rom-auth 0.0.4

data/spec/integration/system_spec.rb

@@ -0,0 +1,68 @@
+describe ROM::Auth::System do
+
+  let(:setup)       { ROM.setup(:sql, "sqlite::memory") }
+  let(:connection)  { setup.default.connection }
+
+  def password
+    'somepassword'
+  end
+
+  def password_verifier
+    ROM::Auth::PasswordVerifiers::PBKDF2Verifier.for_password(password)
+  end
+
+  before do
+    connection.create_table(:users) do
+      primary_key :id
+    end
+
+    class User
+      include Virtus.value_object(coerce: false)
+
+      values do
+        attribute :id, Integer
+      end
+    end
+
+    @users = Class.new(ROM::Relation[:sql]) do
+      register_as :users
+      dataset :users
+
+      def by_id(id)
+        where(id: id)
+      end
+    end
+
+    @mapper = Class.new(ROM::Mapper) do
+      relation(:users)
+      model(User) # FIXME
+    end
+  end
+
+  it '#authenticate' do
+    config = ROM::Auth::Configuration.new do |c|
+      c.plugin(ROM::Auth::Plugins::AuthenticationCredentialsPlugin)
+    end
+
+    system = ROM::Auth::System.new(config)
+
+    system.migrate!(setup)
+
+    rom = ROM.finalize.env
+
+    expect{ system.authenticate(nil) }.to raise_error
+
+    connection[:users].insert(id: 1)
+    connection[:authentication_credentials].insert(
+      user_id: 1,
+      type: 'email',
+      identifier: 'a@b.c.de',
+      verifier_data: password_verifier.to_s
+    )
+
+    creds = OpenStruct.new(identifier: 'a@b.c.de', type: 'email', password: password)
+
+    assert{ system.authenticate(creds) }
+  end
+
+end

data/spec/unit/rom/auth/configuration_spec.rb

@@ -0,0 +1,27 @@
+describe ROM::Auth::Configuration do
+  it '' do
+    config = described_class.new do
+    end
+
+    assert{ config.plugins == {} }
+  end
+
+  it '' do
+    config = described_class.new do |c|
+      c.plugin ROM::Auth::Plugins::AuthenticationEventsPlugin
+    end
+
+    assert{ config.plugins.keys == [ROM::Auth::Plugins::AuthenticationEventsPlugin] }
+  end
+
+  it '' do
+    config = described_class.new do |c|
+      c.plugin ROM::Auth::Plugins::AuthenticationEventsPlugin do
+      end
+    end
+
+    plugin_data = config.plugins[ROM::Auth::Plugins::AuthenticationEventsPlugin]
+
+    assert{ plugin_data.is_a?(ROM::Auth::Plugins::AuthenticationEventsPlugin::Configuration) }
+  end
+end

data/spec/unit/rom/auth/password_verifiers/pbkdf2_verifier_spec.rb

@@ -0,0 +1,30 @@
+describe ROM::Auth::PasswordVerifiers::PBKDF2Verifier do
+
+  let(:password)  { 'somelongpw123,.-' }
+  let(:salt)      { 'AAFF435' }
+  let(:verifier)  { described_class.for_password(password, :salt => salt, :iterations => 2) }
+
+  describe '#initialize' do
+    it { assert{ verifier.class == ROM::Auth::PasswordVerifiers::PBKDF2Verifier } }
+    it { assert{ verifier.salt == salt } }
+    it { assert{ verifier.digest.is_a?(ROM::Auth::Digest) } }
+    it { assert{ verifier.digest.to_s == PBKDF2.new(:password => password, :salt => salt, :iterations => 2).hex_string } }
+  end
+
+  describe '#verifies' do
+    it { assert{ verifier.verifies?(password) } }
+    it { assert{ !verifier.verifies?('incorrect password') } }
+    it { assert{ !verifier.verifies?('') } }
+  end
+
+  describe '#to_s' do
+    it { assert{ verifier.to_s == "PBKDF2,#{salt},#{verifier.digest},2" } }
+  end
+
+  describe '.from_s' do
+    it { assert{ described_class.from_s(verifier.to_s) == verifier } }
+    it { assert{ described_class.from_s(verifier.to_s).to_s == verifier.to_s } }
+    it { assert{ described_class.from_s(verifier.to_s).verifies?(password) } }
+  end
+
+end

