securial 0.8.1 → 1.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e9f576f089867c769449ef4dff49a41632a053b5b0f45ba8e8c7843532ea0869
-  data.tar.gz: 06eeee1379bd6c6a0859f3b8ae43cfa177dc1e99a7a20c82f0c50890472d655e
+  metadata.gz: 6d6f0817d44bf16fef31a683152d11e38a0671a92f966df31257f8ab9b867c92
+  data.tar.gz: ec7aa78f714a20598db55ecf92d69dc17d7dd38a137cce3964d8677ec622a46a
 SHA512:
-  metadata.gz: afe5443ee10dda1175f26d148c3588fde6fa81b607f85f2969487d38c82ffda6e31be4280409ecd2a6d6a2844fe511e6829a8d9cdece1acb40415b9c99182618
-  data.tar.gz: c2b18a4562e0995bbcf160f096461e90853f32bd8134e4d5d9e9e53d411a4e40e4eda462744f3d2d6b244918aa60887749ef1383d44ff3de3d4800ef366e88c2
+  metadata.gz: 9435fcba0cb665df4992f193f0a8c0012f3dc676619a20b8824cdd085803337290c2453bf10494ef348d46259d0f1f9da48224abb1e70783c0f67e5e33deff2c
+  data.tar.gz: 658cca7386b481757396384957d203f35abfb2f72ea56e7c538ea3f355014068e4921f7b4ba03967caa9563b5d3d4d32a1d4bf0257a0676e413bb2a1a394fbfd

data/README.md

@@ -8,26 +8,21 @@
 [![Coveralls](https://img.shields.io/coverallsCoverage/github/AlyBadawy/Securial?branch=main&logo=coveralls&logoColor=%233F5767&labelColor=ddeedd)
 ](https://coveralls.io/github/AlyBadawy/Securial?branch=main)
 
-> [!WARNING]
->
-> **Securial is currently in active development (major version zero).**
->
-> While the gem is functional and versioned, it is not yet considered stable. Until v1.0.0 is released, any updates may introduce breaking changes as the API and features continue to evolve. If you plan to use Securial in production, please do so with caution and pin a specific version.
->
-> You can track the roadmap and remaining tasks for the v1.0.0 release in [this GitHub issue](https://github.com/AlyBadawy/Securial/issues/64).
-
 ---
 
+### 🛡️ What is Securial?
+
 **Securial** is a mountable Rails engine that provides robust, extensible authentication and access control for Rails applications. It supports:
 
-- ✅ JWT-based authentication
-- ✅ API tokens
-- ✅ Session-based auth
-- ✅ Simple integration with web and mobile apps
-- ✅ Clean, JSON-based API responses
-- ✅ Database-agnostic support
+- 🟦 JWT-based authentication
+- 🟦 API tokens
+- 🟦 Session-based auth
+- 🟦 Simple integration with web and mobile apps
+- 🟦 Clean, JSON-based API responses
+- 🟦 Simple user management with roles
+- 🟦 Database-agnostic support
 
-### 🚀 Why Securial?
+### 👀 Why Securial?
 
 Securial was built to offer a clean, modular, and API-first authentication system for Rails developers who want full control without the black-box complexity. Whether you're building for the web, mobile, or both, Securial gives you the flexibility to implement exactly what you need — from simple JWT authentication to more advanced setups involving sessions, API tokens, and role-based access.
 
@@ -48,6 +43,8 @@ To add Securial to an existing Rails app:
   ```ruby
   Rails.application.routes.draw do
     mount Securial::Engine => "/securial"
+
+    # The rest of your routes
   end
   ```
 - Run the migrations by running the command: `rails db:migrate`
@@ -120,4 +117,5 @@ The gem is available as open source under the terms of the [MIT license](https:/
 
 ---
 
-![image](https://github.com/user-attachments/assets/d7cb9645-c28e-4cca-9c1b-5085a91c11d4)
+\
+![logo-e9f16c9b 1](https://github.com/AlyBadawy/AlyBadawy/assets/1198568/471e5332-f8d0-4b78-a333-7e207780ecc1)

data/app/controllers/concerns/securial/identity.rb

@@ -3,6 +3,7 @@ module Securial
     extend ActiveSupport::Concern
 
     included do
+      before_action :identify_user
       before_action :authenticate_user!
       helper_method :current_user if respond_to?(:helper_method)
     end
@@ -13,20 +14,24 @@ module Securial
       end
     end
 
