heartcombo--devise/lib/devise/models/database_authenticatable.rb

# frozen_string_literal: true

require 'devise/strategies/database_authenticatable'

module Devise
  module Models
    # Authenticatable Module, responsible for hashing the password and
    # validating the authenticity of a user while signing in.
    #
    # == Options
    #
    # DatabaseAuthenticatable adds the following options to devise_for:
    #
    #   * +pepper+: a random string used to provide a more secure hash. Use
    #     `rails secret` to generate new keys.
    #
    #   * +stretches+: the cost given to bcrypt.
    #
    #   * +send_email_changed_notification+: notify original email when it changes.
    #
    #   * +send_password_change_notification+: notify email when password changes.
    #
    # == Examples
    #
    #    User.find(1).valid_password?('password123')         # returns true/false
    #
    module DatabaseAuthenticatable
      extend ActiveSupport::Concern

      included do
        after_update :send_email_changed_notification, if: :send_email_changed_notification?
        after_update :send_password_change_notification, if: :send_password_change_notification?

        attr_reader :password, :current_password
        attr_accessor :password_confirmation
      end

      def self.required_fields(klass)
        [:encrypted_password] + klass.authentication_keys
      end

      # Generates a hashed password based on the given value.
      # For legacy reasons, we use `encrypted_password` to store
      # the hashed password.
      def password=(new_password)
        @password = new_password
        self.encrypted_password = password_digest(@password) if @password.present?
      end

      # Verifies whether a password (ie from sign in) is the user password.
      def valid_password?(password)
        Devise::Encryptor.compare(self.class, encrypted_password, password)
      end

      # Set password and password confirmation to nil
      def clean_up_passwords
        self.password = self.password_confirmation = nil
      end

      # Update record attributes when :current_password matches, otherwise
      # returns error on :current_password.
      #
      # This method also rejects the password field if it is blank (allowing
      # users to change relevant information like the e-mail without changing
      # their password). In case the password field is rejected, the confirmation
      # is also rejected as long as it is also blank.
      def update_with_password(params, *options)
        current_password = params.delete(:current_password)

        if params[:password].blank?
          params.delete(:password)
          params.delete(:password_confirmation) if params[:password_confirmation].blank?
        end

        result = if valid_password?(current_password)
          update_attributes(params, *options)
        else
          self.assign_attributes(params, *options)
          self.valid?
          self.errors.add(:current_password, current_password.blank? ? :blank : :invalid)
          false
        end

        clean_up_passwords
        result
      end

      # Updates record attributes without asking for the current password.
      # Never allows a change to the current password. If you are using this
      # method, you should probably override this method to protect other
      # attributes you would not like to be updated without a password.
      #
      # Example:
      #
      #   def update_without_password(params, *options)
      #     params.delete(:email)
      #     super(params)
      #   end
      #
      def update_without_password(params, *options)
        params.delete(:password)
        params.delete(:password_confirmation)

        result = update_attributes(params, *options)
        clean_up_passwords
        result
      end

      # Destroy record when :current_password matches, otherwise returns
      # error on :current_password. It also automatically rejects
      # :current_password if it is blank.
      def destroy_with_password(current_password)
        result = if valid_password?(current_password)
          destroy
        else
          self.valid?
          self.errors.add(:current_password, current_password.blank? ? :blank : :invalid)
          false
        end

        result
      end

      # A callback initiated after successfully authenticating. This can be
      # used to insert your own logic that is only run after the user successfully
      # authenticates.
      #
      # Example:
      #
      #   def after_database_authentication
      #     self.update_attribute(:invite_code, nil)
      #   end
      #
      def after_database_authentication
      end

      # A reliable way to expose the salt regardless of the implementation.
      def authenticatable_salt
        encrypted_password[0,29] if encrypted_password
      end

      if Devise.activerecord51?
        # Send notification to user when email changes.
        def send_email_changed_notification
          send_devise_notification(:email_changed, to: email_before_last_save)
        end
      else
        # Send notification to user when email changes.
        def send_email_changed_notification
          send_devise_notification(:email_changed, to: email_was)
        end
      end

