Release 2.1.4

Use the Ruby 1.8 hash syntax.
Yes we still support Ruby 1.8 😢 Conflicts: Gemfile.lock
2026-01-09 15:47:59 -05:00 · 2013-08-18 10:37:31 +02:00 · 2013-01-28 13:29:20 -02:00 · 2013-01-26 11:46:57 -07:00 · 2013-01-26 11:44:52 -07:00
10 changed files with 38 additions and 44 deletions
--- a/CHANGELOG.rdoc
+++ b/CHANGELOG.rdoc
@@ -1,3 +1,13 @@
+== 2.1.4
+
+* bug fix
+  * Do not confirm account after reset password
+
+== 2.1.3
+
+* bug fix
+  * Require string conversion for all values
+
 == 2.1.2

 * Enhancements
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,7 +1,7 @@
 PATH
  remote: .
  specs:
-    devise (2.1.2)
+    devise (2.1.4)
      bcrypt-ruby (~> 3.0)
      orm_adapter (~> 0.1)
      railties (~> 3.1)
@@ -39,7 +39,7 @@ GEM
      multi_json (~> 1.0)
    addressable (2.2.6)
    arel (3.0.2)
-    bcrypt-ruby (3.0.1)
+    bcrypt-ruby (3.1.1)
    bson (1.5.1)
    bson_ext (1.3.1)
    builder (3.0.0)
@@ -87,7 +87,7 @@ GEM
    omniauth-openid (1.0.1)
      omniauth (~> 1.0)
      rack-openid (~> 1.3.1)
-    orm_adapter (0.1.0)
+    orm_adapter (0.4.0)
    polyglot (0.3.3)
    rack (1.4.1)
    rack-cache (1.2)
@@ -135,7 +135,7 @@ GEM
      polyglot
      polyglot (>= 0.3.1)
    tzinfo (0.3.33)
-    warden (1.2.1)
+    warden (1.2.3)
      rack (>= 1.0)
    webrat (0.7.2)
      nokogiri (>= 1.2.0)
--- a/gemfiles/Gemfile.rails-3.1.x.lock
+++ b/gemfiles/Gemfile.rails-3.1.x.lock
@@ -1,11 +1,11 @@
 PATH
  remote: ..
  specs:
-    devise (2.1.0.rc2)
+    devise (2.1.4)
      bcrypt-ruby (~> 3.0)
-      orm_adapter (~> 0.0.7)
+      orm_adapter (~> 0.1)
      railties (~> 3.1)
-      warden (~> 1.1.1)
+      warden (~> 1.2.1)

 GEM
  remote: http://rubygems.org/
@@ -40,7 +40,7 @@ GEM
      multi_json (~> 1.0)
    addressable (2.2.7)
    arel (2.2.3)
-    bcrypt-ruby (3.0.1)
+    bcrypt-ruby (3.1.1)
    bson (1.5.2)
    bson_ext (1.3.1)
    builder (3.0.0)
@@ -87,7 +87,7 @@ GEM
    omniauth-openid (1.0.1)
      omniauth (~> 1.0)
      rack-openid (~> 1.3.1)
-    orm_adapter (0.0.7)
+    orm_adapter (0.4.0)
    polyglot (0.3.3)
    rack (1.3.6)
    rack-cache (1.2)
@@ -137,7 +137,7 @@ GEM
      polyglot
      polyglot (>= 0.3.1)
    tzinfo (0.3.33)
-    warden (1.1.1)
+    warden (1.2.3)
      rack (>= 1.0)
    webrat (0.7.2)
      nokogiri (>= 1.2.0)
--- a/lib/devise/models/authenticatable.rb
+++ b/lib/devise/models/authenticatable.rb
@@ -205,21 +205,20 @@ module Devise
        # namedscope to filter records while authenticating.
        # Example:
        #
-        #   def self.find_for_authentication(conditions={})
-        #     conditions[:active] = true
-        #     super
+        #   def self.find_for_authentication(tainted_conditions)
+        #     find_first_by_auth_conditions(tainted_conditions, :active => true)
        #   end
        #
        # Finally, notice that Devise also queries for users in other scenarios
        # besides authentication, for example when retrieving an user to send
        # an e-mail for password reset. In such cases, find_for_authentication
        # is not called.
-        def find_for_authentication(conditions)
-          find_first_by_auth_conditions(conditions)
+        def find_for_authentication(tainted_conditions)
+          find_first_by_auth_conditions(tainted_conditions)
        end

-        def find_first_by_auth_conditions(conditions)
-          to_adapter.find_first devise_param_filter.filter(conditions)
+        def find_first_by_auth_conditions(tainted_conditions, opts={})
+          to_adapter.find_first(devise_param_filter.filter(tainted_conditions).merge(opts))
        end

