stupid_auth 0.0.2

data/lib/stupid_auth/controller.rb

@@ -0,0 +1,75 @@
+module StupidAuth
+
+  module Controller
+
+    def self.included base
+      base.send :helper_method, :current_user, :logged_in?
+      base.send :include, InstanceMethods
+      # base.send :layout, lambda { |controller| controller.ajax? ? nil : 'application' }
+      # base.send :before_filter, :set_thread_user
+    end
+
+    module InstanceMethods
+
+      def ajax?
+        request.xhr?
+      end
+
+    private
+
+      def current_user
+        @current_user ||= User.find_by_id session[:user_id]
+      end
+
+      def logged_in?
+        !!current_user
+      end
+
+      def store_location
+        session[:return_to] = request.fullpath
+      end
+
+      def redirect_back_or_default default = nil
+        default ||= root_path
+        redirect_to session[:return_to] || default
+        session[:return_to] = nil
+      end
+
+      def access_denied
+        store_location
+        flash[:error] = 'You do not have permission to access that page!'
+        redirect_to login_path
+      end
+
+      def login_required
+        access_denied unless logged_in?
+      end
+
+      # Uncomment for basic role support
+      # add support for dynamic role filtering
+      # eg accountant_required or receiving_staff_or_accountant_required
+      # def method_missing name, *args
+      #   if name.to_s =~ /^(.+)_required$/
+      #     system_admin_or_role_required $1.split('_or_')
+      #   else
+      #     super
+      #   end
+      # end
+
+      # Uncomment for basic role support
+      # def system_admin_or_role_required role
+      #   raise "Role must be specified" if role.blank?
+      #   return if logged_in? and current_user.is_a?('System Admin')
+      #   roles = role.is_a?(Array) ? role : [role].flatten
+      #   access_denied unless logged_in? and roles.map { |r| current_user.is_a?(r.to_s.titleize) }.include? true
+      # end
+
+      def set_thread_user
+        Thread.current[:user] = current_user
+      end
+
+    end
+
+  end
+
+end

data/lib/stupid_auth/model.rb

@@ -0,0 +1,85 @@
+module StupidAuth
+
+  module Model
+
+    def self.included base
+      class << base
+        attr_reader :login_field
+      end
+
+      base.extend ClassMethods
+
+      base.send :include,           InstanceMethods
+      base.send :validate,          :validate_password
+      base.send :before_validation, :encrypt_password
+      base.send :login_with,        :email
+    end
+
+    module ClassMethods
+
+      # Set the field name to use for authentication
+      # Accepts a string or a symbol of a property name
+      def login_with field
+        field = field.is_a?(Symbol) ? field : field.fieldify.to_sym
+        new.respond_to?(field) ? @login_field = field : raise("#{ name } does not respond to #{ field.inspect }")
+      end
+
+      # Search the login_field for the given value and
+      # attempt to authenticate a found user with the given password
+      def authenticate login, provided_password = nil
+        finder = "find_by_#{ login_field }"
+        user = self.send finder, login
+        (user.present? and user.authenticated_by?provided_password) ? user : nil
+      end
+
+    end
+
+    module InstanceMethods
+
+      # Compare provided password with the one stored in the database
+      def authenticated_by? provided_password
+        encrypted_password == Digest::SHA1.hexdigest(provided_password + password_salt)
+      end
+
+      # def login_field
+      #   self.class.login_field
+      # end
+      # 
+      # def login_value
+      #   self.send login_field
+      # end
+
+    private
+
+      # Hash the provided password and persist it, along with a salt
+      def encrypt_password
+        return true if password.blank?
+        self.password_salt      = "stupid-auth-#{ Time.now.to_i }"
+        self.encrypted_password = Digest::SHA1.hexdigest(password + password_salt)
+        true
+      end
+
+      # Ensure that if a password has not been persisted one is provided
+      # Ensure that provided passwords are at least 4 characters long
+      def validate_password
+        if password.present?
+          errors.add :password, 'must be at least 4 characters!' unless password.length > 4
+        else
+          errors.add :password, "can't be blank" unless encrypted_password.present?
+        end
+
+        true
+      end
+
+      # create a :reset_password_token that can be used to authenticate
+      # a user so that they can reset their passwords. Assumes that there is a reset_password_token
+      # attribute on the model.
+      def create_reset_password_token!
+        update :reset_password_token => Digest::SHA1.hexdigest("password reset token #{ Time.zone.now } #{ rand }")
+      end
+
+    end
+
+  end
+
+end

data/lib/stupid_auth/webrat_helpers.rb

@@ -0,0 +1,10 @@
+def login_as user
+  visit login_path
+
+  fill_in_fields :login => user.send(User.login_field), :password => 'testing'
+  click_button 'Login'
+end
+
+def logout
+  visit logout_path
+end

data/lib/stupid_auth.rb

@@ -0,0 +1,7 @@
+# Provides controller and model methods for dealing with user authentication
+
+module StupidAuth
+end
+
+require File.join(File.dirname(__FILE__), 'stupid_auth', 'model')
+require File.join(File.dirname(__FILE__), 'stupid_auth', 'controller')

metadata

@@ -0,0 +1,70 @@
+--- !ruby/object:Gem::Specification 
+name: stupid_auth
+version: !ruby/object:Gem::Version 
+  hash: 27
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 2
+  version: 0.0.2
+platform: ruby
+authors: 
+- Dev Fu!
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-11-03 00:00:00 -07:00
+default_executable: 
+dependencies: []
+
+description: Authenticate users the stupid easy way.
+email: info@devfu.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- lib/stupid_auth/controller.rb
+- lib/stupid_auth/model.rb
+- lib/stupid_auth/webrat_helpers.rb
+- lib/stupid_auth.rb
+has_rdoc: true
+homepage: http://github.com/devfu/stupid_auth
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Really basic authentication library.
+test_files: []
+