rails_apps_composer: set up database

.env.example

@@ -0,0 +1,13 @@
+# Add account credentials and API keys here.
+# This file should be listed in .gitignore to keep your settings secret!
+# Each entry sets a local environment variable.
+# For example, setting:
+# GMAIL_USERNAME=Your_Gmail_Username
+# makes 'Your_Gmail_Username' available as ENV["GMAIL_USERNAME"]
+
+GMAIL_USERNAME=Your_Username
+GMAIL_PASSWORD=Your_Password
+DOMAIN_NAME=example.com
+ADMIN_NAME=First User
+ADMIN_EMAIL=[email protected]
+ADMIN_PASSWORD=changeme

app/services/create_admin_service.rb

@@ -0,0 +1,8 @@
+class CreateAdminService
+  def call
+    user = User.find_or_create_by!(email: Rails.application.secrets.admin_email) do |user|
+        user.password = Rails.application.secrets.admin_password
+        user.password_confirmation = Rails.application.secrets.admin_password
+      end
+  end
+end

config/initializers/devise.rb

@@ -12,7 +12,7 @@
   # Configure the e-mail address which will be shown in Devise::Mailer,
   # note that it will be overwritten if you use your own mailer class
   # with default "from" parameter.
-  config.mailer_sender = '[email protected]'
+  config.mailer_sender = 'no-reply@' + Rails.application.secrets.domain_name
 
   # Configure the class responsible to send e-mails.
   # config.mailer = 'Devise::Mailer'

config/secrets.yml

@@ -11,12 +11,25 @@
 # if you're sharing your code publicly.
 
 development:
+  admin_name: First User
+  admin_email: [email protected]
+  admin_password: changeme
+  email_provider_username: <%= ENV["GMAIL_USERNAME"] %>
+  email_provider_password: <%= ENV["GMAIL_PASSWORD"] %>
+  domain_name: example.com
   secret_key_base: 8d9ef9e1c0c1c6c83c85fa57e1b0599d925958edcd80b8a75dc5eb52068e5cf672bb6a4178afb0f3d6747b483f9eb555a225c0dd262060e656904f71a2426055
 
 test:
+  domain_name: example.com 
   secret_key_base: 8e445726b8bd7cce5d3baa2bc801e160f2fc76bdda9f051daedab4b30a5ffda9cae9e6e232eeed589d2f8cbc2f13bf5a26d066bd5182a3f7e4b6d342f849ba76
 
 # Do not keep production secrets in the repository,
 # instead read values from the environment.
 production:
+  admin_name: <%= ENV["ADMIN_NAME"] %>
+  admin_email: <%= ENV["ADMIN_EMAIL"] %>
+  admin_password: <%= ENV["ADMIN_PASSWORD"] %>
+  email_provider_username: <%= ENV["GMAIL_USERNAME"] %>
+  email_provider_password: <%= ENV["GMAIL_PASSWORD"] %> 
+  domain_name: <%= ENV["DOMAIN_NAME"] %>
   secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>

db/seeds.rb

@@ -1,7 +1,10 @@
 # This file should contain all the record creation needed to seed the database with its default values.
-# The data can then be loaded with the rails db:seed command (or created alongside the database with db:setup).
+# The data can then be loaded with the rake db:seed (or created alongside the db with db:setup).
 #
 # Examples:
 #
-#   movies = Movie.create([{ name: 'Star Wars' }, { name: 'Lord of the Rings' }])
-#   Character.create(name: 'Luke', movie: movies.first)
+#   cities = City.create([{ name: 'Chicago' }, { name: 'Copenhagen' }])
+#   Mayor.create(name: 'Emanuel', city: cities.first)
+user = CreateAdminService.new.call
+puts 'CREATED ADMIN USER: ' << user.email
+# Environment variables (ENV['...']) can be set in the file .env file.

spec/factories/users.rb

@@ -1,5 +1,7 @@
 FactoryGirl.define do
   factory :user do
-
+    name "Test User"
+    email "[email protected]"
+    password "please123"
   end
 end

spec/features/users/sign_in_spec.rb

@@ -0,0 +1,49 @@
+# Feature: Sign in
+#   As a user
+#   I want to sign in
+#   So I can visit protected areas of the site
+feature 'Sign in', :devise do
+
+  # Scenario: User cannot sign in if not registered
+  #   Given I do not exist as a user
+  #   When I sign in with valid credentials
+  #   Then I see an invalid credentials message
+  scenario 'user cannot sign in if not registered' do
+    signin('[email protected]', 'please123')
+    expect(page).to have_content I18n.t 'devise.failure.not_found_in_database', authentication_keys: 'email'
+  end
+
+  # Scenario: User can sign in with valid credentials
+  #   Given I exist as a user
+  #   And I am not signed in
+  #   When I sign in with valid credentials
+  #   Then I see a success message
+  scenario 'user can sign in with valid credentials' do
+    user = FactoryGirl.create(:user)
+    signin(user.email, user.password)
+    expect(page).to have_content I18n.t 'devise.sessions.signed_in'
+  end
+
+  # Scenario: User cannot sign in with wrong email
+  #   Given I exist as a user
+  #   And I am not signed in
+  #   When I sign in with a wrong email
+  #   Then I see an invalid email message
+  scenario 'user cannot sign in with wrong email' do
+    user = FactoryGirl.create(:user)
+    signin('[email protected]', user.password)
+    expect(page).to have_content I18n.t 'devise.failure.not_found_in_database', authentication_keys: 'email'
+  end
+
+  # Scenario: User cannot sign in with wrong password
+  #   Given I exist as a user
+  #   And I am not signed in
+  #   When I sign in with a wrong password
+  #   Then I see an invalid password message
+  scenario 'user cannot sign in with wrong password' do
+    user = FactoryGirl.create(:user)
+    signin(user.email, 'invalidpass')
+    expect(page).to have_content I18n.t 'devise.failure.invalid', authentication_keys: 'email'
+  end
+
+end

spec/features/users/sign_out_spec.rb

@@ -0,0 +1,21 @@
+# Feature: Sign out
+#   As a user
+#   I want to sign out
+#   So I can protect my account from unauthorized access
+feature 'Sign out', :devise do
+
+  # Scenario: User signs out successfully
+  #   Given I am signed in
+  #   When I sign out
+  #   Then I see a signed out message
+  scenario 'user signs out successfully' do
+    user = FactoryGirl.create(:user)
+    signin(user.email, user.password)
+    expect(page).to have_content I18n.t 'devise.sessions.signed_in'
+    click_link 'Sign out'
+    expect(page).to have_content I18n.t 'devise.sessions.signed_out'
+  end
+
+end
+
+

spec/features/users/user_delete_spec.rb

@@ -0,0 +1,32 @@
+include Warden::Test::Helpers
+Warden.test_mode!
+
+# Feature: User delete
+#   As a user
+#   I want to delete my user profile
+#   So I can close my account
+feature 'User delete', :devise, :js do
+
+  after(:each) do
+    Warden.test_reset!
+  end
+
+  # Scenario: User can delete own account
+  #   Given I am signed in
+  #   When I delete my account
+  #   Then I should see an account deleted message
+  scenario 'user can delete own account' do
+    skip 'skip a slow test'
+    user = FactoryGirl.create(:user)
+    login_as(user, :scope => :user)
+    visit edit_user_registration_path(user)
+    click_button 'Cancel my account'
+    page.driver.browser.switch_to.alert.accept
+    expect(page).to have_content I18n.t 'devise.registrations.destroyed'
+  end
+
+end
+
+
+
+

spec/features/users/user_edit_spec.rb

@@ -0,0 +1,42 @@
+include Warden::Test::Helpers
+Warden.test_mode!
+
+# Feature: User edit
+#   As a user
+#   I want to edit my user profile
+#   So I can change my email address
+feature 'User edit', :devise do
+
+  after(:each) do
+    Warden.test_reset!
+  end
+
+  # Scenario: User changes email address
+  #   Given I am signed in
+  #   When I change my email address
+  #   Then I see an account updated message
+  scenario 'user changes email address' do
+    user = FactoryGirl.create(:user)
+    login_as(user, :scope => :user)
+    visit edit_user_registration_path(user)
+    fill_in 'Email', :with => '[email protected]'
+    fill_in 'Current password', :with => user.password
+    click_button 'Update'
+    txts = [I18n.t( 'devise.registrations.updated'), I18n.t( 'devise.registrations.update_needs_confirmation')]
+    expect(page).to have_content(/.*#{txts[0]}.*|.*#{txts[1]}.*/)
+  end
+
+  # Scenario: User cannot edit another user's profile
+  #   Given I am signed in
+  #   When I try to edit another user's profile
+  #   Then I see my own 'edit profile' page
+  scenario "user cannot cannot edit another user's profile", :me do
+    me = FactoryGirl.create(:user)
+    other = FactoryGirl.create(:user, email: '[email protected]')
+    login_as(me, :scope => :user)
+    visit edit_user_registration_path(other)
+    expect(page).to have_content 'Edit User'
+    expect(page).to have_field('Email', with: me.email)
+  end
+
+end

spec/features/users/user_index_spec.rb

@@ -0,0 +1,25 @@
+include Warden::Test::Helpers
+Warden.test_mode!
+
+# Feature: User index page
+#   As a user
+#   I want to see a list of users
+#   So I can see who has registered
+feature 'User index page', :devise do
+
+  after(:each) do
+    Warden.test_reset!
+  end
+
+  # Scenario: User listed on index page
+  #   Given I am signed in
+  #   When I visit the user index page
+  #   Then I see my own email address
+  scenario 'user sees own email address' do
+    user = FactoryGirl.create(:user)
+    login_as(user, scope: :user)
+    visit users_path
+    expect(page).to have_content user.email
+  end
+
+end

spec/features/users/user_show_spec.rb

@@ -0,0 +1,39 @@
+include Warden::Test::Helpers
+Warden.test_mode!
+
+# Feature: User profile page
+#   As a user
+#   I want to visit my user profile page
+#   So I can see my personal account data
+feature 'User profile page', :devise do
+
+  after(:each) do
+    Warden.test_reset!
+  end
+
+  # Scenario: User sees own profile
+  #   Given I am signed in
+  #   When I visit the user profile page
+  #   Then I see my own email address
+  scenario 'user sees own profile' do
+    user = FactoryGirl.create(:user)
+    login_as(user, :scope => :user)
+    visit user_path(user)
+    expect(page).to have_content 'User'
+    expect(page).to have_content user.email
+  end
+
+  # Scenario: User cannot see another user's profile
+  #   Given I am signed in
+  #   When I visit another user's profile
+  #   Then I see an 'access denied' message
+  scenario "user cannot see another user's profile" do
+    me = FactoryGirl.create(:user)
+    other = FactoryGirl.create(:user, email: '[email protected]')
+    login_as(me, :scope => :user)
+    Capybara.current_session.driver.header 'Referer', root_path
+    visit user_path(other)
+    expect(page).to have_content 'Access denied.'
+  end
+
+end

spec/features/visitors/sign_up_spec.rb

@@ -0,0 +1,62 @@
+# Feature: Sign up
+#   As a visitor
+#   I want to sign up
+#   So I can visit protected areas of the site
+feature 'Sign Up', :devise do
+
+  # Scenario: Visitor can sign up with valid email address and password
+  #   Given I am not signed in
+  #   When I sign up with a valid email address and password
+  #   Then I see a successful sign up message
+  scenario 'visitor can sign up with valid email address and password' do
+    sign_up_with('[email protected]', 'please123', 'please123')
+    txts = [I18n.t( 'devise.registrations.signed_up'), I18n.t( 'devise.registrations.signed_up_but_unconfirmed')]
+    expect(page).to have_content(/.*#{txts[0]}.*|.*#{txts[1]}.*/)
+  end
+
+  # Scenario: Visitor cannot sign up with invalid email address
+  #   Given I am not signed in
+  #   When I sign up with an invalid email address
+  #   Then I see an invalid email message
+  scenario 'visitor cannot sign up with invalid email address' do
+    sign_up_with('bogus', 'please123', 'please123')
+    expect(page).to have_content 'Email is invalid'
+  end
+
+  # Scenario: Visitor cannot sign up without password
+  #   Given I am not signed in
+  #   When I sign up without a password
+  #   Then I see a missing password message
+  scenario 'visitor cannot sign up without password' do
+    sign_up_with('[email protected]', '', '')
+    expect(page).to have_content "Password can't be blank"
+  end
+
+  # Scenario: Visitor cannot sign up with a short password
+  #   Given I am not signed in
+  #   When I sign up with a short password
+  #   Then I see a 'too short password' message
+  scenario 'visitor cannot sign up with a short password' do
+    sign_up_with('[email protected]', 'please', 'please')
+    expect(page).to have_content "Password is too short"
+  end
+
+  # Scenario: Visitor cannot sign up without password confirmation
+  #   Given I am not signed in
+  #   When I sign up without a password confirmation
+  #   Then I see a missing password confirmation message
+  scenario 'visitor cannot sign up without password confirmation' do
+    sign_up_with('[email protected]', 'please123', '')
+    expect(page).to have_content "Password confirmation doesn't match"
+  end
+
+  # Scenario: Visitor cannot sign up with mismatched password and confirmation
+  #   Given I am not signed in
+  #   When I sign up with a mismatched password confirmation
+  #   Then I should see a mismatched password message
+  scenario 'visitor cannot sign up with mismatched password and confirmation' do
+    sign_up_with('[email protected]', 'please123', 'mismatch')
+    expect(page).to have_content "Password confirmation doesn't match"
+  end
+
+end

spec/models/user_spec.rb

@@ -1,5 +1,13 @@
-require 'rails_helper'
+describe User do
+
+  before(:each) { @user = User.new(email: '[email protected]') }
+
+  subject { @user }
+
+  it { should respond_to(:email) }
+
+  it "#email returns a string" do
+    expect(@user.email).to match '[email protected]'
+  end
 
-RSpec.describe User, type: :model do
-  pending "add some examples to (or delete) #{__FILE__}"
 end

spec/support/devise.rb

@@ -0,0 +1,3 @@
+RSpec.configure do |config|
+  config.include Devise::TestHelpers, :type => :controller
+end

spec/support/helpers.rb

@@ -0,0 +1,4 @@
+require 'support/helpers/session_helpers'
+RSpec.configure do |config|
+  config.include Features::SessionHelpers, type: :feature
+end