From d15c05ffa34ab7c733143e7e07c404a1bcaf111f Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Wed, 14 Aug 2013 00:16:18 +0900
Subject: [PATCH 1/7] add chapter 8

---
 .../app/assets/javascripts/sessions.js.coffee |  3 ++
 .../app/assets/stylesheets/custom.css.scss    | 15 +++++++-
 .../app/assets/stylesheets/sessions.css.scss  |  3 ++
 .../app/controllers/application_controller.rb |  1 +
 .../app/controllers/sessions_controller.rb    | 19 ++++++++++
 .../app/controllers/users_controller.rb       | 12 ++++---
 .../sample_app/app/helpers/sessions_helper.rb |  7 ++++
 kaku/sample_app/app/models/user.rb            | 16 +++++++++
 .../app/views/layouts/application.html.erb    |  8 +++--
 .../app/views/sessions/new.html.erb           | 19 ++++++++++
 .../app/views/shared/_error_messages.html.erb | 12 +++++++
 .../config/environments/production.rb         |  2 +-
 kaku/sample_app/config/routes.rb              |  6 ++--
 ...30813135754_add_remember_token_to_users.rb |  4 +++
 kaku/sample_app/db/schema.rb                  |  2 +-
 kaku/sample_app/spec/models/user_spec.rb      |  5 +++
 .../requests/authentication_pages_spec.rb     | 35 +++++++++++++++++++
 17 files changed, 157 insertions(+), 12 deletions(-)
 create mode 100644 kaku/sample_app/app/assets/javascripts/sessions.js.coffee
 create mode 100644 kaku/sample_app/app/assets/stylesheets/sessions.css.scss
 create mode 100644 kaku/sample_app/app/controllers/sessions_controller.rb
 create mode 100644 kaku/sample_app/app/helpers/sessions_helper.rb
 create mode 100644 kaku/sample_app/app/views/sessions/new.html.erb
 create mode 100644 kaku/sample_app/app/views/shared/_error_messages.html.erb
 create mode 100644 kaku/sample_app/db/migrate/20130813135754_add_remember_token_to_users.rb
 create mode 100644 kaku/sample_app/spec/requests/authentication_pages_spec.rb

diff --git a/kaku/sample_app/app/assets/javascripts/sessions.js.coffee b/kaku/sample_app/app/assets/javascripts/sessions.js.coffee
new file mode 100644
index 0000000..24f83d1
--- /dev/null
+++ b/kaku/sample_app/app/assets/javascripts/sessions.js.coffee
@@ -0,0 +1,3 @@
+# Place all the behaviors and hooks related to the matching controller here.
+# All this logic will automatically be available in application.js.
+# You can use CoffeeScript in this file: http://coffeescript.org/
diff --git a/kaku/sample_app/app/assets/stylesheets/custom.css.scss b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
index a65aba3..e24f2f5 100644
--- a/kaku/sample_app/app/assets/stylesheets/custom.css.scss
+++ b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
@@ -134,4 +134,17 @@ input, textarea, select, .uneditable-input {
 
 input {
   height: auto !important;
-}
\ No newline at end of file
+}
+
+#error_explanation {
+  color: #f00;
+  ul {
+    list-style: none;
+    margin: 0 0 18px 0;
+  }
+}
+
+.field_with_errors {
+  @extend .control-group;
+  @extend .error;
+ }
\ No newline at end of file
diff --git a/kaku/sample_app/app/assets/stylesheets/sessions.css.scss b/kaku/sample_app/app/assets/stylesheets/sessions.css.scss
new file mode 100644
index 0000000..ccb1ed2
--- /dev/null
+++ b/kaku/sample_app/app/assets/stylesheets/sessions.css.scss
@@ -0,0 +1,3 @@
+// Place all the styles related to the Sessions controller here.
+// They will automatically be included in application.css.
+// You can use Sass (SCSS) here: http://sass-lang.com/
diff --git a/kaku/sample_app/app/controllers/application_controller.rb b/kaku/sample_app/app/controllers/application_controller.rb
index d83690e..d8b3d09 100644
--- a/kaku/sample_app/app/controllers/application_controller.rb
+++ b/kaku/sample_app/app/controllers/application_controller.rb
@@ -2,4 +2,5 @@ class ApplicationController < ActionController::Base
   # Prevent CSRF attacks by raising an exception.
   # For APIs, you may want to use :null_session instead.
   protect_from_forgery with: :exception
+  include SessionsHelper
 end
diff --git a/kaku/sample_app/app/controllers/sessions_controller.rb b/kaku/sample_app/app/controllers/sessions_controller.rb
new file mode 100644
index 0000000..200bb2e
--- /dev/null
+++ b/kaku/sample_app/app/controllers/sessions_controller.rb
@@ -0,0 +1,19 @@
+class SessionsController < ApplicationController
+  def new
+    end
+
+    def create
+      user = User.find_by(email: params[:session][:email].downcase)
+      if user && user.authenticate(params[:session][:password])
+        # Sign the user in and redirect to the user's show page.
+        sign_in user
+        redirect_to user
+      else
+        flash.now[:error] = 'Invalid email/password combination'
+        render 'new'
+      end
+    end
+
+    def destroy
+    end
+end
diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index 9e15c6b..887375a 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -8,16 +8,18 @@ def show
   end
   
   def create
-    @user = User.new(params[:user])    # Not the final implementation!
+    @user = User.new(user_params)    # Not the final implementation!
     if @user.save
       # Handle a successful save.
+      flash[:success] = "Welcome to the Sample App!"
+      redirect_to @user
     else
       render 'new'
     end
   end
-    
+
   private
-     def user_params
-       params.require(:user).permit(:name, :email, :password, :password_confirmation)
-     end
+      def user_params
+        params.require(:user).permit(:name, :email, :password, :password_confirmation)
+      end
 end
diff --git a/kaku/sample_app/app/helpers/sessions_helper.rb b/kaku/sample_app/app/helpers/sessions_helper.rb
new file mode 100644
index 0000000..8ca35ed
--- /dev/null
+++ b/kaku/sample_app/app/helpers/sessions_helper.rb
@@ -0,0 +1,7 @@
+module SessionsHelper
+  def sign_in(user)
+      remember_token = User.new_remember_token
+      cookies.permanent[:remember_token] = remember_token
+      user.update_attribute(:remember_token, User.encrypt(remember_token))
+      self.current_user = user
+    end
diff --git a/kaku/sample_app/app/models/user.rb b/kaku/sample_app/app/models/user.rb
index f30c482..1c544eb 100644
--- a/kaku/sample_app/app/models/user.rb
+++ b/kaku/sample_app/app/models/user.rb
@@ -1,8 +1,24 @@
 class User < ActiveRecord::Base
   before_save { self.email = email.downcase }
+  before_create :create_remember_token
+  
   validates :name,  presence: true, length: { maximum: 50 }
   VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
   validates :email, presence: true, format:{with: VALID_EMAIL_REGEX}, uniqueness: { case_sensitive: false}
   validates :password, length: { minimum: 6 }
   has_secure_password
+  
+  def User.new_remember_token
+      SecureRandom.urlsafe_base64
+    end
+
+    def User.encrypt(token)
+      Digest::SHA1.hexdigest(token.to_s)
+    end
+
+    private
+
+      def create_remember_token
+        self.remember_token = User.encrypt(User.new_remember_token)
+      end
 end
diff --git a/kaku/sample_app/app/views/layouts/application.html.erb b/kaku/sample_app/app/views/layouts/application.html.erb
index 7f6ed7b..1b9ee35 100644
--- a/kaku/sample_app/app/views/layouts/application.html.erb
+++ b/kaku/sample_app/app/views/layouts/application.html.erb
@@ -11,8 +11,12 @@
   <body>
     <%= render 'layouts/header' %>
     <div class="container">
-      <%= yield %>
-      <%= debug(params) if Rails.env.development? %>
+      	<% flash.each do |key, value| %>
+		  <div class="alert alert-<%= key %>"><%= value %></div>
+		<% end %>
+		<%= yield %>
+		<%= render 'layouts/footer' %>
+		<%= debug(params) if Rails.env.development? %>
     </div>
   </body>
 </html>
\ No newline at end of file
diff --git a/kaku/sample_app/app/views/sessions/new.html.erb b/kaku/sample_app/app/views/sessions/new.html.erb
new file mode 100644
index 0000000..861efb8
--- /dev/null
+++ b/kaku/sample_app/app/views/sessions/new.html.erb
@@ -0,0 +1,19 @@
+<% provide(:title, "Sign in") %>
+<h1>Sign in</h1>
+
+<div class="row">
+  <div class="span6 offset3">
+    <%= form_for(:session, url: sessions_path) do |f| %>
+
+      <%= f.label :email %>
+      <%= f.text_field :email %>
+
+      <%= f.label :password %>
+      <%= f.password_field :password %>
+
+      <%= f.submit "Sign in", class: "btn btn-large btn-primary" %>
+    <% end %>
+
+    <p>New user? <%= link_to "Sign up now!", signup_path %></p>
+  </div>
+</div>
\ No newline at end of file
diff --git a/kaku/sample_app/app/views/shared/_error_messages.html.erb b/kaku/sample_app/app/views/shared/_error_messages.html.erb
new file mode 100644
index 0000000..c9c0ff4
--- /dev/null
+++ b/kaku/sample_app/app/views/shared/_error_messages.html.erb
@@ -0,0 +1,12 @@
+<% if @user.errors.any? %>
+  <div id="error_explanation">
+    <div class="alert alert-error">
+      The form contains <%= pluralize(@user.errors.count, "error") %>.
+    </div>
+    <ul>
+    <% @user.errors.full_messages.each do |msg| %>
+      <li>* <%= msg %></li>
+    <% end %>
+    </ul>
+  </div>
+<% end %>
\ No newline at end of file
diff --git a/kaku/sample_app/config/environments/production.rb b/kaku/sample_app/config/environments/production.rb
index 5d0ee57..f112db5 100644
--- a/kaku/sample_app/config/environments/production.rb
+++ b/kaku/sample_app/config/environments/production.rb
@@ -40,7 +40,7 @@
   # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx
 
   # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
-  # config.force_ssl = true
+ config.force_ssl = true
 
   # Set to :debug to see everything in the log.
   config.log_level = :info
diff --git a/kaku/sample_app/config/routes.rb b/kaku/sample_app/config/routes.rb
index a87161d..1721395 100644
--- a/kaku/sample_app/config/routes.rb
+++ b/kaku/sample_app/config/routes.rb
@@ -1,12 +1,14 @@
 SampleApp::Application.routes.draw do
   resources :users
   root to: 'static_pages#home'
+  resources :sessions, only: [:new, :create, :destroy]
   match '/signup',  to: 'users#new',            via: 'get'
+  match '/signin',  to: 'sessions#new',         via: 'get'
+  match '/signout', to: 'sessions#destroy',     via: 'delete'
   match '/help',    to: 'static_pages#help',    via: 'get'
   match '/about',   to: 'static_pages#about',   via: 'get'
   match '/contact', to: 'static_pages#contact', via: 'get'
-  
-  # The priority is based upon order of creation: first created -> highest priority.
+   # The priority is based upon order of creation: first created -> highest priority.
   #
   #
   # See how all your routes lay out with "rake routes".
diff --git a/kaku/sample_app/db/migrate/20130813135754_add_remember_token_to_users.rb b/kaku/sample_app/db/migrate/20130813135754_add_remember_token_to_users.rb
new file mode 100644
index 0000000..74c254f
--- /dev/null
+++ b/kaku/sample_app/db/migrate/20130813135754_add_remember_token_to_users.rb
@@ -0,0 +1,4 @@
+class AddRememberTokenToUsers < ActiveRecord::Migration
+  def change
+  end
+end
diff --git a/kaku/sample_app/db/schema.rb b/kaku/sample_app/db/schema.rb
index 1644516..3228446 100644
--- a/kaku/sample_app/db/schema.rb
+++ b/kaku/sample_app/db/schema.rb
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20130730151702) do
+ActiveRecord::Schema.define(version: 20130813135754) do
 
   create_table "users", force: true do |t|
     t.string   "name"
diff --git a/kaku/sample_app/spec/models/user_spec.rb b/kaku/sample_app/spec/models/user_spec.rb
index c764283..b90d84e 100644
--- a/kaku/sample_app/spec/models/user_spec.rb
+++ b/kaku/sample_app/spec/models/user_spec.rb
@@ -14,6 +14,7 @@
   it { should respond_to(:password_digest) }
   it { should respond_to(:password) }
   it { should respond_to(:password_confirmation) }
+  it { should respond_to(:remember_token) }
   it { should respond_to(:authenticate) }
   
   describe "when name is not presence" do
@@ -82,5 +83,9 @@
     end
   end
   
+  describe "remember token" do
+      before { @user.save }
+      its(:remember_token) { should_not be_blank }
+    end
 end
 
diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
new file mode 100644
index 0000000..c446650
--- /dev/null
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -0,0 +1,35 @@
+require 'spec_helper'
+
+describe "Authentication" do
+
+  subject { page }
+
+  describe "signin page" do
+    before { visit signin_path }
+
+    it { should have_content('Sign in') }
+    it { should have_title('Sign in') }
+  end
+end
+
+describe "signin" do
+  before { visit signin_path }
+
+  describe "with invalid information" do
+    before { click_button "Sign in" }
+
+    it { should have_title('Sign in') }
+    it { should have_selector('div.alert.alert-error', text: 'Invalid') }
+    
+    describe "after visiting another page" do
+      before { click_link "Home" }
+      it { should_not have_selector('div.alert.alert-error') }
+    end
+  end
+  
+  it { should have_title(user.name) }
+      it { should have_link('Profile',     href: user_path(user)) }
+      it { should have_link('Sign out',    href: signout_path) }
+      it { should_not have_link('Sign in', href: signin_path) }
+    end
+end
\ No newline at end of file

From ec16d26000ff1a57972e5dea293cb960719104e6 Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Fri, 16 Aug 2013 00:18:26 +0900
Subject: [PATCH 2/7] add chapter 8

