sparkly-auth 1.0.2 → 1.1.0

data/dependencies.rb

@@ -1 +0,0 @@
-Rails.configuration.gem "sc-core-ext", :version => ">= 1.2.0"

data/spec/lib/auth/behavior/remember_me_spec.rb

@@ -1,127 +0,0 @@
-require 'spec_helper' 
-require 'spec/rails'
-
-describe "Behavior: Remember Me", :type => :controller do
-  controller_name :sparkly_sessions
-  
-  def cookies
-    controller.send(:cookies)
-  end
-  
-  def reset_auth!
-    # the lack of a current user will trigger authentication of various flavors, making these tests possible.
-    controller.instance_variable_set("@current_user", nil)
-  end
-  
-  before(:each) do
-    Auth.configure do |c|
-      c.authenticate :user
-      c.behaviors = :core, :remember_me
-      c.remember_me.duration = 6.months
-    end
-    
-    Auth.kick!
-    u = User.new(:email => "generic12@example.com")
-    u.password = u.password_confirmation = "Generic12"
-    u.save!
-  end
-  
-  it "should set an auth token cookie upon successful login" do
-    post :create, { :model => "User", :user => { :email => "generic12@example.com", :password => "Generic12", :remember_me => true } }
-    
-    session[:session_token].should_not be_blank
-    
-    # There should be a token in the remebered_tokens table. We can use that data to decide
-    # what should be in the cookie.
-    RemembranceToken.count.should == 1
-    
-    # We're looking for a string containing password model ID, series token, and auth token.
-    token = RemembranceToken.first
-    
-    cookies[:remembrance_token].should == token.value
-  end
-  
-  context "a user with a remember token" do
-    before(:each) do
-      post :create, { :model => "User", :user => { :email => "generic12@example.com", :password => "Generic12", :remember_me => true } }
-    end
-    
-    shared_examples_for "an expired or missing session" do
-      it "should authenticate with the auth token cookie" do
-        controller.current_user.should_not be_nil
-      end
-      
-      it "should generate a new auth token cookie" do
-        token = cookies[:remembrance_token]
-        controller.current_user
-        cookies[:remembrance_token].should_not == token
-      end
-      
-      it "should not change the series identifier" do
-        controller.current_user
-        controller.current_user.remembrance_tokens.first.series_token == @series_identifier
-      end
-      
-      context "and an invalid token id but valid series id" do
-        before(:each) do
-          cookies[:remembrance_token] = { :value => cookies[:remembrance_token]+"1", :expires => 6.months.from_now }
-          reset_auth!
-        end
-        
-        it "should be considered a theft" do
-          # because the token is changed every time - if the wrong token is used it is due either to tampering or to
-          # using an expired token, indicating that someone has stolen and used the one-use token.
-          controller.current_user
-          flash[:error].should == Auth.remember_me.token_theft_message
-        end
-        
-        it "should delete all remembrance tokens" do
-          controller.current_user.remembrance_tokens.count.should == 0
-        end
-      end
-      
-      context "and token data is not present" do
-        before(:each) do
-          cookies[:remembrance_token] = { :value => "", :expires => 6.months.from_now }
-          reset_auth!
-        end
-        
-        it "should not authenticate the user" do
-          controller.current_user.should == false
-        end
-      end
-      
-      context "and token is missing" do
-        before(:each) do
-          cookies.delete(:remembrance_token)
-          #cookies[:remembrance_token] = nil
-          reset_auth!
-        end
-        
-        it "should not authenticate the user" do
-          controller.current_user.should == false
-        end
-      end
-    end
-    
-    context "and an expired session" do
-      before(:each) do
-        @series_identifier = controller.current_user.remembrance_tokens.first.series_token
-        session[:active_at] = 30.days.ago # i'm pretty sure this is past the session duration.
-        reset_auth!
-      end
-      
-      it_should_behave_like "an expired or missing session"
-    end
-    
-    context "and a missing session" do
-      before(:each) do
-        @series_identifier = controller.current_user.remembrance_tokens.first.series_token
-        session.clear
-        reset_auth!
-      end
-      
-      it_should_behave_like "an expired or missing session"
-    end
-  end
-end

data/spec/lib/auth/extensions/controller_spec.rb

@@ -1,32 +0,0 @@
-require 'spec_helper'
-
-describe Auth::Behavior::Core::ControllerExtensions do
-  #subject { ApplicationController.new }
-  subject { ApplicationController.call(Rack::MockRequest.env_for("/").merge('REQUEST_URI' => '')).template.controller }
-  
-  before(:each) do
-    Auth.configure do |config|
-      config.session_duration = nil
-      config.authenticate :user
-    end
-    
-    Auth.kick!
-
-    unless User.count == 1
-      u = User.new(:email => "generic4@example.com")
-      u.password = u.password_confirmation = "Generic12"
-      u.save!
-    end
-  end
-  
-  it "should let users authenticate with single access token" do
-    subject.params = { :single_access_token => User.first.single_access_token }
-    subject.current_user.should be_kind_of(User)
-  end
-  
-  it "should not raise nil errors when Auth.session_duration is nil" do
-    subject.session = { :session_token => User.first.persistence_token }
-    
-    subject.current_user.should be_kind_of(User)
-  end
-end