v0.1.1 Basic Authentication Solution

  - Added ability to sign up
  - Added ability to sign in
  - Added ability to sign out
  - Added ability to reset password
  - Added ability to verify email address

Author: kobaltz

.github/workflows/test.yml

@@ -0,0 +1,28 @@
+name: Ruby
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+
+permissions:
+  contents: read
+
+jobs:
+  test:
+
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        ruby-version: ['2.7', '3.0', '3.1', '3.2']
+
+    steps:
+    - uses: actions/checkout@v3
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1.146.0
+      with:
+        ruby-version: ${{ matrix.ruby-version }}
+        bundler-cache: true
+    - name: Run tests
+      run: bundle exec rails test

.gitignore

@@ -0,0 +1,204 @@
+PATH
+  remote: .
+  specs:
+    action_auth (0.1.0)
+      bcrypt (~> 3.1.0)
+      rails (~> 7.1)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    actioncable (7.1.1)
+      actionpack (= 7.1.1)
+      activesupport (= 7.1.1)
+      nio4r (~> 2.0)
+      websocket-driver (>= 0.6.1)
+      zeitwerk (~> 2.6)
+    actionmailbox (7.1.1)
+      actionpack (= 7.1.1)
+      activejob (= 7.1.1)
+      activerecord (= 7.1.1)
+      activestorage (= 7.1.1)
+      activesupport (= 7.1.1)
+      mail (>= 2.7.1)
+      net-imap
+      net-pop
+      net-smtp
+    actionmailer (7.1.1)
+      actionpack (= 7.1.1)
+      actionview (= 7.1.1)
+      activejob (= 7.1.1)
+      activesupport (= 7.1.1)
+      mail (~> 2.5, >= 2.5.4)
+      net-imap
+      net-pop
+      net-smtp
+      rails-dom-testing (~> 2.2)
+    actionpack (7.1.1)
+      actionview (= 7.1.1)
+      activesupport (= 7.1.1)
+      nokogiri (>= 1.8.5)
+      rack (>= 2.2.4)
+      rack-session (>= 1.0.1)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.2)
+      rails-html-sanitizer (~> 1.6)
+    actiontext (7.1.1)
+      actionpack (= 7.1.1)
+      activerecord (= 7.1.1)
+      activestorage (= 7.1.1)
+      activesupport (= 7.1.1)
+      globalid (>= 0.6.0)
+      nokogiri (>= 1.8.5)
+    actionview (7.1.1)
+      activesupport (= 7.1.1)
+      builder (~> 3.1)
+      erubi (~> 1.11)
+      rails-dom-testing (~> 2.2)
+      rails-html-sanitizer (~> 1.6)
+    activejob (7.1.1)
+      activesupport (= 7.1.1)
+      globalid (>= 0.3.6)
+    activemodel (7.1.1)
+      activesupport (= 7.1.1)
+    activerecord (7.1.1)
+      activemodel (= 7.1.1)
+      activesupport (= 7.1.1)
+      timeout (>= 0.4.0)
+    activestorage (7.1.1)
+      actionpack (= 7.1.1)
+      activejob (= 7.1.1)
+      activerecord (= 7.1.1)
+      activesupport (= 7.1.1)
+      marcel (~> 1.0)
+    activesupport (7.1.1)
+      base64
+      bigdecimal
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      connection_pool (>= 2.2.5)
+      drb
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      mutex_m
+      tzinfo (~> 2.0)
+    base64 (0.2.0)
+    bcrypt (3.1.19)
+    bigdecimal (3.1.4)
+    builder (3.2.4)
+    concurrent-ruby (1.2.2)
+    connection_pool (2.4.1)
+    crass (1.0.6)
+    date (3.3.4)
+    drb (2.2.0)
+      ruby2_keywords
+    erubi (1.12.0)
+    globalid (1.2.1)
+      activesupport (>= 6.1)
+    i18n (1.14.1)
+      concurrent-ruby (~> 1.0)
+    io-console (0.6.0)
+    irb (1.8.3)
+      rdoc
+      reline (>= 0.3.8)
+    loofah (2.21.4)
+      crass (~> 1.0.2)
+      nokogiri (>= 1.12.0)
