github/devise
1
1
Fork 0
mirror of https://github.com/heartcombo/devise.git synced 2026-04-28 03:00:29 -04:00
Code Issues Packages Projects Releases Wiki Activity
542 Commits 33 Branches 149 Tags
16666b75870339e22b74906e41b705cb29bc71d5
Commit Graph

84 Commits

Author SHA1 Message Date
José Valim
015c74e734 Use message verifier in cookies. Previous implementation allowed brute force attacks by cookies. Even though it is impossible for the brute force attack to succeed, the current implementation blocks the attacker even before hitting the database. 2010-03-31 13:31:45 +02:00
José Valim
6cc32db2dd Add lock_strategy. 2010-03-31 11:54:11 +02:00
José Valim
7d14f0bbb9 Allow several authentications to share a common path. 2010-03-29 23:44:47 +02:00
José Valim
65b8908960 Create authenticatable base model and strategy. 2010-03-29 20:52:48 +02:00
José Valim
1c5d4771ff Initial work on making the authentication stack more flexible. 2010-03-29 16:13:19 +02:00
Jacques Crocker
6d31e368bf Use persisted? instead of new_record? 
In order to be more ActiveModel compliant, lets use persisted? whereever we can. Particularly for datamapper, new_record? causes api warnings. Better to stick to the ActiveModel api I think.
 2010-03-28 20:53:13 -07:00
José Valim
2a082f3e4c Fix some unlockable bugs. 2010-03-28 23:09:28 +02:00
Jacques Crocker
e127463ac8 Adding Mongoid 2.0 Support, Removing MongoMapper for now 2010-03-26 13:37:38 -07:00
José Valim
ca4e09390e Compatibility with Ruby 1.9.1 and 1.9.2. 2010-03-26 11:27:19 +01:00
José Valim
ac742e3271 Clean up lockable and class methods API. 2010-03-10 16:13:54 +01:00
José Valim
33941d1f62 All tests passing (except two which are errors in Rails). Now generators and initialization process. 2010-02-16 21:23:58 +01:00
José Valim
e6e66481b8 Got all tests in test/models and failure app ones passing. 369 tests, 805 assertions, 13 failures, 2 errors. 2010-02-16 17:00:36 +01:00
José Valim
b3e11c5aca Got another bunch of tests passing on Rails 3. 369 tests, 731 assertions, 33 failures, 53 errors. 2010-02-16 14:57:10 +01:00
José Valim
732e31528e More changes in update_with_password. 2010-02-08 23:14:03 +01:00
José Valim
d7db5b1eea More work on edit. 2010-02-08 20:38:47 +01:00
Carlos Antonio da Silva
9856646fac Merge with master 2010-02-06 09:24:00 -02:00
José Valim
1cf4dc798d Add Http Basic Authentication support. 2010-02-06 01:33:32 +01:00
Carlos Antonio da Silva
21359fb433 Refactoring a bit models and lockable. Also remove devise :all deprecation. 2010-02-04 20:09:53 -02:00
José Valim
3781a0f47b Tidy up token authentication implementation. 2010-02-02 13:21:00 +01:00
Jonas Grimfelt
e1440fb430 Initial support for authorization using "authentication token" (a.k.a. "single access token") - new module. Corresponding changes to Devise core to hook events like "after_changed_password" (only one added now - only one that makes much sense for latest module) easily. Unit and integration tests included. NOTE: One failing test for hooking Warden::Manager.after_authentication - gets ignored for some reason. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-02-02 12:36:44 +01:00
Jonas Grimfelt
0c7c762c16 Fixed some Ruby 1.9 issues/bugs. 2010-01-21 16:06:19 +08:00
José Valim
2afad49a96 Bring rememberable back. 2010-01-14 15:47:14 +01:00
José Valim
