rails--rails/activemodel/lib/active_model/secure_password.rb

module ActiveModel
  module SecurePassword
    extend ActiveSupport::Concern

    class << self; attr_accessor :min_cost; end
    self.min_cost = false

    module ClassMethods
      # Adds methods to set and authenticate against a BCrypt password.
      # This mechanism requires you to have a password_digest attribute.
      #
      # Validations for presence of password on create, confirmation of password
      # (using a +password_confirmation+ attribute) are automatically added. If
      # you wish to turn off validations, pass <tt>validations: false</tt> as an
      # argument. You can add more validations by hand if need be.
      #
      # If you don't need the confirmation validation, just don't set any
      # value to the password_confirmation attribute and the the validation
      # will not be triggered.
      #
      # You need to add bcrypt-ruby (~> 3.0.0) to Gemfile to use #has_secure_password:
      #
      #   gem 'bcrypt-ruby', '~> 3.0.0'
      #
      # Example using Active Record (which automatically includes ActiveModel::SecurePassword):
      #
      #   # Schema: User(name:string, password_digest:string)
      #   class User < ActiveRecord::Base
      #     has_secure_password
      #   end
      #
      #   user = User.new(name: 'david', password: '', password_confirmation: 'nomatch')
      #   user.save                                                       # => false, password required
      #   user.password = 'mUc3m00RsqyRe'
      #   user.save                                                       # => false, confirmation doesn't match
      #   user.password_confirmation = 'mUc3m00RsqyRe'
      #   user.save                                                       # => true
      #   user.authenticate('notright')                                   # => false
      #   user.authenticate('mUc3m00RsqyRe')                              # => user
      #   User.find_by(name: 'david').try(:authenticate, 'notright')      # => false
      #   User.find_by(name: 'david').try(:authenticate, 'mUc3m00RsqyRe') # => user
      def has_secure_password(options = {})
        # Load bcrypt-ruby only when has_secure_password is used.
        # This is to avoid ActiveModel (and by extension the entire framework)
        # being dependent on a binary library.
        begin
          gem 'bcrypt-ruby', '~> 3.0.0'
          require 'bcrypt'
        rescue LoadError
          $stderr.puts "You don't have bcrypt-ruby installed in your application. Please add it to your Gemfile and run bundle install"
          raise
        end

        attr_reader :password

        include InstanceMethodsOnActivation

        if options.fetch(:validations, true)
          validates_confirmation_of :password, if: lambda { |m| m.password.present? }
          validates_presence_of     :password, on: :create
          validates_presence_of     :password_confirmation, if: lambda { |m| m.password.present? }

          before_create { raise "Password digest missing on new record" if password_digest.blank? }
        end

        if respond_to?(:attributes_protected_by_default)
          def self.attributes_protected_by_default #:nodoc:
            super + ['password_digest']
          end
        end
      end
    end

    module InstanceMethodsOnActivation
      # Returns +self+ if the password is correct, otherwise +false+.
      #
      #   class User < ActiveRecord::Base
      #     has_secure_password validations: false
      #   end
      #
      #   user = User.new(name: 'david', password: 'mUc3m00RsqyRe')
      #   user.save
      #   user.authenticate('notright')      # => false
      #   user.authenticate('mUc3m00RsqyRe') # => user
      def authenticate(unencrypted_password)
        BCrypt::Password.new(password_digest) == unencrypted_password && self
      end

      # Encrypts the password into the +password_digest+ attribute, only if the
      # new password is not blank.
      #
      #   class User < ActiveRecord::Base
      #     has_secure_password validations: false
      #   end
      #
      #   user = User.new
      #   user.password = nil
      #   user.password_digest # => nil
      #   user.password = 'mUc3m00RsqyRe'
      #   user.password_digest # => "$2a$10$4LEA7r4YmNHtvlAvHhsYAeZmk/xeUVtMTYqwIvYY76EW5GUqDiP4."
      def password=(unencrypted_password)
        unless unencrypted_password.blank?
          @password = unencrypted_password
          cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST : BCrypt::Engine::DEFAULT_COST
          self.password_digest = BCrypt::Password.create(unencrypted_password, cost: cost)
        end
      end

      def password_confirmation=(unencrypted_password)
        @password_confirmation = unencrypted_password
      end
    end
  end
end
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`module ActiveModel`
			`module SecurePassword`
			`extend ActiveSupport::Concern`

Use BCrypt's MIN_COST in the test environment for speedier tests 2012-11-14 10:42:54 -05:00			`class << self; attr_accessor :min_cost; end`
Initialize #min_cost to avoid warning in Ruby 2.0 2012-11-17 12:21:47 -05:00			`self.min_cost = false`
Use BCrypt's MIN_COST in the test environment for speedier tests 2012-11-14 10:42:54 -05:00
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`module ClassMethods`
BCrypt does its own salting, lovely! 2010-12-18 22:09:07 -05:00			`# Adds methods to set and authenticate against a BCrypt password.`
			`# This mechanism requires you to have a password_digest attribute.`
Added ability to specify which passwords you want as weak passwords 2010-12-19 04:39:54 -05:00			`#`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# Validations for presence of password on create, confirmation of password`
			`# (using a +password_confirmation+ attribute) are automatically added. If`
			`# you wish to turn off validations, pass <tt>validations: false</tt> as an`
			`# argument. You can add more validations by hand if need be.`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`#`
Initialize #min_cost to avoid warning in Ruby 2.0 2012-11-17 12:21:47 -05:00			`# If you don't need the confirmation validation, just don't set any`
			`# value to the password_confirmation attribute and the the validation`
add details on password confirmation used with has_secure_password 2012-11-13 18:31:46 -05:00			`# will not be triggered.`
			`#`
update ActiveModel::Validator docs [ci skip] 2012-07-29 14:35:33 -04:00			`# You need to add bcrypt-ruby (~> 3.0.0) to Gemfile to use #has_secure_password:`
Add comments about bcrypt-ruby gem to SecurePassword 2011-09-03 01:27:07 -04:00			`#`
			`# gem 'bcrypt-ruby', '~> 3.0.0'`
			`#`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`# Example using Active Record (which automatically includes ActiveModel::SecurePassword):`
			`#`
BCrypt does its own salting, lovely! 2010-12-18 22:09:07 -05:00			`# # Schema: User(name:string, password_digest:string)`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`# class User < ActiveRecord::Base`
			`# has_secure_password`
			`# end`
			`#`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# user = User.new(name: 'david', password: '', password_confirmation: 'nomatch')`
Prefer find_by over dynamic finders in rdoc 2013-04-02 15:09:15 -04:00			`# user.save # => false, password required`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# user.password = 'mUc3m00RsqyRe'`
Prefer find_by over dynamic finders in rdoc 2013-04-02 15:09:15 -04:00			`# user.save # => false, confirmation doesn't match`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# user.password_confirmation = 'mUc3m00RsqyRe'`
Prefer find_by over dynamic finders in rdoc 2013-04-02 15:09:15 -04:00			`# user.save # => true`
			`# user.authenticate('notright') # => false`
			`# user.authenticate('mUc3m00RsqyRe') # => user`
			`# User.find_by(name: 'david').try(:authenticate, 'notright') # => false`
			`# User.find_by(name: 'david').try(:authenticate, 'mUc3m00RsqyRe') # => user`
has_secure_password shouldn't validate password_digest. It should also take options to turn validations off. 2012-05-08 18:54:25 -04:00			`def has_secure_password(options = {})`
fix a typo and slightly reword has_secure_password comment 2011-10-17 09:44:29 -04:00			`# Load bcrypt-ruby only when has_secure_password is used.`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# This is to avoid ActiveModel (and by extension the entire framework)`
			`# being dependent on a binary library.`
Change Standard error when is required bcrypt-ruby and fails 2013-03-21 23:51:08 -04:00			`begin`
			`gem 'bcrypt-ruby', '~> 3.0.0'`
			`require 'bcrypt'`
Remove exception variable from rescue block Just raising from the rescue block will re-raise the exception, so the variable is not necessary. 2013-03-22 13:00:06 -04:00			`rescue LoadError`
Change Standard error when is required bcrypt-ruby and fails 2013-03-21 23:51:08 -04:00			`$stderr.puts "You don't have bcrypt-ruby installed in your application. Please add it to your Gemfile and run bundle install"`
Remove exception variable from rescue block Just raising from the rescue block will re-raise the exception, so the variable is not necessary. 2013-03-22 13:00:06 -04:00			`raise`
Change Standard error when is required bcrypt-ruby and fails 2013-03-21 23:51:08 -04:00			`end`
Remove hard dependency on bcrypt. 2011-09-02 00:54:17 -04:00
Remove superfluous whitespace from ActiveModel::SecurePassword Only one space is needed, yo! 2011-05-22 07:02:47 -04:00			`attr_reader :password`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00
`has_secure_password` is not invalid when assigning empty Strings. Closes #9535. With 692b3b6 the `password=` setter does no longer set blank passwords. This triggered validation errors when assigning empty Strings to `password` and `password_confirmation`. This patch only sets the confirmation if it is not `blank?`. 2013-03-04 12:56:05 -05:00			`include InstanceMethodsOnActivation`

has_secure_password shouldn't validate password_digest. It should also take options to turn validations off. 2012-05-08 18:54:25 -04:00			`if options.fetch(:validations, true)`
Fix regression in has_secure_password. If the confirmation was blank, but the password wasn't, it would still save. 2013-05-20 15:13:21 -04:00			`validates_confirmation_of :password, if: lambda { \|m\| m.password.present? }`
Convert ActiveModel to 1.9 hash syntax. I also attempted to fix other styleguide violations such as { a: :b } over {a: :b} and foo(b: 'bar') over foo( b: 'bar' ). 2013-05-01 20:10:06 -04:00			`validates_presence_of :password, on: :create`
Fix regression in has_secure_password. If the confirmation was blank, but the password wasn't, it would still save. 2013-05-20 15:13:21 -04:00			`validates_presence_of :password_confirmation, if: lambda { \|m\| m.password.present? }`
remove non-breaking spaces [ci skip] 2012-10-18 02:22:55 -04:00
has_secure_password should not raise a 'digest missing' error if the calling class has specified for validations to be skipped. 2012-07-31 16:16:21 -04:00			`before_create { raise "Password digest missing on new record" if password_digest.blank? }`
has_secure_password shouldn't validate password_digest. It should also take options to turn validations off. 2012-05-08 18:54:25 -04:00			`end`
Declaring the attr_accessor for password_confirmation is not necessary as the confirmation validation already adds that attr_accessor 2011-04-11 00:18:12 -04:00
Override attributes_protected_by_default when has_secure_password is called. attr_protected should not be called, because it nullifies the mass assignment protection that has been set by attr_accessible. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> 2011-01-25 21:35:02 -05:00			`if respond_to?(:attributes_protected_by_default)`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`def self.attributes_protected_by_default #:nodoc:`
Override attributes_protected_by_default when has_secure_password is called. attr_protected should not be called, because it nullifies the mass assignment protection that has been set by attr_accessible. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> 2011-01-25 21:35:02 -05:00			`super + ['password_digest']`
			`end`
			`end`
Added ability to specify which passwords you want as weak passwords 2010-12-19 04:39:54 -05:00			`end`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`end`

Instance methods shouldnt be added until you actually call has_secure_password 2010-12-29 13:18:14 -05:00			`module InstanceMethodsOnActivation`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# Returns +self+ if the password is correct, otherwise +false+.`
			`#`
			`# class User < ActiveRecord::Base`
			`# has_secure_password validations: false`
			`# end`
			`#`
			`# user = User.new(name: 'david', password: 'mUc3m00RsqyRe')`
			`# user.save`
			`# user.authenticate('notright') # => false`
remove non-breaking spaces [ci skip] 2012-10-18 02:22:55 -04:00			`# user.authenticate('mUc3m00RsqyRe') # => user`
Instance methods shouldnt be added until you actually call has_secure_password 2010-12-29 13:18:14 -05:00			`def authenticate(unencrypted_password)`
Refactor SecurePassword#authenticate 2012-04-24 13:03:59 -04:00			`BCrypt::Password.new(password_digest) == unencrypted_password && self`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`end`

update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`# Encrypts the password into the +password_digest+ attribute, only if the`
Correct documentation of SecurePassword 2012-04-24 13:08:57 -04:00			`# new password is not blank.`
update ActiveModel::SecurePassword docs [ci skip] 2012-07-29 13:04:43 -04:00			`#`
			`# class User < ActiveRecord::Base`
			`# has_secure_password validations: false`
			`# end`
			`#`
			`# user = User.new`
			`# user.password = nil`
			`# user.password_digest # => nil`
			`# user.password = 'mUc3m00RsqyRe'`
remove non-breaking spaces [ci skip] 2012-10-18 02:22:55 -04:00			`# user.password_digest # => "$2a$10$4LEA7r4YmNHtvlAvHhsYAeZmk/xeUVtMTYqwIvYY76EW5GUqDiP4."`
Instance methods shouldnt be added until you actually call has_secure_password 2010-12-29 13:18:14 -05:00			`def password=(unencrypted_password)`
bcrypt will encrypt anything, so validate_presence_of would not catch nil / blank passwords. Thank you to Aleksander Kamil Modzelewski for reporting this 2011-04-14 17:54:25 -04:00			`unless unencrypted_password.blank?`
Fix secure_password setter 2012-04-24 13:16:01 -04:00			`@password = unencrypted_password`
Use BCrypt's MIN_COST in the test environment for speedier tests 2012-11-14 10:42:54 -05:00			`cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST : BCrypt::Engine::DEFAULT_COST`
			`self.password_digest = BCrypt::Password.create(unencrypted_password, cost: cost)`
bcrypt will encrypt anything, so validate_presence_of would not catch nil / blank passwords. Thank you to Aleksander Kamil Modzelewski for reporting this 2011-04-14 17:54:25 -04:00			`end`
Instance methods shouldnt be added until you actually call has_secure_password 2010-12-29 13:18:14 -05:00			`end`
`has_secure_password` is not invalid when assigning empty Strings. Closes #9535. With 692b3b6 the `password=` setter does no longer set blank passwords. This triggered validation errors when assigning empty Strings to `password` and `password_confirmation`. This patch only sets the confirmation if it is not `blank?`. 2013-03-04 12:56:05 -05:00
			`def password_confirmation=(unencrypted_password)`
Fix regression in has_secure_password. If the confirmation was blank, but the password wasn't, it would still save. 2013-05-20 15:13:21 -04:00			`@password_confirmation = unencrypted_password`
`has_secure_password` is not invalid when assigning empty Strings. Closes #9535. With 692b3b6 the `password=` setter does no longer set blank passwords. This triggered validation errors when assigning empty Strings to `password` and `password_confirmation`. This patch only sets the confirmation if it is not `blank?`. 2013-03-04 12:56:05 -05:00			`end`
Add missing require and remove extra module. 2010-12-19 03:30:46 -05:00			`end`
Added ActiveRecord::Base#has_secure_password (via ActiveModel::SecurePassword) to encapsulate dead-simple password usage with SHA2 encryption and salting 2010-12-18 16:38:05 -05:00			`end`
Remove weak_passwords list and the length/strong password validator, leave that up to the programmer 2010-12-19 11:58:14 -05:00			`end`