rails_mvp_authentication 0.1.0

data/lib/generators/rails_mvp_authentication/templates/test/models/user_test.rb.tt

@@ -0,0 +1,183 @@
+require "test_helper"
+
+class UserTest < ActiveSupport::TestCase
+  include ActionMailer::TestHelper
+
+  setup do
+    @user = User.new(email: "unique_email@example.com", password: "password", password_confirmation: "password")
+  end
+
+  test "should be valid" do
+    assert @user.valid?
+  end
+
+  test "should have email" do
+    @user.email = nil
+    assert_not @user.valid?
+  end
+
+  test "email should be unique" do
+    @user.save!
+    @invalid_user = User.new(email: @user.email)
+
+    assert_not @invalid_user.valid?
+  end
+
+  test "email should be saved as lowercase" do
+    email = "unique_email@example.com"
+
+    @user = User.new(email: email.upcase, password: "password", password_confirmation: "password")
+    @user.save!
+
+    assert_equal email.downcase, @user.email
+  end
+
+  test "email should be valid" do
+    invalid_emails = %w[foo foo@ foo@bar.]
+
+    invalid_emails.each do |invalid_email|
+      @user.email = invalid_email
+      assert_not @user.valid?
+    end
+  end
+
+  test "should respond to confirmed?" do
+    assert_not @user.confirmed?
+
+    @user.confirmed_at = Time.now
+
+    assert @user.confirmed?
+  end
+
+  test "should respond to unconfirmed?" do
+    assert @user.unconfirmed?
+
+    @user.confirmed_at = Time.now
+
+    assert_not @user.unconfirmed?
+  end
+
+  test "should respond to reconfirming?" do
+    assert_not @user.reconfirming?
+
+    @user.unconfirmed_email = "unconfirmed_email@example.com"
+
+    assert @user.reconfirming?
+  end
+
+  test "should respond to unconfirmed_or_reconfirming?" do
+    assert @user.unconfirmed_or_reconfirming?
+
+    @user.unconfirmed_email = "unconfirmed_email@example.com"
+    @user.confirmed_at = Time.now
+
+    assert @user.unconfirmed_or_reconfirming?
+  end
+
+  test "should send confirmation email" do
+    @user.save!
+
+    assert_emails 1 do
+      @user.send_confirmation_email!
+    end
+
+    assert_equal @user.email, ActionMailer::Base.deliveries.last.to[0]
+  end
+
+  test "should send confirmation email to unconfirmed_email" do
+    @user.save!
+    @user.update!(unconfirmed_email: "unconfirmed_email@example.com")
+
+    assert_emails 1 do
+      @user.send_confirmation_email!
+    end
+
+    assert_equal @user.unconfirmed_email, ActionMailer::Base.deliveries.last.to[0]
+  end
+
+  test "should respond to send_password_reset_email!" do
+    @user.save!
+
+    assert_emails 1 do
+      @user.send_password_reset_email!
+    end
+  end
+
+  test "should downcase unconfirmed_email" do
+    email = "UNCONFIRMED_EMAIL@EXAMPLE.COM"
+    @user.unconfirmed_email = email
+    @user.save!
+
+    assert_equal email.downcase, @user.unconfirmed_email
+  end
+
+  test "unconfirmed_email should be valid" do
+    invalid_emails = %w[foo foo@ foo@bar.]
+
+    invalid_emails.each do |invalid_email|
+      @user.unconfirmed_email = invalid_email
+      assert_not @user.valid?
+    end
+  end
+
+  test "unconfirmed_email does not need to be available" do
+    @user.save!
+    @user.unconfirmed_email = @user.email
+    assert @user.valid?
+  end
+
+  test ".confirm! should return false if already confirmed" do
+    @confirmed_user = User.new(email: "unique_email@example.com", password: "password", password_confirmation: "password", confirmed_at: Time.current)
+
+    assert_not @confirmed_user.confirm!
+  end
+
+  test ".confirm! should update email if reconfirming" do
+    @reconfirmed_user = User.new(email: "unique_email@example.com", password: "password", password_confirmation: "password", confirmed_at: 1.week.ago, unconfirmed_email: "unconfirmed_email@example.com")
+    new_email = @reconfirmed_user.unconfirmed_email
+
+    freeze_time do
+      @reconfirmed_user.confirm!
+
+      assert_equal new_email, @reconfirmed_user.reload.email
+      assert_nil @reconfirmed_user.reload.unconfirmed_email
+      assert_equal Time.current, @reconfirmed_user.reload.confirmed_at
+    end
+  end
+
+  test ".confirm! should not update email if already taken" do
+    @confirmed_user = User.create!(email: "user1@example.com", password: "password", password_confirmation: "password")
+    @reconfirmed_user = User.create!(email: "user2@example.com", password: "password", password_confirmation: "password", confirmed_at: 1.week.ago, unconfirmed_email: @confirmed_user.email)
+
+    freeze_time do
+      assert_not @reconfirmed_user.confirm!
+    end
+  end
+
+  test ".confirm! should set confirmed_at" do
+    @unconfirmed_user = User.create!(email: "unique_email@example.com", password: "password", password_confirmation: "password")
+
+    freeze_time do
+      @unconfirmed_user.confirm!
+
+      assert_equal Time.current, @unconfirmed_user.reload.confirmed_at
+    end
+  end
+
+  test "should create active session" do
+    @user.save!
+
+    assert_difference("@user.active_sessions.count", 1) do
+      @user.active_sessions.create!
+    end
+  end
+
+  test "should destroy associated active session when destryoed" do
+    @user.save!
+    @user.active_sessions.create!
+
+    assert_difference("@user.active_sessions.count", -1) do
+      @user.destroy!
+    end
+  end
+end

