sorcery 0.8.1 → 0.9.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +7 -0
- data/.gitignore +56 -0
- data/.travis.yml +130 -1
- data/CHANGELOG.md +279 -0
- data/Gemfile +18 -23
- data/README.md +372 -0
- data/Rakefile +3 -78
- data/gemfiles/active_record-rails40.gemfile +7 -0
- data/gemfiles/active_record-rails41.gemfile +7 -0
- data/gemfiles/mongo_mapper-rails40.gemfile +9 -0
- data/gemfiles/mongo_mapper-rails41.gemfile +9 -0
- data/gemfiles/mongoid-rails40.gemfile +9 -0
- data/gemfiles/mongoid-rails41.gemfile +9 -0
- data/gemfiles/mongoid3-rails32.gemfile +9 -0
- data/lib/generators/sorcery/USAGE +1 -1
- data/lib/generators/sorcery/helpers.rb +40 -0
- data/lib/generators/sorcery/install_generator.rb +38 -20
- data/lib/generators/sorcery/templates/initializer.rb +53 -16
- data/lib/generators/sorcery/templates/migration/activity_logging.rb +3 -10
- data/lib/generators/sorcery/templates/migration/brute_force_protection.rb +3 -7
- data/lib/generators/sorcery/templates/migration/core.rb +5 -8
- data/lib/generators/sorcery/templates/migration/external.rb +3 -5
- data/lib/generators/sorcery/templates/migration/remember_me.rb +2 -9
- data/lib/generators/sorcery/templates/migration/reset_password.rb +2 -10
- data/lib/generators/sorcery/templates/migration/user_activation.rb +2 -10
- data/lib/sorcery/adapters/active_record_adapter.rb +120 -0
- data/lib/sorcery/adapters/base_adapter.rb +30 -0
- data/lib/sorcery/adapters/data_mapper_adapter.rb +176 -0
- data/lib/sorcery/adapters/mongo_mapper_adapter.rb +110 -0
- data/lib/sorcery/adapters/mongoid_adapter.rb +97 -0
- data/lib/sorcery/controller/config.rb +65 -0
- data/lib/sorcery/controller/submodules/activity_logging.rb +27 -21
- data/lib/sorcery/controller/submodules/brute_force_protection.rb +6 -6
- data/lib/sorcery/controller/submodules/external.rb +107 -75
- data/lib/sorcery/controller/submodules/remember_me.rb +5 -5
- data/lib/sorcery/controller/submodules/session_timeout.rb +11 -7
- data/lib/sorcery/controller.rb +27 -76
- data/lib/sorcery/model/config.rb +96 -0
- data/lib/sorcery/model/submodules/activity_logging.rb +32 -12
- data/lib/sorcery/model/submodules/brute_force_protection.rb +36 -36
- data/lib/sorcery/model/submodules/external.rb +53 -9
- data/lib/sorcery/model/submodules/remember_me.rb +15 -19
- data/lib/sorcery/model/submodules/reset_password.rb +36 -33
- data/lib/sorcery/model/submodules/user_activation.rb +51 -48
- data/lib/sorcery/model/temporary_token.rb +4 -4
- data/lib/sorcery/model.rb +85 -175
- data/lib/sorcery/protocols/oauth.rb +42 -0
- data/lib/sorcery/protocols/oauth2.rb +47 -0
- data/lib/sorcery/providers/base.rb +38 -0
- data/lib/sorcery/providers/facebook.rb +74 -0
- data/lib/sorcery/providers/github.rb +60 -0
- data/lib/sorcery/providers/google.rb +51 -0
- data/lib/sorcery/providers/heroku.rb +57 -0
- data/lib/sorcery/providers/jira.rb +77 -0
- data/lib/sorcery/providers/linkedin.rb +66 -0
- data/lib/sorcery/providers/liveid.rb +53 -0
- data/lib/sorcery/providers/salesforce.rb +50 -0
- data/lib/sorcery/providers/twitter.rb +59 -0
- data/lib/sorcery/providers/vk.rb +63 -0
- data/lib/sorcery/providers/xing.rb +64 -0
- data/lib/sorcery/railties/tasks.rake +1 -7
- data/lib/sorcery/test_helpers/internal/rails.rb +17 -6
- data/lib/sorcery/test_helpers/internal.rb +27 -6
- data/lib/sorcery/test_helpers/rails/controller.rb +21 -0
- data/lib/sorcery/test_helpers/rails/integration.rb +26 -0
- data/lib/sorcery/version.rb +3 -0
- data/lib/sorcery.rb +83 -57
- data/sorcery.gemspec +24 -363
- data/spec/active_record/user_activation_spec.rb +18 -0
- data/spec/active_record/user_activity_logging_spec.rb +17 -0
- data/spec/{rails3/spec → active_record}/user_brute_force_protection_spec.rb +6 -5
- data/spec/{rails3/spec → active_record}/user_oauth_spec.rb +6 -5
- data/spec/{rails3/spec → active_record}/user_remember_me_spec.rb +5 -4
- data/spec/{rails3/spec → active_record}/user_reset_password_spec.rb +7 -7
- data/spec/active_record/user_spec.rb +37 -0
- data/spec/controllers/controller_activity_logging_spec.rb +124 -0
- data/spec/controllers/controller_brute_force_protection_spec.rb +43 -0
- data/spec/controllers/controller_http_basic_auth_spec.rb +68 -0
- data/spec/controllers/controller_oauth2_spec.rb +429 -0
- data/spec/controllers/controller_oauth_spec.rb +240 -0
- data/spec/controllers/controller_remember_me_spec.rb +117 -0
- data/spec/controllers/controller_session_timeout_spec.rb +80 -0
- data/spec/controllers/controller_spec.rb +218 -0
- data/spec/data_mapper/user_activation_spec.rb +10 -0
- data/spec/data_mapper/user_activity_logging_spec.rb +14 -0
- data/spec/data_mapper/user_brute_force_protection_spec.rb +9 -0
- data/spec/data_mapper/user_oauth_spec.rb +9 -0
- data/spec/data_mapper/user_remember_me_spec.rb +8 -0
- data/spec/data_mapper/user_reset_password_spec.rb +8 -0
- data/spec/data_mapper/user_spec.rb +27 -0
- data/spec/mongo_mapper/user_activation_spec.rb +9 -0
