spree_auth_devise 1.0.0

data/app/overrides/auth_admin_user_roles.rb

@@ -0,0 +1,6 @@
+Deface::Override.new(:virtual_path => "spree/admin/users/_form",
+                     :name => "auth_admin_user_roles",
+                     :insert_after => "[data-hook='admin_user_form_fields']",
+                     :partial => "spree/admin/users/roles",
+                     :disabled => false,
+                     :original => '0e121156115799a53f5c5dddfb65c1ec80cb5f09')

data/app/overrides/auth_shared_login_bar.rb

@@ -0,0 +1,7 @@
+Deface::Override.new(:virtual_path => "spree/shared/_nav_bar",
+                     :name => "auth_shared_login_bar",
+                     :insert_before => "li#search-bar",
+                     :partial => "spree/shared/login_bar",
+                     :disabled => false, 
+                     :original => 'eb3fa668cd98b6a1c75c36420ef1b238a1fc55ac')
+

data/app/overrides/auth_user_login_form.rb

@@ -0,0 +1,6 @@
+Deface::Override.new(:virtual_path => "spree/checkout/registration",
+                     :name => "auth_user_login_form",
+                     :replace_contents => "[data-hook='registration'] #account, #registration[data-hook] #account",
+                     :template => "spree/user_sessions/new",
+                     :disabled => false,
+                     :original => 'ab20ac9e90baa11b847b30040aef863d2e1af17a')

data/app/views/spree/admin/users/_form.html.erb

@@ -0,0 +1,19 @@
+<div data-hook="admin_user_form_fields">
+  <%= f.field_container :email do %>
+    <%= f.label :email, t(:email) %><br />
+    <%= f.email_field :email %>
+    <%= error_message_on :user, :email %>
+  <% end %>
+
+  <%= f.field_container :password do %>
+    <%= f.label :password, t(:password) %><br />
+    <%= f.password_field :password %>
+    <%= f.error_message_on :password %>
+  <% end %>
+
+  <%= f.field_container :password do %>
+    <%= f.label :password_confirmation, t(:confirm_password) %><br />
+    <%= f.password_field :password_confirmation %>
+    <%= f.error_message_on :password_confirmation %>
+  <% end %>
+</div>

data/app/views/spree/admin/users/_roles.html.erb

@@ -0,0 +1,12 @@
+<div data-hook="admin_user_form_roles">
+  <p>
+    <%= label_tag nil, t(:roles) %><br />
+    <% @roles.each do |role| %>
+      <label class="sub">
+        <%= check_box_tag 'user[spree_role_ids][]', role.id, @user.spree_roles.include?(role), :id => "user_spree_role_#{role.name}" %>
+        <%= role.name %>
+      </label> &nbsp;
+    <% end %>
+    <%= hidden_field_tag 'user[spree_role_ids][]', '' %>
+  </p>
+</div>

data/app/views/spree/admin/users/edit.html.erb

@@ -0,0 +1,14 @@
+<div data-hook="admin_user_edit_form_header">
+  <%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+  <h1><%= t(:editing_user) %></h1>
+</div>
+
+<div data-hook="admin_user_edit_form">
+  <%= form_for [:admin, @user] do |f| %>
+    <%= render :partial => 'form', :locals => { :f => f } %>
+
+    <div data-hook="admin_user_edit_form_button">
+      <%= render :partial => 'spree/admin/shared/edit_resource_links' %>
+    </div>
+  <% end %>
+</div>

