ash_authentication/test/support/example/user.ex

defmodule Example.User do
  @moduledoc false
  use Ash.Resource,
    data_layer: AshPostgres.DataLayer,
    extensions: [
      AshAuthentication,
      AshGraphql.Resource,
      AshJsonApi.Resource
    ]

  require Logger

  @type t :: %__MODULE__{
          id: Ecto.UUID.t(),
          username: String.t(),
          hashed_password: String.t(),
          created_at: DateTime.t(),
          updated_at: DateTime.t()
        }

  attributes do
    uuid_primary_key :id, writable?: true

    attribute :username, :ci_string, allow_nil?: false
    attribute :hashed_password, :string, allow_nil?: true, sensitive?: true, private?: true

    create_timestamp :created_at
    update_timestamp :updated_at
  end

  actions do
    read :read do
      primary? true
    end

    destroy :destroy do
      primary? true
    end

    read :current_user do
      get? true
      manual Example.CurrentUserRead
    end

    update :update do
      primary? true
    end

    create :register_with_oauth2 do
      argument :user_info, :map, allow_nil?: false
      argument :oauth_tokens, :map, allow_nil?: false
      upsert? true
      upsert_identity :username

      change AshAuthentication.GenerateTokenChange
      change Example.GenericOAuth2Change
      change AshAuthentication.Strategy.OAuth2.IdentityChange
    end

    read :sign_in_with_oauth2 do
      argument :user_info, :map, allow_nil?: false
      argument :oauth_tokens, :map, allow_nil?: false
      prepare AshAuthentication.Strategy.OAuth2.SignInPreparation

      filter expr(username == get_path(^arg(:user_info), [:nickname]))
    end
  end

  graphql do
    type :user

    queries do
      get :get_user, :read
      list :list_users, :read
      read_one :current_user, :current_user
    end

    mutations do
      create :register, :register_with_password
    end
  end

  json_api do
    type "user"

    routes do
      base "/users"
      get :read
      get :current_user, route: "/me"
      index :read
      post :register_with_password
    end
  end

  postgres do
    table "user"
    repo(Example.Repo)
  end

  authentication do
    api Example

    tokens do
      enabled? true
      store_all_tokens? true
      token_resource Example.Token
      signing_secret &get_config/2
    end

    add_ons do
      confirmation :confirm do
        monitor_fields [:username]
        inhibit_updates? true

        sender fn user, token ->
          Logger.debug("Confirmation request for user #{user.username}, token #{inspect(token)}")
        end
      end
    end

    strategies do
      password :password do
        resettable do
          sender fn user, token ->
            Logger.debug(
              "Password reset request for user #{user.username}, token #{inspect(token)}"
            )
          end
        end
      end

      oauth2 :oauth2 do
        client_id &get_config/2
        redirect_uri &get_config/2
        client_secret &get_config/2
        site &get_config/2
        authorize_path &get_config/2
        token_path &get_config/2
        user_path &get_config/2
        authorization_params scope: "openid profile email"
        auth_method :client_secret_post
        identity_resource Example.UserIdentity
      end
    end
  end

  identities do
    identity :username, [:username], eager_check_with: Example
  end

  def get_config(path, _resource) do
    value =
      :ash_authentication
      |> Application.get_all_env()
      |> get_in(path)

    {:ok, value}
  end
end
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`defmodule Example.User do`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`@moduledoc false`
			`use Ash.Resource,`
			`data_layer: AshPostgres.DataLayer,`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`extensions: [`
			`AshAuthentication,`
			`AshGraphql.Resource,`
			`AshJsonApi.Resource`
			`]`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
feat(PasswordReset): allow users to request and reset their password. (#22) 2022-11-02 18:18:20 +13:00			`require Logger`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`@type t :: %__MODULE__{`
			`id: Ecto.UUID.t(),`
			`username: String.t(),`
			`hashed_password: String.t(),`
			`created_at: DateTime.t(),`
			`updated_at: DateTime.t()`
			`}`

			`attributes do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`uuid_primary_key :id, writable?: true`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`attribute :username, :ci_string, allow_nil?: false`
			`attribute :hashed_password, :string, allow_nil?: true, sensitive?: true, private?: true`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`create_timestamp :created_at`
			`update_timestamp :updated_at`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`

