diff --git a/.travis.yml b/.travis.yml index 41cbd9b..5323b6b 100644 --- a/.travis.yml +++ b/.travis.yml @@ -1,5 +1,9 @@ language: ruby + rvm: - "2.5.1" -before_script: "bundle install && cd dummy && rake db:create && rake db:migrate" -script: "bundle exec rake test" + +script: + - "cd test/user && bundle install && rake db:create && rake db:migrate && bundle exec rake test" + - "cd .." + - "cd employee && bundle install && rake db:create && rake db:migrate && bundle exec rake test" diff --git a/Gemfile b/Gemfile index bef63bc..a9ebed4 100644 --- a/Gemfile +++ b/Gemfile @@ -1,45 +1,69 @@ source 'https://rubygems.org' + ruby '2.5.1' # Specify your gem's dependencies in petergate.gemspec gemspec -# Bundle edge Rails instead: gem 'rails', github: 'rails/rails' -gem 'rails', '~> 5.2.1' +# Bundle edge Rails instead: gem 'rails', github: 'rails/rails' +gem 'rails', '~> 5.2.2' # Use sqlite3 as the database for Active Record gem 'sqlite3' +# Use Puma as the app server +gem 'puma', '~> 3.11' # Use SCSS for stylesheets -gem 'sass-rails', '~> 5.0.4' +gem 'sass-rails', '~> 5.0' # Use Uglifier as compressor for JavaScript assets gem 'uglifier', '>= 1.3.0' -# Use CoffeeScript for .js.coffee assets and views -gem 'coffee-rails', '~> 4.2.2' -# See https://github.com/sstephenson/execjs#readme for more supported runtimes -# gem 'therubyracer', platforms: :ruby - -# Use jquery as the JavaScript library -gem 'jquery-rails' -# Turbolinks makes following links in your web application faster. Read more: https://github.com/rails/turbolinks -gem 'turbolinks' -gem "minitest-rails", "~> 3.0.0" -gem "minitest-reporters" -# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder -gem 'jbuilder', '~> 2.0' -# bundle exec rake doc:rails generates the API under doc/api. -gem 'sdoc', '~> 0.4.0', group: :doc - -# Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring -gem 'devise' +# See https://github.com/rails/execjs#readme for more supported runtimes +# gem 'mini_racer', platforms: :ruby +# Use CoffeeScript for .coffee assets and views +gem 'coffee-rails', '~> 4.2' +# Turbolinks makes navigating your web application faster. Read more: https://github.com/turbolinks/turbolinks +gem 'turbolinks', '~> 5' +# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder +gem 'jbuilder', '~> 2.5' +# Use Redis adapter to run Action Cable in production +# gem 'redis', '~> 4.0' # Use ActiveModel has_secure_password # gem 'bcrypt', '~> 3.1.7' -# Use unicorn as the app server -# gem 'unicorn' +# Use ActiveStorage variant +# gem 'mini_magick', '~> 4.8' # Use Capistrano for deployment # gem 'capistrano-rails', group: :development -# Use debugger -# gem 'debugger', group: [:development, :test] +# Reduces boot times through caching; required in config/boot.rb +gem 'bootsnap', '>= 1.1.0', require: false +gem 'devise' + +group :development, :test do + # Call 'byebug' anywhere in the code to stop execution and get a debugger console + gem 'byebug', platforms: [:mri, :mingw, :x64_mingw] + gem 'pry', platforms: [:mri, :mingw, :x64_mingw] +end + +group :development do + # Access an interactive console on exception pages or by calling 'console' anywhere in the code. + gem 'web-console', '>= 3.3.0' + gem 'listen', '>= 3.0.5', '< 3.2' + # Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring + gem 'spring' + gem 'spring-watcher-listen', '~> 2.0.0' +end + +group :test do + # Adds support for Capybara system testing and selenium driver + gem 'capybara', '>= 2.15' + gem 'selenium-webdriver' + # Easy installation and use of chromedriver to run system tests with Chrome + gem 'chromedriver-helper' + gem "minitest-rails" + gem "minitest-reporters" +end + +# Windows does not include zoneinfo files, so bundle the tzinfo-data gem +gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby] diff --git a/dummy/app/assets/javascripts/blogs.js.coffee b/dummy/app/assets/javascripts/blogs.js.coffee deleted file mode 100644 index 24f83d1..0000000 --- a/dummy/app/assets/javascripts/blogs.js.coffee +++ /dev/null @@ -1,3 +0,0 @@ -# Place all the behaviors and hooks related to the matching controller here. -# All this logic will automatically be available in application.js. -# You can use CoffeeScript in this file: http://coffeescript.org/ diff --git a/dummy/app/assets/stylesheets/blogs.css.scss b/dummy/app/assets/stylesheets/blogs.css.scss deleted file mode 100644 index 59c4c25..0000000 --- a/dummy/app/assets/stylesheets/blogs.css.scss +++ /dev/null @@ -1,3 +0,0 @@ -// Place all the styles related to the Blogs controller here. -// They will automatically be included in application.css. -// You can use Sass (SCSS) here: http://sass-lang.com/ diff --git a/dummy/app/assets/stylesheets/scaffolds.css.scss b/dummy/app/assets/stylesheets/scaffolds.css.scss deleted file mode 100644 index 6ec6a8f..0000000 --- a/dummy/app/assets/stylesheets/scaffolds.css.scss +++ /dev/null @@ -1,69 +0,0 @@ -body { - background-color: #fff; - color: #333; - font-family: verdana, arial, helvetica, sans-serif; - font-size: 13px; - line-height: 18px; -} - -p, ol, ul, td { - font-family: verdana, arial, helvetica, sans-serif; - font-size: 13px; - line-height: 18px; -} - -pre { - background-color: #eee; - padding: 10px; - font-size: 11px; -} - -a { - color: #000; - &:visited { - color: #666; - } - &:hover { - color: #fff; - background-color: #000; - } -} - -div { - &.field, &.actions { - margin-bottom: 10px; - } -} - -#notice { - color: green; -} - -.field_with_errors { - padding: 2px; - background-color: red; - display: table; -} - -#error_explanation { - width: 450px; - border: 2px solid red; - padding: 7px; - padding-bottom: 0; - margin-bottom: 20px; - background-color: #f0f0f0; - h2 { - text-align: left; - font-weight: bold; - padding: 5px 5px 5px 15px; - font-size: 12px; - margin: -7px; - margin-bottom: 0px; - background-color: #c00; - color: #fff; - } - ul li { - font-size: 12px; - list-style: square; - } -} diff --git a/dummy/app/controllers/application_controller.rb b/dummy/app/controllers/application_controller.rb deleted file mode 100644 index d83690e..0000000 --- a/dummy/app/controllers/application_controller.rb +++ /dev/null @@ -1,5 +0,0 @@ -class ApplicationController < ActionController::Base - # Prevent CSRF attacks by raising an exception. - # For APIs, you may want to use :null_session instead. - protect_from_forgery with: :exception -end diff --git a/dummy/app/models/blog.rb b/dummy/app/models/blog.rb deleted file mode 100644 index 0ad9473..0000000 --- a/dummy/app/models/blog.rb +++ /dev/null @@ -1,2 +0,0 @@ -class Blog < ActiveRecord::Base -end diff --git a/dummy/app/views/blogs/index.json.jbuilder b/dummy/app/views/blogs/index.json.jbuilder deleted file mode 100644 index 6ad723c..0000000 --- a/dummy/app/views/blogs/index.json.jbuilder +++ /dev/null @@ -1,4 +0,0 @@ -json.array!(@blogs) do |blog| - json.extract! blog, :id, :title, :content - json.url blog_url(blog, format: :json) -end diff --git a/dummy/app/views/blogs/show.json.jbuilder b/dummy/app/views/blogs/show.json.jbuilder deleted file mode 100644 index c324ac2..0000000 --- a/dummy/app/views/blogs/show.json.jbuilder +++ /dev/null @@ -1 +0,0 @@ -json.extract! @blog, :id, :title, :content, :created_at, :updated_at diff --git a/dummy/app/views/layouts/application.html.erb b/dummy/app/views/layouts/application.html.erb deleted file mode 100644 index 593a778..0000000 --- a/dummy/app/views/layouts/application.html.erb +++ /dev/null @@ -1,14 +0,0 @@ - - - - Dummy - <%= stylesheet_link_tag 'application', media: 'all', 'data-turbolinks-track' => true %> - <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %> - <%= csrf_meta_tags %> - - - -<%= yield %> - - - diff --git a/dummy/bin/bundle b/dummy/bin/bundle deleted file mode 100755 index 66e9889..0000000 --- a/dummy/bin/bundle +++ /dev/null @@ -1,3 +0,0 @@ -#!/usr/bin/env ruby -ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__) -load Gem.bin_path('bundler', 'bundle') diff --git a/dummy/bin/rails b/dummy/bin/rails deleted file mode 100755 index 7feb6a3..0000000 --- a/dummy/bin/rails +++ /dev/null @@ -1,8 +0,0 @@ -#!/usr/bin/env ruby -begin - load File.expand_path("../spring", __FILE__) -rescue LoadError -end -APP_PATH = File.expand_path('../../config/application', __FILE__) -require_relative '../config/boot' -require 'rails/commands' diff --git a/dummy/bin/rake b/dummy/bin/rake deleted file mode 100755 index 8017a02..0000000 --- a/dummy/bin/rake +++ /dev/null @@ -1,8 +0,0 @@ -#!/usr/bin/env ruby -begin - load File.expand_path("../spring", __FILE__) -rescue LoadError -end -require_relative '../config/boot' -require 'rake' -Rake.application.run diff --git a/dummy/bin/spring b/dummy/bin/spring deleted file mode 100755 index 253ec37..0000000 --- a/dummy/bin/spring +++ /dev/null @@ -1,18 +0,0 @@ -#!/usr/bin/env ruby - -# This file loads spring without using Bundler, in order to be fast -# It gets overwritten when you run the `spring binstub` command - -unless defined?(Spring) - require "rubygems" - require "bundler" - - if match = Bundler.default_lockfile.read.match(/^GEM$.*?^ spring \((.*?)\)$.*?^$/m) - ENV["GEM_PATH"] = ([Bundler.bundle_path.to_s] + Gem.path).join(File::PATH_SEPARATOR) - ENV["GEM_HOME"] = "" - Gem.paths = ENV - - gem "spring", match[1] - require "spring/binstub" - end -end diff --git a/dummy/config/application.rb b/dummy/config/application.rb deleted file mode 100644 index 9c95913..0000000 --- a/dummy/config/application.rb +++ /dev/null @@ -1,30 +0,0 @@ -require File.expand_path('../boot', __FILE__) - -require 'rails/all' - -# Require the gems listed in Gemfile, including any gems -# you've limited to :test, :development, or :production. -Bundler.require(*Rails.groups) -require "petergate" - -module Dummy - class Application < Rails::Application - config.generators do |g| - g.test_framework :minitest, spec: true, fixture: true - g.helper false - g.view_specs false - end - # Settings in config/environments/* take precedence over those specified here. - # Application configuration should go into files in config/initializers - # -- all .rb files in that directory are automatically loaded. - - # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone. - # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC. - # config.time_zone = 'Central Time (US & Canada)' - - # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded. - # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s] - # config.i18n.default_locale = :de - config.active_record.sqlite3.represent_boolean_as_integer = true - end -end diff --git a/dummy/config/boot.rb b/dummy/config/boot.rb deleted file mode 100644 index 5e5f0c1..0000000 --- a/dummy/config/boot.rb +++ /dev/null @@ -1,4 +0,0 @@ -# Set up gems listed in the Gemfile. -ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__) - -require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE']) diff --git a/dummy/config/environments/development.rb b/dummy/config/environments/development.rb deleted file mode 100644 index ddf0e90..0000000 --- a/dummy/config/environments/development.rb +++ /dev/null @@ -1,37 +0,0 @@ -Rails.application.configure do - # Settings specified here will take precedence over those in config/application.rb. - - # In the development environment your application's code is reloaded on - # every request. This slows down response time but is perfect for development - # since you don't have to restart the web server when you make code changes. - config.cache_classes = false - - # Do not eager load code on boot. - config.eager_load = false - - # Show full error reports and disable caching. - config.consider_all_requests_local = true - config.action_controller.perform_caching = false - - # Don't care if the mailer can't send. - config.action_mailer.raise_delivery_errors = false - - # Print deprecation notices to the Rails logger. - config.active_support.deprecation = :log - - # Raise an error on page load if there are pending migrations. - config.active_record.migration_error = :page_load - - # Debug mode disables concatenation and preprocessing of assets. - # This option may cause significant delays in view rendering with a large - # number of complex assets. - config.assets.debug = true - - # Adds additional error checking when serving assets at runtime. - # Checks for improperly declared sprockets dependencies. - # Raises helpful error messages. - config.assets.raise_runtime_errors = true - - # Raises error for missing translations - # config.action_view.raise_on_missing_translations = true -end diff --git a/dummy/config/initializers/assets.rb b/dummy/config/initializers/assets.rb deleted file mode 100644 index d2f4ec3..0000000 --- a/dummy/config/initializers/assets.rb +++ /dev/null @@ -1,8 +0,0 @@ -# Be sure to restart your server when you modify this file. - -# Version of your assets, change this if you want to expire all your assets. -Rails.application.config.assets.version = '1.0' - -# Precompile additional assets. -# application.js, application.css, and all non-JS/CSS in app/assets folder are already added. -# Rails.application.config.assets.precompile += %w( search.js ) diff --git a/dummy/config/initializers/session_store.rb b/dummy/config/initializers/session_store.rb deleted file mode 100644 index e766b67..0000000 --- a/dummy/config/initializers/session_store.rb +++ /dev/null @@ -1,3 +0,0 @@ -# Be sure to restart your server when you modify this file. - -Rails.application.config.session_store :cookie_store, key: '_dummy_session' diff --git a/dummy/config/secrets.yml b/dummy/config/secrets.yml deleted file mode 100644 index 605d1e9..0000000 --- a/dummy/config/secrets.yml +++ /dev/null @@ -1,22 +0,0 @@ -# Be sure to restart your server when you modify this file. - -# Your secret key is used for verifying the integrity of signed cookies. -# If you change this key, all old signed cookies will become invalid! - -# Make sure the secret is at least 30 characters and all random, -# no regular words or you'll be exposed to dictionary attacks. -# You can use `rake secret` to generate a secure secret key. - -# Make sure the secrets in this file are kept private -# if you're sharing your code publicly. - -development: - secret_key_base: 385348a0bf7dfc01fd9d1b1a69be6bab7c52fd3330e8d3b3919ab2a496fe27b1bc376f3aa0ba91df412fd397808ab15e9f426cf4a779f3d14106511895302486 - -test: - secret_key_base: fcc71ae546540f41e59342cd119ecb621517950284b46e0c2a43b4a7f1d8d7b482b329a3c7d7524eb784913fbe16137f6a5a59f08b8a9e44d9ee499c6d15d12a - -# Do not keep production secrets in the repository, -# instead read values from the environment. -production: - secret_key_base: <%= ENV["SECRET_KEY_BASE"] %> diff --git a/dummy/db/seeds.rb b/dummy/db/seeds.rb deleted file mode 100644 index 4edb1e8..0000000 --- a/dummy/db/seeds.rb +++ /dev/null @@ -1,7 +0,0 @@ -# This file should contain all the record creation needed to seed the database with its default values. -# The data can then be loaded with the rake db:seed (or created alongside the db with db:setup). -# -# Examples: -# -# cities = City.create([{ name: 'Chicago' }, { name: 'Copenhagen' }]) -# Mayor.create(name: 'Emanuel', city: cities.first) diff --git a/dummy/public/logo_square.png b/dummy/public/logo_square.png deleted file mode 100644 index 2308964..0000000 Binary files a/dummy/public/logo_square.png and /dev/null differ diff --git a/dummy/public/petergate.png b/dummy/public/petergate.png deleted file mode 100644 index b0d43fc..0000000 Binary files a/dummy/public/petergate.png and /dev/null differ diff --git a/dummy/public/robots.txt b/dummy/public/robots.txt deleted file mode 100644 index 3c9c7c0..0000000 --- a/dummy/public/robots.txt +++ /dev/null @@ -1,5 +0,0 @@ -# See http://www.robotstxt.org/robotstxt.html for documentation on how to use the robots.txt file -# -# To ban all spiders from the entire site uncomment the next two lines: -# User-agent: * -# Disallow: / diff --git a/dummy/test/test_helper.rb b/dummy/test/test_helper.rb deleted file mode 100644 index b9c47f0..0000000 --- a/dummy/test/test_helper.rb +++ /dev/null @@ -1,37 +0,0 @@ -ENV['RAILS_ENV'] = 'test' -require File.expand_path("../../config/environment", __FILE__) -require "rails/test_help" -require "minitest/rails" - -# To add Capybara feature tests add `gem "minitest-rails-capybara"` -# to the test group in the Gemfile and uncomment the following: -# require "minitest/rails/capybara" - -require "minitest/pride" -require "minitest/reporters" -require "minitest/autorun" -class ActiveSupport::TestCase - Minitest::Reporters.use! Minitest::Reporters::SpecReporter.new - ActiveRecord::Migration.check_pending! - fixtures :all - - # Setup all fixtures in test/fixtures/*.(yml|csv) for all tests in alphabetical order. -end - -class ActionDispatch::IntegrationTest - include Devise::Test::IntegrationHelpers - def create_user_and_login(email: "user@example.com", password: "youllneverguess") - u = User.create!(email: email, password: password, password_confirmation: password, roles: :user) - sign_in(u) - end - - def create_admin_and_login(email: "user@example.com", password: "youllneverguess") - u = User.create!(email: email, password: password, password_confirmation: password, roles: :root_admin) - sign_in(u) - end - - def create_company_admin_and_login(email: "user@example.com", password: "youllneverguess") - u = User.create!(email: email, password: password, password_confirmation: password, roles: :company_admin) - sign_in(u) - end -end diff --git a/lib/petergate.rb b/lib/petergate.rb index af146c1..88bceb3 100644 --- a/lib/petergate.rb +++ b/lib/petergate.rb @@ -4,5 +4,11 @@ require 'petergate/active_record/base' module Petergate + def self.auth_class + @@auth_class + end + def self.auth_class=(v) + @@auth_class ||= v + end end diff --git a/lib/petergate/action_controller/base.rb b/lib/petergate/action_controller/base.rb index afe4e30..a055ece 100644 --- a/lib/petergate/action_controller/base.rb +++ b/lib/petergate/action_controller/base.rb @@ -47,7 +47,7 @@ def inherited(subclass) unless logged_in?(:root_admin) message = permissions(self.class.controller_rules) if message == false || message.is_a?(String) - if current_user || @user + if current_auth_model || instance_variable_get("@" + Petergate.auth_class) forbidden! message else unauthorized! @@ -87,18 +87,18 @@ def parse_permission_rules(rules) def permissions(rules = {all: [:index, :show], customer: [], wiring: []}) rules = parse_permission_rules(rules) allowances = [rules[:all]] - current_user.roles.each do |role| + current_auth_model.roles.each do |role| allowances << rules[role] end if user_logged_in? allowances.flatten.compact.include?(action_name.to_sym) end def logged_in?(*roles) - current_user && current_user.has_roles?(*roles) + current_auth_model && current_auth_model.has_roles?(*roles) end def user_logged_in? - !!current_user + !!current_auth_model end def custom_message @@ -111,7 +111,7 @@ def unauthorized! head(:unauthorized) end format.html do - return authenticate_user! + return self.send("authenticate_" + Petergate.auth_class + "!") end end end @@ -122,11 +122,15 @@ def forbidden!(msg = nil) head(:forbidden) end format.html do - destination = current_user.present? ? request.headers['Referrer'] || after_sign_in_path_for(current_user) : root_path + destination = current_auth_model.present? ? request.headers['Referrer'] || after_sign_in_path_for(current_auth_model) : root_path redirect_to destination, notice: (msg || request.headers['msg'] || custom_message) end end end + + def current_auth_model + self.send("current_" + Petergate.auth_class) + end end end end diff --git a/lib/petergate/active_record/base.rb b/lib/petergate/active_record/base.rb index 82b4d4a..8f07226 100644 --- a/lib/petergate/active_record/base.rb +++ b/lib/petergate/active_record/base.rb @@ -7,6 +7,8 @@ def self.included(base) module ClassMethods def petergate(roles: [:admin], multiple: true) + Petergate.auth_class = self.to_s.downcase + if multiple serialize :roles after_initialize do @@ -19,7 +21,7 @@ def petergate(roles: [:admin], multiple: true) end instance_eval do - const_set('ROLES', (roles + [:user]).uniq.map(&:to_sym)) unless defined?(User::ROLES) + const_set('ROLES', (roles + [:user]).uniq.map(&:to_sym)) unless self.constants.include?(:ROLES) if multiple roles.each do |role| diff --git a/petergate.gemspec b/petergate.gemspec index c048802..adb231e 100644 --- a/petergate.gemspec +++ b/petergate.gemspec @@ -18,7 +18,7 @@ Gem::Specification.new do |spec| spec.require_paths = ["lib"] spec.post_install_message = "NOTICE: As of version 1.5.0, the :admin role has been changed to :root_admin." - spec.add_development_dependency "bundler", "~> 1.7" + spec.add_development_dependency "bundler", "> 1.7" spec.add_development_dependency "rake", "~> 12.3" spec.add_dependency 'activerecord', "> 4.0.0" end diff --git a/dummy/.gitignore b/test/employee/.gitignore similarity index 64% rename from dummy/.gitignore rename to test/employee/.gitignore index 6a502e9..81452db 100644 --- a/dummy/.gitignore +++ b/test/employee/.gitignore @@ -12,5 +12,20 @@ /db/*.sqlite3-journal # Ignore all logfiles and tempfiles. -/log/*.log -/tmp +/log/* +/tmp/* +!/log/.keep +!/tmp/.keep + +# Ignore uploaded files in development +/storage/* +!/storage/.keep + +/node_modules +/yarn-error.log + +/public/assets +.byebug_history + +# Ignore master key for decrypting credentials and more. +/config/master.key diff --git a/test/employee/.ruby-version b/test/employee/.ruby-version new file mode 100644 index 0000000..4fd0fe3 --- /dev/null +++ b/test/employee/.ruby-version @@ -0,0 +1 @@ +2.5.1 \ No newline at end of file diff --git a/test/employee/Gemfile b/test/employee/Gemfile new file mode 100644 index 0000000..29f2120 --- /dev/null +++ b/test/employee/Gemfile @@ -0,0 +1,67 @@ +source 'https://rubygems.org' +git_source(:github) { |repo| "https://github.com/#{repo}.git" } + +ruby '2.5.1' + +# Bundle edge Rails instead: gem 'rails', github: 'rails/rails' +gem 'rails', '~> 5.2.2' +# Use sqlite3 as the database for Active Record +gem 'sqlite3' +# Use Puma as the app server +gem 'puma', '~> 3.11' +# Use SCSS for stylesheets +gem 'sass-rails', '~> 5.0' +# Use Uglifier as compressor for JavaScript assets +gem 'uglifier', '>= 1.3.0' +# See https://github.com/rails/execjs#readme for more supported runtimes +# gem 'mini_racer', platforms: :ruby + +# Use CoffeeScript for .coffee assets and views +gem 'coffee-rails', '~> 4.2' +# Turbolinks makes navigating your web application faster. Read more: https://github.com/turbolinks/turbolinks +gem 'turbolinks', '~> 5' +# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder +gem 'jbuilder', '~> 2.5' +# Use Redis adapter to run Action Cable in production +# gem 'redis', '~> 4.0' +# Use ActiveModel has_secure_password +# gem 'bcrypt', '~> 3.1.7' + +# Use ActiveStorage variant +# gem 'mini_magick', '~> 4.8' + +# Use Capistrano for deployment +# gem 'capistrano-rails', group: :development + +# Reduces boot times through caching; required in config/boot.rb +gem 'bootsnap', '>= 1.1.0', require: false +gem 'devise' +gem 'petergate', path: '../../' + +group :development, :test do + # Call 'byebug' anywhere in the code to stop execution and get a debugger console + gem 'byebug', platforms: [:mri, :mingw, :x64_mingw] + gem 'pry', platforms: [:mri, :mingw, :x64_mingw] +end + +group :development do + # Access an interactive console on exception pages or by calling 'console' anywhere in the code. + gem 'web-console', '>= 3.3.0' + gem 'listen', '>= 3.0.5', '< 3.2' + # Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring + gem 'spring' + gem 'spring-watcher-listen', '~> 2.0.0' +end + +group :test do + # Adds support for Capybara system testing and selenium driver + gem 'capybara', '>= 2.15' + gem 'selenium-webdriver' + # Easy installation and use of chromedriver to run system tests with Chrome + gem 'chromedriver-helper' + gem "minitest-rails" + gem "minitest-reporters" +end + +# Windows does not include zoneinfo files, so bundle the tzinfo-data gem +gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby] diff --git a/dummy/README.rdoc b/test/employee/README.md similarity index 76% rename from dummy/README.rdoc rename to test/employee/README.md index dd4e97e..7db80e4 100644 --- a/dummy/README.rdoc +++ b/test/employee/README.md @@ -1,4 +1,4 @@ -== README +# README This README would normally document whatever steps are necessary to get the application up and running. @@ -22,7 +22,3 @@ Things you may want to cover: * Deployment instructions * ... - - -Please feel free to use a different markup language if you do not plan to run -rake doc:app. diff --git a/dummy/Rakefile b/test/employee/Rakefile similarity index 70% rename from dummy/Rakefile rename to test/employee/Rakefile index fb9c1ab..e85f913 100644 --- a/dummy/Rakefile +++ b/test/employee/Rakefile @@ -1,7 +1,6 @@ # Add your own tasks in files placed in lib/tasks ending in .rake, # for example lib/tasks/capistrano.rake, and they will automatically be available to Rake. -require File.expand_path('../config/application', __FILE__) +require_relative 'config/application' Rails.application.load_tasks -task default: :test diff --git a/test/employee/app/assets/config/manifest.js b/test/employee/app/assets/config/manifest.js new file mode 100644 index 0000000..b16e53d --- /dev/null +++ b/test/employee/app/assets/config/manifest.js @@ -0,0 +1,3 @@ +//= link_tree ../images +//= link_directory ../javascripts .js +//= link_directory ../stylesheets .css diff --git a/dummy/app/assets/images/.keep b/test/employee/app/assets/images/.keep similarity index 100% rename from dummy/app/assets/images/.keep rename to test/employee/app/assets/images/.keep diff --git a/dummy/app/assets/javascripts/application.js b/test/employee/app/assets/javascripts/application.js similarity index 50% rename from dummy/app/assets/javascripts/application.js rename to test/employee/app/assets/javascripts/application.js index d6925fa..82e6f0f 100644 --- a/dummy/app/assets/javascripts/application.js +++ b/test/employee/app/assets/javascripts/application.js @@ -1,16 +1,16 @@ // This is a manifest file that'll be compiled into application.js, which will include all the files // listed below. // -// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts, -// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path. +// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, or any plugin's +// vendor/assets/javascripts directory can be referenced here using a relative path. // // It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the -// compiled file. +// compiled file. JavaScript code in this file should be added after the last require_* statement. // -// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details +// Read Sprockets README (https://github.com/rails/sprockets#sprockets-directives) for details // about supported directives. // -//= require jquery -//= require jquery_ujs +//= require rails-ujs +//= require activestorage //= require turbolinks //= require_tree . diff --git a/test/employee/app/assets/javascripts/cable.js b/test/employee/app/assets/javascripts/cable.js new file mode 100644 index 0000000..739aa5f --- /dev/null +++ b/test/employee/app/assets/javascripts/cable.js @@ -0,0 +1,13 @@ +// Action Cable provides the framework to deal with WebSockets in Rails. +// You can generate new channels where WebSocket features live using the `rails generate channel` command. +// +//= require action_cable +//= require_self +//= require_tree ./channels + +(function() { + this.App || (this.App = {}); + + App.cable = ActionCable.createConsumer(); + +}).call(this); diff --git a/dummy/app/controllers/concerns/.keep b/test/employee/app/assets/javascripts/channels/.keep similarity index 100% rename from dummy/app/controllers/concerns/.keep rename to test/employee/app/assets/javascripts/channels/.keep diff --git a/dummy/app/assets/stylesheets/application.css b/test/employee/app/assets/stylesheets/application.css similarity index 56% rename from dummy/app/assets/stylesheets/application.css rename to test/employee/app/assets/stylesheets/application.css index a443db3..d05ea0f 100644 --- a/dummy/app/assets/stylesheets/application.css +++ b/test/employee/app/assets/stylesheets/application.css @@ -2,13 +2,13 @@ * This is a manifest file that'll be compiled into application.css, which will include all the files * listed below. * - * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets, - * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path. + * Any CSS and SCSS file within this directory, lib/assets/stylesheets, or any plugin's + * vendor/assets/stylesheets directory can be referenced here using a relative path. * * You're free to add application-wide styles to this file and they'll appear at the bottom of the - * compiled file so the styles you add here take precedence over styles defined in any styles - * defined in the other CSS/SCSS files in this directory. It is generally better to create a new - * file per style scope. + * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS + * files in this directory. Styles in this file should be added after the last require_* statement. + * It is generally better to create a new file per style scope. * *= require_tree . *= require_self diff --git a/test/employee/app/channels/application_cable/channel.rb b/test/employee/app/channels/application_cable/channel.rb new file mode 100644 index 0000000..d672697 --- /dev/null +++ b/test/employee/app/channels/application_cable/channel.rb @@ -0,0 +1,4 @@ +module ApplicationCable + class Channel < ActionCable::Channel::Base + end +end diff --git a/test/employee/app/channels/application_cable/connection.rb b/test/employee/app/channels/application_cable/connection.rb new file mode 100644 index 0000000..0ff5442 --- /dev/null +++ b/test/employee/app/channels/application_cable/connection.rb @@ -0,0 +1,4 @@ +module ApplicationCable + class Connection < ActionCable::Connection::Base + end +end diff --git a/test/employee/app/controllers/application_controller.rb b/test/employee/app/controllers/application_controller.rb new file mode 100644 index 0000000..09705d1 --- /dev/null +++ b/test/employee/app/controllers/application_controller.rb @@ -0,0 +1,2 @@ +class ApplicationController < ActionController::Base +end diff --git a/dummy/app/controllers/blogs_controller.rb b/test/employee/app/controllers/blogs_controller.rb similarity index 97% rename from dummy/app/controllers/blogs_controller.rb rename to test/employee/app/controllers/blogs_controller.rb index d51481f..219156d 100644 --- a/dummy/app/controllers/blogs_controller.rb +++ b/test/employee/app/controllers/blogs_controller.rb @@ -58,7 +58,7 @@ def destroy @blog.destroy respond_to do |format| format.html { redirect_to blogs_url, notice: 'Blog was successfully destroyed.' } - format.json { head :no_content } + format.json { render body: blogs_url } end end diff --git a/dummy/app/mailers/.keep b/test/employee/app/controllers/concerns/.keep similarity index 100% rename from dummy/app/mailers/.keep rename to test/employee/app/controllers/concerns/.keep diff --git a/dummy/app/controllers/inheritance_controller.rb b/test/employee/app/controllers/inheritance_controller.rb similarity index 100% rename from dummy/app/controllers/inheritance_controller.rb rename to test/employee/app/controllers/inheritance_controller.rb diff --git a/dummy/app/helpers/application_helper.rb b/test/employee/app/helpers/application_helper.rb similarity index 100% rename from dummy/app/helpers/application_helper.rb rename to test/employee/app/helpers/application_helper.rb diff --git a/test/employee/app/jobs/application_job.rb b/test/employee/app/jobs/application_job.rb new file mode 100644 index 0000000..a009ace --- /dev/null +++ b/test/employee/app/jobs/application_job.rb @@ -0,0 +1,2 @@ +class ApplicationJob < ActiveJob::Base +end diff --git a/test/employee/app/mailers/application_mailer.rb b/test/employee/app/mailers/application_mailer.rb new file mode 100644 index 0000000..286b223 --- /dev/null +++ b/test/employee/app/mailers/application_mailer.rb @@ -0,0 +1,4 @@ +class ApplicationMailer < ActionMailer::Base + default from: 'from@example.com' + layout 'mailer' +end diff --git a/test/employee/app/models/application_record.rb b/test/employee/app/models/application_record.rb new file mode 100644 index 0000000..10a4cba --- /dev/null +++ b/test/employee/app/models/application_record.rb @@ -0,0 +1,3 @@ +class ApplicationRecord < ActiveRecord::Base + self.abstract_class = true +end diff --git a/test/employee/app/models/blog.rb b/test/employee/app/models/blog.rb new file mode 100644 index 0000000..0fcce79 --- /dev/null +++ b/test/employee/app/models/blog.rb @@ -0,0 +1,3 @@ +class Blog < ApplicationRecord +end + diff --git a/dummy/app/models/.keep b/test/employee/app/models/concerns/.keep similarity index 100% rename from dummy/app/models/.keep rename to test/employee/app/models/concerns/.keep diff --git a/test/employee/app/models/employee.rb b/test/employee/app/models/employee.rb new file mode 100644 index 0000000..e4bdc4e --- /dev/null +++ b/test/employee/app/models/employee.rb @@ -0,0 +1,14 @@ +class Employee < ApplicationRecord + ############################################################################################ + ## PeterGate Roles ## + ## The :user role is added by default and shouldn't be included in this list. ## + ## The :root_admin can access any page regardless of access settings. Use with caution! ## + ## The multiple option can be set to true if you need users to have multiple roles. ## + petergate(roles: [:root_admin, :company_admin], multiple: true) ## + ############################################################################################ + + # Include default devise modules. Others available are: + # :confirmable, :lockable, :timeoutable and :omniauthable + devise :database_authenticatable, :registerable, + :recoverable, :rememberable, :trackable, :validatable +end diff --git a/dummy/app/views/blogs/_form.html.erb b/test/employee/app/views/blogs/_form.html.erb similarity index 100% rename from dummy/app/views/blogs/_form.html.erb rename to test/employee/app/views/blogs/_form.html.erb diff --git a/dummy/app/views/blogs/edit.html.erb b/test/employee/app/views/blogs/edit.html.erb similarity index 100% rename from dummy/app/views/blogs/edit.html.erb rename to test/employee/app/views/blogs/edit.html.erb diff --git a/dummy/app/views/blogs/index.html.erb b/test/employee/app/views/blogs/index.html.erb similarity index 100% rename from dummy/app/views/blogs/index.html.erb rename to test/employee/app/views/blogs/index.html.erb diff --git a/dummy/app/views/blogs/new.html.erb b/test/employee/app/views/blogs/new.html.erb similarity index 100% rename from dummy/app/views/blogs/new.html.erb rename to test/employee/app/views/blogs/new.html.erb diff --git a/dummy/app/views/blogs/show.html.erb b/test/employee/app/views/blogs/show.html.erb similarity index 100% rename from dummy/app/views/blogs/show.html.erb rename to test/employee/app/views/blogs/show.html.erb diff --git a/test/employee/app/views/layouts/application.html.erb b/test/employee/app/views/layouts/application.html.erb new file mode 100644 index 0000000..4064847 --- /dev/null +++ b/test/employee/app/views/layouts/application.html.erb @@ -0,0 +1,17 @@ + + + + PetergateTest + <%= csrf_meta_tags %> + <%= csp_meta_tag %> + + <%= stylesheet_link_tag 'application', media: 'all', 'data-turbolinks-track': 'reload' %> + <%= javascript_include_tag 'application', 'data-turbolinks-track': 'reload' %> + + + +