data/app/views/spree/admin/users/index.html.erb

@@ -0,0 +1,48 @@
+<div class="toolbar" data-hook="toolbar">
+  <ul class="actions">
+    <li>
+      <p><%= button_link_to t(:new_user), new_object_url, :icon => 'add', :id => 'admin_new_user_link' %></p>
+    </li>
+  </ul>
+  <br class="clear" />
+</div>
+
+<h1><%= t(:listing_users) %></h1>
+
+<table class="index" id="listing_users" data-hook>
+  <thead>
+    <tr data-hook="admin_users_index_headers">
+      <th><%= sort_link @search,:email, t(:user), {}, {:title => 'users_email_title'} %></th>
+      <th data-hook="admin_users_index_header_actions"></th>
+    </tr>
+  </thead>
+  <tbody>
+    <% @users.each do |user|%>
+      <tr id="<%= spree_dom_id user %>" data-hook="admin_users_index_rows">
+        <td width="350px" class='user_email'><%=link_to user.email, object_url(user) %></td>
+        <td data-hook="admin_users_index_row_actions">
+          <%= link_to_edit user, :class => 'edit' %> &nbsp;
+          <%= link_to_delete user %>
+        </td>
+      </tr>
+    <% end %>
+  </tbody>
+</table>
+
+<%= paginate @users %>
+
+
+<% content_for :sidebar do %>
+  <div class="box" data-hook="admin_users_index_search">
+    <h3><%= t(:search) %></h3>
+    <%= search_form_for [:admin, @search] do |f| %>
+      <p>
+        <%= t(:email) %><br />
+        <%= f.text_field :email_cont, :size =>18 %>
+      </p>
+      <div data-hook="admin_users_index_search_buttons">
+        <p><%= button t(:search) %></p>
+      </div>
+    <% end %>
+  </div>
+<% end %>

data/app/views/spree/admin/users/new.html.erb

@@ -0,0 +1,14 @@
+<div data-hook="admin_user_new_form_header">
+  <%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+  <h1><%= t(:new_user) %></h1>
+</div>
+
+<div data-hook="admin_user_new_form">
+  <%= form_for [:admin, @user] do |f| %>
+    <%= render :partial => 'form', :locals => { :f => f } %>
+
+    <div data-hook="admin_user_new_form_buttons">
+      <%= render :partial => 'spree/admin/shared/new_resource_links' %>
+    </div>
+  <% end %>
+</div>

data/app/views/spree/admin/users/show.html.erb

@@ -0,0 +1,21 @@
+<h1><%= t(:user_account) %></h1>
+
+<table>
+  <tr data-hook="email">
+    <th><%= t(:email) %></th>
+    <td>
+      <%= @user.email %>
+    </td>
+  </tr>
+  <tr data-hook="roles">
+    <th><%= t(:roles) %></th>
+    <td>
+      <%= @user.spree_roles.pluck(:name).join(', ') %>
+    </td>
+  </tr>
+</table>
+
+<p>
+  <%= link_to_edit @user, :class => 'edit_user' %> <%= t(:or) %>
+  <%= link_to t(:back), collection_url %>
+</p>

data/app/views/spree/layouts/admin/_login_nav.html.erb

@@ -0,0 +1,8 @@
+<% if spree_current_user %>
+  <ul id="login-nav">
+    <li><%= t(:logged_in_as) %>: <%= spree_current_user.email %></li>
+    <li><%= link_to t(:account), spree.edit_user_path(spree_current_user) %></li>
+    <li><%= link_to t(:logout), spree.destroy_user_session_path %></li>
+    <li><%= link_to t(:store), spree.products_path %></li>
+  </ul>
+<% end %>

data/app/views/spree/shared/_flashes.html.erb

@@ -0,0 +1,9 @@
+<% if flash.any? %>
+  <div id="flash">
+    <% flash.each do |key, value| %>
+      <p>
+        <%= value %>
+      </p>
+    <% end %>
+  </div>
+<% end%>

data/app/views/spree/shared/_login.html.erb

@@ -0,0 +1,20 @@
+<%= form_for :user, :url => spree.user_session_path do |f| %>
+  <div id="password-credentials">
+    <p>
+      <%= f.label :email, t(:email) %><br />
+      <%= f.email_field :email, :class => 'title', :tabindex => 1 %>
+    </p>
+    <p>
+      <%= f.label :password, t(:password) %><br />
+      <%= f.password_field :password, :class => 'title', :tabindex => 2 %>
+    </p>
+  </div>
+  <p>
+    <label>
+      <%= f.check_box :remember_me %>
+      <%= f.label :remember_me, t(:remember_me) %>
+    </label>
+  </p>
+
+  <p><%= f.submit t(:login), :class => 'button primary', :tabindex => 3 %></p>
+<% end %>

data/app/views/spree/shared/_login_bar.html.erb

@@ -0,0 +1,6 @@
+<% if spree_current_user %>
+  <li><%= link_to t(:my_account), spree.account_path %></li>
+  <li><%= link_to t(:logout), spree.destroy_user_session_path %></li>
+<% else %>
+  <li id="link-to-login"><%= link_to t(:login), spree.login_path %></li>
+<% end %>