---
 kaku/sample_app/Gemfile                       |  1 +
 kaku/sample_app/Gemfile.lock                  |  5 +++
 .../app/assets/javascripts/application.js     |  1 +
 .../app/controllers/sessions_controller.rb    |  2 +
 .../app/controllers/users_controller.rb       | 12 +++++-
 .../sample_app/app/helpers/sessions_helper.rb | 19 +++++++++
 .../app/views/layouts/_header.html.erb        | 41 +++++++++++++------
 ...30815143550_add_remember_token_to_users.rb |  6 +++
 kaku/sample_app/db/schema.rb                  |  4 +-
 .../requests/authentication_pages_spec.rb     | 36 +++++++---------
 .../spec/requests/user_pages_spec.rb          |  9 ++++
 11 files changed, 101 insertions(+), 35 deletions(-)
 create mode 100644 kaku/sample_app/db/migrate/20130815143550_add_remember_token_to_users.rb

diff --git a/kaku/sample_app/Gemfile b/kaku/sample_app/Gemfile
index 81dd1a6..2c779e7 100644
--- a/kaku/sample_app/Gemfile
+++ b/kaku/sample_app/Gemfile
@@ -13,6 +13,7 @@ group :development, :test do
 end
 
 group :test do
+  gem 'webrat'
   gem 'selenium-webdriver', '2.0.0'
   gem 'capybara', '2.1.0'
   gem 'guard-rspec','2.5.0'
diff --git a/kaku/sample_app/Gemfile.lock b/kaku/sample_app/Gemfile.lock
index 51d2f54..13e4096 100644
--- a/kaku/sample_app/Gemfile.lock
+++ b/kaku/sample_app/Gemfile.lock
@@ -186,6 +186,10 @@ GEM
     uglifier (2.1.1)
       execjs (>= 0.3.0)
       multi_json (~> 1.0, >= 1.0.2)
+    webrat (0.7.3)
+      nokogiri (>= 1.2.0)
+      rack (>= 1.0)
+      rack-test (>= 0.5.3)
     xpath (2.0.0)
       nokogiri (~> 1.3)
 
@@ -213,3 +217,4 @@ DEPENDENCIES
   sqlite3 (= 1.3.7)
   turbolinks (= 1.1.1)
   uglifier (= 2.1.1)
+  webrat
diff --git a/kaku/sample_app/app/assets/javascripts/application.js b/kaku/sample_app/app/assets/javascripts/application.js
index d6925fa..e3a9f2d 100644
--- a/kaku/sample_app/app/assets/javascripts/application.js
+++ b/kaku/sample_app/app/assets/javascripts/application.js
@@ -12,5 +12,6 @@
 //
 //= require jquery
 //= require jquery_ujs
+//= require bootstrap
 //= require turbolinks
 //= require_tree .
diff --git a/kaku/sample_app/app/controllers/sessions_controller.rb b/kaku/sample_app/app/controllers/sessions_controller.rb
index 200bb2e..a6ad58d 100644
--- a/kaku/sample_app/app/controllers/sessions_controller.rb
+++ b/kaku/sample_app/app/controllers/sessions_controller.rb
@@ -15,5 +15,7 @@ def create
     end
 
     def destroy
+      sign_out
+      redirect_to root_path
     end
 end
diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index 887375a..717bbb2 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -10,7 +10,7 @@ def show
   def create
     @user = User.new(user_params)    # Not the final implementation!
     if @user.save
-      # Handle a successful save.
+      sign_in @user
       flash[:success] = "Welcome to the Sample App!"
       redirect_to @user
     else
@@ -18,6 +18,16 @@ def create
     end
   end
 
+  def destroy
+    sign_out
+    redirect_to root_path
+  end
+  
+  def sign_out
+    self.current_user = nil
+    cookies.delete(:remember_token)
+  end
+  
   private
       def user_params
         params.require(:user).permit(:name, :email, :password, :password_confirmation)
diff --git a/kaku/sample_app/app/helpers/sessions_helper.rb b/kaku/sample_app/app/helpers/sessions_helper.rb
index 8ca35ed..84350de 100644
--- a/kaku/sample_app/app/helpers/sessions_helper.rb
+++ b/kaku/sample_app/app/helpers/sessions_helper.rb
@@ -5,3 +5,22 @@ def sign_in(user)
       user.update_attribute(:remember_token, User.encrypt(remember_token))
       self.current_user = user
     end
+  
+   def signed_in?
+      !current_user.nil?
+   end
+      
+   def current_user=(user)
+        @current_user = user
+   end
+ 
+   def current_user
+       remember_token = User.encrypt(cookies[:remember_token])
+       @current_user ||= User.find_by(remember_token: remember_token)
+   end
+   
+   def sign_out
+     self.current_user = nil
+     cookies.delete(:remember_token)
+   end
+end
\ No newline at end of file
diff --git a/kaku/sample_app/app/views/layouts/_header.html.erb b/kaku/sample_app/app/views/layouts/_header.html.erb
index 2a56299..a7a734f 100644
--- a/kaku/sample_app/app/views/layouts/_header.html.erb
+++ b/kaku/sample_app/app/views/layouts/_header.html.erb
@@ -1,14 +1,31 @@
 <header class="navbar navbar-fixed-top navbar-inverse">
-<div class="navbar-inner">
-  <div class="container">
-    <%= link_to "sample app", '#', id: "logo" %>
-    <nav>
-    <ul class="nav pull-right">
-      <li><%= link_to "Home", root_path %></li>
-      <li><%= link_to "Help", help_path %></li>
-      <li><%= link_to "Sign in", signup_path %></li>
-    </ul>
-    </nav>
+  <div class="navbar-inner">
+    <div class="container">
+      <%= link_to "sample app", root_path, id: "logo" %>
+      <nav>
+        <ul class="nav pull-right">
+          <li><%= link_to "Home", root_path %></li>
+          <li><%= link_to "Help", help_path %></li>
+          <% if signed_in? %>
+            <li><%= link_to "Users", '#' %></li>
+            <li id="fat-menu" class="dropdown">
+              <a href="#" class="dropdown-toggle" data-toggle="dropdown">
+                Account <b class="caret"></b>
+              </a>
+              <ul class="dropdown-menu">
+                <li><%= link_to "Profile", current_user %></li>
+                <li><%= link_to "Settings", '#' %></li>
+                <li class="divider"></li>
+                <li>
+                  <%= link_to "Sign out", signout_path, method: "delete" %>
+                </li>
+              </ul>
+            </li>
+          <% else %>
+            <li><%= link_to "Sign in", signin_path %></li>
+          <% end %>
+        </ul>
+      </nav>
+    </div>
   </div>
-</div>
-</header>
+</header>
\ No newline at end of file
diff --git a/kaku/sample_app/db/migrate/20130815143550_add_remember_token_to_users.rb b/kaku/sample_app/db/migrate/20130815143550_add_remember_token_to_users.rb
new file mode 100644
index 0000000..8a62dcd
--- /dev/null
+++ b/kaku/sample_app/db/migrate/20130815143550_add_remember_token_to_users.rb
@@ -0,0 +1,6 @@
+class AddRememberTokenToUsers < ActiveRecord::Migration
+  def change
+      add_column :users, :remember_token, :string
+      add_index :users, :remember_token
+    end
+end
diff --git a/kaku/sample_app/db/schema.rb b/kaku/sample_app/db/schema.rb
index 3228446..4076ffe 100644
--- a/kaku/sample_app/db/schema.rb
+++ b/kaku/sample_app/db/schema.rb
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20130813135754) do
+ActiveRecord::Schema.define(version: 20130815143550) do
 
   create_table "users", force: true do |t|
     t.string   "name"
@@ -19,8 +19,10 @@
     t.datetime "created_at"
     t.datetime "updated_at"
     t.string   "password_digest"
+    t.string   "remember_token"
   end
 
   add_index "users", ["email"], name: "index_users_on_email", unique: true
+  add_index "users", ["remember_token"], name: "index_users_on_remember_token"
 
 end
diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
index c446650..b175fe9 100644
--- a/kaku/sample_app/spec/requests/authentication_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -1,35 +1,29 @@
-require 'spec_helper'
-
 describe "Authentication" do
 
   subject { page }
 
-  describe "signin page" do
+  describe "signin" do
     before { visit signin_path }
 
-    it { should have_content('Sign in') }
-    it { should have_title('Sign in') }
-  end
-end
+    describe "with invalid information" do
+      before { click_button "Sign in" }
 
-describe "signin" do
-  before { visit signin_path }
+      it { should have_title('Sign in') }
+      it { should have_selector('div.alert.alert-error', text: 'Invalid email/password combination') }
+    end
 
-  describe "with invalid information" do
-    before { click_button "Sign in" }
+    describe "with valid information" do
+      let(:user) { FactoryGirl.create(:user) }
+      before do
+        fill_in "Email",    with: user.email.upcase
+        fill_in "Password", with: user.password
+        click_button "Sign in"
+      end
 
-    it { should have_title('Sign in') }
-    it { should have_selector('div.alert.alert-error', text: 'Invalid') }
-    
-    describe "after visiting another page" do
-      before { click_link "Home" }
-      it { should_not have_selector('div.alert.alert-error') }
-    end
-  end
-  
-  it { should have_title(user.name) }
+      it { should have_title(user.name) }
       it { should have_link('Profile',     href: user_path(user)) }
       it { should have_link('Sign out',    href: signout_path) }
       it { should_not have_link('Sign in', href: signin_path) }
     end
+  end
 end
\ No newline at end of file
diff --git a/kaku/sample_app/spec/requests/user_pages_spec.rb b/kaku/sample_app/spec/requests/user_pages_spec.rb
index df9c173..5f39cf5 100644
--- a/kaku/sample_app/spec/requests/user_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/user_pages_spec.rb
@@ -42,6 +42,15 @@
      it "should create a user" do
        expect { click_button submit }.to change(User, :count).by(1)
      end
+     
+     describe "after saving the user" do
+       before { click_button submit }
+       let(:user) { User.find_by(email: 'user@example.com') }
+     
+       it { should have_link('Sign out') }
+       it { should have_title(user.name) }
+       it { should have_selector('div.alert.alert-success', text: 'Welcome') }
+     end
    end
  end
   

From cbaa9f127789714078dee2e8b26528e7186e8b34 Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Fri, 23 Aug 2013 04:30:35 +0900
Subject: [PATCH 3/7] add chapter 9

---
 .../app/controllers/users_controller.rb       |  32 ++++--
 .../app/views/layouts/_header.html.erb        |   4 +-
 kaku/sample_app/app/views/users/edit.html.erb |  28 +++++
 .../requests/authentication_pages_spec.rb     |  23 +++-
 .../spec/requests/static_pages_spec.rb        |   2 +-
 .../spec/requests/user_pages_spec.rb          | 101 +++++++++++-------
 kaku/sample_app/spec/support/utilities.rb     |  14 +++
 7 files changed, 156 insertions(+), 48 deletions(-)
 create mode 100644 kaku/sample_app/app/views/users/edit.html.erb

diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index 717bbb2..d3175ea 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -2,11 +2,11 @@ class UsersController < ApplicationController
   def new
     @user = User.new
   end
-  
+
   def show
-     @user = User.find(params[:id])
+    @user = User.find(params[:id])
   end
-  
+
   def create
     @user = User.new(user_params)    # Not the final implementation!
     if @user.save
@@ -22,14 +22,30 @@ def destroy
     sign_out
     redirect_to root_path
   end
-  
+
   def sign_out
     self.current_user = nil
     cookies.delete(:remember_token)
   end
-  
+
+  def edit
+    @user = User.find(params[:id])
+  end 
+
+  def update
+    @user = User.find(params[:id])
+    if @user.update_attributes(user_params)
+      flash[:success] = "Profile updated"
+      sign_in @user
+      redirect_to @user
+    else
+      render 'edit'
+
+    end
+  end
+
   private
-      def user_params
-        params.require(:user).permit(:name, :email, :password, :password_confirmation)
-      end
+  def user_params
+    params.require(:user).permit(:name, :email, :password, :password_confirmation)
+  end
 end
diff --git a/kaku/sample_app/app/views/layouts/_header.html.erb b/kaku/sample_app/app/views/layouts/_header.html.erb
index a7a734f..4520677 100644
--- a/kaku/sample_app/app/views/layouts/_header.html.erb
+++ b/kaku/sample_app/app/views/layouts/_header.html.erb
@@ -14,7 +14,7 @@
               </a>
               <ul class="dropdown-menu">
                 <li><%= link_to "Profile", current_user %></li>
-                <li><%= link_to "Settings", '#' %></li>
+                <li><%= link_to "Settings", edit_user_path(current_user) %></li>
                 <li class="divider"></li>
                 <li>
                   <%= link_to "Sign out", signout_path, method: "delete" %>
@@ -28,4 +28,4 @@
       </nav>
     </div>
   </div>
-</header>
\ No newline at end of file
+</header>
diff --git a/kaku/sample_app/app/views/users/edit.html.erb b/kaku/sample_app/app/views/users/edit.html.erb
new file mode 100644
index 0000000..9abf70b
--- /dev/null
+++ b/kaku/sample_app/app/views/users/edit.html.erb
@@ -0,0 +1,28 @@
+<% provide(:title, "Edit user") %>
+<h1>Update your profile</h1>
+
+<div class="row">
+
+  <div class="span6 offset3">
+    <%= form_for(@user) do |f| %>
+      <%= render 'shared/error_messages' %>
+
+      <%= f.label :name %>
+      <%= f.text_field :name %>
+
+      <%= f.label :email %>
+      <%= f.text_field :email %>
+
+      <%= f.label :password %>
+      <%= f.password_field :password %>
+
+      <%= f.label :password_confirmation, "Confirm Password" %>
+      <%= f.password_field :password_confirmation %>
+
+      <%= f.submit "Save changes", class: "btn btn-large btn-primary" %>
+    <% end %>
+
+    <%= gravatar_for @user %>
+    <a href="http://gravatar.com/emails">change</a>
+  </div>
+</div>
diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
index b175fe9..e2b94ce 100644
--- a/kaku/sample_app/spec/requests/authentication_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -22,8 +22,29 @@
 
       it { should have_title(user.name) }
       it { should have_link('Profile',     href: user_path(user)) }
+      it { should have_link('Settings',    href: edit_user_path(user)) }
       it { should have_link('Sign out',    href: signout_path) }
       it { should_not have_link('Sign in', href: signin_path) }
     end
   end
-end
\ No newline at end of file
+
+  describe "authorization" do
+
+    describe "for non-signed-in users" do
+      let(:user) { FactoryGirl.create(:user) }
+
+      describe "in the Users controller" do
+
+        describe "visiting the edit page" do
+          before { visit edit_user_path(user) }
+          it { should have_title('Sign in') }
+        end
+
+        describe "submitting to the update action" do
+          before { patch user_path(user) }
+          specify { expect(response).to redirect_to(signin_path) }
+        end
+      end
+    end
+  end
+end
diff --git a/kaku/sample_app/spec/requests/static_pages_spec.rb b/kaku/sample_app/spec/requests/static_pages_spec.rb
index 70f0ee1..dc5d3ee 100644
--- a/kaku/sample_app/spec/requests/static_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/static_pages_spec.rb
@@ -1,4 +1,4 @@
-require 'spec_helper'
+# require 'spec_helper'
 
 describe "Static pages" do
 
diff --git a/kaku/sample_app/spec/requests/user_pages_spec.rb b/kaku/sample_app/spec/requests/user_pages_spec.rb
index 5f39cf5..022b38f 100644
--- a/kaku/sample_app/spec/requests/user_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/user_pages_spec.rb
@@ -10,7 +10,7 @@
     it { should have_content('Sign up') }
     it { should have_title(full_title('Sign up')) }
   end
-  
+
   describe "profile page" do
     let(:user) { FactoryGirl.create(:user) }
     before { visit user_path(user) }
@@ -18,41 +18,70 @@
     it { should have_content(user.name) }
     it { should have_title(user.name) }
   end
-  
+
   describe "signup" do
 