<%= notice %>

+

<%= alert %>

+ <%= yield %> + + diff --git a/test/employee/app/views/layouts/mailer.html.erb b/test/employee/app/views/layouts/mailer.html.erb new file mode 100644 index 0000000..cbd34d2 --- /dev/null +++ b/test/employee/app/views/layouts/mailer.html.erb @@ -0,0 +1,13 @@ + + + + + + + + + <%= yield %> + + diff --git a/test/employee/app/views/layouts/mailer.text.erb b/test/employee/app/views/layouts/mailer.text.erb new file mode 100644 index 0000000..37f0bdd --- /dev/null +++ b/test/employee/app/views/layouts/mailer.text.erb @@ -0,0 +1 @@ +<%= yield %> diff --git a/test/employee/bin/bundle b/test/employee/bin/bundle new file mode 100755 index 0000000..f19acf5 --- /dev/null +++ b/test/employee/bin/bundle @@ -0,0 +1,3 @@ +#!/usr/bin/env ruby +ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__) +load Gem.bin_path('bundler', 'bundle') diff --git a/test/employee/bin/rails b/test/employee/bin/rails new file mode 100755 index 0000000..5badb2f --- /dev/null +++ b/test/employee/bin/rails @@ -0,0 +1,9 @@ +#!/usr/bin/env ruby +begin + load File.expand_path('../spring', __FILE__) +rescue LoadError => e + raise unless e.message.include?('spring') +end +APP_PATH = File.expand_path('../config/application', __dir__) +require_relative '../config/boot' +require 'rails/commands' diff --git a/test/employee/bin/rake b/test/employee/bin/rake new file mode 100755 index 0000000..d87d5f5 --- /dev/null +++ b/test/employee/bin/rake @@ -0,0 +1,9 @@ +#!/usr/bin/env ruby +begin + load File.expand_path('../spring', __FILE__) +rescue LoadError => e + raise unless e.message.include?('spring') +end +require_relative '../config/boot' +require 'rake' +Rake.application.run diff --git a/test/employee/bin/setup b/test/employee/bin/setup new file mode 100755 index 0000000..94fd4d7 --- /dev/null +++ b/test/employee/bin/setup @@ -0,0 +1,36 @@ +#!/usr/bin/env ruby +require 'fileutils' +include FileUtils + +# path to your application root. +APP_ROOT = File.expand_path('..', __dir__) + +def system!(*args) + system(*args) || abort("\n== Command #{args} failed ==") +end + +chdir APP_ROOT do + # This script is a starting point to setup your application. + # Add necessary setup steps to this file. + + puts '== Installing dependencies ==' + system! 'gem install bundler --conservative' + system('bundle check') || system!('bundle install') + + # Install JavaScript dependencies if using Yarn + # system('bin/yarn') + + # puts "\n== Copying sample files ==" + # unless File.exist?('config/database.yml') + # cp 'config/database.yml.sample', 'config/database.yml' + # end + + puts "\n== Preparing database ==" + system! 'bin/rails db:setup' + + puts "\n== Removing old logs and tempfiles ==" + system! 'bin/rails log:clear tmp:clear' + + puts "\n== Restarting application server ==" + system! 'bin/rails restart' +end diff --git a/test/employee/bin/spring b/test/employee/bin/spring new file mode 100755 index 0000000..d89ee49 --- /dev/null +++ b/test/employee/bin/spring @@ -0,0 +1,17 @@ +#!/usr/bin/env ruby + +# This file loads Spring without using Bundler, in order to be fast. +# It gets overwritten when you run the `spring binstub` command. + +unless defined?(Spring) + require 'rubygems' + require 'bundler' + + lockfile = Bundler::LockfileParser.new(Bundler.default_lockfile.read) + spring = lockfile.specs.detect { |spec| spec.name == 'spring' } + if spring + Gem.use_paths Gem.dir, Bundler.bundle_path.to_s, *Gem.path + gem 'spring', spring.version + require 'spring/binstub' + end +end diff --git a/test/employee/bin/update b/test/employee/bin/update new file mode 100755 index 0000000..58bfaed --- /dev/null +++ b/test/employee/bin/update @@ -0,0 +1,31 @@ +#!/usr/bin/env ruby +require 'fileutils' +include FileUtils + +# path to your application root. +APP_ROOT = File.expand_path('..', __dir__) + +def system!(*args) + system(*args) || abort("\n== Command #{args} failed ==") +end + +chdir APP_ROOT do + # This script is a way to update your development environment automatically. + # Add necessary update steps to this file. + + puts '== Installing dependencies ==' + system! 'gem install bundler --conservative' + system('bundle check') || system!('bundle install') + + # Install JavaScript dependencies if using Yarn + # system('bin/yarn') + + puts "\n== Updating database ==" + system! 'bin/rails db:migrate' + + puts "\n== Removing old logs and tempfiles ==" + system! 'bin/rails log:clear tmp:clear' + + puts "\n== Restarting application server ==" + system! 'bin/rails restart' +end diff --git a/test/employee/bin/yarn b/test/employee/bin/yarn new file mode 100755 index 0000000..460dd56 --- /dev/null +++ b/test/employee/bin/yarn @@ -0,0 +1,11 @@ +#!/usr/bin/env ruby +APP_ROOT = File.expand_path('..', __dir__) +Dir.chdir(APP_ROOT) do + begin + exec "yarnpkg", *ARGV + rescue Errno::ENOENT + $stderr.puts "Yarn executable was not detected in the system." + $stderr.puts "Download Yarn at https://yarnpkg.com/en/docs/install" + exit 1 + end +end diff --git a/dummy/config.ru b/test/employee/config.ru similarity index 59% rename from dummy/config.ru rename to test/employee/config.ru index 5bc2a61..f7ba0b5 100644 --- a/dummy/config.ru +++ b/test/employee/config.ru @@ -1,4 +1,5 @@ # This file is used by Rack-based servers to start the application. -require ::File.expand_path('../config/environment', __FILE__) +require_relative 'config/environment' + run Rails.application diff --git a/test/employee/config/application.rb b/test/employee/config/application.rb new file mode 100644 index 0000000..5593023 --- /dev/null +++ b/test/employee/config/application.rb @@ -0,0 +1,19 @@ +require_relative 'boot' + +require 'rails/all' + +# Require the gems listed in Gemfile, including any gems +# you've limited to :test, :development, or :production. +Bundler.require(*Rails.groups) + +module PetergateTest + class Application < Rails::Application + # Initialize configuration defaults for originally generated Rails version. + config.load_defaults 5.2 + + # Settings in config/environments/* take precedence over those specified here. + # Application configuration can go into files in config/initializers + # -- all .rb files in that directory are automatically loaded after loading + # the framework and any gems in your application. + end +end diff --git a/test/employee/config/boot.rb b/test/employee/config/boot.rb new file mode 100644 index 0000000..4423c97 --- /dev/null +++ b/test/employee/config/boot.rb @@ -0,0 +1,4 @@ +ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__) + +require 'bundler/setup' # Set up gems listed in the Gemfile. +# require 'bootsnap/setup' # Speed up boot time by caching expensive operations. diff --git a/test/employee/config/cable.yml b/test/employee/config/cable.yml new file mode 100644 index 0000000..e92422f --- /dev/null +++ b/test/employee/config/cable.yml @@ -0,0 +1,10 @@ +development: + adapter: async + +test: + adapter: async + +production: + adapter: redis + url: <%= ENV.fetch("REDIS_URL") { "redis://localhost:6379/1" } %> + channel_prefix: petergate_test_production diff --git a/test/employee/config/credentials.yml.enc b/test/employee/config/credentials.yml.enc new file mode 100644 index 0000000..352bbd5 --- /dev/null +++ b/test/employee/config/credentials.yml.enc @@ -0,0 +1 @@ +bdEHtHG0qweH4Gtiyrsg3FK/W5oo6Ny/nt7Dx5m7fXTFkPIDK8D15PLrl1iYD72npW50KhUY8IJFoTPQXbAmi0nQ0fPC3WSnpJfTU9Jb2VIP8rbAzqsTTAlaYLFkj0zp/0VmF2W0nOqOKgNx6siUhZo4Pa9b7+RVPHHIONm8oJM/uKS7h4ZCciCWN4cvB001hjNp1fhqbu2P0XTNdPV/kfwvEH+sZwhdyF+otCVtcnfYI1dCk7gtRGcSJ0RreV1EsqRvSDSQXmPepelytbcL6aNerNteIZefYodwRl/a7fGLV13cSnALmf6m3LNOReOisBfSj25/g9UseVYPNzNQhGMiIQ098/HuYJ9qvFo9YsMiIqUDtWhODBFM+FJ5PkEXZPaTYpC5Q11SJ3tni6ym5CijsdwHglRTOPo5--n3H7WcTrQAVwaNRu--GKpIvDJDuK2ccKAqch+BgA== \ No newline at end of file diff --git a/dummy/config/database.yml b/test/employee/config/database.yml similarity index 91% rename from dummy/config/database.yml rename to test/employee/config/database.yml index 1c1a37c..0d02f24 100644 --- a/dummy/config/database.yml +++ b/test/employee/config/database.yml @@ -6,7 +6,7 @@ # default: &default adapter: sqlite3 - pool: 5 + pool: <%= ENV.fetch("RAILS_MAX_THREADS") { 5 } %> timeout: 5000 development: diff --git a/dummy/config/environment.rb b/test/employee/config/environment.rb similarity index 64% rename from dummy/config/environment.rb rename to test/employee/config/environment.rb index ee8d90d..426333b 100644 --- a/dummy/config/environment.rb +++ b/test/employee/config/environment.rb @@ -1,5 +1,5 @@ # Load the Rails application. -require File.expand_path('../application', __FILE__) +require_relative 'application' # Initialize the Rails application. Rails.application.initialize! diff --git a/test/employee/config/environments/development.rb b/test/employee/config/environments/development.rb new file mode 100644 index 0000000..208b2dd --- /dev/null +++ b/test/employee/config/environments/development.rb @@ -0,0 +1,62 @@ +Rails.application.configure do + # Settings specified here will take precedence over those in config/application.rb. + + # In the development environment your application's code is reloaded on + # every request. This slows down response time but is perfect for development + # since you don't have to restart the web server when you make code changes. + config.cache_classes = false + + # Do not eager load code on boot. + config.eager_load = false + + # Show full error reports. + config.consider_all_requests_local = true + + # Enable/disable caching. By default caching is disabled. + # Run rails dev:cache to toggle caching. + if Rails.root.join('tmp', 'caching-dev.txt').exist? + config.action_controller.perform_caching = true + + config.cache_store = :memory_store + config.public_file_server.headers = { + 'Cache-Control' => "public, max-age=#{2.days.to_i}" + } + else + config.action_controller.perform_caching = false + + config.cache_store = :null_store + end + + # Store uploaded files on the local file system (see config/storage.yml for options) + config.active_storage.service = :local + + # Don't care if the mailer can't send. + config.action_mailer.raise_delivery_errors = false + + config.action_mailer.perform_caching = false + + # Print deprecation notices to the Rails logger. + config.active_support.deprecation = :log + + # Raise an error on page load if there are pending migrations. + config.active_record.migration_error = :page_load + + # Highlight code that triggered database queries in logs. + config.active_record.verbose_query_logs = true + + # Debug mode disables concatenation and preprocessing of assets. + # This option may cause significant delays in view rendering with a large + # number of complex assets. + config.assets.debug = true + + # Suppress logger output for asset requests. + config.assets.quiet = true + config.action_mailer.default_url_options = { host: 'localhost', port: 3000 } + + # Raises error for missing translations + # config.action_view.raise_on_missing_translations = true + + # Use an evented file watcher to asynchronously detect changes in source code, + # routes, locales, etc. This feature depends on the listen gem. + config.file_watcher = ActiveSupport::EventedFileUpdateChecker +end diff --git a/dummy/config/environments/production.rb b/test/employee/config/environments/production.rb similarity index 56% rename from dummy/config/environments/production.rb rename to test/employee/config/environments/production.rb index b93a877..a25cb75 100644 --- a/dummy/config/environments/production.rb +++ b/test/employee/config/environments/production.rb @@ -14,13 +14,13 @@ config.consider_all_requests_local = false config.action_controller.perform_caching = true - # Enable Rack::Cache to put a simple HTTP cache in front of your application - # Add `rack-cache` to your Gemfile before enabling this. - # For large-scale production use, consider using a caching reverse proxy like nginx, varnish or squid. - # config.action_dispatch.rack_cache = true + # Ensures that a master key has been made available in either ENV["RAILS_MASTER_KEY"] + # or in config/master.key. This key is used to decrypt credentials (and other encrypted files). + # config.require_master_key = true - # Disable Rails's static asset server (Apache or nginx will already do this). - config.serve_static_assets = false + # Disable serving static files from the `/public` folder by default since + # Apache or NGINX already handles this. + config.public_file_server.enabled = ENV['RAILS_SERVE_STATIC_FILES'].present? # Compress JavaScripts and CSS. config.assets.js_compressor = :uglifier @@ -29,32 +29,41 @@ # Do not fallback to assets pipeline if a precompiled asset is missed. config.assets.compile = false - # Generate digests for assets URLs. - config.assets.digest = true - # `config.assets.precompile` and `config.assets.version` have moved to config/initializers/assets.rb + # Enable serving of images, stylesheets, and JavaScripts from an asset server. + # config.action_controller.asset_host = 'http://assets.example.com' + # Specifies the header that your server uses for sending files. - # config.action_dispatch.x_sendfile_header = "X-Sendfile" # for apache - # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx + # config.action_dispatch.x_sendfile_header = 'X-Sendfile' # for Apache + # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for NGINX + + # Store uploaded files on the local file system (see config/storage.yml for options) + config.active_storage.service = :local + + # Mount Action Cable outside main process or domain + # config.action_cable.mount_path = nil + # config.action_cable.url = 'wss://example.com/cable' + # config.action_cable.allowed_request_origins = [ 'http://example.com', /http:\/\/example.*/ ] # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies. # config.force_ssl = true - # Set to :debug to see everything in the log. - config.log_level = :info + # Use the lowest log level to ensure availability of diagnostic information + # when problems arise. + config.log_level = :debug # Prepend all log lines with the following tags. - # config.log_tags = [ :subdomain, :uuid ] - - # Use a different logger for distributed setups. - # config.logger = ActiveSupport::TaggedLogging.new(SyslogLogger.new) + config.log_tags = [ :request_id ] # Use a different cache store in production. # config.cache_store = :mem_cache_store - # Enable serving of images, stylesheets, and JavaScripts from an asset server. - # config.action_controller.asset_host = "http://assets.example.com" + # Use a real queuing backend for Active Job (and separate queues per environment) + # config.active_job.queue_adapter = :resque + # config.active_job.queue_name_prefix = "petergate_test_#{Rails.env}" + + config.action_mailer.perform_caching = false # Ignore bad email addresses and do not raise email delivery errors. # Set this to true and configure the email server for immediate delivery to raise delivery errors. @@ -67,12 +76,19 @@ # Send deprecation notices to registered listeners. config.active_support.deprecation = :notify - # Disable automatic flushing of the log to improve performance. - # config.autoflush_log = false - # Use default logging formatter so that PID and timestamp are not suppressed. config.log_formatter = ::Logger::Formatter.new + # Use a different logger for distributed setups. + # require 'syslog/logger' + # config.logger = ActiveSupport::TaggedLogging.new(Syslog::Logger.new 'app-name') + + if ENV["RAILS_LOG_TO_STDOUT"].present? + logger = ActiveSupport::Logger.new(STDOUT) + logger.formatter = config.log_formatter + config.logger = ActiveSupport::TaggedLogging.new(logger) + end + # Do not dump schema after migrations. config.active_record.dump_schema_after_migration = false end diff --git a/test/employee/config/environments/test.rb b/test/employee/config/environments/test.rb new file mode 100644 index 0000000..0a38fd3 --- /dev/null +++ b/test/employee/config/environments/test.rb @@ -0,0 +1,46 @@ +Rails.application.configure do + # Settings specified here will take precedence over those in config/application.rb. + + # The test environment is used exclusively to run your application's + # test suite. You never need to work with it otherwise. Remember that + # your test database is "scratch space" for the test suite and is wiped + # and recreated between test runs. Don't rely on the data there! + config.cache_classes = true + + # Do not eager load code on boot. This avoids loading your whole application + # just for the purpose of running a single test. If you are using a tool that + # preloads Rails for running tests, you may have to set it to true. + config.eager_load = false + + # Configure public file server for tests with Cache-Control for performance. + config.public_file_server.enabled = true + config.public_file_server.headers = { + 'Cache-Control' => "public, max-age=#{1.hour.to_i}" + } + + # Show full error reports and disable caching. + config.consider_all_requests_local = true + config.action_controller.perform_caching = false + + # Raise exceptions instead of rendering exception templates. + config.action_dispatch.show_exceptions = false + + # Disable request forgery protection in test environment. + config.action_controller.allow_forgery_protection = false + + # Store uploaded files on the local file system in a temporary directory + config.active_storage.service = :test + + config.action_mailer.perform_caching = false + + # Tell Action Mailer not to deliver emails to the real world. + # The :test delivery method accumulates sent emails in the + # ActionMailer::Base.deliveries array. + config.action_mailer.delivery_method = :test + + # Print deprecation notices to the stderr. + config.active_support.deprecation = :stderr + + # Raises error for missing translations + # config.action_view.raise_on_missing_translations = true +end diff --git a/test/employee/config/initializers/application_controller_renderer.rb b/test/employee/config/initializers/application_controller_renderer.rb new file mode 100644 index 0000000..89d2efa --- /dev/null +++ b/test/employee/config/initializers/application_controller_renderer.rb @@ -0,0 +1,8 @@ +# Be sure to restart your server when you modify this file. + +# ActiveSupport::Reloader.to_prepare do +# ApplicationController.renderer.defaults.merge!( +# http_host: 'example.org', +# https: false +# ) +# end diff --git a/test/employee/config/initializers/assets.rb b/test/employee/config/initializers/assets.rb new file mode 100644 index 0000000..4b828e8 --- /dev/null +++ b/test/employee/config/initializers/assets.rb @@ -0,0 +1,14 @@ +# Be sure to restart your server when you modify this file. + +# Version of your assets, change this if you want to expire all your assets. +Rails.application.config.assets.version = '1.0' + +# Add additional assets to the asset load path. +# Rails.application.config.assets.paths << Emoji.images_path +# Add Yarn node_modules folder to the asset load path. +Rails.application.config.assets.paths << Rails.root.join('node_modules') + +# Precompile additional assets. +# application.js, application.css, and all non-JS/CSS in the app/assets +# folder are already added. +# Rails.application.config.assets.precompile += %w( admin.js admin.css ) diff --git a/dummy/config/initializers/backtrace_silencers.rb b/test/employee/config/initializers/backtrace_silencers.rb similarity index 100% rename from dummy/config/initializers/backtrace_silencers.rb rename to test/employee/config/initializers/backtrace_silencers.rb diff --git a/test/employee/config/initializers/content_security_policy.rb b/test/employee/config/initializers/content_security_policy.rb new file mode 100644 index 0000000..d3bcaa5 --- /dev/null +++ b/test/employee/config/initializers/content_security_policy.rb @@ -0,0 +1,25 @@ +# Be sure to restart your server when you modify this file. + +# Define an application-wide content security policy +# For further information see the following documentation +# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy + +# Rails.application.config.content_security_policy do |policy| +# policy.default_src :self, :https +# policy.font_src :self, :https, :data +# policy.img_src :self, :https, :data +# policy.object_src :none +# policy.script_src :self, :https +# policy.style_src :self, :https + +# # Specify URI for violation reports +# # policy.report_uri "/csp-violation-report-endpoint" +# end + +# If you are using UJS then enable automatic nonce generation +# Rails.application.config.content_security_policy_nonce_generator = -> request { SecureRandom.base64(16) } + +# Report CSP violations to a specified URI +# For further information see the following documentation: +# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only +# Rails.application.config.content_security_policy_report_only = true diff --git a/dummy/config/initializers/cookies_serializer.rb b/test/employee/config/initializers/cookies_serializer.rb similarity index 51% rename from dummy/config/initializers/cookies_serializer.rb rename to test/employee/config/initializers/cookies_serializer.rb index 7a06a89..5a6a32d 100644 --- a/dummy/config/initializers/cookies_serializer.rb +++ b/test/employee/config/initializers/cookies_serializer.rb @@ -1,3 +1,5 @@ # Be sure to restart your server when you modify this file. -Rails.application.config.action_dispatch.cookies_serializer = :json \ No newline at end of file +# Specify a serializer for the signed and encrypted cookie jars. +# Valid options are :json, :marshal, and :hybrid. +Rails.application.config.action_dispatch.cookies_serializer = :json diff --git a/dummy/config/initializers/devise.rb b/test/employee/config/initializers/devise.rb similarity index 77% rename from dummy/config/initializers/devise.rb rename to test/employee/config/initializers/devise.rb index 48d1010..98536d7 100644 --- a/dummy/config/initializers/devise.rb +++ b/test/employee/config/initializers/devise.rb @@ -1,10 +1,18 @@ +# frozen_string_literal: true + # Use this hook to configure devise mailer, warden hooks and so forth. # Many of these configuration options can be set straight in your model. Devise.setup do |config| # The secret key used by Devise. Devise uses this key to generate # random tokens. Changing this key will render invalid all existing # confirmation, reset password and unlock tokens in the database. - # config.secret_key = 'f4ddb2a77bc7a00d9c347577bb3a65857c434ab36027b6a5aec778716a003d80be4eaffbe9e9adca3eac2e31b786be3d30d2c6a981bb9665bda1df0c1bf6777a' + # Devise will use the `secret_key_base` as its `secret_key` + # by default. You can change it below and use your own secret key. + # config.secret_key = '8386a86098dfe71bfd6dc636cdd7f3a54a973205bcd8a1042c1310cc08f5754858ee4394124b2cd29809bb22aff2cf9386bcbc56bc78459cf75f1f7f7ee18e23' + + # ==> Controller configuration + # Configure the parent class to the devise controllers. + # config.parent_controller = 'DeviseController' # ==> Mailer Configuration # Configure the e-mail address which will be shown in Devise::Mailer, @@ -15,6 +23,9 @@ # Configure the class responsible to send e-mails. # config.mailer = 'Devise::Mailer' + # Configure the parent class responsible to send e-mails. + # config.parent_mailer = 'ActionMailer::Base' + # ==> ORM configuration # Load and configure the ORM. Supports :active_record (default) and # :mongoid (bson_ext recommended) by default. Other ORMs may be @@ -29,7 +40,7 @@ # session. If you need permissions, you should implement that in a before filter. # You can also supply a hash where the value is a boolean determining whether # or not authentication should be aborted when the value is not present. - # config.authentication_keys = [ :email ] + # config.authentication_keys = [:email] # Configure parameters from the request object used for authentication. Each entry # given should be a request method and it will automatically be passed to the @@ -41,12 +52,12 @@ # Configure which authentication keys should be case-insensitive. # These keys will be downcased upon creating or modifying a user and when used # to authenticate or find a user. Default is :email. - config.case_insensitive_keys = [ :email ] + config.case_insensitive_keys = [:email] # Configure which authentication keys should have whitespace stripped. # These keys will have whitespace before and after removed upon creating or # modifying a user and when used to authenticate or find a user. Default is :email. - config.strip_whitespace_keys = [ :email ] + config.strip_whitespace_keys = [:email] # Tell if authentication through request.params is enabled. True by default. # It can be set to an array that will enable params authentication only for the @@ -85,26 +96,41 @@ # from the server. You can disable this option at your own risk. # config.clean_up_csrf_token_on_authentication = true + # When false, Devise will not attempt to reload routes on eager load. + # This can reduce the time taken to boot the app but if your application + # requires the Devise mappings to be loaded during boot time the application + # won't boot properly. + # config.reload_routes = true + # ==> Configuration for :database_authenticatable - # For bcrypt, this is the cost for hashing the password and defaults to 10. If - # using other encryptors, it sets how many times you want the password re-encrypted. + # For bcrypt, this is the cost for hashing the password and defaults to 11. If + # using other algorithms, it sets how many times you want the password to be hashed. # # Limiting the stretches to just one in testing will increase the performance of # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use # a value less than 10 in other environments. Note that, for bcrypt (the default - # encryptor), the cost increases exponentially with the number of stretches (e.g. + # algorithm), the cost increases exponentially with the number of stretches (e.g. # a value of 20 is already extremely slow: approx. 60 seconds for 1 calculation). - config.stretches = Rails.env.test? ? 