data/spec/unit/rom/auth/plugins/authentication_events_plugin_spec.rb

@@ -0,0 +1,109 @@
+describe ROM::Auth::Plugins::AuthenticationEventsPlugin do
+  let(:setup)       { ROM.setup(:sql, "sqlite::memory") }
+  let(:connection)  { setup.default.connection }
+
+  def password
+    'somepassword'
+  end
+
+  def password_verifier
+    ROM::Auth::PasswordVerifiers::PBKDF2Verifier.for_password(password)
+  end
+
+  it '#configure plugin' do
+    config = ROM::Auth::Configuration.new do |c|
+      c.plugin(described_class) do |c|
+        c.table_name = 'lolerskates'
+      end
+    end
+
+    system = ROM::Auth::System.new(config)
+
+    assert{ system.plugins.keys == [described_class] }
+    assert{ system.plugins[described_class].configuration.table_name == :lolerskates }
+  end
+
+  it '#migrate' do
+    config = ROM::Auth::Configuration.new do |c|
+      c.plugin(described_class) do |c|
+        c.table_name = 'lolerskates'
+      end
+    end
+
+    system = ROM::Auth::System.new(config)
+    system.migrate!(setup)
+
+    ROM.finalize
+
+    assert{
+      setup.default.connection.schema(:lolerskates).map{|c| c.first} == [
+        :id, :user_id, :started_at, :ended_at,
+        :identifier, :type, :authenticated, :success, :data
+      ]
+    }
+  end
+
+  it 'ROM::Auth::System#authenticate' do
+    config = ROM::Auth::Configuration.new do |c|
+      c.plugin(ROM::Auth::Plugins::AuthenticationCredentialsPlugin) do
+      end
+
+      c.plugin(described_class) do |c|
+        c.table_name = :auth_events
+      end
+    end
+
+    class User
+      include Virtus.value_object(coerce: false)
+
+      values do
+        attribute :id, Integer
+      end
+    end
+
+    connection.create_table(:users) do
+      primary_key :id
+    end
+
+    @users = Class.new(ROM::Relation[:sql]) do
+      dataset :users
+
+      def by_id(id)
+        where(id: id)
+      end
+    end
+
+    @mapper = Class.new(ROM::Mapper) do
+      relation(:users)
+      model(User) # FIXME
+    end
+
+    system = ROM::Auth::System.new(config)
+    system.migrate!(setup)
+
+    rom = ROM.finalize.env
+
+    connection[:users].insert(id: 1)
+    connection[:authentication_credentials].insert(
+      user_id: 1,
+      type: 'email',
+      identifier: 'a@b.c.de',
+      verifier_data: password_verifier.to_s
+    )
+
+    credentials = double(type: 'email', identifier: 'a@b.c.de', password: password)
+    user = double(:user, id: 1, password_verifier: password_verifier)
+
+    auths = rom.relation(:auth_events)
+
+    assert{ system.authenticate(credentials) }
+    assert{ auths.relation.count == 1 }
+
+    event = auths.as(:rom_auth_event).first
+    assert{ event.type == 'email' }
+    assert{ event.authenticated == true }
+    assert{ event.success == true }
+    assert{ event.user_id == 1 }
+  end
+
+end

data/spec/unit/rom/auth_spec.rb

@@ -0,0 +1,3 @@
+describe ROM::Auth do
+
+end

metadata

@@ -0,0 +1,242 @@
+--- !ruby/object:Gem::Specification
+name: rom-auth
+version: !ruby/object:Gem::Version
+  version: 0.0.4
+platform: ruby
+authors:
+- Ragmaanir
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-08-16 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rom
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.1
+- !ruby/object:Gem::Dependency
+  name: rom-sql
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.5'
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '3.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '3.2'
+- !ruby/object:Gem::Dependency
+  name: virtus
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: ice_nine
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.11'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.11'
+- !ruby/object:Gem::Dependency
+  name: pbkdf2-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.2.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.2.1
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: wrong
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: minitest-stub-const
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.9'
+- !ruby/object:Gem::Dependency
+  name: binding_of_caller
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+description: Provides low-level authentication based on ROM. Provides several plugins
+  in order to lockdown accounts on failed authentication and saving events for each
+  authentication attempt.
+email:
+- ragmaanir@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- README.md
+- lib/rom-auth.rb
+- lib/rom/auth.rb
+- lib/rom/auth/authenticators/authenticator.rb
+- lib/rom/auth/authenticators/password_authenticator.rb
+- lib/rom/auth/configuration.rb
+- lib/rom/auth/digest.rb
+- lib/rom/auth/migration.rb
+- lib/rom/auth/password_verifiers/password_verifier.rb
+- lib/rom/auth/password_verifiers/pbkdf2_verifier.rb
+- lib/rom/auth/plugins/authentication_credentials_plugin.rb
+- lib/rom/auth/plugins/authentication_events_plugin.rb
+- lib/rom/auth/plugins/lockdown_plugin.rb
+- lib/rom/auth/plugins/plugin.rb
+- lib/rom/auth/support/shorthand_symbol.rb
+- lib/rom/auth/system.rb
+- lib/rom/auth/version.rb
+- spec/integration/common_plugins_spec.rb
+- spec/integration/system_spec.rb
+- spec/unit/rom/auth/configuration_spec.rb
+- spec/unit/rom/auth/password_verifiers/pbkdf2_verifier_spec.rb
+- spec/unit/rom/auth/plugins/authentication_events_plugin_spec.rb
+- spec/unit/rom/auth_spec.rb
+homepage: http://github.com/ragmaanir/rom-auth
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - "~>"
+    - !ruby/object:Gem::Version
+      version: '2.1'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - "~>"
+    - !ruby/object:Gem::Version
+      version: '2.2'
+requirements: []
+rubyforge_project: rom-auth
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: Simple web-framework independent authentication solution using ROM
+test_files:
+- spec/integration/common_plugins_spec.rb
+- spec/integration/system_spec.rb
+- spec/unit/rom/auth_spec.rb
+- spec/unit/rom/auth/password_verifiers/pbkdf2_verifier_spec.rb
+- spec/unit/rom/auth/configuration_spec.rb
+- spec/unit/rom/auth/plugins/authentication_events_plugin_spec.rb