb

@@ -18,6 +18,7 @@ module Puffer
             include Puffer::Controller::Mutate
             include Puffer::Controller::Dsl
             include Puffer::Controller::Config
+            include Puffer::Controller::Auth
           end
         end
 

data/lib/puffer/extensions/engine.rb

@@ -24,7 +24,7 @@ module Puffer
 
         included do
           initializer :"puffer.add_view_paths", :after => :add_view_paths do |app|
-            Puffer::Component::Base.prepend_view_path paths["app/components"].existent
+            Puffer::Component::Base.prepend_view_path paths["app/components"].existent if paths["app/components"]
           end
         end
       end

data/lib/puffer/extensions/mapper.rb

@@ -25,7 +25,7 @@ module Puffer
 
             unless puffer[namespace]
               @scope[:module] = 'admin'
-              root :to => 'dashboard#index'
+              root :to => 'dashboard#index', :namespace => namespace
               @scope[:module] = namespace
             end
 

data/puffer.gemspec

@@ -5,11 +5,11 @@
 
 Gem::Specification.new do |s|
   s.name = %q{puffer}
-  s.version = "0.0.28"
+  s.version = "0.0.29"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = [%q{pyromaniac}]
-  s.date = %q{2011-09-11}
+  s.date = %q{2011-09-12}
   s.description = %q{In Soviet Russia puffer admins you}
   s.email = %q{kinwizard@gmail.com}
   s.extra_rdoc_files = [
@@ -65,13 +65,18 @@ Gem::Specification.new do |s|
     "app/components/text/form.html.erb",
     "app/components/text_component.rb",
     "app/controllers/admin/dashboard_controller.rb",
+    "app/controllers/admin/puffer_users_controller.rb",
     "app/controllers/admin/sessions_controller.rb",
     "app/controllers/puffer/base.rb",
     "app/controllers/puffer/dashboard_base.rb",
+    "app/controllers/puffer/puffer_users_base.rb",
     "app/controllers/puffer/sessions_base.rb",
+    "app/controllers/puffer/sessions_devise_base.rb",
     "app/controllers/puffer/tree_base.rb",
     "app/helpers/puffer_helper.rb",
     "app/helpers/puffer_tree_helper.rb",
+    "app/models/puffer/puffer_user.rb",
+    "app/models/puffer_user.rb",
     "app/views/layouts/puffer.html.erb",
     "app/views/layouts/puffer_base.html.erb",
     "app/views/layouts/puffer_dashboard.html.erb",
@@ -89,6 +94,7 @@ Gem::Specification.new do |s|
     "app/views/puffer/tree_base/tree.html.erb",
     "config/locales/puffer.yml",
     "config/routes.rb",
+    "db/migrate/20110912095647_create_puffer_users.rb",
     "lib/generators/puffer/component/USAGE",
     "lib/generators/puffer/component/component_generator.rb",
     "lib/generators/puffer/component/templates/component.rb",
@@ -99,6 +105,7 @@ Gem::Specification.new do |s|
     "lib/puffer.rb",
     "lib/puffer/component.rb",
     "lib/puffer/controller/actions.rb",
+    "lib/puffer/controller/auth.rb",
     "lib/puffer/controller/config.rb",
     "lib/puffer/controller/dsl.rb",