-   before { visit signup_path }
- 
-   let(:submit) { "Create my account" }
- 
-   describe "with invalid information" do
-     it "should not create a user" do
-       expect { click_button submit }.not_to change(User, :count)
-     end
-   end
- 
-   describe "with valid information" do
-     before do
-       fill_in "Name",         with: "Example User"
-       fill_in "Email",        with: "user@example.com"
-       fill_in "Password",     with: "foobar"
-       fill_in "Confirmation", with: "foobar"
-     end
- 
-     it "should create a user" do
-       expect { click_button submit }.to change(User, :count).by(1)
-     end
-     
-     describe "after saving the user" do
-       before { click_button submit }
-       let(:user) { User.find_by(email: 'user@example.com') }
-     
-       it { should have_link('Sign out') }
-       it { should have_title(user.name) }
-       it { should have_selector('div.alert.alert-success', text: 'Welcome') }
-     end
-   end
- end
-  
-end
+    before { visit signup_path }
+
+    let(:submit) { "Create my account" }
+
+    describe "with invalid information" do
+      it "should not create a user" do
+        expect { click_button submit }.not_to change(User, :count)
+      end
+    end
+
+    describe "with valid information" do
+      before do
+        fill_in "Name",         with: "Example User"
+        fill_in "Email",        with: "user@example.com"
+        fill_in "Password",     with: "foobar"
+        fill_in "Confirmation", with: "foobar"
+      end
+
+      it "should create a user" do
+        expect { click_button submit }.to change(User, :count).by(1)
+      end
+
+      describe "after saving the user" do
+        before { click_button submit }
+        let(:user) { User.find_by(email: 'user@example.com') }
 
+        it { should have_link('Sign out') }
+        it { should have_title(user.name) }
+        it { should have_selector('div.alert.alert-success', text: 'Welcome') }
+      end
+    end
+  end
+
+  describe "edit" do
+    let(:user) { FactoryGirl.create(:user) }
+    before { visit edit_user_path(user) }
+
+    describe "page" do
+      it { should have_content("Update your profile") }
+      it { should have_title("Edit user") }
+      it { should have_link('change', href: 'http://gravatar.com/emails') }
+    end
+
+    describe "with valid information" do
+      let(:new_name)  { "New Name" }
+      let(:new_email) { "new@example.com" }
+      before do
+        fill_in "Name",             with: new_name
+        fill_in "Email",            with: new_email
+        fill_in "Password",         with: user.password
+        fill_in "Confirm Password", with: user.password
+        click_button "Save changes"
+      end
+
+      it { should have_title(new_name) }
+      it { should have_selector('div.alert.alert-success') }
+      it { should have_link('Sign out', href: signout_path) }
+      specify { expect(user.reload.name).to  eq new_name }
+      specify { expect(user.reload.email).to eq new_email }
+    end
+  end
+
+end
+# 
diff --git a/kaku/sample_app/spec/support/utilities.rb b/kaku/sample_app/spec/support/utilities.rb
index 4764035..0b91857 100644
--- a/kaku/sample_app/spec/support/utilities.rb
+++ b/kaku/sample_app/spec/support/utilities.rb
@@ -6,3 +6,17 @@ def full_title(page_title)
     "#{base_title} | #{page_title}"
   end
 end
+
+def sign_in(user, options={})
+  if options[:no_capybara]
+    # Sign in when not using Capybara.
+    remember_token = User.new_remember_token
+    cookies[:remember_token] = remember_token
+    user.update_attribute(:remember_token, User.encrypt(remember_token))
+  else
+    visit signin_path
+    fill_in "Email",    with: user.email
+    fill_in "Password", with: user.password
+    click_button "Sign in"
+  end
+end

From 2acb5c6cc6d2dcbcf18e30091e25557640ba95dc Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Sat, 24 Aug 2013 03:51:01 +0900
Subject: [PATCH 4/7] update chapter 9

---
 .../app/assets/stylesheets/custom.css.scss    | 15 +++-
 .../app/controllers/users_controller.rb       | 17 +++++
 .../sample_app/app/helpers/sessions_helper.rb | 74 +++++++++++++------
 .../app/views/layouts/_header.html.erb        |  2 +-
 .../sample_app/app/views/users/index.html.erb | 12 +++
 .../requests/authentication_pages_spec.rb     | 38 ++++++++++
 .../spec/requests/user_pages_spec.rb          |  5 +-
 kaku/sample_app/tags                          | 54 ++++++++++++++
 8 files changed, 191 insertions(+), 26 deletions(-)
 create mode 100644 kaku/sample_app/app/views/users/index.html.erb
 create mode 100644 kaku/sample_app/tags

diff --git a/kaku/sample_app/app/assets/stylesheets/custom.css.scss b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
index e24f2f5..fc34580 100644
--- a/kaku/sample_app/app/assets/stylesheets/custom.css.scss
+++ b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
@@ -147,4 +147,17 @@ input {
 .field_with_errors {
   @extend .control-group;
   @extend .error;
- }
\ No newline at end of file
+ }
+
+.users {
+  list-style: none;
+  margin: 0;
+  li {
+    overflow: auto;
+    padding: 10px 0;
+    border-top: 1px solid $grayLighter;
+    &:last-child {
+      border-bottom: 1px solid $grayLighter;
+    }
+  }
+}
diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index d3175ea..5298aab 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -1,4 +1,7 @@
 class UsersController < ApplicationController
+  before_action :currect_user,only: [:edit, :update]
+  before_action :signed_in_user,only: [:index, :edit, :update]
+
   def new
     @user = User.new
   end
@@ -44,8 +47,22 @@ def update
     end
   end
 
+  def index
+    @users = User.all
+  end
+
   private
   def user_params
     params.require(:user).permit(:name, :email, :password, :password_confirmation)
   end
+
+  def signed_in_user
+    redirect_to signin_url, notice: "Please sign in." unless signed_in?
+
+  end
+
+  def currect_user
+    @user = User.find(params[:id]) 
+    redirect_to(root_path) unless current_user?(@user)
+  end
 end
diff --git a/kaku/sample_app/app/helpers/sessions_helper.rb b/kaku/sample_app/app/helpers/sessions_helper.rb
index 84350de..a7c37a6 100644
--- a/kaku/sample_app/app/helpers/sessions_helper.rb
+++ b/kaku/sample_app/app/helpers/sessions_helper.rb
@@ -1,26 +1,54 @@
 module SessionsHelper
   def sign_in(user)
-      remember_token = User.new_remember_token
-      cookies.permanent[:remember_token] = remember_token
-      user.update_attribute(:remember_token, User.encrypt(remember_token))
-      self.current_user = user
+    remember_token = User.new_remember_token
+    cookies.permanent[:remember_token] = remember_token
+    user.update_attribute(:remember_token, User.encrypt(remember_token))
+    self.current_user = user
+  end
+
+  def signed_in?
+    !current_user.nil?
+  end
+
+  def current_user=(user)
+    @current_user = user
+  end
+
+  def current_user
+    remember_token = User.encrypt(cookies[:remember_token])
+    @current_user ||= User.find_by(remember_token: remember_token)
+  end
+
+  def current_user?(user)
+    user == current_user
+  end
+
+  def sign_out
+    self.current_user = nil
+    cookies.delete(:remember_token)
+  end
+
+  def redirect_back_or(default)
+    redirect_to(seeesion[:return_to] || default)
+    session.delete(:return_to)
+  end
+
+  def store_location
+    session[:return_to] = request.fullpath
+  end
+
+  def create
+    user = User.find_by(email: params[:session][:email].downcase)
+    if user && user.authenticate(session_params)
+      sign_in user
+      redirect_back_or user
+    else
+      flash.now[:error] = 'Invalid email/password combination'
+      render 'new'
     end
-  
-   def signed_in?
-      !current_user.nil?
-   end
-      
-   def current_user=(user)
-        @current_user = user
-   end
- 
-   def current_user
-       remember_token = User.encrypt(cookies[:remember_token])
-       @current_user ||= User.find_by(remember_token: remember_token)
-   end
-   
-   def sign_out
-     self.current_user = nil
-     cookies.delete(:remember_token)
-   end
-end
\ No newline at end of file
+  end
+
+  def session_params
+    params.require(:session).permit(:email, :password)
+  end
+end
diff --git a/kaku/sample_app/app/views/layouts/_header.html.erb b/kaku/sample_app/app/views/layouts/_header.html.erb
index 4520677..df44a27 100644
--- a/kaku/sample_app/app/views/layouts/_header.html.erb
+++ b/kaku/sample_app/app/views/layouts/_header.html.erb
@@ -7,7 +7,7 @@
           <li><%= link_to "Home", root_path %></li>
           <li><%= link_to "Help", help_path %></li>
           <% if signed_in? %>
-            <li><%= link_to "Users", '#' %></li>
+            <li><%= link_to "Users", users_path %></li>
             <li id="fat-menu" class="dropdown">
               <a href="#" class="dropdown-toggle" data-toggle="dropdown">
                 Account <b class="caret"></b>
diff --git a/kaku/sample_app/app/views/users/index.html.erb b/kaku/sample_app/app/views/users/index.html.erb
new file mode 100644
index 0000000..ca6e4a1
--- /dev/null
+++ b/kaku/sample_app/app/views/users/index.html.erb
@@ -0,0 +1,12 @@
+<% provide(:title, 'All users') %>
+<h1>All users</h1>
+
+<ul class="users">
+  <% @users.each do |user| %>
+    <li>
+      <%= gravatar_for user %>
+      <%= link_to user.name, user %>
+    </li>
+  <% end %>
+</ul>
+
diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
index e2b94ce..9dcff00 100644
--- a/kaku/sample_app/spec/requests/authentication_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -26,6 +26,7 @@
       it { should have_link('Sign out',    href: signout_path) }
       it { should_not have_link('Sign in', href: signin_path) }
     end
+
   end
 
   describe "authorization" do
@@ -47,4 +48,41 @@
       end
     end
   end
+
+  describe "as wrong user" do
+    let(:user) { FactoryGirl.create(:user) }
+    let(:wrong_user) { FactoryGirl.create(:user, email: "wrong@example.com") }
+    before { sign_in user, no_capybara: true }
+
+    describe "visiting Users#edit page" do
+      before { visit edit_user_path(wrong_user) }
+      it { should_not have_title(full_title('Edit user')) }
+    end
+
+    describe "submitting a PATCH request to the Users#update action" do
+      before { patch user_path(wrong_user) }
+      specify { expect(response).to redirect_to(root_path) }
+    end
+  end
+
+  describe "for non-signed-in users" do
+    let(:user) { FactoryGirl.create(:user) }
+
+    describe "when attempting to visit a protected page" do
+      before do
+        visit edit_user_path(user)
+        fill_in "Email",    with: user.email
+        fill_in "Password", with: user.password
+        click_button "Sign in"
+      end
+
+      describe "after signing in" do
+
+        it "should render the desired protected page" do
+          expect(page).to have_title('Edit user')
+        end
+      end
+    end
+  end
+
 end
diff --git a/kaku/sample_app/spec/requests/user_pages_spec.rb b/kaku/sample_app/spec/requests/user_pages_spec.rb
index 022b38f..5f4f4c5 100644
--- a/kaku/sample_app/spec/requests/user_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/user_pages_spec.rb
@@ -56,7 +56,10 @@
 
   describe "edit" do
     let(:user) { FactoryGirl.create(:user) }
-    before { visit edit_user_path(user) }
+    before  do
+      sign_in user
+      visit edit_user_path(user) 
+    end
 
