rodauth-tools 0.3.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 49ed411752d1850001a89d8be7260feef6e8b4dae04547100d75bde5c80d1afd
+  data.tar.gz: ce7e4e431d01a64f4e6a8f1847795a1df7caa529895b0aa12568543668aaca71
+SHA512:
+  metadata.gz: 76cec388e98fb42c5413d25ac99ee8db3351db79f6c68c57abee7049286738b7242b0afa0527bc3c1df2066d002c667687d6089fc54a20a1a3df5553d52ffee8
+  data.tar.gz: 3eface17b5e1d077bb93498c793af35d9554d9e42bf72511eb7c9569ad84fd5a2cfaf7eee84c9c91b9af5d9672ef111bee01e1bd5dbe65c4434b76df3e10c845

data/.gitignore

@@ -0,0 +1,93 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+# rspec failure tracking
+.rspec_status
+
+# Globs
+*.env
+*.log
+*.rdb
+*.txt
+*.rdoc
+.*.json
+.byebug*
+.ruby-version
+spoom_*
+.commit_hash.txt
+*.sublime-*
+.yardoc
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+
+# Directories
+.certs/
+.claude
+.continue/
+.devcontainer
+.history
+.pnpm/
+.pnpm-store/
+.prompts/
+.prompts*
+.pytest_cache/
+.ruby-lsp/
+.serena
+.vscode/
+.idea/
+.cache/
+.temp/
+.zed/
+.appendonlydir/
+.bundle/
+.rspec
+.rspec_status
+appendonlydir/
+data/
+doc/
+node_modules/
+vendor/
+log/
+tmp/
+coverage/
+dist/
+public/web/dist/
+public/doc
+!tests/data
+
+# Files
+.DS_Store
+!.pr_agent.toml
+.github/*md
+.eslintcache
+.claude
+.rspec*
+.qodo
+.continuerc.json
+.mcp.json
+bin/bundle
+bin/rspec
+bin/rubocop
+!fly.toml
+support/schemas/
+tsconfig.tsbuildinfo
+*.db
+
+
+# Environment files
+.env*
+!.env.example
+
+# Playwright paths
+test-results/
+playwright-report/
+blob-report/
+playwright/.cache/

data/.gitlint

@@ -0,0 +1,9 @@
+[general]
+ignore=body-is-missing
+contrib=contrib-title-conventional-commits
+
+[title-max-length]
+line-length=72
+
+[contrib-title-conventional-commits]
+types=feat,fix,docs,style,refactor,perf,test,build,ci,chore,revert

data/.markdownlint-cli2.jsonc

@@ -0,0 +1,26 @@
+// Configuration for markdownlint-cli2
+{
+  // Markdownlint rules configuration
+  "config": {
+    "default": true,
+    "MD003": { "style": "atx" },
+    "MD004": { "style": "dash" },
+    "MD007": { "indent": 2 },
+    "MD009": { "br_spaces": 2 },
+    "MD013": false,
+    "MD024": { "siblings_only": true },
+    "MD025": true,
+    "MD033": false,
+    "MD041": false,
+    "MD046": { "style": "fenced" },
+    "MD048": { "style": "backtick" },
+  },
+
+  // Automatically fix violations when possible
+  "fix": true,
+
+  // Files/directories to ignore
+  // Note: When run via pre-commit, only staged files are checked.
+  // The globs pattern is not needed as pre-commit passes filenames automatically.
+  "ignores": ["node_modules", ".serena"],
+}

data/.pre-commit-config.yaml

@@ -0,0 +1,46 @@
+# See https://pre-commit.com for more information
+# See https://pre-commit.com/hooks.html for more hooks
+repos:
+  # General file checks
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v5.0.0
+    hooks:
+      - id: trailing-whitespace
+        args: [--markdown-linebreak-ext=md]
+      - id: end-of-file-fixer
+      - id: check-yaml
+      - id: check-added-large-files
+        args: [--maxkb=500]
+      - id: check-merge-conflict
+      - id: check-case-conflict
+      - id: mixed-line-ending
+        args: [--fix=lf]
+      - id: detect-private-key
+
+  # Security checks
+  - repo: local
+    hooks:
+      - id: bundler-audit
+        name: bundler-audit
+        entry: bash -c 'eval "$(rbenv init - bash)" && bundle exec bundler-audit "$@"' --
+        language: system
+        args: [--update]
+        types: [ruby]
+        pass_filenames: false
+
+  # Markdown linting
+  - repo: https://github.com/DavidAnson/markdownlint-cli2
+    rev: v0.18.1
+    hooks:
+      - id: markdownlint-cli2
+        args: [--fix, --config, .markdownlint-cli2.jsonc]
+
+  # Commit message checks
+  #
+  # Prefix must be one of: feat, fix, docs, style, refactor, perf, test, build, ci, chore
+  #
+  - repo: https://github.com/jorisroovers/gitlint
+    rev: v0.19.1
+    hooks:
+      - id: gitlint
+        stages: [commit-msg]

