refinerycms-authentication 0.9.9.1

data/readme.md

@@ -0,0 +1,17 @@
+# Authentication
+
+## About
+
+At the heart of Refinery's user management is the authentication plugin located in ``vendor/plugins/authentication``
+
+What this really is is just a standard [authlogic](http://github.com/binarylogic/authlogic) install extended with a few extra features like "I forgot my password" and hooked directly into the heart of Refinery's plugin system.
+
+Authlogic allows you to easily integrate with other systems too. So you could be logged in into another system using authlogic and easily stay logged in between the two systems without having to login twice.
+
+## Adding New Users
+
+New users can be easily added by going to the 'Users' area admin and clicking on "Add new user".
+
+## Limiting and Granting Access
+
+Each user has a set of plugins they're allowed to see. You can control which plugins each user can see by checking and unchecking the checkboxes next to the plugin name when editing or adding a new user.

data/refinerycms-authentication.gemspec

@@ -0,0 +1,112 @@
+# DO NOT EDIT THIS FILE DIRECTLY! Instead, use lib/gemspec.rb to generate it.
+
+Gem::Specification.new do |s|
+  s.name              = %q{refinerycms-authentication}
+  s.version           = %q{0.9.9.1}
+  s.summary           = %q{Authentication engine for Refinery CMS}
+  s.description       = %q{The default authentication engine for Refinery CMS}
+  s.date              = %q{2011-02-15}
+  s.email             = %q{info@refinerycms.com}
+  s.homepage          = %q{http://refinerycms.com}
+  s.rubyforge_project = %q{refinerycms}
+  s.authors           = ['Resolve Digital', 'Philip Arndt', 'David Jones', 'Steven Heidel']
+  s.license           = %q{MIT}
+  s.require_paths     = %w(lib)
+  s.executables       = %w()
+
+  s.add_dependency 'refinerycms-core', '~> 0.9.9.1'
+  s.add_dependency 'devise',           '~> 1.1'
+
+  s.files             = [
+    'app',
+    'app/controllers',
+    'app/controllers/admin',
+    'app/controllers/admin/users_controller.rb',
+    'app/controllers/passwords_controller.rb',
+    'app/controllers/registrations_controller.rb',
+    'app/controllers/sessions_controller.rb',
+    'app/helpers',
+    'app/helpers/sessions_helper.rb',
+    'app/helpers/users_helper.rb',
+    'app/mailers',
+    'app/mailers/user_mailer.rb',
+    'app/models',
+    'app/models/role.rb',
+    'app/models/roles_users.rb',
+    'app/models/user.rb',
+    'app/models/user_plugin.rb',
+    'app/views',
+    'app/views/admin',
+    'app/views/admin/users',
+    'app/views/admin/users/_form.html.erb',
+    'app/views/admin/users/_user.html.erb',
+    'app/views/admin/users/_users.html.erb',
+    'app/views/admin/users/edit.html.erb',
+    'app/views/admin/users/index.html.erb',
+    'app/views/admin/users/new.html.erb',
+    'app/views/layouts',
+    'app/views/layouts/login.html.erb',
+    'app/views/passwords',
+    'app/views/passwords/edit.html.erb',
+    'app/views/passwords/new.html.erb',
+    'app/views/registrations',
+    'app/views/registrations/new.html.erb',
+    'app/views/sessions',
+    'app/views/sessions/new.html.erb',
+    'app/views/user_mailer',
+    'app/views/user_mailer/reset_notification.html.erb',
+    'app/views/user_mailer/reset_notification.text.plain.erb',
+    'config',
+    'config/locales',
+    'config/locales/cs.yml',
+    'config/locales/da.yml',
+    'config/locales/de.yml',
+    'config/locales/el.yml',
+    'config/locales/en.yml',
+    'config/locales/es.yml',
+    'config/locales/fr.yml',
+    'config/locales/it.yml',
+    'config/locales/lolcat.yml',
+    'config/locales/lt.yml',
+    'config/locales/lv.yml',
+    'config/locales/nb.yml',
+    'config/locales/nl.yml',
+    'config/locales/pl.yml',
+    'config/locales/pt-BR.yml',
+    'config/locales/rs.yml',
+    'config/locales/ru.yml',
+    'config/locales/sl.yml',
+    'config/locales/sv.yml',
+    'config/locales/vi.yml',
+    'config/locales/zh-CN.yml',
+    'config/locales/zh-TW.yml',
+    'config/routes.rb',
+    'db',
+    'db/migrate',
+    'db/migrate/20100913234705_create_refinerycms_authentication_schema.rb',
+    'db/migrate/20100929035252_add_missing_indexes_to_roles_users.rb',
+    'db/migrate/20101206013505_change_to_devise_users_table.rb',
+    'db/migrate/20110106184757_add_remember_created_at_to_users.rb',
+    'features',
+    'features/lost_password.feature',
+    'features/manage_users.feature',
+    'features/step_definitions',
+    'features/step_definitions/lost_password.rb',
+    'features/step_definitions/user_steps.rb',
+    'features/support',
+    'features/support/factories.rb',
+    'features/support/paths.rb',
+    'lib',
+    'lib/authenticated_system.rb',
+    'lib/gemspec.rb',
+    'lib/generators',
+    'lib/generators/refinerycms_authentication_generator.rb',
+    'lib/refinerycms-authentication.rb',
+    'license.md',
+    'readme.md',
+    'refinerycms-authentication.gemspec',
+    'spec',
+    'spec/models',
+    'spec/models/user_spec.rb'
+  ]
+end

