spreefinery_core 0.0.1

data/.gitignore

@@ -0,0 +1,18 @@
+*.gem
+*.rbc
+.DS_Store
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/README.md

@@ -0,0 +1,34 @@
+[Spree 1.3](http://spreecommerce.com/) has a fantastic pluggable authentication system. This gem configures Spree
+to use the built in (Devise) authentication in [RefineryCMS](http://refinerycms.com/), and allows you to share
+authentication between the two engines.
+
+Gemfile:
+
+```ruby
+gem 'spreefinery_core', :git => 'git://github.com/shoponrails/spreefinery_core.git'
+```
+    
+Run bundler, then install Spree
+
+    bundle
+    rails g spree:install
+    
+**Note:** The Spree installer will automatically copy and run a migration from this gem. If you want to copy
+the migration manually, you can use the following command:
+
+    rake railties:install:migrations FROM=spreefinery_core
+    
+Optionally put this line at the top of config/routes.rb to use RefineryCMS for your home page:
+
+```ruby
+root :to => "refinery/pages#home"
+```
+
+Start your application, and create a RefineryCMS user. You can then make yourself a Spree admin using the Rails console:
+
+```ruby
+rails console
+> Refinery::User.first.spree_roles << Spree::Role.find_or_create_by_name("admin")
+```
+    
+All done! You should now be able to access Refinery at [http://localhost:3000/refinery](http://localhost:3000/refinery) and Spree at [http://localhost:3000/admin](http://localhost:3000/admin).

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/app/controllers/spree/user_passwords_controller.rb

@@ -0,0 +1,45 @@
+class Spree::UserPasswordsController < Devise::PasswordsController
+  include SslRequirement
+  helper 'spree/base'
+
+  if defined?(Spree::Dash)
+    helper 'spree/analytics'
+  end
+
+  include Spree::Core::ControllerHelpers
+
+  ssl_required
+
+  layout Refinery::Themes::Theme.default_layout
+
+  # Overridden due to bug in Devise.
+  #   respond_with resource, :location => new_session_path(resource_name)
+  # is generating bad url /session/new.user
+  #
+  # overridden to:
+  #   respond_with resource, :location => spree.login_path
+  #
+  def create
+    self.resource = resource_class.send_reset_password_instructions(params[resource_name])
+
+    if resource.errors.empty?
+      set_flash_message(:notice, :send_instructions) if is_navigational_format?
+      respond_with resource, :location => spree.login_path
+    else
+      respond_with_navigational(resource) { render :new }
+    end
+  end
+
+  # Devise::PasswordsController allows for blank passwords.
+  # Silly Devise::PasswordsController!
+  # Fixes spree/spree#2190.
+  def update
+    if params[:user][:password].blank?
+      set_flash_message(:error, :cannot_be_blank)
+      render :edit
+    else
+      super
+    end
+  end
+
+end

data/app/controllers/spree/user_registrations_controller.rb

@@ -0,0 +1,65 @@
+class Spree::UserRegistrationsController < Devise::RegistrationsController
+  include SslRequirement
+  helper 'spree/base'
+
+  if defined?(Spree::Dash)
+    helper 'spree/analytics'
+  end
+
+  include Spree::Core::ControllerHelpers
+  ssl_required
+  before_filter :check_permissions, :only => [:edit, :update]
+  skip_before_filter :require_no_authentication
+
+  layout Refinery::Themes::Theme.default_layout
+
+  # GET /resource/sign_up
+  def new
+    super
+  end
+
+  # POST /resource/sign_up
+  def create
+    @user = build_resource(params[:user])
+    if resource.save
+      set_flash_message(:notice, :signed_up)
+      sign_in(:user, @user)
+      session[:spree_user_signup] = true
+      associate_user
+      sign_in_and_redirect(:user, @user)
+    else
+      clean_up_passwords(resource)
+      render :new
+    end
+  end
+
+  # GET /resource/edit
+  def edit
+    super
+  end
+
+  # PUT /resource
+  def update
+    super
+  end
+
+  # DELETE /resource
+  def destroy
+    super
+  end
+
+  # GET /resource/cancel
+  # Forces the session data which is usually expired after sign
+  # in to be expired now. This is useful if the user wants to
+  # cancel oauth signing in/up in the middle of the process,
+  # removing all OAuth session data.
+  def cancel
+    super
+  end
+
+  protected
+  def check_permissions
+    authorize!(:create, resource)
+  end
+
+end