data/.rubocop.yml

@@ -0,0 +1,18 @@
+inherit_from: .rubocop_todo.yml
+
+# .rubocop.yml
+
+plugins:
+  - rubocop-rake
+  - rubocop-rspec
+
+AllCops:
+  TargetRubyVersion: 3.2
+  NewCops: enable
+  SuggestExtensions: false
+
+Style/StringLiterals:
+  EnforcedStyle: single_quotes
+
+Style/StringLiteralsInInterpolation:
+  EnforcedStyle: double_quotes

data/.rubocop_todo.yml

@@ -0,0 +1,243 @@
+# This configuration was generated by
+# `rubocop --auto-gen-config`
+# on 2025-11-25 21:51:07 UTC using RuboCop version 1.81.7.
+# The point is for the user to remove these configuration records
+# one by one as the offenses are removed from the code base.
+# Note that changes in the inspected code, or installation of new
+# versions of RuboCop, may require this file to be generated again.
+
+# Offense count: 4
+# Configuration parameters: IgnoreLiteralBranches, IgnoreConstantBranches, IgnoreDuplicateElseBranch.
+Lint/DuplicateBranch:
+  Exclude:
+    - 'lib/rodauth/sequel_generator.rb'
+
+# Offense count: 1
+Lint/NoReturnInBeginEndBlocks:
+  Exclude:
+    - 'lib/rodauth/features/external_identity.rb'
+
+# Offense count: 6
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: AllowedMethods, InferNonNilReceiver, AdditionalNilMethods.
+# AllowedMethods: instance_of?, kind_of?, is_a?, eql?, respond_to?, equal?
+# AdditionalNilMethods: present?, blank?, try, try!
+Lint/RedundantSafeNavigation:
+  Exclude:
+    - 'lib/rodauth/features/table_guard.rb'
+
+# Offense count: 2
+# This cop supports safe autocorrection (--autocorrect).
+# Configuration parameters: AllowUnusedKeywordArguments, IgnoreEmptyMethods, IgnoreNotImplementedMethods, NotImplementedExceptions.
+# NotImplementedExceptions: NotImplementedError
+Lint/UnusedMethodArgument:
+  Exclude:
+    - 'lib/rodauth/sequel_generator.rb'
+
+# Offense count: 1
+# This cop supports unsafe autocorrection (--autocorrect-all).
+Lint/UselessMethodDefinition:
+  Exclude:
+    - 'lib/rodauth/features/table_guard.rb'
+
+# Offense count: 21
+# Configuration parameters: AllowedMethods, AllowedPatterns, CountRepeatedAttributes.
+Metrics/AbcSize:
+  Max: 87
+
+# Offense count: 5
+# Configuration parameters: CountComments, CountAsOne, AllowedMethods, AllowedPatterns, inherit_mode.
+# AllowedMethods: refine
+Metrics/BlockLength:
+  Max: 509
+
+# Offense count: 1
+# Configuration parameters: CountComments, CountAsOne.
+Metrics/ClassLength:
+  Max: 289
+
+# Offense count: 10
+# Configuration parameters: AllowedMethods, AllowedPatterns.
+Metrics/CyclomaticComplexity:
+  Max: 22
+
+# Offense count: 41
+# Configuration parameters: CountComments, CountAsOne, AllowedMethods, AllowedPatterns.
+Metrics/MethodLength:
+  Max: 64
+
+# Offense count: 3
+# Configuration parameters: CountComments, CountAsOne.
+Metrics/ModuleLength:
+  Max: 511
+
+# Offense count: 10
+# Configuration parameters: AllowedMethods, AllowedPatterns.
+Metrics/PerceivedComplexity:
+  Max: 18
+
+# Offense count: 2
+Naming/AccessorMethodName:
+  Exclude:
+    - 'lib/rodauth/features/table_guard.rb'
+    - 'lib/rodauth/template_inspector.rb'
+
+# Offense count: 2
+# Configuration parameters: Mode, AllowedMethods, AllowedPatterns, AllowBangMethods, WaywardPredicates.
+# AllowedMethods: call
+# WaywardPredicates: nonzero?
+Naming/PredicateMethod:
+  Exclude:
+    - 'lib/rodauth/features/external_identity.rb'
+
+# Offense count: 9
+# Configuration parameters: Prefixes, AllowedPatterns.
+# Prefixes: when, with, without
+RSpec/ContextWording:
+  Exclude:
+    - 'spec/rodauth/features/external_identity/external_identity_spec.rb'
+
+# Offense count: 5
+# Configuration parameters: IgnoredMetadata.
+RSpec/DescribeClass:
+  Exclude:
+    - '**/spec/features/**/*'
+    - '**/spec/requests/**/*'
+    - '**/spec/routing/**/*'
+    - '**/spec/system/**/*'
+    - '**/spec/views/**/*'
+    - 'spec/rodauth/features/external_identity/external_identity_spec.rb'
+    - 'spec/rodauth/features/external_identity_autocreate_integration_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_integration_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_simple_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_spec.rb'
+
+# Offense count: 58
+# This cop supports unsafe autocorrection (--autocorrect-all).
+RSpec/EmptyExampleGroup:
+  Exclude:
+    - 'spec/rodauth/features/table_guard/table_guard_spec.rb'
+    - 'spec/rodauth/sequel_generator_spec.rb'