f46d1b1d81 Add support to Warden 0.9.0.pre 2010-01-14 13:38:02 +01:00
Marcelo Silveira
d2fa737aa0 introducing lockable implementation 2010-01-01 17:57:35 -02:00
José Valim
35a8d13369 Tests passing for ActiveRecord and MongoMapper. 2009-12-21 21:10:23 +01:00
José Valim
78303cd5c5 Got another bunch of tests passing with MongoMapper. 2009-12-21 19:57:17 +01:00
José Valim
90c33a4e05 Revert earlier commit. Do care about blank passwords, otherwise update_with_password is useless. 2009-12-16 17:34:09 +01:00
Carlos Antonio da Silva
afab12fa37 Adding old_password reader method to authenticatable 2009-12-14 23:25:45 -02:00
Carlos Antonio da Silva
82ab50f774 Merge and fix conflicts. 2009-12-14 23:02:10 -02:00
Carlos Antonio da Silva
72021348d3 Adding update_with_password to authenticable. Updates the record only when the :old_password is valid. 2009-12-14 22:55:55 -02:00
José Valim
b842a72e77 Do not care blank passwords on update 2009-12-15 01:20:59 +01:00
José Valim
9a658d5e74 Added skip_confirmation! It skips confirmation token generation, e-mail sending and automatically sets confirmed_at. 2009-12-15 00:30:28 +01:00
José Valim
358a2389ce Rename reset_confirmation! to resend_confirmation! 2009-12-15 00:16:22 +01:00
José Valim
c05b8cf2ce Rename :timeout to :timeout_in and release gem again. 2009-11-25 00:11:49 -02:00
José Valim
30d6d37bab Refactor tests a little bit and gain more speed (from 12s to 9s in my machine). 2009-11-24 23:19:12 -02:00
José Valim
4c7081c2e3 More Datamapper compatibility. 2009-11-24 18:02:36 -02:00
José Valim
f9c5dd6a79 Added trackable for sign_in_count, sign_in_at and sign_in_ip. 2009-11-24 15:18:42 -02:00
José Valim
52885725a9 Assert validations API inside validatable module. 2009-11-24 13:56:54 -02:00
José Valim
691055cf06 Fix timeout tests. 2009-11-24 11:00:35 -02:00
Carlos Antonio da Silva
40aaa98de9 Refactoring timeoutable module and confirmable tests. 2009-11-23 23:01:00 -02:00
Carlos Antonio da Silva
099c77e867 Introducing timeoutable to timeout sessions without activity. 2009-11-23 23:01:00 -02:00
José Valim
a016819de8 Ensure all encryptor returns a symbol. Get the class using encryptor_class. 2009-11-22 22:32:54 -02:00
Carlos Antonio da Silva
6829619330 Allow overwriting find for authentication method. 2009-11-19 13:53:57 -02:00
José Valim
4f6dfefe0e Sanity check the serialized class. 2009-11-15 11:17:40 -02:00
José Valim
b70b293690 Add authentication_keys. 2009-11-15 03:31:13 -02:00
Marcelo Silveira
262a33f71f finished implementation of encryptors and created encryptors for clearance, authlogic and restful-authentication 2009-11-10 13:27:43 -02:00
Marcelo Silveira
fdea519df8 moved password encryption out of Authenticatable to allow custom encryptions for people coming by with an existent users table 2009-11-09 18:43:21 -02:00
José Valim
371a9bb0d0 Major refactoring. Allow Warden::Manager to be configured through Devise, undeprecate Devise.confirm_within, Devise.pepper and friends and move Rails hooks to their own file. 2009-11-03 09:35:11 -02:00
José Valim
dc86a571ae [DEPRECATION] Notifier is deprecated, use DeviseMailer instead. Remember to rename app/views/notifier to app/views/devise_mailer and I18n key from devise.notifier to devise.mailer. 2009-11-02 23:14:27 -02:00
José Valim
e7f809de3c Do not require ActiveRecord to be loaded to use Devise. 2009-10-30 21:51:50 -02:00