1 : 10 + config.stretches = Rails.env.test? ? 1 : 11 - # Setup a pepper to generate the encrypted password. - # config.pepper = 'cd6ab8ec802fe2ae53da888f53eb58b379093f716889ba8a517c7ad019b6dd22bcc18e10202383e44f9d4cb49e42fd334f699f25466fb5248ced3a9ba79feb8f' + # Set up a pepper to generate the hashed password. + # config.pepper = '1666f7a84aa372aeed81801a225dc02ca29463d19a53fabb7c82bc192b6ff6d3c41adf5fe807efc3fd7521c7cbfbdfd6dde019d261e6e3139fed34cd63a0c7e2' + + # Send a notification to the original email when the user's email is changed. + # config.send_email_changed_notification = false + + # Send a notification email when the user's password is changed. + # config.send_password_change_notification = false # ==> Configuration for :confirmable # A period that the user is allowed to access the website even without # confirming their account. For instance, if set to 2.days, the user will be # able to access the website for two days without confirming their account, - # access will be blocked just in the third day. Default is 0.days, meaning - # the user cannot access the website without confirming their account. + # access will be blocked just in the third day. + # You can also set it to nil, which will allow the user to access the website + # without confirming their account. + # Default is 0.days, meaning the user cannot access the website without + # confirming their account. # config.allow_unconfirmed_access_for = 2.days # A period that the user is allowed to confirm their account before their @@ -122,7 +148,7 @@ config.reconfirmable = true # Defines which key will be used when confirming an account - # config.confirmation_keys = [ :email ] + # config.confirmation_keys = [:email] # ==> Configuration for :rememberable # The time the user will be remembered without asking for credentials again. @@ -140,21 +166,18 @@ # ==> Configuration for :validatable # Range for password length. - config.password_length = 8..128 + config.password_length = 6..128 # Email regex used to validate email formats. It simply asserts that # one (and only one) @ exists in the given string. This is mainly # to give user feedback and not to assert the e-mail validity. - # config.email_regexp = /\A[^@]+@[^@]+\z/ + config.email_regexp = /\A[^@\s]+@[^@\s]+\z/ # ==> Configuration for :timeoutable # The time you want to timeout the user session without activity. After this # time the user will be asked for credentials again. Default is 30 minutes. # config.timeout_in = 30.minutes - # If true, expires auth token on session timeout. - # config.expire_auth_token_on_timeout = false - # ==> Configuration for :lockable # Defines which strategy will be used to lock an account. # :failed_attempts = Locks an account after a number of failed attempts to sign in. @@ -162,7 +185,7 @@ # config.lock_strategy = :failed_attempts # Defines which key will be used when locking and unlocking an account - # config.unlock_keys = [ :email ] + # config.unlock_keys = [:email] # Defines which strategy will be used to unlock an account. # :email = Sends an unlock link to the user email @@ -184,19 +207,23 @@ # ==> Configuration for :recoverable # # Defines which key will be used when recovering the password for an account - # config.reset_password_keys = [ :email ] + # config.reset_password_keys = [:email] # Time interval you can reset your password with a reset password key. # Don't put a too small interval or your users won't have the time to # change their passwords. config.reset_password_within = 6.hours + # When set to false, does not sign a user in automatically after their password is + # reset. Defaults to true, so a user is signed in automatically after a reset. + # config.sign_in_after_reset_password = true + # ==> Configuration for :encryptable - # Allow you to use another encryption algorithm besides bcrypt (default). You can use - # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1, - # :authlogic_sha512 (then you should set stretches above to 20 for default behavior) - # and :restful_authentication_sha1 (then you should set stretches to 10, and copy - # REST_AUTH_SITE_KEY to pepper). + # Allow you to use another hashing or encryption algorithm besides bcrypt (default). + # You can use :sha1, :sha512 or algorithms from others authentication tools as + # :clearance_sha1, :authlogic_sha512 (then you should set stretches above to 20 + # for default behavior) and :restful_authentication_sha1 (then you should set + # stretches to 10, and copy REST_AUTH_SITE_KEY to pepper). # # Require the `devise-encryptable` gem when using anything other than bcrypt # config.encryptor = :sha512 @@ -253,7 +280,20 @@ # The router that invoked `devise_for`, in the example above, would be: # config.router_name = :my_engine # - # When using omniauth, Devise cannot automatically set Omniauth path, + # When using OmniAuth, Devise cannot automatically set OmniAuth path, # so you need to do it manually. For the users scope, it would be: # config.omniauth_path_prefix = '/my_engine/users/auth' + + # ==> Turbolinks configuration + # If your app is using Turbolinks, Turbolinks::Controller needs to be included to make redirection work correctly: + # + # ActiveSupport.on_load(:devise_failure_app) do + # include Turbolinks::Controller + # end + + # ==> Configuration for :registerable + + # When set to false, does not sign a user in automatically after their password is + # changed. Defaults to true, so a user is signed in automatically after changing a password. + # config.sign_in_after_change_password = true end diff --git a/dummy/config/initializers/filter_parameter_logging.rb b/test/employee/config/initializers/filter_parameter_logging.rb similarity index 100% rename from dummy/config/initializers/filter_parameter_logging.rb rename to test/employee/config/initializers/filter_parameter_logging.rb diff --git a/dummy/config/initializers/inflections.rb b/test/employee/config/initializers/inflections.rb similarity index 100% rename from dummy/config/initializers/inflections.rb rename to test/employee/config/initializers/inflections.rb diff --git a/dummy/config/initializers/mime_types.rb b/test/employee/config/initializers/mime_types.rb similarity index 100% rename from dummy/config/initializers/mime_types.rb rename to test/employee/config/initializers/mime_types.rb diff --git a/dummy/config/initializers/wrap_parameters.rb b/test/employee/config/initializers/wrap_parameters.rb similarity index 80% rename from dummy/config/initializers/wrap_parameters.rb rename to test/employee/config/initializers/wrap_parameters.rb index 33725e9..bbfc396 100644 --- a/dummy/config/initializers/wrap_parameters.rb +++ b/test/employee/config/initializers/wrap_parameters.rb @@ -5,10 +5,10 @@ # Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array. ActiveSupport.on_load(:action_controller) do - wrap_parameters format: [:json] if respond_to?(:wrap_parameters) + wrap_parameters format: [:json] end # To enable root element in JSON for ActiveRecord objects. # ActiveSupport.on_load(:active_record) do -# self.include_root_in_json = true +# self.include_root_in_json = true # end diff --git a/dummy/config/locales/devise.en.yml b/test/employee/config/locales/devise.en.yml similarity index 94% rename from dummy/config/locales/devise.en.yml rename to test/employee/config/locales/devise.en.yml index 26a10f2..55617bd 100644 --- a/dummy/config/locales/devise.en.yml +++ b/test/employee/config/locales/devise.en.yml @@ -23,6 +23,10 @@ en: subject: "Reset password instructions" unlock_instructions: subject: "Unlock instructions" + email_changed: + subject: "Email Changed" + password_change: + subject: "Password Changed" omniauth_callbacks: failure: "Could not authenticate you from %{kind} because \"%{reason}\"." success: "Successfully authenticated from %{kind} account." @@ -40,6 +44,7 @@ en: signed_up_but_unconfirmed: "A message with a confirmation link has been sent to your email address. Please follow the link to activate your account." update_needs_confirmation: "You updated your account successfully, but we need to verify your new email address. Please check your email and follow the confirm link to confirm your new email address." updated: "Your account has been updated successfully." + updated_but_not_signed_in: "Your account has been updated successfully, but since your password was changed, you need to sign in again" sessions: signed_in: "Signed in successfully." signed_out: "Signed out successfully." diff --git a/dummy/config/locales/en.yml b/test/employee/config/locales/en.yml similarity index 74% rename from dummy/config/locales/en.yml rename to test/employee/config/locales/en.yml index 0653957..decc5a8 100644 --- a/dummy/config/locales/en.yml +++ b/test/employee/config/locales/en.yml @@ -16,6 +16,16 @@ # # This would use the information in config/locales/es.yml. # +# The following keys must be escaped otherwise they will not be retrieved by +# the default I18n backend: +# +# true, false, on, off, yes, no +# +# Instead, surround them with single quotes. +# +# en: +# 'true': 'foo' +# # To learn more, please read the Rails Internationalization guide # available at http://guides.rubyonrails.org/i18n.html. diff --git a/test/employee/config/puma.rb b/test/employee/config/puma.rb new file mode 100644 index 0000000..a5eccf8 --- /dev/null +++ b/test/employee/config/puma.rb @@ -0,0 +1,34 @@ +# Puma can serve each request in a thread from an internal thread pool. +# The `threads` method setting takes two numbers: a minimum and maximum. +# Any libraries that use thread pools should be configured to match +# the maximum value specified for Puma. Default is set to 5 threads for minimum +# and maximum; this matches the default thread size of Active Record. +# +threads_count = ENV.fetch("RAILS_MAX_THREADS") { 5 } +threads threads_count, threads_count + +# Specifies the `port` that Puma will listen on to receive requests; default is 3000. +# +port ENV.fetch("PORT") { 3000 } + +# Specifies the `environment` that Puma will run in. +# +environment ENV.fetch("RAILS_ENV") { "development" } + +# Specifies the number of `workers` to boot in clustered mode. +# Workers are forked webserver processes. If using threads and workers together +# the concurrency of the application would be max `threads` * `workers`. +# Workers do not work on JRuby or Windows (both of which do not support +# processes). +# +# workers ENV.fetch("WEB_CONCURRENCY") { 2 } + +# Use the `preload_app!` method when specifying a `workers` number. +# This directive tells Puma to first boot the application and load code +# before forking the application. This takes advantage of Copy On Write +# process behavior so workers use less memory. +# +# preload_app! + +# Allow puma to be restarted by `rails restart` command. +plugin :tmp_restart diff --git a/test/employee/config/routes.rb b/test/employee/config/routes.rb new file mode 100644 index 0000000..4292df2 --- /dev/null +++ b/test/employee/config/routes.rb @@ -0,0 +1,60 @@ +Rails.application.routes.draw do + devise_for :employees + resources :blogs + get 'test_forbidden', to: 'test#index', as: 'test' + + # The priority is based upon order of creation: first created -> highest priority. + # See how all your routes lay out with "rake routes". + + # You can have the root of your site routed with "root" + root 'blogs#index' + + # Example of regular route: + # get 'products/:id' => 'catalog#view' + + # Example of named route that can be invoked with purchase_url(id: product.id) + # get 'products/:id/purchase' => 'catalog#purchase', as: :purchase + + # Example resource route (maps HTTP verbs to controller actions automatically): + # resources :products + + # Example resource route with options: + # resources :products do + # member do + # get 'short' + # post 'toggle' + # end + # + # collection do + # get 'sold' + # end + # end + + # Example resource route with sub-resources: + # resources :products do + # resources :comments, :sales + # resource :seller + # end + + # Example resource route with more complex sub-resources: + # resources :products do + # resources :comments + # resources :sales do + # get 'recent', on: :collection + # end + # end + + # Example resource route with concerns: + # concern :toggleable do + # post 'toggle' + # end + # resources :posts, concerns: :toggleable + # resources :photos, concerns: :toggleable + + # Example resource route within a namespace: + # namespace :admin do + # # Directs /admin/products/* to Admin::ProductsController + # # (app/controllers/admin/products_controller.rb) + # resources :products + # end +end diff --git a/test/employee/config/spring.rb b/test/employee/config/spring.rb new file mode 100644 index 0000000..9fa7863 --- /dev/null +++ b/test/employee/config/spring.rb @@ -0,0 +1,6 @@ +%w[ + .ruby-version + .rbenv-vars + tmp/restart.txt + tmp/caching-dev.txt +].each { |path| Spring.watch(path) } diff --git a/test/employee/config/storage.yml b/test/employee/config/storage.yml new file mode 100644 index 0000000..d32f76e --- /dev/null +++ b/test/employee/config/storage.yml @@ -0,0 +1,34 @@ +test: + service: Disk + root: <%= Rails.root.join("tmp/storage") %> + +local: + service: Disk + root: <%= Rails.root.join("storage") %> + +# Use rails credentials:edit to set the AWS secrets (as aws:access_key_id|secret_access_key) +# amazon: +# service: S3 +# access_key_id: <%= Rails.application.credentials.dig(:aws, :access_key_id) %> +# secret_access_key: <%= Rails.application.credentials.dig(:aws, :secret_access_key) %> +# region: us-east-1 +# bucket: your_own_bucket + +# Remember not to checkin your GCS keyfile to a repository +# google: +# service: GCS +# project: your_project +# credentials: <%= Rails.root.join("path/to/gcs.keyfile") %> +# bucket: your_own_bucket + +# Use rails credentials:edit to set the Azure Storage secret (as azure_storage:storage_access_key) +# microsoft: +# service: AzureStorage +# storage_account_name: your_account_name +# storage_access_key: <%= Rails.application.credentials.dig(:azure_storage, :storage_access_key) %> +# container: your_container_name + +# mirror: +# service: Mirror +# primary: local +# mirrors: [ amazon, google, microsoft ] diff --git a/dummy/db/migrate/20141117063228_create_blogs.rb b/test/employee/db/migrate/20141117063228_create_blogs.rb similarity index 100% rename from dummy/db/migrate/20141117063228_create_blogs.rb rename to test/employee/db/migrate/20141117063228_create_blogs.rb diff --git a/test/employee/db/migrate/20141117064643_devise_create_employees.rb b/test/employee/db/migrate/20141117064643_devise_create_employees.rb new file mode 100644 index 0000000..1cda601 --- /dev/null +++ b/test/employee/db/migrate/20141117064643_devise_create_employees.rb @@ -0,0 +1,42 @@ +class DeviseCreateEmployees < ActiveRecord::Migration[5.2] + def change + create_table(:employees) do |t| + ## Database authenticatable + t.string :email, null: false, default: "" + t.string :encrypted_password, null: false, default: "" + + ## Recoverable + t.string :reset_password_token + t.datetime :reset_password_sent_at + + ## Rememberable + t.datetime :remember_created_at + + ## Trackable + t.integer :sign_in_count, default: 0, null: false + t.datetime :current_sign_in_at + t.datetime :last_sign_in_at + t.string :current_sign_in_ip + t.string :last_sign_in_ip + + ## Confirmable + # t.string :confirmation_token + # t.datetime :confirmed_at + # t.datetime :confirmation_sent_at + # t.string :unconfirmed_email # Only if using reconfirmable + + ## Lockable + # t.integer :failed_attempts, default: 0, null: false # Only if lock strategy is :failed_attempts + # t.string :unlock_token # Only if unlock strategy is :email or :both + # t.datetime :locked_at + + + t.timestamps + end + + add_index :employees, :email, unique: true + add_index :employees, :reset_password_token, unique: true + # add_index :employees, :confirmation_token, unique: true + # add_index :employees, :unlock_token, unique: true + end +end diff --git a/test/employee/db/migrate/20141117064807_add_roles_to_employees.rb b/test/employee/db/migrate/20141117064807_add_roles_to_employees.rb new file mode 100644 index 0000000..df34460 --- /dev/null +++ b/test/employee/db/migrate/20141117064807_add_roles_to_employees.rb @@ -0,0 +1,5 @@ +class AddRolesToEmployees < ActiveRecord::Migration[5.2] + def change + add_column :employees, :roles, :string + end +end diff --git a/test/employee/db/schema.rb b/test/employee/db/schema.rb new file mode 100644 index 0000000..11c9d7b --- /dev/null +++ b/test/employee/db/schema.rb @@ -0,0 +1,40 @@ +# This file is auto-generated from the current state of the database. Instead +# of editing this file, please use the migrations feature of Active Record to +# incrementally modify your database, and then regenerate this schema definition. +# +# Note that this schema.rb definition is the authoritative source for your +# database schema. If you need to create the application database on another +# system, you should be using db:schema:load, not running all the migrations +# from scratch. The latter is a flawed and unsustainable approach (the more migrations +# you'll amass, the slower it'll run and the greater likelihood for issues). +# +# It's strongly recommended that you check this file into your version control system. + +ActiveRecord::Schema.define(version: 2014_11_17_064807) do + + create_table "blogs", force: :cascade do |t| + t.string "title" + t.text "content" + t.datetime "created_at", null: false + t.datetime "updated_at", null: false + end + + create_table "employees", force: :cascade do |t| + t.string "email", default: "", null: false + t.string "encrypted_password", default: "", null: false + t.string "reset_password_token" + t.datetime "reset_password_sent_at" + t.datetime "remember_created_at" + t.integer "sign_in_count", default: 0, null: false + t.datetime "current_sign_in_at" + t.datetime "last_sign_in_at" + t.string "current_sign_in_ip" + t.string "last_sign_in_ip" + t.datetime "created_at", null: false + t.datetime "updated_at", null: false + t.string "roles" + t.index ["email"], name: "index_employees_on_email", unique: true + t.index ["reset_password_token"], name: "index_employees_on_reset_password_token", unique: true + end + +end diff --git a/test/employee/db/seeds.rb b/test/employee/db/seeds.rb new file mode 100644 index 0000000..1beea2a --- /dev/null +++ b/test/employee/db/seeds.rb @@ -0,0 +1,7 @@ +# This file should contain all the record creation needed to seed the database with its default values. +# The data can then be loaded with the rails db:seed command (or created alongside the database with db:setup). +# +# Examples: +# +# movies = Movie.create([{ name: 'Star Wars' }, { name: 'Lord of the Rings' }]) +# Character.create(name: 'Luke', movie: movies.first) diff --git a/dummy/app/models/concerns/.keep b/test/employee/lib/assets/.keep similarity index 100% rename from dummy/app/models/concerns/.keep rename to test/employee/lib/assets/.keep diff --git a/dummy/lib/assets/.keep b/test/employee/lib/tasks/.keep similarity index 100% rename from dummy/lib/assets/.keep rename to test/employee/lib/tasks/.keep diff --git a/dummy/lib/tasks/.keep b/test/employee/log/.keep similarity index 100% rename from dummy/lib/tasks/.keep rename to test/employee/log/.keep diff --git a/test/employee/package.json b/test/employee/package.json new file mode 100644 index 0000000..88544fd --- /dev/null +++ b/test/employee/package.json @@ -0,0 +1,5 @@ +{ + "name": "petergate_test", + "private": true, + "dependencies": {} +} diff --git a/dummy/public/404.html b/test/employee/public/404.html similarity index 86% rename from dummy/public/404.html rename to test/employee/public/404.html index b612547..2be3af2 100644 --- a/dummy/public/404.html +++ b/test/employee/public/404.html @@ -4,7 +4,7 @@ The page you were looking for doesn't exist (404) - +
diff --git a/dummy/public/422.html b/test/employee/public/422.html similarity index 86% rename from dummy/public/422.html rename to test/employee/public/422.html index a21f82b..c08eac0 100644 --- a/dummy/public/422.html +++ b/test/employee/public/422.html @@ -4,7 +4,7 @@ The change you wanted was rejected (422) - +
diff --git a/dummy/public/500.html b/test/employee/public/500.html similarity index 85% rename from dummy/public/500.html rename to test/employee/public/500.html index 061abc5..78a030a 100644 --- a/dummy/public/500.html +++ b/test/employee/public/500.html @@ -4,7 +4,7 @@ We're sorry, but something went wrong (500) - +
diff --git a/dummy/log/.keep b/test/employee/public/apple-touch-icon-precomposed.png similarity index 100% rename from dummy/log/.keep rename to test/employee/public/apple-touch-icon-precomposed.png diff --git a/dummy/public/favicon.ico b/test/employee/public/apple-touch-icon.png similarity index 100% rename from dummy/public/favicon.ico rename to test/employee/public/apple-touch-icon.png diff --git a/dummy/test/controllers/.keep b/test/employee/public/favicon.ico similarity index 100% rename from dummy/test/controllers/.keep rename to test/employee/public/favicon.ico diff --git a/test/employee/public/robots.txt b/test/employee/public/robots.txt new file mode 100644 index 0000000..37b576a --- /dev/null +++ b/test/employee/public/robots.txt @@ -0,0 +1 @@ +# See http://www.robotstxt.org/robotstxt.html for documentation on how to use the robots.txt file diff --git a/dummy/test/fixtures/.keep b/test/employee/storage/.keep similarity index 100% rename from dummy/test/fixtures/.keep rename to test/employee/storage/.keep diff --git a/dummy/test/helpers/.keep b/test/employee/test/controllers/.keep similarity index 100% rename from dummy/test/helpers/.keep rename to test/employee/test/controllers/.keep diff --git a/dummy/test/controllers/base_controller_test.rb b/test/employee/test/controllers/base_controller_test.rb similarity index 100% rename from dummy/test/controllers/base_controller_test.rb rename to test/employee/test/controllers/base_controller_test.rb diff --git a/test/employee/test/controllers/blogs_multiple_controller_test.rb b/test/employee/test/controllers/blogs_multiple_controller_test.rb new file mode 100644 index 0000000..7b770bb --- /dev/null +++ b/test/employee/test/controllers/blogs_multiple_controller_test.rb @@ -0,0 +1,251 @@ +require "test_helper" + +describe BlogsController do + ################################################################################ + # ADMIN ROLE + ################################################################################ + describe "Multiple: Test that everything works if admin is logged in" do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: true) + create_admin_and_login + end + + let(:blog) { blogs :one } + + it "gets index" do + get root_path + assert_response :success + assert_not_nil :blog + end + + it "gets new" do + get new_blog_path + assert_response :success + end + + it "creates blog" do + assert_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + end + + assert_redirected_to blog_path(Blog.last) + end + + it "shows blog" do + get blog_path(blog) + assert_response :success + end + + it "gets edit" do + get edit_blog_path(blog) + assert_response :success + end + + it "updates blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to blog_path(blog) + end + + it "destroys blog" do + assert_difference('Blog.count', -1) do + delete blog_path(blog) + end + + assert_redirected_to blogs_path + end + end + + ################################################################################ + # USER ROLE + ################################################################################ + describe "Multiple: Make sure plain users can't see what they shouldn't." do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: true) + create_user_and_login + end + + let(:blog) { blogs :one } + + it "plain user can see index" do + get root_path + assert_response :success + assert_not_nil blog + end + + it "gets permission denied on new" do + get new_blog_path + assert_response 302 + flash[:notice].must_equal "Permission Denied" + end + + it "gets forbidden and no redirect with json format on new" do + assert_webservice_is_forbiddden do |format| + get new_blog_path, headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s } + end + end + + it "doesn't allow plain user to create blog post" do + assert_no_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to root_path + + assert_webservice_is_forbiddden do |format| + post blogs_path, params: { blog: { 'content': blog.content, 'title': blog.title } }.to_json, headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s} + end + end + end + + it "can see show blog" do + get blog_path(blog) + assert_response :success + end + + it "can't get to edit page" do + get edit_blog_path(blog) + assert_response 302 + end + + it "can't update blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to root_path + + assert_webservice_is_forbiddden do |format| + put blog_path(blog), params: {blog: { content: blog.content, title: blog.title }}.to_json , headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s } + end + end + + it "can't destroy blog" do + assert_no_difference('Blog.count') do + delete blog_path(blog) + assert_redirected_to root_path + end + assert_webservice_is_forbiddden do |format| + delete blog_path(blog), headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s } + end + end + end + + ################################################################################ + # GUEST ROLE + ################################################################################ + describe "Multiple: Make sure guests can't see what they shouldn't." do + let(:blog) { blogs :one } + + it "guest can see index" do + get root_path + assert_response :success + assert_not_nil blog + end + + it "gets permission denied on new" do + get new_blog_path + assert_redirected_to "/employees/sign_in" + end + + it "json gets permission denied on new" do + assert_webservice_is_unauthorized do |format| + get new_blog_path, headers: {'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s} + end + end + + it "doesn't allow plain user to create blog post" do + assert_no_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to "/employees/sign_in" + end + end + + it "doesn't show blog" do + get blog_path(blog) + assert_response 302 + end + + it "can't get to edit page" do + get edit_blog_path(blog) + assert_response 302 + end + + it "can't update blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to "/employees/sign_in" + end + + it "can't destroy blog" do + assert_no_difference('Blog.count') do + delete blog_path(blog) + assert_redirected_to "/employees/sign_in" + end + end + end + + ################################################################################ + # COMPANY_ADMIN ROLE + ################################################################################ + describe "Multiple: Test that everything works if company_admin is logged in" do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: true) + create_company_admin_and_login + end + + let(:blog) { blogs :one } + + it "gets index" do + get root_path + assert_response :success + assert_not_nil :blogs + end + + it "gets new" do + get new_blog_path + assert_response :success + end + + it "creates blog" do + assert_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + end + + assert_redirected_to blog_path(Blog.last) + end + + it "shows blog" do + get blog_path(blog) + assert_response :success + end + + it "gets edit" do + get edit_blog_path(blog) + assert_response :success + end + + it "updates blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to blog_path(blog) + end + + it "can't destroy blog" do + assert_no_difference('Blog.count', -1) do + delete blog_path(id: blog) + end + + assert_redirected_to root_path + end + end + + private + + def assert_webservice_is_forbiddden(&block) + [:js, :json, :xml].each do |format| + block.call format + assert_response :forbidden + end + end + + def assert_webservice_is_unauthorized(&block) + [:js, :json, :xml].each do |format| + block.call format + assert_response :unauthorized + end + end +end + diff --git a/test/employee/test/controllers/blogs_singular_controller_test.rb b/test/employee/test/controllers/blogs_singular_controller_test.rb new file mode 100644 index 0000000..380abbf --- /dev/null +++ b/test/employee/test/controllers/blogs_singular_controller_test.rb @@ -0,0 +1,192 @@ +require "test_helper" + +describe BlogsController do + ################################################################################ + # ADMIN ROLE + ################################################################################ + describe "Singular: Test that everything works if admin is logged in" do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: false) + create_admin_and_login + end + + let(:blog) { blogs :one } + + it "gets index" do + get root_path + assert_response :success + assert_not_nil blogs + end + + it "gets new" do + get new_blog_path + assert_response :success + end + + it "creates blog" do + assert_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + end + + assert_redirected_to blog_path(Blog.last) + end + + it "shows blog" do + get blog_path(blog) + assert_response :success + end + + it "gets edit" do + get edit_blog_path(blog) + assert_response :success + end + + it "updates blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to blog_path(blog) + end + + it "destroys blog" do + assert_difference('Blog.count', -1) do + delete blog_path(blog) + end + + assert_redirected_to blogs_path + end + end + + ################################################################################ + # USER ROLE + ################################################################################ + describe "Singular: Make sure plain users can't see what they shouldn't." do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: false) + create_user_and_login + end + + let(:blog) { blogs :one } + + it "plain user can see index" do + get root_path + assert_response :success + assert_not_nil blog + end + + it "gets permission denied on new" do + get new_blog_path + assert_response 302 + flash[:notice].must_equal "Permission Denied" + end + + it "gets forbidden and no redirect with json format on new" do + assert_webservice_is_forbiddden do |format| + get new_blog_path, headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s } + end + end + + it "doesn't allow plain user to create blog post" do + assert_no_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to root_path + + assert_webservice_is_forbiddden do |format| + post blogs_path, headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s }, params: { blog: { content: blog.content, title: blog.title } }.to_json + end + end + end + + it "can see show blog" do + get blog_path(blog) + assert_response :success + end + + it "can't get to edit page" do + get edit_blog_path(blog) + assert_response 302 + end + + it "can't update blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to root_path + + assert_webservice_is_forbiddden do |format| + put blog_path(blog), headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s }, params: { blog: { content: blog.content, title: blog.title } }.to_json + end + end + + it "can't destroy blog" do + assert_no_difference('Blog.count') do + delete blog_path(blog) + assert_redirected_to root_path + + assert_webservice_is_forbiddden do |format| + delete blog_path(blog), headers: { 'Accept': Mime[format].to_s, 'Content-Type': Mime[format].to_s } + end + end + end + end + + ################################################################################ + # COMPANY_ADMIN ROLE + ################################################################################ + describe "Singular: Test that everything works if company_admin is logged in" do + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: false) + create_company_admin_and_login + end + + let(:blog) { blogs :one } + + it "gets index" do + get root_path + assert_response :success + assert_not_nil blog + end + + it "gets new" do + get new_blog_path + assert_response :success + end + + it "creates blog" do + assert_difference('Blog.count') do + post blogs_path, params: { blog: { content: blog.content, title: blog.title } } + end + + assert_redirected_to blog_path(Blog.last) + end + + it "shows blog" do + get blog_path(blog) + assert_response :success + end + + it "gets edit" do + get edit_blog_path(blog) + assert_response :success + end + + it "updates blog" do + put blog_path(blog), params: { blog: { content: blog.content, title: blog.title } } + assert_redirected_to blog_path(blog) + end + + it "can't destroy blog" do + assert_no_difference('Blog.count', -1) do + delete blog_path(blog) + end + + assert_redirected_to root_path + end + end + + private + + def assert_webservice_is_forbiddden(&block) + [:js, :json, :xml].each do |format| + block.call format + assert_response :forbidden + end + end +end + diff --git a/test/employee/test/controllers/test_controller_test.rb b/test/employee/test/controllers/test_controller_test.rb new file mode 100644 index 0000000..fd91685 --- /dev/null +++ b/test/employee/test/controllers/test_controller_test.rb @@ -0,0 +1,48 @@ +require "test_helper" + +class TestController < ApplicationController + skip_before_action :verify_authenticity_token + + def index + forbidden! params[:msg] + end +end + +describe TestController, '#forbidden!' do + let(:admin) { employees(:admin) } + + before do + Employee.petergate(roles: [:root_admin, :company_admin], multiple: true) + create_user_and_login + end + + describe 'with html format request' do + it 'redirect to referrer' do + get edit_blog_path(Blog.first), headers: {'Referrer': 'http://referrer-page.com'} + assert_redirected_to 'http://referrer-page.com' + end + + it 'redirect to after_sign_in_path_for' do + get new_employee_session_path + assert_redirected_to root_path + end + + it 'redirect to sign_in if not signed in' do + sign_out admin + get blog_path(Blog.first) + assert_redirected_to new_employee_session_path + end + + it 'uses the msg when supplied' do + get edit_blog_path(Blog.first), headers: { msg: 'custom message' } + assert_equal('custom message', flash[:notice]) + end + end + + describe 'with xhr format request' do + it 'respond with forbidden status' do + get edit_blog_path(Blog.first), headers: { 'Accept': Mime[:js].to_s, 'Content-Type': Mime[:js].to_s } + assert_response :forbidden + end + end +end diff --git a/dummy/test/integration/.keep b/test/employee/test/fixtures/.keep similarity index 100% rename from dummy/test/integration/.keep rename to test/employee/test/fixtures/.keep diff --git a/dummy/test/fixtures/blogs.yml b/test/employee/test/fixtures/blogs.yml similarity index 100% rename from dummy/test/fixtures/blogs.yml rename to test/employee/test/fixtures/blogs.yml diff --git a/dummy/test/fixtures/users.yml b/test/employee/test/fixtures/employees.yml similarity index 100% rename from dummy/test/fixtures/users.yml rename to test/employee/test/fixtures/employees.yml diff --git a/dummy/test/mailers/.keep b/test/employee/test/helpers/.keep similarity index 100% rename from dummy/test/mailers/.keep rename to test/employee/test/helpers/.keep diff --git a/dummy/test/models/.keep b/test/employee/test/integration/.keep similarity index 100% rename from dummy/test/models/.keep rename to test/employee/test/integration/.keep diff --git a/dummy/vendor/assets/javascripts/.keep b/test/employee/test/mailers/.keep similarity index 100% rename from dummy/vendor/assets/javascripts/.keep rename to test/employee/test/mailers/.keep diff --git a/dummy/vendor/assets/stylesheets/.keep b/test/employee/test/models/.keep similarity index 100% rename from dummy/vendor/assets/stylesheets/.keep rename to test/employee/test/models/.keep diff --git a/dummy/test/models/blog_test.rb b/test/employee/test/models/blog_test.rb similarity index 100% rename from dummy/test/models/blog_test.rb rename to test/employee/test/models/blog_test.rb diff --git a/test/employee/test/models/employee_test.rb b/test/employee/test/models/employee_test.rb new file mode 100644 index 0000000..b7a9845 --- /dev/null +++ b/test/employee/test/models/employee_test.rb @@ -0,0 +1,12 @@ +require "test_helper" + +describe Employee do + let(:employee) { + Employee.petergate(roles: [:root_admin, :company_admin], multiple: false) + Employee.create(email: "company_admin2@example.com", password: "password1", password_confirmation: "password1", role: :company_admin) + } + + it "must be valid" do + employee.must_be :valid? + end +end diff --git a/test/employee/test/test_helper.rb b/test/employee/test/test_helper.rb new file mode 100644 index 0000000..9242572 --- /dev/null +++ b/test/employee/test/test_helper.rb @@ -0,0 +1,51 @@ +ENV['RAILS_ENV'] = 'test' +require File.expand_path("../../config/environment", __FILE__) +require "rails/test_help" +require "minitest/rails" + +# To add Capybara feature tests add `gem "minitest-rails-capybara"` +# to the test group in the Gemfile and uncomment the following: +# require "minitest/rails/capybara" + +require "minitest/pride" +require "minitest/reporters" +require "minitest/autorun" +class ActiveSupport::TestCase + Minitest::Reporters.use! Minitest::Reporters::SpecReporter.new + ActiveRecord::Migration.check_pending! + fixtures :all + + # Setup all fixtures in test/fixtures/*.(yml|csv) for all tests in alphabetical order. +end + +class ActionController::TestCase + include Devise::TestHelpers +end + +def create_user_and_login(email: "user@example.com", password: "youllneverguess") + u = Employee.create(email: email, password: password, password_confirmation: password, roles: :user) + sign_in(u) +end + +def create_admin_and_login(email: "user@example.com", password: "youllneverguess") + u = Employee.create(email: email, password: password, password_confirmation: password, roles: :root_admin) + sign_in(u) +end + +def create_company_admin_and_login(email: "user@example.com", password: "youllneverguess") + u = Employee.create(email: email, password: password, password_confirmation: password, roles: :company_admin) + sign_in(u) +end + +def sign_in(u) + post( employee_session_url, + params: { + 'employee[email]' => u.email, + 'employee[password]' => 'youllneverguess' + } + ) +end + +def sign_out(u) + delete(destroy_employee_session_url) +end diff --git a/test/employee/tmp/.keep b/test/employee/tmp/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/employee/vendor/.keep b/test/employee/vendor/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/.gitignore b/test/user/.gitignore new file mode 100644 index 0000000..81452db --- /dev/null +++ b/test/user/.gitignore @@ -0,0 +1,31 @@ +# See https://help.github.com/articles/ignoring-files for more about ignoring files. +# +# If you find yourself ignoring temporary files generated by your text editor +# or operating system, you probably want to add a global ignore instead: +# git config --global core.excludesfile '~/.gitignore_global' + +# Ignore bundler config. +/.bundle + +# Ignore the default SQLite database. +/db/*.sqlite3 +/db/*.sqlite3-journal + +# Ignore all logfiles and tempfiles. +/log/* +/tmp/* +!/log/.keep +!/tmp/.keep + +# Ignore uploaded files in development +/storage/* +!/storage/.keep + +/node_modules +/yarn-error.log + +/public/assets +.byebug_history + +# Ignore master key for decrypting credentials and more. +/config/master.key diff --git a/test/user/.ruby-version b/test/user/.ruby-version new file mode 100644 index 0000000..4fd0fe3 --- /dev/null +++ b/test/user/.ruby-version @@ -0,0 +1 @@ +2.5.1 \ No newline at end of file diff --git a/test/user/Gemfile b/test/user/Gemfile new file mode 100644 index 0000000..29f2120 --- /dev/null +++ b/test/user/Gemfile @@ -0,0 +1,67 @@ +source 'https://rubygems.org' +git_source(:github) { |repo| "https://github.com/#{repo}.git" } + +ruby '2.5.1' + +# Bundle edge Rails instead: gem 'rails', github: 'rails/rails' +gem 'rails', '~> 5.2.2' +# Use sqlite3 as the database for Active Record +gem 'sqlite3' +# Use Puma as the app server +gem 'puma', '~> 3.11' +# Use SCSS for stylesheets +gem 'sass-rails', '~> 5.0' +# Use Uglifier as compressor for JavaScript assets +gem 'uglifier', '>= 1.3.0' +# See https://github.com/rails/execjs#readme for more supported runtimes +# gem 'mini_racer', platforms: :ruby + +# Use CoffeeScript for .coffee assets and views +gem 'coffee-rails', '~> 4.2' +# Turbolinks makes navigating your web application faster. Read more: https://github.com/turbolinks/turbolinks +gem 'turbolinks', '~> 5' +# Build JSON APIs with ease. Read more: https://github.com/rails/jbuilder +gem 'jbuilder', '~> 2.5' +# Use Redis adapter to run Action Cable in production +# gem 'redis', '~> 4.0' +# Use ActiveModel has_secure_password +# gem 'bcrypt', '~> 3.1.7' + +# Use ActiveStorage variant +# gem 'mini_magick', '~> 4.8' + +# Use Capistrano for deployment +# gem 'capistrano-rails', group: :development + +# Reduces boot times through caching; required in config/boot.rb +gem 'bootsnap', '>= 1.1.0', require: false +gem 'devise' +gem 'petergate', path: '../../' + +group :development, :test do + # Call 'byebug' anywhere in the code to stop execution and get a debugger console + gem 'byebug', platforms: [:mri, :mingw, :x64_mingw] + gem 'pry', platforms: [:mri, :mingw, :x64_mingw] +end + +group :development do + # Access an interactive console on exception pages or by calling 'console' anywhere in the code. + gem 'web-console', '>= 3.3.0' + gem 'listen', '>= 3.0.5', '< 3.2' + # Spring speeds up development by keeping your application running in the background. Read more: https://github.com/rails/spring + gem 'spring' + gem 'spring-watcher-listen', '~> 2.0.0' +end + +group :test do + # Adds support for Capybara system testing and selenium driver + gem 'capybara', '>= 2.15' + gem 'selenium-webdriver' + # Easy installation and use of chromedriver to run system tests with Chrome + gem 'chromedriver-helper' + gem "minitest-rails" + gem "minitest-reporters" +end + +# Windows does not include zoneinfo files, so bundle the tzinfo-data gem +gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby] diff --git a/test/user/README.md b/test/user/README.md new file mode 100644 index 0000000..7db80e4 --- /dev/null +++ b/test/user/README.md @@ -0,0 +1,24 @@ +# README + +This README would normally document whatever steps are necessary to get the +application up and running. + +Things you may want to cover: + +* Ruby version + +* System dependencies + +* Configuration + +* Database creation + +* Database initialization + +* How to run the test suite + +* Services (job queues, cache servers, search engines, etc.) + +* Deployment instructions + +* ... diff --git a/test/user/Rakefile b/test/user/Rakefile new file mode 100644 index 0000000..e85f913 --- /dev/null +++ b/test/user/Rakefile @@ -0,0 +1,6 @@ +# Add your own tasks in files placed in lib/tasks ending in .rake, +# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake. + +require_relative 'config/application' + +Rails.application.load_tasks diff --git a/test/user/app/assets/config/manifest.js b/test/user/app/assets/config/manifest.js new file mode 100644 index 0000000..b16e53d --- /dev/null +++ b/test/user/app/assets/config/manifest.js @@ -0,0 +1,3 @@ +//= link_tree ../images +//= link_directory ../javascripts .js +//= link_directory ../stylesheets .css diff --git a/test/user/app/assets/images/.keep b/test/user/app/assets/images/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/app/assets/javascripts/application.js b/test/user/app/assets/javascripts/application.js new file mode 100644 index 0000000..82e6f0f --- /dev/null +++ b/test/user/app/assets/javascripts/application.js @@ -0,0 +1,16 @@ +// This is a manifest file that'll be compiled into application.js, which will include all the files +// listed below. +// +// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, or any plugin's +// vendor/assets/javascripts directory can be referenced here using a relative path. +// +// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the +// compiled file. JavaScript code in this file should be added after the last require_* statement. +// +// Read Sprockets README (https://github.com/rails/sprockets#sprockets-directives) for details +// about supported directives. +// +//= require rails-ujs +//= require activestorage +//= require turbolinks +//= require_tree . diff --git a/test/user/app/assets/javascripts/cable.js b/test/user/app/assets/javascripts/cable.js new file mode 100644 index 0000000..739aa5f --- /dev/null +++ b/test/user/app/assets/javascripts/cable.js @@ -0,0 +1,13 @@ +// Action Cable provides the framework to deal with WebSockets in Rails. +// You can generate new channels where WebSocket features live using the `rails generate channel` command. +// +//= require action_cable +//= require_self +//= require_tree ./channels + +(function() { + this.App || (this.App = {}); + + App.cable = ActionCable.createConsumer(); + +}).call(this); diff --git a/test/user/app/assets/javascripts/channels/.keep b/test/user/app/assets/javascripts/channels/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/app/assets/stylesheets/application.css b/test/user/app/assets/stylesheets/application.css new file mode 100644 index 0000000..d05ea0f --- /dev/null +++ b/test/user/app/assets/stylesheets/application.css @@ -0,0 +1,15 @@ +/* + * This is a manifest file that'll be compiled into application.css, which will include all the files + * listed below. + * + * Any CSS and SCSS file within this directory, lib/assets/stylesheets, or any plugin's + * vendor/assets/stylesheets directory can be referenced here using a relative path. + * + * You're free to add application-wide styles to this file and they'll appear at the bottom of the + * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS + * files in this directory. Styles in this file should be added after the last require_* statement. + * It is generally better to create a new file per style scope. + * + *= require_tree . + *= require_self + */ diff --git a/test/user/app/channels/application_cable/channel.rb b/test/user/app/channels/application_cable/channel.rb new file mode 100644 index 0000000..d672697 --- /dev/null +++ b/test/user/app/channels/application_cable/channel.rb @@ -0,0 +1,4 @@ +module ApplicationCable + class Channel < ActionCable::Channel::Base + end +end diff --git a/test/user/app/channels/application_cable/connection.rb b/test/user/app/channels/application_cable/connection.rb new file mode 100644 index 0000000..0ff5442 --- /dev/null +++ b/test/user/app/channels/application_cable/connection.rb @@ -0,0 +1,4 @@ +module ApplicationCable + class Connection < ActionCable::Connection::Base + end +end diff --git a/test/user/app/controllers/application_controller.rb b/test/user/app/controllers/application_controller.rb new file mode 100644 index 0000000..09705d1 --- /dev/null +++ b/test/user/app/controllers/application_controller.rb @@ -0,0 +1,2 @@ +class ApplicationController < ActionController::Base +end diff --git a/test/user/app/controllers/blogs_controller.rb b/test/user/app/controllers/blogs_controller.rb new file mode 100644 index 0000000..219156d --- /dev/null +++ b/test/user/app/controllers/blogs_controller.rb @@ -0,0 +1,75 @@ +class BlogsController < InheritanceController + before_action :set_blog, only: [:show, :edit, :update, :destroy] + # access all: [:index], user: [:index, :show], company_admin: {except: [:destroy]} + + # GET /blogs + # GET /blogs.json + def index + @blogs = Blog.all + end + + # GET /blogs/1 + # GET /blogs/1.json + def show + end + + # GET /blogs/new + def new + @blog = Blog.new + end + + # GET /blogs/1/edit + def edit + end + + # POST /blogs + # POST /blogs.json + def create + @blog = Blog.new(blog_params) + + respond_to do |format| + if @blog.save + format.html { redirect_to @blog, notice: 'Blog was successfully created.' } + format.json { render :show, status: :created, location: @blog } + else + format.html { render :new } + format.json { render json: @blog.errors, status: :unprocessable_entity } + end + end + end + + # PATCH/PUT /blogs/1 + # PATCH/PUT /blogs/1.json + def update + respond_to do |format| + if @blog.update(blog_params) + format.html { redirect_to @blog, notice: 'Blog was successfully updated.' } + format.json { render :show, status: :ok, location: @blog } + else + format.html { render :edit } + format.json { render json: @blog.errors, status: :unprocessable_entity } + end + end + end + + # DELETE /blogs/1 + # DELETE /blogs/1.json + def destroy + @blog.destroy + respond_to do |format| + format.html { redirect_to blogs_url, notice: 'Blog was successfully destroyed.' } + format.json { render body: blogs_url } + end + end + + private + # Use callbacks to share common setup or constraints between actions. + def set_blog + @blog = Blog.find(params[:id]) + end + + # Never trust parameters from the scary internet, only allow the white list through. + def blog_params + params.require(:blog).permit(:title, :content) + end +end diff --git a/test/user/app/controllers/concerns/.keep b/test/user/app/controllers/concerns/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/app/controllers/inheritance_controller.rb b/test/user/app/controllers/inheritance_controller.rb new file mode 100644 index 0000000..95db07e --- /dev/null +++ b/test/user/app/controllers/inheritance_controller.rb @@ -0,0 +1,3 @@ +class InheritanceController < ApplicationController + access all: [:index], user: [:index, :show], company_admin: {except: [:destroy]} +end diff --git a/test/user/app/helpers/application_helper.rb b/test/user/app/helpers/application_helper.rb new file mode 100644 index 0000000..de6be79 --- /dev/null +++ b/test/user/app/helpers/application_helper.rb @@ -0,0 +1,2 @@ +module ApplicationHelper +end diff --git a/test/user/app/jobs/application_job.rb b/test/user/app/jobs/application_job.rb new file mode 100644 index 0000000..a009ace --- /dev/null +++ b/test/user/app/jobs/application_job.rb @@ -0,0 +1,2 @@ +class ApplicationJob < ActiveJob::Base +end diff --git a/test/user/app/mailers/application_mailer.rb b/test/user/app/mailers/application_mailer.rb new file mode 100644 index 0000000..286b223 --- /dev/null +++ b/test/user/app/mailers/application_mailer.rb @@ -0,0 +1,4 @@ +class ApplicationMailer < ActionMailer::Base + default from: 'from@example.com' + layout 'mailer' +end diff --git a/test/user/app/models/application_record.rb b/test/user/app/models/application_record.rb new file mode 100644 index 0000000..10a4cba --- /dev/null +++ b/test/user/app/models/application_record.rb @@ -0,0 +1,3 @@ +class ApplicationRecord < ActiveRecord::Base + self.abstract_class = true +end diff --git a/test/user/app/models/blog.rb b/test/user/app/models/blog.rb new file mode 100644 index 0000000..0fcce79 --- /dev/null +++ b/test/user/app/models/blog.rb @@ -0,0 +1,3 @@ +class Blog < ApplicationRecord +end + diff --git a/test/user/app/models/concerns/.keep b/test/user/app/models/concerns/.keep new file mode 100644 index 0000000..e69de29 diff --git a/dummy/app/models/user.rb b/test/user/app/models/user.rb similarity index 96% rename from dummy/app/models/user.rb rename to test/user/app/models/user.rb index 86caa4a..4df26aa 100644 --- a/dummy/app/models/user.rb +++ b/test/user/app/models/user.rb @@ -1,4 +1,4 @@ -class User < ActiveRecord::Base +class User < ApplicationRecord ############################################################################################ ## PeterGate Roles ## ## The :user role is added by default and shouldn't be included in this list. ## diff --git a/test/user/app/views/blogs/_form.html.erb b/test/user/app/views/blogs/_form.html.erb new file mode 100644 index 0000000..22cebc9 --- /dev/null +++ b/test/user/app/views/blogs/_form.html.erb @@ -0,0 +1,25 @@ +<%= form_for(@blog) do |f| %> + <% if @blog.errors.any? %> +
+