- data/spec/mongo_mapper/user_activity_logging_spec.rb +8 -0
- data/spec/mongo_mapper/user_brute_force_protection_spec.rb +8 -0
- data/spec/mongo_mapper/user_oauth_spec.rb +8 -0
- data/spec/mongo_mapper/user_remember_me_spec.rb +8 -0
- data/spec/mongo_mapper/user_reset_password_spec.rb +8 -0
- data/spec/mongo_mapper/user_spec.rb +37 -0
- data/spec/mongoid/user_activation_spec.rb +9 -0
- data/spec/mongoid/user_activity_logging_spec.rb +8 -0
- data/spec/mongoid/user_brute_force_protection_spec.rb +8 -0
- data/spec/mongoid/user_oauth_spec.rb +8 -0
- data/spec/mongoid/user_remember_me_spec.rb +8 -0
- data/spec/mongoid/user_reset_password_spec.rb +8 -0
- data/spec/mongoid/user_spec.rb +51 -0
- data/spec/orm/active_record.rb +21 -0
- data/spec/orm/data_mapper.rb +48 -0
- data/spec/orm/mongo_mapper.rb +10 -0
- data/spec/orm/mongoid.rb +22 -0
- data/spec/{rails3/app/models → rails_app/app/active_record}/user.rb +1 -2
- data/spec/rails_app/app/active_record/user_provider.rb +3 -0
- data/spec/rails_app/app/controllers/sorcery_controller.rb +285 -0
- data/spec/rails_app/app/data_mapper/authentication.rb +8 -0
- data/spec/rails_app/app/data_mapper/user.rb +7 -0
- data/spec/{rails3_mongo_mapper/app/models → rails_app/app/mongo_mapper}/user.rb +2 -0
- data/spec/{rails3_mongoid/app/models → rails_app/app/mongoid}/user.rb +2 -0
- data/spec/rails_app/app/views/sorcery_mailer/send_unlock_token_email.text.erb +1 -0
- data/spec/{rails3_mongo_mapper → rails_app}/config/application.rb +13 -8
- data/spec/rails_app/config/boot.rb +4 -0
- data/spec/rails_app/config/database.yml +22 -0
- data/spec/{rails3_mongo_mapper → rails_app}/config/environments/test.rb +2 -0
- data/spec/{rails3_mongoid → rails_app}/config/initializers/session_store.rb +4 -0
- data/spec/rails_app/config/routes.rb +51 -0
- data/spec/{rails3_mongo_mapper → rails_app}/config.ru +1 -1
- data/spec/{rails3 → rails_app}/db/migrate/activation/20101224223622_add_activation_to_users.rb +3 -3
- data/spec/{rails3 → rails_app}/db/migrate/activity_logging/20101224223624_add_activity_logging_to_users.rb +2 -0
- data/spec/{rails3 → rails_app}/db/migrate/core/20101224223620_create_users.rb +2 -2
- data/spec/rails_app/db/migrate/external/20101224223628_create_authentications_and_user_providers.rb +22 -0
- data/spec/rails_app/log/development.log +1791 -0
- data/spec/shared_examples/user_activation_shared_examples.rb +137 -98
- data/spec/shared_examples/user_activity_logging_shared_examples.rb +86 -13
- data/spec/shared_examples/user_brute_force_protection_shared_examples.rb +140 -21
- data/spec/shared_examples/user_oauth_shared_examples.rb +21 -16
- data/spec/shared_examples/user_remember_me_shared_examples.rb +36 -24
- data/spec/shared_examples/user_reset_password_shared_examples.rb +163 -130
- data/spec/shared_examples/user_shared_examples.rb +370 -195
- data/spec/sorcery_crypto_providers_spec.rb +74 -72
- data/spec/spec_helper.rb +32 -4
- metadata +259 -425
- data/Gemfile.lock +0 -192
- data/README.rdoc +0 -261
- data/VERSION +0 -1
- data/lib/sorcery/controller/submodules/external/protocols/oauth1.rb +0 -35
- data/lib/sorcery/controller/submodules/external/protocols/oauth2.rb +0 -45
- data/lib/sorcery/controller/submodules/external/providers/facebook.rb +0 -97
- data/lib/sorcery/controller/submodules/external/providers/github.rb +0 -91
- data/lib/sorcery/controller/submodules/external/providers/google.rb +0 -90
- data/lib/sorcery/controller/submodules/external/providers/linkedin.rb +0 -101
- data/lib/sorcery/controller/submodules/external/providers/liveid.rb +0 -91
- data/lib/sorcery/controller/submodules/external/providers/twitter.rb +0 -92
- data/lib/sorcery/controller/submodules/external/providers/vk.rb +0 -99
- data/lib/sorcery/model/adapters/active_record.rb +0 -49
- data/lib/sorcery/model/adapters/mongo_mapper.rb +0 -56
- data/lib/sorcery/model/adapters/mongoid.rb +0 -88
- data/lib/sorcery/test_helpers/rails.rb +0 -16
- data/lib/sorcery/test_helpers.rb +0 -5
- data/spec/Gemfile +0 -12
- data/spec/Gemfile.lock +0 -129
- data/spec/README.md +0 -31
- data/spec/Rakefile +0 -12
- data/spec/rails3/.gitignore +0 -4
- data/spec/rails3/.rspec +0 -1
- data/spec/rails3/Gemfile +0 -15
- data/spec/rails3/Gemfile.lock +0 -162
- data/spec/rails3/README +0 -256
- data/spec/rails3/Rakefile +0 -11
- data/spec/rails3/app/controllers/application_controller.rb +0 -208
- data/spec/rails3/app/views/sorcery_mailer/send_unlock_token_email.text.erb +0 -1
- data/spec/rails3/config/application.rb +0 -46
- data/spec/rails3/config/boot.rb +0 -13
- data/spec/rails3/config/database.yml +0 -27
- data/spec/rails3/config/environments/development.rb +0 -26
- data/spec/rails3/config/environments/in_memory.rb +0 -35
- data/spec/rails3/config/environments/production.rb +0 -49
- data/spec/rails3/config/environments/test.rb +0 -35
- data/spec/rails3/config/initializers/session_store.rb +0 -8
- data/spec/rails3/config/routes.rb +0 -59