     describe "page" do
       it { should have_content("Update your profile") }
diff --git a/kaku/sample_app/tags b/kaku/sample_app/tags
new file mode 100644
index 0000000..edd74b1
--- /dev/null
+++ b/kaku/sample_app/tags
@@ -0,0 +1,54 @@
+!_TAG_FILE_FORMAT	2	/extended format; --format=1 will not append ;" to lines/
+!_TAG_FILE_SORTED	1	/0=unsorted, 1=sorted, 2=foldcase/
+!_TAG_PROGRAM_AUTHOR	Darren Hiebert	/dhiebert@users.sourceforge.net/
+!_TAG_PROGRAM_NAME	Exuberant Ctags	//
+!_TAG_PROGRAM_URL	http://ctags.sourceforge.net	/official site/
+!_TAG_PROGRAM_VERSION	5.8	//
+AddIndexToUsersEmail	db/migrate/20130730142004_add_index_to_users_email.rb	/^class AddIndexToUsersEmail < ActiveRecord::Migration$/;"	c
+AddPasswordDigestToUsers	db/migrate/20130730151702_add_password_digest_to_users.rb	/^class AddPasswordDigestToUsers < ActiveRecord::Migration$/;"	c
+AddRememberTokenToUsers	db/migrate/20130815143550_add_remember_token_to_users.rb	/^class AddRememberTokenToUsers < ActiveRecord::Migration$/;"	c
+Application	config/application.rb	/^  class Application < Rails::Application$/;"	c	class:SampleApp
+ApplicationController	app/controllers/application_controller.rb	/^class ApplicationController < ActionController::Base$/;"	c
+ApplicationHelper	app/helpers/application_helper.rb	/^module ApplicationHelper$/;"	m
+CreateUsers	db/migrate/20130730131044_create_users.rb	/^class CreateUsers < ActiveRecord::Migration$/;"	c
+SampleApp	config/application.rb	/^module SampleApp$/;"	m
+SessionsController	app/controllers/sessions_controller.rb	/^class SessionsController < ApplicationController$/;"	c
+SessionsHelper	app/helpers/sessions_helper.rb	/^module SessionsHelper$/;"	m
+StaticPagesController	app/controllers/static_pages_controller.rb	/^class StaticPagesController < ApplicationController$/;"	c
+StaticPagesHelper	app/helpers/static_pages_helper.rb	/^module StaticPagesHelper$/;"	m
+User	app/models/user.rb	/^class User < ActiveRecord::Base$/;"	c
+UsersController	app/controllers/users_controller.rb	/^class UsersController < ApplicationController$/;"	c
+UsersHelper	app/helpers/users_helper.rb	/^module UsersHelper$/;"	m
+about	app/controllers/static_pages_controller.rb	/^  def about$/;"	f	class:StaticPagesController
+change	db/migrate/20130730131044_create_users.rb	/^  def change$/;"	f	class:CreateUsers
+change	db/migrate/20130730142004_add_index_to_users_email.rb	/^  def change$/;"	f	class:AddIndexToUsersEmail
+change	db/migrate/20130730151702_add_password_digest_to_users.rb	/^  def change$/;"	f	class:AddPasswordDigestToUsers
+change	db/migrate/20130815143550_add_remember_token_to_users.rb	/^  def change$/;"	f	class:AddRememberTokenToUsers
+contact	app/controllers/static_pages_controller.rb	/^  def contact$/;"	f	class:StaticPagesController
+create	app/controllers/sessions_controller.rb	/^    def create$/;"	f	class:SessionsController
+create	app/controllers/users_controller.rb	/^  def create$/;"	f	class:UsersController
+create_remember_token	app/models/user.rb	/^      def create_remember_token$/;"	f	class:User
+currct_user	app/controllers/users_controller.rb	/^  def currct_user$/;"	f	class:UsersController
+current_user	app/helpers/sessions_helper.rb	/^   def current_user$/;"	f	class:SessionsHelper
+current_user=	app/helpers/sessions_helper.rb	/^   def current_user=(user)$/;"	f	class:SessionsHelper
+destroy	app/controllers/sessions_controller.rb	/^    def destroy$/;"	f	class:SessionsController
+destroy	app/controllers/users_controller.rb	/^  def destroy$/;"	f	class:UsersController
+edit	app/controllers/users_controller.rb	/^  def edit$/;"	f	class:UsersController
+encrypt	app/models/user.rb	/^    def User.encrypt(token)$/;"	F	class:User
+full_title	app/helpers/application_helper.rb	/^  def full_title(page_title)$/;"	f	class:ApplicationHelper
+full_title	spec/support/utilities.rb	/^def full_title(page_title)$/;"	f
+gravatar_for	app/helpers/users_helper.rb	/^    def gravatar_for(user)$/;"	f	class:UsersHelper
+help	app/controllers/static_pages_controller.rb	/^  def help$/;"	f	class:StaticPagesController
+home	app/controllers/static_pages_controller.rb	/^  def home$/;"	f	class:StaticPagesController
+new	app/controllers/sessions_controller.rb	/^  def new$/;"	f	class:SessionsController
+new	app/controllers/users_controller.rb	/^  def new$/;"	f	class:UsersController
+new_remember_token	app/models/user.rb	/^  def User.new_remember_token$/;"	F	class:User
+show	app/controllers/users_controller.rb	/^  def show$/;"	f	class:UsersController
+sign_in	app/helpers/sessions_helper.rb	/^  def sign_in(user)$/;"	f	class:SessionsHelper
+sign_in	spec/support/utilities.rb	/^def sign_in(user, options={})$/;"	f
+sign_out	app/controllers/users_controller.rb	/^  def sign_out$/;"	f	class:UsersController
+sign_out	app/helpers/sessions_helper.rb	/^   def sign_out$/;"	f	class:SessionsHelper
+signed_in?	app/helpers/sessions_helper.rb	/^   def signed_in?$/;"	f	class:SessionsHelper
+signed_in_user	app/controllers/users_controller.rb	/^  def signed_in_user$/;"	f	class:UsersController
+update	app/controllers/users_controller.rb	/^  def update$/;"	f	class:UsersController
+user_params	app/controllers/users_controller.rb	/^  def user_params$/;"	f	class:UsersController

From 6530c74d839fcf2bf49c1938b0d7d6cbf09d627c Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Mon, 26 Aug 2013 23:11:22 +0900
Subject: [PATCH 5/7] chapter 9 is completed

---
 kaku/sample_app/Gemfile                       |   3 ++
 kaku/sample_app/Gemfile.lock                  |   8 +++
 .../app/controllers/.users_controller.rb.swp  | Bin 0 -> 12288 bytes
 .../app/controllers/users_controller.rb       |  12 +++--
 .../app/views/users/._user.html.erb.swo       | Bin 0 -> 12288 bytes
 .../app/views/users/._user.html.erb.swp       | Bin 0 -> 12288 bytes
 .../app/views/users/.index.html.erb.swo       | Bin 0 -> 12288 bytes
 .../sample_app/app/views/users/_user.html.erb |   8 +++
 .../sample_app/app/views/users/index.html.erb |   7 ++-
 .../20130826130430_add_admin_to_users.rb      |   5 ++
 kaku/sample_app/db/schema.rb                  |   3 +-
 kaku/sample_app/lib/tasks/sample_data.rake    |  20 ++++++++
 kaku/sample_app/spec/factories.rb             |   9 ++--
 kaku/sample_app/spec/models/.user_spec.rb.swn | Bin 0 -> 12288 bytes
 .../.authentication_pages_spec.rb.swp         | Bin 0 -> 12288 bytes
 .../requests/authentication_pages_spec.rb     |  17 +++++++
 .../spec/requests/user_pages_spec.rb          |  46 ++++++++++++++++++
 17 files changed, 127 insertions(+), 11 deletions(-)
 create mode 100644 kaku/sample_app/app/controllers/.users_controller.rb.swp
 create mode 100644 kaku/sample_app/app/views/users/._user.html.erb.swo
 create mode 100644 kaku/sample_app/app/views/users/._user.html.erb.swp
 create mode 100644 kaku/sample_app/app/views/users/.index.html.erb.swo
 create mode 100644 kaku/sample_app/app/views/users/_user.html.erb
 create mode 100644 kaku/sample_app/db/migrate/20130826130430_add_admin_to_users.rb
 create mode 100644 kaku/sample_app/lib/tasks/sample_data.rake
 create mode 100644 kaku/sample_app/spec/models/.user_spec.rb.swn
 create mode 100644 kaku/sample_app/spec/requests/.authentication_pages_spec.rb.swp

diff --git a/kaku/sample_app/Gemfile b/kaku/sample_app/Gemfile
index 2c779e7..3eb9bf0 100644
--- a/kaku/sample_app/Gemfile
+++ b/kaku/sample_app/Gemfile
@@ -4,6 +4,9 @@ ruby '2.0.0'
 gem 'rails', '4.0.0'
 gem 'bootstrap-sass', '2.3.2.0'
 gem 'bcrypt-ruby', '3.0.1'
+gem 'faker', '1.1.2'
+gem 'will_paginate', '3.0.4'
+gem 'bootstrap-will_paginate', '0.0.9'
 group :development, :test do
   gem 'sqlite3', '1.3.7'
   gem 'rspec-rails', '2.13.1'
diff --git a/kaku/sample_app/Gemfile.lock b/kaku/sample_app/Gemfile.lock
index 13e4096..8baa423 100644
--- a/kaku/sample_app/Gemfile.lock
+++ b/kaku/sample_app/Gemfile.lock
@@ -37,6 +37,8 @@ GEM
     bcrypt-ruby (3.0.1)
     bootstrap-sass (2.3.2.0)
       sass (~> 3.2)
+    bootstrap-will_paginate (0.0.9)
+      will_paginate
     builder (3.1.4)
     capybara (2.1.0)
       mime-types (>= 1.16)
@@ -63,6 +65,8 @@ GEM
     factory_girl_rails (4.2.1)
       factory_girl (~> 4.2.0)
       railties (>= 3.0.0)
+    faker (1.1.2)
+      i18n (~> 0.5)
     ffi (1.9.0)
     formatador (0.2.4)
     guard (1.8.1)
@@ -190,6 +194,7 @@ GEM
       nokogiri (>= 1.2.0)
       rack (>= 1.0)
       rack-test (>= 0.5.3)
+    will_paginate (3.0.4)
     xpath (2.0.0)
       nokogiri (~> 1.3)
 
@@ -199,10 +204,12 @@ PLATFORMS
 DEPENDENCIES
   bcrypt-ruby (= 3.0.1)
   bootstrap-sass (= 2.3.2.0)
+  bootstrap-will_paginate (= 0.0.9)
   capybara (= 2.1.0)
   childprocess (= 0.3.6)
   coffee-rails (= 4.0.0)
   factory_girl_rails (= 4.2.1)
+  faker (= 1.1.2)
   guard-rspec (= 2.5.0)
   guard-spork (= 1.5.0)
   jbuilder (= 1.0.2)
@@ -218,3 +225,4 @@ DEPENDENCIES
   turbolinks (= 1.1.1)
   uglifier (= 2.1.1)
   webrat
+  will_paginate (= 3.0.4)
diff --git a/kaku/sample_app/app/controllers/.users_controller.rb.swp b/kaku/sample_app/app/controllers/.users_controller.rb.swp
new file mode 100644
index 0000000000000000000000000000000000000000..6ffa31fef2c116eaf156482950ac457400ea6db9
GIT binary patch
literal 12288
zcmeI2&5ImG7>6qoNYHGQ<P=1xokcP$o1P>dl*SN04=PGfHWI@+)O5eIQ<?6nPE~c*
z+;a7g(6a{*dexJHH$jMA1VvF%JO;0R{i?cqXC^af@VHdNGt*sDAMg8ARUdY1boTO#
zuka_5^9<KRjHTk?*WB-neRiBNqqXzJ|8*5Q6U9VZmxQ}qmqMx)jRq54(qJm4^}q;O
z*h@xVqs$E|LzOV?FIJRQK|@hh15c)vGrB0q*g<XaIh>UwX0&3ISQHIJ14{;KH$L;^
z8hiZwxw9L+b$;^1_EMEt5Di2F(Lgj14MYRcKr|2yL<0xgfU6F%zmej7;3aUV1z+)s
z2BLvzAR34UqJd~28i)p>foLEahz6p817bkrjD2^Mu~YXWA^iW}{|(^wgN(fk-U10Y
z12({Ma1<N?f8cz;H{dI98+;CK0R`R!kAgLD7~EN7>^JZe_z`>!J_7Fm4J4R=E8qe+
z1x|t!;0XBn7-9t9f-k`b;1;+Ho&}GAb+87Gfy3ah2N?Sk+yS40Pr%3EL+~DW8N2|V
z2Ltdc^8W?=0KNxbfcL?5Fa_7Z6|eyw0m0V+SpzYRXdoJh2BLvzAR34UV1N{<oN?ZK
za&9P>24^*gPWSz>&|xLqWRusbAZvM68$-$s{Q=EH<fT*>(Ke?s4-cW7{jc6G_Mi5h
zZlW>g;g(<E+kTj_RCyoAMn!3_rZV5z<f!9^48b5$->w@pG@r|XTe+*G8rG)R;z~Q2
zQObLl3KEvWZ(ORR*QMtxQ$Cz!wO_C>h!3#|C^2-shOd4af=?<krF8vNiITQ>N;n^j
zannjzyQfV)ck55Lj-@GulUn(#eMY_$2=}R?q%!h`aMY#dM-5_ZXQmRnQlSRy>>{ns
zk$>9hx`aG>d%g=l(dgV?n97_CKaDAOr<pII!cw?dSP0FqZMjzhLknf&LfFaG)Ye&s
zRkDNldN}esmId*;$`N7S3$5k2X_hplL*bl}quP<}&!v7ZYXIE^VWIanJs!sR_qEfu
z^BK=e$+VtIvPn(_!Dniyq;iDGaC%B%dN{XKjFb5dfHajX+8%=zT`%-HzYcwV)-S^l
z<O*TisDPX-4ng0fJZXga!sQKsFhjL==<W%R-7fCFXLGD*@1Cc4MRadak>N}?cbdBi
z@z=xIZT?JEtv7)}&(gZspKU8{G^=W1ZV=JJtaDr&{8jD32-x+a;L;xvFY(3++hiRX
zhK+A%)xPMq#nKC-ZDuEWZ+_D6j;5`KxO}Y<jkUq?^vrKip3dHHTijn-6*p6!cJ7zz
zFTOdpn(BCe`R(Z63|N5pYWBg-@^JI-w*AI;HOjE-Y<Nf7=k^cJ^QZi*6fz6OX65W3
DugXVQ