      # Send notification to user when password changes.
      def send_password_change_notification
        send_devise_notification(:password_change)
      end

    protected

      # Hashes the password using bcrypt. Custom hash functions should override
      # this method to apply their own algorithm.
      #
      # See https://github.com/plataformatec/devise-encryptable for examples
      # of other hashing engines.
      def password_digest(password)
        Devise::Encryptor.digest(self.class, password)
      end

      if Devise.activerecord51?
        def send_email_changed_notification?
          self.class.send_email_changed_notification && saved_change_to_email?
        end
      else
        def send_email_changed_notification?
          self.class.send_email_changed_notification && email_changed?
        end
      end

      if Devise.activerecord51?
        def send_password_change_notification?
          self.class.send_password_change_notification && saved_change_to_encrypted_password?
        end
      else
        def send_password_change_notification?
          self.class.send_password_change_notification && encrypted_password_changed?
        end
      end

      module ClassMethods
        Devise::Models.config(self, :pepper, :stretches, :send_email_changed_notification, :send_password_change_notification)

        # We assume this method already gets the sanitized values from the
        # DatabaseAuthenticatable strategy. If you are using this method on
        # your own, be sure to sanitize the conditions hash to only include
        # the proper fields.
        def find_for_database_authentication(conditions)
          find_for_authentication(conditions)
        end
      end
    end
  end
end
Add the frozen_string_literal pragma comment to all Ruby files. (#4725) 2017-12-21 17:36:29 +00:00			`# frozen_string_literal: true`

Initial work on making the authentication stack more flexible. 2010-03-29 14:13:19 +00:00			`require 'devise/strategies/database_authenticatable'`
Kick tests back to life. 2009-10-12 11:37:28 +00:00
Authenticable module: generating salt and encrypting password 2009-09-17 12:24:33 +00:00			`module Devise`
Moving modules inside respective Models module. 2009-10-09 11:30:25 +00:00			`module Models`
Change encryption for hashing in the documentation. Throughout the documentations, we are using 'encrypt' incorrectly. Encrypt means that someone will eventually decrypt the message, which is obviously not the case for Devise. I'm changing the docs to use 'hashing' instead. However, I left the database field as `encrypted_password` for now. I'll update the db field in an upcoming PR. 2016-02-10 19:00:49 +00:00			`# Authenticatable Module, responsible for hashing the password and`
			`# validating the authenticity of a user while signing in.`
Adding some documentation. 2009-10-09 12:27:44 +00:00			`#`
Add OAuth2 documentation. 2010-07-15 11:01:31 +00:00			`# == Options`
Define Devise.model_config. 2009-10-20 13:55:57 +00:00			`#`
Fix typo: authenticatable 2015-09-30 22:31:55 +00:00			`# DatabaseAuthenticatable adds the following options to devise_for:`
Define Devise.model_config. 2009-10-20 13:55:57 +00:00			`#`
Doc: DatabaseAuthenticatable still uses pepper option 2011-08-05 10:07:54 +00:00			`# * +pepper+: a random string used to provide a more secure hash. Use`
Change `rake secret` to `rails secret` in comments 2017-11-02 15:37:51 +00:00			# `rails secret` to generate new keys.
Doc: DatabaseAuthenticatable still uses pepper option 2011-08-05 10:07:54 +00:00			`#`
Extract encryptors into their own module for better bcrypt support. 2010-09-25 14:08:46 +00:00			`# * +stretches+: the cost given to bcrypt.`
Add authentication_keys. 2009-11-15 05:31:13 +00:00			`#`
Change email_change => email_changed notification This better indicates what the setting is for, and when it's supposed to be triggered. We might eventually deprecate the existing password_change on in favor of password_changed. 2017-03-10 11:56:33 +00:00			`# * +send_email_changed_notification+: notify original email when it changes.`
Add some docs to the send email/password notification settings [ci skip] 2017-03-06 20:33:34 +00:00			`#`
			`# * +send_password_change_notification+: notify email when password changes.`
			`#`
Add OAuth2 documentation. 2010-07-15 11:01:31 +00:00			`# == Examples`
Adding some documentation. 2009-10-09 12:27:44 +00:00			`#`
			`# User.find(1).valid_password?('password123') # returns true/false`
Define Devise.model_config. 2009-10-20 13:55:57 +00:00			`#`
Initial work on making the authentication stack more flexible. 2010-03-29 14:13:19 +00:00			`module DatabaseAuthenticatable`
:activatable is included by default in your models. If you are building a strategy for devise, you now need to call validate(resource), since Devise has now a default API to validate resources before and after signing them in. You can still use other Warden::Strategies with Devise, but they won't work with a few modules like unlockable (they never did, but now we have a single point to make it work). 2010-04-06 14:34:22 +00:00			`extend ActiveSupport::Concern`
Adding confirmable module, generating confirmation code and confirming a user account. 2009-09-17 14:06:46 +00:00
Use ActiveSupport::Concern. 2010-02-17 11:35:38 +00:00			`included do`
Change email_change => email_changed notification This better indicates what the setting is for, and when it's supposed to be triggered. We might eventually deprecate the existing password_change on in favor of password_changed. 2017-03-10 11:56:33 +00:00			`after_update :send_email_changed_notification, if: :send_email_changed_notification?`
functionality 2015-06-19 19:22:37 +00:00			`after_update :send_password_change_notification, if: :send_password_change_notification?`