<%= pluralize(@blog.errors.count, "error") %> prohibited this blog from being saved:

+ +
    + <% @blog.errors.full_messages.each do |message| %> +
  • <%= message %>
    • + <% end %> +
+
+ <% end %> + +
+ <%= f.label :title %>
+ <%= f.text_field :title %> +
+
+ <%= f.label :content %>
+ <%= f.text_area :content %> +
+
+ <%= f.submit %> +
+<% end %> diff --git a/test/user/app/views/blogs/edit.html.erb b/test/user/app/views/blogs/edit.html.erb new file mode 100644 index 0000000..567dea1 --- /dev/null +++ b/test/user/app/views/blogs/edit.html.erb @@ -0,0 +1,6 @@ +

Editing blog

+ +<%= render 'form' %> + +<%= link_to 'Show', @blog %> | +<%= link_to 'Back', blogs_path %> diff --git a/test/user/app/views/blogs/index.html.erb b/test/user/app/views/blogs/index.html.erb new file mode 100644 index 0000000..975e0b5 --- /dev/null +++ b/test/user/app/views/blogs/index.html.erb @@ -0,0 +1,27 @@ +

Listing blogs

+ + + + + + + + + + + + <% @blogs.each do |blog| %> + + + + + + + + <% end %> + +
TitleContent
<%= blog.title %><%= blog.content %><%= link_to 'Show', blog %><%= link_to 'Edit', edit_blog_path(blog) %><%= link_to 'Destroy', blog, method: :delete, data: { confirm: 'Are you sure?' } %>
+ +
+ +<%= link_to 'New Blog', new_blog_path %> diff --git a/test/user/app/views/blogs/new.html.erb b/test/user/app/views/blogs/new.html.erb new file mode 100644 index 0000000..842f418 --- /dev/null +++ b/test/user/app/views/blogs/new.html.erb @@ -0,0 +1,5 @@ +

New blog

+ +<%= render 'form' %> + +<%= link_to 'Back', blogs_path %> diff --git a/test/user/app/views/blogs/show.html.erb b/test/user/app/views/blogs/show.html.erb new file mode 100644 index 0000000..834f127 --- /dev/null +++ b/test/user/app/views/blogs/show.html.erb @@ -0,0 +1,14 @@ +

<%= notice %>

+ +

+ Title: + <%= @blog.title %> +

+ +

+ Content: + <%= @blog.content %> +

+ +<%= link_to 'Edit', edit_blog_path(@blog) %> | +<%= link_to 'Back', blogs_path %> diff --git a/test/user/app/views/layouts/application.html.erb b/test/user/app/views/layouts/application.html.erb new file mode 100644 index 0000000..4064847 --- /dev/null +++ b/test/user/app/views/layouts/application.html.erb @@ -0,0 +1,17 @@ + + + + PetergateTest + <%= csrf_meta_tags %> + <%= csp_meta_tag %> + + <%= stylesheet_link_tag 'application', media: 'all', 'data-turbolinks-track': 'reload' %> + <%= javascript_include_tag 'application', 'data-turbolinks-track': 'reload' %> + + + +