- data/spec/rails3/config.ru +0 -4
- data/spec/rails3/db/migrate/external/20101224223628_create_authentications.rb +0 -14
- data/spec/rails3/lib/tasks/.gitkeep +0 -0
- data/spec/rails3/public/404.html +0 -26
- data/spec/rails3/public/422.html +0 -26
- data/spec/rails3/public/500.html +0 -26
- data/spec/rails3/public/favicon.ico +0 -0
- data/spec/rails3/public/images/rails.png +0 -0
- data/spec/rails3/public/javascripts/application.js +0 -2
- data/spec/rails3/public/javascripts/controls.js +0 -965
- data/spec/rails3/public/javascripts/dragdrop.js +0 -974
- data/spec/rails3/public/javascripts/effects.js +0 -1123
- data/spec/rails3/public/javascripts/prototype.js +0 -6001
- data/spec/rails3/public/javascripts/rails.js +0 -175
- data/spec/rails3/public/robots.txt +0 -5
- data/spec/rails3/public/stylesheets/.gitkeep +0 -0
- data/spec/rails3/script/rails +0 -6
- data/spec/rails3/spec/controller_activity_logging_spec.rb +0 -115
- data/spec/rails3/spec/controller_brute_force_protection_spec.rb +0 -88
- data/spec/rails3/spec/controller_http_basic_auth_spec.rb +0 -50
- data/spec/rails3/spec/controller_oauth2_spec.rb +0 -380
- data/spec/rails3/spec/controller_oauth_spec.rb +0 -206
- data/spec/rails3/spec/controller_remember_me_spec.rb +0 -96
- data/spec/rails3/spec/controller_session_timeout_spec.rb +0 -55
- data/spec/rails3/spec/controller_spec.rb +0 -177
- data/spec/rails3/spec/integration_spec.rb +0 -23
- data/spec/rails3/spec/spec.opts +0 -2
- data/spec/rails3/spec/spec_helper.orig.rb +0 -27
- data/spec/rails3/spec/spec_helper.rb +0 -71
- data/spec/rails3/spec/user_activation_spec.rb +0 -16
- data/spec/rails3/spec/user_activity_logging_spec.rb +0 -8
- data/spec/rails3/spec/user_spec.rb +0 -36
- data/spec/rails3/vendor/plugins/.gitkeep +0 -0
- data/spec/rails3_mongo_mapper/.gitignore +0 -4
- data/spec/rails3_mongo_mapper/.rspec +0 -1
- data/spec/rails3_mongo_mapper/Gemfile +0 -16
- data/spec/rails3_mongo_mapper/Gemfile.lock +0 -156
- data/spec/rails3_mongo_mapper/Rakefile +0 -11
- data/spec/rails3_mongo_mapper/app/controllers/application_controller.rb +0 -122
- data/spec/rails3_mongo_mapper/app/helpers/application_helper.rb +0 -2
- data/spec/rails3_mongo_mapper/app/mailers/sorcery_mailer.rb +0 -25
- data/spec/rails3_mongo_mapper/app/views/layouts/application.html.erb +0 -14
- data/spec/rails3_mongo_mapper/app/views/sorcery_mailer/activation_email.html.erb +0 -17
- data/spec/rails3_mongo_mapper/app/views/sorcery_mailer/activation_email.text.erb +0 -9
- data/spec/rails3_mongo_mapper/app/views/sorcery_mailer/activation_success_email.text.erb +0 -9
- data/spec/rails3_mongo_mapper/app/views/sorcery_mailer/reset_password_email.html.erb +0 -16
- data/spec/rails3_mongo_mapper/app/views/sorcery_mailer/reset_password_email.text.erb +0 -8
- data/spec/rails3_mongo_mapper/config/boot.rb +0 -13
- data/spec/rails3_mongo_mapper/config/environment.rb +0 -5
- data/spec/rails3_mongo_mapper/config/environments/development.rb +0 -30
- data/spec/rails3_mongo_mapper/config/environments/in_memory.rb +0 -0
- data/spec/rails3_mongo_mapper/config/environments/production.rb +0 -49
- data/spec/rails3_mongo_mapper/config/initializers/backtrace_silencers.rb +0 -7
- data/spec/rails3_mongo_mapper/config/initializers/inflections.rb +0 -10
- data/spec/rails3_mongo_mapper/config/initializers/mime_types.rb +0 -5
- data/spec/rails3_mongo_mapper/config/initializers/mongo.rb +0 -2
- data/spec/rails3_mongo_mapper/config/initializers/secret_token.rb +0 -7
- data/spec/rails3_mongo_mapper/config/initializers/session_store.rb +0 -8
- data/spec/rails3_mongo_mapper/config/locales/en.yml +0 -5
- data/spec/rails3_mongo_mapper/config/routes.rb +0 -59
- data/spec/rails3_mongo_mapper/db/schema.rb +0 -23
- data/spec/rails3_mongo_mapper/db/seeds.rb +0 -7
- data/spec/rails3_mongo_mapper/lib/tasks/.gitkeep +0 -0
- data/spec/rails3_mongo_mapper/public/404.html +0 -26
- data/spec/rails3_mongo_mapper/public/422.html +0 -26
- data/spec/rails3_mongo_mapper/public/500.html +0 -26
- data/spec/rails3_mongo_mapper/public/favicon.ico +0 -0
- data/spec/rails3_mongo_mapper/public/images/rails.png +0 -0
- data/spec/rails3_mongo_mapper/public/javascripts/application.js +0 -2
- data/spec/rails3_mongo_mapper/public/javascripts/controls.js +0 -965
- data/spec/rails3_mongo_mapper/public/javascripts/dragdrop.js +0 -974
- data/spec/rails3_mongo_mapper/public/javascripts/effects.js +0 -1123
- data/spec/rails3_mongo_mapper/public/javascripts/prototype.js +0 -6001
- data/spec/rails3_mongo_mapper/public/javascripts/rails.js +0 -175
- data/spec/rails3_mongo_mapper/public/robots.txt +0 -5
- data/spec/rails3_mongo_mapper/public/stylesheets/.gitkeep +0 -0
- data/spec/rails3_mongo_mapper/script/rails +0 -6
- data/spec/rails3_mongo_mapper/spec/controller_spec.rb +0 -170
- data/spec/rails3_mongo_mapper/spec/spec.opts +0 -2
- data/spec/rails3_mongo_mapper/spec/spec_helper.orig.rb +0 -27
- data/spec/rails3_mongo_mapper/spec/spec_helper.rb +0 -55