-    def authenticate_admin!
-      authenticate_user!
-      return if current_user.blank? || current_user.is_admin?
-
-      render status: :forbidden, json: { error: "You are not authorized to perform this action" }
-    end
 
     def current_user
       Current.session&.user
     end
 
+    def authenticate_admin!
+      if current_user
+        return if current_user.is_admin?
+
+        render status: :forbidden, json: { error: "You are not authorized to perform this action" }
+      else
+        authenticate_user!
+      end
+    end
+
     private
 
-    def authenticate_user!
+    def identify_user
       return if internal_rails_request?
 
       Current.session = nil
@@ -41,13 +46,17 @@ module Securial
              session.ip_address == request.remote_ip &&
              session.user_agent == request.user_agent
             Current.session = session
-            return # Authenticated
           end
         rescue Securial::Error::Auth::TokenDecodeError, ActiveRecord::RecordNotFound => e
           Securial.logger.debug "Authentication failed: #{e.message}"
         end
       end
-      # If we reach here, authentication failed
+    end
+
+    def authenticate_user!
+      return if internal_rails_request?
+      return if Current.session&.user
+
       render status: :unauthorized, json: { error: "You are not signed in" } and return
     end
 

data/app/controllers/securial/status_controller.rb

@@ -3,7 +3,9 @@ module Securial
     skip_authentication!
 
     def show
+      @current_user = current_user
       Securial.logger.info("Status check initiated")
+      render :show, status: :ok
     end
   end
 end

data/app/controllers/securial/users_controller.rb

@@ -47,7 +47,7 @@ module Securial
                       :phone,
                       :bio,
                       :password,
-                      :password_confirmation
+                      :password_confirmation,
         ])
     end
   end

data/app/views/securial/status/show.json.jbuilder

@@ -1,3 +1,3 @@
 json.status "ok"
 json.timestamp Time.current
-json.version Securial::VERSION
+json.version Securial::VERSION if @current_user&.is_admin?

data/bin/securial

@@ -1,58 +1,26 @@
 #!/usr/bin/env ruby
 
 require "fileutils"
-
-def run(command, chdir: nil)
-  puts "→ #{command}"
-  if chdir
-    Dir.chdir(chdir) do
-      system(command) || abort("❌ Command failed: #{command}")
-    end
+require_relative "../lib/securial/cli/show_version"
+require_relative "../lib/securial/cli/show_help"
+require_relative "../lib/securial/cli/run"
+require_relative "../lib/securial/cli/securial_new"
+
+case ARGV[0]
+when "-v", "--version"
+  show_version
+when "-h", "--help"
+  show_help
+when "new"
+  if ARGV[1]
+    app_name = ARGV[1]
+    rails_options = ARGV[2..] || []
+    securial_new(app_name, rails_options)
   else
-    system(command) || abort("❌ Command failed: #{command}")
-  end
-end
-
-
-def securial_new(app_name, rails_options)
-  puts "🛠  Creating new Rails app: #{app_name}"
-
-  # Step 1: Forward options to `rails new`
-  rails_command = ["rails", "new", app_name, *rails_options].join(" ")
-  run(rails_command)
-
-  # Step 2: Append securial gem to the Gemfile
-  gemfile_path = File.join(app_name, "Gemfile")
-  File.open(gemfile_path, "a") do |f|
-    f.puts "\ngem 'securial'"
+    show_help
+    exit(1)
   end
-
-  # Step 3: Install gems
-  run("bundle install", chdir: app_name)
-
-  # Step 4: Install securial
-  run("bin/rails generate securial:install", chdir: app_name)
-  run("bin/rails db:migrate", chdir: app_name)
-
-  # Step 5: Mount the engine
-  routes_path = File.join(app_name, "config/routes.rb")
-  routes = File.read(routes_path)
-  updated = routes.sub("Rails.application.routes.draw do") do |match|
-    "#{match}\n  mount Securial::Engine => '/securial'"
-  end
-  File.write(routes_path, updated)
-
-  puts "\n✅ Done! Your app is ready at: ./#{app_name}"
-  puts "➡️  Next steps:"
-  puts "   cd #{app_name}"
-  puts "   rails server"
-end
-
-if ARGV[0] == "new" && ARGV[1]
-  app_name = ARGV[1]
-  rails_options = ARGV[2..] || []
-  securial_new(app_name, rails_options)
 else
-  puts "Usage: securial new app_name [rails_options...]"
-  puts "Example: securial new myapp --api --database=postgresql"
-end
+  show_help
+  exit(1)
+end

