standard_id 0.3.2 → 0.4.0

data/lib/standard_id/testing/request_helpers.rb

@@ -0,0 +1,60 @@
+module StandardId
+  module Testing
+    # Integration test helpers for signing in accounts and making authenticated requests.
+    #
+    # Usage in rails_helper.rb:
+    #
+    #   require "standard_id/testing"
+    #
+    #   RSpec.configure do |config|
+    #     config.include StandardId::Testing::RequestHelpers, type: :request
+    #   end
+    #
+    module RequestHelpers
+      # Create a browser session record for integration tests.
+      #
+      # For a simpler approach, use stub_web_authentication from AuthenticationHelpers instead.
+      #
+      # @param account [Object] the account to sign in
+      # @param user_agent [String] the user agent string (default: "RSpec")
+      # @return [StandardId::BrowserSession] the created session
+      #
+      def create_browser_session(account, user_agent: "RSpec")
+        StandardId::BrowserSession.create!(
+          account: account,
+          ip_address: "127.0.0.1",
+          user_agent: user_agent,
+          expires_at: StandardId::BrowserSession.expiry
+        )
+      end
+
+      # Build a JWT token for API/service authentication.
+      #
+      # @param account [Object, nil] account (uses account.id as sub claim)
+      # @param sub [String, nil] explicit subject claim (overrides account.id)
+      # @param client_id [String] OAuth client ID
+      # @param scope [String] space-separated scopes
+      # @param grant_type [String] OAuth grant type
+      # @param extra [Hash] additional JWT claims
+      # @return [String] encoded JWT token
+      #
+      def build_jwt(account: nil, sub: nil, client_id: "test-client",
+                    scope: "openid", grant_type: "authorization_code", extra: {})
+        sub ||= account&.id
+        raise ArgumentError, "account or sub must be provided" if sub.nil?
+
+        claims = { sub: sub, client_id: client_id, scope: scope, grant_type: grant_type }.merge(extra)
+        StandardId::JwtService.encode(claims)
+      end
+
+      # Returns an Authorization header hash for Bearer token authentication.
+      #
+      # @param token [String] the JWT token
+      # @return [Hash] header hash
+      #
+      def bearer_auth_header(token)
+        { "Authorization" => "Bearer #{token}" }
+      end
+    end
+  end
+end

data/lib/standard_id/testing.rb

@@ -0,0 +1,26 @@
+require "standard_id/testing/authentication_helpers"
+require "standard_id/testing/request_helpers"
+
+module StandardId
+  module Testing
+    # Load StandardId's FactoryBot factory definitions.
+    #
+    # Requires the `factory_bot` (or `factory_bot_rails`) gem in the host app's
+    # Gemfile under the :test group.
+    #
+    # Recommended usage in rails_helper.rb:
+    #
+    #   require "standard_id/testing"
+    #   StandardId::Testing.setup_factory_bot!
+    #
+    def self.setup_factory_bot!
+      require "standard_id/testing/factory_bot"
+    rescue LoadError => e
+      raise unless e.message.include?("factory_bot")
+
+      raise LoadError,
+        "StandardId::Testing.setup_factory_bot! requires the `factory_bot` gem. " \
+        "Add `gem 'factory_bot_rails'` (or `gem 'factory_bot'`) to your Gemfile's :test group."
+    end
+  end
+end

data/lib/standard_id/version.rb

@@ -1,3 +1,3 @@
 module StandardId
-  VERSION = "0.3.2"
+  VERSION = "0.4.0"
 end

data/lib/standard_id.rb

@@ -39,6 +39,8 @@ require "standard_id/oauth/passwordless_otp_flow"
 require "standard_id/passwordless/base_strategy"
 require "standard_id/passwordless/email_strategy"
 require "standard_id/passwordless/sms_strategy"
+require "standard_id/passwordless/verification_service"
+require "standard_id/authorization_bypass"
 require "standard_id/utils/callable_parameter_filter"
 require "standard_id/utils/ip_normalizer"
 
@@ -75,5 +77,9 @@ module StandardId
     def account_class
       config.account_class_name.constantize
     end
+
+    def skip_host_authorization(framework: nil, callback: nil)
+      AuthorizationBypass.apply(framework: framework, callback: callback)
+    end
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: standard_id
 version: !ruby/object:Gem::Version
-  version: 0.3.2
+  version: 0.4.0
 platform: ruby
 authors:
 - Jaryl Sim
@@ -65,6 +65,34 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: concurrent-ruby
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.3'
+- !ruby/object:Gem::Dependency
+  name: factory_bot
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '6.5'
 description: StandardId is an authentication engine that provides a complete, secure-by-default
   solution for identity management, reducing boilerplate and eliminating common security
   pitfalls.
@@ -81,6 +109,7 @@ files:
 - app/channels/concerns/standard_id/cable_authentication.rb
 - app/controllers/concerns/standard_id/api_authentication.rb
 - app/controllers/concerns/standard_id/audience_verification.rb
+- app/controllers/concerns/standard_id/controller_policy.rb
 - app/controllers/concerns/standard_id/inertia_rendering.rb
 - app/controllers/concerns/standard_id/inertia_support.rb
 - app/controllers/concerns/standard_id/passwordless_strategy.rb
@@ -174,6 +203,7 @@ files:
 - lib/standard_id/api/session_manager.rb
 - lib/standard_id/api/token_manager.rb
 - lib/standard_id/api_engine.rb
+- lib/standard_id/authorization_bypass.rb
 - lib/standard_id/bearer_token_extraction.rb
 - lib/standard_id/config/schema.rb
 - lib/standard_id/current_attributes.rb
@@ -206,8 +236,17 @@ files:
 - lib/standard_id/passwordless/base_strategy.rb
 - lib/standard_id/passwordless/email_strategy.rb
 - lib/standard_id/passwordless/sms_strategy.rb
+- lib/standard_id/passwordless/verification_service.rb
 - lib/standard_id/provider_registry.rb
 - lib/standard_id/providers/base.rb
+- lib/standard_id/testing.rb
+- lib/standard_id/testing/authentication_helpers.rb
+- lib/standard_id/testing/factories/credentials.rb
+- lib/standard_id/testing/factories/identifiers.rb
+- lib/standard_id/testing/factories/oauth.rb
+- lib/standard_id/testing/factories/sessions.rb
+- lib/standard_id/testing/factory_bot.rb
+- lib/standard_id/testing/request_helpers.rb
 - lib/standard_id/utils/callable_parameter_filter.rb
 - lib/standard_id/utils/ip_normalizer.rb
 - lib/standard_id/version.rb