sorcery 0.17.0 → 0.18.0

data/spec/controllers/controller_spec.rb

@@ -1,200 +0,0 @@
-require 'spec_helper'
-
-describe SorceryController, type: :controller do
-  describe 'plugin configuration' do
-    before(:all) do
-      sorcery_reload!
-    end
-
-    after(:each) do
-      Sorcery::Controller::Config.reset!
-      sorcery_reload!
-    end
-
-    it "enables configuration option 'user_class'" do
-      sorcery_controller_property_set(:user_class, 'TestUser')
-
-      expect(Sorcery::Controller::Config.user_class).to eq 'TestUser'
-    end
-
-    it "enables configuration option 'not_authenticated_action'" do
-      sorcery_controller_property_set(:not_authenticated_action, :my_action)
-
-      expect(Sorcery::Controller::Config.not_authenticated_action).to eq :my_action
-    end
-  end
-
-  # ----------------- PLUGIN ACTIVATED -----------------------
-  context 'when activated with sorcery' do
-    let(:user) { double('user', id: 42) }
-
-    before(:all) do
-      sorcery_reload!
-    end
-
-    after(:each) do
-      Sorcery::Controller::Config.reset!
-      sorcery_reload!
-      sorcery_controller_property_set(:user_class, User)
-      sorcery_model_property_set(:username_attribute_names, [:email])
-    end
-
-    specify { should respond_to(:login) }
-
-    specify { should respond_to(:logout) }
-
-    specify { should respond_to(:logged_in?) }
-
-    specify { should respond_to(:current_user) }
-
-    specify { should respond_to(:require_login) }
-
-    describe '#login' do
-      context 'when succeeds' do
-        before do
-          expect(User).to receive(:authenticate).with('bla@bla.com', 'secret') { |&block| block.call(user, nil) }
-          get :test_login, params: { email: 'bla@bla.com', password: 'secret' }
-        end
-
-        it 'assigns user to @user variable' do
-          expect(assigns[:user]).to eq user
-        end
-
-        it 'writes user id in session' do
-          expect(session[:user_id]).to eq user.id.to_s
-        end
-
-        # NOTE: The lack of a CSRF token may mean that sessions will break
-        #       horribly for Sorcery when using Rails 7.1+. We shall see.
-        it 'sets csrf token in session' do
-          if Gem::Version.new(Rails.version) >= Gem::Version.new('7.1')
-            pending 'Rails 7.1 is not including the csrf token in the session for unknown reasons'
-          end
-
-          expect(session[:_csrf_token]).not_to be_nil
-        end
-      end
-
-      context 'when fails' do
-        before do
-          expect(User).to receive(:authenticate).with('bla@bla.com', 'opensesame!').and_return(nil)
-          get :test_login, params: { email: 'bla@bla.com', password: 'opensesame!' }
-        end
-
-        it 'sets @user variable to nil' do
-          expect(assigns[:user]).to be_nil
-        end
-
-        it 'sets user_id in session to nil' do
-          expect(session[:user_id]).to be_nil
-        end
-      end
-    end
-
-    describe '#logout' do
-      it 'clears the session' do
-        cookies[:remember_me_token] = nil
-        session[:user_id] = user.id.to_s
-        expect(User.sorcery_adapter).to receive(:find_by_id).with('42') { user }
-        get :test_logout
-
-        expect(session[:user_id]).to be_nil
-      end
-    end
-
-    describe '#logged_in?' do
-      it 'returns true when user is logged in' do
-        session[:user_id] = user.id.to_s
-        expect(User.sorcery_adapter).to receive(:find_by_id).with('42') { user }
-
-        expect(subject.logged_in?).to be true
-      end
-
-      it 'returns false when user is not logged in' do
-        session[:user_id] = nil
-
-        expect(subject.logged_in?).to be false
-      end
-    end
-
-    describe '#current_user' do
-      it 'current_user returns the user instance if logged in' do
-        session[:user_id] = user.id.to_s
-        expect(User.sorcery_adapter).to receive(:find_by_id).once.with('42') { user }
-
-        2.times { expect(subject.current_user).to eq user } # memoized!
-      end
-
-      it 'current_user returns false if not logged in' do
-        session[:user_id] = nil
-        expect(User.sorcery_adapter).to_not receive(:find_by_id)
-
-        2.times { expect(subject.current_user).to be_nil } # memoized!
-      end
-    end
-
-    it "calls the configured 'not_authenticated_action' when authenticate before_action fails" do
-      session[:user_id] = nil
-      sorcery_controller_property_set(:not_authenticated_action, :test_not_authenticated_action)
-      get :test_logout
-
-      expect(response).to be_successful
-    end
-
-    it 'require_login before_action saves the url that the user originally wanted' do
-      get :some_action
-
-      expect(session[:return_to_url]).to eq 'http://test.host/some_action'
-      expect(response).to redirect_to('http://test.host/')
-    end
-
-    it 'require_login before_action does not save the url that the user originally wanted upon all non-get http methods' do
-      %i[post put delete].each do |m|
-        send(m, :some_action)
-
-        expect(session[:return_to_url]).to be_nil
-      end
-    end
-
-    it 'require_login before_action does not save the url for JSON requests' do
-      get :some_action, format: :json
-      expect(session[:return_to_url]).to be_nil
-    end
-
-    it 'require_login before_action does not save the url for XHR requests' do
-      get :some_action, xhr: true
-      expect(session[:return_to_url]).to be_nil
-    end
-
-    it 'on successful login the user is redirected to the url he originally wanted' do
-      session[:return_to_url] = 'http://test.host/some_action'
-      post :test_return_to, params: { email: 'bla@bla.com', password: 'secret' }
-
-      expect(response).to redirect_to('http://test.host/some_action')
-      expect(flash[:notice]).to eq 'haha!'
-    end
-
-    # --- auto_login(user) ---
-    specify { should respond_to(:auto_login) }
-
-    it 'auto_login(user) logs in a user instance' do
-      session[:user_id] = nil
-      subject.auto_login(user)
-
-      expect(subject.logged_in?).to be true
-    end
-
-    it 'auto_login(user) works even if current_user was already set to false' do
-      get :test_logout
-
-      expect(session[:user_id]).to be_nil
-      expect(subject.current_user).to be_nil
-
-      expect(User).to receive(:first) { user }
-
-      get :test_auto_login
-
-      expect(assigns[:result]).to eq user
-    end
-  end
-end