data/db/migrate/20250606182648_seed_roles_and_users.rb

@@ -0,0 +1,69 @@
+class SeedRolesAndUsers < ActiveRecord::Migration[8.0]
+  def up
+    default_email = "user@example.com"
+    default_password = "Password123!"
+
+    default_admin_role = Securial.configuration.admin_role
+
+    # Create a default user (no roles assigned)
+    Securial::User.find_or_create_by!(email_address: default_email) do |user|
+      user.password = default_password
+      user.password_confirmation = default_password
+      user.username = "default_user"
+      user.first_name = "Default"
+      user.last_name = "User"
+    end
+    Securial.logger.debug "Created user: #{default_email} with password: #{default_password}"
+
+    # Default roles
+    roles = %w[admin moderator support locked]
+    roles << default_admin_role
+    roles.uniq!
+
+    roles.each do |role_name|
+      # Create roles if they do not exist
+      Securial::Role.find_or_create_by!(role_name: role_name)
+      Securial.logger.debug "Created role: #{role_name}"
+
+      # Create a user for each role
+      user = Securial::User.find_or_create_by!(email_address: "#{role_name}@example.com") do |u|
+        u.password = "Password123!"
+        u.password_confirmation = "Password123!"
+        u.username = role_name
+        u.first_name = role_name.capitalize
+        u.last_name = "User"
+      end
+
+      Securial.logger.debug "Created user: #{user.email_address} with password: #{default_password}"
+
+      # Assign the role to the user
+      user.roles = Securial::Role.where(role_name: role_name)
+      Securial.logger.debug "Assigned role: #{role_name} to user: #{user.email_address}"
+      user.save!
+    end
+  end
+
+  def down
+    default_admin_role = Securial.configuration.admin_role
+    roles = %w[admin moderator support locked]
+    roles << default_admin_role
+    roles.uniq!
+
+    # Remove role-specific users
+    roles.each do |role_name|
+      user = Securial::User.find_by(email_address: "#{role_name}@example.com")
+      user.destroy if user
+      Securial.logger.debug "Removed user: #{role_name}@example.com"
+    end
+
+    # Remove the default user with no roles
+    user = Securial::User.find_by(email_address: "user@example.com")
+    user.destroy if user
+    Securial.logger.debug "Removed user: user@example.com"
+
+
+    # Remove the roles themselves
+    Securial::Role.where(role_name: roles).destroy_all
+    Securial.logger.debug "Removed roles: #{roles.join(', ')}"
+  end
+end

data/lib/generators/securial/install/templates/securial_initializer.erb

@@ -1,6 +1,11 @@
 # This file was generated by the Securial engine.
 
 Securial.configure do |config|
+  ##### General Configuration
+  ## The name of your application (used in notifications, etc.)
+  # Default: "Securial"
+  config.app_name = "Securial"
+
   ##### Logging Configuration
   ## Enable or disable logging to file
   # Set to true to log to a file, false to disable file logging
@@ -28,9 +33,9 @@ Securial.configure do |config|
 
   ##### Session Configuration
   ## Set the session expiration duration
-  # This is the time after which a session will be considered expired.
-  # After this time, the session will be invalidated and the user
-  # will need to log in again to refresh the session.
+  # This is the time after which an access session will be considered expired.
+  # After this time, the user must use the refresh token to obtain a new session.
+  # The user only needs to log in again if the refresh token has also expired.
   # The expiration time is set in seconds, minutes, or hours.
   # The default is 3 minutes.
   config.session_expiration_duration = 3.minutes
@@ -39,6 +44,17 @@ Securial.configure do |config|
   # This secret is used to sign the session tokens and ensure
   # that they cannot be tampered with. It is important to keep this
   # secret secure and not share it with anyone.
+  # It should be a long, random string to ensure security.
+  # You can generate a secure secret using a tool like `SecureRandom.hex(64)`
+  # or `SecureRandom.base64(64)`.
+  # It is recommended to change this secret periodically for security reasons.
+  # If you change this secret, all existing sessions will be invalidated,
+  # and users will need to log in again.
+  # Make sure to keep this secret safe and do not expose it in your codebase.
+  # You can use environment variables to store this secret securely.
+  # For example, you can set an environment variable `SECURIAL_SESSION_SECRET`
+  # and then use it in your configuration like this:
+  # config.session_secret = ENV['SECURIAL_SESSION_SECRET']
   # The default is "secret".
   config.session_secret = "secret"
 