data/lib/generators/rails_mvp_authentication/templates/test/system/logins_test.rb.tt

@@ -0,0 +1,18 @@
+require "application_system_test_case"
+
+class LoginsTest < ApplicationSystemTestCase
+  setup do
+    @confirmed_user = User.create!(email: "confirmed_user@example.com", password: "password", password_confirmation: "password", confirmed_at: Time.current)
+  end
+
+  test "should login and create active session if confirmed" do
+    visit login_path
+
+    fill_in "Email", with: @confirmed_user.email
+    fill_in "Password", with: @confirmed_user.password
+    click_on "Sign In"
+
+    assert_not_nil @confirmed_user.active_sessions.last.user_agent
+    assert_not_nil @confirmed_user.active_sessions.last.ip_address
+  end
+end

data/lib/generators/rails_mvp_authentication/templates/user.rb.tt

@@ -0,0 +1,96 @@
+class User < ApplicationRecord
+  CONFIRMATION_TOKEN_EXPIRATION = 10.minutes
+  MAILER_FROM_EMAIL = "no-reply@example.com"
+  PASSWORD_RESET_TOKEN_EXPIRATION = 10.minutes
+
+  attr_accessor :current_password
+
+  has_secure_password
+
+  has_many :active_sessions, dependent: :destroy
+
+  before_save :downcase_email
+  before_save :downcase_unconfirmed_email
+
+  validates :email, format: {with: URI::MailTo::EMAIL_REGEXP}, presence: true, uniqueness: true
+  validates :unconfirmed_email, format: {with: URI::MailTo::EMAIL_REGEXP, allow_blank: true}
+
+  def self.authenticate_by(attributes)
+    passwords, identifiers = attributes.to_h.partition do |name, value|
+      !has_attribute?(name) && has_attribute?("#{name}_digest")
+    end.map(&:to_h)
+
+    raise ArgumentError, "One or more password arguments are required" if passwords.empty?
+    raise ArgumentError, "One or more finder arguments are required" if identifiers.empty?
+    if (record = find_by(identifiers))
+      record if passwords.count { |name, value| record.public_send(:"authenticate_#{name}", value) } == passwords.size
+    else
+      new(passwords)
+      nil
+    end
+  end
+
+  def confirm!
+    if unconfirmed_or_reconfirming?
+      if unconfirmed_email.present?
+        return false unless update(email: unconfirmed_email, unconfirmed_email: nil)
+      end
+      update_columns(confirmed_at: Time.current)
+    else
+      false
+    end
+  end
+
+  def confirmed?
+    confirmed_at.present?
+  end
+
+  def confirmable_email
+    if unconfirmed_email.present?
+      unconfirmed_email
+    else
+      email
+    end
+  end
+
+  def generate_confirmation_token
+    signed_id expires_in: CONFIRMATION_TOKEN_EXPIRATION, purpose: :confirm_email
+  end
+
+  def generate_password_reset_token
+    signed_id expires_in: PASSWORD_RESET_TOKEN_EXPIRATION, purpose: :reset_password
+  end
+
+  def send_confirmation_email!
+    confirmation_token = generate_confirmation_token
+    UserMailer.confirmation(self, confirmation_token).deliver_now
+  end
+
+  def send_password_reset_email!
+    password_reset_token = generate_password_reset_token
+    UserMailer.password_reset(self, password_reset_token).deliver_now
+  end
+
+  def reconfirming?
+    unconfirmed_email.present?
+  end
+
+  def unconfirmed?
+    !confirmed?
+  end
+
+  def unconfirmed_or_reconfirming?
+    unconfirmed? || reconfirming?
+  end
+
+  private
+
+  def downcase_email
+    self.email = email.downcase
+  end
+
+  def downcase_unconfirmed_email
+    return if unconfirmed_email.nil?
+    self.unconfirmed_email = unconfirmed_email.downcase
+  end
+end