data/spec/orm/active_record.rb

@@ -1,21 +0,0 @@
-require 'sorcery'
-
-ActiveRecord::Migration.verbose = false
-# ActiveRecord::Base.logger = Logger.new(nil)
-# ActiveRecord::Base.include_root_in_json = true
-
-class TestUser < ActiveRecord::Base
-  authenticates_with_sorcery!
-end
-
-def setup_orm
-  MigrationHelper.migrate(migrations_path)
-end
-
-def teardown_orm
-  MigrationHelper.rollback(migrations_path)
-end
-
-def migrations_path
-  Rails.root.join('db', 'migrate', 'core')
-end

data/spec/providers/example_provider_spec.rb

@@ -1,17 +0,0 @@
-# frozen_string_literal: true
-
-require 'spec_helper'
-require 'sorcery/providers/base'
-
-describe Sorcery::Providers::ExampleProvider do
-  before(:all) do
-    sorcery_reload!([:external])
-    sorcery_controller_property_set(:external_providers, [:example_provider])
-  end
-
-  context 'fetching a multi-word custom provider' do
-    it 'returns the provider' do
-      expect(Sorcery::Controller::Config.example_provider).to be_a(Sorcery::Providers::ExampleProvider)
-    end
-  end
-end

data/spec/providers/example_spec.rb

@@ -1,17 +0,0 @@
-# frozen_string_literal: true
-
-require 'spec_helper'
-require 'sorcery/providers/base'
-
-describe Sorcery::Providers::Example do
-  before(:all) do
-    sorcery_reload!([:external])
-    sorcery_controller_property_set(:external_providers, [:example])
-  end
-
-  context 'fetching a single-word custom provider' do
-    it 'returns the provider' do
-      expect(Sorcery::Controller::Config.example).to be_a(Sorcery::Providers::Example)
-    end
-  end
-end

data/spec/providers/examples_spec.rb

@@ -1,17 +0,0 @@
-# frozen_string_literal: true
-
-require 'spec_helper'
-require 'sorcery/providers/base'
-
-describe Sorcery::Providers::Examples do
-  before(:all) do
-    sorcery_reload!([:external])
-    sorcery_controller_property_set(:external_providers, [:examples])
-  end
-
-  context 'fetching a plural custom provider' do
-    it 'returns the provider' do
-      expect(Sorcery::Controller::Config.examples).to be_a(Sorcery::Providers::Examples)
-    end
-  end
-end

data/spec/providers/vk_spec.rb

@@ -1,42 +0,0 @@
-require 'spec_helper'
-require 'sorcery/providers/base'
-require 'sorcery/providers/vk'
-require 'webmock/rspec'
-
-describe Sorcery::Providers::Vk do
-  include WebMock::API
-
-  let(:provider) { Sorcery::Controller::Config.vk }
-
-  before(:all) do
-    sorcery_reload!([:external])
-    sorcery_controller_property_set(:external_providers, [:vk])
-    sorcery_controller_external_property_set(:vk, :key, 'KEY')
-    sorcery_controller_external_property_set(:vk, :secret, 'SECRET')
-  end
-
-  def stub_vk_authorize
-    stub_request(:post, %r{https\:\/\/oauth\.vk\.com\/access_token}).to_return(
-      status: 200,
-      body: '{"access_token":"TOKEN","expires_in":86329,"user_id":1}',
-      headers: { 'content-type' => 'application/json' }
-    )
-  end
-
-  context 'getting user info hash' do
-    it 'should provide VK API version' do
-      stub_vk_authorize
-      sorcery_controller_external_property_set(:vk, :api_version, '5.71')
-
-      get_user = stub_request(
-        :get,
-        'https://api.vk.com/method/getProfiles?access_token=TOKEN&fields=&scope=email&uids=1&v=5.71'
-      ).to_return(body: '{"response":[{"id":1}]}')
-
-      token = provider.process_callback({ code: 'CODE' }, nil)
-      provider.get_user_hash(token)
-
-      expect(get_user).to have_been_requested
-    end
-  end
-end

data/spec/rails_app/app/active_record/authentication.rb

@@ -1,3 +0,0 @@
-class Authentication < ActiveRecord::Base
-  belongs_to :user
-end

data/spec/rails_app/app/active_record/user.rb

@@ -1,5 +0,0 @@
-class User < ActiveRecord::Base
-  has_many :authentications, dependent: :destroy
-  has_many :user_providers, dependent: :destroy
-  accepts_nested_attributes_for :authentications
-end

data/spec/rails_app/app/active_record/user_provider.rb

@@ -1,3 +0,0 @@
-class UserProvider < ActiveRecord::Base
-  belongs_to :user
-end

data/spec/rails_app/app/assets/config/manifest.js

@@ -1 +0,0 @@
-{}

data/spec/rails_app/app/controllers/application_controller.rb

@@ -1,2 +0,0 @@
-class ApplicationController < ActionController::Base
-end