wordjelly-auth 0.0.3 → 0.0.4

data/spec/dummy/spec/factories/tests.rb

@@ -0,0 +1,6 @@
+FactoryGirl.define do
+  factory :test do
+    price 1.5
+    name "MyText"
+  end
+end

data/spec/dummy/spec/fixtures/new/send_notification

@@ -0,0 +1,3 @@
+New#send_notification
+
+Hi, find me in app/views/new/send_notification

data/spec/dummy/spec/helpers/activity_helper_spec.rb

@@ -0,0 +1,15 @@
+require 'rails_helper'
+
+# Specs in this file have access to a helper object that includes
+# the ActivityHelper. For example:
+#
+# describe ActivityHelper do
+#   describe "string concat" do
+#     it "concats two strings with spaces" do
+#       expect(helper.concat_strings("this","that")).to eq("this that")
+#     end
+#   end
+# end
+RSpec.describe ActivityHelper, type: :helper do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/helpers/tests_helper_spec.rb

@@ -0,0 +1,15 @@
+require 'rails_helper'
+
+# Specs in this file have access to a helper object that includes
+# the TestsHelper. For example:
+#
+# describe TestsHelper do
+#   describe "string concat" do
+#     it "concats two strings with spaces" do
+#       expect(helper.concat_strings("this","that")).to eq("this that")
+#     end
+#   end
+# end
+RSpec.describe TestsHelper, type: :helper do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/mailers/new_spec.rb

@@ -0,0 +1,18 @@
+require "rails_helper"
+
+RSpec.describe New, type: :mailer do
+  describe "send_notification" do
+    let(:mail) { New.send_notification }
+
+    it "renders the headers" do
+      expect(mail.subject).to eq("Send notification")
+      expect(mail.to).to eq(["to@example.org"])
+      expect(mail.from).to eq(["from@example.com"])
+    end
+
+    it "renders the body" do
+      expect(mail.body.encoded).to match("Hi")
+    end
+  end
+
+end

data/spec/dummy/spec/mailers/previews/new_preview.rb

@@ -0,0 +1,13 @@
+# Preview all emails at http://localhost:3000/rails/mailers/new
+class NewPreview < ActionMailer::Preview
+
+  # Preview this email at http://localhost:3000/rails/mailers/new/send_notification
+  def notification
+  	u = User.new
+  	u.email = "bhargav.r.raut@gmail.com"
+  	n = Noti.new
+  	n.email_subject = "notification subject set from preview."
+    New.notification(u,n)
+  end
+
+end

data/spec/dummy/spec/models/test_spec.rb

@@ -0,0 +1,5 @@
+require 'rails_helper'
+
+RSpec.describe Test, type: :model do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/requests/tests_spec.rb

@@ -0,0 +1,10 @@
+require 'rails_helper'
+
+RSpec.describe "Tests", type: :request do
+  describe "GET /tests" do
+    it "works! (now write some real specs)" do
+      get tests_path
+      expect(response).to have_http_status(200)
+    end
+  end
+end

data/spec/dummy/spec/routing/tests_routing_spec.rb

@@ -0,0 +1,39 @@
+require "rails_helper"
+
+RSpec.describe TestsController, type: :routing do
+  describe "routing" do
+
+    it "routes to #index" do
+      expect(:get => "/tests").to route_to("tests#index")
+    end
+
+    it "routes to #new" do
+      expect(:get => "/tests/new").to route_to("tests#new")
+    end
+
+    it "routes to #show" do
+      expect(:get => "/tests/1").to route_to("tests#show", :id => "1")
+    end
+
+    it "routes to #edit" do
+      expect(:get => "/tests/1/edit").to route_to("tests#edit", :id => "1")
+    end
+
+    it "routes to #create" do
+      expect(:post => "/tests").to route_to("tests#create")
+    end
+
+    it "routes to #update via PUT" do
+      expect(:put => "/tests/1").to route_to("tests#update", :id => "1")
+    end
+
+    it "routes to #update via PATCH" do
+      expect(:patch => "/tests/1").to route_to("tests#update", :id => "1")
+    end
+
+    it "routes to #destroy" do
+      expect(:delete => "/tests/1").to route_to("tests#destroy", :id => "1")
+    end
+
+  end
+end