data/app/controllers/spree/user_sessions_controller.rb

@@ -0,0 +1,65 @@
+class Spree::UserSessionsController < Devise::SessionsController
+  include SslRequirement
+  helper 'spree/base'
+  if defined?(Spree::Dash)
+    helper 'spree/analytics'
+  end
+
+  include Spree::Core::ControllerHelpers
+
+  ssl_required :new, :create, :destroy, :update
+  ssl_allowed :login_bar
+
+  layout Refinery::Themes::Theme.default_layout
+
+  # GET /resource/sign_in
+  def new
+    @user = Refinery::User.new
+    super
+  end
+
+  #def create
+  #  super
+  #rescue ::BCrypt::Errors::InvalidSalt, ::BCrypt::Errors::InvalidHash
+  #  flash[:error] = t('password_encryption', :scope => 'refinery.users.forgot')
+  #  redirect_to refinery.new_refinery_user_password_path
+  #end
+
+
+  def create
+    #super
+    authenticate_refinery_user!
+
+    if refinery_user_signed_in?
+      respond_to do |format|
+        format.html {
+          flash[:success] = t(:logged_in_succesfully)
+          redirect_back_or_default(after_sign_in_path_for(current_refinery_user))
+        }
+        format.js {
+          user = resource.record
+          render :json => {:ship_address => user.ship_address, :bill_address => user.bill_address}.to_json
+        }
+      end
+    else
+      flash.now[:error] = t('devise.failure.invalid')
+      render :new
+    end
+  end
+
+  def destroy
+    cookies.clear
+    session.clear
+    super
+  end
+
+  private
+  def accurate_title
+    t(:login)
+  end
+
+  def redirect_back_or_default(default)
+    redirect_to(session["user_return_to"] || default)
+    session["user_return_to"] = nil
+  end
+end

data/app/controllers/spree/users_controller.rb

@@ -0,0 +1,51 @@
+class Spree::UsersController < Spree::StoreController
+  ssl_required
+  skip_before_filter :set_current_order, :only => :show
+  prepend_before_filter :load_object, :only => [:show, :edit, :update]
+  prepend_before_filter :authorize_actions, :only => :new
+
+  def show
+    @orders = @user.orders.complete
+  end
+
+  def create
+    @user = Refinery::User.new(params[:user])
+    if @user.save
+
+      if current_order
+        session[:guest_token] = nil
+      end
+
+      redirect_back_or_default(root_url)
+    else
+      render :new
+    end
+  end
+
+  def update
+    if @user.update_attributes(params[:user])
+      if params[:user][:password].present?
+        # this logic needed b/c devise wants to log us out after password changes
+        user = Refinery::User.reset_password_by_token(params[:user])
+        sign_in(@user, :event => :authentication, :bypass => !Spree::Auth::Config[:signout_after_password_change])
+      end
+      redirect_to spree.account_url, :notice => t(:account_updated)
+    else
+      render :edit
+    end
+  end
+
+  private
+  def load_object
+    @user ||= current_refinery_user
+    authorize! params[:action].to_sym, @user
+  end
+
+  def authorize_actions
+    authorize! params[:action].to_sym, Refinery::User.new
+  end
+
+  def accurate_title
+    t(:my_account)
+  end
+end

data/app/mailers/spree/user_mailer.rb

@@ -0,0 +1,8 @@
+class Spree::UserMailer < ActionMailer::Base
+  def reset_password_instructions(user)
+    @edit_password_reset_url = spree.edit_user_password_url(:reset_password_token => user.reset_password_token)
+
+    mail(:to => user.email,
+         :subject => Spree::Config[:site_name] + ' ' + I18n.t(:password_reset_instructions))
+  end
+end

data/app/overrides/auth_user_login_form.rb

@@ -0,0 +1,6 @@
+Deface::Override.new(:virtual_path => "spree/checkout/registration",
+                     :name => "auth_user_login_form",
+                     :replace_contents => "[data-hook='registration'] #account, #registration[data-hook] #account",
+                     :template => "spree/user_sessions/new",
+                     :disabled => false,
+                     :original => 'ab20ac9e90baa11b847b30040aef863d2e1af17a')

data/app/views/spree/shared/_flashes.html.erb

@@ -0,0 +1,9 @@
+<% if flash.any? %>
+  <div id="flash">
+    <% flash.each do |key, value| %>
+      <p>
+        <%= value %>
+      </p>
+    <% end %>
+  </div>
+<% end%>