     "lib/puffer/controller/mutate.rb",
@@ -137,7 +144,6 @@ Gem::Specification.new do |s|
     "spec/dummy/app/controllers/admin/news_controller.rb",
     "spec/dummy/app/controllers/admin/posts_controller.rb",
     "spec/dummy/app/controllers/admin/profiles_controller.rb",
-    "spec/dummy/app/controllers/admin/sessions_controller.rb",
     "spec/dummy/app/controllers/admin/tagged_posts_controller.rb",
     "spec/dummy/app/controllers/admin/tags_controller.rb",
     "spec/dummy/app/controllers/admin/users_controller.rb",
@@ -165,11 +171,13 @@ Gem::Specification.new do |s|
     "spec/dummy/config/environments/production.rb",
     "spec/dummy/config/environments/test.rb",
     "spec/dummy/config/initializers/backtrace_silencers.rb",
+    "spec/dummy/config/initializers/devise.rb",
     "spec/dummy/config/initializers/inflections.rb",
     "spec/dummy/config/initializers/mime_types.rb",
     "spec/dummy/config/initializers/secret_token.rb",
     "spec/dummy/config/initializers/session_store.rb",
     "spec/dummy/config/initializers/wrap_parameters.rb",
+    "spec/dummy/config/locales/devise.en.yml",
     "spec/dummy/config/locales/en.yml",
     "spec/dummy/config/mongoid.yml",
     "spec/dummy/config/routes.rb",
@@ -182,6 +190,7 @@ Gem::Specification.new do |s|
     "spec/dummy/db/migrate/20101011160326_create_taggings.rb",
     "spec/dummy/db/migrate/20110107082706_create_friendships.rb",
     "spec/dummy/db/migrate/20110301072545_create_news.rb",
+    "spec/dummy/db/migrate/20110912114129_create_puffer_users.rb",
     "spec/dummy/db/schema.rb",
     "spec/dummy/db/seeds.rb",
     "spec/dummy/public/404.html",
@@ -221,6 +230,7 @@ Gem::Specification.new do |s|
       s.add_development_dependency(%q<sqlite3>, [">= 0"])
       s.add_development_dependency(%q<mongoid>, [">= 0"])
       s.add_development_dependency(%q<bson_ext>, [">= 0"])
+      s.add_development_dependency(%q<devise>, [">= 0"])
       s.add_development_dependency(%q<rspec-rails>, [">= 0"])
       s.add_development_dependency(%q<capybara>, [">= 0"])
       s.add_development_dependency(%q<database_cleaner>, [">= 0"])
@@ -238,6 +248,7 @@ Gem::Specification.new do |s|
       s.add_dependency(%q<sqlite3>, [">= 0"])
       s.add_dependency(%q<mongoid>, [">= 0"])
       s.add_dependency(%q<bson_ext>, [">= 0"])
+      s.add_dependency(%q<devise>, [">= 0"])
       s.add_dependency(%q<rspec-rails>, [">= 0"])
       s.add_dependency(%q<capybara>, [">= 0"])
       s.add_dependency(%q<database_cleaner>, [">= 0"])
@@ -256,6 +267,7 @@ Gem::Specification.new do |s|
     s.add_dependency(%q<sqlite3>, [">= 0"])
     s.add_dependency(%q<mongoid>, [">= 0"])
     s.add_dependency(%q<bson_ext>, [">= 0"])
+    s.add_dependency(%q<devise>, [">= 0"])
     s.add_dependency(%q<rspec-rails>, [">= 0"])
     s.add_dependency(%q<capybara>, [">= 0"])
     s.add_dependency(%q<database_cleaner>, [">= 0"])

