RubyGems - salted_login_generator - Versions diffs - 1.1.1 → 2.0.0 - Mend

salted_login_generator 1.1.1 → 2.0.0

Files changed (24) hide show

data/salted_login_generator.rb +16 -1
data/templates/README +41 -23
data/templates/_view_edit.rhtml +0 -1
data/templates/controller.rb +43 -36
data/templates/controller_test.new.rb +328 -0
data/templates/controller_test.old.rb +303 -0
data/templates/controller_test.rb +97 -78
data/templates/done +28 -0
data/templates/helper.rb +12 -6
data/templates/login_system.rb +11 -11
data/templates/migration.rb +27 -0
data/templates/notify.rb +6 -1
data/templates/notify_change_password.rhtml +0 -5
data/templates/notify_signup.rhtml +0 -1
data/templates/user.rb +7 -5
data/templates/user_model.erbsql +0 -1
data/templates/user_test.rb +7 -7
data/templates/users.yml +5 -10
data/templates/view_change_password.rhtml +3 -3
data/templates/view_edit.rhtml +8 -8
data/templates/view_forgot_password.rhtml +3 -3
data/templates/view_login.rhtml +2 -2
data/templates/view_signup.rhtml +4 -4
metadata +79 -70

data/templates/controller_test.new.rb ADDED Viewed

@@ -0,0 +1,328 @@
+require File.dirname(__FILE__) + '/../test_helper'
+require '<%= file_name %>_controller'
+# ADD to fix advance_by_days= problem
+require File.dirname(__FILE__) + '/../mocks/test/time'
+# Raise errors beyond the default web-based presentation
+class <%= class_name %>Controller; def rescue_action(e) raise e end; end
+class <%= class_name %>ControllerTest < Test::Unit::TestCase
+  fixtures :<%= plural_name %>
+  def setup
+    super
+    @controller = <%= class_name %>Controller.new
+    @request = ActionController::TestRequest.new
+    @response = ActionController::TestResponse.new
+  end
+  # let's test our main index page
+  def test_index
+    get :index
+    assert_response :success
+  end
+  def test_auth_bob
+    @request.session['return-to'] = "/bogus/location"
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil @response.session["<%= singular_name %>"]
+    assert_equal @bob, @response.session["<%= singular_name %>"]
+    assert_equal("http://#{@request.host}/bogus/location", @response.redirect_url)
+  end
+  def do_test_signup(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_password and not bad_email
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "newpassword" }
+      assert_nil session["<%= singular_name %>"]
+      assert_equal(@controller.url_for(:action => "login"), @response.redirect_url)
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "newbob@test.com", mail.to_addrs[0].to_s
+#      assert_match /login:\s+\w+\n/, mail.encoded
+#      assert_match /password:\s+\w+\n/, mail.encoded
+      mail.encoded =~ /key=(.*?)"/
+      key = $1
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_not_nil <%= singular_name %>
+      assert_equal 0, <%= singular_name %>.verified
+      # First past the expiration.
+      Time.advance_by_days = 1
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      Time.advance_by_days = 0
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Then a bogus key.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "boguskey"
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Now the real one.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 1, <%= singular_name %>.verified
+      post :login, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword" }
+      assert_not_nil session["<%= singular_name %>"]
+      get :logout
+    elsif bad_password
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "bad", "password_confirmation" => "bad"}
+      assert_nil session["<%= singular_name %>"]
+      assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+      assert_response(:success)
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "newpassword" }
+      assert_nil session["<%= singular_name %>"]
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+  end
+  def test_edit
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    post :edit, "<%= singular_name %>" => { "firstname" => "Bob", "form" => "edit" }
+    assert_equal @response.session["<%= singular_name %>"].firstname, "Bob"
+    post :edit, "<%= singular_name %>" => { "firstname" => "", "form" => "edit" }
+    assert_equal @response.session["<%= singular_name %>"].firstname, ""
+    get :logout
+  end
+  def test_delete
+    ActionMailer::Base.deliveries = []
+    # Immediate delete
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1@test.com", "password" => "alongtest" }
+    assert_not_nil session["<%= singular_name %>"]
+    <%= class_name %>System::CONFIG[:delayed_delete] = false
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    assert_nil session["<%= singular_name %>"]
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1@test.com", "password" => "alongtest" }
+    assert_nil session["<%= singular_name %>"]
+    # Now try delayed delete
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "deletebob2@test.com", "password" => "alongtest" }
+    assert_not_nil session["<%= singular_name %>"]
+    <%= class_name %>System::CONFIG[:delayed_delete] = true
