revise 0.0.1

data/lib/padrino/revise.rb

@@ -0,0 +1,8 @@
+module Padrino
+  module Revise
+    def self.registered(app)
+      app.helpers ::Revise::Helpers::Core
+      app.send(:extend, ::Revise::Helpers::Core)
+    end
+  end
+end

data/lib/revise.rb

@@ -0,0 +1,110 @@
+require 'revise/core_ext/string'
+require 'active_support'
+require 'active_support/core_ext/numeric/time'
+require 'orm_adapter'
+require 'set'
+require 'securerandom'
+require 'revise/core_ext/module'
+require 'revise/helpers/core'
+require 'padrino/revise'
+
+module Revise 
+  MODULES    = {} 
+  HELPERS    = []
+  CONTROLERS = []
+  MAILERS    = []
+
+  autoload :Models,      'revise/models'
+  autoload :ParamFilter, 'revise/param_filter'
+
+  module Controllers
+    autoload :Accounts,      'revise/controllers/accounts'
+    autoload :Confirmations, 'revise/controllers/confirmations'
+    autoload :Main,          'revise/controllers/main'
+    autoload :Recovery,      'revise/controllers/recovery'
+    autoload :Sessions,      'revise/controllers/sessions'
+    autoload :Invitations,   'revise/controllers/invitations'
+  end
+
+  module Helpers
+    autoload :Authentication, 'revise/helpers/authentication'
+  end
+
+  module Mailers
+    autoload :Confirmable, 'revise/mailers/confirmable'
+    autoload :Recoverable, 'revise/mailers/recoverable'
+  end
+
+  module Models
+    autoload :Authenticatable,         'revise/models/authenticatable'
+    autoload :Confirmable,             'revise/models/confirmable'
+    autoload :DatabaseAuthenticatable, 'revise/models/database_authenticatable'
+    autoload :Recoverable,             'revise/models/recoverable'
+    autoload :Invitable,               'revise/models/invitable'
+  end
+
+  mattr_accessor :app
+  mattr_accessor :mailer_from
+  @@mailer_from = nil
+
+  mattr_accessor :pepper
+  @@pepper = nil
+
+  mattr_accessor :stretches
+  @@stretches = 10
+
+  mattr_accessor :allow_unconfirmed_access_for
+  @@allow_unconfirmed_access_for = 0.days
+
+  mattr_accessor :confirm_within
+  @@confirm_within = nil
+
+  mattr_accessor :confirmation_keys
+  @@confirmation_keys = [:email]
+
+  mattr_accessor :reconfirmable
+  @@reconfirmable = false
+
+  mattr_accessor :reset_password_keys
+  @@reset_password_keys = [:email]
+
+  mattr_accessor :reset_password_within
+  @@reset_password_within = 6.hours
+
+  mattr_accessor :case_insensitive_keys
+  @@case_insensitive_keys = [:email]
+
+  mattr_accessor :strip_whitespace_keys
+  @@strip_whitespace_keys = []
+
+  mattr_accessor :invite_for
+  @@invite_for = 0
+
+  mattr_accessor :validate_on_invite
+  @@validate_on_invite = false
+
+  mattr_accessor :invitation_limit
+  @@invitation_limit = 5
+
+  mattr_accessor :email_regexp
+  @@email_regexp = /\A[^@]+@[^@]+\z/
+
+  mattr_accessor :invite_key
+  @@invite_key = {:email => @@email_regexp}
+
+  mattr_accessor :resend_invitation
+  @@resend_invitation = true
+
+  mattr_accessor :invited_by_class_name
+  @@invited_by_class_name = nil
+
+  def self.setup
+    yield self
+  end
+end
+
+require 'revise/models'
+require 'revise/orm/mongo_mapper'
+require 'padrino/revise'
+
+I18n.load_path += Dir["#{File.dirname(__FILE__)}/revise/locale/**/*.yml"]