<%= notice %>

+

<%= alert %>

+ <%= yield %> + + diff --git a/test/user/app/views/layouts/mailer.html.erb b/test/user/app/views/layouts/mailer.html.erb new file mode 100644 index 0000000..cbd34d2 --- /dev/null +++ b/test/user/app/views/layouts/mailer.html.erb @@ -0,0 +1,13 @@ + + + + + + + + + <%= yield %> + + diff --git a/test/user/app/views/layouts/mailer.text.erb b/test/user/app/views/layouts/mailer.text.erb new file mode 100644 index 0000000..37f0bdd --- /dev/null +++ b/test/user/app/views/layouts/mailer.text.erb @@ -0,0 +1 @@ +<%= yield %> diff --git a/test/user/bin/bundle b/test/user/bin/bundle new file mode 100755 index 0000000..f19acf5 --- /dev/null +++ b/test/user/bin/bundle @@ -0,0 +1,3 @@ +#!/usr/bin/env ruby +ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__) +load Gem.bin_path('bundler', 'bundle') diff --git a/test/user/bin/rails b/test/user/bin/rails new file mode 100755 index 0000000..5badb2f --- /dev/null +++ b/test/user/bin/rails @@ -0,0 +1,9 @@ +#!/usr/bin/env ruby +begin + load File.expand_path('../spring', __FILE__) +rescue LoadError => e + raise unless e.message.include?('spring') +end +APP_PATH = File.expand_path('../config/application', __dir__) +require_relative '../config/boot' +require 'rails/commands' diff --git a/test/user/bin/rake b/test/user/bin/rake new file mode 100755 index 0000000..d87d5f5 --- /dev/null +++ b/test/user/bin/rake @@ -0,0 +1,9 @@ +#!/usr/bin/env ruby +begin + load File.expand_path('../spring', __FILE__) +rescue LoadError => e + raise unless e.message.include?('spring') +end +require_relative '../config/boot' +require 'rake' +Rake.application.run diff --git a/test/user/bin/setup b/test/user/bin/setup new file mode 100755 index 0000000..94fd4d7 --- /dev/null +++ b/test/user/bin/setup @@ -0,0 +1,36 @@ +#!/usr/bin/env ruby +require 'fileutils' +include FileUtils + +# path to your application root. +APP_ROOT = File.expand_path('..', __dir__) + +def system!(*args) + system(*args) || abort("\n== Command #{args} failed ==") +end + +chdir APP_ROOT do + # This script is a starting point to setup your application. + # Add necessary setup steps to this file. + + puts '== Installing dependencies ==' + system! 'gem install bundler --conservative' + system('bundle check') || system!('bundle install') + + # Install JavaScript dependencies if using Yarn + # system('bin/yarn') + + # puts "\n== Copying sample files ==" + # unless File.exist?('config/database.yml') + # cp 'config/database.yml.sample', 'config/database.yml' + # end + + puts "\n== Preparing database ==" + system! 'bin/rails db:setup' + + puts "\n== Removing old logs and tempfiles ==" + system! 'bin/rails log:clear tmp:clear' + + puts "\n== Restarting application server ==" + system! 'bin/rails restart' +end diff --git a/test/user/bin/spring b/test/user/bin/spring new file mode 100755 index 0000000..d89ee49 --- /dev/null +++ b/test/user/bin/spring @@ -0,0 +1,17 @@ +#!/usr/bin/env ruby + +# This file loads Spring without using Bundler, in order to be fast. +# It gets overwritten when you run the `spring binstub` command. + +unless defined?(Spring) + require 'rubygems' + require 'bundler' + + lockfile = Bundler::LockfileParser.new(Bundler.default_lockfile.read) + spring = lockfile.specs.detect { |spec| spec.name == 'spring' } + if spring + Gem.use_paths Gem.dir, Bundler.bundle_path.to_s, *Gem.path + gem 'spring', spring.version + require 'spring/binstub' + end +end diff --git a/test/user/bin/update b/test/user/bin/update new file mode 100755 index 0000000..58bfaed --- /dev/null +++ b/test/user/bin/update @@ -0,0 +1,31 @@ +#!/usr/bin/env ruby +require 'fileutils' +include FileUtils + +# path to your application root. +APP_ROOT = File.expand_path('..', __dir__) + +def system!(*args) + system(*args) || abort("\n== Command #{args} failed ==") +end + +chdir APP_ROOT do + # This script is a way to update your development environment automatically. + # Add necessary update steps to this file. + + puts '== Installing dependencies ==' + system! 'gem install bundler --conservative' + system('bundle check') || system!('bundle install') + + # Install JavaScript dependencies if using Yarn + # system('bin/yarn') + + puts "\n== Updating database ==" + system! 'bin/rails db:migrate' + + puts "\n== Removing old logs and tempfiles ==" + system! 'bin/rails log:clear tmp:clear' + + puts "\n== Restarting application server ==" + system! 'bin/rails restart' +end diff --git a/test/user/bin/yarn b/test/user/bin/yarn new file mode 100755 index 0000000..460dd56 --- /dev/null +++ b/test/user/bin/yarn @@ -0,0 +1,11 @@ +#!/usr/bin/env ruby +APP_ROOT = File.expand_path('..', __dir__) +Dir.chdir(APP_ROOT) do + begin + exec "yarnpkg", *ARGV + rescue Errno::ENOENT + $stderr.puts "Yarn executable was not detected in the system." + $stderr.puts "Download Yarn at https://yarnpkg.com/en/docs/install" + exit 1 + end +end diff --git a/test/user/config.ru b/test/user/config.ru new file mode 100644 index 0000000..f7ba0b5 --- /dev/null +++ b/test/user/config.ru @@ -0,0 +1,5 @@ +# This file is used by Rack-based servers to start the application. + +require_relative 'config/environment' + +run Rails.application diff --git a/test/user/config/application.rb b/test/user/config/application.rb new file mode 100644 index 0000000..5593023 --- /dev/null +++ b/test/user/config/application.rb @@ -0,0 +1,19 @@ +require_relative 'boot' + +require 'rails/all' + +# Require the gems listed in Gemfile, including any gems +# you've limited to :test, :development, or :production. +Bundler.require(*Rails.groups) + +module PetergateTest + class Application < Rails::Application + # Initialize configuration defaults for originally generated Rails version. + config.load_defaults 5.2 + + # Settings in config/environments/* take precedence over those specified here. + # Application configuration can go into files in config/initializers + # -- all .rb files in that directory are automatically loaded after loading + # the framework and any gems in your application. + end +end diff --git a/test/user/config/boot.rb b/test/user/config/boot.rb new file mode 100644 index 0000000..4423c97 --- /dev/null +++ b/test/user/config/boot.rb @@ -0,0 +1,4 @@ +ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__) + +require 'bundler/setup' # Set up gems listed in the Gemfile. +# require 'bootsnap/setup' # Speed up boot time by caching expensive operations. diff --git a/test/user/config/cable.yml b/test/user/config/cable.yml new file mode 100644 index 0000000..e92422f --- /dev/null +++ b/test/user/config/cable.yml @@ -0,0 +1,10 @@ +development: + adapter: async + +test: + adapter: async + +production: + adapter: redis + url: <%= ENV.fetch("REDIS_URL") { "redis://localhost:6379/1" } %> + channel_prefix: petergate_test_production diff --git a/test/user/config/credentials.yml.enc b/test/user/config/credentials.yml.enc new file mode 100644 index 0000000..352bbd5 --- /dev/null +++ b/test/user/config/credentials.yml.enc @@ -0,0 +1 @@ +bdEHtHG0qweH4Gtiyrsg3FK/W5oo6Ny/nt7Dx5m7fXTFkPIDK8D15PLrl1iYD72npW50KhUY8IJFoTPQXbAmi0nQ0fPC3WSnpJfTU9Jb2VIP8rbAzqsTTAlaYLFkj0zp/0VmF2W0nOqOKgNx6siUhZo4Pa9b7+RVPHHIONm8oJM/uKS7h4ZCciCWN4cvB001hjNp1fhqbu2P0XTNdPV/kfwvEH+sZwhdyF+otCVtcnfYI1dCk7gtRGcSJ0RreV1EsqRvSDSQXmPepelytbcL6aNerNteIZefYodwRl/a7fGLV13cSnALmf6m3LNOReOisBfSj25/g9UseVYPNzNQhGMiIQ098/HuYJ9qvFo9YsMiIqUDtWhODBFM+FJ5PkEXZPaTYpC5Q11SJ3tni6ym5CijsdwHglRTOPo5--n3H7WcTrQAVwaNRu--GKpIvDJDuK2ccKAqch+BgA== \ No newline at end of file diff --git a/test/user/config/database.yml b/test/user/config/database.yml new file mode 100644 index 0000000..0d02f24 --- /dev/null +++ b/test/user/config/database.yml @@ -0,0 +1,25 @@ +# SQLite version 3.x +# gem install sqlite3 +# +# Ensure the SQLite 3 gem is defined in your Gemfile +# gem 'sqlite3' +# +default: &default + adapter: sqlite3 + pool: <%= ENV.fetch("RAILS_MAX_THREADS") { 5 } %> + timeout: 5000 + +development: + <<: *default + database: db/development.sqlite3 + +# Warning: The database defined as "test" will be erased and +# re-generated from your development database when you run "rake". +# Do not set this db to the same as development or production. +test: + <<: *default + database: db/test.sqlite3 + +production: + <<: *default + database: db/production.sqlite3 diff --git a/test/user/config/environment.rb b/test/user/config/environment.rb new file mode 100644 index 0000000..426333b --- /dev/null +++ b/test/user/config/environment.rb @@ -0,0 +1,5 @@ +# Load the Rails application. +require_relative 'application' + +# Initialize the Rails application. +Rails.application.initialize! diff --git a/test/user/config/environments/development.rb b/test/user/config/environments/development.rb new file mode 100644 index 0000000..208b2dd --- /dev/null +++ b/test/user/config/environments/development.rb @@ -0,0 +1,62 @@ +Rails.application.configure do + # Settings specified here will take precedence over those in config/application.rb. + + # In the development environment your application's code is reloaded on + # every request. This slows down response time but is perfect for development + # since you don't have to restart the web server when you make code changes. + config.cache_classes = false + + # Do not eager load code on boot. + config.eager_load = false + + # Show full error reports. + config.consider_all_requests_local = true + + # Enable/disable caching. By default caching is disabled. + # Run rails dev:cache to toggle caching. + if Rails.root.join('tmp', 'caching-dev.txt').exist? + config.action_controller.perform_caching = true + + config.cache_store = :memory_store + config.public_file_server.headers = { + 'Cache-Control' => "public, max-age=#{2.days.to_i}" + } + else + config.action_controller.perform_caching = false + + config.cache_store = :null_store + end + + # Store uploaded files on the local file system (see config/storage.yml for options) + config.active_storage.service = :local + + # Don't care if the mailer can't send. + config.action_mailer.raise_delivery_errors = false + + config.action_mailer.perform_caching = false + + # Print deprecation notices to the Rails logger. + config.active_support.deprecation = :log + + # Raise an error on page load if there are pending migrations. + config.active_record.migration_error = :page_load + + # Highlight code that triggered database queries in logs. + config.active_record.verbose_query_logs = true + + # Debug mode disables concatenation and preprocessing of assets. + # This option may cause significant delays in view rendering with a large + # number of complex assets. + config.assets.debug = true + + # Suppress logger output for asset requests. + config.assets.quiet = true + config.action_mailer.default_url_options = { host: 'localhost', port: 3000 } + + # Raises error for missing translations + # config.action_view.raise_on_missing_translations = true + + # Use an evented file watcher to asynchronously detect changes in source code, + # routes, locales, etc. This feature depends on the listen gem. + config.file_watcher = ActiveSupport::EventedFileUpdateChecker +end diff --git a/test/user/config/environments/production.rb b/test/user/config/environments/production.rb new file mode 100644 index 0000000..a25cb75 --- /dev/null +++ b/test/user/config/environments/production.rb @@ -0,0 +1,94 @@ +Rails.application.configure do + # Settings specified here will take precedence over those in config/application.rb. + + # Code is not reloaded between requests. + config.cache_classes = true + + # Eager load code on boot. This eager loads most of Rails and + # your application in memory, allowing both threaded web servers + # and those relying on copy on write to perform better. + # Rake tasks automatically ignore this option for performance. + config.eager_load = true + + # Full error reports are disabled and caching is turned on. + config.consider_all_requests_local = false + config.action_controller.perform_caching = true + + # Ensures that a master key has been made available in either ENV["RAILS_MASTER_KEY"] + # or in config/master.key. This key is used to decrypt credentials (and other encrypted files). + # config.require_master_key = true + + # Disable serving static files from the `/public` folder by default since + # Apache or NGINX already handles this. + config.public_file_server.enabled = ENV['RAILS_SERVE_STATIC_FILES'].present? + + # Compress JavaScripts and CSS. + config.assets.js_compressor = :uglifier + # config.assets.css_compressor = :sass + + # Do not fallback to assets pipeline if a precompiled asset is missed. + config.assets.compile = false + + # `config.assets.precompile` and `config.assets.version` have moved to config/initializers/assets.rb + + # Enable serving of images, stylesheets, and JavaScripts from an asset server. + # config.action_controller.asset_host = 'http://assets.example.com' + + # Specifies the header that your server uses for sending files. + # config.action_dispatch.x_sendfile_header = 'X-Sendfile' # for Apache + # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for NGINX + + # Store uploaded files on the local file system (see config/storage.yml for options) + config.active_storage.service = :local + + # Mount Action Cable outside main process or domain + # config.action_cable.mount_path = nil + # config.action_cable.url = 'wss://example.com/cable' + # config.action_cable.allowed_request_origins = [ 'http://example.com', /http:\/\/example.*/ ] + + # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies. + # config.force_ssl = true + + # Use the lowest log level to ensure availability of diagnostic information + # when problems arise. + config.log_level = :debug + + # Prepend all log lines with the following tags. + config.log_tags = [ :request_id ] + + # Use a different cache store in production. + # config.cache_store = :mem_cache_store + + # Use a real queuing backend for Active Job (and separate queues per environment) + # config.active_job.queue_adapter = :resque + # config.active_job.queue_name_prefix = "petergate_test_#{Rails.env}" + + config.action_mailer.perform_caching = false + + # Ignore bad email addresses and do not raise email delivery errors. + # Set this to true and configure the email server for immediate delivery to raise delivery errors. + # config.action_mailer.raise_delivery_errors = false + + # Enable locale fallbacks for I18n (makes lookups for any locale fall back to + # the I18n.default_locale when a translation cannot be found). + config.i18n.fallbacks = true + + # Send deprecation notices to registered listeners. + config.active_support.deprecation = :notify + + # Use default logging formatter so that PID and timestamp are not suppressed. + config.log_formatter = ::Logger::Formatter.new + + # Use a different logger for distributed setups. + # require 'syslog/logger' + # config.logger = ActiveSupport::TaggedLogging.new(Syslog::Logger.new 'app-name') + + if ENV["RAILS_LOG_TO_STDOUT"].present? + logger = ActiveSupport::Logger.new(STDOUT) + logger.formatter = config.log_formatter + config.logger = ActiveSupport::TaggedLogging.new(logger) + end + + # Do not dump schema after migrations. + config.active_record.dump_schema_after_migration = false +end diff --git a/dummy/config/environments/test.rb b/test/user/config/environments/test.rb similarity index 81% rename from dummy/config/environments/test.rb rename to test/user/config/environments/test.rb index ea174ef..7e97141 100644 --- a/dummy/config/environments/test.rb +++ b/test/user/config/environments/test.rb @@ -12,6 +12,12 @@ # preloads Rails for running tests, you may have to set it to true. config.eager_load = false + # Configure public file server for tests with Cache-Control for performance. + config.public_file_server.enabled = true + config.public_file_server.headers = { + 'Cache-Control' => "public, max-age=#{1.hour.to_i}" + } + # Configure static asset server for tests with Cache-Control for performance. config.serve_static_files = true config.static_cache_control = 'public, max-age=3600' @@ -26,6 +32,11 @@ # Disable request forgery protection in test environment. config.action_controller.allow_forgery_protection = false + # Store uploaded files on the local file system in a temporary directory + config.active_storage.service = :test + + config.action_mailer.perform_caching = false + # Tell Action Mailer not to deliver emails to the real world. # The :test delivery method accumulates sent emails in the # ActionMailer::Base.deliveries array. diff --git a/test/user/config/initializers/application_controller_renderer.rb b/test/user/config/initializers/application_controller_renderer.rb new file mode 100644 index 0000000..89d2efa --- /dev/null +++ b/test/user/config/initializers/application_controller_renderer.rb @@ -0,0 +1,8 @@ +# Be sure to restart your server when you modify this file. + +# ActiveSupport::Reloader.to_prepare do +# ApplicationController.renderer.defaults.merge!( +# http_host: 'example.org', +# https: false +# ) +# end diff --git a/test/user/config/initializers/assets.rb b/test/user/config/initializers/assets.rb new file mode 100644 index 0000000..4b828e8 --- /dev/null +++ b/test/user/config/initializers/assets.rb @@ -0,0 +1,14 @@ +# Be sure to restart your server when you modify this file. + +# Version of your assets, change this if you want to expire all your assets. +Rails.application.config.assets.version = '1.0' + +# Add additional assets to the asset load path. +# Rails.application.config.assets.paths << Emoji.images_path +# Add Yarn node_modules folder to the asset load path. +Rails.application.config.assets.paths << Rails.root.join('node_modules') + +# Precompile additional assets. +# application.js, application.css, and all non-JS/CSS in the app/assets +# folder are already added. +# Rails.application.config.assets.precompile += %w( admin.js admin.css ) diff --git a/test/user/config/initializers/backtrace_silencers.rb b/test/user/config/initializers/backtrace_silencers.rb new file mode 100644 index 0000000..59385cd --- /dev/null +++ b/test/user/config/initializers/backtrace_silencers.rb @@ -0,0 +1,7 @@ +# Be sure to restart your server when you modify this file. + +# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces. +# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ } + +# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code. +# Rails.backtrace_cleaner.remove_silencers! diff --git a/test/user/config/initializers/content_security_policy.rb b/test/user/config/initializers/content_security_policy.rb new file mode 100644 index 0000000..d3bcaa5 --- /dev/null +++ b/test/user/config/initializers/content_security_policy.rb @@ -0,0 +1,25 @@ +# Be sure to restart your server when you modify this file. + +# Define an application-wide content security policy +# For further information see the following documentation +# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy + +# Rails.application.config.content_security_policy do |policy| +# policy.default_src :self, :https +# policy.font_src :self, :https, :data +# policy.img_src :self, :https, :data +# policy.object_src :none +# policy.script_src :self, :https +# policy.style_src :self, :https + +# # Specify URI for violation reports +# # policy.report_uri "/csp-violation-report-endpoint" +# end + +# If you are using UJS then enable automatic nonce generation +# Rails.application.config.content_security_policy_nonce_generator = -> request { SecureRandom.base64(16) } + +# Report CSP violations to a specified URI +# For further information see the following documentation: +# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only +# Rails.application.config.content_security_policy_report_only = true diff --git a/test/user/config/initializers/cookies_serializer.rb b/test/user/config/initializers/cookies_serializer.rb new file mode 100644 index 0000000..5a6a32d --- /dev/null +++ b/test/user/config/initializers/cookies_serializer.rb @@ -0,0 +1,5 @@ +# Be sure to restart your server when you modify this file. + +# Specify a serializer for the signed and encrypted cookie jars. +# Valid options are :json, :marshal, and :hybrid. +Rails.application.config.action_dispatch.cookies_serializer = :json diff --git a/test/user/config/initializers/devise.rb b/test/user/config/initializers/devise.rb new file mode 100644 index 0000000..98536d7 --- /dev/null +++ b/test/user/config/initializers/devise.rb @@ -0,0 +1,299 @@ +# frozen_string_literal: true + +# Use this hook to configure devise mailer, warden hooks and so forth. +# Many of these configuration options can be set straight in your model. +Devise.setup do |config| + # The secret key used by Devise. Devise uses this key to generate + # random tokens. Changing this key will render invalid all existing + # confirmation, reset password and unlock tokens in the database. + # Devise will use the `secret_key_base` as its `secret_key` + # by default. You can change it below and use your own secret key. + # config.secret_key = '8386a86098dfe71bfd6dc636cdd7f3a54a973205bcd8a1042c1310cc08f5754858ee4394124b2cd29809bb22aff2cf9386bcbc56bc78459cf75f1f7f7ee18e23' + + # ==> Controller configuration + # Configure the parent class to the devise controllers. + # config.parent_controller = 'DeviseController' + + # ==> Mailer Configuration + # Configure the e-mail address which will be shown in Devise::Mailer, + # note that it will be overwritten if you use your own mailer class + # with default "from" parameter. + config.mailer_sender = 'please-change-me-at-config-initializers-devise@example.com' + + # Configure the class responsible to send e-mails. + # config.mailer = 'Devise::Mailer' + + # Configure the parent class responsible to send e-mails. + # config.parent_mailer = 'ActionMailer::Base' + + # ==> ORM configuration + # Load and configure the ORM. Supports :active_record (default) and + # :mongoid (bson_ext recommended) by default. Other ORMs may be + # available as additional gems. + require 'devise/orm/active_record' + + # ==> Configuration for any authentication mechanism + # Configure which keys are used when authenticating a user. The default is + # just :email. You can configure it to use [:username, :subdomain], so for + # authenticating a user, both parameters are required. Remember that those + # parameters are used only when authenticating and not when retrieving from + # session. If you need permissions, you should implement that in a before filter. + # You can also supply a hash where the value is a boolean determining whether + # or not authentication should be aborted when the value is not present. + # config.authentication_keys = [:email] + + # Configure parameters from the request object used for authentication. Each entry + # given should be a request method and it will automatically be passed to the + # find_for_authentication method and considered in your model lookup. For instance, + # if you set :request_keys to [:subdomain], :subdomain will be used on authentication. + # The same considerations mentioned for authentication_keys also apply to request_keys. + # config.request_keys = [] + + # Configure which authentication keys should be case-insensitive. + # These keys will be downcased upon creating or modifying a user and when used + # to authenticate or find a user. Default is :email. + config.case_insensitive_keys = [:email] + + # Configure which authentication keys should have whitespace stripped. + # These keys will have whitespace before and after removed upon creating or + # modifying a user and when used to authenticate or find a user. Default is :email. + config.strip_whitespace_keys = [:email] + + # Tell if authentication through request.params is enabled. True by default. + # It can be set to an array that will enable params authentication only for the + # given strategies, for example, `config.params_authenticatable = [:database]` will + # enable it only for database (email + password) authentication. + # config.params_authenticatable = true + + # Tell if authentication through HTTP Auth is enabled. False by default. + # It can be set to an array that will enable http authentication only for the + # given strategies, for example, `config.http_authenticatable = [:database]` will + # enable it only for database authentication. The supported strategies are: + # :database = Support basic authentication with authentication key + password + # config.http_authenticatable = false + + # If 401 status code should be returned for AJAX requests. True by default. + # config.http_authenticatable_on_xhr = true + + # The realm used in Http Basic Authentication. 