[ { "path": ".gitignore", "content": "node_modules\nbower_components\nbuild\n.tmp\n.idea\n" }, { "path": ".gitmodules", "content": "[submodule \"docs/source/_themes/stormpath\"]\n\tpath = docs/source/_themes/stormpath\n\turl = https://github.com/stormpath/stormpath-sphinx-theme.git\n" }, { "path": ".jshintrc", "content": "{\n \"node\": true,\n \"browser\": true,\n \"esnext\": true,\n \"bitwise\": true,\n \"camelcase\": true,\n \"curly\": true,\n \"eqeqeq\": true,\n \"immed\": true,\n \"indent\": 2,\n \"latedef\": true,\n \"newcap\": true,\n \"noarg\": true,\n \"quotmark\": \"single\",\n \"regexp\": true,\n \"undef\": true,\n \"unused\": true,\n \"strict\": true,\n \"trailing\": true,\n \"smarttabs\": true,\n \"globals\": {\n \"angular\": false\n }\n}\n" }, { "path": ".npmignore", "content": "app\ndocs\nexample\nngdoc_assets\ntest\n" }, { "path": "CHANGELOG.md", "content": "# 2.0.1\n\nFixed a bug in `$isCurrentDomain` that would incorrectly report a cross-domain situation in IE11.\n\n# 2.0.0\n\nThis release adds support for the [Stormpath Client API][], which allows you to authenticate the user directly with Stormpath (authentication does not require special software in your server). The user receives an access token, which can be used to authorize requests on your server. If you need to authorize requests on your server, you will will want to use one of our SDKs to make that process simpler.\n\nPlease see the Readme for the new instructions for using the Client API.\n\n## Breaking Changes\n\nSocial Login now requires the use of the Client API, you will need to enable the Client API for your Stormpath Application. This can be found under the Policies section of the application in our Admin Console.\n\n# 1.1.1\n\nOur UI Router integration will now look for `data.authorities` on UI state configuration, and apply the same behavior as `sp.authorize.group`. This is a convenience for [JHipster](https://jhipster.github.io/) users, as they\nalready use `data.authorities` to declare the roles that a user must have in order to access a view.\n\n# 1.1.0\n\n* The `$user.get()` method now takes a boolean `bypassCache` option, e.g. `$user.get(true)` will make a new request of the `/me` endpoint, instead of returning the user data that was already cached on login.\n\n* Logout requests (which makes a POST to `/logout` on our framework integration) are now using `Content-Type: application/x-www-form-urlencoded`, in order to prevent an un-necessary OPTIONS request.\n\n* Fixed #151, an un-intended catching of error responses on all HTTP responses. Now we only handle error responses that come from our known framework endpoints.\n\n# 1.0.0\n\nThis version needs at least version `3.0.0` of [express-stormpath](https://github.com/stormpath/express-stormpath).\n\n* Added support for the registration view model ([#119](https://github.com/stormpath/stormpath-sdk-angularjs/pull/119))\n\n This allows you to customize the registration form using the Stormpath Express configuration: \n\n* Added support for the login view model ([#118](https://github.com/stormpath/stormpath-sdk-angularjs/pull/118))\n\n This allows you to customize the login form using the Stormpath Express configuration: \n\n* Changed logout request to use POST ([#117](https://github.com/stormpath/stormpath-sdk-angularjs/pull/117))\n* Added support for new error structure ([#114](https://github.com/stormpath/stormpath-sdk-angularjs/pull/114))\n* Added X-Stormpath-Agent header to requests ([#107](https://github.com/stormpath/stormpath-sdk-angularjs/pull/107))\n\n# 0.9.0\n\n* Adding support for ngRoute. Please see the API Documentation and the new\n `ng-route-app` in the examples folder!\n\n* Bug fixed: you could navigate to the login form, even when logged in.\n\n* Updating `express-stormpath` versions in example projects.