data/spec/dummy/spec/views/tests/edit.html.erb_spec.rb

@@ -0,0 +1,21 @@
+require 'rails_helper'
+
+RSpec.describe "tests/edit", type: :view do
+  before(:each) do
+    @test = assign(:test, Test.create!(
+      :price => 1.5,
+      :name => "MyText"
+    ))
+  end
+
+  it "renders the edit test form" do
+    render
+
+    assert_select "form[action=?][method=?]", test_path(@test), "post" do
+
+      assert_select "input#test_price[name=?]", "test[price]"
+
+      assert_select "textarea#test_name[name=?]", "test[name]"
+    end
+  end
+end

data/spec/dummy/spec/views/tests/index.html.erb_spec.rb

@@ -0,0 +1,22 @@
+require 'rails_helper'
+
+RSpec.describe "tests/index", type: :view do
+  before(:each) do
+    assign(:tests, [
+      Test.create!(
+        :price => 2.5,
+        :name => "MyText"
+      ),
+      Test.create!(
+        :price => 2.5,
+        :name => "MyText"
+      )
+    ])
+  end
+
+  it "renders a list of tests" do
+    render
+    assert_select "tr>td", :text => 2.5.to_s, :count => 2
+    assert_select "tr>td", :text => "MyText".to_s, :count => 2
+  end
+end

data/spec/dummy/spec/views/tests/new.html.erb_spec.rb

@@ -0,0 +1,21 @@
+require 'rails_helper'
+
+RSpec.describe "tests/new", type: :view do
+  before(:each) do
+    assign(:test, Test.new(
+      :price => 1.5,
+      :name => "MyText"
+    ))
+  end
+
+  it "renders new test form" do
+    render
+
+    assert_select "form[action=?][method=?]", tests_path, "post" do
+
+      assert_select "input#test_price[name=?]", "test[price]"
+
+      assert_select "textarea#test_name[name=?]", "test[name]"
+    end
+  end
+end

data/spec/dummy/spec/views/tests/show.html.erb_spec.rb

@@ -0,0 +1,16 @@
+require 'rails_helper'
+
+RSpec.describe "tests/show", type: :view do
+  before(:each) do
+    @test = assign(:test, Test.create!(
+      :price => 2.5,
+      :name => "MyText"
+    ))
+  end
+
+  it "renders attributes in <p>" do
+    render
+    expect(rendered).to match(/2.5/)
+    expect(rendered).to match(/MyText/)
+  end
+end

data/spec/dummy/test/controllers/api/v1/token_auth_controller_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class Api::V1::TokenAuthControllerTest < ActionController::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/spec/dummy/test/controllers/home_controller_test.rb

@@ -0,0 +1,9 @@
+require 'test_helper'
+
+class HomeControllerTest < ActionController::TestCase
+  test "should get index" do
+    get :index
+    assert_response :success
+  end
+
+end

data/spec/dummy/test/controllers/oauth_tests_controller_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class OauthTestsControllerTest < ActionController::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/spec/dummy/test/fixtures/oauth_tests.yml

@@ -0,0 +1,11 @@
+# Read about fixtures at http://api.rubyonrails.org/classes/ActiveRecord/FixtureSet.html
+
+# This model initially had no columns defined.  If you add columns to the
+# model remove the '{}' from the fixture names and add the columns immediately
+# below each fixture, per the syntax in the comments below
+#
+one: {}
+# column: value
+#
+two: {}
+#  column: value

data/spec/dummy/test/fixtures/users.yml

@@ -0,0 +1,7 @@
+# Read about fixtures at http://api.rubyonrails.org/classes/ActiveRecord/FixtureSet.html
+
+one:
+  name: MyString
+
+two:
+  name: MyString

data/spec/dummy/test/models/oauth_test_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class OauthTestTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/spec/dummy/test/models/user_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class UserTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/spec/factories/client_factory.rb