data/spec/dummy/config/application.rb

@@ -5,6 +5,7 @@ require 'rails/all'
 Bundler.require
 require 'puffer'
 require 'nested_set'
+require 'devise'
 
 module Dummy
   class Application < Rails::Application

data/spec/dummy/config/initializers/devise.rb

@@ -0,0 +1,211 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in Devise::Mailer,
+  # note that it will be overwritten if you use your own mailer class with default "from" parameter.
+  config.mailer_sender = "please-change-me-at-config-initializers-devise@example.com"
+
+  # Configure the class responsible to send e-mails.
+  # config.mailer = "Devise::Mailer"
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require 'devise/orm/mongoid'
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating a user. The default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating a user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # You can also supply a hash where the value is a boolean determining whether
+  # or not authentication should be aborted when the value is not present.
+  # config.authentication_keys = [ :email ]
+
+  # Configure parameters from the request object used for authentication. Each entry
+  # given should be a request method and it will automatically be passed to the
+  # find_for_authentication method and considered in your model lookup. For instance,
+  # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
+  # The same considerations mentioned for authentication_keys also apply to request_keys.
+  # config.request_keys = []
+
+  # Configure which authentication keys should be case-insensitive.
+  # These keys will be downcased upon creating or modifying a user and when used
+  # to authenticate or find a user. Default is :email.
+  config.case_insensitive_keys = [ :email ]
+
+  # Configure which authentication keys should have whitespace stripped.
+  # These keys will have whitespace before and after removed upon creating or
+  # modifying a user and when used to authenticate or find a user. Default is :email.
+  config.strip_whitespace_keys = [ :email ]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Basic Auth is enabled. False by default.
+  # config.http_authenticatable = false
+
+  # If http headers should be returned for AJAX requests. True by default.
+  # config.http_authenticatable_on_xhr = true
+
+  # The realm used in Http Basic Authentication. "Application" by default.
+  # config.http_authentication_realm = "Application"
+
+  # It will change confirmation, password recovery and other workflows
+  # to behave the same regardless if the e-mail provided was right or wrong.
+  # Does not affect registerable.
+  # config.paranoid = true
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+  # using other encryptors, it sets how many times you want the password re-encrypted.
+  #
+  # Limiting the stretches to just one in testing will increase the performance of
+  # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use
+  # a value less than 10 in other environments.
+  config.stretches = Rails.env.test? ? 1 : 10
+
+  # Setup a pepper to generate the encrypted password.
+  # config.pepper = "80976e8142b5962f4ac9198f4b805704bec95eee4fad0a209d6996c92e2e5552b134d9c67ba7e53af6b0f3b8a97f929d2aa3195bc3842faeb3b6435703855e8d"
+
+  # ==> Configuration for :confirmable
+  # The time you want to give your user to confirm his account. During this time
+  # he will be able to access your application without confirming. Default is 0.days
+  # When confirm_within is zero, the user won't be able to sign in without confirming.
+  # You can use this to let your user access some features of your application
+  # without confirming the account, but blocking it after a certain period
+  # (ie 2 days).
+  # config.confirm_within = 2.days
+
+  # Defines which key will be used when confirming an account
+  # config.confirmation_keys = [ :email ]
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # If true, a valid remember token can be re-used between multiple browsers.
+  # config.remember_across_browsers = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # If true, uses the password salt as remember token. This should be turned
+  # to false if you are not using database authenticatable.
+  config.use_salt_as_remember_token = true
+
+  # Options to be passed to the created cookie. For instance, you can set
+  # :secure => true in order to force SSL only cookies.
+  # config.cookie_options = {}
+
+  # ==> Configuration for :validatable
+  # Range for password length. Default is 6..128.
+  # config.password_length = 6..128
+
+  # Email regex used to validate email formats. It simply asserts that
+  # an one (and only one) @ exists in the given string. This is mainly
+  # to give user feedback and not to assert the e-mail validity.
+  # config.email_regexp = /\A[^@]+@[^@]+\z/
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again. Default is 30 minutes.
+  # config.timeout_in = 30.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which key will be used when locking and unlocking an account
+  # config.unlock_keys = [ :email ]
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # ==> Configuration for :recoverable
+  #
+  # Defines which key will be used when recovering the password for an account
+  # config.reset_password_keys = [ :email ]
+
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 2.hours
+
+  # ==> Configuration for :encryptable
+  # Allow you to use another encryption algorithm besides bcrypt (default). You can use
+  # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1,
+  # :authlogic_sha512 (then you should set stretches above to 20 for default behavior)
+  # and :restful_authentication_sha1 (then you should set stretches to 10, and copy
+  # REST_AUTH_SITE_KEY to pepper)
+  # config.encryptor = :sha512
+
+  # ==> Configuration for :token_authenticatable
+  # Defines name of the authentication token params key
+  # config.token_authentication_key = :auth_token
+
+  # If true, authentication through token does not store user in session and needs
+  # to be supplied on each request. Useful if you are using the token as API token.
+  # config.stateless_token = false
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering "sessions/new", it will first check for
+  # "users/sessions/new". It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = false
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes (usually :user).
+  # config.default_scope = :user
+
+  # Configure sign_out behavior.
+  # Sign_out action can be scoped (i.e. /users/sign_out affects only :user scope).
+  # The default is true, which means any logout action will sign out all active scopes.
+  # config.sign_out_all_scopes = true
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  #
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists.
+  #
+  # The :"*/*" and "*/*" formats below is required to match Internet
+  # Explorer requests.
+  # config.navigational_formats = [:"*/*", "*/*", :html]
+
+  # The default HTTP method used to sign out a resource. Default is :delete.
+  config.sign_out_via = :delete
+
+  # ==> OmniAuth
+  # Add a new OmniAuth provider. Check the wiki for more information on setting
+  # up on your models and hooks.
+  # config.omniauth :github, 'APP_ID', 'APP_SECRET', :scope => 'user,public_repo'
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not supported by Devise, or
+  # change the failure app, you can configure them inside the config.warden block.
+  #
+  # config.warden do |manager|
+  #   manager.failure_app   = AnotherApp
+  #   manager.intercept_401 = false
+  #   manager.default_strategies(:scope => :user).unshift :some_external_strategy
+  # end
+end

