sorcery 0.8.5 → 0.8.6

data/spec/orm/active_record.rb

@@ -1,3 +1,5 @@
+require 'sorcery'
+
 ActiveRecord::Migration.verbose = false
 # ActiveRecord::Base.logger = Logger.new(nil)
 # ActiveRecord::Base.include_root_in_json = true

data/spec/orm/datamapper.rb

@@ -0,0 +1,34 @@
+require 'data_mapper'
+require 'dm-migrations'
+require 'sorcery'
+
+#DataMapper.setup(:default, 'sqlite::memory:')
+# NOTE
+# 1. Problems with Time fields, hh mm ss values.
+#DataMapper.setup(:default, "sqlite3://#{File.dirname(__FILE__)}/../rails_app/test.sqlite3")
+
+# MySQL
+# NOTE
+# 1. Create test database.
+# 2. DM creates tables case insensitive by default.
+# -
+#DataMapper.setup(:default, "mysql://root:<password>@localhost/sorcery_test")
+DataMapper.setup(:default, "mysql://root@127.0.0.1/sorcery_test")
+
+# Redis
+# NOTE
+# 1. Submodule activity_logging is not supported.
+# 2. case sensitive.
+#DataMapper.setup(:default, {
+#  :adapter => 'redis',
+#  :host    => 'localhost',
+#  :port    => 6379,
+#})
+
+class TestUser
+  include DataMapper::Resource
+  property :id, Serial
+  authenticates_with_sorcery!
+end
+TestUser.finalize
+DataMapper.auto_migrate!

data/spec/orm/mongo_mapper.rb

@@ -1,4 +1,5 @@
 require 'mongo_mapper'
+require 'sorcery'
 
 MongoMapper.connection = Mongo::Connection.new('localhost', 27017)
 MongoMapper.database = "sorcery_mongomapper_test"

data/spec/orm/mongoid.rb

@@ -1,4 +1,5 @@
 require 'mongoid'
+require 'sorcery'
 
 Mongoid.configure do |config|
   database = "sorcery_mongoid_test"

data/spec/rails_app/app/controllers/sorcery_controller.rb

@@ -3,181 +3,186 @@ require 'oauth'
 class SorceryController < ActionController::Base
   protect_from_forgery
 
-  #before_filter :validate_session, :only => [:test_should_be_logged_in] if defined?(:validate_session)
-  before_filter :require_login_from_http_basic, :only => [:test_http_basic_auth]
-  before_filter :require_login, :only => [:test_logout, :test_should_be_logged_in, :some_action]
+  before_filter :require_login_from_http_basic, only: [:test_http_basic_auth]
+  before_filter :require_login, only: [:test_logout, :test_should_be_logged_in, :some_action]
 
   def index
   end
 
   def some_action
-    render :nothing => true
+    render nothing: true
   end
 
   def some_action_making_a_non_persisted_change_to_the_user
-    current_user.email = "to_be_ignored"
-    render :nothing => true
+    current_user.email = 'to_be_ignored'
+    render nothing: true
   end
 
   def test_login
     @user = login(params[:email], params[:password])
-    render :text => ""
+    render nothing: true
   end
 
   def test_auto_login
-    @user = User.find(:first)
+    @user = User.first
     auto_login(@user)
     @result = current_user
-    render :text => ""
+    render nothing: true
   end
 
   def test_return_to
     @user = login(params[:email], params[:password])
-    redirect_back_or_to(:index, :notice => 'haha!')
+    redirect_back_or_to(:index, notice: 'haha!')
   end
 
   def test_logout
     logout
-    render :text => ""
+    render nothing: true
   end
 
   def test_logout_with_remember
     remember_me!
     logout
-    render :text => ""
+    render nothing: true
   end
 
   def test_login_with_remember
     @user = login(params[:email], params[:password])
     remember_me!
 
-    render :text => ""
+    render nothing: true
   end
 
   def test_login_with_remember_in_login
     @user = login(params[:email], params[:password], params[:remember])
 
-    render :text => ""
+    render nothing: true
   end
 
   def test_login_from_cookie
     @user = current_user
-    render :text => ""
+    render nothing: true
   end
 
   def test_not_authenticated_action
-    render :text => "test_not_authenticated_action"
+    render text: 'test_not_authenticated_action'
   end
 
   def test_should_be_logged_in
-    render :text => ""
+    render nothing: true
   end
 
   def test_http_basic_auth
-    render :text => "HTTP Basic Auth"
+    render text: 'HTTP Basic Auth'
   end
 
