sequel_secure_password 0.1.0

data/.gitignore

@@ -0,0 +1,17 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/.rspec

@@ -0,0 +1,3 @@
+--color
+--order rand
+--fail-fast

data/.travis.yml

@@ -0,0 +1,7 @@
+language: ruby
+script: bundle exec rspec
+rvm:
+  - 1.9.3
+  - 1.8.7
+  - jruby-18mode
+  - jruby-19mode

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in sequel_secure_password.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2012 Mateusz Lenik
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,54 @@
+# Sequel secure_password [![Build Status](https://secure.travis-ci.org/mlen/sequel_secure_password.png)](http://travis-ci.org/mlen/sequel_secure_password)
+
+Plugin adds BCrypt authentication and password hashing to Sequel models.
+Model using this plugin should have `password_digest` field.
+
+This plugin was created by extracting `has_secure_password` strategy from rails.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'sequel_secure_password'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install sequel_secure_password
+
+## Usage
+
+Plugin should be used in subclasses of `Sequel::Model`. The model should have
+`password_digest` attribute in database.  
+__Always__ call super in `validate` method of your model, otherwise password
+validations won't be executed.  
+It __does not__ `set_allowed_columns` and mass assignment policy must be managed
+separately.
+
+Example model:
+
+    class User < Sequel::Model
+      plugin :secure_password
+    end
+
+    user = User.new
+    user.password = "foo"
+    user.password_confirmation = "bar"
+    user.valid? # => false
+
+    user.password_confirmation = "foo"
+    user.valid? # => true
+
+    user.authenticate("foo") # => user
+    user.authenticate("bar") # => nil
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1,2 @@
+require "bundler/gem_tasks"
+

data/lib/sequel_secure_password/version.rb

@@ -0,0 +1,3 @@
+module SequelSecurePassword
+  VERSION = "0.1.0"
+end

data/lib/sequel_secure_password.rb

@@ -0,0 +1,40 @@
+require "sequel_secure_password/version"
+require "bcrypt"
+
+module Sequel
+  module Plugins
+    module SecurePassword
+      module InstanceMethods
+        attr_accessor :password_confirmation
+        attr_reader   :password
+
+        def password=(unencrypted)
+          @password = unencrypted
+          unless blank? unencrypted
+            self.password_digest = BCrypt::Password.create(unencrypted)
+          end
+        end
+
+        def authenticate(unencrypted)
+          if BCrypt::Password.new(password_digest) == unencrypted
+            self
+          end
+        end
+
+        def validate
+          super
+
+          errors.add :password_digest, 'is not present' if blank? password_digest
+          errors.add :password, 'has no confirmation'   if password != password_confirmation
+        end
+
+        private
+        def blank?(string)
+          string.nil? or string == /\A\s*\z/
+        end
+
+      end
+    end
+  end
+end
+

data/sequel_secure_password.gemspec

@@ -0,0 +1,34 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'sequel_secure_password/version'
+
+Gem::Specification.new do |gem|
+  gem.name          = "sequel_secure_password"
+  gem.version       = SequelSecurePassword::VERSION
+  gem.authors       = ["Mateusz Lenik"]
+  gem.email         = ["mt.lenik@gmail.com"]
+  gem.description   = %q{Plugin adds authentication methods to Sequel models using BCrypt library.}
+  gem.summary       = <<EOF
+Plugin adds BCrypt authentication and password hashing to Sequel models.
+Model using this plugin should have 'password_digest' field.
+
+This plugin was created by extracting has_secure_password strategy from rails.
+EOF
+  gem.homepage      = "http://github.com/mlen/sequel_secure_password"
+
+  gem.files         = `git ls-files`.split($/)
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+
+  gem.add_dependency 'bcrypt-ruby', '~> 3.0.0'
+  gem.add_dependency 'sequel',      '~> 3.40.0'
+
+  gem.add_development_dependency 'rspec', '~> 2.11.0'
+  gem.add_development_dependency 'rake',  '~> 0.9.0'
+  if RUBY_PLATFORM == "java"
+    gem.add_development_dependency 'jdbc-sqlite3', '~> 3.7.2'
+  else
+    gem.add_development_dependency 'sqlite3', '~> 1.3.0'
+  end
+end