data/spec/dummy/config/locales/devise.en.yml

@@ -0,0 +1,58 @@
+# Additional translations at http://github.com/plataformatec/devise/wiki/I18n
+
+en:
+  errors:
+    messages:
+      expired: "has expired, please request a new one"
+      not_found: "not found"
+      already_confirmed: "was already confirmed, please try signing in"
+      not_locked: "was not locked"
+      not_saved:
+        one: "1 error prohibited this %{resource} from being saved:"
+        other: "%{count} errors prohibited this %{resource} from being saved:"
+
+  devise:
+    failure:
+      already_authenticated: 'You are already signed in.'
+      unauthenticated: 'You need to sign in or sign up before continuing.'
+      unconfirmed: 'You have to confirm your account before continuing.'
+      locked: 'Your account is locked.'
+      invalid: 'Invalid email or password.'
+      invalid_token: 'Invalid authentication token.'
+      timeout: 'Your session expired, please sign in again to continue.'
+      inactive: 'Your account was not activated yet.'
+    sessions:
+      signed_in: 'Signed in successfully.'
+      signed_out: 'Signed out successfully.'
+    passwords:
+      send_instructions: 'You will receive an email with instructions about how to reset your password in a few minutes.'
+      updated: 'Your password was changed successfully. You are now signed in.'
+      updated_not_active: 'Your password was changed successfully.'
+      send_paranoid_instructions: "If your e-mail exists on our database, you will receive a password recovery link on your e-mail"
+    confirmations:
+      send_instructions: 'You will receive an email with instructions about how to confirm your account in a few minutes.'
+      send_paranoid_instructions: 'If your e-mail exists on our database, you will receive an email with instructions about how to confirm your account in a few minutes.'
+      confirmed: 'Your account was successfully confirmed. You are now signed in.'
+    registrations:
+      signed_up: 'Welcome! You have signed up successfully.'
+      inactive_signed_up: 'You have signed up successfully. However, we could not sign you in because your account is %{reason}.'
+      updated: 'You updated your account successfully.'
+      destroyed: 'Bye! Your account was successfully cancelled. We hope to see you again soon.'
+      reasons:
+        inactive: 'inactive'
+        unconfirmed: 'unconfirmed'
+        locked: 'locked'
+    unlocks:
+      send_instructions: 'You will receive an email with instructions about how to unlock your account in a few minutes.'
+      unlocked: 'Your account was successfully unlocked. You are now signed in.'
+      send_paranoid_instructions: 'If your account exists, you will receive an email with instructions about how to unlock it in a few minutes.'
+    omniauth_callbacks:
+      success: 'Successfully authorized from %{kind} account.'
+      failure: 'Could not authorize you from %{kind} because "%{reason}".'
+    mailer:
+      confirmation_instructions:
+        subject: 'Confirmation instructions'
+      reset_password_instructions:
+        subject: 'Reset password instructions'
+      unlock_instructions:
+        subject: 'Unlock Instructions'

data/spec/dummy/config/routes.rb

@@ -26,6 +26,7 @@ Dummy::Application.routes.draw do
       resources :posts
     end
     resources :news
+    resources :puffer_users
   end
 
   namespace :orms do

data/spec/dummy/db/migrate/20110912114129_create_puffer_users.rb

@@ -0,0 +1,11 @@
+class CreatePufferUsers < ActiveRecord::Migration
+  def change
+    create_table :puffer_users do |t|
+      t.string :email
+      t.string :password_digest
+      t.string :roles
+
+      t.timestamps
+    end
+  end
+end

data/spec/dummy/db/schema.rb

@@ -11,7 +11,7 @@
 #
 # It's strongly recommended to check this file into your version control system.
 