@@ -48,6 +64,20 @@ Securial.configure do |config|
   # Other options include :hs256, :hs384, and :hs512
   config.session_algorithm = :hs256
 
+  ## Set the session refresh token expiration duration
+  # This is the duration after which a refresh token will expire.
+  # Once the refresh token expires, the user must log in again.
+  # The refresh token is used to obtain a new access token without
+  # requiring the user to log in again. It is typically used to keep
+  # the user logged in for a longer period without requiring frequent logins.
+  # The expiration time is set in seconds, minutes, or hours.
+  # The refresh token expiration duration should be longer than the access session
+  # expiration duration to allow the user to obtain a new access token
+  # without having to log in again. This allows for a better user experience
+  # by reducing the frequency of logins while still maintaining security.
+  # The default is 1 week.
+  config.session_refresh_token_expires_in = 1.week
+
   ##### Securial Mailer Configuration
   ## Set the mailer sender address
   # This is the email address that will be used as the sender
@@ -56,12 +86,36 @@ Securial.configure do |config|
   # notifications.
   config.mailer_sender = "no-reply@example.com"
 
-  ##### Password configuration
+  ## Enable or disable sending sign up emails
+  # Set to true to send a welcome email on sign up, false to disable.
+  config.mailer_sign_up_enabled = true
+
+  ## Set the subject for sign up emails
+  # The default is "SECURIAL: Welcome to Our Service".
+  config.mailer_sign_up_subject = "SECURIAL: Welcome to Our Service"
+
+  ## Enable or disable sending sign in emails
+  # Set to true to send a notification on sign in, false to disable.
+  config.mailer_sign_in_enabled = true
+
+  ## Set the subject for sign in emails
+  # The default is "SECURIAL: Sign In Notification".
+  config.mailer_sign_in_subject = "SECURIAL: Sign In Notification"
+
+  ## Enable or disable sending update account emails
+  # Set to true to send a notification when an account is updated, false to disable.
+  config.mailer_update_account_enabled = true
+
+  ## Set the subject for update account emails
+  # The default is "SECURIAL: Account Update Notification".
+  config.mailer_update_account_subject = "SECURIAL: Account Update Notification"
+
   ## Set the password reset email subject
   # This is the subject line that will be used for the password reset
-  # email. The default is "Password Reset Instructions".
-  config.mailer_forgot_password_subject = "Password Reset Instructions"
+  # email. The default is "SECURIAL: Password Reset Instructions".
+  config.mailer_forgot_password_subject = "SECURIAL: Password Reset Instructions"
 
+  ##### Password configuration
   ## Set the minimum password length
   # This is the minimum length that a password must have
   # in order to be considered valid. The default is 8 characters.
@@ -73,30 +127,71 @@ Securial.configure do |config|
   config.password_max_length = 128
 
   ## Set the password complexity requirements
-  # This is a regular expression that defines the complexity
-  # requirements for a password. The default is a regex that
-  # requires at least one uppercase letter, one lowercase letter,
-  # one digit, and one special character.
+  # This is a regular expression (RegEx) that defines the complexity
+  # requirements for a password.
+  # The password must match this regex in order to be considered valid.
+  # The regex can include requirements such as:
+  # - At least one uppercase letter
+  # - At least one lowercase letter
+  # - At least one digit
+  # - At least one special character (e.g. !@#$%^&*)
+  # - No whitespace characters
+  # - No common passwords (e.g. "password", "123456", etc.)
+  # You can customize this regex to fit your application's security requirements.
+  # The default is a regex that requires at least one uppercase letter,
+  # one lowercase letter, one digit, and one special character.
   config.password_complexity = Securial::Helpers::RegexHelper::PASSWORD_REGEX
 