-  def login_at_test
+  def login_at_test_twitter
     login_at(:twitter)
   end
 
-  def login_at_test2
+  alias :login_at_test :login_at_test_twitter
+
+  def login_at_test_facebook
     login_at(:facebook)
   end
 
-  def login_at_test3
+  def login_at_test_github
     login_at(:github)
   end
 
-  def login_at_test4
+  def login_at_test_google
     login_at(:google)
   end
 
-  def login_at_test5
+  def login_at_test_liveid
     login_at(:liveid)
   end
 
   def login_at_test_with_state
-    login_at(:facebook, {:state => "bla"})
+    login_at(:facebook, {state: 'bla'})
   end
 
-  def test_login_from
+  def test_login_from_twitter
     if @user = login_from(:twitter)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_login_from2
+  alias :test_login_from :test_login_from_twitter
+
+  def test_login_from_facebook
     if @user = login_from(:facebook)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_login_from3
+  def test_login_from_github
     if @user = login_from(:github)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_login_from4
+  def test_login_from_google
     if @user = login_from(:google)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_login_from5
+  def test_login_from_liveid
     if @user = login_from(:liveid)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_return_to_with_external
+  def test_return_to_with_external_twitter
     if @user = login_from(:twitter)
-      redirect_back_or_to "bla", :notice => "Success!"
+      redirect_back_or_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_return_to_with_external2
+  alias :test_return_to_with_external :test_return_to_with_external_twitter
+
+  def test_return_to_with_external_facebook
     if @user = login_from(:facebook)
-      redirect_back_or_to "bla", :notice => "Success!"
+      redirect_back_or_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_return_to_with_external3
+  def test_return_to_with_external_github
     if @user = login_from(:github)
-      redirect_back_or_to "bla", :notice => "Success!"
+      redirect_back_or_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_return_to_with_external4
+  def test_return_to_with_external_google
     if @user = login_from(:google)
-      redirect_back_or_to "bla", :notice => "Success!"
+      redirect_back_or_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
-  def test_return_to_with_external5
+  def test_return_to_with_external_liveid
     if @user = login_from(:liveid)
-      redirect_back_or_to "bla", :notice => "Success!"
+      redirect_back_or_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
@@ -185,9 +190,9 @@ class SorceryController < ActionController::Base
     provider = params[:provider]
     login_from(provider)
     if @user = create_from(provider)
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 
@@ -207,12 +212,12 @@ class SorceryController < ActionController::Base
     login_from(provider)
     @user = create_from(provider) do |user|
       # check uniqueness of email
-      User.where(:email => user.email).empty?
+      User.where(email: user.email).empty?
     end
     if @user
-      redirect_to "bla", :notice => "Success!"
+      redirect_to 'bla', notice: 'Success!'
     else
-      redirect_to "blu", :alert => "Failed!"
+      redirect_to 'blu', alert: 'Failed!'
     end
   end
 

data/spec/rails_app/app/datamapper/authentication.rb

@@ -0,0 +1,8 @@
+class Authentication
+  include DataMapper::Resource
+
+  property :id, Serial
+  property :uid, Integer
+  property :provider, String
+  belongs_to :user
+end

data/spec/rails_app/app/datamapper/user.rb

@@ -0,0 +1,7 @@
+class User
+  include DataMapper::Resource
+  property :id, Serial
+  property :username, String
+
+  has n, :authentications, :constraint => :destroy
+end

data/spec/rails_app/config/routes.rb

@@ -15,23 +15,28 @@ AppRoot::Application.routes.draw do
     get :test_create_from_provider
     get :test_add_second_provider
     get :test_return_to_with_external
-    get :test_login_from5
-    get :test_login_from4
-    get :test_login_from2
-    get :test_login_from3
-    get :test_return_to_with_external5
-    get :login_at_test2
-    get :login_at_test3
-    get :login_at_test4
-    get :test_return_to_with_external2
-    get :test_return_to_with_external3
-    get :test_return_to_with_external4
+    get :test_login_from
+    get :test_login_from_twitter
+    get :test_login_from_facebook
+    get :test_login_from_github
+    get :test_login_from_google
+    get :test_login_from_liveid
+    get :login_at_test
+    get :login_at_test_twitter
+    get :login_at_test_facebook
+    get :login_at_test_github
+    get :login_at_test_google
+    get :login_at_test_liveid
+    get :test_return_to_with_external
+    get :test_return_to_with_external_twitter
+    get :test_return_to_with_external_facebook
+    get :test_return_to_with_external_github
+    get :test_return_to_with_external_google
+    get :test_return_to_with_external_liveid
     get :test_http_basic_auth
     get :some_action_making_a_non_persisted_change_to_the_user
     post :test_login_with_remember
     get :test_create_from_provider_with_block
-    get :login_at_test
-    get :login_at_test5
     get :login_at_test_with_state
   end
 end