-ActiveRecord::Schema.define(:version => 20110301072545) do
+ActiveRecord::Schema.define(:version => 20110912114129) do
 
   create_table "categories", :force => true do |t|
     t.string   "title"
@@ -66,6 +66,14 @@ ActiveRecord::Schema.define(:version => 20110301072545) do
     t.datetime "updated_at"
   end
 
+  create_table "puffer_users", :force => true do |t|
+    t.string   "email"
+    t.string   "password_digest"
+    t.string   "roles"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
   create_table "taggings", :force => true do |t|
     t.string  "name"
     t.integer "tag_id"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: puffer
 version: !ruby/object:Gem::Version
-  version: 0.0.28
+  version: 0.0.29
   prerelease: 
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2011-09-11 00:00:00.000000000Z
+date: 2011-09-12 00:00:00.000000000Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
-  requirement: &10916560 !ruby/object:Gem::Requirement
+  requirement: &13086640 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -21,10 +21,10 @@ dependencies:
         version: 3.1.0
   type: :runtime
   prerelease: false
-  version_requirements: *10916560
+  version_requirements: *13086640
 - !ruby/object:Gem::Dependency
   name: kaminari
-  requirement: &10916000 !ruby/object:Gem::Requirement
+  requirement: &13086020 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -32,10 +32,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *10916000
+  version_requirements: *13086020
 - !ruby/object:Gem::Dependency
   name: orm_adapter
-  requirement: &10915480 !ruby/object:Gem::Requirement
+  requirement: &13085220 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -43,10 +43,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *10915480
+  version_requirements: *13085220
 - !ruby/object:Gem::Dependency
   name: sqlite3
-  requirement: &10914960 !ruby/object:Gem::Requirement
+  requirement: &13084320 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -54,10 +54,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10914960
+  version_requirements: *13084320
 - !ruby/object:Gem::Dependency
   name: mongoid
-  requirement: &10914380 !ruby/object:Gem::Requirement
+  requirement: &13083160 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -65,10 +65,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10914380
+  version_requirements: *13083160
 - !ruby/object:Gem::Dependency
   name: bson_ext
-  requirement: &10913880 !ruby/object:Gem::Requirement
+  requirement: &13081880 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -76,10 +76,21 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10913880
+  version_requirements: *13081880
+- !ruby/object:Gem::Dependency
+  name: devise
+  requirement: &13077780 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *13077780
 - !ruby/object:Gem::Dependency
   name: rspec-rails
-  requirement: &10913380 !ruby/object:Gem::Requirement
+  requirement: &13076740 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -87,10 +98,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10913380
+  version_requirements: *13076740
 - !ruby/object:Gem::Dependency
   name: capybara
-  requirement: &10912880 !ruby/object:Gem::Requirement
+  requirement: &13075980 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -98,10 +109,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10912880
+  version_requirements: *13075980
 - !ruby/object:Gem::Dependency
   name: database_cleaner
-  requirement: &10912260 !ruby/object:Gem::Requirement
+  requirement: &13075140 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -109,10 +120,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10912260
+  version_requirements: *13075140
 - !ruby/object:Gem::Dependency
   name: guard
-  requirement: &10911680 !ruby/object:Gem::Requirement
+  requirement: &13074380 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -120,10 +131,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10911680
+  version_requirements: *13074380
 - !ruby/object:Gem::Dependency
   name: libnotify
-  requirement: &10911140 !ruby/object:Gem::Requirement
+  requirement: &13073500 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -131,10 +142,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10911140
+  version_requirements: *13073500
 - !ruby/object:Gem::Dependency
   name: guard-rspec
-  requirement: &10910620 !ruby/object:Gem::Requirement
+  requirement: &13072780 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -142,10 +153,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10910620
