ash_authentication/test/support/example/user.ex

defmodule Example.User do
  @moduledoc false
  use Ash.Resource,
    data_layer: AshPostgres.DataLayer,
    extensions: [
      AshAuthentication,
      AshGraphql.Resource,
      AshJsonApi.Resource
    ]

  require Logger

  @type t :: %__MODULE__{
          id: Ecto.UUID.t(),
          username: String.t(),
          hashed_password: String.t(),
          created_at: DateTime.t(),
          updated_at: DateTime.t()
        }

  attributes do
    uuid_primary_key(:id, writable?: true)

    attribute(:username, :ci_string, allow_nil?: false)
    attribute(:hashed_password, :string, allow_nil?: true, sensitive?: true, private?: true)

    create_timestamp(:created_at)
    update_timestamp(:updated_at)
  end

  actions do
    read :read do
      primary? true
    end

    destroy :destroy do
      primary? true
    end

    read :current_user do
      get? true
      manual Example.CurrentUserRead
    end

    update :update do
      primary? true
    end

    create :register_with_oauth2 do
      argument :user_info, :map, allow_nil?: false
      argument :oauth_tokens, :map, allow_nil?: false
      upsert? true
      upsert_identity :username

      change AshAuthentication.GenerateTokenChange
      change Example.GenericOAuth2Change
      change AshAuthentication.Strategy.OAuth2.IdentityChange
    end

    read :sign_in_with_oauth2 do
      argument :user_info, :map, allow_nil?: false
      argument :oauth_tokens, :map, allow_nil?: false
      prepare AshAuthentication.Strategy.OAuth2.SignInPreparation

      filter expr(username == get_path(^arg(:user_info), [:nickname]))
    end
  end

  graphql do
    type :user

    queries do
      get(:get_user, :read)
      list(:list_users, :read)
      read_one(:current_user, :current_user)
    end

    mutations do
      create :register, :register_with_password
    end
  end

  json_api do
    type "user"

    routes do
      base("/users")
      get(:read)
      get(:current_user, route: "/me")
      index(:read)
      post(:register_with_password)
    end
  end

  postgres do
    table("user")
    repo(Example.Repo)
  end

  authentication do
    api(Example)

    tokens do
      enabled?(true)
      token_resource(Example.Token)
      signing_secret(&get_config/2)
    end

    add_ons do
      confirmation :confirm do
        monitor_fields([:username])
        inhibit_updates?(true)

        sender(fn user, token ->
          Logger.debug("Confirmation request for user #{user.username}, token #{inspect(token)}")
        end)
      end
    end

    strategies do
      password :password do
        resettable do
          sender(fn user, token ->
            Logger.debug(
              "Password reset request for user #{user.username}, token #{inspect(token)}"
            )
          end)
        end
      end

      oauth2 :oauth2 do
        client_id(&get_config/2)
        redirect_uri(&get_config/2)
        client_secret(&get_config/2)
        site(&get_config/2)
        authorize_path(&get_config/2)
        token_path(&get_config/2)
        user_path(&get_config/2)
        authorization_params(scope: "openid profile email")
        auth_method(:client_secret_post)
        identity_resource(Example.UserIdentity)
      end
    end
  end

  identities do
    identity(:username, [:username], eager_check_with: Example)
  end

  def get_config(path, _resource) do
    value =
      :ash_authentication
      |> Application.get_all_env()
      |> get_in(path)

    {:ok, value}
  end
end
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`defmodule Example.User do`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`@moduledoc false`
			`use Ash.Resource,`
			`data_layer: AshPostgres.DataLayer,`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`extensions: [`
			`AshAuthentication,`
			`AshGraphql.Resource,`
			`AshJsonApi.Resource`
			`]`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
feat(PasswordReset): allow users to request and reset their password. (#22) 2022-11-02 18:18:20 +13:00			`require Logger`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`@type t :: %__MODULE__{`
			`id: Ecto.UUID.t(),`
			`username: String.t(),`
			`hashed_password: String.t(),`
			`created_at: DateTime.t(),`
			`updated_at: DateTime.t()`
			`}`