data/spec/shared_examples/controller_activity_logging_shared_examples.rb

@@ -0,0 +1,125 @@
+shared_examples_for "controller_activity_logging" do
+
+  before(:all) do
+    sorcery_reload!([:activity_logging])
+  end
+
+  specify { expect(subject).to respond_to(:current_users) }
+  let(:user) { create_new_user }
+
+  before(:each) { user }
+
+  it "'current_users' is empty when no users are logged in" do
+    expect(subject.current_users.size).to eq 0
+  end
+
+  it "logs login time on login" do
+    now = Time.now.in_time_zone
+    login_user
+
+    expect(user.last_login_at).not_to be_nil
+    expect(user.last_login_at.utc.to_s).to be >= now.utc.to_s
+    expect(user.last_login_at.utc.to_s).to be <= (now.utc+2).to_s
+  end
+
+  it "logs logout time on logout" do
+    login_user
+    now = Time.now.in_time_zone
+    logout_user
+
+    expect(User.last.last_logout_at).not_to be_nil
+
+    expect(User.last.last_logout_at.utc.to_s).to be >= now.utc.to_s
+    expect(User.last.last_logout_at.utc.to_s).to be <= (now+2).utc.to_s
+  end
+
+  it "logs last activity time when logged in" do
+    sorcery_controller_property_set(:register_last_activity_time, true)
+
+    login_user
+    now = Time.now.in_time_zone
+    get :some_action
+
+    last_activity_at = User.last.last_activity_at
+
+    expect(last_activity_at).to be_present
+    expect(last_activity_at.utc.to_s).to be >= now.utc.to_s
+    expect(last_activity_at.utc.to_s).to be <= (now+2).utc.to_s
+  end
+
+  it "logs last IP address when logged in" do
+    login_user
+    get :some_action
+
+    expect(User.last.last_login_from_ip_address).to eq "0.0.0.0"
+  end
+
+  it "updates nothing but activity fields" do
+    original_user_name = User.last.username
+    login_user
+    get :some_action_making_a_non_persisted_change_to_the_user
+
+    expect(User.last.username).to eq original_user_name
+  end
+
+  it "'current_users' holds the user object when 1 user is logged in" do
+    login_user
+    get :some_action
+
+    expect(subject.current_users).to match([User.find(user.id)])
+  end
+
+  it "'current_users' shows all current_users, whether they have logged out before or not." do
+    user1 = create_new_user({:username => 'gizmo1', :email => "bla1@bla.com", :password => 'secret1'})
+    login_user(user1)
+    get :some_action
+    clear_user_without_logout
+    user2 = create_new_user({:username => 'gizmo2', :email => "bla2@bla.com", :password => 'secret2'})
+    login_user(user2)
+    get :some_action
+    clear_user_without_logout
+    user3 = create_new_user({:username => 'gizmo3', :email => "bla3@bla.com", :password => 'secret3'})
+    login_user(user3)
+    get :some_action
+
+    expect(subject.current_users.size).to eq 3
+    expect(subject.current_users[0]).to eq User.find(user1.id)
+    expect(subject.current_users[1]).to eq User.find(user2.id)
+    expect(subject.current_users[2]).to eq User.find(user3.id)
+  end
+
+  it "does not register login time if configured so" do
+    sorcery_controller_property_set(:register_login_time, false)
+    now = Time.now.in_time_zone
+    login_user
+
+    expect(user.last_login_at).to be_nil
+  end
+
+  it "does not register logout time if configured so" do
+    sorcery_controller_property_set(:register_logout_time, false)
+    now = Time.now.in_time_zone
+    login_user
+    logout_user
+
+    expect(user.last_logout_at).to be_nil
+  end
+
+  it "does not register last activity time if configured so" do
+    sorcery_controller_property_set(:register_last_activity_time, false)
+    now = Time.now.in_time_zone
+    login_user
+    get :some_action
+
+    expect(user.last_activity_at).to be_nil
+  end
+
+  it "does not register last IP address if configured so" do
+    sorcery_controller_property_set(:register_last_ip_address, false)
+    ip_address = "127.0.0.1"
+    login_user
+    get :some_action
+
+    expect(user.last_activity_at).to be_nil
+  end
+end