data/spec/models/user_spec.rb

@@ -0,0 +1,159 @@
+require 'spec_helper'
+
+Dir[File.expand_path('../../../features/support/factories.rb', __FILE__)].each {|f| require f}
+
+describe User do
+  context "Roles" do
+    context "add_role" do
+      it "raises Exception when Role object is passed" do
+        user = Factory(:user)
+        lambda{ user.add_role(Role.new)}.should raise_exception
+      end
+
+      it "adds a Role to the User when role not yet assigned to User" do
+        user = Factory(:user)
+        lambda {
+          user.add_role(:new_role)
+        }.should change(user.roles, :count).by(1)
+        user.roles.collect(&:title).should include("NewRole")
+      end
+
+      it "does not add a Role to the User when this Role is already assigned to User" do
+        user = Factory(:refinery_user)
+        lambda {
+          user.add_role(:refinery)
+        }.should_not change(user.roles, :count).by(1)
+        user.roles.collect(&:title).should include("Refinery")
+      end
+    end
+
+    context "has_role" do
+      it "raises Exception when Role object is passed" do
+        user = Factory(:user)
+        lambda{ user.has_role?(Role.new)}.should raise_exception
+      end
+
+      it "returns the true if user has Role" do
+        user = Factory(:refinery_user)
+        user.has_role?(:refinery).should be_true
+      end
+
+      it "returns false if user hasn't the Role" do
+        user = Factory(:refinery_user)
+        user.has_role?(:refinery_fail).should be_false
+      end
+    end
+
+    describe "role association" do
+      it "have a roles attribute" do
+        Factory(:user).should respond_to(:roles)
+      end
+    end
+  end
+
+  context "validations" do
+    # email and password validations are done by including devises validatable
+    # module so those validations are not tested here
+    before(:each) do
+      @attr = {
+        :username => "RefineryCMS",
+        :email => "refinery@cms.com",
+        :password => "123456",
+        :password_confirmation => "123456"
+      }
+    end
+
+    it "requires username" do
+      User.new(@attr.merge(:username => "")).should_not be_valid
+    end
+
+    it "rejects duplicate usernames" do
+      User.create!(@attr)
+      User.new(@attr.merge(:email => "another@email.com")).should_not be_valid
+    end
+  end
+
+  describe ".find_for_database_authentication" do
+    it "finds user either by username or email" do
+      user = Factory(:user)
+      User.find_for_database_authentication(:login => user.username).should == user
+      User.find_for_database_authentication(:login => user.email).should == user
+    end
+  end
+
+  describe "#can_delete?" do
+    before(:each) do
+      @user = Factory(:refinery_user)
+      @user_not_persisted = Factory.build(:refinery_user)
+      @super_user = Factory(:refinery_user)
+      @super_user.add_role(:superuser)
+    end
+
+    context "won't allow to delete" do
+      it "not persisted user record" do
+        @user.can_delete?(@user_not_persisted).should be_false
+      end
+
+      it "user with superuser role" do
+        @user.can_delete?(@super_user).should be_false
+      end
+
+      it "if user count with refinery role <= 1" do
+        Role[:refinery].users.delete(@user)
+        @super_user.can_delete?(@user).should be_false
+      end
+
+      it "user himself" do
+        @user.can_delete?(@user).should be_false
+      end
+    end
+
+    context "allow to delete" do
+      it "if all conditions return true" do
+        @super_user.can_delete?(@user).should be_true
+      end
+    end
+  end
+
+  describe "#plugins=" do
+    it "assigns plugins to user" do
+      user = Factory(:user)
+      plugin_list = ["refinery_one", "refinery_two", "refinery_three"]
+      user.plugins = plugin_list
+      user.plugins.collect { |p| p.name }.should == plugin_list
+    end
+  end
+
+  describe "#authorized_plugins" do
+    it "returns array of user and always allowd plugins" do
+      user = Factory(:user)
+      ["refinery_one", "refinery_two", "refinery_three"].each_with_index do |name, index|
+        user.plugins.create!(:name => name, :position => index)
+      end
+      user.authorized_plugins.should == user.plugins.collect { |p| p.name } | Refinery::Plugins.always_allowed.names
+    end
+  end
+
+  describe "plugins association" do
+    before(:each) do
+      @user = Factory(:user)
+      @plugin_list = ["refinery_one", "refinery_two", "refinery_three"]
+      @user.plugins = @plugin_list
+    end
+
+    it "have a plugins attribute" do
+      @user.should respond_to(:plugins)
+    end
+
+    it "returns plugins in ASC order" do
+      @user.plugins[0].name.should == @plugin_list[0]
+      @user.plugins[1].name.should == @plugin_list[1]
+      @user.plugins[2].name.should == @plugin_list[2]
+    end
+
+    it "deletes associated plugins" do
+      @user.destroy
+      UserPlugin.find_by_user_id(@user.id).should be_nil
+    end
+  end
+end

