github/devise
1
1
Fork 0
mirror of https://github.com/heartcombo/devise.git synced 2026-01-10 07:18:14 -05:00
Code Issues Packages Projects Releases Wiki Activity
873 Commits 28 Branches 145 Tags
8539f5f91592ca1cf8627ea44749ea15c1e8a386
Commit Graph

873 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
José Valim
8539f5f915 Do not depend on orm_adapter git repo. 2010-10-10 22:06:53 +02:00
José Valim
8a8ba6c70c Depend on ORM Adapter. 2010-10-10 17:51:32 +02:00
José Valim
b409184a98 Update CHANGELOG. 2010-10-10 17:51:32 +02:00
José Valim
e4c5158851 Sign out by default will destroy the existing session. 2010-10-10 17:51:32 +02:00
José Valim
7bc37e5237 Provide a better encryptor message and update Gemfile.lock. 2010-10-10 17:51:32 +02:00
Sean Cribbs
9f032350e3 Use ActiveModel's to_key instead of id. 
Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-10-10 17:51:32 +02:00
José Valim
b4a99f6698 Use gemspec in Gemfile. 2010-10-10 17:51:31 +02:00
José Valim
94ccfc5322 Remove deprecation warnings on Rails 3.1. 2010-10-10 17:51:31 +02:00
Sebastián Gamboa
721843c841 Allow to conditionally skip email validation. 2010-10-05 05:42:20 +08:00
takahashim
a1c80b6211 use I18n'ed header on error messages block 2010-10-04 15:38:07 +08:00
dewski
69ecbd1fa3 removed the occurances of =%> at the end of erb blocks and replaced them with -%> 2010-10-02 05:56:29 +08:00
José Valim
ec5f8ae831 Update RDoc. 2010-09-30 04:47:13 -07:00
José Valim
db1ce8eeb2 Sign up now check if the user is active or not and redirect him accordingly setting the inactive_signed_up message. This commit also moves after_update_path_for to inside RegistrationsController, not allowing it to be overriden inside ApplicationController anymore. 2010-09-30 09:12:00 +02:00
José Valim
e01dccaefb Fix recoverable tests. 2010-09-30 09:05:11 +02:00
Pat Allan
16c39a9f17 Making sure timeoutable respects rememberable if both are loaded. 2010-09-29 15:27:54 +08:00
José Valim
fbb77a6edd Ensure bcrypt also uses pepper for backward compatibility. 2010-09-28 17:45:34 +02:00
Kevin
ab690bf36f Use Rails 3 email_field helper instead of text_field for email 2010-09-28 06:18:05 +08:00
Joey Geiger
c8cb7d270d Use a better label to enforce that you are changing your password to a new one. 2010-09-28 01:26:56 +08:00
José Valim
3e9b2092f8 Regenerate gemspec. 2010-09-27 09:36:09 +02:00
José Valim
ef3480004c Ensure we are pointing to the proper sessions controller on failure. 2010-09-26 21:12:05 +02:00
Carlos Antonio da Silva
ffaba3f1d3 Avoid RAILS_DEFAULT_LOGGER deprecation warning from Webrat 
This must be fixed in Webrat.
 2010-09-26 14:53:36 -03:00
Carlos Antonio da Silva
f60123ce01 Bump webrat to 0.7.1 2010-09-26 14:45:00 -03:00
Carlos Antonio da Silva
a7cc3388b4 Regenerate devise config file for tests and get all tests green on mongoid 2010-09-26 14:31:08 -03:00
Carlos Antonio da Silva
98e69cfd71 Remove unused options param for token_auth schema, and avoid creating a new hash 2010-09-26 14:08:25 -03:00
Carlos Antonio da Silva
6a09daf570 Don't need to extend ActiveSupport::Concern anymore in oauth helpers 2010-09-26 11:47:56 -03:00
José Valim
fbac68d51a This helpers are useless outside oauth context. 2010-09-26 13:40:09 +02:00
José Valim
2169e5de97 OAuth shortcut should use paths instead of urls. 2010-09-26 13:28:30 +02:00
José Valim
4d8d1f5222 Uncomment pepper in configuration. 2010-09-26 01:44:37 -07:00
Carlos Antonio da Silva
0bc80cec35 Remove autoload for Bcrypt encryptor, it does not exist anymore 2010-09-25 23:14:31 -03:00
José Valim
38f3f6318a cookie_domain is deprecated in favor of cookie_options which uses session_options by default. 2010-09-25 21:13:54 +02:00
José Valim
1dfcbe3bd4 Regenerate gemspec to force latest warden version. 2010-09-25 20:29:33 +02:00
José Valim
531f221be7 Allow :stateless_token to be set to true avoiding users to be stored in session through token authentication 2010-09-25 20:28:14 +02:00
José Valim
617e142e34 Store the salt in session and expire the session if the user changes his password 2010-09-25 17:24:56 +02:00
José Valim
6613653df0 Update CHANGELOG. 2010-09-25 16:10:59 +02:00
José Valim
09088706bb Extract encryptors into their own module for better bcrypt support. 2010-09-25 16:08:46 +02:00
José Valim
31d821c2e0 Allow to Rememberable to work without remember_token relying on salt if possible. 
This comes with the benefit that if you change your password, all remember tokens expires, and it also requires one field less in the database.