- data/spec/rails3_mongo_mapper/spec/user_activation_spec.rb +0 -9
- data/spec/rails3_mongo_mapper/spec/user_activity_logging_spec.rb +0 -8
- data/spec/rails3_mongo_mapper/spec/user_brute_force_protection_spec.rb +0 -8
- data/spec/rails3_mongo_mapper/spec/user_oauth_spec.rb +0 -8
- data/spec/rails3_mongo_mapper/spec/user_remember_me_spec.rb +0 -8
- data/spec/rails3_mongo_mapper/spec/user_reset_password_spec.rb +0 -8
- data/spec/rails3_mongo_mapper/spec/user_spec.rb +0 -37
- data/spec/rails3_mongo_mapper/vendor/plugins/.gitkeep +0 -0
- data/spec/rails3_mongoid/.gitignore +0 -4
- data/spec/rails3_mongoid/.rspec +0 -1
- data/spec/rails3_mongoid/Gemfile +0 -15
- data/spec/rails3_mongoid/Gemfile.lock +0 -146
- data/spec/rails3_mongoid/Rakefile +0 -11
- data/spec/rails3_mongoid/app/controllers/application_controller.rb +0 -127
- data/spec/rails3_mongoid/app/helpers/application_helper.rb +0 -2
- data/spec/rails3_mongoid/app/mailers/sorcery_mailer.rb +0 -25
- data/spec/rails3_mongoid/app/views/layouts/application.html.erb +0 -14
- data/spec/rails3_mongoid/app/views/sorcery_mailer/activation_email.html.erb +0 -17
- data/spec/rails3_mongoid/app/views/sorcery_mailer/activation_email.text.erb +0 -9
- data/spec/rails3_mongoid/app/views/sorcery_mailer/activation_success_email.html.erb +0 -17
- data/spec/rails3_mongoid/app/views/sorcery_mailer/activation_success_email.text.erb +0 -9
- data/spec/rails3_mongoid/app/views/sorcery_mailer/reset_password_email.html.erb +0 -16
- data/spec/rails3_mongoid/app/views/sorcery_mailer/reset_password_email.text.erb +0 -8
- data/spec/rails3_mongoid/config/application.rb +0 -51
- data/spec/rails3_mongoid/config/boot.rb +0 -13
- data/spec/rails3_mongoid/config/environment.rb +0 -5
- data/spec/rails3_mongoid/config/environments/development.rb +0 -26
- data/spec/rails3_mongoid/config/environments/in_memory.rb +0 -0
- data/spec/rails3_mongoid/config/environments/production.rb +0 -49
- data/spec/rails3_mongoid/config/environments/test.rb +0 -35
- data/spec/rails3_mongoid/config/initializers/backtrace_silencers.rb +0 -7
- data/spec/rails3_mongoid/config/initializers/inflections.rb +0 -10
- data/spec/rails3_mongoid/config/initializers/mime_types.rb +0 -5
- data/spec/rails3_mongoid/config/initializers/secret_token.rb +0 -7
- data/spec/rails3_mongoid/config/locales/en.yml +0 -5
- data/spec/rails3_mongoid/config/mongoid.yml +0 -7
- data/spec/rails3_mongoid/config/routes.rb +0 -59
- data/spec/rails3_mongoid/config.ru +0 -4
- data/spec/rails3_mongoid/db/schema.rb +0 -23
- data/spec/rails3_mongoid/db/seeds.rb +0 -7
- data/spec/rails3_mongoid/lib/tasks/.gitkeep +0 -0
- data/spec/rails3_mongoid/public/404.html +0 -26
- data/spec/rails3_mongoid/public/422.html +0 -26
- data/spec/rails3_mongoid/public/500.html +0 -26
- data/spec/rails3_mongoid/public/favicon.ico +0 -0
- data/spec/rails3_mongoid/public/images/rails.png +0 -0
- data/spec/rails3_mongoid/public/javascripts/application.js +0 -2
- data/spec/rails3_mongoid/public/javascripts/controls.js +0 -965
- data/spec/rails3_mongoid/public/javascripts/dragdrop.js +0 -974
- data/spec/rails3_mongoid/public/javascripts/effects.js +0 -1123
- data/spec/rails3_mongoid/public/javascripts/prototype.js +0 -6001
- data/spec/rails3_mongoid/public/javascripts/rails.js +0 -175
- data/spec/rails3_mongoid/public/robots.txt +0 -5
- data/spec/rails3_mongoid/public/stylesheets/.gitkeep +0 -0
- data/spec/rails3_mongoid/script/rails +0 -6
- data/spec/rails3_mongoid/spec/controller_activity_logging_spec.rb +0 -105
- data/spec/rails3_mongoid/spec/controller_spec.rb +0 -181
- data/spec/rails3_mongoid/spec/spec.opts +0 -2
- data/spec/rails3_mongoid/spec/spec_helper.orig.rb +0 -27
- data/spec/rails3_mongoid/spec/spec_helper.rb +0 -55
- data/spec/rails3_mongoid/spec/user_activation_spec.rb +0 -9
- data/spec/rails3_mongoid/spec/user_activity_logging_spec.rb +0 -8
- data/spec/rails3_mongoid/spec/user_brute_force_protection_spec.rb +0 -8
- data/spec/rails3_mongoid/spec/user_oauth_spec.rb +0 -8
- data/spec/rails3_mongoid/spec/user_remember_me_spec.rb +0 -8
- data/spec/rails3_mongoid/spec/user_reset_password_spec.rb +0 -8
- data/spec/rails3_mongoid/spec/user_spec.rb +0 -38
- data/spec/rails3_mongoid/vendor/plugins/.gitkeep +0 -0
- data/spec/shared_examples/controller_oauth2_shared_examples.rb +0 -56
- data/spec/shared_examples/controller_oauth_shared_examples.rb +0 -55
- /data/lib/sorcery/{controller/submodules/external/protocols → protocols}/certs/ca-bundle.crt +0 -0
- /data/spec/{rails3/app/models → rails_app/app/active_record}/authentication.rb +0 -0
- /data/spec/{rails3 → rails_app}/app/helpers/application_helper.rb +0 -0
- /data/spec/{rails3 → rails_app}/app/mailers/sorcery_mailer.rb +0 -0
- /data/spec/{rails3_mongo_mapper/app/models → rails_app/app/mongo_mapper}/authentication.rb +0 -0
