Skip to content
This repository

Jun 14, 2011

  1. Prem Sichanugrist

    Fix compatibility issue with Ruby 1.9

    It turned out that Digest::SHA1 and SecureRandom.hex returns a US-ASCII string. We should cast it to UTF-8 to avoid problem with Sqlite3
    sikachu authored croaky committed

Jun 09, 2011

  1. Dan Croak

    getting rid of a rails 3.1 warning regarding ActiveSupport::SecureRan…

    …dom (now just SecureRandom)
    croaky authored

Apr 30, 2011

  1. Dan Croak

    Removing :case_sensitive option from validates_uniqueness_of. It was …

    …unnecessary and causes a small performance problem on some apps. Resolves #148
    croaky authored

Apr 19, 2011

  1. Dan Croak

    tokens and salt can use ActiveSupport::SecureRandom instead of ad-hoc…

    … hashing methods.
    croaky authored
  2. Dan Croak

    use Rails 3's ActiveSupport::Concern to clean up some files

    croaky authored
  3. Dan Croak

    remove password confirmation

    croaky authored

Apr 16, 2011

  1. Dan Croak

    when user tries to sign in with uppercase email, clearance allows it …

    …because it will force downcasing
    croaky authored
  2. Adam Conrad

    forced email to be downcase.

    acconrad authored croaky committed

Apr 14, 2011

  1. Joel "The Merciless" Meador

    password reset should require a password

    janxious authored

Feb 13, 2011

  1. [#74] When Clearance is installed in an app that already has users,

    allow old users to sign in by reseting their password. This initializes
    their salt, generates a remember token, and encrypts their password for
    the first time.
    Dan Croak and Joe Ferris authored croaky committed

Dec 22, 2010

  1. Remove email confirmations

    Mike Burns and Harold Giménez authored Harold Giménez committed

Dec 21, 2010

  1. Robert Stevenson

    Added a more thorough email format validation regex for User

    RobertStevenson authored mike-burns committed

Jun 10, 2010

  1. Joshua Clayton

    Update clearance and tests to Rails3-style syntax

Jun 01, 2010

  1. Mike Breen

    Small doc fix: there is no Clearance::User::AttrAccessible doesn't ex…

    …ist.
    hardbap authored croaky committed

Apr 16, 2010

  1. Mike Burns

    Don't conditionalize the validates_confirmation_of :password, since t…

    …he conditional is implied
    mike-burns authored

Feb 21, 2010

  1. Dan Croak

    rolling back change. doesn't fully cover edge case reported, opens up…

    … a security hole for people who forget to use attr_accessible, can be handled by a rake task
    croaky authored
  2. Dan Croak

    [#74] initialize salt for old user records without salt

    croaky authored

Feb 17, 2010

  1. Dan Croak

    formatting, adding contributors to README, updating CHANGELOG for 0.8…

    ….6 release
    croaky authored
  2. Joe Ferris

    Allow overridden user models to skip email/password validations condi…

    …tionally
    jferris authored

Feb 16, 2010

  1. Ryan McGeary

    Added randomness to token and salt generation

    * Improved and fixed test case that ensures different remember tokens for users created at the same time with the same password.
    * With remember_token generation occuring at creation now, the old test case was no longer valid.
    rmm5t authored
  2. Ryan McGeary

    Reset the remember_token on sign out instead of sign in

    * Allows for the same user to sign in from two locations at once
    * Added support for setting User#remember_token on creation
    * Addresses this thread:
      http://groups.google.com/group/thoughtbot-clearance/browse_thread/thread/d071ae84573e40ff
    rmm5t authored
  3. Ryan McGeary

    Removed User#initialize_confirmation_token from before_save; added #g…

    …enerate_confirmation_token to before_create
    rmm5t authored
  4. Ryan McGeary

    Deprecated User#remember_me! for User#reset_remember_token!

    rmm5t authored

Jan 19, 2010

  1. Dan Croak

    removing attr_accessible from Clearance::User.

    this does not belong in an authentication library.
    the application developer should decide whether they want to use
    attr_accessible
    croaky authored

Nov 13, 2009

  1. initial pass at moving confirmation email sending into user model

    Chad Pytel authored

Oct 21, 2009

  1. Fix for potential remember me token collisions

    Joe Ferris authored

Sep 29, 2009

  1. Dan Croak

    improving documentation

    croaky authored

Aug 31, 2009

  1. Removed unnecessary remember_token_expires_at column and the remember…

    …? and forget_me! user instance methods
    Daniel Croak authored
  2. splitting token/token_expires_at into confirmation_token, remember_to…

    …ken, & remember_token_expires_at
    Daniel Croak authored

Aug 21, 2009

  1. always remember me for a year when i sign in.

    Daniel Croak authored

Aug 10, 2009

  1. Dan Croak

    documented Clearance::User.authenticate with YARD

    croaky authored
  2. Dan Croak

    documented Clearance::User with YARD

    croaky authored

May 18, 2009

  1. Dan Croak

    refactoring User so that apps can choose to not use Clearance's valid…

    …ations & not have to copy over attr_accessor, attr_accessible, & callbacks.
    croaky authored

May 12, 2009

  1. Dan Croak

    adding test for blank password confirmation

    croaky authored

Mar 26, 2009

  1. Joe Ferris

    Renamed Clearance::App::Models::User to Clearance::User

    jferris authored
Something went wrong with that request. Please try again.