data/lib/revise/controllers/accounts.rb

@@ -0,0 +1,59 @@
+module Revise
+  module Controllers
+    module Accounts
+      def self.extended(klass)
+        klass.controllers :accounts do
+          before(:show, :edit, :update, :destroy) do  
+            @account = current_account   
+            halt 403, 'Login first' unless @account
+          end
+
+          get :new, :map => '/accounts/new', :priority => :low do
+            @account = Account.new
+            render 'accounts/new'
+          end
+
+          post :create, :map => '/accounts', :priority => :low do
+            if current_account  
+              flash[:notice] = "You are already registered"  
+              redirect_back_or_default(url(:main, :index))
+            end 
+
+            @account = Account.new(params[:account])   
+            if @account.save  
+              redirect url(:main, :index)
+            else
+              status 400
+              render 'accounts/new'
+            end
+          end
+
+          get :edit, :map => '/accounts/edit', :priority => :low do
+            respond(@account)
+          end
+
+          put :update, :map => '/accounts', :priority => :low do  
+            @account.update_attributes!(params[:account])  
+            respond(@account, url(:accounts, :edit))
+          end   
+
+          delete :destroy, :map => '/accounts', :priority => :low do
+            if current_account.respond_to?(:archive)
+              destroyed = current_account.archive
+            else
+              destroyed = current_account.destroy
+            end
+
+            if destroyed
+              flash[:notice] = "You have successfully deleted your account. It is disabled for now and will be completely 
+                removed within 48 hours."  
+            else
+              flash[:warning] = "Couldn't Delete Your Account"
+            end
+            redirect_back_or_default(url(:main, :index))
+          end   
+        end
+      end
+    end
+  end
+end

data/lib/revise/controllers/confirmations.rb

@@ -0,0 +1,26 @@
+module Revise
+  module Controllers
+    module Confirmations
+      def self.extended(klass)
+        klass.controllers :accounts do
+          get :confirm, :map => '/accounts/confirm/:confirmation_token', :priority => :low do
+            account = Account.confirm_by_token(params[:confirmation_token])
+            if account
+              if account.errors.empty?
+                flash[:notice] = "Account Confirmed Please Login"
+                render 'accounts/confirmed'
+              else
+                flash[:error] = account.errors.full_messages()
+                render 'accounts/confirmed'
+              end
+            else
+              flash[:error] = "Token Does Not Exist"
+              status 404
+              render 'accounts/confirmation_token_404'
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/revise/controllers/invitations.rb

@@ -0,0 +1,55 @@
+module Revise
+  module Controllers
+    module Invitations
+      def self.extended(klass)
+        klass.controllers :invitations do
+          before(:new, :create) do
+            halt 403, 'Login first' unless current_account
+          end
+
+          before(:create) do
+            halt 403, "You've no invitations left" unless current_account.has_invitations_left? || current_account.role?(:admin)
+          end
+
+          get :new, :map => '/invitations/new', :priority => :low do
+            @account = Account.new
+            render 'invitations/new'
+          end
+
+          post :create, :map => '/invitations', :priority => :low do
+            @account = Account.invite!(params[:account], current_account)
+
+            if @account.errors.empty?
+              flash[:notice] = "You've invited #{params[:account][:email]}"
+              redirect url(:main, :index)
+            else
+              status 400
+              render 'invitations/new'
+            end
+          end
+
+          get :edit, :map => '/invitations/:invitation_token', :priority => :low do
+            if params[:invitation_token] && @account = Account.to_adapter.find_first(:invitation_token => params[:invitation_token])
+              render 'invitations/edit'
+            else
+              status 404
+              flash.now[:alert] = "Invitation Token Invalid"
+              render 'invitations/404'
+            end
+          end
+
+          put :update, :map => '/invitations/:invitation_token', :priority => :low do
+            @account = Account.accept_invitation!(params[:account])
+
+            if @account.errors.empty?
+              flash[:notice] = "Accepted Invitation. Now login"
+              respond(@account, url(:sessions, :new))
+            else
+              render 'invitations/edit'
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/revise/controllers/main.rb

@@ -0,0 +1,13 @@
+module Revise
+  module Controllers
+    module Main
+      def self.extended(klass)
+        klass.controllers :main do
+          get :index, :map => '/',  :priority => :low do
+            render "main/index"
+          end
+        end
+      end
+    end
+  end
+end