- /data/spec/{rails3_mongoid/app/models → rails_app/app/mongoid}/authentication.rb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/application/index.html.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/layouts/application.html.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/sorcery_mailer/activation_email.html.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/sorcery_mailer/activation_email.text.erb +0 -0
- /data/spec/{rails3/app/views/sorcery_mailer/activation_success_email.html.erb → rails_app/app/views/sorcery_mailer/activation_needed_email.html.erb} +0 -0
- /data/spec/{rails3_mongo_mapper → rails_app}/app/views/sorcery_mailer/activation_success_email.html.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/sorcery_mailer/activation_success_email.text.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/sorcery_mailer/reset_password_email.html.erb +0 -0
- /data/spec/{rails3 → rails_app}/app/views/sorcery_mailer/reset_password_email.text.erb +0 -0
- /data/spec/{rails3 → rails_app}/config/environment.rb +0 -0
- /data/spec/{rails3 → rails_app}/config/initializers/backtrace_silencers.rb +0 -0
- /data/spec/{rails3 → rails_app}/config/initializers/inflections.rb +0 -0
- /data/spec/{rails3 → rails_app}/config/initializers/mime_types.rb +0 -0
- /data/spec/{rails3 → rails_app}/config/initializers/secret_token.rb +0 -0
- /data/spec/{rails3 → rails_app}/config/locales/en.yml +0 -0
- /data/spec/{rails3 → rails_app}/db/migrate/brute_force_protection/20101224223626_add_brute_force_protection_to_users.rb +0 -0
- /data/spec/{rails3 → rails_app}/db/migrate/remember_me/20101224223623_add_remember_me_token_to_users.rb +0 -0
- /data/spec/{rails3 → rails_app}/db/migrate/reset_password/20101224223622_add_reset_password_to_users.rb +0 -0
- /data/spec/{rails3 → rails_app}/db/schema.rb +0 -0
- /data/spec/{rails3 → rails_app}/db/seeds.rb +0 -0
|
@@ -1,175 +0,0 @@
|
|
|
1
|
-
(function() {
|
|
2
|
-
// Technique from Juriy Zaytsev
|
|
3
|
-
// http://thinkweb2.com/projects/prototype/detecting-event-support-without-browser-sniffing/
|
|
4
|
-
function isEventSupported(eventName) {
|
|
5
|
-
var el = document.createElement('div');
|
|
6
|
-
eventName = 'on' + eventName;
|
|
7
|
-
var isSupported = (eventName in el);
|
|
8
|
-
if (!isSupported) {
|
|
9
|
-
el.setAttribute(eventName, 'return;');
|
|
10
|
-
isSupported = typeof el[eventName] == 'function';
|
|
11
|
-
}
|
|
12
|
-
el = null;
|
|
13
|
-
return isSupported;
|
|
14
|
-
}
|
|
15
|
-
|
|
16
|
-
function isForm(element) {
|
|
17
|
-
return Object.isElement(element) && element.nodeName.toUpperCase() == 'FORM'
|
|
18
|
-
}
|
|
19
|
-
|
|
20
|
-
function isInput(element) {
|
|
21
|
-
if (Object.isElement(element)) {
|
|
22
|
-
var name = element.nodeName.toUpperCase()
|
|
23
|
-
return name == 'INPUT' || name == 'SELECT' || name == 'TEXTAREA'
|
|
24
|
-
}
|
|
25
|
-
else return false
|
|
26
|
-
}
|
|
27
|
-
|
|
28
|
-
var submitBubbles = isEventSupported('submit'),
|
|
29
|
-
changeBubbles = isEventSupported('change')
|
|
30
|
-
|
|
31
|
-
if (!submitBubbles || !changeBubbles) {
|
|
32
|
-
// augment the Event.Handler class to observe custom events when needed
|
|
33
|
-
Event.Handler.prototype.initialize = Event.Handler.prototype.initialize.wrap(
|
|
34
|
-
function(init, element, eventName, selector, callback) {
|
|
35
|
-
init(element, eventName, selector, callback)
|
|
36
|
-
// is the handler being attached to an element that doesn't support this event?
|
|
37
|
-
if ( (!submitBubbles && this.eventName == 'submit' && !isForm(this.element)) ||
|
|
38
|
-
(!changeBubbles && this.eventName == 'change' && !isInput(this.element)) ) {
|
|
39
|
-
// "submit" => "emulated:submit"
|
|
40
|
-
this.eventName = 'emulated:' + this.eventName
|
|
41
|
-
}
|
|
42
|
-
}
|
|
43
|
-
)
|
|
44
|
-
}
|
|
45
|
-
|
|
46
|
-
if (!submitBubbles) {
|
|
47
|
-
// discover forms on the page by observing focus events which always bubble
|
|
48
|
-
document.on('focusin', 'form', function(focusEvent, form) {
|
|
49
|
-
// special handler for the real "submit" event (one-time operation)
|
|
50
|
-
if (!form.retrieve('emulated:submit')) {
|
|
51
|
-
form.on('submit', function(submitEvent) {
|
|
52
|
-
var emulated = form.fire('emulated:submit', submitEvent, true)
|
|
53
|
-
// if custom event received preventDefault, cancel the real one too
|
|
54
|
-
if (emulated.returnValue === false) submitEvent.preventDefault()
|
|
55
|
-
})
|
|
56
|
-
form.store('emulated:submit', true)
|
|
57
|
-
}
|
|
58
|
-
})
|
|
59
|
-
}
|
|
60
|
-
|
|
61
|
-
if (!changeBubbles) {
|
|
62
|
-
// discover form inputs on the page
|
|
63
|
-
document.on('focusin', 'input, select, texarea', function(focusEvent, input) {
|
|
64
|
-
// special handler for real "change" events
|
|
65
|
-
if (!input.retrieve('emulated:change')) {
|
|
66
|
-
input.on('change', function(changeEvent) {
|
|
67
|
-
input.fire('emulated:change', changeEvent, true)
|
|
68
|
-
})
|
|
69
|
-
input.store('emulated:change', true)
|
|
70
|
-
}
|
|
71
|
-
})
|
|
72
|
-
}