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    mail = ActionMailer::Base.deliveries[0]
+    mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+    id = $1
+    key = $2
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "badkey"
+    assert_nil session["<%= singular_name %>"]
+    # Advance the time past the delete date
+    Time.advance_by_days = <%= class_name %>System::CONFIG[:delayed_delete_days]
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_nil session["<%= singular_name %>"]
+    Time.advance_by_days = 0
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+  end
+  def test_signup
+    do_test_signup(true, false)
+    do_test_signup(false, true)
+    do_test_signup(false, false)
+  end
+  def do_change_password(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    if not bad_password and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "bob@test.com", mail.to_addrs[0].to_s
+#      assert_match /login:\s+\w+\n/, mail.encoded
+#      assert_match /password:\s+\w+\n/, mail.encoded
+    elsif bad_password
+      post :change_password, "<%= singular_name %>" => { "password" => "bad", "password_confirmation" => "bad" }
+      assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+      assert_response(:success)
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    get :logout
+    assert_nil session["<%= singular_name %>"]
+    if not bad_password and not bad_email
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "changed_password" }
+      assert_not_nil session["<%= singular_name %>"]
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+      get :logout
+    end
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+  end
+  def test_change_password0
+    do_change_password(false, false)
+  end
+  def test_change_password1
+    do_change_password(true, false)
+  end
+  def test_change_password2
+    do_change_password(false, true)
+  end
+  def do_forgot_password(bad_address, bad_email, logged_in)
+    ActionMailer::Base.deliveries = []
+    if logged_in
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+      assert_not_nil session["<%= singular_name %>"]
+    end
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_address and not bad_email
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bob@test.com" }
+      password = "anewpassword"
+      if logged_in
+        assert_equal 0, ActionMailer::Base.deliveries.size
+        assert_equal(@controller.url_for(:action => "change_password"), @response.redirect_url)
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}" }
+      else
+        assert_equal 1, ActionMailer::Base.deliveries.size
+        mail = ActionMailer::Base.deliveries[0]
+        assert_equal "bob@test.com", mail.to_addrs[0].to_s
+        mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+        id = $1
+        key = $2
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}", "id" => "#{id}" }, "key" => "#{key}"
+        assert_not_nil session["<%= singular_name %>"]
+        get :logout
+      end
+    elsif bad_address
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bademail@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bob@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    if not bad_address and not bad_email
+      if logged_in
+        get :logout
+      else
+        assert_equal(@controller.url_for(:action => "login"), @response.redirect_url)
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "#{password}" }
+    else
+      # Okay, make sure the database did not get changed
+      if logged_in
+        get :logout
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    end
+    assert_not_nil session["<%= singular_name %>"]
+    # Put the old settings back
+    if not bad_address and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+    end
+    get :logout
+  end
+  def test_forgot_password
+    do_forgot_password(false, false, false)
+    do_forgot_password(false, false, true)
+    do_forgot_password(true, false, false)
+    do_forgot_password(false, true, false)
+  end
+  def test_bad_signup
+    @request.session['return-to'] = "/bogus/location"
+    post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+    assert_response(:success)
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "newpassword" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:login))
+    assert_response(:success)
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:login))
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+    assert_response(:success)
+  end
+  def test_invalid_login
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "not_correct" }
+    assert_nil session["<%= singular_name %>"]
+    assert(@response.has_template_object?("login"))
+  end
+  def test_login_logoff
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+    assert_nil session["<%= singular_name %>"]
+  end
+  # deprecated assertions
+  def find_record_in_template(key = nil)
+    assert_not_nil assigns(key)
+    record = @response.template_objects[key]
+    assert_not_nil(record)
+    assert_kind_of ActiveRecord::Base, record
+    return record
+  end
+end

