RubyGems - salted_login_generator - Versions diffs - 1.1.1 → 2.0.0 - Mend

salted_login_generator 1.1.1 → 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (24) hide show

data/salted_login_generator.rb +16 -1
data/templates/README +41 -23
data/templates/_view_edit.rhtml +0 -1
data/templates/controller.rb +43 -36
data/templates/controller_test.new.rb +328 -0
data/templates/controller_test.old.rb +303 -0
data/templates/controller_test.rb +97 -78
data/templates/done +28 -0
data/templates/helper.rb +12 -6
data/templates/login_system.rb +11 -11
data/templates/migration.rb +27 -0
data/templates/notify.rb +6 -1
data/templates/notify_change_password.rhtml +0 -5
data/templates/notify_signup.rhtml +0 -1
data/templates/user.rb +7 -5
data/templates/user_model.erbsql +0 -1
data/templates/user_test.rb +7 -7
data/templates/users.yml +5 -10
data/templates/view_change_password.rhtml +3 -3
data/templates/view_edit.rhtml +8 -8
data/templates/view_forgot_password.rhtml +3 -3
data/templates/view_login.rhtml +2 -2
data/templates/view_signup.rhtml +4 -4
metadata +79 -70

data/templates/controller_test.new.rb ADDED Viewed

@@ -0,0 +1,328 @@
+require File.dirname(__FILE__) + '/../test_helper'
+require '<%= file_name %>_controller'
+# ADD to fix advance_by_days= problem
+require File.dirname(__FILE__) + '/../mocks/test/time'
+# Raise errors beyond the default web-based presentation
+class <%= class_name %>Controller; def rescue_action(e) raise e end; end
+class <%= class_name %>ControllerTest < Test::Unit::TestCase
+  fixtures :<%= plural_name %>
+  def setup
+    super
+    @controller = <%= class_name %>Controller.new
+    @request = ActionController::TestRequest.new
+    @response = ActionController::TestResponse.new
+  end
+  # let's test our main index page
+  def test_index
+    get :index
+    assert_response :success
+  end
+  def test_auth_bob
+    @request.session['return-to'] = "/bogus/location"
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil @response.session["<%= singular_name %>"]
+    assert_equal @bob, @response.session["<%= singular_name %>"]
+    assert_equal("http://#{@request.host}/bogus/location", @response.redirect_url)
+  end
+  def do_test_signup(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_password and not bad_email
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "newpassword" }
+      assert_nil session["<%= singular_name %>"]
+      assert_equal(@controller.url_for(:action => "login"), @response.redirect_url)
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "newbob@test.com", mail.to_addrs[0].to_s
+#      assert_match /login:\s+\w+\n/, mail.encoded
+#      assert_match /password:\s+\w+\n/, mail.encoded
+      mail.encoded =~ /key=(.*?)"/
+      key = $1
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_not_nil <%= singular_name %>
+      assert_equal 0, <%= singular_name %>.verified
+      # First past the expiration.
+      Time.advance_by_days = 1
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      Time.advance_by_days = 0
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Then a bogus key.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "boguskey"
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Now the real one.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      <%= singular_name %> = <%= class_name %>.find_by_login("newbob@test.com")
+      assert_equal 1, <%= singular_name %>.verified
+      post :login, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword" }
+      assert_not_nil session["<%= singular_name %>"]
+      get :logout
+    elsif bad_password
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "bad", "password_confirmation" => "bad"}
+      assert_nil session["<%= singular_name %>"]
+      assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+      assert_response(:success)
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "newpassword" }
+      assert_nil session["<%= singular_name %>"]
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+  end
+  def test_edit
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    post :edit, "<%= singular_name %>" => { "firstname" => "Bob", "form" => "edit" }
+    assert_equal @response.session["<%= singular_name %>"].firstname, "Bob"
+    post :edit, "<%= singular_name %>" => { "firstname" => "", "form" => "edit" }
+    assert_equal @response.session["<%= singular_name %>"].firstname, ""
+    get :logout
+  end
+  def test_delete
+    ActionMailer::Base.deliveries = []
+    # Immediate delete
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1@test.com", "password" => "alongtest" }
+    assert_not_nil session["<%= singular_name %>"]
+    <%= class_name %>System::CONFIG[:delayed_delete] = false
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    assert_nil session["<%= singular_name %>"]
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1@test.com", "password" => "alongtest" }
+    assert_nil session["<%= singular_name %>"]
+    # Now try delayed delete
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "deletebob2@test.com", "password" => "alongtest" }
+    assert_not_nil session["<%= singular_name %>"]