data/lib/generators/rails_mvp_authentication/templates/user_mailer.rb.tt

@@ -0,0 +1,22 @@
+class UserMailer < ApplicationMailer
+  default from: User::MAILER_FROM_EMAIL
+
+  # Subject can be set in your I18n file at config/locales/en.yml
+  # with the following lookup:
+  #
+  #   en.user_mailer.confirmation.subject
+  #
+  def confirmation(user, confirmation_token)
+    @user = user
+    @confirmation_token = confirmation_token
+
+    mail to: @user.confirmable_email, subject: "Confirmation Instructions"
+  end
+
+  def password_reset(user, password_reset_token)
+    @user = user
+    @password_reset_token = password_reset_token
+
+    mail to: @user.email, subject: "Password Reset Instructions"
+  end
+end

data/lib/generators/rails_mvp_authentication/templates/users_controller.rb.tt

@@ -0,0 +1,59 @@
+class UsersController < ApplicationController
+  before_action :authenticate_user!, only: [:edit, :destroy, :update]
+  before_action :redirect_if_authenticated, only: [:create, :new]
+
+  def create
+    @user = User.new(create_user_params)
+    if @user.save
+      @user.send_confirmation_email!
+      redirect_to root_path, notice: "Please check your email for confirmation instructions."
+    else
+      render :new, status: :unprocessable_entity
+    end
+  end
+
+  def destroy
+    current_user.destroy
+    reset_session
+    redirect_to root_path, notice: "Your account has been deleted."
+  end
+
+  def edit
+    @user = current_user
+    @active_sessions = @user.active_sessions.order(created_at: :desc)
+  end
+
+  def new
+    @user = User.new
+  end
+
+  def update
+    @user = current_user
+    @active_sessions = @user.active_sessions.order(created_at: :desc)
+    if @user.authenticate(params[:user][:current_password])
+      if @user.update(update_user_params)
+        if params[:user][:unconfirmed_email].present?
+          @user.send_confirmation_email!
+          redirect_to root_path, notice: "Check your email for confirmation instructions."
+        else
+          redirect_to root_path, notice: "Account updated."
+        end
+      else
+        render :edit, status: :unprocessable_entity
+      end
+    else
+      flash.now[:error] = "Incorrect password"
+      render :edit, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def create_user_params
+    params.require(:user).permit(:email, :password, :password_confirmation)
+  end
+
+  def update_user_params
+    params.require(:user).permit(:current_password, :password, :password_confirmation, :unconfirmed_email)
+  end
+end

data/lib/generators/rails_mvp_authentication/templates/views/confirmations/new.html.erb.tt

@@ -0,0 +1,4 @@
+<%%= form_with model: @user, url: confirmations_path do |form| %>
+  <%%= form.email_field :email, required: true %>
+  <%%= form.submit "Confirm Email" %>
+<%% end %>

data/lib/generators/rails_mvp_authentication/templates/views/passwords/edit.html.erb.tt

@@ -0,0 +1,11 @@
+<%%= form_with url: password_path(params[:password_reset_token]), scope: :user, method: :put do |form| %>
+  <div>
+    <%%= form.label :password %>
+    <%%= form.password_field :password, required: true %>
+  </div>
+  <div>
+    <%%= form.label :password_confirmation %>
+    <%%= form.password_field :password_confirmation, required: true %>
+  </div>
+  <%%= form.submit "Update Password" %>
+<%% end %>

data/lib/generators/rails_mvp_authentication/templates/views/passwords/new.html.erb.tt