The downside is that if you want remember_me_across_browser to be false, it won't work unless you use the token. It also requires you to be using database_authenticable.

Using salt is now the default in Devise.
 2010-09-25 13:07:24 +02:00
José Valim
1ed674afa8 Use Admin in old rememberable tests. 2010-09-25 12:04:38 +02:00
José Valim
2aa1d2f3b7 Increase the size of the friendly token. 
The chance of someone to successfully guess a random token in the website is:

(number_of_users / 2388636399360109977557402041718133080829429159844757507642063199359529632522467783435119230976)
 2010-09-25 11:51:57 +02:00
José Valim
c12d75eecf Do not rely on controller being available in params. 2010-09-25 11:22:18 +02:00
José Valim
b6089145c1 Warden 1.0! :mantears: 2010-09-25 11:22:17 +02:00
Carlos Antonio da Silva
d02ea3153b Small doc fix 2010-09-24 08:59:39 -03:00
José Valim
dd11f43014 All tests green on latest mongoid. 2010-09-24 11:30:08 +02:00
José Valim
f96061b350 Update docs and CHANGELOG based on the 1.1.3 release from v1.1 branch. 2010-09-24 09:43:40 +02:00
Carlos Antonio da Silva
aaeb053c1d Update CHANGELOG 2010-09-24 00:15:00 -03:00
Martin Davidsson
ec0e105c52 Incorporate feedback from carlosantoniodasilva and update rememberable 
tests
 2010-09-24 11:08:59 +08:00
Martin Davidsson
f3e348f6f4 Merge options hash instead of overwriting it 
The forgetable hook will delete cookies based on the :scope in an
options hash but it was overwriting the options and setting them to
either an empty hash or a hash with a single :domain key. Because the
:scope was lost, the hook was trying to delete the 'remember__token'
instead of the more typical 'remember_user_token' cookie.
 2010-09-24 11:08:58 +08:00
José Valim
589de27bcd Stop using inject({}) to build hashes. It is harder to read and slower. 2010-09-22 23:29:17 +02:00
Trevor Turk
fdb4cd5b38 Major update to README - encourage use of the Wiki 2010-09-22 07:31:31 +08:00
José Valim
d6084ab1f7 Improve CHANGELOG. 2010-09-21 12:09:53 +02:00
Thibaud Guillaume-Gentil
c121d8026e Avoid BCrypt::Errors::InvalidSalt: invalid salt 
when password_salt is nil.

Signed-off-by: José Valim <jose.valim@gmail.com>
 2010-09-21 12:09:07 +02:00