@@ -0,0 +1,77 @@
+FactoryGirl.define do
+
+  factory :product, class: Shopping::Product do 
+    name {Faker::Food.ingredient}
+    price {10.00}
+  end
+
+
+  factory :cart_item, class: Shopping::CartItem do
+    product_id {Shopping::Product.first.id.to_s}
+    quantity 1
+    discount_code {Faker::App.name}
+    price {10.00}
+    name {Faker::Food.ingredient}
+    accept_order_at_percentage_of_price {0.2}
+  end
+
+  factory :client, class: Auth::Client do
+    redirect_urls ["http://www.google.com"]
+    user_id BSON::ObjectId.new
+  end
+
+  factory :user_mobile, class: User do 
+    additional_login_param  {Faker::Number.between(9822028511, 9922028511).to_s}
+    password  'password'
+    password_confirmation  'password'
+  end
+
+  factory :user_mobile_invalid, class: User do 
+    additional_login_param  {Faker::Name.name}
+    password  'password'
+    password_confirmation  'password'
+  end
+
+  factory :user_mobile_confirmed, class: User do
+    additional_login_param  {Faker::Number.between(9822028511, 9922028511).to_s}
+    password  'password'
+    password_confirmation  'password'
+    additional_login_param_status 2
+  end
+
+
+  factory :user, class: User do 
+  	email  { Faker::Internet.email }
+    password  'password'
+    password_confirmation  'password'
+  end
+
+
+  factory :user_confirmed, class: User do
+    email  { Faker::Internet.email }
+    password  'password'
+    password_confirmation  'password'
+    confirmed_at Time.now
+  end
+
+
+  factory :user_update, class: User do 
+  	email {Faker::Internet.email}
+  	current_password 'password'
+  end
+
+  factory :admin, class: User do 
+    email  { Faker::Internet.email }
+    password  'password'
+    password_confirmation  'password'
+  end
+
+
+  factory :admin_confirmed, class: Admin do
+    email  { Faker::Internet.email }
+    password  'password'
+    password_confirmation  'password'
+    confirmed_at Time.now
+  end
+
+end

data/spec/features/additional_login_param_feature_spec.rb

@@ -0,0 +1,63 @@
+#additional_login_param_feature_spec.rb
+require "rails_helper"
+
+RSpec.feature "additional login param + its redirect", :otp_feature => true, :type => :feature, :js => true  do
+
+  before(:each) do 
+      Auth.configuration.stub_otp_api_calls
+ 	    ActionController::Base.allow_forgery_protection = true
+        User.delete_all
+        Auth::Client.delete_all
+        @u = User.new(attributes_for(:user_confirmed))
+        @u.save
+        @c = Auth::Client.new(:resource_id => @u.id, :api_key => "test")
+        @c.redirect_urls = ["http://www.google.com"]
+        @c.app_ids << "test_app_id"
+        @c.versioned_create
+        @u.client_authentication["test_app_id"] = "test_es"
+        @u.save
+        @ap_key = @c.api_key
+  end
+
+  scenario " -- signs up with otp system -- " do 
+
+            ActionController::Base.allow_forgery_protection = false
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path()
+            
+            ##visit the sign up page.
+            click_link("Sign In")
+            wait_for_ajax
+            ##modal should open.
+            ##then 
+            ## SET RECAPTCHA TO FALSE SO THAT IT DOESNT INTERFERE WITH THE REQUEST RESPONSE.
+            
+            find("#show_sign_up").click
+            #puts "----------------VISITED NEW USER REGISTRATION--------------"
+            fill_in('Email', :with => '9822028511')
+            fill_in('Password', :with => 'password')
+            fill_in('Password confirmation', :with => 'password')
+            wait_for_ajax
+            find("#submit").trigger("click")
+            wait_for_ajax 
+
+            @last_user_created = User.order_by(:confirmation_sent_at => 'desc').first
+            old_session_id = $redis.hget(@last_user_created.id.to_s + "_two_factor_sms_otp","otp_session_id")
+
+            fill_in('user_otp', :with => old_session_id)
+            find('#otp_submit').click
+            wait_for_ajax
+            #expect(page).to have_text("Verifying your OTP")
+            wait_for_ajax
+            ##search for the user account with additio
+            u = User.where(:additional_login_param => '9822028511', :additional_login_param_status => 2).first
+            
+            expect(u).not_to be_nil
+
+
+
+  end
+
+  
+end