'Application' by default. + # config.http_authentication_realm = 'Application' + + # It will change confirmation, password recovery and other workflows + # to behave the same regardless if the e-mail provided was right or wrong. + # Does not affect registerable. + # config.paranoid = true + + # By default Devise will store the user in session. You can skip storage for + # particular strategies by setting this option. + # Notice that if you are skipping storage for all authentication paths, you + # may want to disable generating routes to Devise's sessions controller by + # passing skip: :sessions to `devise_for` in your config/routes.rb + config.skip_session_storage = [:http_auth] + + # By default, Devise cleans up the CSRF token on authentication to + # avoid CSRF token fixation attacks. This means that, when using AJAX + # requests for sign in and sign up, you need to get a new CSRF token + # from the server. You can disable this option at your own risk. + # config.clean_up_csrf_token_on_authentication = true + + # When false, Devise will not attempt to reload routes on eager load. + # This can reduce the time taken to boot the app but if your application + # requires the Devise mappings to be loaded during boot time the application + # won't boot properly. + # config.reload_routes = true + + # ==> Configuration for :database_authenticatable + # For bcrypt, this is the cost for hashing the password and defaults to 11. If + # using other algorithms, it sets how many times you want the password to be hashed. + # + # Limiting the stretches to just one in testing will increase the performance of + # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use + # a value less than 10 in other environments. Note that, for bcrypt (the default + # algorithm), the cost increases exponentially with the number of stretches (e.g. + # a value of 20 is already extremely slow: approx. 60 seconds for 1 calculation). + config.stretches = Rails.env.test? ? 1 : 11 + + # Set up a pepper to generate the hashed password. + # config.pepper = '1666f7a84aa372aeed81801a225dc02ca29463d19a53fabb7c82bc192b6ff6d3c41adf5fe807efc3fd7521c7cbfbdfd6dde019d261e6e3139fed34cd63a0c7e2' + + # Send a notification to the original email when the user's email is changed. + # config.send_email_changed_notification = false + + # Send a notification email when the user's password is changed. + # config.send_password_change_notification = false + + # ==> Configuration for :confirmable + # A period that the user is allowed to access the website even without + # confirming their account. For instance, if set to 2.days, the user will be + # able to access the website for two days without confirming their account, + # access will be blocked just in the third day. + # You can also set it to nil, which will allow the user to access the website + # without confirming their account. + # Default is 0.days, meaning the user cannot access the website without + # confirming their account. + # config.allow_unconfirmed_access_for = 2.days + + # A period that the user is allowed to confirm their account before their + # token becomes invalid. For example, if set to 3.days, the user can confirm + # their account within 3 days after the mail was sent, but on the fourth day + # their account can't be confirmed with the token any more. + # Default is nil, meaning there is no restriction on how long a user can take + # before confirming their account. + # config.confirm_within = 3.days + + # If true, requires any email changes to be confirmed (exactly the same way as + # initial account confirmation) to be applied. Requires additional unconfirmed_email + # db field (see migrations). Until confirmed, new email is stored in + # unconfirmed_email column, and copied to email column on successful confirmation. + config.reconfirmable = true + + # Defines which key will be used when confirming an account + # config.confirmation_keys = [:email] + + # ==> Configuration for :rememberable + # The time the user will be remembered without asking for credentials again. + # config.remember_for = 2.weeks + + # Invalidates all the remember me tokens when the user signs out. + config.expire_all_remember_me_on_sign_out = true + + # If true, extends the user's remember period when remembered via cookie. + # config.extend_remember_period = false + + # Options to be passed to the created cookie. For instance, you can set + # secure: true in order to force SSL only cookies. + # config.rememberable_options = {} + + # ==> Configuration for :validatable + # Range for password length. + config.password_length = 6..128 + + # Email regex used to validate email formats. It simply asserts that + # one (and only one) @ exists in the given string. This is mainly + # to give user feedback and not to assert the e-mail validity. + config.email_regexp = /\A[^@\s]+@[^@\s]+\z/ + + # ==> Configuration for :timeoutable + # The time you want to timeout the user session without activity. After this + # time the user will be asked for credentials again. Default is 30 minutes. + # config.timeout_in = 30.minutes + + # ==> Configuration for :lockable + # Defines which strategy will be used to lock an account. + # :failed_attempts = Locks an account after a number of failed attempts to sign in. + # :none = No lock strategy. You should handle locking by yourself. + # config.lock_strategy = :failed_attempts + + # Defines which key will be used when locking and unlocking an account + # config.unlock_keys = [:email] + + # Defines which strategy will be used to unlock an account. + # :email = Sends an unlock link to the user email + # :time = Re-enables login after a certain amount of time (see :unlock_in below) + # :both = Enables both strategies + # :none = No unlock strategy. You should handle unlocking by yourself. + # config.unlock_strategy = :both + + # Number of authentication tries before locking an account if lock_strategy + # is failed attempts. + # config.maximum_attempts = 20 + + # Time interval to unlock the account if :time is enabled as unlock_strategy. + # config.unlock_in = 1.hour + + # Warn on the last attempt before the account is locked. + # config.last_attempt_warning = true + + # ==> Configuration for :recoverable + # + # Defines which key will be used when recovering the password for an account + # config.reset_password_keys = [:email] + + # Time interval you can reset your password with a reset password key. + # Don't put a too small interval or your users won't have the time to + # change their passwords. + config.reset_password_within = 6.hours + + # When set to false, does not sign a user in automatically after their password is + # reset. Defaults to true, so a user is signed in automatically after a reset. + # config.sign_in_after_reset_password = true + + # ==> Configuration for :encryptable + # Allow you to use another hashing or encryption algorithm besides bcrypt (default). + # You can use :sha1, :sha512 or algorithms from others authentication tools as + # :clearance_sha1, :authlogic_sha512 (then you should set stretches above to 20 + # for default behavior) and :restful_authentication_sha1 (then you should set + # stretches to 10, and copy REST_AUTH_SITE_KEY to pepper). + # + # Require the `devise-encryptable` gem when using anything other than bcrypt + # config.encryptor = :sha512 + + # ==> Scopes configuration + # Turn scoped views on. Before rendering "sessions/new", it will first check for + # "users/sessions/new". It's turned off by default because it's slower if you + # are using only default views. + # config.scoped_views = false + + # Configure the default scope given to Warden. By default it's the first + # devise role declared in your routes (usually :user). + # config.default_scope = :user + + # Set this configuration to false if you want /users/sign_out to sign out + # only the current scope. By default, Devise signs out all scopes. + # config.sign_out_all_scopes = true + + # ==> Navigation configuration + # Lists the formats that should be treated as navigational. Formats like + # :html, should redirect to the sign in page when the user does not have + # access, but formats like :xml or :json, should return 401. + # + # If you have any extra navigational formats, like :iphone or :mobile, you + # should add them to the navigational formats lists. + # + # The "*/*" below is required to match Internet Explorer requests. + # config.navigational_formats = ['*/*', :html] + + # The default HTTP method used to sign out a resource. Default is :delete. + config.sign_out_via = :delete + + # ==> OmniAuth + # Add a new OmniAuth provider. Check the wiki for more information on setting + # up on your models and hooks. + # config.omniauth :github, 'APP_ID', 'APP_SECRET', scope: 'user,public_repo' + + # ==> Warden configuration + # If you want to use other strategies, that are not supported by Devise, or + # change the failure app, you can configure them inside the config.warden block. + # + # config.warden do |manager| + # manager.intercept_401 = false + # manager.default_strategies(scope: :user).unshift :some_external_strategy + # end + + # ==> Mountable engine configurations + # When using Devise inside an engine, let's call it `MyEngine`, and this engine + # is mountable, there are some extra configurations to be taken into account. + # The following options are available, assuming the engine is mounted as: + # + # mount MyEngine, at: '/my_engine' + # + # The router that invoked `devise_for`, in the example above, would be: + # config.router_name = :my_engine + # + # When using OmniAuth, Devise cannot automatically set OmniAuth path, + # so you need to do it manually. For the users scope, it would be: + # config.omniauth_path_prefix = '/my_engine/users/auth' + + # ==> Turbolinks configuration + # If your app is using Turbolinks, Turbolinks::Controller needs to be included to make redirection work correctly: + # + # ActiveSupport.on_load(:devise_failure_app) do + # include Turbolinks::Controller + # end + + # ==> Configuration for :registerable + + # When set to false, does not sign a user in automatically after their password is + # changed. Defaults to true, so a user is signed in automatically after changing a password. + # config.sign_in_after_change_password = true +end diff --git a/test/user/config/initializers/filter_parameter_logging.rb b/test/user/config/initializers/filter_parameter_logging.rb new file mode 100644 index 0000000..4a994e1 --- /dev/null +++ b/test/user/config/initializers/filter_parameter_logging.rb @@ -0,0 +1,4 @@ +# Be sure to restart your server when you modify this file. + +# Configure sensitive parameters which will be filtered from the log file. +Rails.application.config.filter_parameters += [:password] diff --git a/test/user/config/initializers/inflections.rb b/test/user/config/initializers/inflections.rb new file mode 100644 index 0000000..ac033bf --- /dev/null +++ b/test/user/config/initializers/inflections.rb @@ -0,0 +1,16 @@ +# Be sure to restart your server when you modify this file. + +# Add new inflection rules using the following format. Inflections +# are locale specific, and you may define rules for as many different +# locales as you wish. All of these examples are active by default: +# ActiveSupport::Inflector.inflections(:en) do |inflect| +# inflect.plural /^(ox)$/i, '\1en' +# inflect.singular /^(ox)en/i, '\1' +# inflect.irregular 'person', 'people' +# inflect.uncountable %w( fish sheep ) +# end + +# These inflection rules are supported but not enabled by default: +# ActiveSupport::Inflector.inflections(:en) do |inflect| +# inflect.acronym 'RESTful' +# end diff --git a/test/user/config/initializers/mime_types.rb b/test/user/config/initializers/mime_types.rb new file mode 100644 index 0000000..dc18996 --- /dev/null +++ b/test/user/config/initializers/mime_types.rb @@ -0,0 +1,4 @@ +# Be sure to restart your server when you modify this file. + +# Add new mime types for use in respond_to blocks: +# Mime::Type.register "text/richtext", :rtf diff --git a/test/user/config/initializers/wrap_parameters.rb b/test/user/config/initializers/wrap_parameters.rb new file mode 100644 index 0000000..bbfc396 --- /dev/null +++ b/test/user/config/initializers/wrap_parameters.rb @@ -0,0 +1,14 @@ +# Be sure to restart your server when you modify this file. + +# This file contains settings for ActionController::ParamsWrapper which +# is enabled by default. + +# Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array. +ActiveSupport.on_load(:action_controller) do + wrap_parameters format: [:json] +end + +# To enable root element in JSON for ActiveRecord objects. +# ActiveSupport.on_load(:active_record) do +# self.include_root_in_json = true +# end diff --git a/test/user/config/locales/devise.en.yml b/test/user/config/locales/devise.en.yml new file mode 100644 index 0000000..55617bd --- /dev/null +++ b/test/user/config/locales/devise.en.yml @@ -0,0 +1,65 @@ +# Additional translations at https://github.com/plataformatec/devise/wiki/I18n + +en: + devise: + confirmations: + confirmed: "Your email address has been successfully confirmed." + send_instructions: "You will receive an email with instructions for how to confirm your email address in a few minutes." + send_paranoid_instructions: "If your email address exists in our database, you will receive an email with instructions for how to confirm your email address in a few minutes." + failure: + already_authenticated: "You are already signed in." + inactive: "Your account is not activated yet." + invalid: "Invalid %{authentication_keys} or password." + locked: "Your account is locked." + last_attempt: "You have one more attempt before your account is locked." + not_found_in_database: "Invalid %{authentication_keys} or password." + timeout: "Your session expired. Please sign in again to continue." + unauthenticated: "You need to sign in or sign up before continuing." + unconfirmed: "You have to confirm your email address before continuing." + mailer: + confirmation_instructions: + subject: "Confirmation instructions" + reset_password_instructions: + subject: "Reset password instructions" + unlock_instructions: + subject: "Unlock instructions" + email_changed: + subject: "Email Changed" + password_change: + subject: "Password Changed" + omniauth_callbacks: + failure: "Could not authenticate you from %{kind} because \"%{reason}\"." + success: "Successfully authenticated from %{kind} account." + passwords: + no_token: "You can't access this page without coming from a password reset email. If you do come from a password reset email, please make sure you used the full URL provided." + send_instructions: "You will receive an email with instructions on how to reset your password in a few minutes." + send_paranoid_instructions: "If your email address exists in our database, you will receive a password recovery link at your email address in a few minutes." + updated: "Your password has been changed successfully. You are now signed in." + updated_not_active: "Your password has been changed successfully." + registrations: + destroyed: "Bye! Your account has been successfully cancelled. We hope to see you again soon." + signed_up: "Welcome! You have signed up successfully." + signed_up_but_inactive: "You have signed up successfully. However, we could not sign you in because your account is not yet activated." + signed_up_but_locked: "You have signed up successfully. However, we could not sign you in because your account is locked." + signed_up_but_unconfirmed: "A message with a confirmation link has been sent to your email address. Please follow the link to activate your account." + update_needs_confirmation: "You updated your account successfully, but we need to verify your new email address. Please check your email and follow the confirm link to confirm your new email address." + updated: "Your account has been updated successfully." + updated_but_not_signed_in: "Your account has been updated successfully, but since your password was changed, you need to sign in again" + sessions: + signed_in: "Signed in successfully." + signed_out: "Signed out successfully." + already_signed_out: "Signed out successfully." + unlocks: + send_instructions: "You will receive an email with instructions for how to unlock your account in a few minutes." + send_paranoid_instructions: "If your account exists, you will receive an email with instructions for how to unlock it in a few minutes." + unlocked: "Your account has been unlocked successfully. Please sign in to continue." + errors: + messages: + already_confirmed: "was already confirmed, please try signing in" + confirmation_period_expired: "needs to be confirmed within %{period}, please request a new one" + expired: "has expired, please request a new one" + not_found: "not found" + not_locked: "was not locked" + not_saved: + one: "1 error prohibited this %{resource} from being saved:" + other: "%{count} errors prohibited this %{resource} from being saved:" diff --git a/test/user/config/locales/en.yml b/test/user/config/locales/en.yml new file mode 100644 index 0000000..decc5a8 --- /dev/null +++ b/test/user/config/locales/en.yml @@ -0,0 +1,33 @@ +# Files in the config/locales directory are used for internationalization +# and are automatically loaded by Rails. If you want to use locales other +# than English, add the necessary files in this directory. +# +# To use the locales, use `I18n.t`: +# +# I18n.t 'hello' +# +# In views, this is aliased to just `t`: +# +# <%= t('hello') %> +# +# To use a different locale, set it with `I18n.locale`: +# +# I18n.locale = :es +# +# This would use the information in config/locales/es.yml. +# +# The following keys must be escaped otherwise they will not be retrieved by +# the default I18n backend: +# +# true, false, on, off, yes, no +# +# Instead, surround them with single quotes. +# +# en: +# 'true': 'foo' +# +# To learn more, please read the Rails Internationalization guide +# available at http://guides.rubyonrails.org/i18n.html. + +en: + hello: "Hello world" diff --git a/test/user/config/puma.rb b/test/user/config/puma.rb new file mode 100644 index 0000000..a5eccf8 --- /dev/null +++ b/test/user/config/puma.rb @@ -0,0 +1,34 @@ +# Puma can serve each request in a thread from an internal thread pool. +# The `threads` method setting takes two numbers: a minimum and maximum. +# Any libraries that use thread pools should be configured to match +# the maximum value specified for Puma. Default is set to 5 threads for minimum +# and maximum; this matches the default thread size of Active Record. +# +threads_count = ENV.fetch("RAILS_MAX_THREADS") { 5 } +threads threads_count, threads_count + +# Specifies the `port` that Puma will listen on to receive requests; default is 3000. +# +port ENV.fetch("PORT") { 3000 } + +# Specifies the `environment` that Puma will run in. +# +environment ENV.fetch("RAILS_ENV") { "development" } + +# Specifies the number of `workers` to boot in clustered mode. +# Workers are forked webserver processes. If using threads and workers together +# the concurrency of the application would be max `threads` * `workers`. +# Workers do not work on JRuby or Windows (both of which do not support +# processes). +# +# workers ENV.fetch("WEB_CONCURRENCY") { 2 } + +# Use the `preload_app!` method when specifying a `workers` number. +# This directive tells Puma to first boot the application and load code +# before forking the application. This takes advantage of Copy On Write +# process behavior so workers use less memory. +# +# preload_app! + +# Allow puma to be restarted by `rails restart` command. +plugin :tmp_restart diff --git a/dummy/config/routes.rb b/test/user/config/routes.rb similarity index 96% rename from dummy/config/routes.rb rename to test/user/config/routes.rb index f28fa4f..732dd50 100644 --- a/dummy/config/routes.rb +++ b/test/user/config/routes.rb @@ -1,7 +1,7 @@ Rails.application.routes.draw do devise_for :users resources :blogs - get 'test_forbidden' => 'test#index' + get 'test_forbidden', to: 'test#index', as: 'test' # The priority is based upon order of creation: first created -> highest priority. # See how all your routes lay out with "rake routes". diff --git a/test/user/config/spring.rb b/test/user/config/spring.rb new file mode 100644 index 0000000..9fa7863 --- /dev/null +++ b/test/user/config/spring.rb @@ -0,0 +1,6 @@ +%w[ + .ruby-version + .rbenv-vars + tmp/restart.txt + tmp/caching-dev.txt +].each { |path| Spring.watch(path) } diff --git a/test/user/config/storage.yml b/test/user/config/storage.yml new file mode 100644 index 0000000..d32f76e --- /dev/null +++ b/test/user/config/storage.yml @@ -0,0 +1,34 @@ +test: + service: Disk + root: <%= Rails.root.join("tmp/storage") %> + +local: + service: Disk + root: <%= Rails.root.join("storage") %> + +# Use rails credentials:edit to set the AWS secrets (as aws:access_key_id|secret_access_key) +# amazon: +# service: S3 +# access_key_id: <%= Rails.application.credentials.dig(:aws, :access_key_id) %> +# secret_access_key: <%= Rails.application.credentials.dig(:aws, :secret_access_key) %> +# region: us-east-1 +# bucket: your_own_bucket + +# Remember not to checkin your GCS keyfile to a repository +# google: +# service: GCS +# project: your_project +# credentials: <%= Rails.root.join("path/to/gcs.keyfile") %> +# bucket: your_own_bucket + +# Use rails credentials:edit to set the Azure Storage secret (as azure_storage:storage_access_key) +# microsoft: +# service: AzureStorage +# storage_account_name: your_account_name +# storage_access_key: <%= Rails.application.credentials.dig(:azure_storage, :storage_access_key) %> +# container: your_container_name + +# mirror: +# service: Mirror +# primary: local +# mirrors: [ amazon, google, microsoft ] diff --git a/test/user/db/migrate/20141117063228_create_blogs.rb b/test/user/db/migrate/20141117063228_create_blogs.rb new file mode 100644 index 0000000..74c8f65 --- /dev/null +++ b/test/user/db/migrate/20141117063228_create_blogs.rb @@ -0,0 +1,10 @@ +class CreateBlogs < ActiveRecord::Migration[5.2] + def change + create_table :blogs do |t| + t.string :title + t.text :content + + t.timestamps + end + end +end diff --git a/dummy/db/migrate/20141117064643_devise_create_users.rb b/test/user/db/migrate/20141117064643_devise_create_users.rb similarity index 100% rename from dummy/db/migrate/20141117064643_devise_create_users.rb rename to test/user/db/migrate/20141117064643_devise_create_users.rb diff --git a/dummy/db/migrate/20141117064807_add_roles_to_users.rb b/test/user/db/migrate/20141117064807_add_roles_to_users.rb similarity index 100% rename from dummy/db/migrate/20141117064807_add_roles_to_users.rb rename to test/user/db/migrate/20141117064807_add_roles_to_users.rb diff --git a/dummy/db/schema.rb b/test/user/db/schema.rb similarity index 100% rename from dummy/db/schema.rb rename to test/user/db/schema.rb diff --git a/test/user/db/seeds.rb b/test/user/db/seeds.rb new file mode 100644 index 0000000..1beea2a --- /dev/null +++ b/test/user/db/seeds.rb @@ -0,0 +1,7 @@ +# This file should contain all the record creation needed to seed the database with its default values. +# The data can then be loaded with the rails db:seed command (or created alongside the database with db:setup). +# +# Examples: +# +# movies = Movie.create([{ name: 'Star Wars' }, { name: 'Lord of the Rings' }]) +# Character.create(name: 'Luke', movie: movies.first) diff --git a/test/user/lib/assets/.keep b/test/user/lib/assets/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/lib/tasks/.keep b/test/user/lib/tasks/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/log/.keep b/test/user/log/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/package.json b/test/user/package.json new file mode 100644 index 0000000..88544fd --- /dev/null +++ b/test/user/package.json @@ -0,0 +1,5 @@ +{ + "name": "petergate_test", + "private": true, + "dependencies": {} +} diff --git a/test/user/public/404.html b/test/user/public/404.html new file mode 100644 index 0000000..2be3af2 --- /dev/null +++ b/test/user/public/404.html @@ -0,0 +1,67 @@ + + + + The page you were looking for doesn't exist (404) + + + + + + +
+
+

