♻️ Refactor spec support harness for ROM

Author: pboling

.rubocop_gradual.lock

@@ -1,6 +1,6 @@
 {
-  "README.md:2294530640": [
-    [275, 3, 100, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 3592044714]
+  "README.md:2478083419": [
+    [277, 3, 100, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 3592044714]
   ],
   "bin/bundle:247448467": [
     [64, 5, 20, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 2485198147]
@@ -31,13 +31,12 @@
     [57, 13, 125, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 3604044426],
     [69, 13, 83, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 902334745]
   ],
-  "lib/omniauth/identity/models/rom.rb:4274893658": [
-    [23, 9, 804, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 2641680277],
+  "lib/omniauth/identity/models/rom.rb:1077115502": [
+    [23, 9, 814, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 2641680277],
     [34, 33, 14, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 3392992668],
-    [34, 48, 15, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 3094507655],
-    [51, 13, 15, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 1768297560],
-    [67, 18, 20, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 2230320645],
-    [68, 54, 20, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 2230320645]
+    [56, 13, 15, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 1768297560],
+    [72, 18, 20, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 2230320645],
+    [73, 54, 20, "ThreadSafety/ClassInstanceVariable: Avoid class instance variables.", 2230320645]
   ],
   "lib/omniauth/identity/models/sequel.rb:101522047": [
     [44, 9, 3379, "Style/ClassMethodsDefinitions: Use `class << self` to define a class method.", 3595458005]
@@ -103,15 +102,13 @@
     [14, 1, 61, "RSpec/SpecFilePathFormat: Spec path should end with `omni_auth/identity/models/mongoid*_spec.rb`.", 2184534986],
     [32, 9, 71, "RSpec/SubjectStub: Do not stub methods of the object under test.", 399334056]
   ],
-  "spec_orms/rom_spec.rb:2718230340": [
-    [42, 1, 57, "RSpec/SpecFilePathFormat: Spec path should end with `omni_auth/identity/models/rom*_spec.rb`.", 18469108],
-    [43, 3, 254, "RSpec/LeakyConstantDeclaration: Stub constant instead of declaring explicitly.", 151871654],
-    [51, 3, 12, "RSpec/BeforeAfterAll: Beware of using `before(:all)` as it may cause state to leak between tests. If you are using `rspec-rails`, and `use_transactional_fixtures` is enabled, then records created in `before(:all)` are not automatically rolled back.", 86334566]
+  "spec_orms/rom_spec.rb:1364234352": [
+    [5, 1, 57, "RSpec/SpecFilePathFormat: Spec path should end with `omni_auth/identity/models/rom*_spec.rb`.", 18469108],
+    [6, 3, 12, "RSpec/BeforeAfterAll: Beware of using `before(:all)` as it may cause state to leak between tests. If you are using `rspec-rails`, and `use_transactional_fixtures` is enabled, then records created in `before(:all)` are not automatically rolled back.", 86334566]
   ],
-  "spec_orms/sequel_spec.rb:1275922107": [
-    [22, 1, 60, "RSpec/SpecFilePathFormat: Spec path should end with `omni_auth/identity/models/sequel*_spec.rb`.", 36626431],
-    [23, 3, 12, "RSpec/BeforeAfterAll: Beware of using `before(:all)` as it may cause state to leak between tests. If you are using `rspec-rails`, and `use_transactional_fixtures` is enabled, then records created in `before(:all)` are not automatically rolled back.", 86334566],
-    [34, 7, 42, "Layout/EmptyLinesAfterModuleInclusion: Add an empty line after module inclusion.", 1846499429],
-    [48, 9, 71, "RSpec/SubjectStub: Do not stub methods of the object under test.", 399334056]
+  "spec_orms/sequel_spec.rb:1276231279": [
+    [12, 1, 60, "RSpec/SpecFilePathFormat: Spec path should end with `omni_auth/identity/models/sequel*_spec.rb`.", 36626431],
+    [13, 3, 12, "RSpec/BeforeAfterAll: Beware of using `before(:all)` as it may cause state to leak between tests. If you are using `rspec-rails`, and `use_transactional_fixtures` is enabled, then records created in `before(:all)` are not automatically rolled back.", 86334566],
+    [39, 9, 71, "RSpec/SubjectStub: Do not stub methods of the object under test.", 399334056]
   ]
 }

README.md

@@ -167,14 +167,16 @@ This gem is compatible with a wide range of Ruby versions and Ruby ORMs, as of M
   * mongoid 7.3, 7.4, 8.1, 9.0
   * bson 4.12, 4.15, 5.0, HEAD
   * sequel 5.86+
-* At least 5 different database ORM adapters, which connect to 15 different database clients!
+  * rom-sql (Ruby Object Mapper) 3.7+
+* At least 6 different database ORM adapters, which connect to 15 different database clients!
 
