github/devise
1
1
Fork 0
mirror of https://github.com/heartcombo/devise.git synced 2026-04-06 03:01:21 -04:00
Code Issues Packages Projects Releases Wiki Activity
548 Commits 33 Branches 149 Tags
27c4280eca8472415fe72134ba962c48a7fcb4e6
Commit Graph

423 Commits

Author SHA1 Message Date
postmodern
27c4280eca Expend the length of the encrypted_password field to 128 to allow storing BCrypt or SHA512 passwords. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-04-02 20:31:33 +02:00
José Valim
1ba525a0e9 Tidying up some lose ends and adding more docs. 2010-04-01 22:11:59 +02:00
José Valim
f5d01c217d TokenAuthenticatable now works with HTTP Basic Auth by default (take a look at Highrise API for a good example). This basically allows you to pass the authentication token as HTTP Basic Auth username. 2010-04-01 19:09:33 +02:00
José Valim
2b5a068246 Move part of the logic in SessionsController#create to the FailureApp. Whenever Warden is invoked with a :recall, the failure app will recall the chosen controller and the action given to recall. 2010-04-01 17:30:55 +02:00
José Valim
13b8ddf54c Ensure customs pass through sessions_controller. 2010-04-01 14:00:21 +02:00
José Valim
16666b7587 Get rid of flash hook and clean up passwords after registration. 2010-04-01 13:23:49 +02:00
Fred Wu
42d06a241b Added support for HAML 3+. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-04-01 00:14:16 +02:00
José Valim
3d1a04fd83 Fix warden configuration. 2010-03-31 22:04:48 +02:00
José Valim
1d65a76cf3 Move remember_me hook inside strategies. 2010-03-31 21:43:19 +02:00
José Valim
015c74e734 Use message verifier in cookies. Previous implementation allowed brute force attacks by cookies. Even though it is impossible for the brute force attack to succeed, the current implementation blocks the attacker even before hitting the database. 2010-03-31 13:31:45 +02:00
José Valim
6cc32db2dd Add lock_strategy. 2010-03-31 11:54:11 +02:00
José Valim
d7f614b726 Make config.devise available on config/application.rb 2010-03-30 11:08:16 +02:00
José Valim
e04c5ba977 More work with unlock_strategy equals to none. 2010-03-30 01:58:06 +02:00
José Valim
22e1fa0cb9 Small cleanup. 2010-03-30 00:29:57 +02:00
José Valim
81926c2cd2 Allow :unlock_strategy to be :none. 2010-03-30 00:07:11 +02:00
José Valim
7d14f0bbb9 Allow several authentications to share a common path. 2010-03-29 23:44:47 +02:00
José Valim
65b8908960 Create authenticatable base model and strategy. 2010-03-29 20:52:48 +02:00
José Valim
1c5d4771ff Initial work on making the authentication stack more flexible. 2010-03-29 16:13:19 +02:00
José Valim
604b7ef61c Move http authenticatable response to failure app. 2010-03-29 15:16:14 +02:00
Jacques Crocker
1c39590e20 Devise / DataMapper updates 
allows devise to work with the upcoming dm-validation changes
 2010-03-28 20:53:22 -07:00
Jacques Crocker
6d31e368bf Use persisted? instead of new_record? 
In order to be more ActiveModel compliant, lets use persisted? whereever we can. Particularly for datamapper, new_record? causes api warnings. Better to stick to the ActiveModel api I think.
 2010-03-28 20:53:13 -07:00
José Valim
2a082f3e4c Fix some unlockable bugs. 2010-03-28 23:09:28 +02:00
José Valim
033db1ca7c Do not depend on silence_missing_strategies! anymore. This speeds up strategies matching because we don't need to check if the model duck types to the strategy and it doesn't trigger uneeded strategies. 2010-03-28 14:55:05 +02:00
José Valim
066c6e8771 Do not force halt on authenticatable. This allows other strategies (like devise_imapable or even devise_facebook_connectable) to hook into sessions controller as well. 
Those strategies should follow the same convention, allowing them to be cascated.
 2010-03-28 12:52:12 +02:00
José Valim
96c8238b02 Remove duplicated method. 2010-03-28 07:24:56 +02:00
José Valim
4b7a9204b8 More configuration to validatable. 2010-03-28 07:19:23 +02:00
José Valim
ea71be8d2a More compatibility with Rails master. 2010-03-28 07:15:52 +02:00
Jacques Crocker
6bcf18b04f Mongoid support cleanup 
moving test specific == override part of the test models and not part of the Compatibility module included in all Mongoid docs. Made sure that nothing in devise itself uses this == between 2 different models, its purely for assert_equal
 2010-03-27 16:16:36 -07:00
Jacques Crocker
bb504e08aa Initial Datamapper test suite 
Test suite runs, however there's still some failing tests. This allows us to at least have a working test suite so they can fix these datamapper spec failures individually.
 2010-03-27 16:15:23 -07:00
Jacques Crocker
afe6a8c8c8 Merge branch 'master' of git://github.com/plataformatec/devise 2010-03-27 16:10:30 -07:00
José Valim
a53cc74fd9 Revert "Move password_required? to authenticatable. This allow you to reuse it when building your own validations." 
This reverts commit 386e7be823.
 2010-03-27 12:31:38 +01:00
Jacques Crocker
fd035b841b Additional configuration for validatable 
Added the ability to customize password length (via Devise.password_length) and the regular expression used for validating email (via Devise.email_regex)
 2010-03-26 13:52:12 -07:00
Jacques Crocker
e127463ac8 Adding Mongoid 2.0 Support, Removing MongoMapper for now 2010-03-26 13:37:38 -07:00
José Valim
bd4b29c0fd sign_in_count shoud default to zero. 2010-03-26 12:56:24 +01:00
Carlos Antonio da Silva
6f41284714 Merge branch 'master' of github.com:plataformatec/devise 2010-03-26 08:44:42 -03:00
Carlos Antonio da Silva
a5ba2ac1a8 Use prepend_before_filter in require_no_authentication. 
We need to be sure require_no_authentication runs before other user filters that may call some Devise helper (ie current_xxx).

