tkh_authentication 0.0.6 → 0.0.7

data/CHANGELOG.md

@@ -2,13 +2,16 @@
 
 
 
+## 0.0.7
+
+* Safe redirect to root if host app did not set up the root route
+
 
 ## 0.0.6
 
 * Redirect users to target page upon logging in if they had been interrupted by authenticate or authenticate_with_admin filters
 
 
-
 ## 0.0.5
 
 * Users controller has both an authenticate and an authenticate_with_admin before_filters

data/app/controllers/sessions_controller.rb

@@ -11,7 +11,7 @@ class SessionsController < ApplicationController
       else
         cookies[:auth_token] = user.auth_token
       end
-      redirect_to (session[:target_page] || root_url), notice: t('authentication.login_confirmation')
+      redirect_to (session[:target_page] || safe_root_url), notice: t('authentication.login_confirmation')
       session[:target_page] = nil
     else
       flash.now.alert = t('authentication.warning.email_or_password_invalid')
@@ -21,7 +21,7 @@ class SessionsController < ApplicationController
 
   def destroy
     cookies.delete(:auth_token)
-    redirect_to root_url, notice: t('authentication.logout_confirmation')
+    redirect_to safe_root_url, notice: t('authentication.logout_confirmation')
   end
 
 end

data/app/controllers/users_controller.rb

@@ -16,7 +16,7 @@ class UsersController < ApplicationController
     @user = User.new(params[:user])
     if @user.save
       cookies[:auth_token] = @user.auth_token
-      redirect_to session[:target_page] || root_url, notice: t('authentication.signup_confirmation')
+      redirect_to session[:target_page] || safe_root_url, notice: t('authentication.signup_confirmation')
       session[:target_page] = nil
     else
       render "new"

data/app/models/user.rb

@@ -5,6 +5,7 @@ class User < ActiveRecord::Base
   # not allowed are :admin:boolean, :auth_token:string, password_reset_token:string, password_reset_sent_at:datetime
   attr_accessible :email, :password, :password_confirmation, :first_name, :last_name
   
+  validates_presence_of :email
   validates_uniqueness_of :email, :case_sensitive => false
   validates_presence_of :password, on: :create
   validates_presence_of :first_name

data/lib/tkh_authentication/tkh_authentication_action_controller_extension.rb

@@ -18,8 +18,14 @@ module TkhAuthenticationActionControllerExtension
     def authenticate_with_admin
       unless current_user && current_user.admin?
         session[:target_page] = request.url if session[:target_page].nil?
-        redirect_to root_url, alert: t('authentication.warning.restricted_access')
+        redirect_to safe_root_url, alert: t('authentication.warning.restricted_access')
       end
     end
+    
+    private
+    
+    def safe_root_url
+      defined?(root_url) ? root_url : '/'
+    end
   end
 end

data/lib/tkh_authentication/version.rb

@@ -1,3 +1,3 @@
 module TkhAuthentication
-  VERSION = "0.0.6"
+  VERSION = "0.0.7"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: tkh_authentication
 version: !ruby/object:Gem::Version
-  version: 0.0.6
+  version: 0.0.7
   prerelease: 
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-08-01 00:00:00.000000000 Z
+date: 2012-08-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -171,7 +171,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: -1846270554673356204
+      hash: 4227862360547794696
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
@@ -180,7 +180,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: -1846270554673356204
+      hash: 4227862360547794696
 requirements: []
 rubyforge_project: 
 rubygems_version: 1.8.23