+  version_requirements: *13072780
 - !ruby/object:Gem::Dependency
   name: forgery
-  requirement: &10910100 !ruby/object:Gem::Requirement
+  requirement: &13072080 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -153,10 +164,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10910100
+  version_requirements: *13072080
 - !ruby/object:Gem::Dependency
   name: fabrication
-  requirement: &10909540 !ruby/object:Gem::Requirement
+  requirement: &13071220 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -164,10 +175,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10909540
+  version_requirements: *13071220
 - !ruby/object:Gem::Dependency
   name: jeweler
-  requirement: &10908960 !ruby/object:Gem::Requirement
+  requirement: &13070440 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -175,10 +186,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10908960
+  version_requirements: *13070440
 - !ruby/object:Gem::Dependency
   name: nested_set
-  requirement: &10908460 !ruby/object:Gem::Requirement
+  requirement: &13067140 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -186,7 +197,7 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *10908460
+  version_requirements: *13067140
 description: In Soviet Russia puffer admins you
 email: kinwizard@gmail.com
 executables: []
@@ -243,13 +254,18 @@ files:
 - app/components/text/form.html.erb
 - app/components/text_component.rb
 - app/controllers/admin/dashboard_controller.rb
+- app/controllers/admin/puffer_users_controller.rb
 - app/controllers/admin/sessions_controller.rb
 - app/controllers/puffer/base.rb
 - app/controllers/puffer/dashboard_base.rb
+- app/controllers/puffer/puffer_users_base.rb
 - app/controllers/puffer/sessions_base.rb
+- app/controllers/puffer/sessions_devise_base.rb
 - app/controllers/puffer/tree_base.rb
 - app/helpers/puffer_helper.rb
 - app/helpers/puffer_tree_helper.rb
+- app/models/puffer/puffer_user.rb
+- app/models/puffer_user.rb
 - app/views/layouts/puffer.html.erb
 - app/views/layouts/puffer_base.html.erb
 - app/views/layouts/puffer_dashboard.html.erb
@@ -267,6 +283,7 @@ files:
 - app/views/puffer/tree_base/tree.html.erb
 - config/locales/puffer.yml
 - config/routes.rb
+- db/migrate/20110912095647_create_puffer_users.rb
 - lib/generators/puffer/component/USAGE
 - lib/generators/puffer/component/component_generator.rb
 - lib/generators/puffer/component/templates/component.rb
@@ -277,6 +294,7 @@ files:
 - lib/puffer.rb
 - lib/puffer/component.rb
 - lib/puffer/controller/actions.rb
+- lib/puffer/controller/auth.rb
 - lib/puffer/controller/config.rb
 - lib/puffer/controller/dsl.rb
 - lib/puffer/controller/mutate.rb
@@ -315,7 +333,6 @@ files:
 - spec/dummy/app/controllers/admin/news_controller.rb
 - spec/dummy/app/controllers/admin/posts_controller.rb
 - spec/dummy/app/controllers/admin/profiles_controller.rb
-- spec/dummy/app/controllers/admin/sessions_controller.rb
 - spec/dummy/app/controllers/admin/tagged_posts_controller.rb
 - spec/dummy/app/controllers/admin/tags_controller.rb
 - spec/dummy/app/controllers/admin/users_controller.rb
@@ -343,11 +360,13 @@ files:
 - spec/dummy/config/environments/production.rb
 - spec/dummy/config/environments/test.rb
 - spec/dummy/config/initializers/backtrace_silencers.rb
+- spec/dummy/config/initializers/devise.rb
 - spec/dummy/config/initializers/inflections.rb
 - spec/dummy/config/initializers/mime_types.rb
 - spec/dummy/config/initializers/secret_token.rb
 - spec/dummy/config/initializers/session_store.rb
 - spec/dummy/config/initializers/wrap_parameters.rb
+- spec/dummy/config/locales/devise.en.yml
 - spec/dummy/config/locales/en.yml
 - spec/dummy/config/mongoid.yml
 - spec/dummy/config/routes.rb
@@ -360,6 +379,7 @@ files:
 - spec/dummy/db/migrate/20101011160326_create_taggings.rb
 - spec/dummy/db/migrate/20110107082706_create_friendships.rb
 - spec/dummy/db/migrate/20110301072545_create_news.rb
+- spec/dummy/db/migrate/20110912114129_create_puffer_users.rb
 - spec/dummy/db/schema.rb
 - spec/dummy/db/seeds.rb
 - spec/dummy/public/404.html
@@ -397,7 +417,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 2497691897434957664
+      hash: 2115184078820805402
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:

data/spec/dummy/app/controllers/admin/sessions_controller.rb

@@ -1,16 +0,0 @@
-class Admin::SessionsController < Puffer::SessionsBase
-
-  def new
-    @record = User.new
-  end
-
-  def create
-    record = User.new
-    respond_with record
-  end
-
-  def destroy
-
-  end
-
-end