Conflicts:

	app/controllers/devise/passwords_controller.rb
	app/controllers/devise/registrations_controller.rb
	app/controllers/devise/sessions_controller.rb
	app/controllers/devise/unlocks_controller.rb
	lib/devise/controllers/internal_helpers.rb
	test/rails_app/app/controllers/application_controller.rb
 2010-03-26 08:26:51 -03:00
José Valim
386e7be823 Move password_required? to authenticatable. This allow you to reuse it when building your own validations. 2010-03-26 12:19:01 +01:00
José Valim
e136573905 Improve workflow with devise generator. 2010-03-26 10:36:15 +01:00
José Valim
ae729aedc3 Allow devise to work with association proxies. 2010-03-26 10:19:31 +01:00
José Valim
12b64c691f Add support to multipart e-mails (just put them in your mailers folder) and headers customization by simply defining headers_for in your model. 2010-03-26 10:01:24 +01:00
José Valim
76e45ecb12 Bring unloadable back. 2010-03-23 00:39:27 +01:00
José Valim
8fbbe34bdd Fix routes generation on Rails master. 2010-03-16 14:48:30 +01:00
José Valim
3a84fd4f3f Ensure devise_views is always executed. 2010-03-16 02:51:59 +01:00
Ørjan Blom
f129b9ffd7 don't use a static name in a public directory, and delete after use. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 15:02:54 +01:00
José Valim
185541b9e4 Use template engine as option since it's the one used by rails. 2010-03-14 09:39:59 +01:00
Fred Wu
de92be39f2 Use Ruby's tmp directory instead of a ghost directory inside the devise gem folder. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 09:25:57 +01:00
Fred Wu
3f85fa88c3 Use 'rescue' to ensure the presence of Haml. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 09:25:52 +01:00
Fred Wu
2ebbc30540 Made sure no deprecated HAML templates (in case any) will get copied over. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 09:25:45 +01:00
Fred Wu
b8091928a0 A more user friendly way of checking the existence of Haml. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 09:25:39 +01:00
Fred Wu
cbd35a846a Added verification for HAML >= 2.3. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-03-14 09:25:31 +01:00