+    <%= class_name %>System::CONFIG[:delayed_delete] = true
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    mail = ActionMailer::Base.deliveries[0]
+    mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+    id = $1
+    key = $2
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "badkey"
+    assert_nil session["<%= singular_name %>"]
+    # Advance the time past the delete date
+    Time.advance_by_days = <%= class_name %>System::CONFIG[:delayed_delete_days]
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_nil session["<%= singular_name %>"]
+    Time.advance_by_days = 0
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+  end
+  def test_signup
+    do_test_signup(true, false)
+    do_test_signup(false, true)
+    do_test_signup(false, false)
+  end
+  def do_change_password(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    if not bad_password and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "bob@test.com", mail.to_addrs[0].to_s
+#      assert_match /login:\s+\w+\n/, mail.encoded
+#      assert_match /password:\s+\w+\n/, mail.encoded
+    elsif bad_password
+      post :change_password, "<%= singular_name %>" => { "password" => "bad", "password_confirmation" => "bad" }
+      assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+      assert_response(:success)
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    get :logout
+    assert_nil session["<%= singular_name %>"]
+    if not bad_password and not bad_email
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "changed_password" }
+      assert_not_nil session["<%= singular_name %>"]
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+      get :logout
+    end
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+  end
+  def test_change_password0
+    do_change_password(false, false)
+  end
+  def test_change_password1
+    do_change_password(true, false)
+  end
+  def test_change_password2
+    do_change_password(false, true)
+  end
+  def do_forgot_password(bad_address, bad_email, logged_in)
+    ActionMailer::Base.deliveries = []
+    if logged_in
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+      assert_not_nil session["<%= singular_name %>"]
+    end
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_address and not bad_email
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bob@test.com" }
+      password = "anewpassword"
+      if logged_in
+        assert_equal 0, ActionMailer::Base.deliveries.size
+        assert_equal(@controller.url_for(:action => "change_password"), @response.redirect_url)
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}" }
+      else
+        assert_equal 1, ActionMailer::Base.deliveries.size
+        mail = ActionMailer::Base.deliveries[0]
+        assert_equal "bob@test.com", mail.to_addrs[0].to_s
+        mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+        id = $1
+        key = $2
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}", "id" => "#{id}" }, "key" => "#{key}"
+        assert_not_nil session["<%= singular_name %>"]
+        get :logout
+      end
+    elsif bad_address
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bademail@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :forgot_password, "<%= singular_name %>" => { "login" => "bob@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    if not bad_address and not bad_email
+      if logged_in
+        get :logout
+      else
+        assert_equal(@controller.url_for(:action => "login"), @response.redirect_url)
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "#{password}" }
+    else
+      # Okay, make sure the database did not get changed
+      if logged_in
+        get :logout
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    end
+    assert_not_nil session["<%= singular_name %>"]
+    # Put the old settings back
+    if not bad_address and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+    end
+    get :logout
+  end
+  def test_forgot_password
+    do_forgot_password(false, false, false)
+    do_forgot_password(false, false, true)
+    do_forgot_password(true, false, false)
+    do_forgot_password(false, true, false)
+  end
+  def test_bad_signup
+    @request.session['return-to'] = "/bogus/location"
+    post :signup, "<%= singular_name %>" => { "login" => "newbob@test.com", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+    assert_response(:success)
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "newpassword" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:login))
+    assert_response(:success)
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:login))
+    assert(find_record_in_template("<%= singular_name %>").errors.invalid?(:password))
+    assert_response(:success)
+  end
+  def test_invalid_login
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "not_correct" }
+    assert_nil session["<%= singular_name %>"]
+    assert(@response.has_template_object?("login"))
+  end
+  def test_login_logoff
+    post :login, "<%= singular_name %>" => { "login" => "bob@test.com", "password" => "atest" }
+    assert_not_nil session["<%= singular_name %>"]