metadata

@@ -0,0 +1,144 @@
+--- !ruby/object:Gem::Specification 
+name: refinerycms-authentication
+version: !ruby/object:Gem::Version 
+  prerelease: 
+  version: 0.9.9.1
+platform: ruby
+authors: 
+- Resolve Digital
+- Philip Arndt
+- David Jones
+- Steven Heidel
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-02-15 00:00:00 +13:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: refinerycms-core
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        version: 0.9.9.1
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: devise
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        version: "1.1"
+  type: :runtime
+  version_requirements: *id002
+description: The default authentication engine for Refinery CMS
+email: info@refinerycms.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- app/controllers/admin/users_controller.rb
+- app/controllers/passwords_controller.rb
+- app/controllers/registrations_controller.rb
+- app/controllers/sessions_controller.rb
+- app/helpers/sessions_helper.rb
+- app/helpers/users_helper.rb
+- app/mailers/user_mailer.rb
+- app/models/role.rb
+- app/models/roles_users.rb
+- app/models/user.rb
+- app/models/user_plugin.rb
+- app/views/admin/users/_form.html.erb
+- app/views/admin/users/_user.html.erb
+- app/views/admin/users/_users.html.erb
+- app/views/admin/users/edit.html.erb
+- app/views/admin/users/index.html.erb
+- app/views/admin/users/new.html.erb
+- app/views/layouts/login.html.erb
+- app/views/passwords/edit.html.erb
+- app/views/passwords/new.html.erb
+- app/views/registrations/new.html.erb
+- app/views/sessions/new.html.erb
+- app/views/user_mailer/reset_notification.html.erb
+- app/views/user_mailer/reset_notification.text.plain.erb
+- config/locales/cs.yml
+- config/locales/da.yml
+- config/locales/de.yml
+- config/locales/el.yml
+- config/locales/en.yml
+- config/locales/es.yml
+- config/locales/fr.yml
+- config/locales/it.yml
+- config/locales/lolcat.yml
+- config/locales/lt.yml
+- config/locales/lv.yml
+- config/locales/nb.yml
+- config/locales/nl.yml
+- config/locales/pl.yml
+- config/locales/pt-BR.yml
+- config/locales/rs.yml
+- config/locales/ru.yml
+- config/locales/sl.yml
+- config/locales/sv.yml
+- config/locales/vi.yml
+- config/locales/zh-CN.yml
+- config/locales/zh-TW.yml
+- config/routes.rb
+- db/migrate/20100913234705_create_refinerycms_authentication_schema.rb
+- db/migrate/20100929035252_add_missing_indexes_to_roles_users.rb
+- db/migrate/20101206013505_change_to_devise_users_table.rb
+- db/migrate/20110106184757_add_remember_created_at_to_users.rb
+- features/lost_password.feature
+- features/manage_users.feature
+- features/step_definitions/lost_password.rb
+- features/step_definitions/user_steps.rb
+- features/support/factories.rb
+- features/support/paths.rb
+- lib/authenticated_system.rb
+- lib/gemspec.rb
+- lib/generators/refinerycms_authentication_generator.rb
+- lib/refinerycms-authentication.rb
+- license.md
+- readme.md
+- refinerycms-authentication.gemspec
+- spec/models/user_spec.rb
+has_rdoc: true
+homepage: http://refinerycms.com
+licenses: 
+- MIT
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+requirements: []
+
+rubyforge_project: refinerycms
+rubygems_version: 1.5.2
+signing_key: 
+specification_version: 3
+summary: Authentication engine for Refinery CMS
+test_files: []
+