 | Databases                                                                                                 | Adapter Libraries                                                        |
-| --------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------ |
+|-----------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------|
 | MySQL, MariaDB, PostgreSQL, SQLite                                                                        | [ActiveRecord](https://guides.rubyonrails.org/active_record_basics.html) |
 | CouchDB                                                                                                   | [CouchPotato](https://github.com/langalex/couch_potato)                  |
 | MongoDB                                                                                                   | [Mongoid](https://github.com/mongodb/mongoid)                            |
 | RethinkDB                                                                                                 | [NoBrainer](http://nobrainer.io/)                                        |
+| ADO, Amalgalite, IBM_DB, JDBC, MySQL, MariaDB, ODBC, Oracle, PostgreSQL, SQLAnywhere, SQLite, and TinyTDS | [rom-sql](https://rom-rb.org/)                                           |
 | ADO, Amalgalite, IBM_DB, JDBC, MySQL, MariaDB, ODBC, Oracle, PostgreSQL, SQLAnywhere, SQLite, and TinyTDS | [Sequel](http://sequel.jeremyevans.net)                                  |
 
 ## 🔧 Basic Usage
@@ -298,7 +300,23 @@ end
 
 ### Ruby Object Mapper
 
-Would love to add a mixin for the [Ruby Object Mapper (ROM)](https://rom-rb.org/) if anyone wants to work on it!
+[ROM](https://rom-rb.org/) is an ORM for pretty much every database.
+
+Include the `OmniAuth::Identity::Models::Rom` mixin and specify
+the `rom_container`, everything else is optional.
+
+```ruby
+class Identity
+  include OmniAuth::Identity::Models::Rom
+
+  # Configure the ROM container and relation
+  rom_container -> { MyDatabase.rom } # See spec_orms/rom_spec.rb for example
+  rom_relation_name :identities # optional, defaults to :idneitities
+  owner_relation_name :owners  # optional, for loading associated owner
+  auth_key :email  # optional, defaults to :email
+  password_field :password_digest  # optional, defaults to :password_digest
+end
+```
 
 ### Custom Auth Model
 

lib/omniauth/identity/models/rom.rb

@@ -2,6 +2,9 @@
 
 require "bcrypt"
 
+require "rom"
+require "rom-sql"
+
 module OmniAuth
   module Identity
     module Models
@@ -12,26 +15,28 @@ module Models
       #   class Identity
       #     include OmniAuth::Identity::Models::Rom
       #
-      #     # Configure the ROM container and relation
-      #     self.rom_container = -> { MyDatabase.rom } # See spec_orms/rom_spec.rb for example
-      #     self.rom_relation_name = :identities
-      #     self.owner_relation_name = :owners  # optional, for loading associated owner
-      #     self.auth_key_field = :email  # optional, defaults to :email
-      #     self.password_field = :password_digest  # optional, defaults to :password_digest
+      #     # Configure the ROM container and relation using the DSL (no `self.`):
+      #     rom_container -> { MyDatabase.rom } # accepts a proc or a container object
+      #     rom_relation_name :identities # optional, defaults to :identities
+      #     owner_relation_name :owners  # optional, for loading associated owner
+      #     # Uses OmniAuth::Identity::Model.auth_key to set the auth key (defaults to :email)
+      #     auth_key :email
+      #     # Optional: override the password digest field name (defaults to :password_digest)
+      #     password_field :password_digest
       #   end
       module Rom
         def self.included(base)
+          # Align with other adapters: rely on OmniAuth::Identity::Model for API
           base.include(::OmniAuth::Identity::Model)
           base.extend(ClassMethods)
 
           base.class_eval do
-            # OmniAuth::Identity required method
+            # OmniAuth::Identity required instance API
             # Authenticates the instance with the provided password
-            #
-            # @param password [String] The password to check
-            # @return [self, false] Self if authenticated, false if not
+            # Returns self on success, false otherwise (to match Model.authenticate contract)
             def authenticate(password)
-              password_digest = @identity_data[self.class.password_field || :password_digest]
+              digest_key = self.class.password_field
+              password_digest = @identity_data[digest_key]
               return false unless password_digest
 
               begin
@@ -44,45 +49,65 @@ def authenticate(password)
         end
 
         module ClassMethods
-          # @!attribute [r] DEFAULT_RELATION_NAME
-          # Default relation name to use when rom_relation_name is not set
-          # @return [Symbol]
+          # Default ROM relation name when none is configured
           DEFAULT_RELATION_NAME = :identities
 
