RubyGems - thoughtbot-clearance - Versions diffs - 0.4.9 → 0.5.0 - Mend

thoughtbot-clearance 0.4.9 → 0.5.0

Files changed (15) hide show

data/CHANGELOG.textile CHANGED Viewed

@@ -1,3 +1,11 @@
+h2. 0.5.0 (2/27/2009)
+* Fixed problem with Cucumber features. (Dan Croak)
+* Fixed mising HTTP fluency use case. (Dan Croak)
+* Refactored User#update_password to take just parameters it needs. (Dan
+Croak)
+* Refactored User unit tests to be more readable. (Dan Croak)
 h2. 0.4.9 (2/20/2009)
 * Protect passwords & confirmations actions with forbidden filters. (Dan Croak)

data/README.textile CHANGED Viewed

@@ -4,6 +4,10 @@ Rails authentication for developers who write tests.
 "We have clearance, Clarence.":http://www.youtube.com/v/mNRXJEE3Nz8
+h2. Wiki
+Most information regarding Clearance is on the "Github Wiki":http://wiki.github.com/thoughtbot/clearance.
 h2. Integration with Suspenders
 Clearance is based on the same conventions and tools as "Suspenders":http://github.com/thoughtbot/suspenders If you use it, you already have some configuration mentioned below.
@@ -15,7 +19,7 @@ In config/environment.rb:
     config.gem "thoughtbot-clearance",
       :lib     => 'clearance',
       :source  => 'http://gems.github.com',
-      :version => '>= 0.4.9'
+      :version => '>= 0.5.0'
 In config/environments/test.rb:
@@ -45,77 +49,6 @@ A number of files will be created and instructions will be printed.
 You may already have some of these files. Don't worry. You'll be asked if you want to overwrite them.
-h2. Modules
-Clearance works by mixing behavior into tests, controllers, and models. For any file that you do not want to overwrite, include the corresponding Clearance module. They are namespaced exactly like the directory structure of a Rails app.
-Application controller example:
-    class ApplicationController < ActionController::Base
-      include Clearance::App::Controllers::ApplicationController
-    end
-User model example:
-    class User < ActiveRecord::Base
-      include Clearance::App::Models::User
-    end
-User test example:
-    class UserTest < Test::Unit::TestCase
-      include Clearance::Test::Unit::UserTest
-    end
-h2. The migration
-The generator will also create a migration to add a "users" table and run it. If the table already exists in the database, the migration will just add fields and indexes that are missing and required by Clearance. If the migration fails, the generator will revert all changes back.
-h2. Routes
-Clearance will add these routes to your routes.rb:
-    map.resources :users, :has_one => [:password, :confirmation]
-    map.resource  :session
-    map.resources :passwords
-Please note that Clearance depends on root_url, so please make sure that it is defined to *something* in your config/routes.rb:
-    map.root :controller => 'users', :action => 'new'
-h2. Environments
-You need to define HOST constant in your environments files. In config/environments/test.rb and config/environments/development.rb it can be:
-    HOST = "localhost"
-While in config/environments/production.rb it must be the actual host your application is deployed to because the constant is used by mailers to generate URLs in emails.
-In config/environment.rb:
-    DO_NOT_REPLY = "donotreply@example.com"
-h2. The flash
-You will need to display the success, failure, and notice flash messages in your layout. We recommend creating an app/layouts/_flashes.html.erb partial similar to the _flashes partial in Suspenders:
-<pre><code><div id="flash">
-  <% flash.each do |key, value| -%>
-    <div id="flash_<%= key -%>"><%= html_escape(value) %></div>
-  <% end -%>
-</div></code></pre>
-which is then rendered inside the body tag of your application layout:
-    <%= render :partial => 'layouts/flashes' -%>
-h2. Tests
-The tests use "Shoulda":http://thoughtbot.com/projects/shoulda >= 2.9.1 and "Factory Girl":http://thoughtbot.com/projects/factory_girl >= 1.1.5.
-The generator will create a user factory in test/factories/clearance.rb unless
-you have it defined somewhere else.
 h2. Features
 If you are using Cucumber on your application Clearance comes with a feature generator:
@@ -136,118 +69,6 @@ All of the files generated should be new with the exception of the features/supp
       ...
     end
-h2. Usage: basic workflow
-Rails authentication with Clearance uses the standard approach thoughtbot and our clients have agreed upon.
-Users sign up (UsersController) using an email address and a password (User model). They get an email (ClearanceMailer) with a confirmation link to confirm sign up (ConfirmationController).