data/templates/controller_test.old.rb ADDED Viewed

@@ -0,0 +1,303 @@
+require File.dirname(__FILE__) + '/../test_helper'
+require '<%= file_name %>_controller'
+# Raise errors beyond the default web-based presentation
+class <%= class_name %>Controller; def rescue_action(e) raise e end; end
+class <%= class_name %>ControllerTest < Test::Unit::TestCase
+  fixtures :<%= plural_name %>
+  def setup
+    super
+    @controller = <%= class_name %>Controller.new
+    @request = ActionController::TestRequest.new
+    @response = ActionController::TestResponse.new
+  end
+  def test_auth_bob
+    @request.session['return-to'] = "/bogus/location"
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    assert_equal @bob, @response.session["<%= singular_name %>"]
+    assert_redirect_url "http://#{@request.host}/bogus/location"
+  end
+  def do_test_signup(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_password and not bad_email
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "newpassword", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_redirect_url(@controller.url_for(:action => "login"))
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "newbob@test.com", mail.to_addrs[0].to_s
+      assert_match /login:\s+\w+\n/, mail.encoded
+      assert_match /password:\s+\w+\n/, mail.encoded
+      mail.encoded =~ /key=(.*?)"/
+      key = $1
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_not_nil <%= singular_name %>
+      assert_equal 0, <%= singular_name %>.verified
+      # First past the expiration.
+      Time.advance_by_days = 1
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      Time.advance_by_days = 0
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Then a bogus key.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "boguskey"
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Now the real one.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 1, <%= singular_name %>.verified
+      post :login, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword" }
+      assert_session_has "<%= singular_name %>"
+      get :logout
+    elsif bad_password
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "bad", "password_confirmation" => "bad", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_invalid_column_on_record "<%= singular_name %>", "password"
+      assert_success
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "newpassword", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+  end
+  def test_edit
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    post :edit, "<%= singular_name %>" => { "firstname" => "Bob", "form" => "edit" }
+    assert_equal @response.session['<%= singular_name %>'].firstname, "Bob"
+    post :edit, "<%= singular_name %>" => { "firstname" => "", "form" => "edit" }
+    assert_equal @response.session['<%= singular_name %>'].firstname, ""
+    get :logout
+  end
+  def test_delete
+    ActionMailer::Base.deliveries = []
+    # Immediate delete
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1", "password" => "alongtest" }
+    assert_session_has "<%= singular_name %>"
+    <%= class_name %>System::CONFIG[:delayed_delete] = false
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    assert_session_has_no "<%= singular_name %>"
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1", "password" => "alongtest" }
+    assert_session_has_no "<%= singular_name %>"
+    # Now try delayed delete
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "deletebob2", "password" => "alongtest" }
+    assert_session_has "<%= singular_name %>"
+    <%= class_name %>System::CONFIG[:delayed_delete] = true
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    mail = ActionMailer::Base.deliveries[0]
+    mail.encoded =~ /<%= singular_name%>\[id\]=(.*?)&key=(.*?)"/
+    id = $1
+    key = $2
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "badkey"
+    assert_session_has_no "<%= singular_name %>"
+    # Advance the time past the delete date
+    Time.advance_by_days = <%= class_name %>System::CONFIG[:delayed_delete_days]
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_session_has_no "<%= singular_name %>"
+    Time.advance_by_days = 0
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_session_has "<%= singular_name %>"
+    get :logout
+  end
+  def test_signup
+    do_test_signup(true, false)
+    do_test_signup(false, true)
+    do_test_signup(false, false)
+  end
+  def do_change_password(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    if not bad_password and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "bob@test.com", mail.to_addrs[0].to_s
+      assert_match /login:\s+\w+\n/, mail.encoded
+      assert_match /password:\s+\w+\n/, mail.encoded
+    elsif bad_password
+      post :change_password, "<%= singular_name %>" => { "password" => "bad", "password_confirmation" => "bad" }
+      assert_invalid_column_on_record "<%= singular_name %>", "password"
+      assert_success
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    get :logout
+    assert_session_has_no "<%= singular_name %>"
+    if not bad_password and not bad_email
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "changed_password" }
+      assert_session_has "<%= singular_name %>"
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+      get :logout
+    end
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    get :logout
+  end
+  def test_change_password
+    do_change_password(false, false)
+    do_change_password(true, false)
+    do_change_password(false, true)
+  end
+  def do_forgot_password(bad_address, bad_email, logged_in)
+    ActionMailer::Base.deliveries = []
+    if logged_in
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+      assert_session_has "<%= singular_name %>"
+    end
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_address and not bad_email
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bob@test.com" }
+      password = "anewpassword"
+      if logged_in
+        assert_equal 0, ActionMailer::Base.deliveries.size
+        assert_redirect_url(@controller.url_for(:action => "change_password"))
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}" }
+      else
+        assert_equal 1, ActionMailer::Base.deliveries.size
+        mail = ActionMailer::Base.deliveries[0]
+        assert_equal "bob@test.com", mail.to_addrs[0].to_s
+        mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+        id = $1
+        key = $2
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}", "id" => "#{id}" }, "key" => "#{key}"
+        assert_session_has "<%= singular_name %>"
+        get :logout
+      end
+    elsif bad_address
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bademail@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bob@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    if not bad_address and not bad_email
+      if logged_in
+        get :logout
+      else
+        assert_redirect_url(@controller.url_for(:action => "login"))
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "#{password}" }
+    else
+      # Okay, make sure the database did not get changed
+      if logged_in
+        get :logout
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    end
+    assert_session_has "<%= singular_name %>"
+    # Put the old settings back
+    if not bad_address and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+    end
+    get :logout
+  end
+  def test_forgot_password
+    do_forgot_password(false, false, false)
+    do_forgot_password(false, false, true)
+    do_forgot_password(true, false, false)
+    do_forgot_password(false, true, false)
+  end
+  def test_bad_signup
+    @request.session['return-to'] = "/bogus/location"
+    post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert_invalid_column_on_record "<%= singular_name %>", "password"
+    assert_success
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "newpassword" }
+    assert_invalid_column_on_record "<%= singular_name %>", "login"
+    assert_success
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert_invalid_column_on_record "<%= singular_name %>", ["login", "password"]
+    assert_success
+  end
+  def test_invalid_login
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "not_correct" }
+    assert_session_has_no "<%= singular_name %>"
+    assert_template_has "login"
+  end
+  def test_login_logoff
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    get :logout
+    assert_session_has_no "<%= singular_name %>"
+  end
+end