@@ -0,0 +1,4 @@
+<%%= form_with url: passwords_path, scope: :user do |form| %>
+  <%%= form.email_field :email, required: true %>
+  <%%= form.submit "Reset Password" %>
+<%% end %>

data/lib/generators/rails_mvp_authentication/templates/views/sessions/new.html.erb.tt

@@ -0,0 +1,15 @@
+<%%= form_with url: login_path, scope: :user do |form| %>
+  <div>
+    <%%= form.label :email %>
+    <%%= form.email_field :email, required: true %>
+  </div>
+  <div>
+    <%%= form.label :password %>
+    <%%= form.password_field :password, required: true %>
+  </div>
+  <div>
+    <%%= form.label :remember_me %>
+    <%%= form.check_box :remember_me %>
+  </div>
+  <%%= form.submit "Sign In" %>
+<%% end %>

data/lib/generators/rails_mvp_authentication/templates/views/user_mailer/confirmation.html.erb.tt

@@ -0,0 +1,3 @@
+<h1>Confirmation Instructions</h1>
+
+<%%= link_to "Click here to confirm your email.", edit_confirmation_url(@confirmation_token) %>

data/lib/generators/rails_mvp_authentication/templates/views/user_mailer/confirmation.text.erb.tt

@@ -0,0 +1,3 @@
+Confirmation Instructions
+
+<%%= edit_confirmation_url(@confirmation_token) %>

data/lib/generators/rails_mvp_authentication/templates/views/user_mailer/password_reset.html.erb.tt

@@ -0,0 +1,3 @@
+<h1>Password Reset Instructions</h1>
+
+<%%= link_to "Click here to reset your password.", edit_password_url(@password_reset_token) %>

data/lib/generators/rails_mvp_authentication/templates/views/user_mailer/password_reset.text.erb.tt

@@ -0,0 +1,3 @@
+Password Reset Instructions
+
+<%%= edit_password_url(@password_reset_token) %>

data/lib/generators/rails_mvp_authentication/templates/views/users/edit.html.erb.tt

@@ -0,0 +1,42 @@
+<%%= form_with model: @user, url: account_path, method: :put do |form| %>
+  <%%= render partial: "shared/form_errors", locals: { object: form.object } %>
+  <div>
+    <%%= form.label :email, "Current Email" %>
+    <%%= form.email_field :email, disabled: true %>
+  </div>
+  <div>
+    <%%= form.label :unconfirmed_email, "New Email" %>
+    <%%= form.text_field :unconfirmed_email %>
+  </div>
+  <div>
+    <%%= form.label :password, "Password (leave blank if you don't want to change it)" %>
+    <%%= form.password_field :password %>
+  </div>
+  <div>
+    <%%= form.label :password_confirmation %>
+    <%%= form.password_field :password_confirmation %>
+  </div>
+  <hr/>
+  <div>
+    <%%= form.label :current_password, "Current password (we need your current password to confirm your changes)" %>
+    <%%= form.password_field :current_password, required: true %>
+  </div>
+  <%%= form.submit "Update Account" %>
+<%% end %>
+<h2>Current Logins</h2>
+<%% if @active_sessions.any? %> 
+  <%%= button_to "Log out of all other sessions", destroy_all_active_sessions_path, method: :delete %>
+  <table>
+    <thead>
+      <tr>
+        <th>User Agent</th>
+        <th>IP Address</th>
+        <th>Signed In At</th>
+        <th>Sign Out</th>
+      </tr>
+    </thead>
+    <tbody>
+      <%%= render @active_sessions %>
+    </tbody>
+  </table>
+<%% end %>

data/lib/generators/rails_mvp_authentication/templates/views/users/new.html.erb.tt