-Signed up and email confirmed users can sign in and out (SessionsController). If they forget their password, they request an email (ClearanceMailer) containing a link to change it (PasswordsController).
-h2. Usage: actions which require an authenticated user
-To protect your controllers with authentication add:
-    class ProtectedController < ApplicationController
-      before_filter :authenticate
-The filter will ensure that only authenticated users can access the controller. If someone who's not signed in tries to access a protected action:
-* the URL is stored in the session,
-* the user is redirected to sign in page, and
-* after successful authentication will be be redirected back to that URL.
-h2. Usage: signed_in?, current_user
-Clearance provides two methods that can be used in controllers, helpers, and views to check if current user is authenticated and get the actual user:
-* signed_in?
-* current_user
-    <% if signed_in? -%>
-      Hello, <%= current_user.name %>!
-    <% else -%>
-      Please <%= link_to 'Sign in', new_session_path %>
-    <% end -%>
-h2. Usage: mass assignment
-Please note that all User attributes except email, password and password_confirmation are protected from mass assignment by default. Use attr_accessible to enable it for your custom attributes.
-    class User < ActiveRecord::Base
-      include Clearance::App::Models::User
-      attr_accessible :first_name, :last_name
-    end
-h2. Usage: when bad things happen to good users
-Clearance is HTTP fluent. If someone tries to hack the URLs for passwords or confirmations actions, they will be met with a 403 Forbidden HTTP status code. Internally, the Rails app will raise a ApplicationController::Forbidden error. This is a custom error in Clearance.
-Layman's 403 Forbidden definition:
-    "The request was a legal request, but the server is refusing to respond to it.
-     Unlike a 401 Unauthorized response, authenticating will make no difference."
-h2. Hooks: return_to parameter
-To specify where to redirect a user (say you want to have a sign in form on every page and redirect the user to the same page) after he/she signs in, you can add a "return_to" parameter to the request (thanks to "Phillippe":http://www.sivarg.com/2009/01/clearance-coming-from-where-your-were.html for the tip):
-    <% form_for :session, :url => session_path(:return_to => request.request_uri) do |form| %>
-h2. Hooks: url_after_create, url_after_update, url_after_destroy
-Actions that redirect (create, update, and destroy) in Clearance controllers are customizable. If you want to redirect a user to a specific route after signing in, overwrite the "url_after_create" method in the SessionsController:
-    class SessionsController < ApplicationController
-      include Clearance::App::Controllers::SessionsController
-      private
-        def url_after_create
-          new_blog_post_path
-        end
-    end
-There are similar methods in other controllers as well:
-    UsersController#url_after_create (sign up)
-    SessionsController#url_after_create (sign in)
-    SessionsController#url_after_destroy (sign out)
-    PasswordsController#url_after_create (password request)
-    PasswordsController#url_after_update (password)
-    ConfirmationsController#url_after_create (confirmation)
-h2. Hooks: sign_user_in
-Say you want to add a last_signed_in_at attribute to your User model. You would want to update it when the User signs in.
-Clearance has a method named sign_user_in that you can overwrite with that logic. Be sure to call sign_in(user) at the end (and write tests!).
-    class ApplicationController < ActionController::Base
-      include Clearance::App::Controllers::ApplicationController
-      private
-        def sign_user_in(user)
-          # store current time to display "last signed in at" message
-          user.update_attribute(:last_signed_in_at, Time.now)
-          sign_in(user)
-        end
-    end
-h2. Write your own tests with Clearance's helpers
-sign_in_as, sign_out, should_be_signed_in_as, should_not_be_signed_in, should_deny_access, signed_in_user_context, and more helpers are available in your test suite. Look in vendor/gems/clearance/shoulda_macros for the full list.
-<pre></code>context "when signed in on GET to new" do
-  setup do
-    @user = Factory(:email_confirmed_user)
-    sign_in_as @user
-    get :new
-  end
-  should_be_signed_in_as { @user }
-end</code></pre>
 h2. Authors
 Clearance was extracted out of "Hoptoad":http://hoptoadapp.com. We merged the authentication code from two of thoughtbot's client's Rails apps. The following people have made significant contributions, suggestions, and generally improved the library. Thank you!