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index 5298aab..ac679ac 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -1,6 +1,7 @@
 class UsersController < ApplicationController
   before_action :currect_user,only: [:edit, :update]
   before_action :signed_in_user,only: [:index, :edit, :update]
+  before_action :admin_user,     only: :destroy
 
   def new
     @user = User.new
@@ -22,8 +23,9 @@ def create
   end
 
   def destroy
-    sign_out
-    redirect_to root_path
+    User.find(params[:id]).destroy
+    flash[:success] = "User destroyed."
+    redirect_to users_url
   end
 
   def sign_out
@@ -48,7 +50,7 @@ def update
   end
 
   def index
-    @users = User.all
+    @users = User.paginate(page: params[:page])
   end
 
   private
@@ -65,4 +67,8 @@ def currect_user
     @user = User.find(params[:id]) 
     redirect_to(root_path) unless current_user?(@user)
   end
+
+  def admin_user
+    redirect_to(root_path) unless current_user.admin?
+  end
 end
diff --git a/kaku/sample_app/app/views/users/._user.html.erb.swo b/kaku/sample_app/app/views/users/._user.html.erb.swo
new file mode 100644
index 0000000000000000000000000000000000000000..a3f51d487acdb4542cdb522f77b0364e3cbd9d78
GIT binary patch
literal 12288
zcmeI&%}N6?5C`z+$%`N8(aX3}QLK$02c=XC-aH5*RPZ1rc2m1{ce7-(dQe}%htfCk
zEcgH(bh53`L&2L!`3HuCN!r=@9d~oReQ|P1`?X!cV?l`H*7Et~yAUsPLRe#*PyaSz
z(@}BH<gQk(LX)T{9rGjEGl`ac)i0z~QJkMybE`W}W>#m)4tH{uWU+3mER#O&B7L9B
zBG)#TZ9mm|E{SW}UXLk&6a*kJUZ8N@t%F&yx4W~w8m!RLVr%?4WFY_n2tWV=5P$##
zAOL}h6>!;<_~P!SIc7MfhQSjC1Rwwb2tWV=5P$##AOHafKmY<0BA`McKKNVz>O42Z
z-~atPfKOh(alCRob6j!kb8K>y=O(0gv;hGKKmY;|fB*y_009U<00Ms_K>v0$BvC`g
z(UIVJWLY7dhE(xsqEI<irw8hov>Vx^PQj%qC@-vT2J|#I^+=7%A;nSJZ#zRlsAKJP
zP$hqpy-JC8JrmZcKFC)^qe4-aI)$}5b%X2fDomoZNo#AgGMaC$`@h)mRYoh6H{?^5
Y=s}5}?HjA^_-SpsYiwD&-0=N<1C0@rDF6Tf

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/app/views/users/._user.html.erb.swp b/kaku/sample_app/app/views/users/._user.html.erb.swp
new file mode 100644
index 0000000000000000000000000000000000000000..10a3efb97a539ccc54a9bf7930c9fd21d9460559
GIT binary patch
literal 12288
zcmeI&u};G<5C-5YVg!L;WHF#_C@y7SDcu>6pc1UnwKXKfi6h%B&%(xYATjYKyaFQw
z*rAA}Dl3ZqlTJR}#fkilNyfdK^9ymB^eMzP(eu^b$iEXkZ4g;wd~E*}+Duqy#`&bF
zrl#b)TCz!Irc|=vVkRx;+Fe?6uO?pBR@H156USw(RmycOW6pE+;N;9H>tq_2B=e<C
zlpQa509p`$zzTs)I_V$x4iEOl?#}g!>o9@<1Rwwb2tWV=5P$##+9=@b4t<7$t%Y0<
z*;!;*5D<U>1Rwwb2tWV=5P$##AOHafv_ycXM2}lUFCpXi|M(8zBh+spUw`^7IV+9<
z0SG_<0uX=z1Rwwb2tWV=5cux`BE&%Id`Pic#CK!RJrg>wiqsp?{2^a)sg9abbcYnj
Rcb4bu*`~L~{tn{Zz5rG&Ps#uQ

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/app/views/users/.index.html.erb.swo b/kaku/sample_app/app/views/users/.index.html.erb.swo
new file mode 100644
index 0000000000000000000000000000000000000000..17219501ba60d6e56a93a161e40f8437f035b9c7
GIT binary patch
literal 12288
zcmeI&O-jTt7zW_z)?ak#CXNg$Xyea9kvb^2Q4mznr5dNvMl+L=q$=prJGd3^;3d3+
zcm$82U+Unh;C^@mFHO_$YbVdL(~G5(-F?26tS}nmj6EMt9i4tM_A<<vvo^%#|Aw(`
zX>#jBQq3~kk-A&cBy!tP;zr(-!bxrXfwR}D9Yo<&Azkl^mz~0>Gg%ZO=2ojaFG{bR
z7rL9N`y>w?lPGsl^8hSC00Q*_Ww=~iA30uKSzelHO!LW!<N7+RLI45~fB*y_009U<
z00Mn05Q+izO}iVU3{eJpp#ug4AOHafKmY;|fB*y_009U<00Mm?AT!3kMi~=hv?2Qc
zKfVL_p!qxHjq*x)qC8N}DJPUY$_^#=RDFG7fo(tl0uX=z1Rwwb2tWV=5P$##dID*4
zliz7$&I);@yD})=Y_U|7ro}i<n_P9XxWZ|q!sy>wJfS{E7nS2%@niPCqTd?otd@PE
zWIN}X<&UxIvATO{c-u(tHyhPw@C|xk?XSp}TieF)swfq7Ms>V!_Eu+VZX@Vm)B>OV
KE18{-cmDw>7I&fm

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/app/views/users/_user.html.erb b/kaku/sample_app/app/views/users/_user.html.erb
new file mode 100644
index 0000000..5abcbc8
--- /dev/null
+++ b/kaku/sample_app/app/views/users/_user.html.erb
@@ -0,0 +1,8 @@
+<li>
+<%= gravatar_for user %>
+<%= link_to user.name, user %>
+<% if current_user.admin? && !current_user?(user) %>
+  | <%= link_to "delete", user, method: :delete,
+    data: { confirm: "You sure?" } %>
+  <% end %>
+  </li>
diff --git a/kaku/sample_app/app/views/users/index.html.erb b/kaku/sample_app/app/views/users/index.html.erb
index ca6e4a1..a80877e 100644
--- a/kaku/sample_app/app/views/users/index.html.erb
+++ b/kaku/sample_app/app/views/users/index.html.erb
@@ -1,12 +1,11 @@
 <% provide(:title, 'All users') %>
 <h1>All users</h1>
-
+<%= will_paginate %>
 <ul class="users">
   <% @users.each do |user| %>
     <li>
-      <%= gravatar_for user %>
-      <%= link_to user.name, user %>
+       <%= render user %>
     </li>
   <% end %>
 </ul>
-
+<%= will_paginate %>
diff --git a/kaku/sample_app/db/migrate/20130826130430_add_admin_to_users.rb b/kaku/sample_app/db/migrate/20130826130430_add_admin_to_users.rb
new file mode 100644
index 0000000..2ddf290
--- /dev/null
+++ b/kaku/sample_app/db/migrate/20130826130430_add_admin_to_users.rb
@@ -0,0 +1,5 @@
+class AddAdminToUsers < ActiveRecord::Migration
+  def change
+    add_column :users, :admin, :boolean
+  end
+end
diff --git a/kaku/sample_app/db/schema.rb b/kaku/sample_app/db/schema.rb
index 4076ffe..0a064aa 100644
--- a/kaku/sample_app/db/schema.rb
+++ b/kaku/sample_app/db/schema.rb
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20130815143550) do
+ActiveRecord::Schema.define(version: 20130826130430) do
 
   create_table "users", force: true do |t|
     t.string   "name"
@@ -20,6 +20,7 @@
     t.datetime "updated_at"
     t.string   "password_digest"
     t.string   "remember_token"
+    t.boolean  "admin"
   end
 
   add_index "users", ["email"], name: "index_users_on_email", unique: true
diff --git a/kaku/sample_app/lib/tasks/sample_data.rake b/kaku/sample_app/lib/tasks/sample_data.rake
new file mode 100644
index 0000000..ebaff3d
--- /dev/null
+++ b/kaku/sample_app/lib/tasks/sample_data.rake
@@ -0,0 +1,20 @@
+namespace :db do
+  desc "Fill database with sample data"
+  task populate: :environment do
+
+    admin = User.create!(name: "Example User",
+                 email: "example@railstutorial.org",
+                 password: "foobar",
+                 password_confirmation: "foobar",
+                 admin: true)
+    99.times do |n|
+      name  = Faker::Name.name
+      email = "example-#{n+1}@railstutorial.org"
+      password  = "password"
+      User.create!(name: name,
+                   email: email,
+                   password: password,
+                   password_confirmation: password)
+    end
+  end
+end
diff --git a/kaku/sample_app/spec/factories.rb b/kaku/sample_app/spec/factories.rb
index 2b4e8d3..3701d2d 100644
--- a/kaku/sample_app/spec/factories.rb
+++ b/kaku/sample_app/spec/factories.rb
@@ -1,8 +1,11 @@
 FactoryGirl.define do
   factory :user do
-    name     "Michael Hartl"
-    email    "michael@example.com"
+    sequence(:name)  { |n| "Person #{n}" }
+    sequence(:email) { |n| "person_#{n}@example.com"}
     password "foobar"
     password_confirmation "foobar"
+    factory :admin do
+      admin true
+    end
   end
-end
\ No newline at end of file
+end
diff --git a/kaku/sample_app/spec/models/.user_spec.rb.swn b/kaku/sample_app/spec/models/.user_spec.rb.swn
new file mode 100644
index 0000000000000000000000000000000000000000..821db5e2154d9110083892d7c985839a3e662599
GIT binary patch
literal 12288
zcmeI2PiS049LFb$|6Bi5JqnXoB%3zb%^zw*s*ozdMktj?DkAnVyKi>)C2!xnzM0oF
zwjxxp2g$*6MLc*?d+I?!#Dlkb5(|n4Jy#U8D&(f$nfGS@b$26zmoN*T<n7FFW`4i#
z{AT8nOm*h;%1L^(JV)?(n2?WW53IiV8zCR;BP10<>Ehi!k*Kk#DWoc!r$Dq=7!PPv
zX^IxFY_N^2lCm(8FQ#Ih*Hk4*dBW17MzU5Cai1kgMJBvfX^DVGvXV)j`nsT;RtI$L
zikt#Yfl&%%sy@B2e{FtlcIKcrP9Ht6Hp<%7IR%^oP64NYQ@|<U6mSYS1)KtVPyv;U
zk-rhw9iR!u3h>K)oB~b(r+`zyDc}@v3OEIv0!{&^fK$LJ;1t*+3b25Xx9%k5=v@d1
z|Nqy21NiwNLT-ZZ!H1v$o&q}$67nbb1N;Pj1YdwFAO<JE<KX6gLcRp=fh*t=;2;3A
z;2?Me{DnIPzk*-DH{fe<9q79UmjDMoI0NRvV_@e2LT-WI!FBKv*anxu+u#*&419M#
zAy>g=z`)Dk6j%W#z!P8$T)U5ucR&LygJWPGOoJ(~b1(D&Ux97V0vrV3d2k#ofqmfC
zJ%oG)J_YZBRqz5>0psAt-GqD#-UnyEX|M)7@B{S!99#oe!6#rFNboFp8Y}=aPkSWy
zTo_J)|49L^`{gk<H~oX+!{e^Uyy&(9N<$?}?c(-B-Vx!Z06&W--D%#FZnl{67H?H?
zO-YFj9#7H>R5nEx1%50Pt#ZE_v3P^NVZ5pGx=1-pmh{D@vSjDDsR_8OrD2s*&-O-5
zZypT<K}$QJ{jEK252ObP<8v$ugJKwpqMm^gCgr9`1NuxcvMumyBCdyNi>Xk=sP&jf
z578q<KOMI=L)D~=+GbQWnVOJrQs`(?WgYFfN~ylK71p=lCqIuzRWg^k;FtB*x7|&a
zmC#YtStN5o^wf2QXtd;K>ChhFuo0Njh^x}#P&++6b&<t^Zzh0cs>x#&)|lcYuMp9j
z92~yY*m^xE<}RNp{2ew_KK-_%A>-vUYK=OhnFu>Q>yXxTHq}FfRoyCa+{23&i-|U0
z>;QdPF);m9mc|rAXPk;U?G}i(xN3^PI%0D%RQ(xm94{usTG4#&bRPM*>&JcLm{|eE
z#F;tkuQyihtj*hGNsUQ9qE*{I$P!~##ErE?X;)5T>S;az3xbqONkd6llyVkqQN^&D
z`(y1y(|JP5=jm-G)uyu1pzx7)&jp+_b$&5sVN-nLvdmeniDgeO_LyDlw?jWqZoaBT
zTdE6De(uysdfZ=oX?l5esa~#@McSbCRNu{%${4IClpU@vRoUz1TKt;n4aw@|dleR6
z?v)96h)7tu*eA3`#<TyT4YovVlX|I-(x+HxyDQXZxQj+pHPOnmkSSklrZwW{&BfDl
zTS!zuq|`S;p+WKeaPfVRa(3U)oAs{RbsNLl=8@hwde04`Q1`KMA>TD(tR750cIrb%
zW_5jEMw@y}lHQwXB;rQ@L}9`1Hd0^0QqLPOP`-39l0N8gnOE|-#s>`6cOKpzS20=<
z*x<ozRHMi0ITKmX3S)aPSe@-!RHD&{_;_j2SWTMsVC(e0IBrUYY#in=G`%yWaBgRc
zQ^^%1rxPm8_=HuV>o~Bl1J<ja^R2xia(BC$QRtcoZ0t%{U(M+>)THY~%eVbumiA4<
zzPIQZ9%gF~p`O=;(cRl7|IW$}!UmUWw6RIJ$x(jlEP(+cky%w=GDkv~Rg>$gn~wNc
zmwTdIq#m{a><FGsk|90V)}01ZWQb{AY{G$cqq$zoT54`)W?`wJ&+aldDo;1=J+HCo
v^MgL-n<X77+AinYmnrwAC~5Bn`i;Q6Jf{3?7UG?ALcfmrO&%pYogn`JbsP8?