data/spec/features/extension_spec.rb

@@ -0,0 +1,680 @@
+require "rails_helper"
+
+RSpec.feature "", :type => :feature, :js => true  do
+
+  before(:each) do 
+ 	    ActionController::Base.allow_forgery_protection = true
+        User.delete_all
+        Auth::Client.delete_all
+        @u = User.new(attributes_for(:user_confirmed))
+        @u.save
+        @c = Auth::Client.new(:resource_id => @u.id, :api_key => "test")
+        @c.redirect_urls = ["http://www.google.com"]
+        @c.app_ids << "test_app_id"
+        @c.versioned_create
+        @u.client_authentication["test_app_id"] = "test_es"
+        @u.save
+        @ap_key = @c.api_key
+  end
+    
+  context " -- oauth tests -- " do 
+
+    context " -- google oauth test -- ", google: true do 
+
+        before(:all) do 
+            @oauth_provider = :google_oauth2
+        end
+
+
+        scenario " -- it can sign in with oauth2 -- ", js: true do 
+       
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            l = find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']")
+            l.click
+            #find(:xpath, "//a[@href='/authenticate/omniauth/users/#{@oauth_provider.to_s}']").click
+        
+
+
+            expect(page).to have_content("Sign Out")
+          
+        end
+
+
+        scenario " -- creates new user first time with oauth, on subsequent sign in , will update access_token and expiration -- ", js: true do 
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+    
+
+            click_link "Sign Out"
+
+            ###
+            ###
+            ###
+            ### TRY TO SIGN IN AGAIN USING SAME OAUTH.
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider,'new_token',50000)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+    
+            expect(page).to have_content("Sign Out")
+
+            u = User.where(:email => "rrphotosoft@gmail.com").first
+            expect(u.identities[0]["access_token"]).to eql('new_token')
+            expect(u.identities[0]["token_expires_at"]).to eql(50000)
+
+        end
+
+
+        scenario "visit sign_in with redirect_url + valid_api_key => visit sign_up => create account pending confirmation => visit confirmation url => then sign in again => get redirected to the redirection url with es and authentication_token.", js: true do
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path({:redirect_url => "http://www.google.com", :api_key => @ap_key, :current_app_id => "test_app_id"})
+
+            
+            ##visit the sign up page.
+            click_link("Sign In")
+            
+            wait_for_ajax
+            
+            find("#show_sign_up").click
+            #puts "----------------VISITED NEW USER REGISTRATION--------------"
+            fill_in('Email', :with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            fill_in('Password confirmation', :with => 'password')
+            wait_for_ajax
+            find("#submit").trigger("click")
+            wait_for_ajax
+
+            
+
+
+
+            ##now visit he confirmation url.
+            u = User.where(:email => 'retard@gmail.com').first
+            confirmation_token = u.confirmation_token
+            visit user_confirmation_path({:confirmation_token => confirmation_token})
+            
+            u.reload
+            
+            click_link("Sign In")
+            wait_for_ajax
+
+            #puts u.attributes.to_s
+            puts " ----------------- trying to sign in with new user ------------------------------"
+            fill_in('Email',:with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            find("#submit").trigger("click")
+            sleep(5)
+            ##should redirect to the redirect url.
+            expected_es = u.client_authentication["test_app_id"]
+            expect(current_url =~ /google/).to be_truthy
+                        
+        end
+
+
+        ##with this scenario will see error in console< that is expected>
+        scenario "any error in omniauth -> goes to omniauth error page", js: true do 
+
+            OmniAuth.config.test_mode = true
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider,nil,nil,"simulate_error")
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            expect(page).to have_content("error")
+
+        end
+
+
+
+        ##THIS IS SIMULATED BY FIRST CREATING A NEW OAUTH USER.
+        ##THEN WE SET ITS VERSION TO 0
+        ##AFTER THAT WE GO AGAIN TO OAUTH AND TRY TO SIGN IN.
+        ##SINCE VERSION IS 0, MONGOID VERSIONED ATOMIC UPDATE, WILL FAIL
+        ##THIS WILL LEAD TO A FAILURE OF THE UPDATE OF ACCESS_TOKENA AND EXPIRES_AT.
+        scenario "failure to update access_token and expires_at goes to omniauth error page, with appropriate error message ", js: true do 
+                