data/Rakefile CHANGED Viewed

@@ -51,7 +51,7 @@ task :default => ['test:all', 'test:features']
 gem_spec = Gem::Specification.new do |gem_spec|
   gem_spec.name        = "clearance"
-  gem_spec.version     = "0.4.9"
+  gem_spec.version     = "0.5.0"
   gem_spec.summary     = "Rails authentication for developers who write tests."
   gem_spec.email       = "support@thoughtbot.com"
   gem_spec.homepage    = "http://github.com/thoughtbot/clearance"

data/generators/clearance/templates/README CHANGED Viewed

@@ -40,6 +40,6 @@ In config/environment.rb:
 3. Clearance depends on root_url, so please make sure that it is defined to
 *something* in your config/routes.rb:
-    map.root :controller => 'users', :action => 'new'
+    map.root :controller => 'home'
 *******************************************************************************

data/generators/clearance_features/clearance_features_generator.rb CHANGED Viewed

@@ -3,8 +3,10 @@ class ClearanceFeaturesGenerator < Rails::Generator::Base
   def manifest
     record do |m|
       m.directory File.join("features", "step_definitions")
+      m.directory File.join("features", "support")
       ["features/step_definitions/clearance_steps.rb",
+       "features/step_definitions/factory_girl_steps.rb",
        "features/support/paths.rb",
        "features/sign_in.feature",
        "features/sign_out.feature",

data/generators/clearance_features/templates/features/password_reset.feature CHANGED Viewed

@@ -4,7 +4,7 @@ Feature: Password reset
   Should be able to reset it
     Scenario: User is not signed up
-      Given there is no user with "email@person.com"
+      Given no user exists with an email of "email@person.com"
       When I request password reset link to be sent to "email@person.com"
       Then I should see "Unknown email"
@@ -29,11 +29,3 @@ Feature: Password reset
       When I sign out
       And I sign in as "email@person.com/newpassword"
       Then I should be signed in
-    Scenario: User requests password reset without token
-      Given a user exists with an email of "user@one.com"
-      When I try to change the password of "user@one.com" without token
-      Then I should be forbidden

data/generators/clearance_features/templates/features/sign_in.feature CHANGED Viewed

@@ -2,35 +2,35 @@ Feature: Sign in
   In order to get access to protected sections of the site
   A user
   Should be able to sign in
-   Scenario User is not signed up
-      Given there is no user with "email@person.com"
+    Scenario: User is not signed up
+      Given no user exists with an email of "email@person.com"
       When I go to the sign in page
       And I sign in as "email@person.com/password"
       Then I should see "Bad email or password"
       And I should not be signed in
     Scenario: User is not confirmed
       Given I signed up with "email@person.com/password"
       When I go to the sign in page
       And I sign in as "email@person.com/password"
       Then I should see "User has not confirmed email"
       And I should not be signed in
    Scenario: User enters wrong password
       Given I am signed up and confirmed as "email@person.com/password"
       When I go to the sign in page
       And I sign in as "email@person.com/wrongpassword"
       Then I should see "Bad email or password"
       And I should not be signed in
    Scenario: User signs in successfully
       Given I am signed up and confirmed as "email@person.com/password"
       When I go to the sign in page
       And I sign in as "email@person.com/password"
       Then I should see "Signed in successfully"
       And I should be signed in
    Scenario: User signs in and checks "remember me"
       Given I am signed up and confirmed as "email@person.com/password"
       When I go to the sign in page

data/generators/clearance_features/templates/features/step_definitions/clearance_steps.rb CHANGED Viewed

@@ -6,13 +6,7 @@ end
 # Database
-Factory.factories.each do |name, factory|
-  Given /^an? #{name} exists with an? (.*) of "([^"]*)"$/ do |attr, value|
-    Factory(name, attr.gsub(' ', '_') => value)
-  end
-end
-Given /^there is no user with "(.*)"$/ do |email|
+Given /^no user exists with an email of "(.*)"$/ do |email|
   assert_nil User.find_by_email(email)
 end

data/generators/clearance_features/templates/features/step_definitions/factory_girl_steps.rb ADDED Viewed