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/spec/requests/.authentication_pages_spec.rb.swp b/kaku/sample_app/spec/requests/.authentication_pages_spec.rb.swp
new file mode 100644
index 0000000000000000000000000000000000000000..c5e74e20eefadc206402327a4b14246f94ede208
GIT binary patch
literal 12288
zcmeI2&yN&E6vqnzQ5O6e^uVPUOlDShXJ9#KHZh923JFFcpeGr7x@&fd?dfW(YxV~l
zyr}U;^q|JGCV0_^7Zdg5jf3Dpy$B>~;vb-iUL^W`)!oxQyED6hCL~y$d}eyPU;TLB
z_v**)R%_1-2cP8+*QXe+yBOR2^3Lbq`<=0`?_f+TW$5vGSEzh1?5M=l?OmX{o{WYR
zYIIarH0HdyUPF5_Ob%;xLinZ;YY}@ody{zGI227UjvGlV{Du~<^h9EkhSxJ45gF-w
zMyjY8d$S^Gl1W{+hBW3LIR%^og#ta(o_u6G+c&j$&+f`De(ycUig)hLDc}@v3OEIv
z0!{&^fK$LJ;1u{@C}83Z>~DB_3y@$#2EN?o6mSYS1)Ks-0jGddz$xGqa0)mDoB~b(
zr@&33fEO@!H-7m)w-FBE|NrzifM4!p>}PNRoClwScfmX01b71M2ls<daZcbPa0a{z
zo&%48G4SJd#=ZidfwSOEZ~$xqUv6XUB$x(MU@v$GJP5XdG4RtE%7U}t4e%n^3pRp3
zw=(tzI0xPbbD#;1gBrMUJ7ZsfPr!%Z18@o)0{4L(;L>f3T?D5=3+w_rz!=yFu54lK
zFK`*01ud`-Oo1)n`&-dAcpJP04uGBD@@B?<0N;WO;0!nkmcXN65^M#RHZk@wI1OG0
zuYu#>CGY_F4Keu@Tm;{N^WYm`V|A0{-wkp@L;+(w{j^^L_ngy@<+te*hA;aHWz$mG
zkMy|zWK_9+iOlwD?HJkPTHAi@w`mOnJwSzvI6Y%(bdqMgZWQl$^P*{_2}P|s6G+2*
ziO|(?mKElBQb{_h7Y1CTIiWdD<nTZwQj37cS{YPFcc`$!14Sy)1q)xxmf#hyZBQza
zvyqHuxs1wI<bXBDhaXCRuG#7tqat280(&y<zi!JgY)ZU2>?O&9(m`c{FG$mwwmq)L
z+0)hbGdP(P!WdV{UeMFN@w`mnsDS@X@*f9{Os7V7xezVURvLaQTcmJq0mqZLXN>5^
zhTMaqX<gn(Z9-vc)3$ED%%Aprqx8}<QipY43(tuB-6^zGw1d`pq@qcZQ3R9Ffoe!{
zEpr|7Z_eqElx#1di7et;B(aK;H0p>Q;^&*DQ8ha8WgQ;p)Fxe-x66pC@jJGuRFVa)
zqFF0ZZd`OR>9xAjSQR{ec>mES4<KXgIWAI#vgR0dd3P@k;3kLTIMS6n&>u)>9g$e(
zY0fnxWy&eq?jZ?QXKUV>QqPA*bgk~&0u;iumy`=DlDe-71%XnLLNI}_G<`2#YI)k5
z=0^8KCZmmWxy8}Zp5Qher+LNNKQ0#Sfw;P_x|Q6w>q;9h;kHKG)m-a5N%HTq_JjBT
zGK~gODG=~LlyZsG%bg?35t;PV%%Pd1Gs9B}MT}NUt8!_e;XGOxK20y^%4m4V7!{(+
z3f(szUw4p}N~JE1j&tE|;VeQ#1Kaj&AWT$m5u(BSYY7bbFX`;0=@ji#<^6nKIm)jp
zGTE3OF`8F)eqdCWM|AZ_I?-20^lj)k9^JwID5m*l$Qb^Q`$Zi|thD{Pvz*8Sy&+qy
zXn|O?1Ce@Cw#9tXpCh@iA|!Sg3Y`yHGQNf>pj`7hYey*+aoSdCdD0%X%^Ri^WYl_*
zi$f>qP)2jLel#a|M~n7!w(PG+zEb%#6-s4Q&s6PNU6jY8tE@oS<tHguFl<dPQf)*}
za7Y>34UyK9c|zf{-AMNZ>(+6MQX{K@m+DB<WsTzL@<z?oBd;sS(&}H1zzx|g)qAn;
zB_iw0;Ew3Jlasb&eBKLXfU$v0?G7Yg+2>WUO0c5P?x|J{<b2)3U@__Eq|jPvXm7-#
znda4lQQClAWE=TT5reGTl96q%H2bV-Cfjb5=cz#nmPc$|vnin%U)EQdb!Moy{V6$}
k_DWN?t*odjeUpz-Y`y4EJ(eokhEu{6miq^e(AyIK04>&Z@c;k-

literal 0
HcmV?d00001

diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
index 9dcff00..e290755 100644
--- a/kaku/sample_app/spec/requests/authentication_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -21,6 +21,7 @@
       end
 
       it { should have_title(user.name) }
+      it { should have_link('Users',       href: users_path) }
       it { should have_link('Profile',     href: user_path(user)) }
       it { should have_link('Settings',    href: edit_user_path(user)) }
       it { should have_link('Sign out',    href: signout_path) }
@@ -35,6 +36,10 @@
       let(:user) { FactoryGirl.create(:user) }
 
       describe "in the Users controller" do
+        describe "visiting the user index" do
+          before { visit users_path }
+          it { should have_title('Sign in') }
+        end
 
         describe "visiting the edit page" do
           before { visit edit_user_path(user) }
@@ -46,6 +51,18 @@
           specify { expect(response).to redirect_to(signin_path) }
         end
       end
+
+      describe "as non-admin user" do
+        let(:user) { FactoryGirl.create(:user) }
+        let(:non_admin) { FactoryGirl.create(:user) }
+
+        before { sign_in non_admin, no_capybara: true }
+
+        describe "submitting a DELETE request to the Users#destroy action" do
+          before { delete user_path(user) }
+          specify { expect(response).to redirect_to(root_path) }
+        end
+      end
     end
   end
 
diff --git a/kaku/sample_app/spec/requests/user_pages_spec.rb b/kaku/sample_app/spec/requests/user_pages_spec.rb
index 5f4f4c5..c13177b 100644
--- a/kaku/sample_app/spec/requests/user_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/user_pages_spec.rb
@@ -4,6 +4,52 @@
 
   subject { page }
 
+  describe "index" do
+    let(:user) { FactoryGirl.create(:user) }
+    before(:each) do
+      sign_in user
+      visit users_path
+    end
+
+    it { should have_title('All users') }
+    it { should have_content('All users') }
+
+    describe "pagination" do
+
+      before(:all) { 30.times { FactoryGirl.create(:user) } }
+      after(:all)  { User.delete_all }
+
+      it { should have_selector('div.pagination') }
+
+      it "should list each user" do
+        User.paginate(page: 1).each do |user|
+          expect(page).to have_selector('li', text: user.name)
+        end
+      end
+    end
+
+    describe "delete links" do
+
+      it { should_not have_link('delete') }
+
+      describe "as an admin user" do
+        let(:admin) { FactoryGirl.create(:admin) }
+        before do
+          sign_in admin
+          visit users_path
+        end
+
+        it { should have_link('delete', href: user_path(User.first)) }
+        it "should be able to delete another user" do
+          expect do
+            click_link('delete', match: :first)
+          end.to change(User, :count).by(-1)
+        end
+        it { should_not have_link('delete', href: user_path(admin)) }
+      end
+    end
+  end
+
   describe "signup page" do
     before { visit signup_path }
 

From cf840812f25ed72223d3e248e2c4eb49372af9f3 Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Tue, 27 Aug 2013 02:47:59 +0900
Subject: [PATCH 6/7] add chapter 10

---
 kaku/sample_app/!!                            |  6 +++
 .../app/assets/stylesheets/custom.css.scss    | 28 +++++++++++
 .../app/controllers/microposts_controller.rb  | 23 +++++++++
 .../controllers/static_pages_controller.rb    |  1 +
 .../app/controllers/users_controller.rb       |  1 +
 .../sample_app/app/helpers/sessions_helper.rb |  7 +++
 kaku/sample_app/app/models/micropost.rb       |  6 +++
 kaku/sample_app/app/models/user.rb            | 23 ++++-----
 .../app/views/microposts/_micropost.html.erb  |  6 +++
 .../app/views/shared/_error_messages.html.erb | 12 ++---
 .../app/views/shared/_micropost_form.html.erb |  7 +++
 .../app/views/shared/_user_info.html.erb      | 12 +++++
 .../app/views/static_pages/home.html.erb      | 37 ++++++++++-----
 .../sample_app/app/views/users/_user.html.erb |  6 +--
 kaku/sample_app/app/views/users/edit.html.erb |  2 +-
 .../sample_app/app/views/users/index.html.erb |  6 +--
 kaku/sample_app/app/views/users/new.html.erb  |  4 +-
 kaku/sample_app/app/views/users/show.html.erb | 23 ++++++---
 kaku/sample_app/config/routes.rb              |  1 +
 .../20130826143009_create_microposts.rb       | 10 ++++
 kaku/sample_app/db/schema.rb                  |  9 +++-
 kaku/sample_app/lib/tasks/sample_data.rake    |  6 +++
 kaku/sample_app/spec/factories.rb             |  5 ++
 kaku/sample_app/spec/models/micropost_spec.rb | 37 +++++++++++++++
 kaku/sample_app/spec/models/user_spec.rb      | 47 ++++++++++++++-----
 .../requests/authentication_pages_spec.rb     | 13 +++++
 .../spec/requests/micropost_pages_spec.rb     | 33 +++++++++++++
 .../spec/requests/user_pages_spec.rb          | 16 +++++++
 28 files changed, 327 insertions(+), 60 deletions(-)
 create mode 100644 kaku/sample_app/!!
 create mode 100644 kaku/sample_app/app/controllers/microposts_controller.rb
 create mode 100644 kaku/sample_app/app/models/micropost.rb
 create mode 100644 kaku/sample_app/app/views/microposts/_micropost.html.erb
 create mode 100644 kaku/sample_app/app/views/shared/_micropost_form.html.erb
 create mode 100644 kaku/sample_app/app/views/shared/_user_info.html.erb
 create mode 100644 kaku/sample_app/db/migrate/20130826143009_create_microposts.rb
 create mode 100644 kaku/sample_app/spec/models/micropost_spec.rb
 create mode 100644 kaku/sample_app/spec/requests/micropost_pages_spec.rb

diff --git a/kaku/sample_app/!! b/kaku/sample_app/!!
new file mode 100644
index 0000000..f227aab
--- /dev/null
+++ b/kaku/sample_app/!!
@@ -0,0 +1,6 @@
+<li>
+<span class="content"><%= micropost.content %></span>
+<span class="timestamp">
+  Posted <%= time_ago_in_words(micropost.created_at) %> ago.
+</span>
+</li>
diff --git a/kaku/sample_app/app/assets/stylesheets/custom.css.scss b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
index fc34580..bf968eb 100644
--- a/kaku/sample_app/app/assets/stylesheets/custom.css.scss
+++ b/kaku/sample_app/app/assets/stylesheets/custom.css.scss
@@ -161,3 +161,31 @@ input {
     }
   }
 }
+
+/* microposts */
+
+.microposts {
+  list-style: none;
+  margin: 10px 0 0 0;
+
+  li {
+    padding: 10px 0;
+    border-top: 1px solid #e8e8e8;
+  }
+}
+.content {
+  display: block;
+}
+.timestamp {
+  color: $grayLight;
+}
+.gravatar {
+  float: left;
+  margin-right: 10px;
+}
+aside {
+  textarea {
+    height: 100px;
+    margin-bottom: 5px;
+  }
+}
diff --git a/kaku/sample_app/app/controllers/microposts_controller.rb b/kaku/sample_app/app/controllers/microposts_controller.rb
new file mode 100644
index 0000000..f158a93
--- /dev/null
+++ b/kaku/sample_app/app/controllers/microposts_controller.rb
@@ -0,0 +1,23 @@
+class MicropostsController < ApplicationController
+  before_action :signed_in_user
+
+  def create
+    @micropost = current_user.microposts.build(micropost_params)
+    if @micropost.save
+      flash[:success] = "Micropost created!"
+      redirect_to root_url
+    else
+      render 'static_pages/home'
+    end
+  end
+
+  def destroy
+  end
+
+  private
+
+  def micropost_params
+    params.require(:micropost).permit(:content)
+  end
+end
+
diff --git a/kaku/sample_app/app/controllers/static_pages_controller.rb b/kaku/sample_app/app/controllers/static_pages_controller.rb
index 321bb35..a2e6595 100644
--- a/kaku/sample_app/app/controllers/static_pages_controller.rb
+++ b/kaku/sample_app/app/controllers/static_pages_controller.rb
@@ -1,5 +1,6 @@
 class StaticPagesController < ApplicationController
   def home
+    @micropost = current_user.microposts.build if signed_in?
   end
 
   def help
diff --git a/kaku/sample_app/app/controllers/users_controller.rb b/kaku/sample_app/app/controllers/users_controller.rb
index ac679ac..9156022 100644
--- a/kaku/sample_app/app/controllers/users_controller.rb
+++ b/kaku/sample_app/app/controllers/users_controller.rb
@@ -9,6 +9,7 @@ def new
 
   def show
     @user = User.find(params[:id])
+    @microposts = @user.microposts.paginate(page: params[:page])
   end
 
   def create
diff --git a/kaku/sample_app/app/helpers/sessions_helper.rb b/kaku/sample_app/app/helpers/sessions_helper.rb
index a7c37a6..a2343da 100644
--- a/kaku/sample_app/app/helpers/sessions_helper.rb
+++ b/kaku/sample_app/app/helpers/sessions_helper.rb
@@ -6,6 +6,13 @@ def sign_in(user)
     self.current_user = user
   end
 