Use ActiveSupport::Concern. 2010-02-17 11:35:38 +00:00			`attr_reader :password, :current_password`
			`attr_accessor :password_confirmation`
Authenticable module: generating salt and encrypting password 2009-09-17 12:24:33 +00:00			`end`

Some refactor 2012-02-19 00:50:59 +00:00			`def self.required_fields(klass)`
			`[:encrypted_password] + klass.authentication_keys`
Added check_model! method 2012-02-17 16:37:44 +00:00			`end`

Change encryption for hashing in the documentation. Throughout the documentations, we are using 'encrypt' incorrectly. Encrypt means that someone will eventually decrypt the message, which is obviously not the case for Devise. I'm changing the docs to use 'hashing' instead. However, I left the database field as `encrypted_password` for now. I'll update the db field in an upcoming PR. 2016-02-10 19:00:49 +00:00			`# Generates a hashed password based on the given value.`
			# For legacy reasons, we use `encrypted_password` to store
			`# the hashed password.`
Change how salt and encrypt works. 2009-10-15 18:52:25 +00:00			`def password=(new_password)`
			`@password = new_password`
Bring `password_digest` back. This method is part of the protected API and is used by custom encryption engines (like `devise-encryptable`) to hook the custom encryption logic in the models. Fixes #2730 2013-11-08 18:22:31 +00:00			`self.encrypted_password = password_digest(@password) if @password.present?`
Change how salt and encrypt works. 2009-10-15 18:52:25 +00:00			`end`

Fix small typo in devise_authenticatable.rb 2014-11-05 21:51:29 +00:00			`# Verifies whether a password (ie from sign in) is the user password.`
Ensure bcrypt also uses pepper for backward compatibility. 2010-09-28 15:45:06 +00:00			`def valid_password?(password)`
Split out BCrypt hashing to make it reusable This logic is generic and reusable -- hash a secret; and take an unhashed secret and compare it to a hashed secret. This breaks this out to make it reusable in other places. Specifically, we use this in our own token auth at Bonobos that we plan to split out as a Devise extension. This will make that possible without copy & pasting this code. 2014-03-25 13:44:40 +00:00			`Devise::Encryptor.compare(self.class, encrypted_password, password)`
Initial support for authorization using "authentication token" (a.k.a. "single access token") - new module. Corresponding changes to Devise core to hook events like "after_changed_password" (only one added now - only one that makes much sense for latest module) easily. Unit and integration tests included. NOTE: One failing test for hooking Warden::Manager.after_authentication - gets ignored for some reason. Signed-off-by: José Valim <jose.valim@gmail.com> 2010-01-24 02:38:52 +00:00			`end`

More changes in update_with_password. 2010-02-08 22:14:03 +00:00			`# Set password and password confirmation to nil`
			`def clean_up_passwords`
DatabaseAuthenticatable#clean_up_passwords should set accessors to nil, not empty string. 2011-09-02 17:14:15 +00:00			`self.password = self.password_confirmation = nil`
More changes in update_with_password. 2010-02-08 22:14:03 +00:00			`end`