			`attributes do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`uuid_primary_key(:id, writable?: true)`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
			`attribute(:username, :ci_string, allow_nil?: false)`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00			`attribute(:hashed_password, :string, allow_nil?: true, sensitive?: true, private?: true)`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
			`create_timestamp(:created_at)`
			`update_timestamp(:updated_at)`
			`end`

			`actions do`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`read :read do`
			`primary? true`
			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`destroy :destroy do`
			`primary? true`
			`end`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00
			`read :current_user do`
			`get? true`
			`manual Example.CurrentUserRead`
			`end`
feat(Confirmation): Add extension that allows a user to be confirmed when created or updated. (#27) 2022-11-04 21:05:47 +13:00
			`update :update do`
			`primary? true`
			`end`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00
			`create :register_with_oauth2 do`
			`argument :user_info, :map, allow_nil?: false`
			`argument :oauth_tokens, :map, allow_nil?: false`
			`upsert? true`
			`upsert_identity :username`

			`change AshAuthentication.GenerateTokenChange`
			`change Example.GenericOAuth2Change`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`change AshAuthentication.Strategy.OAuth2.IdentityChange`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00			`end`

			`read :sign_in_with_oauth2 do`
			`argument :user_info, :map, allow_nil?: false`
			`argument :oauth_tokens, :map, allow_nil?: false`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`prepare AshAuthentication.Strategy.OAuth2.SignInPreparation`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00
			`filter expr(username == get_path(^arg(:user_info), [:nickname]))`
			`end`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`

feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`graphql do`
			`type :user`

			`queries do`
			`get(:get_user, :read)`
			`list(:list_users, :read)`
			`read_one(:current_user, :current_user)`
			`end`

			`mutations do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`create :register, :register_with_password`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`end`
			`end`

			`json_api do`
			`type "user"`

			`routes do`
			`base("/users")`
			`get(:read)`
			`get(:current_user, route: "/me")`
			`index(:read)`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`post(:register_with_password)`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`end`
			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`postgres do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`table("user")`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`repo(Example.Repo)`
			`end`

			`authentication do`
			`api(Example)`

improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`tokens do`
			`enabled?(true)`
improvement(TokenResource)!: Move `TokenRevocation` -> `TokenResource`. This paves the way to fix #47. 2022-11-30 16:32:13 +13:00			`token_resource(Example.Token)`
improvement(Jwt)!: Use token signing secret into the DSL. Use the `AshAuthentication.Secret` behaviour, rather than asking the user to explicitly set it in their application environment. This is a breaking change that will require folks to change their resource config to look up the signing secret. Closes #79. Closes #77. 2022-12-09 11:32:34 +13:00			`signing_secret(&get_config/2)`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`end`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`add_ons do`
			`confirmation :confirm do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`monitor_fields([:username])`
			`inhibit_updates?(true)`

			`sender(fn user, token ->`
			`Logger.debug("Confirmation request for user #{user.username}, token #{inspect(token)}")`
			`end)`
			`end`
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`end`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`strategies do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`password :password do`
			`resettable do`
			`sender(fn user, token ->`
			`Logger.debug(`
			`"Password reset request for user #{user.username}, token #{inspect(token)}"`
			`)`
			`end)`
			`end`
			`end`

			`oauth2 :oauth2 do`
			`client_id(&get_config/2)`
			`redirect_uri(&get_config/2)`
			`client_secret(&get_config/2)`
			`site(&get_config/2)`
			`authorize_path(&get_config/2)`
			`token_path(&get_config/2)`
			`user_path(&get_config/2)`
			`authorization_params(scope: "openid profile email")`
			`auth_method(:client_secret_post)`
			`identity_resource(Example.UserIdentity)`
			`end`
			`end`
feat(PasswordReset): allow users to request and reset their password. (#22) 2022-11-02 18:18:20 +13:00			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`identities do`
feat(Confirmation): Add extension that allows a user to be confirmed when created or updated. (#27) 2022-11-04 21:05:47 +13:00			`identity(:username, [:username], eager_check_with: Example)`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`

improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`def get_config(path, _resource) do`
			`value =`
			`:ash_authentication`
			`\|> Application.get_all_env()`
			`\|> get_in(path)`

			`{:ok, value}`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`
			`end`