From 28b51dc38ad71b8a7468aa91d8ce8d3059d9bb69 Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Thu, 11 Oct 2012 17:41:00 +0200
Subject: current_user and authenticate methods

---
 users/app/controllers/application_controller.rb | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 users/app/controllers/application_controller.rb

(limited to 'users/app')

diff --git a/users/app/controllers/application_controller.rb b/users/app/controllers/application_controller.rb
new file mode 100644
index 0000000..64e1a55
--- /dev/null
+++ b/users/app/controllers/application_controller.rb
@@ -0,0 +1,14 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery
+
+  private
+
+  def current_user
+    @current_user ||= User.find(session[:user_id]) if session[:user_id]
+  end
+  helper_method :current_user
+
+  def authorize
+    redirect_to login_url, alert: "Not authorized" if current_user.nil?
+  end
+end
-- 
cgit v1.2.3


From 42cf5141bd7743d16259b0771607ea6a8cbc0fd3 Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Mon, 15 Oct 2012 11:44:07 +0200
Subject: updated srp_js

---
 users/app/assets/javascripts/srp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'users/app')

diff --git a/users/app/assets/javascripts/srp b/users/app/assets/javascripts/srp
index d6a7804..6feb770 160000
--- a/users/app/assets/javascripts/srp
+++ b/users/app/assets/javascripts/srp
@@ -1 +1 @@
-Subproject commit d6a78049f3356d9d645143362eca74434410bf62
+Subproject commit 6feb77060140fe8026812970c4d5ea83da3cd200
-- 
cgit v1.2.3


From 8841958868fdd11ec49ee6de32ff79f1aa6083fa Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Mon, 15 Oct 2012 12:55:03 +0200
Subject: adding login function for srp

---
 users/app/assets/javascripts/users.js.coffee | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'users/app')

diff --git a/users/app/assets/javascripts/users.js.coffee b/users/app/assets/javascripts/users.js.coffee
index 160a7f0..07dbc32 100644
--- a/users/app/assets/javascripts/users.js.coffee
+++ b/users/app/assets/javascripts/users.js.coffee
@@ -27,7 +27,7 @@ validate_password = (event) ->
 
 insert_verifier = (event) ->
   # TODO: verify password confimation
-  srp = new SRP
+  srp = new SRP(jqueryRest())
   salt = srp.session.getSalt()
   $('#srp_salt').val(salt)
   $('#srp_password_verifier').val(srp.session.getV().toString(16))
@@ -35,7 +35,14 @@ insert_verifier = (event) ->
   $('#srp_password').val('cleared out - use verifier instead')
   $('#srp_password_confirmation').val('using srp - store verifier')
 
+login = (event) ->
+  srp = new SRP(jqueryRest())
+  srp.identify()
+  false
+
+
 $(document).ready ->
   $('#new_user').submit validate_password
   $('#new_user').submit insert_verifier
+  $('#new_session').submit login
 
-- 
cgit v1.2.3


From b85316cc00f53343bc6555b10c79f9aadd86e06f Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Tue, 16 Oct 2012 17:29:11 +0200
Subject: working version of srp_js

---
 users/app/assets/javascripts/srp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'users/app')

diff --git a/users/app/assets/javascripts/srp b/users/app/assets/javascripts/srp
index 6feb770..d21474a 160000
--- a/users/app/assets/javascripts/srp
+++ b/users/app/assets/javascripts/srp
@@ -1 +1 @@
-Subproject commit 6feb77060140fe8026812970c4d5ea83da3cd200
+Subproject commit d21474a0290edab1c765741d484335d83f50be75
-- 
cgit v1.2.3


From fdfdc86eb96f670a580eb58b1b3d41560a269ac1 Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Wed, 17 Oct 2012 12:39:40 +0200
Subject: improved signup and login js

---
 users/app/assets/javascripts/srp             |  2 +-
 users/app/assets/javascripts/users.js.coffee | 16 ++++++----------
 2 files changed, 7 insertions(+), 11 deletions(-)

(limited to 'users/app')

diff --git a/users/app/assets/javascripts/srp b/users/app/assets/javascripts/srp
index d21474a..5a0ceeb 160000
--- a/users/app/assets/javascripts/srp
+++ b/users/app/assets/javascripts/srp
@@ -1 +1 @@
-Subproject commit d21474a0290edab1c765741d484335d83f50be75
+Subproject commit 5a0ceeb1ca0055719a9b8977a799362163955766
diff --git a/users/app/assets/javascripts/users.js.coffee b/users/app/assets/javascripts/users.js.coffee
index 07dbc32..1c00663 100644
--- a/users/app/assets/javascripts/users.js.coffee
+++ b/users/app/assets/javascripts/users.js.coffee
@@ -25,24 +25,20 @@ validate_password = (event) ->
   return true
   