data/app/views/spree/shared/_login.html.erb

@@ -0,0 +1,20 @@
+<%= form_for :refinery_user, :url => spree.user_session_path do |f| %>
+  <div id="password-credentials">
+    <p>
+      <%= f.label :login, t(:login) %><br />
+      <%= f.text_field :login, :class => 'title', :tabindex => 1 %>
+    </p>
+    <p>
+      <%= f.label :password, t(:password) %><br />
+      <%= f.password_field :password, :class => 'title', :tabindex => 2 %>
+    </p>
+  </div>
+  <p>
+    <label>
+      <%= f.check_box :remember_me %>
+      <%= f.label :remember_me, t(:remember_me) %>
+    </label>
+  </p>
+
+  <p><%= f.submit t(:login), :class => 'button primary', :tabindex => 3 %></p>
+<% end %>

data/app/views/spree/shared/_login_bar.html.erb

@@ -0,0 +1,6 @@
+<% if spree_current_user %>
+  <li><%= link_to t(:my_account), spree.account_path %></li>
+  <li><%= link_to t(:logout), spree.destroy_user_session_path %></li>
+<% else %>
+  <li id="link-to-login"><%= link_to t(:login), spree.login_path %></li>
+<% end %>

data/app/views/spree/shared/_user_form.html.erb

@@ -0,0 +1,17 @@
+<p>
+  <%= f.label :email, t(:email) %><br />
+  <%= f.email_field :email, :class => 'title' %>
+</p>
+<div id="password-credentials">
+  <p>
+    <%= f.label :password, t(:password) %><br />
+    <%= f.password_field :password, :class => 'title' %>
+  </p>
+
+  <p>
+    <%= f.label :password_confirmation, t(:confirm_password) %><br />
+    <%= f.password_field :password_confirmation, :class => 'title' %>
+  </p>
+</div>
+
+<div data-hook="signup_below_password_fields"></div>

data/app/views/spree/user_mailer/reset_password_instructions.text.erb

@@ -0,0 +1,10 @@
+A request to reset your password has been made. 
+If you did not make this request, simply ignore this email. 
+
+If you did make this request just click the link below:
+ 
+<%= @edit_password_reset_url %>
+ 
+If the above URL does not work try copying and pasting it into your browser. 
+If you continue to have problem please feel free to contact us.
+

data/app/views/spree/user_passwords/edit.html.erb

@@ -0,0 +1,15 @@
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+<h2><%= t(:change_my_password) %></h2>
+
+<%= form_for @user, :url => spree.user_password_path, :method => :put do |f| %>
+  <p>
+    <%= f.label :password, t(:password) %><br />
+    <%= f.password_field :password %><br />
+  </p>
+  <p>
+    <%= f.label :password_confirmation, t(:password_confirmation) %><br />
+    <%= f.password_field :password_confirmation %><br />
+  </p>
+  <%= f.hidden_field :reset_password_token %>
+  <%= f.submit t(:update_password), :class => 'button primary' %>
+<% end %>

data/app/views/spree/user_passwords/new.html.erb

@@ -0,0 +1,15 @@
+<div id="forgot-password">
+  <h6><%= t(:forgot_password) %></h6>
+
+  <p><%= t(:instructions_to_reset_password) %></p>
+
+  <%= form_for Refinery::User.new, :as => :user, :url => spree.user_password_path do |f| %>
+    <p>
+      <%= f.label :email, t(:email) %><br />
+      <%= f.email_field :email %>
+    </p>
+    <p>
+      <%= f.submit t(:reset_password), :class => 'button primary' %>
+    </p>
+  <% end %>
+</div>

data/app/views/spree/user_registrations/new.html.erb

@@ -0,0 +1,22 @@
+<% @body_id = 'signup' %>
+
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+
+<div id="new-customer">
+  <h6><%= t(:new_customer) %></h6>
+
+  <div data-hook="signup">
+
+    <%= form_for :user, :url => spree.user_registration_path(@user) do |f| %>
+      <div data-hook="signup_inside_form">
+        <%= render :partial => 'spree/shared/user_form', :locals => { :f => f } %>
+        <p><%= f.submit t(:create), :class => 'button primary' %></p>
+      </div>
+    <% end %>
+    <%= t(:or) %> <%= link_to t(:login_as_existing), spree.login_path %>
+
+  </div>
+
+</div>
+
+<div data-hook="login_extras"></div>