+  def signed_in_user
+    unless signed_in?
+      store_location
+      redirect_to signin_url, notice: "Please sign in."
+    end
+  end
+
   def signed_in?
     !current_user.nil?
   end
diff --git a/kaku/sample_app/app/models/micropost.rb b/kaku/sample_app/app/models/micropost.rb
new file mode 100644
index 0000000..96e9c89
--- /dev/null
+++ b/kaku/sample_app/app/models/micropost.rb
@@ -0,0 +1,6 @@
+class Micropost < ActiveRecord::Base
+  belongs_to :user
+  default_scope -> {order('created_at DESC')}
+  validates :content, presence: true,length: { maximum: 140 }
+  validates :user_id, presence: true
+end
diff --git a/kaku/sample_app/app/models/user.rb b/kaku/sample_app/app/models/user.rb
index 1c544eb..355b71b 100644
--- a/kaku/sample_app/app/models/user.rb
+++ b/kaku/sample_app/app/models/user.rb
@@ -1,24 +1,25 @@
 class User < ActiveRecord::Base
+  has_many :microposts,dependent: :destroy
   before_save { self.email = email.downcase }
   before_create :create_remember_token
-  
+
   validates :name,  presence: true, length: { maximum: 50 }
   VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
   validates :email, presence: true, format:{with: VALID_EMAIL_REGEX}, uniqueness: { case_sensitive: false}
   validates :password, length: { minimum: 6 }
   has_secure_password
-  
+
   def User.new_remember_token
-      SecureRandom.urlsafe_base64
-    end
+    SecureRandom.urlsafe_base64
+  end
 
-    def User.encrypt(token)
-      Digest::SHA1.hexdigest(token.to_s)
-    end
+  def User.encrypt(token)
+    Digest::SHA1.hexdigest(token.to_s)
+  end
 
-    private
+  private
 
-      def create_remember_token
-        self.remember_token = User.encrypt(User.new_remember_token)
-      end
+  def create_remember_token
+    self.remember_token = User.encrypt(User.new_remember_token)
+  end
 end
diff --git a/kaku/sample_app/app/views/microposts/_micropost.html.erb b/kaku/sample_app/app/views/microposts/_micropost.html.erb
new file mode 100644
index 0000000..f227aab
--- /dev/null
+++ b/kaku/sample_app/app/views/microposts/_micropost.html.erb
@@ -0,0 +1,6 @@
+<li>
+<span class="content"><%= micropost.content %></span>
+<span class="timestamp">
+  Posted <%= time_ago_in_words(micropost.created_at) %> ago.
+</span>
+</li>
diff --git a/kaku/sample_app/app/views/shared/_error_messages.html.erb b/kaku/sample_app/app/views/shared/_error_messages.html.erb
index c9c0ff4..dce461f 100644
--- a/kaku/sample_app/app/views/shared/_error_messages.html.erb
+++ b/kaku/sample_app/app/views/shared/_error_messages.html.erb
@@ -1,12 +1,12 @@
-<% if @user.errors.any? %>
+<% if object.errors.any? %>
   <div id="error_explanation">
     <div class="alert alert-error">
-      The form contains <%= pluralize(@user.errors.count, "error") %>.
+      The form contains <%= pluralize(object.errors.count, "error") %>.
     </div>
     <ul>
-    <% @user.errors.full_messages.each do |msg| %>
-      <li>* <%= msg %></li>
-    <% end %>
+      <% object.errors.full_messages.each do |msg| %>
+        <li>* <%= msg %></li>
+      <% end %>
     </ul>
   </div>
-<% end %>
\ No newline at end of file
+<% end %>
diff --git a/kaku/sample_app/app/views/shared/_micropost_form.html.erb b/kaku/sample_app/app/views/shared/_micropost_form.html.erb
new file mode 100644
index 0000000..e2c2bf8
--- /dev/null
+++ b/kaku/sample_app/app/views/shared/_micropost_form.html.erb
@@ -0,0 +1,7 @@
+<%= form_for(@micropost) do |f| %>
+  <%= render 'shared/error_messages', object: f.object %>
+  <div class="field">
+    <%= f.text_area :content, placeholder: "Compose new micropost..." %>
+  </div>
+  <%= f.submit "Post", class: "btn btn-large btn-primary" %>
+<% end %>
diff --git a/kaku/sample_app/app/views/shared/_user_info.html.erb b/kaku/sample_app/app/views/shared/_user_info.html.erb
new file mode 100644
index 0000000..607fc9d
--- /dev/null
+++ b/kaku/sample_app/app/views/shared/_user_info.html.erb
@@ -0,0 +1,12 @@
+<a href="<%= user_path(current_user) %>">
+  <%= gravatar_for current_user %>
+</a>
+<h1>
+  <%= current_user.name %>
+</h1>
+<span>
+  <%= link_to "view my profile", current_user %>
+</span>
+<span>
+  <%= pluralize(current_user.microposts.count, "micropost") %>
+</span>
diff --git a/kaku/sample_app/app/views/static_pages/home.html.erb b/kaku/sample_app/app/views/static_pages/home.html.erb
index 747da08..6e67244 100644
--- a/kaku/sample_app/app/views/static_pages/home.html.erb
+++ b/kaku/sample_app/app/views/static_pages/home.html.erb
@@ -1,16 +1,27 @@
-<% provide(:title, '') %>
+<% if signed_in? %>
+  <div class="row">
+    <aside class="span4">
+    <section>
+    <%= render 'shared/user_info' %>
+    </section>
+    <section>
+    <%= render 'shared/micropost_form' %>
+    </section>
+    </aside>
+  </div>
+<% else %>
+  <div class="center hero-unit">
+    <h1>Welcome to the Sample App</h1>
 
-<div class="center hero-unit">
-	
-  <h1>Welcome to the Sample App</h1>
+    <h2>
+      This is the home page for the
+      <a href="http://railstutorial.org/">Ruby on Rails Tutorial</a>
+      sample application.
+    </h2>
 
-  <h2>
-    This is the home page for the
-    <a href="http://railstutorial.org/">Ruby on Rails Tutorial</a>
-    sample application.
-  </h2>
+    <%= link_to "Sign up now!", signup_path,
+      class: "btn btn-large btn-primary" %>
+    </div>
 
-  <%= link_to "Sign up now!", signup_path, class: "btn btn-large btn-primary" %>
-</div>
-
-<%= link_to image_tag("rails.png", alt: "Rails"), 'http://rubyonrails.org/' %>
+    <%= link_to image_tag("rails.png", alt: "Rails"), 'http://rubyonrails.org/' %>
+  <% end %>
diff --git a/kaku/sample_app/app/views/users/_user.html.erb b/kaku/sample_app/app/views/users/_user.html.erb
index 5abcbc8..505a7b8 100644
--- a/kaku/sample_app/app/views/users/_user.html.erb
+++ b/kaku/sample_app/app/views/users/_user.html.erb
@@ -3,6 +3,6 @@
 <%= link_to user.name, user %>
 <% if current_user.admin? && !current_user?(user) %>
   | <%= link_to "delete", user, method: :delete,
-    data: { confirm: "You sure?" } %>
-  <% end %>
-  </li>
+                                              data: { confirm: "You sure?" } %>
+<% end %>
+</li>
diff --git a/kaku/sample_app/app/views/users/edit.html.erb b/kaku/sample_app/app/views/users/edit.html.erb
index 9abf70b..bf14949 100644
--- a/kaku/sample_app/app/views/users/edit.html.erb
+++ b/kaku/sample_app/app/views/users/edit.html.erb
@@ -5,7 +5,7 @@
 
   <div class="span6 offset3">
     <%= form_for(@user) do |f| %>
-      <%= render 'shared/error_messages' %>
+      <%= render 'shared/error_messages', object: f.object %>
 
       <%= f.label :name %>
       <%= f.text_field :name %>
diff --git a/kaku/sample_app/app/views/users/index.html.erb b/kaku/sample_app/app/views/users/index.html.erb
index a80877e..aa43af0 100644
--- a/kaku/sample_app/app/views/users/index.html.erb
+++ b/kaku/sample_app/app/views/users/index.html.erb
@@ -2,10 +2,6 @@
 <h1>All users</h1>
 <%= will_paginate %>
 <ul class="users">
-  <% @users.each do |user| %>
-    <li>
-       <%= render user %>
-    </li>
-  <% end %>
+       <%= render @users %>
 </ul>
 <%= will_paginate %>
diff --git a/kaku/sample_app/app/views/users/new.html.erb b/kaku/sample_app/app/views/users/new.html.erb
index 8a2bbf3..545279f 100644
--- a/kaku/sample_app/app/views/users/new.html.erb
+++ b/kaku/sample_app/app/views/users/new.html.erb
@@ -4,7 +4,7 @@
 <div class="row">
   <div class="span6 offset3">
     <%= form_for(@user) do |f| %>
-	  <%= render 'shared/error_messages' %>
+      <%= render 'shared/error_messages',object: f.object %>
       <%= f.label :name %>
       <%= f.text_field :name %>
 
@@ -20,4 +20,4 @@
       <%= f.submit "Create my account", class: "btn btn-large btn-primary" %>
     <% end %>
   </div>
-</div>
\ No newline at end of file
+</div>
diff --git a/kaku/sample_app/app/views/users/show.html.erb b/kaku/sample_app/app/views/users/show.html.erb
index a6db57a..692b11d 100644
--- a/kaku/sample_app/app/views/users/show.html.erb
+++ b/kaku/sample_app/app/views/users/show.html.erb
@@ -1,11 +1,20 @@
 <% provide(:title, @user.name) %>
 <div class="row">
   <aside class="span4">
-    <section>
-      <h1>
-        <%= gravatar_for @user %>
-        <%= @user.name %>
-      </h1>
-    </section>
+  <section>
+  <h1>
+    <%= gravatar_for @user %>
+    <%= @user.name %>
+  </h1>
+  </section>
   </aside>
-</div>
\ No newline at end of file
+  <div class="span8">
+    <% if @user.microposts.any? %>
+      <h3>Microposts (<%= @user.microposts.count %>)</h3>
+      <ol class="microposts">
+        <%= render @microposts %>
+      </ol>
+      <%= will_paginate @microposts %>
+    <% end %>
+  </div>
+</div>
diff --git a/kaku/sample_app/config/routes.rb b/kaku/sample_app/config/routes.rb
index 1721395..064c942 100644
--- a/kaku/sample_app/config/routes.rb
+++ b/kaku/sample_app/config/routes.rb
@@ -2,6 +2,7 @@
   resources :users
   root to: 'static_pages#home'
   resources :sessions, only: [:new, :create, :destroy]
+  resources :microposts, only: [:create, :destroy]
   match '/signup',  to: 'users#new',            via: 'get'
   match '/signin',  to: 'sessions#new',         via: 'get'
   match '/signout', to: 'sessions#destroy',     via: 'delete'
diff --git a/kaku/sample_app/db/migrate/20130826143009_create_microposts.rb b/kaku/sample_app/db/migrate/20130826143009_create_microposts.rb
new file mode 100644
index 0000000..1ea9615
--- /dev/null
+++ b/kaku/sample_app/db/migrate/20130826143009_create_microposts.rb
@@ -0,0 +1,10 @@
+class CreateMicroposts < ActiveRecord::Migration
+  def change
+    create_table :microposts do |t|
+      t.string :content
+      t.integer :user_id
+
+      t.timestamps
+    end
+  end
+end
diff --git a/kaku/sample_app/db/schema.rb b/kaku/sample_app/db/schema.rb
index 0a064aa..a7946eb 100644
--- a/kaku/sample_app/db/schema.rb
+++ b/kaku/sample_app/db/schema.rb
@@ -11,7 +11,14 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20130826130430) do
+ActiveRecord::Schema.define(version: 20130826143009) do
+
+  create_table "microposts", force: true do |t|
+    t.string   "content"
+    t.integer  "user_id"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
 
   create_table "users", force: true do |t|
     t.string   "name"
diff --git a/kaku/sample_app/lib/tasks/sample_data.rake b/kaku/sample_app/lib/tasks/sample_data.rake
index ebaff3d..fec3c51 100644
--- a/kaku/sample_app/lib/tasks/sample_data.rake
+++ b/kaku/sample_app/lib/tasks/sample_data.rake
@@ -16,5 +16,11 @@ namespace :db do
                    password: password,
                    password_confirmation: password)
     end
+
+    users = User.all(limit: 6)
+    50.times do
+      content = Faker::Lorem.sentence(5)
+      users.each { |user| user.microposts.create!(content: content) }
+    end
   end
 end
diff --git a/kaku/sample_app/spec/factories.rb b/kaku/sample_app/spec/factories.rb
index 3701d2d..4b0dc0f 100644
--- a/kaku/sample_app/spec/factories.rb
+++ b/kaku/sample_app/spec/factories.rb
@@ -8,4 +8,9 @@
       admin true
     end
   end
+
+  factory :micropost do
+    content "Lorem ipsum"
+    user
+   end
 end
diff --git a/kaku/sample_app/spec/models/micropost_spec.rb b/kaku/sample_app/spec/models/micropost_spec.rb
new file mode 100644
index 0000000..72197cc
--- /dev/null
+++ b/kaku/sample_app/spec/models/micropost_spec.rb
@@ -0,0 +1,37 @@
+require 'spec_helper'
+
+describe Micropost do
+  let(:user) {FactoryGirl.create(:user)}
+  before do
+   @micropost = user.microposts.build(content: "Lorem ipsum")
+  end
+
+  subject {@micropost}
+
+  it { should respond_to(:content)}
+  it { should respond_to(:user_id)}
+  it { should respond_to(:user)}
+  its(:user) { should eq user}
+
+  it { should be_valid}
+
+  describe  "when user_id is not present" do
+    before { @micropost.user_id = nil }
+    it { should_not be_valid}
+  end
+
+  describe "when user_id is not present" do
+    before { @micropost.user_id = nil }
+    it { should_not be_valid }
+  end
+
+  describe "with blank content" do
+    before { @micropost.content = " " }
+    it { should_not be_valid }
+  end
+
+  describe "with content that is too long" do
+    before { @micropost.content = "a" * 141 }
+    it { should_not be_valid }
+  end
+end
diff --git a/kaku/sample_app/spec/models/user_spec.rb b/kaku/sample_app/spec/models/user_spec.rb
index b90d84e..620f924 100644
--- a/kaku/sample_app/spec/models/user_spec.rb
+++ b/kaku/sample_app/spec/models/user_spec.rb
@@ -2,13 +2,13 @@
 