data/app/views/spree/shared/_user_form.html.erb

@@ -0,0 +1,17 @@
+<p>
+  <%= f.label :email, t(:email) %><br />
+  <%= f.email_field :email, :class => 'title' %>
+</p>
+<div id="password-credentials">
+  <p>
+    <%= f.label :password, t(:password) %><br />
+    <%= f.password_field :password, :class => 'title' %>
+  </p>
+
+  <p>
+    <%= f.label :password_confirmation, t(:confirm_password) %><br />
+    <%= f.password_field :password_confirmation, :class => 'title' %>
+  </p>
+</div>
+
+<div data-hook="signup_below_password_fields"></div>

data/app/views/spree/user_mailer/reset_password_instructions.text.erb

@@ -0,0 +1,10 @@
+A request to reset your password has been made. 
+If you did not make this request, simply ignore this email. 
+
+If you did make this request just click the link below:
+ 
+<%= @edit_password_reset_url %>
+ 
+If the above URL does not work try copying and pasting it into your browser. 
+If you continue to have problem please feel free to contact us.
+

data/app/views/spree/user_passwords/edit.html.erb

@@ -0,0 +1,15 @@
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+<h2><%= t(:change_my_password) %></h2>
+
+<%= form_for @user, :url => spree.user_password_path, :method => :put do |f| %>
+  <p>
+    <%= f.label :password, t(:password) %><br />
+    <%= f.password_field :password %><br />
+  </p>
+  <p>
+    <%= f.label :password_confirmation, t(:password_confirmation) %><br />
+    <%= f.password_field :password_confirmation %><br />
+  </p>
+  <%= f.hidden_field :reset_password_token %>
+  <%= f.submit t(:update_password), :class => 'button primary' %>
+<% end %>

data/app/views/spree/user_passwords/new.html.erb

@@ -0,0 +1,15 @@
+<div id="forgot-password">
+  <h6><%= t(:forgot_password) %></h6>
+
+  <p><%= t(:instructions_to_reset_password) %></p>
+
+  <%= form_for Spree::User.new, :as => :user, :url => spree.user_password_path do |f| %>
+    <p>
+      <%= f.label :email, t(:email) %><br />
+      <%= f.email_field :email %>
+    </p>
+    <p>
+      <%= f.submit t(:reset_password), :class => 'button primary' %>
+    </p>
+  <% end %>
+</div>

data/app/views/spree/user_registrations/new.html.erb

@@ -0,0 +1,22 @@
+<% @body_id = 'signup' %>
+
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+
+<div id="new-customer">
+  <h6><%= t(:new_customer) %></h6>
+
+  <div data-hook="signup">
+
+    <%= form_for :user, :url => spree.user_registration_path(@user) do |f| %>
+      <div data-hook="signup_inside_form">
+        <%= render :partial => 'spree/shared/user_form', :locals => { :f => f } %>
+        <p><%= f.submit t(:create), :class => 'button primary' %></p>
+      </div>
+    <% end %>
+    <%= t(:or) %> <%= link_to t(:login_as_existing), spree.login_path %>
+
+  </div>
+
+</div>
+
+<div data-hook="login_extras"></div>

data/app/views/spree/user_sessions/authorization_failure.html.erb

@@ -0,0 +1,4 @@
+<div style="height:50px; padding-top:20px;">
+  <strong><%= t(:authorization_failure) %></strong>
+</div>   
+<!-- Add your own custom access denied message here if you like -->

data/app/views/spree/user_sessions/new.html.erb

@@ -0,0 +1,13 @@
+<% if flash[:alert] %>
+  <div class="flash errors"><%= flash[:alert] %></div>
+<% end %>
+
+<% @body_id = 'login' %>
+<div id="existing-customer">
+  <h6><%= t(:login_as_existing) %></h6>
+  <div data-hook="login">
+    <%= render :partial => 'spree/shared/login' %>
+    <%= t(:or) %> <%= link_to t(:create_a_new_account), spree.signup_path %> | <%= link_to t(:forgot_password), spree.new_user_password_path %>
+  </div>
+</div>
+<div data-hook="login_extras"></div>

data/app/views/spree/users/edit.html.erb

@@ -0,0 +1,11 @@
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+
+<h1><%= t(:editing_user) %></h1>
+
+<%= form_for @user, :url => spree.user_path(@user), :method => :put do |f| %>
+  <%= render :partial => 'spree/shared/user_form', :locals => { :f => f } %>
+  <p>
+    <%= f.submit t(:update), :class => 'button primary' %>
+  </p>
+<% end %>
+