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            click_link("Sign Out")
+
+            #u = User.where(:email => "rrphotosoft@gmail.com").first
+            #u.version = 0
+            #u.save
+            
+            User.class_eval do 
+                after_save :set_op_success_to_false
+                def set_op_success_to_false
+                    self.op_success = false
+                end
+            end
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click                
+
+           
+            expect(page).to have_content("Failed to update the acceess token and token expires at")
+
+            
+        end
+
+
+        ##try to simulate by creating a after_create callback which will delete identities, this will make it feel like the create failed, and this will lead to a failure fo the create.
+        scenario "failure to create new oauth user, goes to omniauth error page, with error message ", js: true do 
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            User.class_eval do 
+                after_save :set_op_success_to_false
+                def set_op_success_to_false
+                   
+                    self.op_success = false
+                end
+            end
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            expect(page).to have_content("Failed to create new identity")
+
+           
+
+        end
+
+
+        ##THIS CAN BE SIMULATED BY CALLING CONFIRM AFTER_SAVE
+        ##SIGN IN WILL FAIL IF , WE UNSET THE PASSWORD, POST_SAVE
+        scenario "failure to sign in resource after creating or updating it, will lead to appropriate error", js: true do
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+           
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            User.class_eval do 
+                before_save :remove_confirmed_at
+                def remove_confirmed_at
+                    self.confirmed_at = nil
+                end
+            end
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            ##THIS HAPPENS BECAUSE WE TRY TO SIGN IN AN UNCONFIRMED USER, AND SO IT WILL GIVE THAT AS THE ERROR, AND AT THE SAME TIME REDIRECT TO THE AFTER_SIGN_IN_PATH.
+            expect(page).to have_content("You have to confirm your email address before continuing.")
+            expect(page).to have_content("You need to Sign in to continue.")           
+        end
+
+
+        scenario "failure to provide oauth resource, goes to omniauth error page, with no_resource error message", js: true do 
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+            User.skip_callback(:save, :before, :remove_confirmed_at)
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+            Rails.application.env_config["omniauth.model"] = nil
+            mock_auth_hash(@oauth_provider)
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            ##THIS HAPPENS BECAUSE WE TRY TO SIGN IN AN UNCONFIRMED USER, AND SO IT WILL GIVE THAT AS THE ERROR, AND AT THE SAME TIME REDIRECT TO THE AFTER_SIGN_IN_PATH.
+            expect(page).to have_content("No resource was specified in the omniauth callback request.")
+
+
+        end
+
+    end
+
+
+    context " -- facebook oauth test -- ", facebook: true do 
+
+        before(:all) do 
+            @oauth_provider = :facebook
+        end
+
+        scenario " -- it can sign in with oauth2 -- ", js: true do 
+       
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+            find(:xpath, "//a[@href='/authenticate/omniauth/users/#{@oauth_provider.to_s}']").click
+    
+            expect(page).to have_content("Sign Out")
+          
+        end
+
+
+        scenario " -- creates new user first time with oauth, on subsequent sign in , will update access_token and expiration -- ", js: true do 
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+            find(:xpath, "//a[@href='/authenticate/omniauth/users/#{@oauth_provider.to_s}']").click
+    
+
+            click_link "Sign Out"
+
+            ###
+            ###
+            ###
+            ### TRY TO SIGN IN AGAIN USING SAME OAUTH.
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider,'new_token',50000)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+            find(:xpath, "//a[@href='/authenticate/omniauth/users/#{@oauth_provider.to_s}']").click
+    
+            expect(page).to have_content("Sign Out")
+
+            u = User.where(:email => "rrphotosoft@gmail.com").first
+            expect(u.identities[0]["access_token"]).to eql('new_token')
+            expect(u.identities[0]["token_expires_at"]).to eql(50000)
+
+        end
+
+
+        scenario "visit sign_in with redirect_url + valid_api_key => visit sign_up => create account pending confirmation => visit confirmation url => then sign in again => get redirected to the redirection url with es and authentication_token.", js: true do