-          attr_accessor :rom_container, :rom_relation_name, :owner_relation_name, :auth_key_field, :password_field
+          # Configuration DSL
+          # These methods act like the DSL on `OmniAuth::Identity::Model` (e.g. `auth_key`) —
+          # when called with an argument they set the configuration, and when called
+          # without an argument they return the current value (with sensible defaults).
+          def rom_container(value = false)
+            @rom_container = value unless value == false
+            container = @rom_container
+            container.respond_to?(:call) ? container.call : container
+          end
+
+          def rom_relation_name(value = false)
+            @rom_relation_name = value unless value == false
+            @rom_relation_name || DEFAULT_RELATION_NAME
+          end
 
-          # OmniAuth::Identity required method
-          def auth_key
-            @auth_key_field || :email
+          def owner_relation_name(value = false)
+            @owner_relation_name = value unless value == false
+            @owner_relation_name
           end
 
-          # OmniAuth::Identity required method
-          # Locates a user based on the provided conditions
-          #
-          # @param conditions [Hash] The search conditions
-          # @return [Object, nil] An instance of the identity model or nil if not found
+          def password_field(value = false)
+            @password_field = value unless value == false
+            (@password_field || :password_digest).to_sym
+          end
+
+          # Align with other adapters: use Model.auth_key (getter/setter) for the login attribute
+          # Model.auth_key returns a String; convert to Symbol for ROM queries when needed.
+          def auth_key_symbol
+            (auth_key || "email").to_sym
+          end
+
+          # Locate an identity given conditions (Hash) or a raw key value.
+          # Mirrors other adapters by accepting a conditions hash.
+          # Returns an instance or nil.
           def locate(conditions)
-            key = conditions.is_a?(Hash) ? conditions[auth_key] || conditions[auth_key.to_s] : conditions
-            container = rom_container.respond_to?(:call) ? rom_container.call : rom_container
-            relation = container.relations[rom_relation_name || DEFAULT_RELATION_NAME]
-            identity_data = relation.where(auth_key => key).one
-
-            if identity_data
-              # Load the associated owner if configured
-              if @owner_relation_name && identity_data[:owner_id]
-                owner_relation = container.relations[@owner_relation_name]
-                owner_data = owner_relation.where(id: identity_data[:owner_id]).one
-                new(identity_data, owner_data)
-              else
-                new(identity_data)
-              end
+            key_value = if conditions.is_a?(Hash)
+              conditions[auth_key_symbol] || conditions[auth_key.to_s]
+            else
+              conditions
+            end
+            return nil if key_value.nil?
+
+            relation = rom_container.relations[rom_relation_name]
+            identity_data = relation.where(auth_key_symbol => key_value).one
+            return nil unless identity_data
+
+            if owner_relation_name && identity_data[:owner_id]
+              owner_data = rom_container.relations[owner_relation_name].where(id: identity_data[:owner_id]).one
+              new(identity_data, owner_data)
             else
-              nil
+              new(identity_data)
             end
           end
         end
 
-        # Instance methods for OmniAuth::Identity compatibility
+        # Instance shape matches other adapters for downstream usage
         attr_reader :uid, :email, :name, :info, :owner
 
         def initialize(identity_data, owner_data = nil)
@@ -91,7 +116,7 @@ def initialize(identity_data, owner_data = nil)
           @uid = identity_data[:id]
           @email = identity_data[:email]
 
-          # Get name from owner if available, otherwise use email
+          # Prefer owner name if available, else fall back to email
           @name = if owner_data && owner_data[:name]
             owner_data[:name]
           else
@@ -103,16 +128,15 @@ def initialize(identity_data, owner_data = nil)
             "name" => @name,
           }
 
-          # Expose owner for application use
           @owner = owner_data
         end
 
-        # Access to the underlying identity data hash
+        # Hash-like access to underlying ROM tuple
         def [](key)
           @identity_data[key]
         end
 
-        # Access to owner data
+        # Convenience accessor for owner id
         def owner_id
           @identity_data[:owner_id]
         end

rom_spec_refactored.txt

@@ -0,0 +1,27 @@
+LOADING DEBUGGER: true
+
+Randomized with seed 27610
+
+OmniAuth::Identity::Models::Rom
+  model
+    ::authenticate
+      calls locate with additional scopes when provided
+      recovers gracefully if locate is nil
+      calls locate and then authenticate
+    ::locate
+      returns nil if not found
+      finds a record by auth key
+    class definition
+      does not raise an error
+    owner_relation_name
+      loads associated owner data when owner_relation_name is configured
+    ::authenticate
+      returns false with incorrect password
+      returns false for non-existent user
+      authenticates with correct password
+
+Finished in 1.89 seconds (files took 0.98284 seconds to load)
+10 examples, 0 failures
+
+Randomized with seed 27610
+