Agile Web Development with Rails, Edition 4

14.3 Iteration I3: Limiting Access 14.1 Iteration I1: Adding Users

14.2 Iteration I2: Authenticating Users

57 (tests|runs), 172 assertions, 0 failures, 0 errors.
<0> expected to be
>=
<1>.

Traceback:
  /home/rubys/git/awdwr/edition4/checkdepot.rb:38:in `assert_test_summary'
  /home/rubys/git/awdwr/edition4/checkdepot.rb:335:in `block in <class:DepotTest>'

Generate empty controllers for sessions and administration

rails generate controller Sessions new create destroy
      create  app/controllers/sessions_controller.rb
       route  get 'sessions/destroy'
       route  get 'sessions/create'
       route  get 'sessions/new'
      invoke  erb
      create    app/views/sessions
      create    app/views/sessions/new.html.erb
      create    app/views/sessions/create.html.erb
      create    app/views/sessions/destroy.html.erb
      invoke  test_unit
      create    test/controllers/sessions_controller_test.rb
      invoke  helper
      create    app/helpers/sessions_helper.rb
      invoke    test_unit
      invoke  assets
      invoke    coffee
      create      app/assets/javascripts/sessions.coffee
      invoke    scss
      create      app/assets/stylesheets/sessions.scss
rails generate controller Admin index
      create  app/controllers/admin_controller.rb
       route  get 'admin/index'
      invoke  erb
      create    app/views/admin
      create    app/views/admin/index.html.erb
      invoke  test_unit
      create    test/controllers/admin_controller_test.rb
      invoke  helper
      create    app/helpers/admin_helper.rb
      invoke    test_unit
      invoke  assets
      invoke    coffee
      create      app/assets/javascripts/admin.coffee
      invoke    scss
      create      app/assets/stylesheets/admin.scss

Implement login in and out by storing the user_id in the session

edit app/controllers/sessions_controller.rb
class SessionsController < ApplicationController
  def new
  end
 
  def create
    user = User.find_by(name: params[:name])
    if user and user.authenticate(params[:password])
      session[:user_id] = user.id
      redirect_to admin_url
    else
      redirect_to login_url, alert: "Invalid user/password combination"
    end
  end
 
  def destroy
    session[:user_id] = nil
    redirect_to store_url, notice: "Logged out"
  end
end

Create the view using form_for as there is no underlying model

edit app/views/sessions/new.html.erb
<div class="depot_form">
  <% if flash[:alert] %>
    <p id="notice"><%= flash[:alert] %></p>
  <% end %>
 
  <%= form_tag do %>
    <fieldset>
      <legend>Please Log In</legend>
 
      <div>
        <%= label_tag :name, 'Name:' %>
        <%= text_field_tag :name, params[:name] %>
      </div>
 
      <div>
        <%= label_tag :password, 'Password:' %>
        <%= password_field_tag :password, params[:password] %>
      </div>
  
      <div>
        <%= submit_tag "Login" %>
      </div>
    </fieldset>
  <% end %>
</div>

Create a landing page for the administrator

edit app/views/admin/index.html.erb
<h1>Welcome</h1>
 
It's <%= Time.now %>
We have <%= pluralize(@total_orders, "order") %>.

Make the orders count available to the admin page

edit app/controllers/admin_controller.rb
class AdminController < ApplicationController
  def index
    @total_orders = Order.count
  end
end

Connect the routes to the controller actions

edit config/routes.rb

Do a login

get /login
Please Log In 
post /login
You are being redirected. 
get http://localhost:3000/admin

Welcome

It's 2016-01-27 15:56:56 -0500 We have 0 orders.

Fix the sessions controller test

edit test/controllers/sessions_controller_test.rb
require 'test_helper'
 
class SessionsControllerTest < ActionDispatch::IntegrationTest
  test "should get new" do
    get sessions_new_url
    assert_response :success
  end
 
  test "should login" do
    dave = users(:one)
    post :create, name: dave.name, password: 'secret'
    assert_redirected_to admin_url
    assert_equal dave.id, session[:user_id]
  end
 
  test "should fail login" do
    dave = users(:one)
    post :create, name: dave.name, password: 'wrong'
    assert_redirected_to login_url
  end
 
  test "should logout" do
    delete :destroy
    assert_redirected_to store_url
  end
 
end
rails test
DEPRECATION WARNING: alias_method_chain is deprecated. Please, use Module#prepend instead. From module, you can access the original method using super. (called from included at /home/rubys/.rvm/gems/ruby-2.3.0/gems/turbolinks-2.5.3/lib/turbolinks/xhr_url_for.rb:7)
DEPRECATION WARNING: alias_method_chain is deprecated. Please, use Module#prepend instead. From module, you can access the original method using super. (called from included at /home/rubys/.rvm/gems/ruby-2.3.0/gems/turbolinks-2.5.3/lib/turbolinks/xhr_url_for.rb:7)
rails aborted!
ActiveRecord::NoEnvironmentInSchemaError: 

    
Environment data not found in the schema. To resolve this issue, run: 

    

    
	bin/rails db:environment:set RAILS_ENV=test

    

    
/home/rubys/git/rails/activerecord/lib/active_record/migration.rb:1259:in `last_stored_environment'

    
/home/rubys/git/rails/activerecord/lib/active_record/tasks/database_tasks.rb:48:in `check_protected_environments!'