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path({:redirect_url => "http://www.google.com", :api_key => @ap_key, :current_app_id => "test_app_id"})
+
+            puts "----------------FINISHED NEW USER SESSION PATH----------------"
+            ##visit the sign up page.
+            click_link("Sign In")
+            wait_for_ajax
+            ##modal should open.
+            ##then 
+            ## SET RECAPTCHA TO FALSE SO THAT IT DOESNT INTERFERE WITH THE REQUEST RESPONSE.
+            
+            find("#show_sign_up").click
+            #puts "----------------VISITED NEW USER REGISTRATION--------------"
+            fill_in('Email', :with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            fill_in('Password confirmation', :with => 'password')
+            wait_for_ajax
+            find("#submit").trigger("click")
+            wait_for_ajax
+
+            
+
+
+
+            ##now visit he confirmation url.
+            u = User.where(:email => 'retard@gmail.com').first
+            confirmation_token = u.confirmation_token
+            visit user_confirmation_path({:confirmation_token => confirmation_token})
+            
+            u.reload
+            
+            click_link("Sign In")
+            wait_for_ajax
+
+            #puts u.attributes.to_s
+            puts " ----------------- trying to sign in with new user ------------------------------"
+            fill_in('Email',:with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            find("#submit").trigger("click")
+            sleep(5)
+            ##should redirect to the redirect url.
+            expected_es = u.client_authentication["test_app_id"]
+            if current_url=~/google/
+                expect("one").to eql("one")
+            end
+                        
+        end
+
+        scenario "any error in omniauth -> goes to omniauth error page", js: true do 
+
+            OmniAuth.config.test_mode = true
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider,nil,nil,"simulate_error")
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find(:xpath, "//a[@href='/authenticate/omniauth/users/#{@oauth_provider.to_s}']").click
+
+            expect(page).to have_content("error")
+
+        end
+
+
+
+        ##THIS IS SIMULATED BY FIRST CREATING A NEW OAUTH USER.
+        ##THEN WE SET ITS VERSION TO 0
+        ##AFTER THAT WE GO AGAIN TO OAUTH AND TRY TO SIGN IN.
+        ##SINCE VERSION IS 0, MONGOID VERSIONED ATOMIC UPDATE, WILL FAIL
+        ##THIS WILL LEAD TO A FAILURE OF THE UPDATE OF ACCESS_TOKENA AND EXPIRES_AT.
+        scenario "failure to update access_token and expires_at goes to omniauth error page, with appropriate error message ", js: true do 
+                
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            click_link("Sign Out")
+
+            #u = User.where(:email => "rrphotosoft@gmail.com").first
+            #u.version = 0
+            #u.save
+            
+            User.class_eval do 
+                after_save :set_op_success_to_false
+                def set_op_success_to_false
+                    self.op_success = false
+                end
+            end
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click                
+
+           
+            expect(page).to have_content("Failed to update the acceess token and token expires at")
+
+            
+        end
+
+
+        ##try to simulate by creating a after_create callback which will delete identities, this will make it feel like the create failed, and this will lead to a failure fo the create.
+        scenario "failure to create new oauth user, goes to omniauth error page, with error message ", js: true do 
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            User.class_eval do 
+                after_save :set_op_success_to_false
+                def set_op_success_to_false
+                   
+                    self.op_success = false
+                end
+            end
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            expect(page).to have_content("Failed to create new identity")
+
+           
+
+        end
+
+
+        ##THIS CAN BE SIMULATED BY CALLING CONFIRM AFTER_SAVE
+        ##SIGN IN WILL FAIL IF , WE UNSET THE PASSWORD, POST_SAVE
+        scenario "failure to sign in resource after creating or updating it, will lead to appropriate error", js: true do
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+           
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+
+            mock_auth_hash(@oauth_provider)
+          
+            Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+
+            User.class_eval do 
+                before_save :remove_confirmed_at
+                def remove_confirmed_at
+                    self.confirmed_at = nil
+                end
+            end
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            ##THIS HAPPENS BECAUSE WE TRY TO SIGN IN AN UNCONFIRMED USER, AND SO IT WILL GIVE THAT AS THE ERROR, AND AT THE SAME TIME REDIRECT TO THE AFTER_SIGN_IN_PATH.
+            expect(page).to have_content("You have to confirm your email address before continuing.")
+            expect(page).to have_content("You need to Sign in to continue.")           
+        end
+
+
+        scenario "failure to provide oauth resource, goes to omniauth error page, with no_resource error message", js: true do 
+            User.skip_callback(:save, :after, :set_op_success_to_false)
+            User.skip_callback(:save, :before, :remove_confirmed_at)
+
+            Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path
+
+            click_link("Sign In")
+            wait_for_ajax
+            Rails.application.env_config["omniauth.model"] = nil
+            mock_auth_hash(@oauth_provider)
+
+            find("a[href='/authenticate/omniauth/users/#{@oauth_provider}']").click
+
+            ##THIS HAPPENS BECAUSE WE TRY TO SIGN IN AN UNCONFIRMED USER, AND SO IT WILL GIVE THAT AS THE ERROR, AND AT THE SAME TIME REDIRECT TO THE AFTER_SIGN_IN_PATH.
+            expect(page).to have_content("No resource was specified in the omniauth callback request.")
+
+
+        end
+
+    end
+
+  end
+
+  context " -- topic web app request spec ", :topic_feature => true do 
+
+    scenario "visit topic part after signing in, and everythign should work." , js: true do 
+        ActionController::Base.allow_forgery_protection = false
+        Auth.configuration.recaptcha = false
+            ##visit the sign in page
+            visit new_user_session_path({:api_key => @ap_key, :current_app_id => "test_app_id"})
+
+            puts "----------------FINISHED NEW USER SESSION PATH----------------"
+            ##visit the sign up page.
+            click_link("Sign In")
+            wait_for_ajax
+            ##modal should open.
+            ##then 
+            ## SET RECAPTCHA TO FALSE SO THAT IT DOESNT INTERFERE WITH THE REQUEST RESPONSE.
+            
+            find("#show_sign_up").click
+            #puts "----------------VISITED NEW USER REGISTRATION--------------"
+            fill_in('Email', :with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            fill_in('Password confirmation', :with => 'password')
+            wait_for_ajax
+            find("#submit").trigger("click")
+            wait_for_ajax
+            ##now visit he confirmation url.
+            u = User.where(:email => 'retard@gmail.com').first
+            confirmation_token = u.confirmation_token
+            visit user_confirmation_path({:confirmation_token => confirmation_token})
+            
+            u.reload
+            
+            click_link("Sign In")
+            wait_for_ajax
+
+            #puts u.attributes.to_s
+            puts " ----------------- trying to sign in with new user ------------------------------"
+            fill_in('Email',:with => 'retard@gmail.com')
+            fill_in('Password', :with => 'password')
+            find("#submit").trigger("click")
+            puts "sleeping"
+            sleep(5)
+            puts "visiting new topic path."
+            visit new_topic_path
+            expect(page).to have_text("Sign Out")
+    end
+
+    scenario "visit topic path without signing in, should redirect to sign in or sign up" , js: true , topic_feature: true do 
+        visit new_topic_path
+        puts page.text
+        expect(page).to have_text("You need to Sign in to continue.")
+
+    end
+                        
+
+  end
+
+
+
+  
+
+
+
+  
+
+=begin
+  
+
+    
+  scenario "user with omniauth authentication , tries to create an account with the same email" do 
+
+    visit new_user_registration_path
+    page.should have_content("Sign in with GoogleOauth2")
+    mock_auth_hash
+    Rails.application.env_config["omniauth.model"] = "omniauth/users/"
+    #Rails.application.env_config["omniauth.auth"] = 
+    click_link "Sign in with GoogleOauth2"
+    expect(page).to have_content("Logout")
+    ActionController::Base.allow_forgery_protection = false
+    click_link "Logout"
+    ActionController::Base.allow_forgery_protection = true
+    
+    ##oauth user has now been created.
+
+    visit new_user_registration_path
+    fill_in('Email', :with => 'rrphotosoft@gmail.com')
+    fill_in('Password', :with => 'password')
+    fill_in('Password confirmation', :with => 'password')
+    find('input[name="commit"]').click
+    expect(page).to have_content("Email is already taken")
+
+  end
+
+
+  
+=end
+end