Explicitly declare devise generated routes

elia · cpfergus1 · commit 188a73bd8b30 · 2022-09-22T10:08:10.000-06:00
We have some duplication affecting all stores using this extension
and this is the first step toward removing it.

E.g. the sign_in path was available at both /login and /spree_user/sign_in
as `login_path` or `new_spree_user_session_path`.
diff --git a/config/routes.rb b/config/routes.rb
@@ -10,15 +10,46 @@
         passwords: 'spree/user_passwords',
         confirmations: 'spree/user_confirmations'
       },
-      skip: [:unlocks, :omniauth_callbacks],
-      path_names: { sign_out: 'logout' },
-      path_prefix: :user,
-      router_name: :spree
+      skip: :all,
     })
 
     resources :users, only: [:edit, :update]
 
     devise_scope :spree_user do
+      # Legacy devise generated paths
+      # These are deprecated but we still want to support the incoming routes,
+      # in order to give existing stores an upgrade path.
+      get 'user/spree_user/sign_in', to: 'user_sessions#new', as: nil
+      post 'user/spree_user/sign_in', to: 'user_sessions#create', as: nil
+      match 'user/spree_user/logout', to: 'user_sessions#destroy', via: Devise.sign_out_via, as: nil
+      get 'user/spree_user/password/new', to: 'user_passwords#new', as: nil
+      get 'user/spree_user/password/edit', to: 'user_passwords#edit', as: nil
+      patch 'user/spree_user/password', to: 'user_passwords#update', as: nil
+      put 'user/spree_user/password', to: 'user_passwords#update', as: nil
+      post 'user/spree_user/password', to: 'user_passwords#create', as: nil
+      get 'user/spree_user/cancel', to: 'user_registrations#cancel', as: nil
+      get 'user/spree_user/sign_up', to: 'user_registrations#new', as: nil
+      get 'user/spree_user/edit', to: 'user_registrations#edit', as: nil
+      patch 'user/spree_user', to: 'user_registrations#update', as: nil
+      put 'user/spree_user', to: 'user_registrations#update', as: nil
+      delete 'user/spree_user', to: 'user_registrations#destroy', as: nil
+      post 'user/spree_user', to: 'user_registrations#create', as: nil
+
+      # Legacy devise generated helpers
+      # These helpers are deprecated but we still want to support them
+      # in order to give existing stores an upgrade path.
+      get '/login', to: 'user_sessions#new', as: :new_spree_user_session
+      post '/login', to: 'user_sessions#create', as: :spree_user_session
+      match '/logout', to: 'user_sessions#destroy', as: :destroy_spree_user_session, via: Devise.sign_out_via
+      get '/password/recover', to: 'user_passwords#new', as: :new_spree_user_password
+      get '/password/change', to: 'user_passwords#edit', as: :edit_spree_user_password
+      patch '/password/change', to: 'user_passwords#update', as: :spree_user_password
+      get '/spree_user/cancel', to: 'user_registrations#cancel', as: :cancel_spree_user_registration
+      get '/signup', to: 'user_registrations#new', as: :new_spree_user_registration
+      get '/spree_user/edit', to: 'user_registrations#edit', as: :edit_spree_user_registration
+      patch '/spree_user', to: 'user_registrations#update', as: :spree_user_registration
+
+      # Custom devise routes
       get '/login', to: 'user_sessions#new', as: :login
       post '/login', to: 'user_sessions#create', as: :create_new_session
       match '/logout', to: 'user_sessions#destroy', as: :logout, via: Devise.sign_out_via
diff --git a/spec/controllers/spree/user_passwords_controller_spec.rb b/spec/controllers/spree/user_passwords_controller_spec.rb
@@ -10,7 +10,7 @@
       it 'redirects to the new session path' do
         get :edit
         expect(response).to redirect_to(
-          'http://test.host/user/spree_user/sign_in'
+          'http://test.host/login'
         )
       end
 
diff --git a/spec/features/checkout_spec.rb b/spec/features/checkout_spec.rb
@@ -111,7 +111,7 @@
       # Need to do this now because the token stored in the DB is the encrypted version
       # The 'plain-text' version is sent in the email and there's one way to get that!
       reset_password_email = ActionMailer::Base.deliveries.first
-      token_url_regex = /\/user\/spree_user\/password\/edit\?reset_password_token=(.*)$/
+      token_url_regex = /\/password\/change\?reset_password_token=(.*)$/
       token = token_url_regex.match(reset_password_email.body.to_s)[1]
 
       visit spree.edit_spree_user_password_path(reset_password_token: token)
diff --git a/spec/mailers/user_mailer_spec.rb b/spec/mailers/user_mailer_spec.rb
@@ -31,7 +31,7 @@
 
       context 'body includes' do
         it 'password reset url' do
-          expect(@message.body.raw_source).to include "http://#{store.url}/user/spree_user/password/edit"
+          expect(@message.body.raw_source).to include "http://#{store.url}/password/change"
         end
       end
     end

Original file line number	Diff line number	Diff line change
`@@ -10,7 +10,7 @@`
`10`	`10`	`it 'redirects to the new session path' do`
`11`	`11`	`get :edit`
`12`	`12`	`expect(response).to redirect_to(`
`13`		`- 'http://test.host/user/spree_user/sign_in'`
	`13`	`+ 'http://test.host/login'`
`14`	`14`	`)`
`15`	`15`	`end`
`16`	`16`