+    - 'spec/rodauth/table_inspector_spec.rb'
+    - 'spec/rodauth/tools/console_helpers_spec.rb'
+
+# Offense count: 180
+# Configuration parameters: CountAsOne.
+RSpec/ExampleLength:
+  Max: 34
+
+# Offense count: 72
+RSpec/MultipleExpectations:
+  Max: 8
+
+# Offense count: 1
+# Configuration parameters: CustomTransform, IgnoreMethods, IgnoreMetadata, InflectorPath, EnforcedInflector.
+# SupportedInflectors: default, active_support
+RSpec/SpecFilePathFormat:
+  Exclude:
+    - '**/spec/routing/**/*'
+    - 'spec/rodauth/rack_spec.rb'
+
+# Offense count: 1
+Security/Eval:
+  Exclude:
+    - 'lib/rodauth/tools/migration.rb'
+
+# Offense count: 1
+Style/DocumentDynamicEvalDefinition:
+  Exclude:
+    - 'lib/rodauth/tools/migration.rb'
+
+# Offense count: 4
+# Configuration parameters: AllowedConstants.
+Style/Documentation:
+  Exclude:
+    - 'spec/**/*'
+    - 'test/**/*'
+    - 'lib/rodauth/features/external_identity.rb'
+    - 'lib/rodauth/features/hmac_secret_guard.rb'
+    - 'lib/rodauth/features/jwt_secret_guard.rb'
+    - 'lib/rodauth/features/table_guard.rb'
+
+# Offense count: 1
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: AllowedReceivers.
+# AllowedReceivers: Thread.current
+Style/HashEachMethods:
+  Exclude:
+    - 'lib/rodauth/features/external_identity.rb'
+
+# Offense count: 5
+# This cop supports safe autocorrection (--autocorrect).
+Style/IfUnlessModifier:
+  Exclude:
+    - 'lib/rodauth/features/external_identity.rb'
+    - 'lib/rodauth/features/table_guard.rb'
+    - 'lib/rodauth/sequel_generator.rb'
+
+# Offense count: 8
+Style/MultilineBlockChain:
+  Exclude:
+    - 'spec/rodauth/features/external_identity/external_identity_spec.rb'
+    - 'spec/rodauth/features/external_identity_autocreate_integration_spec.rb'
+    - 'spec/rodauth/features/hmac_secret_guard/hmac_secret_guard_spec.rb'
+    - 'spec/rodauth/features/jwt_secret_guard/jwt_secret_guard_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_integration_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_simple_spec.rb'
+
+# Offense count: 3
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: EnforcedStyle, AllowedMethods, AllowedPatterns.
+# SupportedStyles: predicate, comparison
+Style/NumericPredicate:
+  Exclude:
+    - 'spec/**/*'
+    - 'lib/rodauth/features/table_guard.rb'
+
+# Offense count: 5
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: ConvertCodeThatCanStartToReturnNil, AllowedMethods, MaxChainLength.
+# AllowedMethods: present?, blank?, presence, try, try!
+Style/SafeNavigation:
+  Exclude:
+    - 'spec/rodauth/features/external_identity/external_identity_spec.rb'
+    - 'spec/rodauth/features/external_identity_autocreate_integration_spec.rb'
+    - 'spec/rodauth/features/hmac_secret_guard/hmac_secret_guard_spec.rb'
+    - 'spec/rodauth/features/jwt_secret_guard/jwt_secret_guard_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_simple_spec.rb'
+
+# Offense count: 1
+# This cop supports unsafe autocorrection (--autocorrect-all).
+Style/SingleArgumentDig:
+  Exclude:
+    - 'lib/rodauth/features/external_identity.rb'
+
+# Offense count: 5
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: Mode.
+Style/StringConcatenation:
+  Exclude:
+    - 'examples/sinatra-table-guard/app.rb'
+    - 'examples/sinatra-table-guard/console.rb'
+    - 'lib/rodauth/sequel_generator.rb'
+
+# Offense count: 60
+# This cop supports unsafe autocorrection (--autocorrect-all).
+# Configuration parameters: AllowMethodsWithArguments, AllowedMethods, AllowedPatterns, AllowComments.
+# AllowedMethods: define_method
+Style/SymbolProc:
+  Exclude:
+    - 'spec/rodauth/features/external_identity/external_identity_spec.rb'
+    - 'spec/rodauth/features/external_identity_autocreate_integration_spec.rb'
+    - 'spec/rodauth/features/hmac_secret_guard/hmac_secret_guard_spec.rb'
+    - 'spec/rodauth/features/jwt_secret_guard/jwt_secret_guard_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_integration_spec.rb'
+    - 'spec/rodauth/features/table_guard/table_guard_simple_spec.rb'
+    - 'try/features/external_identity_try.rb'
+
+# Offense count: 3
+# This cop supports safe autocorrection (--autocorrect).
+# Configuration parameters: AllowHeredoc, AllowURI, AllowQualifiedName, URISchemes, IgnoreCopDirectives, AllowedPatterns, SplitStrings.
+# URISchemes: http, https
+Layout/LineLength:
+  Max: 170