+  ## Set whether passwords expire
+  # Set to true if passwords should expire after a period, false to disable expiration.
+  # If password expiration is enabled, users will be required to change
+  # their password after a certain period of time. This is useful for
+  # maintaining security and ensuring that users do not use the same password
+  # for an extended period of time. It is recommended to enable password expiration
+  # to enhance security, especially for applications that handle sensitive data.
+  # The default is true.
+  config.password_expires = true
+
   ## Set the password expiration duration
-  # This is the time after which a password will be considered expired.
+  # This is the time after which a password will be considered expired,
+  # but only if password expiration is enabled (`password_expires = true`).
   # After this time, the user will need to change their password
   # in order to log in again. The expiration time is set in seconds,
   # minutes, or hours. The default is 90 days.
   config.password_expires_in = 90.days
-  
+
   ## Set the password reset token expiration duration
   # This is the time after which a password reset token will be considered expired.
   # After this time, the token will no longer be valid and the user
   # will need to request a new password reset token. The expiration time
-  # is set in seconds, minutes, or hours. The default is 2 hours.
+  # is set in seconds, minutes, or hours.
+  # This is useful for ensuring that password reset tokens are not valid indefinitely,
+  # which helps to prevent unauthorized access to user accounts.
+  # It is recommended to set a reasonable expiration time for password reset tokens
+  # to balance security and user experience. A shorter expiration time
+  # can enhance security by reducing the window of opportunity for an attacker
+  # to use a stolen or intercepted token, while a longer expiration time
+  # can improve user experience by allowing users to reset their passwords
+  # without having to request a new token frequently.
+  # The expiration time is set in seconds, minutes, or hours.
+  # The default is 2 hours.
   config.reset_password_token_expires_in = 2.hours
 
   ## Set the password reset token secret
   # This secret is used to sign the password reset tokens and ensure
   # that they cannot be tampered with. It is important to keep this
   # secret secure and not share it with anyone.
+  # It should be a long, random string to ensure security.
+  # You can generate a secure secret using a tool like `SecureRandom.hex(64)`
+  # or `SecureRandom.base64(64)`.
+  # It is recommended to change this secret periodically for security reasons.
+  # If you change this secret, all existing sessions will be invalidated,
+  # and users will need to log in again.
+  # Make sure to keep this secret safe and do not expose it in your codebase.
+  # You can use environment variables to store this secret securely.
+  # For example, you can set an environment variable `SECURIAL_RESET_PASSWORD_SECRET`
+  # and then use it in your configuration like this:
+  # config.reset_password_token_secret = ENV['SECURIAL_RESET_PASSWORD_SECRET']
   config.reset_password_token_secret = "reset_secret"
 
   ##### Timestamp Configuration
@@ -108,14 +203,14 @@ Securial.configure do |config|
   #   for regular users while still providing timestamps for admin users.
   # :all - the created_at and updated_at timestamps will be included
   #   for all users. This is useful for debugging and development purposes.
-  config.timestamps_in_response = Rails.env.production? ? :admins_only : :all
+  config.timestamps_in_response = :all
 
   ##### Response Configuration
   ## Set the format of the JSON keys in the responses.
   # The options are:
   # :snake_case - the keys will be in snake_case format.
   # :lowerCamelCase - the keys will be in lowerCamelCase format.
-  # :upperCamelCase - the keys will be in UpperCamelCase format.
+  # :UpperCamelCase - the keys will be in UpperCamelCase format.
   config.response_keys_format = :snake_case
 
   ##### Security Configuration
@@ -125,14 +220,17 @@ Securial.configure do |config|
   # :default - the default security headers will be included.
   # :strict - the strict security headers will be included.
   config.security_headers = :strict
+
   ## set whether to enable request rate limiting
   # This is useful for preventing abuse and denial of service attacks.
   config.rate_limiting_enabled = true
+
   ## Set the rate limit for requests
   # This is the maximum number of requests that a user can make
   # in a given time period. The default is 60 requests per minute.
   # This is only applied if `rate_limiting_enabled` is set to true.
   config.rate_limit_requests_per_minute = 60
+
   ## Set the rate limit response status code
   # This is the status code that will be returned when a user exceeds
   # the rate limit. The status code should be a 4xx or 5xx code
@@ -140,11 +238,10 @@ Securial.configure do |config|
   # or 503 Service Unavailable. The default is 429 Too Many Requests.
   # This is only applied if `rate_limiting_enabled` is set to true.
   config.rate_limit_response_status = 429
+
   ## Set the rate limit response message
   # This is the message that will be returned when a user exceeds
   # the rate limit. The default is "Too many requests, please try again later."
   # This is only applied if `rate_limiting_enabled` is set to true.
   config.rate_limit_response_message = "Too many requests, please try again later."
-
-
-end
+end