|
|
73
|
-
|
|
74
|
-
function handleRemote(element) {
|
|
75
|
-
var method, url, params;
|
|
76
|
-
|
|
77
|
-
var event = element.fire("ajax:before");
|
|
78
|
-
if (event.stopped) return false;
|
|
79
|
-
|
|
80
|
-
if (element.tagName.toLowerCase() === 'form') {
|
|
81
|
-
method = element.readAttribute('method') || 'post';
|
|
82
|
-
url = element.readAttribute('action');
|
|
83
|
-
params = element.serialize();
|
|
84
|
-
} else {
|
|
85
|
-
method = element.readAttribute('data-method') || 'get';
|
|
86
|
-
url = element.readAttribute('href');
|
|
87
|
-
params = {};
|
|
88
|
-
}
|
|
89
|
-
|
|
90
|
-
new Ajax.Request(url, {
|
|
91
|
-
method: method,
|
|
92
|
-
parameters: params,
|
|
93
|
-
evalScripts: true,
|
|
94
|
-
|
|
95
|
-
onComplete: function(request) { element.fire("ajax:complete", request); },
|
|
96
|
-
onSuccess: function(request) { element.fire("ajax:success", request); },
|
|
97
|
-
onFailure: function(request) { element.fire("ajax:failure", request); }
|
|
98
|
-
});
|
|
99
|
-
|
|
100
|
-
element.fire("ajax:after");
|
|
101
|
-
}
|
|
102
|
-
|
|
103
|
-
function handleMethod(element) {
|
|
104
|
-
var method = element.readAttribute('data-method'),
|
|
105
|
-
url = element.readAttribute('href'),
|
|
106
|
-
csrf_param = $$('meta[name=csrf-param]')[0],
|
|
107
|
-
csrf_token = $$('meta[name=csrf-token]')[0];
|
|
108
|
-
|
|
109
|
-
var form = new Element('form', { method: "POST", action: url, style: "display: none;" });
|
|
110
|
-
element.parentNode.insert(form);
|
|
111
|
-
|
|
112
|
-
if (method !== 'post') {
|
|
113
|
-
var field = new Element('input', { type: 'hidden', name: '_method', value: method });
|
|
114
|
-
form.insert(field);
|
|
115
|
-
}
|
|
116
|
-
|
|
117
|
-
if (csrf_param) {
|
|
118
|
-
var param = csrf_param.readAttribute('content'),
|
|
119
|
-
token = csrf_token.readAttribute('content'),
|
|
120
|
-
field = new Element('input', { type: 'hidden', name: param, value: token });
|
|
121
|
-
form.insert(field);
|
|
122
|
-
}
|
|
123
|
-
|
|
124
|
-
form.submit();
|
|
125
|
-
}
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
document.on("click", "*[data-confirm]", function(event, element) {
|
|
129
|
-
var message = element.readAttribute('data-confirm');
|
|
130
|
-
if (!confirm(message)) event.stop();
|
|
131
|
-
});
|
|
132
|
-
|
|
133
|
-
document.on("click", "a[data-remote]", function(event, element) {
|
|
134
|
-
if (event.stopped) return;
|
|
135
|
-
handleRemote(element);
|
|
136
|
-
event.stop();
|
|
137
|
-
});
|
|
138
|
-
|
|
139
|
-
document.on("click", "a[data-method]", function(event, element) {
|
|
140
|
-
if (event.stopped) return;
|
|
141
|
-
handleMethod(element);
|
|
142
|
-
event.stop();
|
|
143
|
-
});
|
|
144
|
-
|
|
145
|
-
document.on("submit", function(event) {
|
|
146
|
-
var element = event.findElement(),
|
|
147
|
-
message = element.readAttribute('data-confirm');
|
|
148
|
-
if (message && !confirm(message)) {
|
|
149
|
-
event.stop();
|
|
150
|
-
return false;
|
|
151
|
-
}
|
|
152
|
-
|
|
153
|
-
var inputs = element.select("input[type=submit][data-disable-with]");
|
|
154
|
-
inputs.each(function(input) {
|
|
155
|
-
input.disabled = true;
|
|
156
|
-
input.writeAttribute('data-original-value', input.value);
|
|
157
|
-
input.value = input.readAttribute('data-disable-with');
|
|
158
|
-
});
|
|
159
|
-
|
|
160
|
-
var element = event.findElement("form[data-remote]");
|
|
161
|
-
if (element) {
|
|
162
|
-
handleRemote(element);
|
|
163
|
-
event.stop();
|
|
164
|
-
}
|
|
165
|
-
});
|
|
166
|
-
|
|
167
|
-
document.on("ajax:after", "form", function(event, element) {
|
|
168
|
-
var inputs = element.select("input[type=submit][disabled=true][data-disable-with]");
|
|
169
|
-
inputs.each(function(input) {
|
|
170
|
-
input.value = input.readAttribute('data-original-value');
|
|
171
|
-
input.removeAttribute('data-original-value');
|
|
172
|
-
input.disabled = false;
|
|
173
|
-
});
|
|
174
|
-
});
|
|
175
|
-
})();
|
|
File without changes
|
data/spec/rails3/script/rails
DELETED
|
@@ -1,6 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env ruby
|
|
2
|
-
# This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
|
|
3
|
-
|
|
4
|
-
APP_PATH = File.expand_path('../../config/application', __FILE__)
|
|
5
|
-
require File.expand_path('../../config/boot', __FILE__)
|
|
6
|
-
require 'rails/commands'
|
|
@@ -1,115 +0,0 @@
|
|
|
1
|
-
require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
|
|
2
|
-
|
|
3
|
-
describe ApplicationController do
|
|
4
|
-
before(:all) do
|
|
5
|
-
ActiveRecord::Migrator.migrate("#{Rails.root}/db/migrate/activity_logging")
|
|
6
|
-
end
|
|
7
|
-
|
|
8
|
-
after(:all) do
|
|
9
|
-
ActiveRecord::Migrator.rollback("#{Rails.root}/db/migrate/activity_logging")
|
|
10
|
-
sorcery_controller_property_set(:register_login_time, true)
|
|
11
|
-
sorcery_controller_property_set(:register_logout_time, true)
|
|
12
|
-