 
-insert_verifier = (event) ->
-  # TODO: verify password confimation
+signup = (event) ->
   srp = new SRP(jqueryRest())
-  salt = srp.session.getSalt()
-  $('#srp_salt').val(salt)
-  $('#srp_password_verifier').val(srp.session.getV().toString(16))
-  # clear the password so we do not submit it
-  $('#srp_password').val('cleared out - use verifier instead')
-  $('#srp_password_confirmation').val('using srp - store verifier')
+  srp.register()
+  false
 
 login = (event) ->
   srp = new SRP(jqueryRest())
-  srp.identify()
+  srp.identify ->
+    window.location = '/'
   false
 
 
 $(document).ready ->
   $('#new_user').submit validate_password
-  $('#new_user').submit insert_verifier
+  $('#new_user').submit signup
   $('#new_session').submit login
 
-- 
cgit v1.2.3


From fe23b7896a04a50980c28a8b66c08ce2885ad0d3 Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Wed, 17 Oct 2012 12:40:12 +0200
Subject: complete signup, login, logout workflow

---
 users/app/views/users/new.html.haml | 2 --
 1 file changed, 2 deletions(-)

(limited to 'users/app')

diff --git a/users/app/views/users/new.html.haml b/users/app/views/users/new.html.haml
index f6ece3a..af53331 100644
--- a/users/app/views/users/new.html.haml
+++ b/users/app/views/users/new.html.haml
@@ -4,7 +4,5 @@
   = f.input :login, :input_html => { :id => :srp_username }
   = f.input :password, :required => true, :input_html => { :id => :srp_password }
   = f.input :password_confirmation, :required => true, :input_html => { :id => :srp_password_confirmation }
-  = f.input :password_verifier, :as => :hidden, :input_html => { :id => :srp_password_verifier }
-  = f.input :password_salt, :as => :hidden, :input_html => { :id => :srp_salt }
   = f.button :submit, :value => t(:signup), :class => 'btn-primary' 
   = link_to t(:cancel), root_url, :class => :btn
-- 
cgit v1.2.3


From dc0584f7d993ef7c75fbdd9d341ebb3337f3448d Mon Sep 17 00:00:00 2001
From: Azul <azul@leap.se>
Date: Wed, 17 Oct 2012 15:19:09 +0200
Subject: UI tweaks including newer version of bootstrap

---
 users/app/views/sessions/new.html.haml | 15 ++++++++-------
 users/app/views/users/new.html.haml    | 17 +++++++++--------
 2 files changed, 17 insertions(+), 15 deletions(-)

(limited to 'users/app')

diff --git a/users/app/views/sessions/new.html.haml b/users/app/views/sessions/new.html.haml
index 39ee7bf..c91d3f2 100644
--- a/users/app/views/sessions/new.html.haml
+++ b/users/app/views/sessions/new.html.haml
@@ -1,7 +1,8 @@
-%h2=t :login
-= simple_form_for :session, :url => sessions_path, :html => { :id => :new_session } do |f|
-  %legend=t :login_message
-  = f.input :login, :input_html => { :id => :srp_username }
-  = f.input :password, :required => true, :input_html => { :id => :srp_password }
-  = f.button :submit, :value => t(:login), :class => 'btn-primary' 
-  = link_to t(:cancel), root_url, :class => :btn
+.span8.offset2
+  %h2=t :login
+  = simple_form_for :session, :url => sessions_path, :html => { :id => :new_session, :class => 'form-horizontal' } do |f|
+    %legend=t :login_message
+    = f.input :login, :input_html => { :id => :srp_username }
+    = f.input :password, :required => true, :input_html => { :id => :srp_password }
+    = f.button :submit, :value => t(:login), :class => 'btn-primary' 
+    = link_to t(:cancel), root_url, :class => :btn
diff --git a/users/app/views/users/new.html.haml b/users/app/views/users/new.html.haml
index af53331..835e99a 100644
--- a/users/app/views/users/new.html.haml
+++ b/users/app/views/users/new.html.haml
@@ -1,8 +1,9 @@
-%h2=t :signup
-= simple_form_for @user do |f|
-  %legend=t :signup_message
-  = f.input :login, :input_html => { :id => :srp_username }
-  = f.input :password, :required => true, :input_html => { :id => :srp_password }
-  = f.input :password_confirmation, :required => true, :input_html => { :id => :srp_password_confirmation }
-  = f.button :submit, :value => t(:signup), :class => 'btn-primary' 
-  = link_to t(:cancel), root_url, :class => :btn
+.span8.offset2
+  %h2=t :signup
+  = simple_form_for @user, :html => {:class => 'form-horizontal'} do |f|
+    %legend=t :signup_message
+    = f.input :login, :input_html => { :id => :srp_username }
+    = f.input :password, :required => true, :input_html => { :id => :srp_password }
+    = f.input :password_confirmation, :required => true, :input_html => { :id => :srp_password_confirmation }
+    = f.button :submit, :value => t(:signup), :class => 'btn-primary' 
+    = link_to t(:cancel), root_url, :class => :btn
-- 
cgit v1.2.3