 describe User do
   before { @user =  User.new(name: "Example User", 
-    email: "ghjcumt2008@gmail.com",
-    password: "foobar",
-    password_confirmation: "foobar")
+                             email: "ghjcumt2008@gmail.com",
+                             password: "foobar",
+                             password_confirmation: "foobar")
   }
 
   subject { @user }
-  
+
   it{ should respond_to(:name)}
   it{ should respond_to(:email)}
   it { should respond_to(:password_digest) }
@@ -16,7 +16,9 @@
   it { should respond_to(:password_confirmation) }
   it { should respond_to(:remember_token) }
   it { should respond_to(:authenticate) }
-  
+  it { should respond_to(:admin)}
+  it { should respond_to(:microposts)}
+
   describe "when name is not presence" do
     before{ @user.name =  ""}
     it{ should_not be_valid}
@@ -61,7 +63,7 @@
 
     it{ should_not be_valid}
   end
-  
+
   describe "return value of authenticate method" do
     before { @user.save }
     let(:found_user) { User.find_by(email: @user.email) }
@@ -76,16 +78,39 @@
       it { should_not eq user_for_invalid_password }
       specify { expect(user_for_invalid_password).to be_false }
     end
-    
+
     describe "with a password that's too short" do
       before { @user.password = @user.password_confirmation = "a" * 5 }
       it { should be_invalid }
     end
   end
-  
+
   describe "remember token" do
-      before { @user.save }
-      its(:remember_token) { should_not be_blank }
+    before { @user.save }
+    its(:remember_token) { should_not be_blank }
+  end
+
+  describe "micropost associations" do
+    before { @user.save }
+    let!(:older_micropost) do
+      FactoryGirl.create(:micropost, user: @user, created_at: 1.day.age)
+    end
+    let!(:newer_micropost) do
+      FactoryGirl.create(:micropost, user: @user, created_at: 1.hour.ago)
+    end
+
+    it "should have the right microposts in the right order" do
+      expect(@user.microposts.to_a).to eq [newer_micropost, older_micropost]
     end
-end
 
+    it "should destroy associated microposts" do
+      microposts = @user.microposts.to_a
+      @user.destroy
+      expect(microposts).not_to be_empty
+      microposts.each do |micropost|
+        expect(Micropost.where(id: micropost.id)).to be_empty
+      end
+    end
+  end
+
+ 
diff --git a/kaku/sample_app/spec/requests/authentication_pages_spec.rb b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
index e290755..5d7e881 100644
--- a/kaku/sample_app/spec/requests/authentication_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/authentication_pages_spec.rb
@@ -66,6 +66,19 @@
     end
   end
 
+  describe "in the Microposts controller" do
+
+    describe "submitting to the create action" do
+      before { post microposts_path }
+      specify { expect(response).to redirect_to(signin_path) }
+    end
+
+    describe "submitting to the destroy action" do
+      before { delete micropost_path(FactoryGirl.create(:micropost)) }
+      specify { expect(response).to redirect_to(signin_path) }
+    end
+  end
+
   describe "as wrong user" do
     let(:user) { FactoryGirl.create(:user) }
     let(:wrong_user) { FactoryGirl.create(:user, email: "wrong@example.com") }
diff --git a/kaku/sample_app/spec/requests/micropost_pages_spec.rb b/kaku/sample_app/spec/requests/micropost_pages_spec.rb
new file mode 100644
index 0000000..842d706
--- /dev/null
+++ b/kaku/sample_app/spec/requests/micropost_pages_spec.rb
@@ -0,0 +1,33 @@
+require 'spec_helper'
+
+describe "Micropost pages" do
+
+  subject { page }
+
+  let(:user) { FactoryGirl.create(:user) }
+  before { sign_in user }
+
+  describe "micropost creation" do
+    before { visit root_path }
+
+    describe "with invalid information" do
+
+      it "should not create a micropost" do
+        expect { click_button "Post" }.not_to change(Micropost, :count)
+      end
+
+      describe "error messages" do
+        before { click_button "Post" }
+        it { should have_content('error') }
+      end
+    end
+
+    describe "with valid information" do
+
+      before { fill_in 'micropost_content', with: "Lorem ipsum" }
+      it "should create a micropost" do
+        expect { click_button "Post" }.to change(Micropost, :count).by(1)
+      end
+    end
+  end
+end
diff --git a/kaku/sample_app/spec/requests/user_pages_spec.rb b/kaku/sample_app/spec/requests/user_pages_spec.rb
index c13177b..1b691df 100644
--- a/kaku/sample_app/spec/requests/user_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/user_pages_spec.rb
@@ -132,5 +132,21 @@
     end
   end
 
+  describe "profile page" do
+    let(:user) { FactoryGirl.create(:user) }
+    let!(:m1) { FactoryGirl.create(:micropost, user: user, content: "Foo") }
+    let!(:m2) { FactoryGirl.create(:micropost, user: user, content: "Bar") }
+
+    before { visit user_path(user) }
+
+    it { should have_content(user.name) }
+    it { should have_title(user.name) }
+
+    describe "microposts" do
+      it { should have_content(m1.content) }
+      it { should have_content(m2.content) }
+      it { should have_content(user.microposts.count) }
+    end
+  end
 end
 # 

From 4e82d9537472f9adf0d82725a488e829245198b0 Mon Sep 17 00:00:00 2001
From: kaku87 <ghjcumt2008@gmail.com>
Date: Tue, 27 Aug 2013 23:27:05 +0900
Subject: [PATCH 7/7] 10 chapter is finished

---
 .../app/controllers/microposts_controller.rb     |  8 ++++++++
 .../app/controllers/static_pages_controller.rb   |  5 ++++-
 kaku/sample_app/app/models/user.rb               |  3 +++
 .../app/views/microposts/_micropost.html.erb     |  5 +++++
 kaku/sample_app/app/views/shared/_feed.html.erb  |  6 ++++++
 .../app/views/shared/_feed_item.html.erb         | 15 +++++++++++++++
 .../app/views/static_pages/home.html.erb         |  5 +++++
 kaku/sample_app/spec/models/user_spec.rb         | 12 +++++++++++-
 .../spec/requests/static_pages_spec.rb           | 16 ++++++++++++++++
 9 files changed, 73 insertions(+), 2 deletions(-)
 create mode 100644 kaku/sample_app/app/views/shared/_feed.html.erb
 create mode 100644 kaku/sample_app/app/views/shared/_feed_item.html.erb

diff --git a/kaku/sample_app/app/controllers/microposts_controller.rb b/kaku/sample_app/app/controllers/microposts_controller.rb
index f158a93..22580dd 100644
--- a/kaku/sample_app/app/controllers/microposts_controller.rb
+++ b/kaku/sample_app/app/controllers/microposts_controller.rb
@@ -1,5 +1,6 @@
 class MicropostsController < ApplicationController
   before_action :signed_in_user
+  before_action :correct_user,   only: :destroy
 
   def create
     @micropost = current_user.microposts.build(micropost_params)
@@ -7,11 +8,14 @@ def create
       flash[:success] = "Micropost created!"
       redirect_to root_url
     else
+      @feed_items = []
       render 'static_pages/home'
     end
   end
 
   def destroy
+    @micropost.destroy
+    redirect_to root_url
   end
 
   private
@@ -19,5 +23,9 @@ def destroy
   def micropost_params
     params.require(:micropost).permit(:content)
   end
+  def correct_user
+    @micropost = current_user.microposts.find_by(id: params[:id])
+    redirect_to root_url if @micropost.nil?
+  end
 end
 
diff --git a/kaku/sample_app/app/controllers/static_pages_controller.rb b/kaku/sample_app/app/controllers/static_pages_controller.rb
index a2e6595..4f35253 100644
--- a/kaku/sample_app/app/controllers/static_pages_controller.rb
+++ b/kaku/sample_app/app/controllers/static_pages_controller.rb
@@ -1,6 +1,9 @@
 class StaticPagesController < ApplicationController
   def home
-    @micropost = current_user.microposts.build if signed_in?
+    if signed_in?
+      @micropost  = current_user.microposts.build
+      @feed_items = current_user.feed.paginate(page: params[:page])
+    end
   end
 
   def help
diff --git a/kaku/sample_app/app/models/user.rb b/kaku/sample_app/app/models/user.rb
index 355b71b..728c695 100644
--- a/kaku/sample_app/app/models/user.rb
+++ b/kaku/sample_app/app/models/user.rb
@@ -17,6 +17,9 @@ def User.encrypt(token)
     Digest::SHA1.hexdigest(token.to_s)
   end
 
+  def feed
+    Micropost.where("user_id=?",id)
+  end
   private
 
   def create_remember_token
diff --git a/kaku/sample_app/app/views/microposts/_micropost.html.erb b/kaku/sample_app/app/views/microposts/_micropost.html.erb
index f227aab..7bdcd3b 100644
--- a/kaku/sample_app/app/views/microposts/_micropost.html.erb
+++ b/kaku/sample_app/app/views/microposts/_micropost.html.erb
@@ -3,4 +3,9 @@
 <span class="timestamp">
   Posted <%= time_ago_in_words(micropost.created_at) %> ago.
 </span>
+<% if current_user?(micropost.user) %>
+  <%= link_to "delete", micropost, method: :delete,
+    data: { confirm: "You sure?" },
+    title: micropost.content %>
+  <% end %>
 </li>
diff --git a/kaku/sample_app/app/views/shared/_feed.html.erb b/kaku/sample_app/app/views/shared/_feed.html.erb
new file mode 100644
index 0000000..d46d8b8
--- /dev/null
+++ b/kaku/sample_app/app/views/shared/_feed.html.erb
@@ -0,0 +1,6 @@
+<% if @feed_items.any? %>
+  <ol class="microposts">
+    <%= render partial: 'shared/feed_item', collection: @feed_items %>
+  </ol>
+  <%= will_paginate @feed_items %>
+<% end %>
diff --git a/kaku/sample_app/app/views/shared/_feed_item.html.erb b/kaku/sample_app/app/views/shared/_feed_item.html.erb
new file mode 100644
index 0000000..42e8976
--- /dev/null
+++ b/kaku/sample_app/app/views/shared/_feed_item.html.erb
@@ -0,0 +1,15 @@
+<li id="<%= feed_item.id %>">
+<%= link_to gravatar_for(feed_item.user), feed_item.user %>
+<span class="user">
+  <%= link_to feed_item.user.name, feed_item.user %>
+</span>
+<span class="content"><%= feed_item.content %></span>
+<span class="timestamp">
+  Posted <%= time_ago_in_words(feed_item.created_at) %> ago.
+</span>
+<% if current_user?(feed_item.user) %>
+  <%= link_to "delete", feed_item, method: :delete,
+    data: { confirm: "You sure?" },
+    title: feed_item.content %>
+  <% end %>
+</li>
diff --git a/kaku/sample_app/app/views/static_pages/home.html.erb b/kaku/sample_app/app/views/static_pages/home.html.erb
index 6e67244..926f91e 100644
--- a/kaku/sample_app/app/views/static_pages/home.html.erb
+++ b/kaku/sample_app/app/views/static_pages/home.html.erb
@@ -8,6 +8,11 @@
     <%= render 'shared/micropost_form' %>
     </section>
     </aside>
+    <div class="span8">
+      <h3>Micropost Feed</h3>
+      <%= render 'shared/feed' %>
+    </div>
+  </div>
   </div>
 <% else %>
   <div class="center hero-unit">
diff --git a/kaku/sample_app/spec/models/user_spec.rb b/kaku/sample_app/spec/models/user_spec.rb
index 620f924..39f8a70 100644
--- a/kaku/sample_app/spec/models/user_spec.rb
+++ b/kaku/sample_app/spec/models/user_spec.rb
@@ -113,4 +113,14 @@
     end
   end
 
- 
+  describe "status" do
+    let(:unfollowed_post) do
+      FactoryGirl.create(:micropost, user: FactoryGirl.create(:user))
+    end
+
+    its(:feed) { should include(newer_micropost) }
+    its(:feed) { should include(older_micropost) }
+    its(:feed) { should_not include(unfollowed_post) }
+  end
+
+end
diff --git a/kaku/sample_app/spec/requests/static_pages_spec.rb b/kaku/sample_app/spec/requests/static_pages_spec.rb
index dc5d3ee..1384305 100644
--- a/kaku/sample_app/spec/requests/static_pages_spec.rb
+++ b/kaku/sample_app/spec/requests/static_pages_spec.rb
@@ -32,4 +32,20 @@
     it { should have_content('Contact') }
     it { should have_title(full_title('Contact')) }
   end
+
+  describe "for signed-in users" do
+    let(:user) { FactoryGirl.create(:user) }
+    before do
+      FactoryGirl.create(:micropost, user: user, content: "Lorem ipsum")
+      FactoryGirl.create(:micropost, user: user, content: "Dolor sit amet")
+      sign_in user
+      visit root_path
+    end
+
+    it "should render the user's feed" do
+      user.feed.each do |item|
+        expect(page).to have_selector("li##{item.id}", text: item.content)
+      end
+    end
+  end
 end