@@ -0,0 +1,5 @@
+Factory.factories.each do |name, factory|
+  Given /^an? #{name} exists with an? (.*) of "([^"]*)"$/ do |attr, value|
+    Factory(name, attr.gsub(' ', '_') => value)
+  end
+end

data/lib/clearance/app/controllers/passwords_controller.rb CHANGED Viewed

@@ -6,14 +6,14 @@ module Clearance
         def self.included(controller)
           controller.send(:include, Actions)
           controller.send(:include, PrivateMethods)
           controller.class_eval do
             before_filter :forbid_missing_token,     :only => [:edit, :update]
             before_filter :forbid_non_existant_user, :only => [:edit, :update]
             filter_parameter_logging :password, :password_confirmation
           end
         end
         module Actions
           def new
           end
@@ -38,8 +38,9 @@ module Clearance
           def update
             @user = User.find_by_id_and_token(params[:user_id], params[:token])
-            if @user.update_password(params[:user])
+            if @user.update_password(params[:user][:password],
+                                     params[:user][:password_confirmation])
               sign_user_in(@user)
               redirect_to url_after_update
             else
@@ -47,16 +48,16 @@ module Clearance
             end
           end
         end
         module PrivateMethods
           private
           def forbid_missing_token
             if params[:token].blank?
               raise ActionController::Forbidden, "missing token"
             end
           end
           def forbid_non_existant_user
             unless User.find_by_id_and_token(params[:user_id], params[:token])
               raise ActionController::Forbidden, "non-existant user"
@@ -66,12 +67,12 @@ module Clearance
           def url_after_create
             new_session_url
           end
           def url_after_update
             root_url
           end
         end
       end
     end
   end

data/lib/clearance/app/controllers/sessions_controller.rb CHANGED Viewed

@@ -19,7 +19,7 @@ module Clearance
                                       params[:session][:password])
             if @user.nil?
               flash.now[:notice] = "Bad email or password."
-              render :action => :new
+              render :action => :new, :status => :unauthorized
             else
               if @user.email_confirmed?
                 remember(@user) if remember?

data/lib/clearance/app/models/user.rb CHANGED Viewed

@@ -4,11 +4,11 @@ module Clearance
   module App
     module Models
       module User
         def self.included(model)
           model.extend ClassMethods
           model.send(:include, InstanceMethods)
           model.class_eval do
             attr_accessible :email, :password, :password_confirmation
             attr_accessor :password, :password_confirmation
@@ -22,7 +22,7 @@ module Clearance
             before_save :initialize_salt, :encrypt_password, :initialize_token
           end
         end
         module InstanceMethods
           def authenticated?(password)
             encrypted_password == encrypt(password)
@@ -37,13 +37,7 @@ module Clearance
           end
           def remember_me!
-            remember_me_until 2.weeks.from_now.utc
-          end
-          def remember_me_until(time)
-            self.token_expires_at = time
-            self.token            = encrypt("--#{token_expires_at}--#{password}--")
-            save(false)
+            remember_me_until! 2.weeks.from_now.utc
           end
           def forget_me!
@@ -62,15 +56,15 @@ module Clearance
             save(false)
           end
-          def update_password(attrs)
-            clear_token
-            returning update_attributes(attrs) do |r|
-              reload unless r
-            end
+          def update_password(pass, pass_confirmation)
+            self.password              = pass
+            self.password_confirmation = pass_confirmation
+            clear_token if valid?
+            save
           end
           protected
           def generate_hash(string)
             Digest::SHA1.hexdigest(string)
           end
@@ -85,17 +79,17 @@ module Clearance
             return if password.blank?
             self.encrypted_password = encrypt(password)
           end
           def generate_token
             self.token = encrypt("--#{Time.now.utc.to_s}--#{password}--")
-            self.token_expires_at = nil
+            self.token_expires_at = nil
           end
           def clear_token
             self.token            = nil
-            self.token_expires_at = nil
+            self.token_expires_at = nil
           end
           def initialize_token
             generate_token if new_record?
           end
@@ -103,15 +97,21 @@ module Clearance
           def password_required?
             encrypted_password.blank? || !password.blank?
           end
+          def remember_me_until!(time)
+            self.token_expires_at = time
+            self.token            = encrypt("--#{token_expires_at}--#{password}--")
+            save(false)
+          end
         end
         module ClassMethods
           def authenticate(email, password)
             user = find(:first, :conditions => ['email = ?', email.to_s])
             user && user.authenticated?(password) ? user : nil
           end
         end
       end
     end
   end

