formatting, adding contributors to README, updating CHANGELOG for 0.8…

….6 release

CHANGELOG.textile → CHANGELOG.md

@@ -1,10 +1,18 @@
-h2. 0.8.6 (unreleased)
+0.8.6 (02/17/2010)
+------------------
 
 * Clearance features capitalization should match view text (Bobby Wilson)
-* skip :authenticate before_filter in controllers so apps can easily
+* [#39] skip :authenticate before_filter in controllers so apps can easily
 authenticate a whole site without subclassing (Matthew Ford)
+* [#45] Added randomness to token and salt generation (Ryan McGreary)
+* [#43] Reset the remember_token on sign out instead of sign in. Allows for the same
+user to sign in from two locations at once. (Ryan McGreary)
+* [#62] Append the version number to generated update migrations (Joe Ferris)
+ * Allow overridden user models to skip email/password validations 
+conditionally. This makes username/facebook integration easier. (Joe Ferris)
 
-h2. 0.8.5 (01/20/2009)
+0.8.5 (01/20/2010)
+------------------
 
 * replaced routing hack with Clearance::Routes.draw(map) to give
 more control to the application developer. (Dan Croak)
@@ -15,36 +23,42 @@ more control to the application developer. (Dan Croak)
 * use Clearance.configure block to set mailer sender instead of
 DO_NOT_REPLY constant. (Dan Croak)
 
-h2. 0.8.4 (12/08/2009)
+0.8.4 (12/08/2009)
+------------------
 
 * [#48] remove unnecessary require 'factory_girl' in generator (Dan Croak)
 * reference gemcutter (not github) as the gem source in README (Dan Croak)
 * add IRC, rdoc.info links to README (Dan Croak)
 * move user confirmation email trigger into model (Chad Pytel)
 
-h2. 0.8.3 (09/21/2009)
+0.8.3 (09/21/2009)
+------------------
 
 * [#27] remove class_eval in Clearance::Authentication. (Anuj Dutta)
 * Avoid possible collisions in the remember me token (Joe Ferris)
 
-h2. 0.8.2 (09/01/2009)
+0.8.2 (09/01/2009)
+------------------
 
 * current_user= accessor method. (Joe Ferris, Josh Clayton)
 * set current_user in sign_in. (Jon Yurek)
 
-h2. 0.8.1 (08/31/2009)
+0.8.1 (08/31/2009)
+------------------
 
 * Removed unnecessary remember_token_expires_at column and the
 remember? and forget_me! user instance methods. (Dan Croak)
 
-h2. 0.8.0 (08/31/2009)
+0.8.0 (08/31/2009)
+------------------
 
 * Always remember me. Replaced session-and-remember-me authentication with
 always using a cookie with a long timeout. (Dan Croak)
 * Documented Clearance::Authentication with YARD. (Dan Croak)
 * Documented Clearance::User with YARD. (Dan Croak)
 
-h2. 0.7.0 (08/04/2009)
+0.7.0 (08/04/2009)
+------------------
 
 * Redirect signed in user who clicks confirmation link again. (Dan Croak)
 * Redirect signed out user who clicks confirmation link again. (Dan Croak)
@@ -53,18 +67,21 @@ Croak)
 * Added clearance_views generator. By default, creates formtastic views which
 pass all tests and features. (Dan Croak)
 
-h2. 0.6.9 (07/04/2009)
+0.6.9 (07/04/2009)
+------------------
 
 * Added timestamps to create users migration. (Dan Croak)
 * Ready for Ruby 1.9. (Jason Morrison, Nick Quaranto)
 
-h2. 0.6.8 (06/24/2009)
+0.6.8 (06/24/2009)
+------------------
 
 * Added defined? checks for various Rails constants such as ActionController
 for easier unit testing of Clearance extensions... particularly ActiveRecord
 extensions... particularly strong_password. (Dan Croak)
 
-h2. 0.6.7 (06/13/2009)
+0.6.7 (06/13/2009)
+------------------
 
 * [#30] Added sign_up, sign_in, sign_out named routes. (Dan Croak)
 * [#22] Minimizing Reek smell: Duplication in redirect_back_or. (Dan Croak)
@@ -76,39 +93,46 @@ Croak)
 * README improvements. (Dan Croak)
 * Move routes loading to separate file. (Joshua Clayton)
 
