832 Commits

Author	SHA1	Message	Date
Rodrigo Flores	dba8f91f99	\o/ Bumping to 1.4.0 \o/	2011-06-23 09:53:05 -03:00
José Valim	f43a7c4f24	Merge pull request #1147 from sj26/master ... Authenticated Route Constraints	2011-06-23 05:29:17 -07:00
José Valim	4e56d92ed8	Override serializable_hash instead of to_xml and to_json.	2011-06-23 09:25:50 -03:00
Samuel Cochran	80122856c4	Switch to Warden::Proxy#authenticate? ... Warden::Proxy#authenticated? and Warden::Proxy#unauthenticated? don't try strategies first.	2011-06-23 10:44:23 +08:00
José Valim	77d6d1e8c2	Do not try to authenticate with no_input_strategies are empty.	2011-06-22 15:28:49 -03:00
José Valim	62e11ddbe4	Update CHANGELOG.	2011-06-22 13:07:19 -03:00
Rodrigo Flores	1d87997647	Improved paranoid mode generator explanation	2011-06-22 12:52:11 -03:00
Rodrigo Flores	b58e0ef991	Removed useless blank lines	2011-06-22 12:52:11 -03:00
Rodrigo Flores	db959da247	Added a commented line for paranoid mode on generator	2011-06-22 12:52:11 -03:00
Rodrigo Flores	6199252011	Refactored paranoid mode actions for it to appear once	2011-06-22 12:52:11 -03:00
Rodrigo Flores	803e46cda7	Refactoring the paranoid controller	2011-06-22 12:52:10 -03:00
Rodrigo Flores	004fe2ad12	Paranoid mode for recoverable	2011-06-22 12:50:34 -03:00
Chase DuBois	a8d88d193e	Run validations even when password change will fail, to show a complete list of errors	2011-06-21 17:55:32 -04:00
Samuel Cochran	471e4d6e72	Oh hey, Warden has API for this. Should probably match the name, too.	2011-06-21 08:36:06 +08:00
Samuel Cochran	14fec4cfb3	Add #authenticated and #not_authenticated route constraints	2011-06-18 15:53:46 +08:00
Mac Martine	7631456047	Added support for Devise routes to honor constraints.	2011-06-16 21:24:20 -07:00
José Valim	c0017ce76d	Merge pull request #1138 from fschwahn/update_without_password ... added update_without_password method, closes #801	2011-06-15 10:45:18 -07:00
José Valim	e242ca0937	Fix failing tests.	2011-06-10 11:10:56 +02:00
Stefan Wrobel	8e87a2d80d	Add strip_whitespace_keys which works like case_insensitive_keys but strips whitespace from emails	2011-06-10 01:37:43 -07:00
José Valim	4964f53a42	Merge pull request #1092 from xavier/filterwhitelist ... Conditional string conversion of auth params (Closes #1079)	2011-06-08 08:39:53 -07:00
José Valim	6250fa8529	Revert "Merge pull request #1103 from Mab879/master" ... This reverts commit 944e1c0378, reversing changes made to 97659a1193.	2011-06-08 17:37:49 +02:00
Matthew Burket	4f446241a4	Added Controller Generator and tests to go along with it.	2011-05-30 23:07:20 -05:00
Paul Bellamy	0bcf71f8df	Rails has removed SecureRandom from ActiveSupport in Rails 3.2, ... deprecated * Changing references in generators and encryptable_test	2011-05-28 14:44:54 +01:00
Xavier Defrang	ab3bb9cf4d	Conditional string conversion of auth params (Closes #1079)	2011-05-26 15:45:03 +02:00
José Valim	69126a31db	Merge pull request #1052 from Thibaut/email-validation ... Don't validate email format and uniqueness unless it's changed	2011-05-26 05:24:45 -07:00
Sergey Kojin	58f8c7c613	support for named omniauth open_id strategies	2011-05-25 00:15:24 +04:00
Wael Nasreddine	4c8cc5e3f3	SecureRandom is available since Ruby 1.8.7, remove the unnecessary defined? check.	2011-05-24 08:29:15 +02:00
Wael Nasreddine	72bb33f962	Rails has remove SecureRandom from ActiveSupport in Rails 3.2, deprecated in 3.1 ... Since it has been deprecated, this patch favors SecureRandom on ActiveSupport::SecureRandom	2011-05-23 15:34:09 -07:00
Artem Pechenyi	0fbe4cb6b9	fix reference storage to support new and old class cache api	2011-05-23 17:29:10 +03:00
Josh Kalderimis	e10bc9e3c0	dup the conditions hash before calling filter_auth_params, this fixes an issue with reseting your password when using a custom auth field like login	2011-05-16 14:08:22 -04:00
Thibaut	92c9ed2d6c	Don't validate email format and uniqueness unless it's changed.	2011-05-07 19:02:44 +02:00
Rémy Coutable	9dcb44ba61	:anybody_signed_in? helper was deprecated in 73669e09c8 and removed in fe5ef25614 but not removed from the #helper_method call.	2011-05-06 02:46:23 -07:00
fabian	8bdc4b544f	added update_without_password method	2011-05-05 09:24:21 +02:00
fabian	56f7fbf2d1	use 'devise.skip_trackable' instead of DNT headers	2011-05-04 15:21:12 +02:00
fabian	89b53ea39c	respect do not track headers in trackable	2011-05-04 14:44:37 +02:00
Hugo Baraúna	9cc69277bc	Fixes a little typo.	2011-04-29 11:26:12 -07:00
José Valim	b5190d8df2	Refactor.	2011-04-29 14:11:47 +02:00
Emanuel Carnevale	8e12ddf7ed	fix for issues #999: HTTP_ACCEPT=*/* should redirect to the default location	2011-04-29 13:22:52 +02:00
José Valim	4fd866d113	User cannot access sign up and similar pages if he is already signed in through a cookie or token, closes #1036.	2011-04-29 08:56:57 +02:00
José Valim	a59410a254	password_required? should not affect length validation, closes #1037.	2011-04-29 08:33:33 +02:00
José Valim	b1a27ad633	Allow controllers to be given as symbols.	2011-04-25 10:00:28 +02:00
Chase DuBois	4a3ad7f348	Use updated Mongoid gem and remove #destroyed?	2011-04-25 15:50:00 +08:00
Chase DuBois	89e4ab8a45	Moved check against record deletion into forget_me! method in model; added unit test.	2011-04-25 15:49:59 +08:00
Chase DuBois	e26c8ce499	Use #persisted? instead of #frozen? to check whether #forget_me should attempt to clear remember token from database	2011-04-25 15:49:59 +08:00
José Valim	ae976f60ca	Mark the token as expired, because invalid gives no clue of what to do next.	2011-04-21 19:17:33 +02:00
José Valim	40153b7422	Add tests to previous commit.	2011-04-21 13:56:10 +02:00
Alexander Dreher	fdfe6a8340	Fixes error on missing reset_password_sent_at column. ... If the column is not present, you are unabled to reset your password.	2011-04-21 19:51:12 +08:00
Carlos Antonio da Silva	79c100008a	Remove old OmniAuth test helpers	2011-04-19 13:13:29 -03:00
José Valim	f132c7891b	Update CHANGELOG, bump to 1.4.0.dev.	2011-04-19 14:24:33 +02:00
José Valim	bdad984ace	Use Devise::Email::EXACT_PATTERN.	2011-04-19 14:22:14 +02:00