data/lib/clearance/test/functional/sessions_controller_test.rb CHANGED Viewed

@@ -11,7 +11,7 @@ module Clearance
             context "on GET to /sessions/new" do
               setup { get :new }
-              should_respond_with :success
+              should_respond_with    :success
               should_render_template :new
               should_not_set_the_flash
@@ -30,12 +30,12 @@ module Clearance
                 end
                 should_deny_access(:flash => /User has not confirmed email. Confirmation email will be resent./i)
+                should_respond_with :unauthorized
                 should "send the confirmation email" do
                   assert_not_nil email = ActionMailer::Base.deliveries[0]
                   assert_match /account confirmation/i, email.subject
                 end
               end
             end
@@ -65,6 +65,7 @@ module Clearance
                 end
                 should_set_the_flash_to /bad/i
+                should_respond_with    :unauthorized
                 should_render_template :new
                 should_not_be_signed_in
               end
@@ -100,6 +101,7 @@ module Clearance
                 end
                 should_set_the_flash_to /bad/i
+                should_respond_with    :unauthorized
                 should_render_template :new
                 should_return_from_session :user_id, "nil"

data/lib/clearance/test/unit/user_test.rb CHANGED Viewed

@@ -2,34 +2,38 @@ module Clearance
   module Test
     module Unit
       module UserTest
         def self.included(unit_test)
           unit_test.class_eval do
             should_not_allow_mass_assignment_of :email_confirmed,
               :salt, :encrypted_password,
               :token, :token_expires_at
             # signing up
             context "When signing up" do
-              should_validate_presence_of      :email, :password
-              should_allow_values_for          :email, "foo@example.com"
-              should_not_allow_values_for      :email, "foo"
-              should_not_allow_values_for      :email, "example.com"
-              should_validate_confirmation_of  :password,
-                :factory => :user
+              should_validate_presence_of :email, :password
+              should_allow_values_for     :email, "foo@example.com"
+              should_not_allow_values_for :email, "foo"
+              should_not_allow_values_for :email, "example.com"
+              should "require password confirmation on create" do
+                user = Factory.build(:user, :password              => 'blah',
+                                            :password_confirmation => 'boogidy')
+                assert !user.save
+                assert user.errors.on(:password)
+              end
               should "initialize salt" do
                 assert_not_nil Factory(:user).salt
               end
-              should "initialize token witout expiry date" do
+              should "initialize token without expiry date" do
                 assert_not_nil Factory(:user).token
-                assert_nil Factory(:user).token_expires_at
+                assert_nil     Factory(:user).token_expires_at
               end
               context "encrypt password" do
                 setup do
                   @salt = "salt"
@@ -42,26 +46,24 @@ module Clearance
                   @expected = Digest::SHA1.hexdigest("--#{@salt}--#{@password}--")
                 end
-                should "create an encrypted password using SHA512 encryption" do
-                  assert_equal     @expected, @user.encrypted_password
-                  assert_not_equal @password, @user.encrypted_password
+                should "create an encrypted password using SHA1 encryption" do
+                  assert_equal @expected, @user.encrypted_password
                 end
               end
               should "store email in exact case" do
                 user = Factory(:user, :email => "John.Doe@example.com")
                 assert_equal "John.Doe@example.com", user.email
               end
             end
             context "When multiple users have signed up" do
               setup { @user = Factory(:user) }
               should_validate_uniqueness_of :email
             end
             # confirming email
             context "A user without email confirmation" do
               setup do
                 @user = Factory(:user)
@@ -77,34 +79,34 @@ module Clearance
                 should "have confirmed their email" do
                   assert @user.email_confirmed?
                 end
                 should "reset token" do
                   assert_nil @user.token
                 end
               end
             end
             # authenticating
             context "A user" do
               setup do
                 @user     = Factory(:user)
                 @password = @user.password
               end
               should "authenticate with good credentials" do
                 assert User.authenticate(@user.email, @password)
                 assert @user.authenticated?(@password)
               end
               should "not authenticate with bad credentials" do
-                assert ! User.authenticate(@user.email, 'horribly_wrong_password')
-                assert ! @user.authenticated?('horribly_wrong_password')
+                assert ! User.authenticate(@user.email, 'bad_password')
+                assert ! @user.authenticated?('bad_password')
               end
             end
             # remember me
             context "When authenticating with remember_me!" do
