sequel_secure_password 0.2.1 → 0.2.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5c152426f94b917df244612651e1cf9bd0fbe805
-  data.tar.gz: 2cc1ac36e86f7b54ca23dc1f3bcc282a4d6ed30a
+  metadata.gz: 8487a3cef20c52b38e950013b4ff5eedf2653171
+  data.tar.gz: 1ca566679bc6e6ffc4548b4f4a4f0affda11cde1
 SHA512:
-  metadata.gz: ce349db12f1d11b26093688c8aee75a8da70c41f18dad34e0c9323d7d17d517d018378f7cab51905d56c65a32b6fdb4f284816f7a4c70292652ec954c4efd65c
-  data.tar.gz: cdd927dfb078dee488ad5de6f13f4b87d2ec4c7a691fa97bf27aa3b5044b294175fd9e7fda9345c585ee7bf8673d361006b7ecde894e7bab389c823d6a859685
+  metadata.gz: 2ea0fccc516701add55612477eda482a0f651d3495f0e50d41ea8acef5bbbb2aafa19a8df120881515e363985f4ff240122bf5b17dbea1530051cf1875aa9866
+  data.tar.gz: 9820ae5bc3e94486ae01167061745e104c06963b719d8124975fc28972f0e46bd5790c20c99921b9d8844f35da486eec854d1159181860d451eeeb30ab761de4

data/README.md

@@ -22,9 +22,9 @@ Or install it yourself as:
 ## Usage
 
 Plugin should be used in subclasses of `Sequel::Model`. The model should have
-`password_digest` attribute in database.  
+`password_digest` attribute in database.
 __Always__ call super in `validate` method of your model, otherwise password
-validations won't be executed.  
+validations won't be executed.
 It __does not__ `set_allowed_columns` and mass assignment policy must be managed
 separately.
 
@@ -34,6 +34,11 @@ Example model:
       plugin :secure_password
     end
 
+    # cost option can be used to change computational complexity of BCrypt
+    class HighCostUser < Sequel::Model
+      plugin :secure_password, cost: 12
+    end
+
     user = User.new
     user.password = "foo"
     user.password_confirmation = "bar"
@@ -52,3 +57,7 @@ Example model:
 3. Commit your changes (`git commit -am 'Add some feature'`)
 4. Push to the branch (`git push origin my-new-feature`)
 5. Create new Pull Request
+
+## Thanks
+
+Thanks to [@send](https//:github.com/send) for implementing the `:cost` option.

data/lib/sequel_secure_password.rb

@@ -4,6 +4,21 @@ require "bcrypt"
 module Sequel
   module Plugins
     module SecurePassword
+
+      # Configure the plugin by setting the available options. Options:
+      # * :cost - the cost factor when creating password hash. Default:
+      # BCrypt::Engine::DEFAULT_COST(10)
+      def self.configure(model, opts=OPTS)
+        model.instance_eval do
+          @cost = opts[:cost] || BCrypt::Engine::DEFAULT_COST
+        end
+      end
+
+      module ClassMethods
+        attr_reader :cost
+        Plugins.inherited_instance_variables(self, @cost => nil)
+      end
+
       module InstanceMethods
         attr_accessor :password_confirmation
         attr_reader   :password
@@ -11,7 +26,7 @@ module Sequel
         def password=(unencrypted)
           @password = unencrypted
           unless blank? unencrypted
-            self.password_digest = BCrypt::Password.create(unencrypted)
+            self.password_digest = BCrypt::Password.create(unencrypted, :cost => model.cost)
           end
         end
 

data/lib/sequel_secure_password/version.rb

@@ -1,3 +1,3 @@
 module SequelSecurePassword
-  VERSION = "0.2.1"
+  VERSION = "0.2.2"
 end

data/sequel_secure_password.gemspec

@@ -22,7 +22,7 @@ EOF
   gem.require_paths = ["lib"]
 
   gem.add_dependency 'bcrypt-ruby', '~> 3.1.0'
-  gem.add_dependency 'sequel',      '~> 4.0.0'
+  gem.add_dependency 'sequel',      '~> 4.1.0'
 
   gem.add_development_dependency 'rspec',     '~> 2.14.0'
   gem.add_development_dependency 'rake',      '~> 10.0.0'

data/spec/sequel_secure_password_spec.rb

@@ -25,6 +25,13 @@ describe "model using Sequel::Plugins::SecurePassword" do
     it { should_not be_valid }
   end
 
+  context "having cost within password_digest" do
+    before { user.password = "foo" }
+    it {
+      BCrypt::Password.new(user.password_digest).cost.should be BCrypt::Engine::DEFAULT_COST
+    }
+  end
+
   context "when password matches confirmation" do
     before { user.password = user.password_confirmation = "foo" }
 
@@ -46,4 +53,14 @@ describe "model using Sequel::Plugins::SecurePassword" do
     end
   end
 
+  describe "with cost option" do
+    subject(:highcost_user) { HighCostUser.new }
+    context "having cost within password_digest" do
+      before { highcost_user.password = "foo" }
+      it {
+        BCrypt::Password.new(highcost_user.password_digest).cost.should be 12
+      }
+    end
+
+  end
 end

data/spec/spec_helper.rb

@@ -22,6 +22,17 @@ RSpec.configure do |c|
     end
 
     User.create_table!
+
+    class HighCostUser < Sequel::Model
+      set_schema do
+        primary_key :id
+        varchar     :password_digest
+      end
+
+      plugin :secure_password, :cost => 12
+    end
+
+    HighCostUser.create_table!
   end
 
   c.around :each do |example|

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: sequel_secure_password
 version: !ruby/object:Gem::Version
-  version: 0.2.1
+  version: 0.2.2
 platform: ruby
 authors:
 - Mateusz Lenik
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-07-08 00:00:00.000000000 Z
+date: 2013-09-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bcrypt-ruby
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: 4.0.0
+        version: 4.1.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: 4.0.0
+        version: 4.1.0
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement