Jules Glegg julesfern
julesfern
/ gist:20578
Created
October 29, 2008 01:40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| it "should redirect users to the login screen with the correct return_to if return_to is set" do | |
| return_to_param = MerbAuthSliceFullfat[:return_to_param] | |
| @controller = get("/sekkrit", :format=>"html", return_to_param=>"/returnedsdfsdf") | |
| @controller.status.should == 302 | |
| @controller.should redirect_to(@controller.url(:merb_auth_slice_fullfat_login, return_to_param=>"/returned")) | |
| end | |
| raises: | |
| Expected exceptions#unauthenticated to redirect to </auth/login?return_to=%2Freturned>, but it redirected to </auth/login?return_to=%2Freturnedsdfsdf> | |
julesfern
/ gist:20579
Created
October 29, 2008 01:40
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| it "should redirect users to the login screen with the correct return_to if return_to is set" do | |
| return_to_param = MerbAuthSliceFullfat[:return_to_param] | |
| @controller = get("/sekkrit", :format=>"html", return_to_param=>"/returnedsdfsdf") | |
| @controller.status.should == 302 | |
| @controller.should redirect_to(@controller.url(:merb_auth_slice_fullfat_login, return_to_param=>"/returned")) | |
| end | |
| raises: | |
| Expected exceptions#unauthenticated to redirect to </auth/login?return_to=%2Freturned>, but it redirected to </auth/login?return_to=%2Freturnedsdfsdf> | |
julesfern
/ gist:20788
Created
October 29, 2008 19:20
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| protected | |
| def validate | |
| errors.add("Uploaded file", "is not a valid image file.") unless uploaded_file_has_valid_extension? if new_record? | |
| end | |
| def uploaded_file_has_valid_extension? | |
| %w(.jpg .png).include?(File.extname(self.file.path)) if self.file | |
| end |
julesfern
/ gist:20976
Created
October 30, 2008 11:52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @controller = get("/sekkrit", :format=>"html", @return_to_param=>"returned") | |
| # the test: | |
| @controller.should redirect_to(@controller.url(:merb_auth_slice_fullfat_login, @return_to_param=>"DSFARGEG")) | |
| # fails with: | |
| #Expected exceptions#unauthenticated to redirect to </auth/login?return_to=DSFARGEG>, but it redirected to #</auth/login?return_to=returned> | |
| # while the test: | |
| @controller.should redirect_to(@controller.url(:merb_auth_slice_fullfat_login, @return_to_param=>"returned")) | |
| # fails with: |
julesfern
/ gist:20984
Created
October 30, 2008 12:34
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Override for buggy freaking redirect_to assertion in merb 0.9.11. | |
| # duplicates syntax of old version, so can be safely removed once | |
| # http://merb.lighthouseapp.com/projects/7433-merb/tickets/949-redirect_to-assertion-errors-on-success-under-some-setups | |
| # is fixed. | |
| def redirect_to(url) | |
| simple_matcher("redirect to #{url.inspect}") do |controller, matcher| | |
| actual_url = controller.rack_response[1]["Location"] | |
| matcher.failure_message = "expected to be redirected to #{url.inspect} but instead was redirected to #{actual_url.inspect}" | |
| actual_url == url | |
| end |
julesfern
/ gist:24417
Created
November 13, 2008 12:25
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| if defined?(Merb::Plugins) | |
| $:.unshift File.dirname(__FILE__) | |
| load_dependency 'merb-auth-core' | |
| load_dependency 'merb-auth-more' | |
| load_dependency 'merb-slices' | |
| Merb::Plugins.add_rakefiles "merb-auth-slice-fullfat/merbtasks", "merb-auth-slice-fullfat/slicetasks", "merb-auth-slice-fullfat/spectasks" | |
| # Register the Slice for the current host application |
julesfern
/ gist:27127
Created
November 20, 2008 18:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def self.setup_router(scope) | |
| scope.identify MerbAuthSliceFullfat::PasswordReset => :identifier do |identification| | |
| identification.resources :sessions | |
| identification.resources :password_resets, :keys=>[:identifier] | |
| identification.resources :authenticating_clients | |
| end | |
| scope.default_routes | |
| end | |
julesfern
/ gist:28330
Created
November 24, 2008 00:17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # The code: | |
| class MerbAuthSliceFullfat::AuthenticatingClient | |
| include DataMapper::Resource | |
| # Key it | |
| property :id, Serial | |
| # The registration will belong to a user, who will be able to edit the client properties. | |
| property :user_id, Integer, :writer => :protected | |
| end |
julesfern
/ gist:30260
Created
November 29, 2008 17:17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| it "should verify that a correctly-signed GET request is signed using GET parameters" do | |
| # set the api key to a known value for the purposes of this test | |
| @authenticating_client.send(:"api_key=", "fishsticks") | |
| @authenticating_client.save! | |
| get_params = { | |
| "a"=>"1", "BBB"=>"3", "c"=>"2", | |
| "1"=>"a", "2"=>"b", | |
| "api_key"=>"fishsticks" | |
| } | |
| get_params[:api_signature] = Digest::SHA1.hexdigest("#{@authenticating_client.secret}httptest.fullfat.com/secret/#{get_params.keys.sort.join("")}#{get_params.values.sort.join("")}") |
julesfern
/ gist:30342
Created
November 29, 2008 23:04
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # mixed in to Merb::Request | |
| # Attempts to verify the request's signature using the strategy covered in signing.markdown. | |
| # Takes one argument, which is the authenticating client you wish to check the signature against. | |
| # Returns a true on success, false on fail. | |
| def signed? | |
| # Fail immediately if the request is not signed at all | |
| return false unless api_request? and authenticating_client | |
| # Prepare the verification string for comparison | |
| correct_sig = "#{authenticating_client.secret}#{method}#{protocol}#{host}#{uri}" |
OlderNewer