data/app/views/spree/user_sessions/authorization_failure.html.erb

@@ -0,0 +1,4 @@
+<div style="height:50px; padding-top:20px;">
+  <strong><%= t(:authorization_failure) %></strong>
+</div>   
+<!-- Add your own custom access denied message here if you like -->

data/app/views/spree/user_sessions/new.html.erb

@@ -0,0 +1,13 @@
+<% if flash[:alert] %>
+  <div class="flash errors"><%= flash[:alert] %></div>
+<% end %>
+
+<% @body_id = 'login' %>
+<div id="existing-customer">
+  <h6><%= t(:login_as_existing) %></h6>
+  <div data-hook="login">
+    <%= render :partial => 'spree/shared/login' %>
+    <%= t(:or) %> <%= link_to t(:create_a_new_account), spree.signup_path %> | <%= link_to t(:forgot_password), spree.new_user_password_path %>
+  </div>
+</div>
+<div data-hook="login_extras"></div>

data/app/views/spree/users/edit.html.erb

@@ -0,0 +1,11 @@
+<%= render :partial => 'spree/shared/error_messages', :locals => { :target => @user } %>
+
+<h1><%= t(:editing_user) %></h1>
+
+<%= form_for @user, :url => spree.user_path(@user), :method => :put do |f| %>
+  <%= render :partial => 'spree/shared/user_form', :locals => { :f => f } %>
+  <p>
+    <%= f.submit t(:update), :class => 'button primary' %>
+  </p>
+<% end %>
+

data/app/views/spree/users/show.html.erb

@@ -0,0 +1,43 @@
+<h1><%= accurate_title %></h1>
+
+<div data-hook="account_summary" class="account-summary">
+  <dl id="user-info">
+    <dt><%= t(:email) %></dt>
+    <dd><%= @user.email %> (<%= link_to t(:edit), spree.edit_account_path %>)</dd>
+  </dl>
+</div>
+
+<div data-hook="account_my_orders" class="account-my-orders">
+
+  <h3><%= t(:my_orders) %></h3>
+  <% if @orders.present? %>
+    <table class="order-summary">
+      <thead>
+      <tr>
+        <th class="order-number"><%= t(:order_number) %></th>
+        <th class="order-date"><%= t(:order_date) %></th>
+        <th class="order-status"><%= t(:status) %></th>
+        <th class="order-payment-state"><%= t(:payment_state) %></th>
+        <th class="order-shipment-state"><%= t(:shipment_state) %></th>
+        <th class="order-total"><%= t(:total) %></th>
+      </tr>
+      </thead>
+      <tbody>
+      <% @orders.each do |order| %>
+        <tr class="<%= cycle('even', 'odd') %>">
+          <td class="order-number"><%= link_to order.number, order_url(order) %></td>
+          <td class="order-date"><%= l order.completed_at.to_date %></td>
+          <td class="order-status"><%= t(order.state).titleize %></td>
+          <td class="order-payment-state"><%= t("payment_states.#{order.payment_state}") if order.payment_state %></td>
+          <td class="order-shipment-state"><%= t("shipment_states.#{order.shipment_state}") if order.shipment_state %></td>
+          <td class="order-total"><%= money order.total %></td>
+        </tr>
+      <% end %>
+      </tbody>
+    </table>
+  <% else %>
+    <p><%= t(:you_have_no_orders_yet) %></p>
+  <% end %>
+  <br />
+
+</div>