Improve docs for update_with_password Closes #2942 2014-03-24 20:49:48 +00:00			`# Update record attributes when :current_password matches, otherwise`
			`# returns error on :current_password.`
			`#`
			`# This method also rejects the password field if it is blank (allowing`
			`# users to change relevant information like the e-mail without changing`
			`# their password). In case the password field is rejected, the confirmation`
			`# is also rejected as long as it is also blank.`
Added support for rails 3.1 new mass assignment conventions 2011-11-24 08:51:03 +00:00			`def update_with_password(params, *options)`
Got tests running on Rails 3: 369 tests, 486 assertions, 45 failures, 124 errors. 2010-02-16 13:31:49 +00:00			`current_password = params.delete(:current_password)`
More work on edit. 2010-02-08 19:38:47 +00:00
Ensure password confirmation is always required, closes #228 2010-04-25 07:38:56 +00:00			`if params[:password].blank?`
			`params.delete(:password)`
			`params.delete(:password_confirmation) if params[:password_confirmation].blank?`
			`end`
More changes in update_with_password. 2010-02-08 22:14:03 +00:00
Avoid mass assignment error messages with current password. 2010-02-15 13:15:24 +00:00			`result = if valid_password?(current_password)`
Fix up previous commit and update CHANGELOG. 2011-11-24 09:24:06 +00:00			`update_attributes(params, *options)`
Adding update_with_password to authenticable. Updates the record only when the :old_password is valid. 2009-12-15 00:55:55 +00:00			`else`
Add more docs, remove 3.0 related code, update CHANGELOG 2012-06-08 17:15:30 +00:00			`self.assign_attributes(params, *options)`
Run validations even when password change will fail, to show a complete list of errors 2011-06-21 21:23:07 +00:00			`self.valid?`
			`self.errors.add(:current_password, current_password.blank? ? :blank : :invalid)`
Adding update_with_password to authenticable. Updates the record only when the :old_password is valid. 2009-12-15 00:55:55 +00:00			`false`
			`end`
More changes in update_with_password. 2010-02-08 22:14:03 +00:00
Ensure customs pass through sessions_controller. 2010-04-01 12:00:21 +00:00			`clean_up_passwords`
More changes in update_with_password. 2010-02-08 22:14:03 +00:00			`result`
Adding update_with_password to authenticable. Updates the record only when the :old_password is valid. 2009-12-15 00:55:55 +00:00			`end`

Update CHANGELOG. 2011-06-22 16:01:49 +00:00			`# Updates record attributes without asking for the current password.`
minor documentation grammar update 2012-11-29 11:45:15 +00:00			`# Never allows a change to the current password. If you are using this`
Improve docs for update_without_password. 2011-10-25 16:37:53 +00:00			`# method, you should probably override this method to protect other`
			`# attributes you would not like to be updated without a password.`
			`#`
			`# Example:`
			`#`
Update code example for #update_without_password 2013-06-25 09:27:35 +00:00			`# def update_without_password(params, *options)`
Improve docs for update_without_password. 2011-10-25 16:37:53 +00:00			`# params.delete(:email)`
			`# super(params)`
			`# end`
			`#`
Added support for rails 3.1 new mass assignment conventions 2011-11-24 08:51:03 +00:00			`def update_without_password(params, *options)`
added update_without_password method 2011-05-05 07:24:21 +00:00			`params.delete(:password)`
			`params.delete(:password_confirmation)`

Fix up previous commit and update CHANGELOG. 2011-11-24 09:24:06 +00:00			`result = update_attributes(params, *options)`
added update_without_password method 2011-05-05 07:24:21 +00:00			`clean_up_passwords`
			`result`
			`end`
Fix up previous commit and update CHANGELOG. 2011-11-24 09:24:06 +00:00
Add destroy_with_password method 2013-04-29 13:06:13 +00:00			`# Destroy record when :current_password matches, otherwise returns`
Add documentation to the 'after_database_authentication' method. 2013-10-23 21:15:53 +00:00			`# error on :current_password. It also automatically rejects`
Add destroy_with_password method 2013-04-29 13:06:13 +00:00			`# :current_password if it is blank.`
			`def destroy_with_password(current_password)`
			`result = if valid_password?(current_password)`
			`destroy`
			`else`
			`self.valid?`
			`self.errors.add(:current_password, current_password.blank? ? :blank : :invalid)`
			`false`
			`end`

			`result`
			`end`

Add documentation to the 'after_database_authentication' method. 2013-10-23 21:15:53 +00:00			`# A callback initiated after successfully authenticating. This can be`
			`# used to insert your own logic that is only run after the user successfully`
			`# authenticates.`
			`#`
			`# Example:`
			`#`
			`# def after_database_authentication`
			`# self.update_attribute(:invite_code, nil)`
			`# end`
			`#`
Small changes to token_authenticatable. 2010-04-06 11:26:56 +00:00			`def after_database_authentication`
			`end`

Extract encryptors into their own module for better bcrypt support. 2010-09-25 14:08:46 +00:00			`# A reliable way to expose the salt regardless of the implementation.`
			`def authenticatable_salt`
Move valid_password? up to database authenticatable. 2012-03-10 10:10:57 +00:00			`encrypted_password[0,29] if encrypted_password`
Extract encryptors into their own module for better bcrypt support. 2010-09-25 14:08:46 +00:00			`end`

Add `Devise.activerecord51?` Active Record changed it's public API, so we should check against its version instead of Rails as it is possible to use Rails 5.1 with Mongoid, which still has the older Dirty API. However, this patch does not fixes a scenario where an app has both Active Record and Mongoid loaded. It should be fixed by either normalizing the Mongoid/ActiveRecord API or replacing the conditional method definitions with a shim layer that abstracts this away. 2017-05-10 20:09:38 +00:00			`if Devise.activerecord51?`
Remove deprecation in the email_was method 2017-04-28 22:33:55 +00:00			`# Send notification to user when email changes.`
			`def send_email_changed_notification`
			`send_devise_notification(:email_changed, to: email_before_last_save)`
			`end`
			`else`
			`# Send notification to user when email changes.`
			`def send_email_changed_notification`
			`send_devise_notification(:email_changed, to: email_was)`
			`end`
Notify original user email when the email changes This adds a new setting `send_email_change_notification` which will send an email to the original user email when their email is updated to a new one. It doesn't take into account the reconfirmable setting yet, it will be added next, so that if confirmable is included and reconfirmable is being used, the email will be triggered when the email change is requested, not when confirmed (e.g when we store the email in `unconfirmed_email`, not when it's later copied to `email` when that is confirmed). 2017-03-06 19:34:38 +00:00			`end`

			`# Send notification to user when password changes.`
functionality 2015-06-19 19:22:37 +00:00			`def send_password_change_notification`
			`send_devise_notification(:password_change)`
			`end`

Allow several authentications to share a common path. 2010-03-29 21:44:47 +00:00			`protected`
Added Devise.all to freeze your app strategies and moved friendly_token to Devise module. 2009-11-18 11:26:47 +00:00
Change encryption for hashing in the documentation. Throughout the documentations, we are using 'encrypt' incorrectly. Encrypt means that someone will eventually decrypt the message, which is obviously not the case for Devise. I'm changing the docs to use 'hashing' instead. However, I left the database field as `encrypted_password` for now. I'll update the db field in an upcoming PR. 2016-02-10 19:00:49 +00:00			`# Hashes the password using bcrypt. Custom hash functions should override`
Bring `password_digest` back. This method is part of the protected API and is used by custom encryption engines (like `devise-encryptable`) to hook the custom encryption logic in the models. Fixes #2730 2013-11-08 18:22:31 +00:00			`# this method to apply their own algorithm.`
			`#`
			`# See https://github.com/plataformatec/devise-encryptable for examples`
Change encryption for hashing in the documentation. Throughout the documentations, we are using 'encrypt' incorrectly. Encrypt means that someone will eventually decrypt the message, which is obviously not the case for Devise. I'm changing the docs to use 'hashing' instead. However, I left the database field as `encrypted_password` for now. I'll update the db field in an upcoming PR. 2016-02-10 19:00:49 +00:00			`# of other hashing engines.`
Bring `password_digest` back. This method is part of the protected API and is used by custom encryption engines (like `devise-encryptable`) to hook the custom encryption logic in the models. Fixes #2730 2013-11-08 18:22:31 +00:00			`def password_digest(password)`
Split out BCrypt hashing to make it reusable This logic is generic and reusable -- hash a secret; and take an unhashed secret and compare it to a hashed secret. This breaks this out to make it reusable in other places. Specifically, we use this in our own token auth at Bonobos that we plan to split out as a Devise extension. This will make that possible without copy & pasting this code. 2014-03-25 13:44:40 +00:00			`Devise::Encryptor.digest(self.class, password)`
Bring `password_digest` back. This method is part of the protected API and is used by custom encryption engines (like `devise-encryptable`) to hook the custom encryption logic in the models. Fixes #2730 2013-11-08 18:22:31 +00:00			`end`

