start on 18

hjwp · hjwp · commit ac9c85ede1d5 · 2024-07-03T17:02:27.000+01:00
diff --git a/chapter_16_javascript.asciidoc b/chapter_16_javascript.asciidoc
@@ -177,8 +177,13 @@ TIP: I like to keep helper methods in the FT class that's using them,
     It stops the base class from getting too cluttered. YAGNI.
 
 
+[[js-spike]]
 === A Quick "Spike"
 
+((("spike")))
+((("exploratory coding", see="also spiking and de-spiking")))
+((("spiking and de-spiking", "defined")))
+((("prototyping", see="spiking and de-spiking")))
 This will be our first bit of JavaScript.
 We're also interacting with the Bootstrap CSS framework,
 which we maybe don't know very well.
diff --git a/chapter_18_spiking_custom_auth.asciidoc b/chapter_18_spiking_custom_auth.asciidoc
@@ -1,11 +1,9 @@
 [[chapter_18_spiking_custom_auth]]
-User Authentication, Spiking, and [keep-together]#De-Spiking#
--------------------------------------------------------------
+== User Authentication, Spiking, and [keep-together]#De-Spiking#
 
 
-
-((("authentication", id="Adespike18")))Our
-beautiful lists site has been live for a few days, and our users are
+((("authentication", id="Adespike18")))
+Our beautiful lists site has been live for a few days, and our users are
 starting to come back to us with feedback.  "We love the site", they say, "but
 we keep losing our lists.  Manually remembering URLs is hard. It'd be great if
 it could remember what lists we'd started".
@@ -18,8 +16,8 @@ to try out?
 Clearly the requirement here is that people want to have some kind of user
 account on the site.  So, without further ado, let's dive into authentication.
 
-((("passwords")))Naturally
-we're not going to mess about with remembering passwords
+((("passwords")))
+Naturally we're not going to mess about with remembering passwords
 ourselves--besides being 'so' '90s, secure storage of user passwords is a
 security nightmare we'd rather leave to someone else.  We'll use something
 fun called passwordless auth instead.
@@ -30,13 +28,13 @@ leave it to you to discover on your own.)
 
 
 [role="pagebreak-before less_space"]
-Passwordless Auth
-~~~~~~~~~~~~~~~~~
-
+=== Passwordless Auth
 
 
-((("authentication", "passwordless")))((("Oauth")))((("Openid")))What
-authentication system could we use to avoid storing passwords ourselves?
+((("authentication", "passwordless")))
+((("Oauth")))
+((("Openid")))
+What authentication system could we use to avoid storing passwords ourselves?
 Oauth?  Openid?  "Login with Facebook"?   Ugh.  For me those all have
 unacceptable creepy overtones; why should Google or Facebook know what sites
 you're logging into and when?
@@ -67,30 +65,7 @@ a production website, but this is just a fun toy project so let's give it a go.
 
 
 
-Exploratory Coding, aka "Spiking"
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-TODO: I have copied this paragraph into <<chapter_16_javascript>> so it's now
-a duplicate.
-
-
-((("exploratory coding", see="also spiking and de-spiking")))((("spiking and de-spiking", "defined")))((("prototyping", see="spiking and de-spiking")))Before
-I wrote this chapter all I knew about passwordless auth was the outline
-I'd read in the article linked above.  I'd never seen any code for it, and didn't really know where
-to start in building it.
-
-In pass:[Chapters <a data-type="xref" href="#chapter_13_database_layer_validation" data-xrefstyle="select:labelnumber">#chapter_13_database_layer_validation</a> and <a data-type="xref" href="#chapter_14_simple_form" data-xrefstyle="select:labelnumber">#chapter_14_simple_form</a>] we saw that you
-can use a unit test as a way of exploring a new API or tool, but sometimes you
-just want to hack something together without any
-tests at all, just to see if it works, to learn it or get a feel for it.
-That's absolutely fine.  When learning a new tool or exploring a new possible
-solution, it's often appropriate to leave the rigorous TDD process to one side,
-and build a little prototype without tests, or perhaps with very few tests.
-The goat doesn't mind looking the other way for a bit.
-
-This kind of prototyping activity is often called a "spike", for 
-http://stackoverflow.com/questions/249969/why-are-tdd-spikes-called-spikes[reasons
-best known].
+=== Another Spike
 
 ((("django-allauth")))((("python-social-auth")))The
 first thing I did was take a look at existing Python and Django authentication
@@ -110,13 +85,16 @@ yourself that it really does work.
 