data/config/initializers/devise.rb

@@ -0,0 +1,144 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in DeviseMailer.
+  config.mailer_sender = 'please-change-me@config-initializers-devise.com'
+
+  # Configure the class responsible to send e-mails.
+  config.mailer = 'Spree::UserMailer'
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require 'devise/orm/active_record'
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating an user. By default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating an user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # config.authentication_keys = [ :email ]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Basic Auth is enabled. False by default.
+  config.http_authenticatable = true
+
+  # Set this to true to use Basic Auth for AJAX requests.  True by default.
+  #config.http_authenticatable_on_xhr = false
+
+  # The realm used in Http Basic Authentication
+  config.http_authentication_realm = 'Spreefinery Application'
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+  # using other encryptors, it sets how many times you want the password re-encrypted.
+  config.stretches = 20
+
+  # Setup a pepper to generate the encrypted password.
+  config.pepper = Rails.configuration.secret_token
+
+  # ==> Configuration for :confirmable
+  # The time you want to give your user to confirm his account. During this time
+  # he will be able to access your application without confirming. Default is nil.
+  # When confirm_within is zero, the user won't be able to sign in without confirming.
+  # You can use this to let your user access some features of your application
+  # without confirming the account, but blocking it after a certain period
+  # (ie 2 days).
+  # config.confirm_within = 2.days
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # If true, a valid remember token can be re-used between multiple browsers.
+  # config.remember_across_browsers = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # ==> Configuration for :validatable
+  # Range for password length
+  # config.password_length = 6..20
+
+  # Regex to use to validate the email address
+  config.email_regexp = /^([\w\.%\+\-]+)@([\w\-]+\.)+([\w]{2,})$/i
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again.
+  # config.timeout_in = 10.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # ==> Configuration for :token_authenticatable
+  # Defines name of the authentication token params key
+  config.token_authentication_key = :auth_token
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering 'sessions/new', it will first check for
+  # 'users/sessions/new'. It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = true
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes.
+  # config.default_scope = :user
+
+  # Configure sign_out behavior.
+  # By default sign_out is scoped (i.e. /users/sign_out affects only :user scope).
+  # In case of sign_out_all_scopes set to true any logout action will sign out all active scopes.
+  # config.sign_out_all_scopes = false
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists. Default is [:html]
+  config.navigational_formats = [:html, :json, :xml]
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not (yet) supported by Devise,
+  # you can configure them inside the config.warden block. The example below
+  # allows you to setup OAuth, using http://github.com/roman/warden_oauth
+  #
+  # config.warden do |manager|
+  #   manager.oauth(:twitter) do |twitter|
+  #     twitter.consumer_secret = <YOUR CONSUMER SECRET>
+  #     twitter.consumer_key  = <YOUR CONSUMER KEY>
+  #     twitter.options :site => 'http://twitter.com'
+  #   end
+  #   manager.default_strategies(:scope => :user).unshift :twitter_oauth
+  # end
+  #
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 6.hours
+  config.sign_out_via = :get
+
+  config.case_insensitive_keys = [:email]
+end

data/config/initializers/spree.rb

@@ -0,0 +1 @@
+Spree.user_class = "Refinery::User"

data/config/routes.rb

@@ -0,0 +1,23 @@
+Spree::Core::Engine.routes.draw do
+  devise_for :user,
+             :class_name => 'Refinery::User',
+             :controllers => { :sessions => 'spree/user_sessions',
+                               :registrations => 'spree/user_registrations',
+                               :passwords => 'spree/user_passwords' },
+             :skip => [:unlocks, :omniauth_callbacks],
+             :path_names => { :sign_out => 'logout' }
+end
+
+Spree::Core::Engine.routes.prepend  do
+  resources :users, :only => [:edit, :update]
+
+  devise_scope :user do
+    get '/login' => 'user_sessions#new', :as => :login
+    get '/signup' => 'user_registrations#new', :as => :signup
+  end
+
+  match '/checkout/registration' => 'checkout#registration', :via => :get, :as => :checkout_registration
+  match '/checkout/registration' => 'checkout#update_registration', :via => :put, :as => :update_checkout_registration
+
+  resource :account, :controller => 'users'
+end

data/db/migrate/20120830045627_add_spree_fields_to_refinery_users_table.rb

@@ -0,0 +1,13 @@
+class AddSpreeFieldsToRefineryUsersTable < ActiveRecord::Migration
+  def up
+    add_column(:refinery_users, :spree_api_key, :string, :limit => 48) unless column_exists?(:refinery_users, :spree_api_key)
+    add_column(:refinery_users, :ship_address_id, :integer) unless column_exists?(:refinery_users, :ship_address_id)
+    add_column(:refinery_users, :bill_address_id, :integer) unless column_exists?(:refinery_users, :bill_address_id)
+  end
+
+  def down
+    remove_column(:refinery_users, :spree_api_key)
+    remove_column(:refinery_users, :ship_address_id)
+    remove_column(:refinery_users, :bill_address_id)
+  end
+end

data/lib/spree/authentication_helpers.rb

@@ -0,0 +1,29 @@
+module Spree
+  module AuthenticationHelpers
+    def self.included(receiver)
+      receiver.send :helper_method, :spree_login_path
+      receiver.send :helper_method, :spree_signup_path
+      receiver.send :helper_method, :spree_logout_path
+      receiver.send :helper_method, :spree_current_user
+
+      # ensure refinery_user? helper method is always available
+      receiver.send :helper_method, :refinery_user?
+    end
+
+    def spree_current_user
+      current_refinery_user
+    end
+
+    def spree_login_path
+      refinery.new_refinery_user_session_path
+    end
+
+    def spree_signup_path
+      refinery.new_refinery_user_registration_path
+    end
+
+    def spree_logout_path
+      refinery.destroy_refinery_user_session_path
+    end
+  end
+end