			`actions do`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`read :read do`
			`primary? true`
			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`destroy :destroy do`
			`primary? true`
			`end`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00
			`read :current_user do`
			`get? true`
			`manual Example.CurrentUserRead`
			`end`
feat(Confirmation): Add extension that allows a user to be confirmed when created or updated. (#27) 2022-11-04 21:05:47 +13:00
			`update :update do`
			`primary? true`
			`end`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00
			`create :register_with_oauth2 do`
			`argument :user_info, :map, allow_nil?: false`
			`argument :oauth_tokens, :map, allow_nil?: false`
			`upsert? true`
			`upsert_identity :username`

			`change AshAuthentication.GenerateTokenChange`
			`change Example.GenericOAuth2Change`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`change AshAuthentication.Strategy.OAuth2.IdentityChange`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00			`end`

			`read :sign_in_with_oauth2 do`
			`argument :user_info, :map, allow_nil?: false`
			`argument :oauth_tokens, :map, allow_nil?: false`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`prepare AshAuthentication.Strategy.OAuth2.SignInPreparation`
feat(OAuth2Authentication): Add support for generic OAuth2 endpoints. (#28) 2022-11-10 14:47:06 +13:00
			`filter expr(username == get_path(^arg(:user_info), [:nickname]))`
			`end`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`

feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`graphql do`
			`type :user`

			`queries do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`get :get_user, :read`
			`list :list_users, :read`
			`read_one :current_user, :current_user`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`end`

			`mutations do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`create :register, :register_with_password`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`end`
			`end`

			`json_api do`
			`type "user"`

			`routes do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`base "/users"`
			`get :read`
			`get :current_user, route: "/me"`
			`index :read`
			`post :register_with_password`
feat(Ash.PlugHelpers): Support standard actor configuration. (#16) * improvement(docs): change all references to `actor` to `user`. The word "actor" has special meaning in the Ash ecosystem. * chore: format `dev` directory also. * feat(Ash.PlugHelpers): Support standard actor configuration. * Adds the `:set_actor` plug which will set the actor to a resource based on the subject name. * Also includes GraphQL and JSON:API interfaces in the devserver for testing. 2022-10-31 16:43:00 +13:00			`end`
			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`postgres do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`table "user"`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`repo(Example.Repo)`
			`end`

			`authentication do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`api Example`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`tokens do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`enabled? true`
			`store_all_tokens? true`
			`token_resource Example.Token`
			`signing_secret &get_config/2`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`end`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`add_ons do`
			`confirmation :confirm do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`monitor_fields [:username]`
			`inhibit_updates? true`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`sender fn user, token ->`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`Logger.debug("Confirmation request for user #{user.username}, token #{inspect(token)}")`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`end`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`end`
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`end`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00
improvement(Confirmation): Confirmation is not a strategy. (#46) * improvement(Confirmation): Confirmation is not a strategy. * improvement(Confirmation): Support more than one confirmation entity. * chore: move FIXME doc to issue. 2022-11-24 16:40:15 +13:00			`strategies do`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`password :password do`
			`resettable do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`sender fn user, token ->`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`Logger.debug(`
			`"Password reset request for user #{user.username}, token #{inspect(token)}"`
			`)`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`end`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`end`
			`end`

			`oauth2 :oauth2 do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`client_id &get_config/2`
			`redirect_uri &get_config/2`
			`client_secret &get_config/2`
			`site &get_config/2`
			`authorize_path &get_config/2`
			`token_path &get_config/2`
			`user_path &get_config/2`
			`authorization_params scope: "openid profile email"`
			`auth_method :client_secret_post`
			`identity_resource Example.UserIdentity`
improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`end`
			`end`
feat(PasswordReset): allow users to request and reset their password. (#22) 2022-11-02 18:18:20 +13:00			`end`

feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`identities do`
feat: Add option to store all tokens when they're created. (#91) 2022-12-14 15:06:13 +13:00			`identity :username, [:username], eager_check_with: Example`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`

improvement!: Major redesign of DSL and code structure. (#35) Highlights: * Replaced `AshAuthentication.Provider` with the much more flexible `AshAuthentication.Strategy`. * Moved strategies to within the `authentication` DSL using entities and removed excess extensions. * Added a lot more documentation and test coverage. 2022-11-23 09:09:41 +13:00			`def get_config(path, _resource) do`
			`value =`
			`:ash_authentication`
			`\|> Application.get_all_env()`
			`\|> get_in(path)`

			`{:ok, value}`
feat(PasswordAuthentication): Registration and authentication with local credentials (#4) This is missing a bunch of features that you probably want to use (eg confirmation, password resets), but it's a pretty good place to put a stake in the sand and say it works. 2022-10-25 11:07:07 +13:00			`end`
			`end`