    
/home/rubys/git/rails/activerecord/lib/active_record/railties/databases.rake:11:in `block (2 levels) in <top (required)>'

    
/home/rubys/git/rails/activerecord/lib/active_record/railties/databases.rake:375:in `block (3 levels) in <top (required)>'

    
/home/rubys/git/rails/railties/lib/rails/commands/rake_proxy.rb:13:in `block in run_rake_task'

    
/home/rubys/git/rails/railties/lib/rails/commands/rake_proxy.rb:10:in `run_rake_task'

    
/home/rubys/git/rails/railties/lib/rails/commands/commands_tasks.rb:51:in `run_command!'

    
/home/rubys/git/rails/railties/lib/rails/command.rb:20:in `run'

    
/home/rubys/git/rails/railties/lib/rails/commands.rb:19:in `<top (required)>'

    
bin/rails:4:in `require'

    
bin/rails:4:in `<main>'

    
Tasks: TOP => db:test:load => db:test:purge => db:check_protected_environments

    
(See full trace by running task with --trace)

    
/home/rubys/git/rails/activerecord/lib/active_record/migration.rb:578:in `check_pending!':  (ActiveRecord::PendingMigrationError)

    

    
Migrations are pending. To resolve this issue, run:

    

    
	bin/rails db:migrate RAILS_ENV=test

    

    
	from /home/rubys/git/rails/activerecord/lib/active_record/migration.rb:591:in `load_schema_if_pending!'

    
	from /home/rubys/git/rails/activerecord/lib/active_record/migration.rb:597:in `block in maintain_test_schema!'

    
	from /home/rubys/git/rails/activerecord/lib/active_record/migration.rb:828:in `suppress_messages'

    
	from /home/rubys/git/rails/activerecord/lib/active_record/migration.rb:602:in `method_missing'

    
	from /home/rubys/git/rails/activerecord/lib/active_record/migration.rb:597:in `maintain_test_schema!'

    
	from /home/rubys/git/rails/railties/lib/rails/test_help.rb:15:in `<top (required)>'

    
	from /home/rubys/git/rails/activesupport/lib/active_support/dependencies.rb:302:in `require'

    
	from /home/rubys/git/rails/activesupport/lib/active_support/dependencies.rb:302:in `block in require'

    
	from /home/rubys/git/rails/activesupport/lib/active_support/dependencies.rb:268:in `load_dependency'

    
	from /home/rubys/git/rails/activesupport/lib/active_support/dependencies.rb:302:in `require'

    
	from /home/rubys/git/awdwr/edition4/work-230/depot/test/test_helper.rb:3:in `<top (required)>'

    
	from /home/rubys/git/awdwr/edition4/work-230/depot/test/controllers/admin_controller_test.rb:1:in `require'

    
	from /home/rubys/git/awdwr/edition4/work-230/depot/test/controllers/admin_controller_test.rb:1:in `<top (required)>'

    
	from /home/rubys/git/rails/railties/lib/rails/test_unit/test_requirer.rb:11:in `require'

    
	from /home/rubys/git/rails/railties/lib/rails/test_unit/test_requirer.rb:11:in `block in require_files'

    
	from /home/rubys/git/rails/railties/lib/rails/test_unit/test_requirer.rb:10:in `each'

    
	from /home/rubys/git/rails/railties/lib/rails/test_unit/test_requirer.rb:10:in `require_files'

    
	from /home/rubys/git/rails/railties/lib/rails/test_unit/minitest_plugin.rb:75:in `plugin_rails_init'

    
	from /home/rubys/.rvm/gems/ruby-2.3.0@global/gems/minitest-5.8.3/lib/minitest.rb:74:in `block in init_plugins'

    
	from /home/rubys/.rvm/gems/ruby-2.3.0@global/gems/minitest-5.8.3/lib/minitest.rb:72:in `each'

    
	from /home/rubys/.rvm/gems/ruby-2.3.0@global/gems/minitest-5.8.3/lib/minitest.rb:72:in `init_plugins'

    
	from /home/rubys/.rvm/gems/ruby-2.3.0@global/gems/minitest-5.8.3/lib/minitest.rb:123:in `run'

    
	from /home/rubys/git/rails/railties/lib/rails/commands/test.rb:9:in `<top (required)>'

    
	from /home/rubys/git/rails/railties/lib/rails/commands/commands_tasks.rb:138:in `require'

    
	from /home/rubys/git/rails/railties/lib/rails/commands/commands_tasks.rb:138:in `require_command!'

    
	from /home/rubys/git/rails/railties/lib/rails/commands/commands_tasks.rb:95:in `test'

    
	from /home/rubys/git/rails/railties/lib/rails/commands/commands_tasks.rb:49:in `run_command!'

    
	from /home/rubys/git/rails/railties/lib/rails/command.rb:20:in `run'

    
	from /home/rubys/git/rails/railties/lib/rails/commands.rb:19:in `<top (required)>'

    
	from bin/rails:4:in `require'

    
	from bin/rails:4:in `<main>'

    

      14.3 Iteration I3: Limiting Access
      14.1 Iteration I1: Adding Users