sorcery_controller_property_set(:register_last_activity_time, true)
|
|
13
|
-
end
|
|
14
|
-
|
|
15
|
-
# ----------------- ACTIVITY LOGGING -----------------------
|
|
16
|
-
describe ApplicationController, "with activity logging features" do
|
|
17
|
-
before(:all) do
|
|
18
|
-
sorcery_reload!([:activity_logging])
|
|
19
|
-
end
|
|
20
|
-
|
|
21
|
-
before(:each) do
|
|
22
|
-
create_new_user
|
|
23
|
-
end
|
|
24
|
-
|
|
25
|
-
after(:each) do
|
|
26
|
-
User.delete_all
|
|
27
|
-
end
|
|
28
|
-
|
|
29
|
-
specify { subject.should respond_to(:current_users) }
|
|
30
|
-
|
|
31
|
-
it "'current_users' should be empty when no users are logged in" do
|
|
32
|
-
subject.current_users.size.should == 0
|
|
33
|
-
end
|
|
34
|
-
|
|
35
|
-
it "should log login time on login" do
|
|
36
|
-
now = Time.now.in_time_zone
|
|
37
|
-
login_user
|
|
38
|
-
@user.last_login_at.should_not be_nil
|
|
39
|
-
@user.last_login_at.to_s(:db).should >= now.to_s(:db)
|
|
40
|
-
@user.last_login_at.to_s(:db).should <= (now+2).to_s(:db)
|
|
41
|
-
end
|
|
42
|
-
|
|
43
|
-
it "should log logout time on logout" do
|
|
44
|
-
login_user
|
|
45
|
-
now = Time.now.in_time_zone
|
|
46
|
-
logout_user
|
|
47
|
-
User.first.last_logout_at.should_not be_nil
|
|
48
|
-
User.first.last_logout_at.to_s(:db).should >= now.to_s(:db)
|
|
49
|
-
User.first.last_logout_at.to_s(:db).should <= (now+2).to_s(:db)
|
|
50
|
-
end
|
|
51
|
-
|
|
52
|
-
it "should log last activity time when logged in" do
|
|
53
|
-
login_user
|
|
54
|
-
now = Time.now.in_time_zone
|
|
55
|
-
get :some_action
|
|
56
|
-
User.first.last_activity_at.to_s(:db).should >= now.to_s(:db)
|
|
57
|
-
User.first.last_activity_at.to_s(:db).should <= (now+2).to_s(:db)
|
|
58
|
-
end
|
|
59
|
-
|
|
60
|
-
it "should update nothing but activity fields" do
|
|
61
|
-
original_user_name = User.first.username
|
|
62
|
-
login_user
|
|
63
|
-
get :some_action_making_a_non_persisted_change_to_the_user
|
|
64
|
-
User.first.username.should == original_user_name
|
|
65
|
-
end
|
|
66
|
-
|
|
67
|
-
it "'current_users' should hold the user object when 1 user is logged in" do
|
|
68
|
-
login_user
|
|
69
|
-
get :some_action
|
|
70
|
-
subject.current_users.size.should == 1
|
|
71
|
-
subject.current_users[0].should == @user
|
|
72
|
-
end
|
|
73
|
-
|
|
74
|
-
it "'current_users' should show all current_users, whether they have logged out before or not." do
|
|
75
|
-
user1 = create_new_user({:username => 'gizmo1', :email => "bla1@bla.com", :password => 'secret1'})
|
|
76
|
-
login_user(user1)
|
|
77
|
-
get :some_action
|
|
78
|
-
clear_user_without_logout
|
|
79
|
-
user2 = create_new_user({:username => 'gizmo2', :email => "bla2@bla.com", :password => 'secret2'})
|
|
80
|
-
login_user(user2)
|
|
81
|
-
get :some_action
|
|
82
|
-
clear_user_without_logout
|
|
83
|
-
user3 = create_new_user({:username => 'gizmo3', :email => "bla3@bla.com", :password => 'secret3'})
|
|
84
|
-
login_user(user3)
|
|
85
|
-
get :some_action
|
|
86
|
-
subject.current_users.size.should == 3
|
|
87
|
-
subject.current_users[0].should == user1
|
|
88
|
-
subject.current_users[1].should == user2
|
|
89
|
-
subject.current_users[2].should == user3
|
|
90
|
-
end
|
|
91
|
-
|
|
92
|
-
it "should not register login time if configured so" do
|
|
93
|
-
sorcery_controller_property_set(:register_login_time, false)
|
|
94
|
-
now = Time.now.in_time_zone
|
|
95
|
-
login_user
|
|
96
|
-
@user.last_login_at.should be_nil
|
|
97
|
-
end
|
|
98
|
-
|
|
99
|
-
it "should not register logout time if configured so" do
|
|
100
|
-
sorcery_controller_property_set(:register_logout_time, false)
|
|
101
|
-
now = Time.now.in_time_zone
|
|
102
|
-
login_user
|
|
103
|
-
logout_user
|
|
104
|
-
@user.last_logout_at.should be_nil
|
|
105
|
-
end
|
|
106
|
-
|
|
107
|
-
it "should not register last activity time if configured so" do
|
|
108
|
-
sorcery_controller_property_set(:register_last_activity_time, false)
|
|
109
|
-
now = Time.now.in_time_zone
|
|
110
|
-
login_user
|
|
111
|
-
get :some_action
|
|
112
|
-
@user.last_activity_at.should be_nil
|
|
113
|
-
end
|
|
114
|
-
end
|
|
115
|
-
end
|
|
@@ -1,88 +0,0 @@
|
|
|
1
|
-
require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
|
|
2
|
-
|
|
3
|
-
describe ApplicationController do
|
|
4
|
-
before(:all) do
|
|
5
|
-
ActiveRecord::Migrator.migrate("#{Rails.root}/db/migrate/brute_force_protection")
|
|
6
|
-
end
|
|
7
|
-
|
|
8
|
-
after(:all) do
|
|
9
|
-
ActiveRecord::Migrator.rollback("#{Rails.root}/db/migrate/brute_force_protection")
|
|
10
|
-
end
|
|
11
|
-
|
|
12
|
-
# ----------------- SESSION TIMEOUT -----------------------
|
|
13
|
-
describe ApplicationController, "with brute force protection features" do
|
|
14
|
-
before(:all) do
|
|
15
|
-
sorcery_reload!([:brute_force_protection])
|
|
16
|
-
create_new_user
|
|
17
|
-
end
|
|
18
|
-
|
|
19
|
-
after(:each) do
|
|
20
|
-
Sorcery::Controller::Config.reset!