data/app/views/spree/users/show.html.erb

@@ -0,0 +1,43 @@
+<h1><%= accurate_title %></h1>
+
+<div data-hook="account_summary" class="account-summary">
+  <dl id="user-info">
+    <dt><%= t(:email) %></dt>
+    <dd><%= @user.email %> (<%= link_to t(:edit), spree.edit_account_path %>)</dd>
+  </dl>
+</div>
+
+<div data-hook="account_my_orders" class="account-my-orders">
+
+  <h3><%= t(:my_orders) %></h3>
+  <% if @orders.present? %>
+    <table class="order-summary">
+      <thead>
+      <tr>
+        <th class="order-number"><%= t(:order_number) %></th>
+        <th class="order-date"><%= t(:order_date) %></th>
+        <th class="order-status"><%= t(:status) %></th>
+        <th class="order-payment-state"><%= t(:payment_state) %></th>
+        <th class="order-shipment-state"><%= t(:shipment_state) %></th>
+        <th class="order-total"><%= t(:total) %></th>
+      </tr>
+      </thead>
+      <tbody>
+      <% @orders.each do |order| %>
+        <tr class="<%= cycle('even', 'odd') %>">
+          <td class="order-number"><%= link_to order.number, order_url(order) %></td>
+          <td class="order-date"><%= l order.created_at.to_date %></td>
+          <td class="order-status"><%= t(order.state).titleize %></td>
+          <td class="order-payment-state"><%= t("payment_states.#{order.payment_state}") if order.payment_state %></td>
+          <td class="order-shipment-state"><%= t("shipment_states.#{order.shipment_state}") if order.shipment_state %></td>
+          <td class="order-total"><%= money order.total %></td>
+        </tr>
+      <% end %>
+      </tbody>
+    </table>
+  <% else %>
+    <p><%= t(:you_have_no_orders_yet) %></p>
+  <% end %>
+  <br />
+
+</div>

data/config/initializers/devise.rb

@@ -0,0 +1,142 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in DeviseMailer.
+  config.mailer_sender = 'please-change-me@config-initializers-devise.com'
+
+  # Configure the class responsible to send e-mails.
+  config.mailer = 'Spree::UserMailer'
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require 'devise/orm/active_record'
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating an user. By default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating an user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # config.authentication_keys = [ :email ]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Basic Auth is enabled. False by default.
+  config.http_authenticatable = true
+
+  # Set this to true to use Basic Auth for AJAX requests.  True by default.
+  #config.http_authenticatable_on_xhr = false
+
+  # The realm used in Http Basic Authentication
+  config.http_authentication_realm = 'Spree Application'
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+  # using other encryptors, it sets how many times you want the password re-encrypted.
+  config.stretches = 20
+
+  # Setup a pepper to generate the encrypted password.
+  config.pepper = '0bfa9e2cb4a5efd0d976518a3d82e345060547913d2fd1dd2f32b0c8dbbbb5d3dc20b86d0fed31aca9513bccdf51643700ea277d9c64d9ce8ef886bf39293453'
+
+  # ==> Configuration for :confirmable
+  # The time you want to give your user to confirm his account. During this time
+  # he will be able to access your application without confirming. Default is nil.
+  # When confirm_within is zero, the user won't be able to sign in without confirming.
+  # You can use this to let your user access some features of your application
+  # without confirming the account, but blocking it after a certain period
+  # (ie 2 days).
+  # config.confirm_within = 2.days
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # If true, a valid remember token can be re-used between multiple browsers.
+  # config.remember_across_browsers = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # ==> Configuration for :validatable
+  # Range for password length
+  # config.password_length = 6..20
+
+  # Regex to use to validate the email address
+  config.email_regexp = /^([\w\.%\+\-]+)@([\w\-]+\.)+([\w]{2,})$/i
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again.
+  # config.timeout_in = 10.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # ==> Configuration for :token_authenticatable
+  # Defines name of the authentication token params key
+  config.token_authentication_key = :auth_token
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering 'sessions/new', it will first check for
+  # 'users/sessions/new'. It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = true
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes.
+  # config.default_scope = :user
+
+  # Configure sign_out behavior.
+  # By default sign_out is scoped (i.e. /users/sign_out affects only :user scope).
+  # In case of sign_out_all_scopes set to true any logout action will sign out all active scopes.
+  # config.sign_out_all_scopes = false
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists. Default is [:html]
+  config.navigational_formats = [:html, :json, :xml]
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not (yet) supported by Devise,
+  # you can configure them inside the config.warden block. The example below
+  # allows you to setup OAuth, using http://github.com/roman/warden_oauth
+  #
+  # config.warden do |manager|
+  #   manager.oauth(:twitter) do |twitter|
+  #     twitter.consumer_secret = <YOUR CONSUMER SECRET>
+  #     twitter.consumer_key  = <YOUR CONSUMER KEY>
+  #     twitter.options :site => 'http://twitter.com'
+  #   end
+  #   manager.default_strategies(:scope => :user).unshift :twitter_oauth
+  # end
+  #
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 6.hours
+  config.sign_out_via = :get
+end