Add `Devise.activerecord51?` Active Record changed it's public API, so we should check against its version instead of Rails as it is possible to use Rails 5.1 with Mongoid, which still has the older Dirty API. However, this patch does not fixes a scenario where an app has both Active Record and Mongoid loaded. It should be fixed by either normalizing the Mongoid/ActiveRecord API or replacing the conditional method definitions with a shim layer that abstracts this away. 2017-05-10 20:09:38 +00:00			`if Devise.activerecord51?`
Remove deprecation on _changed? methods 2017-04-28 23:05:39 +00:00			`def send_email_changed_notification?`
			`self.class.send_email_changed_notification && saved_change_to_email?`
			`end`
			`else`
			`def send_email_changed_notification?`
			`self.class.send_email_changed_notification && email_changed?`
			`end`
Notify original user email when the email changes This adds a new setting `send_email_change_notification` which will send an email to the original user email when their email is updated to a new one. It doesn't take into account the reconfirmable setting yet, it will be added next, so that if confirmable is included and reconfirmable is being used, the email will be triggered when the email change is requested, not when confirmed (e.g when we store the email in `unconfirmed_email`, not when it's later copied to `email` when that is confirmed). 2017-03-06 19:34:38 +00:00			`end`

Add `Devise.activerecord51?` Active Record changed it's public API, so we should check against its version instead of Rails as it is possible to use Rails 5.1 with Mongoid, which still has the older Dirty API. However, this patch does not fixes a scenario where an app has both Active Record and Mongoid loaded. It should be fixed by either normalizing the Mongoid/ActiveRecord API or replacing the conditional method definitions with a shim layer that abstracts this away. 2017-05-10 20:09:38 +00:00			`if Devise.activerecord51?`
Remove deprecation on _changed? methods 2017-04-28 23:05:39 +00:00			`def send_password_change_notification?`
			`self.class.send_password_change_notification && saved_change_to_encrypted_password?`
			`end`
			`else`
			`def send_password_change_notification?`
			`self.class.send_password_change_notification && encrypted_password_changed?`
			`end`
functionality 2015-06-19 19:22:37 +00:00			`end`

Moving modules inside respective Models module. 2009-10-09 11:30:25 +00:00			`module ClassMethods`
Change email_change => email_changed notification This better indicates what the setting is for, and when it's supposed to be triggered. We might eventually deprecate the existing password_change on in favor of password_changed. 2017-03-10 11:56:33 +00:00			`Devise::Models.config(self, :pepper, :stretches, :send_email_changed_notification, :send_password_change_notification)`
Also pass stretches to salt generation. 2010-07-12 04:59:49 +00:00
Improve docs on finders after taking a look at the wiki. 2010-07-05 17:11:37 +00:00			`# We assume this method already gets the sanitized values from the`
			`# DatabaseAuthenticatable strategy. If you are using this method on`
			`# your own, be sure to sanitize the conditions hash to only include`
			`# the proper fields.`
Small changes to token_authenticatable. 2010-04-06 11:26:56 +00:00			`def find_for_database_authentication(conditions)`
			`find_for_authentication(conditions)`
Allow overwriting find for authentication method. 2009-11-19 15:53:57 +00:00			`end`
Ensure all encryptor returns a symbol. Get the class using encryptor_class. 2009-11-23 00:32:54 +00:00			`end`
Creating authenticate method for user. 2009-09-17 12:46:40 +00:00			`end`
Authenticable module: generating salt and encrypting password 2009-09-17 12:24:33 +00:00			`end`
			`end`