 
 
-Starting a Branch for the Spike
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+==== Starting a Branch for the Spike
+
+((("spiking and de-spiking", "branching your VCS")))
+((("Git", "creating branches")))
+This spike is going to be a bit more involved that the last one,
+so we'll be a little more rigorous with our version control.
 
-((("spiking and de-spiking", "branching your VCS")))((("Git", "creating branches")))Before
-embarking on a spike, it's a good idea to start a new branch, so you
-can still use your VCS without worrying about your spike commits getting mixed
-up with your production code:
+Before embarking on a spike it's a good idea to start a new branch,
+so you can still use your VCS without worrying about
+your spike commits getting mixed up with your production code:
 
 [subs="specialcharacters,quotes"]
 ----
@@ -135,8 +113,7 @@ spike:
 *****
 
 
-Frontend Log in UI
-^^^^^^^^^^^^^^^^^^
+==== Frontend Log in UI
 
 
 ((("authentication", "frontend log in UI")))Let's
@@ -145,27 +122,27 @@ enter your email address into the navbar, and a logout link for
 users who are already authenticated:
 
 [role="sourcecode"]
-.lists/templates/base.html (ch16l001)
+.lists/templates/base.html (ch18l001)
 ====
 [source,html]
 ----
-<body>
-  <div class="container">
-
-    <div class="navbar">
-      {% if user.is_authenticated %}
-        <p>Logged in as {{ user.email }}</p>
-        <p><a id="id_logout" href="{% url 'logout' %}">Log out</a></p>
-      {% else %}
-        <form method="POST" action ="{% url 'send_login_email' %}">
-          Enter email to log in: <input name="email" type="text" />
-          {% csrf_token %}
-        </form>
-      {% endif %}
-    </div>
-
-    <div class="row">
-    [...]
+  <body>
+    <div class="container">
+
+      <div class="navbar">
+        {% if user.is_authenticated %}
+          <p>Logged in as {{ user.email }}</p>
+          <p><a id="id_logout" href="{% url 'logout' %}">Log out</a></p>
+        {% else %}
+          <form method="POST" action ="">
+            Enter email to log in: <input name="email" type="text" />
+            {% csrf_token %}
+          </form>
+        {% endif %}
+      </div>
+
+      <div class="row justify-content-center p-5 bg-body-tertiary rounded-3">
+      [...]
 ----
 ====
 
diff --git a/source/chapter_17_second_deploy/superlists b/source/chapter_17_second_deploy/superlists
@@ -1 +1 @@
-Subproject commit 119830aafa4b8d7f2940fe4066b7472521e53b01
+Subproject commit 2b71e5be636a06304e4bc6fd3091e414ef26f25a
diff --git a/source/chapter_18_spiking_custom_auth/superlists b/source/chapter_18_spiking_custom_auth/superlists
@@ -1 +1 @@
-Subproject commit 2e3e16bffc12ed9b1e6c38025279a8aed9c1f489
+Subproject commit ca5e066e8a2d34640a9a11711e3d131d79028ddf
diff --git a/tests/test_chapter_14_simple_form.py b/tests/test_chapter_14_simple_form.py
@@ -1,5 +1,4 @@
 #!/usr/bin/env python3
-# -*- coding: utf-8 -*-
 import unittest
 
 from book_tester import ChapterTest

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,4 @@`
`1`	`1`	`#!/usr/bin/env python3`
`2`		`-# -- coding: utf-8 --`
`3`	`2`	`import unittest`
`4`	`3`
`5`	`4`	`from book_tester import ChapterTest`