The page you were looking for doesn't exist.

+

You may have mistyped the address or the page may have moved.

+
+

If you are the application owner check the logs for more information.

+
+ + diff --git a/test/user/public/422.html b/test/user/public/422.html new file mode 100644 index 0000000..c08eac0 --- /dev/null +++ b/test/user/public/422.html @@ -0,0 +1,67 @@ + + + + The change you wanted was rejected (422) + + + + + + +
+
+

The change you wanted was rejected.

+

Maybe you tried to change something you didn't have access to.

+
+

If you are the application owner check the logs for more information.

+
+ + diff --git a/test/user/public/500.html b/test/user/public/500.html new file mode 100644 index 0000000..78a030a --- /dev/null +++ b/test/user/public/500.html @@ -0,0 +1,66 @@ + + + + We're sorry, but something went wrong (500) + + + + + + +
+
+

We're sorry, but something went wrong.

+
+

If you are the application owner check the logs for more information.

+
+ + diff --git a/test/user/public/apple-touch-icon-precomposed.png b/test/user/public/apple-touch-icon-precomposed.png new file mode 100644 index 0000000..e69de29 diff --git a/test/user/public/apple-touch-icon.png b/test/user/public/apple-touch-icon.png new file mode 100644 index 0000000..e69de29 diff --git a/test/user/public/favicon.ico b/test/user/public/favicon.ico new file mode 100644 index 0000000..e69de29 diff --git a/test/user/public/robots.txt b/test/user/public/robots.txt new file mode 100644 index 0000000..37b576a --- /dev/null +++ b/test/user/public/robots.txt @@ -0,0 +1 @@ +# See http://www.robotstxt.org/robotstxt.html for documentation on how to use the robots.txt file diff --git a/test/user/storage/.keep b/test/user/storage/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/controllers/.keep b/test/user/test/controllers/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/controllers/base_controller_test.rb b/test/user/test/controllers/base_controller_test.rb new file mode 100644 index 0000000..aef1d5a --- /dev/null +++ b/test/user/test/controllers/base_controller_test.rb @@ -0,0 +1,7 @@ +require "test_helper" + +describe "ActionController::Base" do + it "must have ALLREST as an array" do + ActionController::Base::ALLREST.must_be_instance_of(Array) + end +end diff --git a/dummy/test/controllers/blogs_multiple_controller_test.rb b/test/user/test/controllers/blogs_multiple_controller_test.rb similarity index 100% rename from dummy/test/controllers/blogs_multiple_controller_test.rb rename to test/user/test/controllers/blogs_multiple_controller_test.rb diff --git a/dummy/test/controllers/blogs_singular_controller_test.rb b/test/user/test/controllers/blogs_singular_controller_test.rb similarity index 100% rename from dummy/test/controllers/blogs_singular_controller_test.rb rename to test/user/test/controllers/blogs_singular_controller_test.rb diff --git a/dummy/test/controllers/test_controller_test.rb b/test/user/test/controllers/test_controller_test.rb similarity index 93% rename from dummy/test/controllers/test_controller_test.rb rename to test/user/test/controllers/test_controller_test.rb index 8a72875..f49d8b0 100644 --- a/dummy/test/controllers/test_controller_test.rb +++ b/test/user/test/controllers/test_controller_test.rb @@ -10,9 +10,10 @@ def index describe TestController, '#forbidden!' do let(:admin) { users(:admin) } - before do + + before do User.petergate(roles: [:root_admin, :company_admin], multiple: true) - create_user_and_login + create_user_and_login end describe 'with html format request' do @@ -23,7 +24,7 @@ def index it 'redirect to after_sign_in_path_for' do get new_user_session_path - assert_redirected_to root_path + assert_redirected_to root_path end it 'redirect to sign_in if not signed in' do diff --git a/test/user/test/fixtures/.keep b/test/user/test/fixtures/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/fixtures/blogs.yml b/test/user/test/fixtures/blogs.yml new file mode 100644 index 0000000..8bd60d5 --- /dev/null +++ b/test/user/test/fixtures/blogs.yml @@ -0,0 +1,10 @@ +# Read about fixtures at +# http://api.rubyonrails.org/classes/ActiveRecord/Fixtures.html + +one: + title: MyString + content: MyText + +two: + title: MyString + content: MyText diff --git a/test/user/test/fixtures/users.yml b/test/user/test/fixtures/users.yml new file mode 100644 index 0000000..ad6b923 --- /dev/null +++ b/test/user/test/fixtures/users.yml @@ -0,0 +1,4 @@ +admin: + email: admin@example.com + roles: + - root_admin diff --git a/test/user/test/helpers/.keep b/test/user/test/helpers/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/integration/.keep b/test/user/test/integration/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/mailers/.keep b/test/user/test/mailers/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/models/.keep b/test/user/test/models/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/test/models/blog_test.rb b/test/user/test/models/blog_test.rb new file mode 100644 index 0000000..19c68d3 --- /dev/null +++ b/test/user/test/models/blog_test.rb @@ -0,0 +1,9 @@ +require "test_helper" + +describe Blog do + let(:blog) { Blog.new } + + it "must be valid" do + blog.must_be :valid? + end +end diff --git a/dummy/test/models/user_test.rb b/test/user/test/models/user_test.rb similarity index 100% rename from dummy/test/models/user_test.rb rename to test/user/test/models/user_test.rb diff --git a/test/user/test/test_helper.rb b/test/user/test/test_helper.rb new file mode 100644 index 0000000..cd90821 --- /dev/null +++ b/test/user/test/test_helper.rb @@ -0,0 +1,51 @@ +ENV['RAILS_ENV'] = 'test' +require File.expand_path("../../config/environment", __FILE__) +require "rails/test_help" +require "minitest/rails" + +# To add Capybara feature tests add `gem "minitest-rails-capybara"` +# to the test group in the Gemfile and uncomment the following: +# require "minitest/rails/capybara" + +require "minitest/pride" +require "minitest/reporters" +require "minitest/autorun" +class ActiveSupport::TestCase + Minitest::Reporters.use! Minitest::Reporters::SpecReporter.new + ActiveRecord::Migration.check_pending! + fixtures :all + + # Setup all fixtures in test/fixtures/*.(yml|csv) for all tests in alphabetical order. +end + +class ActionController::TestCase + include Devise::TestHelpers +end + +def create_user_and_login(email: "user@example.com", password: "youllneverguess") + u = User.create(email: email, password: password, password_confirmation: password, roles: :user) + sign_in(u) +end + +def create_admin_and_login(email: "user@example.com", password: "youllneverguess") + u = User.create(email: email, password: password, password_confirmation: password, roles: :root_admin) + sign_in(u) +end + +def create_company_admin_and_login(email: "user@example.com", password: "youllneverguess") + u = User.create(email: email, password: password, password_confirmation: password, roles: :company_admin) + sign_in(u) +end + +def sign_in(u) + post( user_session_url, + params: { + 'user[email]' => u.email, + 'user[password]' => 'youllneverguess' + } + ) +end + +def sign_out(u) + delete(destroy_user_session_url) +end diff --git a/test/user/tmp/.keep b/test/user/tmp/.keep new file mode 100644 index 0000000..e69de29 diff --git a/test/user/vendor/.keep b/test/user/vendor/.keep new file mode 100644 index 0000000..e69de29