+    get :logout
+    assert_nil session["<%= singular_name %>"]
+  end
+  # deprecated assertions
+  def find_record_in_template(key = nil)
+    assert_not_nil assigns(key)
+    record = @response.template_objects[key]
+    assert_not_nil(record)
+    assert_kind_of ActiveRecord::Base, record
+    return record
+  end
+end

data/templates/controller_test.old.rb ADDED Viewed

@@ -0,0 +1,303 @@
+require File.dirname(__FILE__) + '/../test_helper'
+require '<%= file_name %>_controller'
+# Raise errors beyond the default web-based presentation
+class <%= class_name %>Controller; def rescue_action(e) raise e end; end
+class <%= class_name %>ControllerTest < Test::Unit::TestCase
+  fixtures :<%= plural_name %>
+  def setup
+    super
+    @controller = <%= class_name %>Controller.new
+    @request = ActionController::TestRequest.new
+    @response = ActionController::TestResponse.new
+  end
+  def test_auth_bob
+    @request.session['return-to'] = "/bogus/location"
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    assert_equal @bob, @response.session["<%= singular_name %>"]
+    assert_redirect_url "http://#{@request.host}/bogus/location"
+  end
+  def do_test_signup(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_password and not bad_email
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "newpassword", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_redirect_url(@controller.url_for(:action => "login"))
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "newbob@test.com", mail.to_addrs[0].to_s
+      assert_match /login:\s+\w+\n/, mail.encoded
+      assert_match /password:\s+\w+\n/, mail.encoded
+      mail.encoded =~ /key=(.*?)"/
+      key = $1
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_not_nil <%= singular_name %>
+      assert_equal 0, <%= singular_name %>.verified
+      # First past the expiration.
+      Time.advance_by_days = 1
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      Time.advance_by_days = 0
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Then a bogus key.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "boguskey"
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 0, <%= singular_name %>.verified
+      # Now the real one.
+      get :welcome, "<%= singular_name %>"=> { "id" => "#{<%= singular_name %>.id}" }, "key" => "#{key}"
+      <%= singular_name %> = <%= class_name %>.find_by_email("newbob@test.com")
+      assert_equal 1, <%= singular_name %>.verified
+      post :login, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword" }
+      assert_session_has "<%= singular_name %>"
+      get :logout
+    elsif bad_password
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "bad", "password_confirmation" => "bad", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_invalid_column_on_record "<%= singular_name %>", "password"
+      assert_success
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "newpassword", "email" => "newbob@test.com" }
+      assert_session_has_no "<%= singular_name %>"
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+  end
+  def test_edit
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    post :edit, "<%= singular_name %>" => { "firstname" => "Bob", "form" => "edit" }
+    assert_equal @response.session['<%= singular_name %>'].firstname, "Bob"
+    post :edit, "<%= singular_name %>" => { "firstname" => "", "form" => "edit" }
+    assert_equal @response.session['<%= singular_name %>'].firstname, ""
+    get :logout
+  end
+  def test_delete
+    ActionMailer::Base.deliveries = []
+    # Immediate delete
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1", "password" => "alongtest" }
+    assert_session_has "<%= singular_name %>"
+    <%= class_name %>System::CONFIG[:delayed_delete] = false
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    assert_session_has_no "<%= singular_name %>"
+    post :login, "<%= singular_name %>" => { "login" => "deletebob1", "password" => "alongtest" }
+    assert_session_has_no "<%= singular_name %>"
+    # Now try delayed delete
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "deletebob2", "password" => "alongtest" }
+    assert_session_has "<%= singular_name %>"
+    <%= class_name %>System::CONFIG[:delayed_delete] = true
+    post :edit, "<%= singular_name %>" => { "form" => "delete" }
+    assert_equal 1, ActionMailer::Base.deliveries.size
+    mail = ActionMailer::Base.deliveries[0]
+    mail.encoded =~ /<%= singular_name%>\[id\]=(.*?)&key=(.*?)"/
+    id = $1
+    key = $2
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "badkey"
+    assert_session_has_no "<%= singular_name %>"
+    # Advance the time past the delete date
+    Time.advance_by_days = <%= class_name %>System::CONFIG[:delayed_delete_days]
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_session_has_no "<%= singular_name %>"
+    Time.advance_by_days = 0
+    post :restore_deleted, "<%= singular_name %>" => { "id" => "#{id}" }, "key" => "#{key}"
+    assert_session_has "<%= singular_name %>"
+    get :logout
+  end
+  def test_signup
+    do_test_signup(true, false)
+    do_test_signup(false, true)