+    mail (2.8.1)
+      mini_mime (>= 0.1.1)
+      net-imap
+      net-pop
+      net-smtp
+    marcel (1.0.2)
+    mini_mime (1.1.5)
+    minitest (5.20.0)
+    mutex_m (0.2.0)
+    net-imap (0.4.4)
+      date
+      net-protocol
+    net-pop (0.1.2)
+      net-protocol
+    net-protocol (0.2.2)
+      timeout
+    net-smtp (0.4.0)
+      net-protocol
+    nio4r (2.5.9)
+    nokogiri (1.15.4-arm64-darwin)
+      racc (~> 1.4)
+    psych (5.1.1.1)
+      stringio
+    puma (6.4.0)
+      nio4r (~> 2.0)
+    racc (1.7.3)
+    rack (3.0.8)
+    rack-session (2.0.0)
+      rack (>= 3.0.0)
+    rack-test (2.1.0)
+      rack (>= 1.3)
+    rackup (2.1.0)
+      rack (>= 3)
+      webrick (~> 1.8)
+    rails (7.1.1)
+      actioncable (= 7.1.1)
+      actionmailbox (= 7.1.1)
+      actionmailer (= 7.1.1)
+      actionpack (= 7.1.1)
+      actiontext (= 7.1.1)
+      actionview (= 7.1.1)
+      activejob (= 7.1.1)
+      activemodel (= 7.1.1)
+      activerecord (= 7.1.1)
+      activestorage (= 7.1.1)
+      activesupport (= 7.1.1)
+      bundler (>= 1.15.0)
+      railties (= 7.1.1)
+    rails-dom-testing (2.2.0)
+      activesupport (>= 5.0.0)
+      minitest
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.6.0)
+      loofah (~> 2.21)
+      nokogiri (~> 1.14)
+    railties (7.1.1)
+      actionpack (= 7.1.1)
+      activesupport (= 7.1.1)
+      irb
+      rackup (>= 1.0.0)
+      rake (>= 12.2)
+      thor (~> 1.0, >= 1.2.2)
+      zeitwerk (~> 2.6)
+    rake (13.1.0)
+    rdoc (6.6.0)
+      psych (>= 4.0.0)
+    reline (0.3.9)
+      io-console (~> 0.5)
+    ruby2_keywords (0.0.5)
+    sprockets (4.2.1)
+      concurrent-ruby (~> 1.0)
+      rack (>= 2.2.4, < 4)
+    sprockets-rails (3.4.2)
+      actionpack (>= 5.2)
+      activesupport (>= 5.2)
+      sprockets (>= 3.0.0)
+    sqlite3 (1.6.8-arm64-darwin)
+    stringio (3.0.8)
+    thor (1.3.0)
+    timeout (0.4.1)
+    tzinfo (2.0.6)
+      concurrent-ruby (~> 1.0)
+    webrick (1.8.1)
+    websocket-driver (0.7.6)
+      websocket-extensions (>= 0.1.0)
+    websocket-extensions (0.1.5)
+    zeitwerk (2.6.12)
+
+PLATFORMS
+  arm64-darwin-23
+
+DEPENDENCIES
+  action_auth!
+  puma
+  sprockets-rails
+  sqlite3
+
+BUNDLED WITH
+   2.4.21

Gemfile

@@ -5,21 +5,28 @@ This is a placeholder for the ActionAuth gem.  It is not yet ready for use.
 Add this line to your application's Gemfile:
 
 ```ruby
-gem "action_auth"
+bundle add action_auth
+bin/rails action_auth:install:migrations
 ```
+## Usage
 
-And then execute:
-```bash
-$ bundle
-```
+### Routes
 
-Or install it yourself as:
-```bash
-$ gem install action_auth
-```
+Within your application, you'll have access to these routes. They have been styled to be consistent with Devise.
+
+    Method	                    Verb	  Params	Description
+    user_sessions_path	        GET		          Device session management
+    user_session_path	          DELETE	[:id]	  Log Out
+    new_user_session_path	      GET		          Log in
+    new_user_registration_path	GET		          Sign Up
+
+### Helper Methods
+
+    Method	                    Description
+    current_user	              Returns the currently logged in user
+    user_signed_in?	            Returns true if the user is logged in
+    current_session	              Returns the current session
 
-## Contributing
-Contribution directions go here.
 