-h2. 0.6.6 (05/18/2009)
+0.6.6 (05/18/2009)
+------------------
 
 * [#14] replaced class_eval in Clearance::User with modules. This was needed
 in a thoughtbot client app so we could write our own validations. (Dan Croak)
 
-h2. 0.6.5 (05/17/2009)
+0.6.5 (05/17/2009)
+------------------
 
 * [#6] Make Clearance i18n aware. (Timur Vafin, Marcel Goerner, Eugene Bolshakov, Dan Croak)
 
-h2. 0.6.4 (05/12/2009)
+0.6.4 (05/12/2009)
+------------------
 
 * Moved issue tracking to Github from Lighthouse. (Dan Croak)
 * [#7] asking higher-level questions of controllers in webrat steps, such as signed_in? instead of what's in the session. same for accessors. (Dan Croak)
 * [#11] replacing sign_in_as & sign_out shoulda macros with a stubbing (requires no dependency) approach. this will avoid dealing with the internals of current_user, such as session & cookies. added sign_in macro which signs in an email confirmed user from clearance's factories. (Dan Croak)
 * [#13] move private methods on sessions controller into Clearance::Authentication module (Dan Croak)
 * [#9] audited flash keys. (Dan Croak)
 
-h2. 0.6.3 (04/23/2009)
+0.6.3 (04/23/2009)
+------------------
 
 * Scoping ClearanceMailer properly within controllers so it works in production environments. (Nick Quaranto)
 
-h2. 0.6.2 (04/22/2009)
+0.6.2 (04/22/2009)
+------------------
 
 * Insert Clearance::User into User model if it exists. (Nick Quaranto)
 * World(NavigationHelpers) Cucumber 3.0 style. (Shay Arnett & Mark Cornick)
 
-h2. 0.6.1 (04/21/2009)
+0.6.1 (04/21/2009)
+------------------
 
 * Scope operators are necessary to keep Rails happy. Reverting the original
 revert so they're back in the library now for constants referenced inside of
 the gem. (Nick Quaranto)
 
-h2. 0.6.0 (04/21/2009)
+0.6.0 (04/21/2009)
+------------------
 
 * Converted Clearance to a Rails engine. (Dan Croak & Joe Ferris)
 * Include Clearance::User in User model in app. (Dan Croak & Joe Ferris)
@@ -132,33 +156,39 @@ Quaranto)
 * Made the clearance controllers unloadable to stop constant loading errors in
 development mode (Nick Quaranto)
 
-h2. 0.5.6 (4/11/2009)
+0.5.6 (4/11/2009)
+-----------------
 
 * [#57] Step definition changed for "User should see error messages" so
 features won't fail for certain validations. (Nick Quaranto)
 
-h2. 0.5.5 (3/23/2009)
+0.5.5 (3/23/2009)
+-----------------
 
 * Removing duplicate test to get rid of warning. (Nick Quaranto)
 
-h2. 0.5.4 (3/21/2009)
+0.5.4 (3/21/2009)
+-----------------
 
 * When users fail logging in, redirect them instead of rendering. (Matt
 Jankowski)
 
-h2. 0.5.3 (3/5/2009)
+0.5.3 (3/5/2009)
+----------------
 
 * Clearance now works with (and requires) Shoulda 2.10.0. (Mark Cornick, Joe
 Ferris, Dan Croak)
 * Prefer flat over nested contexts in sessions_controller_test. (Joe Ferris,
 Dan Croak)
 
-h2. 0.5.2 (3/2/2009)
+0.5.2 (3/2/2009)
+----------------
 
 * Fixed last remaining errors in Rails 2.3 tests. Now fully compatible. (Joe
 Ferris, Dan Croak)
 
-h2. 0.5.1 (2/27/2009)
+0.5.1 (2/27/2009)
+-----------------
 
 * [#46] A user with unconfirmed email who resets password now confirms email.
 (Marcel Görner)
@@ -170,15 +200,17 @@ application.rb in Rails 2.3 apps. (Dan Croak)
 * [#42] Bug fix. Rack-based session change altered how to test remember me
 cookie. (Mihai Anca)
 