data/lib/spreefinery_core/engine.rb

@@ -0,0 +1,30 @@
+require "spree/authentication_helpers"
+
+module SpreefineryCore
+  class Engine < Rails::Engine
+    require 'spree_core'
+    require 'refinerycms-core'
+
+    isolate_namespace SpreefineryCore::Engine
+    engine_name "spreefinery_core"
+
+    config.autoload_paths += %W(#{config.root}/lib)
+
+    config.to_prepare do
+      Spree.user_class = "Refinery::User"
+
+      WillPaginate::ActiveRecord::RelationMethods.send :alias_method, :per, :per_page
+      WillPaginate::ActiveRecord::RelationMethods.send :alias_method, :num_pages, :total_pages
+
+      ApplicationController.send :include, Spree::AuthenticationHelpers
+    end
+
+    def self.activate
+      Dir.glob(File.join(File.dirname(__FILE__), '../../app/**/*_decorator*.rb')) do |c|
+        Rails.configuration.cache_classes ? require(c) : load(c)
+      end
+    end
+
+    config.to_prepare &method(:activate).to_proc
+  end
+end

data/lib/spreefinery_core.rb

@@ -0,0 +1 @@
+require "spreefinery_core/engine"

data/spreefinery_core.gemspec

@@ -0,0 +1,19 @@
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |gem|
+  gem.name          = "spreefinery_core"
+  gem.version       = "0.0.1"
+  gem.authors       = ["Alexander Negoda, Zee Yang"]
+  gem.email         = ["alexander.negoda@gmail.com, zee.yang@gmail.com"]
+  gem.description   = "Spree + Refinerycms integration"
+  gem.summary       = "Common functionality for Spree + Refinerycms integration"
+  gem.homepage      = "https://github.com/shoponrails/spreefinery_core"
+
+  gem.files         = `git ls-files`.split($/)
+  gem.test_files    = gem.files.grep(%r{^spec/})
+  gem.require_paths = ["lib"]
+  gem.required_ruby_version = '>= 1.9.3'
+
+  gem.add_runtime_dependency 'spree', '>= 1.3.0'
+  gem.add_runtime_dependency 'refinerycms', '>= 2.0.9'
+end

metadata

@@ -0,0 +1,107 @@
+--- !ruby/object:Gem::Specification
+name: spreefinery_core
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Alexander Negoda, Zee Yang
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-02-08 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: spree
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+- !ruby/object:Gem::Dependency
+  name: refinerycms
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 2.0.9
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 2.0.9
+description: Spree + Refinerycms integration
+email:
+- alexander.negoda@gmail.com, zee.yang@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- README.md
+- Rakefile
+- app/controllers/spree/user_passwords_controller.rb
+- app/controllers/spree/user_registrations_controller.rb
+- app/controllers/spree/user_sessions_controller.rb
+- app/controllers/spree/users_controller.rb
+- app/mailers/spree/user_mailer.rb
+- app/overrides/auth_user_login_form.rb
+- app/views/spree/shared/_flashes.html.erb
+- app/views/spree/shared/_login.html.erb
+- app/views/spree/shared/_login_bar.html.erb
+- app/views/spree/shared/_user_form.html.erb
+- app/views/spree/user_mailer/reset_password_instructions.text.erb
+- app/views/spree/user_passwords/edit.html.erb
+- app/views/spree/user_passwords/new.html.erb
+- app/views/spree/user_registrations/new.html.erb
+- app/views/spree/user_sessions/authorization_failure.html.erb
+- app/views/spree/user_sessions/new.html.erb
+- app/views/spree/users/edit.html.erb
+- app/views/spree/users/show.html.erb
+- config/initializers/devise.rb
+- config/initializers/spree.rb
+- config/routes.rb
+- db/migrate/20120830045627_add_spree_fields_to_refinery_users_table.rb
+- lib/spree/authentication_helpers.rb
+- lib/spreefinery_core.rb
+- lib/spreefinery_core/engine.rb
+- spreefinery_core.gemspec
+homepage: https://github.com/shoponrails/spreefinery_core
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: 1.9.3
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.24
+signing_key: 
+specification_version: 3
+summary: Common functionality for Spree + Refinerycms integration
+test_files: []