data/lib/securial/cli/run.rb

@@ -0,0 +1,11 @@
+# rubocop:disable Rails/Output
+def run(command, chdir: nil)
+  puts "→ #{command}"
+  if chdir
+    Dir.chdir(chdir) do
+      system(command) || abort("❌ Command failed: #{command}")
+    end
+  else
+    system(command) || abort("❌ Command failed: #{command}")
+  end
+end

data/lib/securial/cli/securial_new.rb

@@ -0,0 +1,53 @@
+# rubocop:disable Rails/Output
+require_relative "run"
+
+def securial_new(app_name, rails_options)
+  puts "🏗️  Creating new Rails app: #{app_name}"
+  create_rails_app(app_name, rails_options)
+  add_securial_gem(app_name)
+  install_gems(app_name)
+  install_securial(app_name)
+  mount_securial_engine(app_name)
+  print_final_instructions(app_name)
+end
+
+def create_rails_app(app_name, rails_options)
+  rails_command = ["rails", "new", app_name, *rails_options].join(" ")
+  run(rails_command)
+end
+
+def add_securial_gem(app_name)
+  puts "📦  Adding Securial gem to Gemfile"
+  gemfile_path = File.join(app_name, "Gemfile")
+  File.open(gemfile_path, "a") { |f| f.puts "\ngem 'securial'" }
+end
+
+def install_gems(app_name)
+  run("bundle install", chdir: app_name)
+end
+
+def install_securial(app_name)
+  puts "🔧  Installing Securial"
+  run("bin/rails generate securial:install", chdir: app_name)
+  run("bin/rails db:migrate", chdir: app_name)
+end
+
+def mount_securial_engine(app_name)
+  puts "🔗  Mounting Securial engine in routes"
+  routes_path = File.join(app_name, "config/routes.rb")
+  routes = File.read(routes_path)
+  updated = routes.sub("Rails.application.routes.draw do") do |match|
+    "#{match}\n  mount Securial::Engine => '/securial'"
+  end
+  File.write(routes_path, updated)
+end
+
+def print_final_instructions(app_name)
+  puts "🎉  Securial has been successfully installed in your Rails app!"
+  puts "✅  Your app is ready at: ./#{app_name}"
+  puts ""
+  puts "➡️  Next steps:"
+  puts "    cd #{app_name}"
+  puts "⚙️  Optional: Configure Securial in config/initializers/securial.rb"
+  puts "    rails server"
+end

data/lib/securial/cli/show_help.rb

@@ -0,0 +1,26 @@
+# rubocop:disable Rails/Output
+def show_help
+  puts <<~HELP
+    Securial CLI
+
+    Securial is a mountable Rails engine that provides robust, extensible
+    authentication and access control for Rails applications. It supports JWT,
+    API tokens, session-based auth, and is designed for easy integration with
+    modern web and mobile apps.
+
+    Usage:
+      securial new APP_NAME [rails_options...]    # Create a new Rails app with Securial pre-installed
+      securial -v, --version                      # Show the Securial gem version
+      securial -h, --help                         # Show this help message
+
+    Example:
+      securial new myapp --api --database=postgresql -T
+
+    More Info:
+      review the [Changelog] and [WIKI] for more info on the latest
+      changes and how to use this gem/engine:
+        [Changelog]:  https://github.com/AlyBadawy/Securial/blob/main/CHANGELOG.md
+        [WIKI]:       https://github.com/AlyBadawy/Securial/wiki
+
+  HELP
+end

data/lib/securial/cli/show_version.rb

@@ -0,0 +1,9 @@
+# rubocop:disable Rails/Output
+def show_version
+  begin
+    require "securial/version"
+    puts "Securial v#{Securial::VERSION}"
+  rescue LoadError
+    puts "Securial version information not available."
+  end
+end