               setup do
                 @user = Factory(:email_confirmed_user)
@@ -115,9 +117,9 @@ module Clearance
               should "set the remember token and expiration date" do
                 assert_not_equal @token, @user.token
-                assert_not_nil @user.token_expires_at
+                assert_not_nil   @user.token_expires_at
               end
               should "remember user when token expires in the future" do
                 @user.update_attribute :token_expires_at,
                   2.weeks.from_now.utc
@@ -129,14 +131,14 @@ module Clearance
                   2.weeks.ago.utc
                 assert ! @user.remember?
               end
               should "not remember user when token expiry date is not set" do
                 @user.update_attribute :token_expires_at, nil
                 assert ! @user.remember?
-              end
+              end
               # logging out
               context "forget_me!" do
                 setup { @user.forget_me! }
@@ -150,75 +152,81 @@ module Clearance
                 end
               end
             end
             # updating password
             context "An email confirmed user" do
-              setup { @user = Factory(:email_confirmed_user) }
+              setup do
+                @user = Factory(:email_confirmed_user)
+                @old_encrypted_password = @user.encrypted_password
+              end
-              context "who changes and confirms password" do
+              context "who updates password with confirmation" do
                 setup do
-                  @user.password              = "new_password"
-                  @user.password_confirmation = "new_password"
-                  @user.save
+                  @user.update_password("new_password", "new_password")
                 end
-                should_change "@user.encrypted_password"
+                should "change encrypted password" do
+                  assert_not_equal @user.encrypted_password,
+                                   @old_encrypted_password
+                end
               end
             end
             # recovering forgotten password
             context "An email confirmed user" do
               setup do
-                @user = Factory(:user)
+                @user = Factory(:email_confirmed_user)
+                @old_encrypted_password = @user.encrypted_password
                 @user.confirm_email!
               end
-              context "who forgets password" do
+              context "who requests password reminder" do
                 setup do
                   assert_nil @user.token
-                  @user.forgot_password!
+                  @user.forgot_password!
                 end
                 should "generate token" do
                   assert_not_nil @user.token
                 end
                 context "and then updates password" do
-                  context 'with a valid new password and confirmation' do
+                  context 'with confirmation' do
                     setup do
-                      @user.update_password(
-                        :password              => "new_password",
-                        :password_confirmation => "new_password"
-                      )
+                      @user.update_password("new_password", "new_password")
                     end
-                    should_change "@user.encrypted_password"
+                    should "change encrypted password" do
+                      assert_not_equal @user.encrypted_password,
+                                       @old_encrypted_password
+                    end
                     should "clear token" do
                       assert_nil @user.token
-                    end
+                    end
                   end
-                  context 'with a password without a confirmation' do
+                  context 'without confirmation' do
                     setup do
-                      @user.update_password(
-                        :password              => "new_password",
-                        :password_confirmation => ""
-                      )
-                    end
+                      @user.update_password("new_password", "")
+                    end
+                    should "not change encrypted password" do
+                      assert_equal @user.encrypted_password,
+                                   @old_encrypted_password
+                    end
                     should "not clear token" do
                       assert_not_nil @user.token
-                    end
+                    end
                   end
-                end
+                end
               end
             end
           end
         end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: thoughtbot-clearance
 version: !ruby/object:Gem::Version
-  version: 0.4.9
+  version: 0.5.0
 platform: ruby
 authors:
 - thoughtbot, inc.
@@ -21,7 +21,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2009-02-19 21:00:00 -08:00
+date: 2009-02-26 21:00:00 -08:00
 default_executable:
 dependencies: []
@@ -95,6 +95,7 @@ files:
 - generators/clearance_features/templates/features/sign_up.feature
 - generators/clearance_features/templates/features/step_definitions
 - generators/clearance_features/templates/features/step_definitions/clearance_steps.rb
+- generators/clearance_features/templates/features/step_definitions/factory_girl_steps.rb
 - generators/clearance_features/templates/features/support
 - generators/clearance_features/templates/features/support/paths.rb
 - generators/clearance_features/USAGE