 ## License
 The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

Gemfile.lock

@@ -23,4 +23,5 @@ Gem::Specification.new do |spec|
   end
 
   spec.add_dependency "rails", "~> 7.1"
+  spec.add_dependency "bcrypt", "~> 3.1.0"
 end

MIT-LICENSE

@@ -0,0 +1,26 @@
+module ActionAuth
+  class PasswordsController < ApplicationController
+    before_action :set_user
+
+    def edit
+    end
+
+    def update
+      if @user.update(user_params)
+        redirect_to root_path, notice: "Your password has been changed"
+      else
+        render :edit, status: :unprocessable_entity
+      end
+    end
+
+    private
+
+    def set_user
+      @user = Current.user
+    end
+
+    def user_params
+      params.permit(:password, :password_confirmation, :password_challenge).with_defaults(password_challenge: "")
+    end
+  end
+end

README.md

@@ -0,0 +1,30 @@
+module ActionAuth
+  class RegistrationsController < ApplicationController
+    def new
+      @user = User.new
+    end
+
+    def create
+      @user = User.new(user_params)
+
+      if @user.save!
+        session_record = @user.action_auth_sessions.create!
+        cookies.signed.permanent[:session_token] = { value: session_record.id, httponly: true }
+
+        send_email_verification
+        redirect_to main_app.root_path, notice: "Welcome! You have signed up successfully"
+      else
+        render :new, status: :unprocessable_entity
+      end
+    end
+
+    private
+      def user_params
+        params.permit(:email, :password, :password_confirmation)
+      end
+
+      def send_email_verification
+        UserMailer.with(user: @user).email_verification.deliver_later
+      end
+  end
+end

Rakefile

@@ -0,0 +1,27 @@
+module ActionAuth
+  class SessionsController < ApplicationController
+    before_action :set_current_request_details
+    def index
+      @sessions = Current.user.action_auth_sessions.order(created_at: :desc)
+    end
+
+    def new
+    end
+
+    def create
+      if user = User.authenticate_by(email: params[:email], password: params[:password])
+        @session = user.action_auth_sessions.create
+        cookies.signed.permanent[:session_token] = { value: @session.id, httponly: true }
+        redirect_to main_app.root_path, notice: "Signed in successfully"
+      else
+        redirect_to sign_in_path(email_hint: params[:email]), alert: "That email or password is incorrect"
+      end
+    end
+
+    def destroy
+      session = Current.user.action_auth_sessions.find(params[:id])
+      session.destroy
+      redirect_to(main_app.root_path, notice: "That session has been logged out")
+    end
+  end
+end

action_auth.gemspec

@@ -0,0 +1,17 @@
+module ActionAuth
+  class UserMailer < ApplicationMailer
+    def password_reset
+      @user = params[:user]
+      @signed_id = @user.generate_token_for(:password_reset)
+
+      mail to: @user.email, subject: "Reset your password"
+    end
+
+    def email_verification
+      @user = params[:user]
+      @signed_id = @user.generate_token_for(:email_verification)
+
+      mail to: @user.email, subject: "Verify your email"
+    end
+  end
+end

app/assets/config/action_auth_manifest.js

@@ -0,0 +1,12 @@
+module ActionAuth
+  class Current < ActiveSupport::CurrentAttributes
+    attribute :session
+    attribute :user_agent, :ip_address
+
+    delegate :action_auth_user, to: :session, allow_nil: true
+
+    def user
+      action_auth_user
+    end
+  end
+end