data/lib/revise/controllers/recovery.rb

@@ -0,0 +1,60 @@
+module Revise
+  module Controllers
+    module Recovery
+      def self.extended(klass)
+        klass.controllers :accounts do
+          before do
+            halt 403, "You're already logged in?" if current_account
+          end
+
+          before(:forgot_password, :reset_password) do
+            @account = Account.new
+          end
+
+          get :forgot_password, :map => '/accounts/forgot-password', :priority => :low do
+            render 'accounts/forgot_pass'
+          end
+
+          post :send_reset_password_instructions, :map => '/accounts/forgot-password', :priority => :low do
+            account = Account.find_by_email(params[:email])
+
+            if account
+              account.send_reset_password_instructions 
+              flash[:notice] = "You've been sent an email with instructions"
+            else
+              status 404
+              flash[:warning] = "No email by that name was found"
+            end
+
+            redirect(url(:main, :index))
+          end
+
+          get :reset_password, :map => '/accounts/reset-password/:reset_password_token', :priority => :low do
+            flash[:error] = "Reset Password Token Does Not Exist" unless Account.find_by_reset_password_token(params[:reset_password_token])
+            render 'accounts/reset_password'
+          end
+
+          put :new_password, :map => '/accounts/reset-password/:reset_password_token', :priority => :low do
+            account = Account.reset_password_by_token({:password => params[:password], 
+              :password_confirmation => params[:password_confirmation], 
+              :reset_password_token  => params[:reset_password_token]})
+
+            if account
+              if account.errors.empty?
+                flash[:notice] = "Account Password Has Been Reset"
+                redirect(url(:main, :index))
+              else
+                flash[:error] = account.errors.full_messages()
+                redirect(url(:main, :index))
+              end
+            else
+              flash[:error] = "Reset Password Token Does Not Exist"
+              status 404
+              render 'accounts/reset_password_token_404'
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/revise/controllers/sessions.rb

@@ -0,0 +1,22 @@
+module Revise
+  module Controllers
+    module Sessions
+      def self.extended(klass)  
+        klass.controllers :sessions do
+          get :new, :map => '/sessions/new', :priority => :low do
+            render "/sessions/new", nil, :layout => false
+          end
+        
+          post :create, :map => '/sessions', :priority => :low do
+            authenticate()
+          end
+        
+          delete :destroy, :map => '/sessions', :priority => :low do
+            set_current_account()
+            redirect url(:sessions, :new)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/revise/core_ext/module.rb

@@ -0,0 +1,52 @@
+require 'active_support/core_ext/array/extract_options'
+
+class Module
+  def mattr_reader(*syms)
+    options = syms.extract_options!
+    syms.each do |sym|
+      raise NameError.new('invalid attribute name') unless sym =~ /^[_A-Za-z]\w*$/
+      class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+        @@#{sym} = nil unless defined? @@#{sym}
+
+        def self.#{sym}
+          @@#{sym}
+        end
+      EOS
+
+      unless options[:instance_reader] == false || options[:instance_accessor] == false
+        class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+          def #{sym}
+            @@#{sym}
+          end
+        EOS
+      end
+    end
+  end
+
+  def mattr_writer(*syms)
+    options = syms.extract_options!
+    syms.each do |sym|
+      raise NameError.new('invalid attribute name') unless sym =~ /^[_A-Za-z]\w*$/
+      class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+        def self.#{sym}=(obj)
+          @@#{sym} = obj
+        end
+      EOS
+
+      unless options[:instance_writer] == false || options[:instance_accessor] == false
+        class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+          def #{sym}=(obj)
+            @@#{sym} = obj
+          end
+        EOS
+      end
+    end
+  end
+
+  # Extends the module object with module and instance accessors for class attributes,
+  # just like the native attr* accessors for instance attributes.
+  def mattr_accessor(*syms)
+    mattr_reader(*syms)
+    mattr_writer(*syms)
+  end
+end

data/lib/revise/core_ext/string.rb

@@ -0,0 +1,14 @@
+class String
+  def self.friendly_token
+    SecureRandom.base64(15).tr('+/=lIO0', 'pqrsxyz')
+  end
+
+  def self.secure_compare(a, b)
+    return false if a.blank? || b.blank? || a.bytesize != b.bytesize
+    l = a.unpack "C#{a.bytesize}"
+
+    res = 0
+    b.each_byte { |byte| res |= byte ^ l.shift }
+    res == 0
+  end
+end

data/lib/revise/helpers/authentication.rb

@@ -0,0 +1,21 @@
+module Revise
+  module Helpers
+    module Authentication
+      def authenticate()
+        if account = Account.authenticate(params[:email], params[:password])
+          set_current_account(account)
+          redirect url(:main, :index)
+        elsif Padrino.env == :development && params[:bypass] || Padrino.env == :test && params[:bypass]
+          account = Account.find_by_email(params[:email])
+          halt 400, "Email does not exist." unless account
+          set_current_account(account)
+          redirect url(:main, :index)
+        else
+          params[:email], params[:password] = h(params[:email]), h(params[:password])
+          flash[:warning] = "Login or password wrong."
+          redirect url(:sessions, :new)
+        end
+      end
+    end
+  end
+end