@@ -0,0 +1,16 @@
+<%%= form_with model: @user, url: sign_up_path do |form| %>
+  <%%= render partial: "shared/form_errors", locals: { object: form.object } %>
+  <div>
+    <%%= form.label :email %>
+    <%%= form.email_field :email, required: true %>
+  </div>
+  <div>
+    <%%= form.label :password %>
+    <%%= form.password_field :password, required: true %>
+  </div>
+  <div>
+    <%%= form.label :password_confirmation %>
+    <%%= form.password_field :password_confirmation, required: true %>
+  </div>
+  <%%= form.submit "Sign Up" %>
+<%% end %>

data/lib/rails_mvp_authentication/engine.rb

@@ -0,0 +1,5 @@
+module RailsMvpAuthentication
+  class Engine < ::Rails::Engine
+    isolate_namespace RailsMvpAuthentication
+  end
+end

data/lib/rails_mvp_authentication/version.rb

@@ -0,0 +1,3 @@
+module RailsMvpAuthentication
+  VERSION = "0.1.0"
+end

data/lib/rails_mvp_authentication.rb

@@ -0,0 +1,6 @@
+require "rails_mvp_authentication/version"
+require "rails_mvp_authentication/engine"
+
+module RailsMvpAuthentication
+  # Your code goes here...
+end

data/lib/tasks/rails_mvp_authentication_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :rails_mvp_authentication do
+#   # Task goes here
+# end

metadata

@@ -0,0 +1,129 @@
+--- !ruby/object:Gem::Specification
+name: rails_mvp_authentication
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Steve Polito
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2022-02-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 7.0.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 7.0.0
+- !ruby/object:Gem::Dependency
+  name: sprockets-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.4.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.4.2
+description: Rails authentication via a generator.
+email:
+- stevepolito@hey.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/assets/config/rails_mvp_authentication_manifest.js
+- app/assets/stylesheets/rails_mvp_authentication/application.css
+- app/controllers/rails_mvp_authentication/application_controller.rb
+- app/helpers/rails_mvp_authentication/application_helper.rb
+- app/jobs/rails_mvp_authentication/application_job.rb
+- app/mailers/rails_mvp_authentication/application_mailer.rb
+- app/models/rails_mvp_authentication/application_record.rb
+- app/views/layouts/rails_mvp_authentication/application.html.erb
+- config/routes.rb
+- lib/generators/rails_mvp_authentication/USAGE
+- lib/generators/rails_mvp_authentication/install_generator.rb
+- lib/generators/rails_mvp_authentication/templates/README
+- lib/generators/rails_mvp_authentication/templates/authentication.rb.tt
+- lib/generators/rails_mvp_authentication/templates/confirmations_controller.rb.tt
+- lib/generators/rails_mvp_authentication/templates/current.rb.tt
+- lib/generators/rails_mvp_authentication/templates/passwords_controller.rb.tt
+- lib/generators/rails_mvp_authentication/templates/sessions_controller.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/controllers/active_sessions_controller_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/controllers/confirmations_controller_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/controllers/passwords_controller_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/controllers/sessions_controller_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/controllers/users_controller_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/integration/friendly_redirects_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/integration/user_interface_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/mailers/previews/user_mailer_preview.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/mailers/user_mailer_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/models/active_session_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/models/user_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/test/system/logins_test.rb.tt
+- lib/generators/rails_mvp_authentication/templates/user.rb.tt
+- lib/generators/rails_mvp_authentication/templates/user_mailer.rb.tt
+- lib/generators/rails_mvp_authentication/templates/users_controller.rb.tt
+- lib/generators/rails_mvp_authentication/templates/views/confirmations/new.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/passwords/edit.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/passwords/new.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/sessions/new.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/user_mailer/confirmation.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/user_mailer/confirmation.text.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/user_mailer/password_reset.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/user_mailer/password_reset.text.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/users/edit.html.erb.tt
+- lib/generators/rails_mvp_authentication/templates/views/users/new.html.erb.tt
+- lib/rails_mvp_authentication.rb
+- lib/rails_mvp_authentication/engine.rb
+- lib/rails_mvp_authentication/version.rb
+- lib/tasks/rails_mvp_authentication_tasks.rake
+homepage: https://github.com/stevepolitodesign/rails_mvp_authentication
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/stevepolitodesign/rails_mvp_authentication
+  source_code_uri: https://github.com/stevepolitodesign/rails_mvp_authentication
+  changelog_uri: https://github.com/stevepolitodesign/rails_mvp_authentication/blob/main/CHANGELOG.md
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.2.32
+signing_key:
+specification_version: 4
+summary: Rails authentication via a generator.
+test_files: []