data/config/initializers/spree.rb

@@ -0,0 +1 @@
+Spree.user_class = "Spree::User"

data/config/locales/en.yml

@@ -0,0 +1,46 @@
+en:
+  errors:
+    messages:
+      not_found: 'not found'
+      already_confirmed: 'was already confirmed'
+      not_locked: 'was not locked'
+      not_saved:
+        one: '1 error prohibited this %{resource} from being saved:'
+        other: '%{count} errors prohibited this %{resource} from being saved:'
+  devise:
+    failure:
+      unauthenticated: 'You need to sign in or sign up before continuing.'
+      unconfirmed: 'You have to confirm your account before continuing.'
+      locked: 'Your account is locked.'
+      invalid: 'Invalid email or password.'
+      invalid_token: 'Invalid authentication token.'
+      timeout: 'Your session expired, please sign in again to continue.'
+      inactive: 'Your account was not activated yet.'
+    user_passwords:
+      user:
+        send_instructions: 'You will receive an email with instructions about how to reset your password in a few minutes.'
+        updated: 'Your password was changed successfully. You are now signed in.'
+    confirmations:
+      send_instructions: 'You will receive an email with instructions about how to confirm your account in a few minutes.'
+      confirmed: 'Your account was successfully confirmed. You are now signed in.'
+    user_registrations:
+      signed_up: 'Welcome! You have signed up successfully.'
+      inactive_signed_up: 'You have signed up successfully. However, we could not sign you in because your account is %{reason}.'
+      updated: 'You updated your account successfully.'
+      destroyed: 'Bye! Your account was successfully cancelled. We hope to see you again soon.'
+    user_sessions:
+      signed_in: 'Signed in successfully.'
+      signed_out: 'Signed out successfully.'
+    unlocks:
+      send_instructions: 'You will receive an email with instructions about how to unlock your account in a few minutes.'
+      unlocked: 'Your account was successfully unlocked. You are now signed in.'
+    oauth_callbacks:
+      success: 'Successfully authorized from %{kind} account.'
+      failure: 'Could not authorize you from %{kind} because "%{reason}".'
+    mailer:
+      confirmation_instructions:
+        subject: 'Confirmation instructions'
+      reset_password_instructions:
+        subject: 'Reset password instructions'
+      unlock_instructions:
+        subject: 'Unlock Instructions'

data/config/routes.rb

@@ -0,0 +1,31 @@
+Spree::Core::Engine.routes.draw do
+  devise_for :user,
+             :class_name => 'Spree::User',
+             :controllers => { :sessions => 'spree/user_sessions',
+                               :registrations => 'spree/user_registrations',
+                               :passwords => 'spree/user_passwords' },
+             :skip => [:unlocks, :omniauth_callbacks],
+             :path_names => { :sign_out => 'logout' }
+end
+
+Spree::Core::Engine.routes.prepend do
+  resources :users, :only => [:edit, :update]
+
+  devise_scope :user do
+    get '/login' => 'user_sessions#new', :as => :login
+    get '/signup' => 'user_registrations#new', :as => :signup
+  end
+
+  match '/checkout/registration' => 'checkout#registration', :via => :get, :as => :checkout_registration
+  match '/checkout/registration' => 'checkout#update_registration', :via => :put, :as => :update_checkout_registration
+
+  match '/orders/:id/token/:token' => 'orders#show', :via => :get, :as => :token_order
+
+  resource :session do
+    member do
+      get :nav_bar
+    end
+  end
+
+  resource :account, :controller => 'users'
+end