data/CHANGELOG.md

@@ -0,0 +1,81 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [0.3.0] - 2025-11-25
+
+### Added
+
+- **External Identity Layer 2 API** - Extended configuration options for external identity columns:
+  - `before_create_account` callback for auto-generating IDs during account creation
+  - `formatter` for normalizing values before storage
+  - `validator` for validating values before storage
+  - `verifier` for checking external service connectivity
+  - `handshake` for OAuth state verification flows
+- **TemplateInspector module** - Extracts table names directly from ERB templates to solve the "hidden tables" problem where templates create tables without corresponding `*_table` methods
+- **SequelGenerator** - Generates Sequel migration code for missing Rodauth tables with:
+  - ALTER TABLE support for adding missing columns
+  - Integration with TemplateInspector for complete table discovery
+  - Sequel column options support (types, constraints)
+- **Table Guard column-level tracking** - Validates both tables AND columns exist for enabled features
+- Comprehensive test coverage for new features
+
+### Changed
+
+- ERB templates now aligned with Rodauth README Sequel examples
+- Removed hardcoded feature mappings from TableInspector in favor of dynamic discovery
+- File headers standardized with path comments and `frozen_string_literal`
+
+### Fixed
+
+- DROP statement generation now uses TemplateInspector for complete table list
+- `account_select` override behavior corrected for external identity columns
+- Column type mapping for Class constants in migrations
+
+## [0.2.0] - 2025-10-28
+
+### Changed
+
+- Reordered features in README.md by common use case (table_guard first)
+- Improved project status messaging and clarified this is a reference implementation
+- Enhanced installation instructions with multiple options
+- Updated documentation cross-references and fixed broken links
+- Improved example documentation with expected output and learning outcomes
+
+### Added
+
+- Quick Start section to README.md showing immediate value
+- CHANGELOG.md to track project changes
+- Expected output examples in sinatra-table-guard documentation
+- Detailed "What you'll learn" sections in examples
+
+### Fixed
+
+- Broken link from `docs/integration.md` to `docs/rodauth-integration.md`
+- Missing context about project purpose and use cases
+
+## [0.1.0] - 2025-10-15
+
+### Added
+
+- Table Guard feature for database table validation
+- External Identity feature for tracking external service IDs
+- HMAC Secret Guard feature for automatic secret validation
+- JWT Secret Guard feature for automatic JWT secret validation
+- Sequel migration generator for 19 Rodauth features
+- Interactive console with helper methods
+- Comprehensive test suite with RSpec
+- Documentation for all features
+- Sinatra example application
+
+### Changed
+
+- Namespace changed from `Rodauth::Rack::Generators::Migration` to `Rodauth::Tools::Migration`
+- Evolution from Rack adapter to framework-agnostic utilities
+
+[0.3.0]: https://github.com/delano/rodauth-tools/compare/v0.2.0...v0.3.0
+[0.2.0]: https://github.com/delano/rodauth-tools/compare/v0.1.0...v0.2.0
+[0.1.0]: https://github.com/delano/rodauth-tools/releases/tag/v0.1.0