-h2. 0.5.0 (2/27/2009)
+0.5.0 (2/27/2009)
+-----------------
 
 * Fixed problem with Cucumber features. (Dan Croak)
 * Fixed mising HTTP fluency use case. (Dan Croak)
 * Refactored User#update_password to take just parameters it needs. (Dan
 Croak)
 * Refactored User unit tests to be more readable. (Dan Croak)
 
-h2. 0.4.9 (2/20/2009)
+0.4.9 (2/20/2009)
+-----------------
 
 * Protect passwords & confirmations actions with forbidden filters. (Dan Croak)
 * Return 403 Forbidden status code in those cases. (Tim Pope)
@@ -188,25 +220,29 @@ h2. 0.4.9 (2/20/2009)
 * [#45] Fixed bug that allowed anyone to edit another user's password (Marcel Görner)
 * Required Factory Girl >= 1.2.0. (Dan Croak)
 
-h2. 0.4.8 (2/16/2009)
+0.4.8 (2/16/2009)
+-----------------
 
 * Added support paths for Cucumber. (Ben Mabey)
 * Added documentation for the flash. (Ben Mabey)
 * Generators require "test_helper" instead of File.join. for rr compatibility. (Joe Ferris)
 * Removed interpolated email address from flash message to make i18n easier. (Bence Nagy)
 * Standardized flash messages that refer to email delivery. (Dan Croak)
 
-h2. 0.4.7 (2/12/2009)
+0.4.7 (2/12/2009)
+-----------------
 
 * Removed Clearance::Test::TestHelper so there is one less setup step. (Dan Croak)
 * All test helpers now in shoulda_macros. (Dan Croak)
 
-h2. 0.4.6 (2/11/2009)
+0.4.6 (2/11/2009)
+-----------------
 
 * Made the modules behave like mixins again. (hat-tip Eloy Duran)
 * Created Actions and PrivateMethods modules on controllers for future RDoc reasons. (Dan Croak, Joe Ferris)
 
-h2. 0.4.5 (2/9/2009)
+0.4.5 (2/9/2009)
+----------------
 
 * [#43] Removed email downcasing because local-part is case sensitive per RFC5321. (Dan Croak)
 * [#42] Removed dependency on Mocha. (Dan Croak)
@@ -217,7 +253,8 @@ h2. 0.4.5 (2/9/2009)
 * Audited "sign up" naming convention. "Register" had slipped in a few places. (Dan Croak)
 * Switched to SHA1 encryption. Cypher doesn't matter much for email confirmation, password reset. Better to have shorter hashes in the emails for clients who line break on 72 chars. (Dan Croak)
 
-h2. 0.4.4 (2/2/2009)
+0.4.4 (2/2/2009)
+----------------
 
 * Added a generator for Cucumber features. (Joe Ferris, Dan Croak)
 * Standarized naming for "Sign up," "Sign in," and "Sign out". (Dan Croak) 

README.md

@@ -126,4 +126,4 @@ Dan Croak, Mike Burns, Jason Morrison, Joe Ferris, Eugene Bolshakov,
 Nick Quaranto, Josh Nichols, Mike Breen, Marcel Görner, Bence Nagy, Ben Mabey,
 Eloy Duran, Tim Pope, Mihai Anca, Mark Cornick, Shay Arnett, Joshua Clayton,
 Mustafa Ekim, Jon Yurek, Anuj Dutta, Chad Pytel, Ben Orenstein, Bobby Wilson,
-and Matthew Ford.
+Matthew Ford, and Ryan McGreary.

lib/clearance/user.rb

@@ -65,11 +65,11 @@ module Callbacks
       # salt, token, password encryption are handled before_save.
       def self.included(model)
         model.class_eval do
-          before_save :initialize_salt,
-                      :encrypt_password
+          before_save   :initialize_salt,
+                        :encrypt_password
           before_create :generate_confirmation_token,
                         :generate_remember_token
-          after_create :send_confirmation_email, :unless => :email_confirmed?
+          after_create  :send_confirmation_email, :unless => :email_confirmed?
         end
       end
     end