+    do_test_signup(false, false)
+  end
+  def do_change_password(bad_password, bad_email)
+    ActionMailer::Base.deliveries = []
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    if not bad_password and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 1, ActionMailer::Base.deliveries.size
+      mail = ActionMailer::Base.deliveries[0]
+      assert_equal "bob@test.com", mail.to_addrs[0].to_s
+      assert_match /login:\s+\w+\n/, mail.encoded
+      assert_match /password:\s+\w+\n/, mail.encoded
+    elsif bad_password
+      post :change_password, "<%= singular_name %>" => { "password" => "bad", "password_confirmation" => "bad" }
+      assert_invalid_column_on_record "<%= singular_name %>", "password"
+      assert_success
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :change_password, "<%= singular_name %>" => { "password" => "changed_password", "password_confirmation" => "changed_password" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    get :logout
+    assert_session_has_no "<%= singular_name %>"
+    if not bad_password and not bad_email
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "changed_password" }
+      assert_session_has "<%= singular_name %>"
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+      get :logout
+    end
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    get :logout
+  end
+  def test_change_password
+    do_change_password(false, false)
+    do_change_password(true, false)
+    do_change_password(false, true)
+  end
+  def do_forgot_password(bad_address, bad_email, logged_in)
+    ActionMailer::Base.deliveries = []
+    if logged_in
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+      assert_session_has "<%= singular_name %>"
+    end
+    @request.session['return-to'] = "/bogus/location"
+    if not bad_address and not bad_email
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bob@test.com" }
+      password = "anewpassword"
+      if logged_in
+        assert_equal 0, ActionMailer::Base.deliveries.size
+        assert_redirect_url(@controller.url_for(:action => "change_password"))
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}" }
+      else
+        assert_equal 1, ActionMailer::Base.deliveries.size
+        mail = ActionMailer::Base.deliveries[0]
+        assert_equal "bob@test.com", mail.to_addrs[0].to_s
+        mail.encoded =~ /<%= singular_name %>\[id\]=(.*?)&key=(.*?)"/
+        id = $1
+        key = $2
+        post :change_password, "<%= singular_name %>" => { "password" => "#{password}", "password_confirmation" => "#{password}", "id" => "#{id}" }, "key" => "#{key}"
+        assert_session_has "<%= singular_name %>"
+        get :logout
+      end
+    elsif bad_address
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bademail@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    elsif bad_email
+      ActionMailer::Base.inject_one_error = true
+      post :forgot_password, "<%= singular_name %>" => { "email" => "bob@test.com" }
+      assert_equal 0, ActionMailer::Base.deliveries.size
+    else
+      # Invalid test case
+      assert false
+    end
+    if not bad_address and not bad_email
+      if logged_in
+        get :logout
+      else
+        assert_redirect_url(@controller.url_for(:action => "login"))
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "#{password}" }
+    else
+      # Okay, make sure the database did not get changed
+      if logged_in
+        get :logout
+      end
+      post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    end
+    assert_session_has "<%= singular_name %>"
+    # Put the old settings back
+    if not bad_address and not bad_email
+      post :change_password, "<%= singular_name %>" => { "password" => "atest", "password_confirmation" => "atest" }
+    end
+    get :logout
+  end
+  def test_forgot_password
+    do_forgot_password(false, false, false)
+    do_forgot_password(false, false, true)
+    do_forgot_password(true, false, false)
+    do_forgot_password(false, true, false)
+  end
+  def test_bad_signup
+    @request.session['return-to'] = "/bogus/location"
+    post :signup, "<%= singular_name %>" => { "login" => "newbob", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert_invalid_column_on_record "<%= singular_name %>", "password"
+    assert_success
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "newpassword" }
+    assert_invalid_column_on_record "<%= singular_name %>", "login"
+    assert_success
+    post :signup, "<%= singular_name %>" => { "login" => "yo", "password" => "newpassword", "password_confirmation" => "wrong" }
+    assert_invalid_column_on_record "<%= singular_name %>", ["login", "password"]
+    assert_success
+  end
+  def test_invalid_login
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "not_correct" }
+    assert_session_has_no "<%= singular_name %>"
+    assert_template_has "login"
+  end
+  def test_login_logoff
+    post :login, "<%= singular_name %>" => { "login" => "bob", "password" => "atest" }
+    assert_session_has "<%= singular_name %>"
+    get :logout
+    assert_session_has_no "<%= singular_name %>"
+  end
+end