        # Find an initialize a record setting an error if it can't be found.
--- a/lib/devise/models/confirmable.rb
+++ b/lib/devise/models/confirmable.rb
@@ -177,11 +177,6 @@ module Devise
          generate_confirmation_token && save(:validate => false)
        end

-        def after_password_reset
-          super
-          confirm! unless confirmed?
-        end
-
        def postpone_email_change_until_confirmation
          @reconfirmation_required = true
          self.unconfirmed_email = self.email
--- a/lib/devise/param_filter.rb
+++ b/lib/devise/param_filter.rb
@@ -33,9 +33,8 @@ module Devise

    private

-    # Determine which values should be transformed to string or passed as-is to the query builder underneath
    def param_requires_string_conversion?(value)
-      [Fixnum, TrueClass, FalseClass, Regexp].none? {|clz| value.is_a? clz }
+      true
    end
  end
 end
--- a/lib/devise/version.rb
+++ b/lib/devise/version.rb
@@ -1,3 +1,3 @@
 module Devise
-  VERSION = "2.1.2".freeze
+  VERSION = "2.1.4".freeze
 end
--- a/test/integration/recoverable_test.rb
+++ b/test/integration/recoverable_test.rb
@@ -201,15 +201,6 @@ class PasswordTest < ActionController::IntegrationTest
    assert !warden.authenticated?(:user)
  end

-  test 'sign in user automatically and confirm after changing its password if it\'s not confirmed' do
-    user = create_user(:confirm => false)
-    request_forgot_password
-    reset_password :reset_password_token => user.reload.reset_password_token
-
-    assert warden.authenticated?(:user)
-    assert user.reload.confirmed?
-  end
-
  test 'reset password request with valid E-Mail in XML format should return valid response' do
    create_user
    post user_password_path(:format => 'xml'), :user => {:email => "user@test.com"}
--- a/test/models/authenticatable_test.rb
+++ b/test/models/authenticatable_test.rb
@@ -4,4 +4,10 @@ class AuthenticatableTest < ActiveSupport::TestCase
  test 'required_fields should be an empty array' do
    assert_equal Devise::Models::Validatable.required_fields(User), []
  end
-end
+
+  test 'find_first_by_auth_conditions allows custom filtering parameters' do
+    user = User.create!(:email => "example@example.com", :password => "123456")
+    assert_equal User.find_first_by_auth_conditions({ :email => "example@example.com" }), user
+    assert_equal User.find_first_by_auth_conditions({ :email => "example@example.com" }, :id => user.id + 1), nil
+  end
+end
--- a/test/models/database_authenticatable_test.rb
+++ b/test/models/database_authenticatable_test.rb
@@ -23,15 +23,9 @@ class DatabaseAuthenticatableTest < ActiveSupport::TestCase
  end

  test "param filter should not convert booleans and integer to strings" do
-    conditions = { 'login' => 'foo@bar.com', "bool1" => true, "bool2" => false, "fixnum" => 123, "will_be_converted" => (1..10) }
+    conditions = { "login" => "foo@bar.com", "bool1" => true, "bool2" => false, "fixnum" => 123, "will_be_converted" => (1..10) }
    conditions = Devise::ParamFilter.new([], []).filter(conditions)
-    assert_equal( { 'login' => 'foo@bar.com', "bool1" => true, "bool2" => false, "fixnum" => 123, "will_be_converted" => "1..10" }, conditions)
-  end
-
-  test "param filter should not convert regular expressions to strings" do
-    conditions = { "regexp" => /expression/ }
-    conditions = Devise::ParamFilter.new([], []).filter(conditions)
-    assert_equal( { "regexp" => /expression/ }, conditions)
+    assert_equal( { "login" => "foo@bar.com", "bool1" => "true", "bool2" => "false", "fixnum" => "123", "will_be_converted" => "1..10" }, conditions)
  end

  test 'should respond to password and password confirmation' do
@@ -186,4 +180,4 @@ class DatabaseAuthenticatableTest < ActiveSupport::TestCase
      ]
    end
  end
-end
+end
Author	SHA1	Message	Date
José Valim	8563f106a1	Release 2.1.4	2013-08-18 10:37:31 +02:00
Rafael Mendonça França	d9513e3bea	Use the Ruby 1.8 hash syntax. Yes we still support Ruby 1.8 😢 Conflicts: Gemfile.lock	2013-01-28 13:29:20 -02:00
José Valim	7dfbe6ff5c	Release v2.1.3	2013-01-26 11:46:57 -07:00
José Valim	df96a80155	Require string conversion for all values	2013-01-26 11:44:52 -07:00