|
|
21
|
-
sorcery_controller_property_set(:user_class, User)
|
|
22
|
-
Timecop.return
|
|
23
|
-
end
|
|
24
|
-
|
|
25
|
-
it "should count login retries" do
|
|
26
|
-
3.times {get :test_login, :username => 'gizmo', :password => 'blabla'}
|
|
27
|
-
User.find_by_username('gizmo').failed_logins_count.should == 3
|
|
28
|
-
end
|
|
29
|
-
|
|
30
|
-
it "should generate unlock token after user locked" do
|
|
31
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 2)
|
|
32
|
-
sorcery_model_property_set(:login_lock_time_period, 0)
|
|
33
|
-
sorcery_model_property_set(:unlock_token_mailer, SorceryMailer)
|
|
34
|
-
3.times {get :test_login, :username => "gizmo", :password => "blabla"}
|
|
35
|
-
User.find_by_username('gizmo').unlock_token.should_not be_nil
|
|
36
|
-
end
|
|
37
|
-
|
|
38
|
-
it "should unlock after entering unlock token" do
|
|
39
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 2)
|
|
40
|
-
sorcery_model_property_set(:login_lock_time_period, 0)
|
|
41
|
-
sorcery_model_property_set(:unlock_token_mailer, SorceryMailer)
|
|
42
|
-
3.times {get :test_login, :username => "gizmo", :password => "blabla"}
|
|
43
|
-
User.find_by_username('gizmo').unlock_token.should_not be_nil
|
|
44
|
-
token = User.find_by_username('gizmo').unlock_token
|
|
45
|
-
user = User.load_from_unlock_token(token)
|
|
46
|
-
user.should_not be_nil
|
|
47
|
-
user.unlock!
|
|
48
|
-
User.load_from_unlock_token(token).should be_nil
|
|
49
|
-
end
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
it "should reset the counter on a good login" do
|
|
53
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 5)
|
|
54
|
-
3.times {get :test_login, :username => 'gizmo', :password => 'blabla'}
|
|
55
|
-
get :test_login, :username => 'gizmo', :password => 'secret'
|
|
56
|
-
User.find_by_username('gizmo').failed_logins_count.should == 0
|
|
57
|
-
end
|
|
58
|
-
|
|
59
|
-
it "should lock user when number of retries reached the limit" do
|
|
60
|
-
User.find_by_username('gizmo').lock_expires_at.should be_nil
|
|
61
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 1)
|
|
62
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
63
|
-
User.find_by_username('gizmo').lock_expires_at.should_not be_nil
|
|
64
|
-
end
|
|
65
|
-
|
|
66
|
-
it "should unlock after lock time period passes" do
|
|
67
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 2)
|
|
68
|
-
sorcery_model_property_set(:login_lock_time_period, 0.2)
|
|
69
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
70
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
71
|
-
User.find_by_username('gizmo').lock_expires_at.should_not be_nil
|
|
72
|
-
Timecop.travel(Time.now.in_time_zone + 0.3)
|
|
73
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
74
|
-
User.find_by_username('gizmo').lock_expires_at.should be_nil
|
|
75
|
-
end
|
|
76
|
-
|
|
77
|
-
it "should not unlock if time period is 0 (permanent lock)" do
|
|
78
|
-
sorcery_model_property_set(:consecutive_login_retries_amount_limit, 2)
|
|
79
|
-
sorcery_model_property_set(:login_lock_time_period, 0)
|
|
80
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
81
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
82
|
-
unlock_date = User.find_by_username('gizmo').lock_expires_at
|
|
83
|
-
Timecop.travel(Time.now.in_time_zone + 1)
|
|
84
|
-
get :test_login, :username => 'gizmo', :password => 'blabla'
|
|
85
|
-
User.find_by_username('gizmo').lock_expires_at.to_s.should == unlock_date.to_s
|
|
86
|
-
end
|
|
87
|
-
end
|
|
88
|
-
end
|
|
@@ -1,50 +0,0 @@
|
|
|
1
|
-
require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
|
|
2
|
-
|
|
3
|
-
describe ApplicationController do
|
|
4
|
-
|
|
5
|
-
# ----------------- HTTP BASIC AUTH -----------------------
|
|
6
|
-
describe ApplicationController, "with http basic auth features" do
|
|
7
|
-
before(:all) do
|
|
8
|
-
sorcery_reload!([:http_basic_auth])
|
|
9
|
-
create_new_user
|
|
10
|
-
end
|
|
11
|
-
|
|
12
|
-
after(:each) do
|
|
13
|
-
logout_user
|
|
14
|
-
end
|
|
15
|
-
|
|
16
|
-
it "requests basic authentication when before_filter is used" do
|
|
17
|
-
get :test_http_basic_auth
|
|
18
|
-
response.code.should == "401"
|
|
19
|
-
end
|
|
20
|
-
|
|
21
|
-
it "authenticates from http basic if credentials are sent" do
|
|
22
|
-
@request.env["HTTP_AUTHORIZATION"] = "Basic " + Base64::encode64("#{@user.username}:secret")
|
|
23
|
-
get :test_http_basic_auth, nil, :http_authentication_used => true
|
|
24
|
-
response.should be_a_success
|
|
25
|
-
end
|
|
26
|
-
|
|
27
|
-
it "fails authentication if credentials are wrong" do
|
|
28
|
-
@request.env["HTTP_AUTHORIZATION"] = "Basic " + Base64::encode64("#{@user.username}:wrong!")
|
|
29
|
-
get :test_http_basic_auth, nil, :http_authentication_used => true
|
|
30
|
-
response.code.should redirect_to root_url
|
|
31
|
-
end
|
|
32
|
-
|
|
33
|
-
it "should allow configuration option 'controller_to_realm_map'" do
|
|
34
|
-
sorcery_controller_property_set(:controller_to_realm_map, {"1" => "2"})
|
|
35
|
-
Sorcery::Controller::Config.controller_to_realm_map.should == {"1" => "2"}
|
|
36
|
-
end
|
|
37
|
-
|
|
38
|
-
it "should display the correct realm name configured for the controller" do
|
|
39
|
-
sorcery_controller_property_set(:controller_to_realm_map, {"application" => "Salad"})
|
|
40
|
-
get :test_http_basic_auth
|
|
41
|
-
response.headers["WWW-Authenticate"].should == "Basic realm=\"Salad\""
|
|
42
|
-
end
|
|
43
|
-
|
|
44
|
-
it "should sign in the user's session on successful login" do
|
|
45
|
-
@request.env["HTTP_AUTHORIZATION"] = "Basic " + Base64::encode64("#{@user.username}:secret")
|
|
46
|
-
get :test_http_basic_auth, nil, :http_authentication_used => true
|
|
47
|
-
session[:user_id].should == User.find_by_username(@user.username).id
|
|
48
|
-
end
|
|
49
|
-
end
|
|
50
|
-
end
|