data/spec/secure_password_spec.rb

@@ -0,0 +1,44 @@
+require 'spec_helper'
+
+describe "model with Sequel::Plugins::SecurePassword" do
+  subject { User.new }
+
+  it "is invalid with blank password" do
+    subject.password = ""
+    subject.should_not be_valid
+  end
+
+  it "is invalid with nil password" do
+    subject.password = nil
+    subject.should_not be_valid
+  end
+
+  it "is invalid without a password" do
+    subject.should_not be_valid
+  end
+
+  it "is valid with password matching confirmation" do
+    subject.password = "foo"
+    subject.password_confirmation = "foo"
+
+    subject.should be_valid
+  end
+
+  it "is invalid without password matching confirmation" do
+    subject.password = "foo"
+    subject.password_confirmation = "bar"
+
+    subject.should_not be_valid
+  end
+
+  it "returns user when authentication is successful" do
+    subject.password = "foo"
+    subject.authenticate("foo").should be subject
+  end
+
+  it "returns nil when authentication fails" do
+    subject.password = "foo"
+    subject.authenticate("bar").should be nil
+  end
+
+end

data/spec/spec_helper.rb

@@ -0,0 +1,31 @@
+require 'rubygems'
+require 'bundler'
+Bundler.setup
+require 'sequel'
+require 'sequel_secure_password'
+
+adapter = RUBY_PLATFORM == "java" ? 'jdbc:sqlite::memory:' : 'sqlite:/'
+
+RSpec.configure do |c|
+  c.before :suite do
+    Sequel::Model.plugin(:schema)
+    Sequel.connect adapter
+
+    class User < Sequel::Model
+      set_schema do
+        primary_key :id
+        varchar     :password_digest
+      end
+
+      plugin :secure_password
+    end
+
+    User.create_table!
+  end
+
+  c.around :each do |example|
+    Sequel::Model.db.transaction(:rollback => :always) { example.run }
+  end
+end
+
+

metadata

@@ -0,0 +1,141 @@
+--- !ruby/object:Gem::Specification
+name: sequel_secure_password
+version: !ruby/object:Gem::Version
+  prerelease:
+  version: 0.1.0
+platform: ruby
+authors:
+- Mateusz Lenik
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2012-09-27 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bcrypt-ruby
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.0.0
+    none: false
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.0.0
+    none: false
+  prerelease: false
+  type: :runtime
+- !ruby/object:Gem::Dependency
+  name: sequel
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.40.0
+    none: false
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.40.0
+    none: false
+  prerelease: false
+  type: :runtime
+- !ruby/object:Gem::Dependency
+  name: rspec
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.11.0
+    none: false
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.11.0
+    none: false
+  prerelease: false
+  type: :development
+- !ruby/object:Gem::Dependency
+  name: rake
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.9.0
+    none: false
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.9.0
+    none: false
+  prerelease: false
+  type: :development
+- !ruby/object:Gem::Dependency
+  name: jdbc-sqlite3
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.7.2
+    none: false
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.7.2
+    none: false
+  prerelease: false
+  type: :development
+description: Plugin adds authentication methods to Sequel models using BCrypt library.
+email:
+- mt.lenik@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .rspec
+- .travis.yml
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- lib/sequel_secure_password.rb
+- lib/sequel_secure_password/version.rb
+- sequel_secure_password.gemspec
+- spec/secure_password_spec.rb
+- spec/spec_helper.rb
+homepage: http://github.com/mlen/sequel_secure_password
+licenses: []
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: !binary |-
+        MA==
+  none: false
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: !binary |-
+        MA==
+  none: false
+requirements: []
+rubyforge_project:
+rubygems_version: 1.8.24
+signing_key:
+specification_version: 3
+summary: Plugin adds BCrypt authentication and password hashing to Sequel models. Model using this plugin should have 'password_digest' field.  This plugin was created by extracting has_secure_password strategy from rails.
+test_files:
+- spec/secure_password_spec.rb
+- spec/spec_helper.rb