\n\n# 0.8.2\n\n* Bug fixed: `stormpath-sdk-angularjs` now exports 'stormpath' instead of 'ui.router'\n\n# 0.8.1\n\n* Fixed bug that displayed social login titles without any social login providers\n* Updated grunt-html2js to version 0.3.5\n* Updated grunt-contrib-clean to version 0.7.0\n* Updated grunt-contrib-uglify to version 0.10.1\n* Removed dist folder from the ignored file so we can use this lib with webpack or browserify\n\n# 0.8.0\n\n* Added support for social login with Google and Facebook (requires use of\n [Express-Stormpath][] as your backend)\n\n# 0.7.2\n\n**Released on October 26th, 2015**\n\n* Updating `grunt-contrib` dependencies\n\n# 0.7.1\n\n**Released on October 8th, 2015**\n\nFixed the [ifUserInGroup][] and [ifUserNotInGroup][] directives to expect the\nnew data format (expanded `account.groups`) from the `/me` route\n\n# 0.7.0\n\n### ! ** Many Breaking Changes ** !\n\nThis library has been upgraded to conform to our framework specification,\nthis means that many of the endpoints and default URLs have changed.\n\nIf you have built a server integration by hand, you will need to read this changelog\nto know which URLs and HTTP responses that you will need to change.\n\nIf you are using [Stormpath Express SDK][], that module is being deprecated. You\nwill need to start using [Express-Stormpath][] if you want to use this and\nfuture versions of this Angular SDK. We suggest that you read the [Server\nConfiguration][] section of our [Yeoman Guide][], it will show you the new way\nof initializing [Express-Stormpath][] and attaching it to your application\n\n#### Login Changes\n\nThe login feature now uses `/login` as the location where posts the login\nform. Previously this was `/oauth/token`. This can be configured with the\n`AUTHENTICATION_ENDPOINT` property in `STORMPATH_CONFIG`\n\n#### User Context Changes\n\nThis SDK now uses the `/me` URL to determine the context of the current user.\nPreviously this was `/api/users/current`. This can be configured with the\n`CURRENT_USER_URI` property in `STORMPATH_CONFIG`\n\n#### Email Verification Changes\n\nThis SDK now uses the `/verify` URL to consume email verification tokens.\nPreviously this was `/api/emailVerificationTokens`. This can be configured with the\n`EMAIL_VERIFICATION_ENDPOINT` property in `STORMPATH_CONFIG`\n\nThe same URL, `/verify`, is now used to request a re-send of a verification email.\nPOST a JSON body with an `email` property to trigger this action. Previously\nthis was `/api/verificationEmails` and the `RESEND_EMAIL_VERIFICATION_ENDPOINT`\nproperty has been removed from `STORMPATH_CONFIG`.\n\n#### Password Reset Changes\n\nThis SDK now uses `/forgot` to request a password reset email, POST a JSON body\nto this endpoint with an `email` property to trigger this action. Previously\nthis was `/api/passwordResetTokens` and the\n`PASSWORD_RESET_TOKEN_COLLECTION_ENDPOINT` property has been removed from\n`STORMPATH_CONFIG`. The new property is `FORGOT_PASSWORD_ENDPOINT`\n\nThe `/change` URL is now used to POST a new password, with a valid `sptoken`.\nPreviously this feature was supported with the `/api/passwordResetTokens` URL\nand the `PASSWORD_RESET_TOKEN_COLLECTION_ENDPOINT` property has been removed\nfrom `STORMPATH_CONFIG`. The new property is `CHANGE_PASSWORD_ENDPOINT`\n\nThe default login form now links to the forgot password flow via an href link\nto `/forgot`. Previously it was using a UI Router state name of\n`passwordResetRequest`\n\n#### Registration Changes\n\nThe SDK now uses `/register` to POST data for a new account, previously this\nwas `/api/users` and the `USER_COLLECTION_URI` property has been removed from\n`STORMPATH_CONFIG`. The new property is `REGISTER_URI`.\n\nThe callback for `$user.create()` will now give you the entire account object.\nPreviously it gave you a truthy value that would indicate if the account required\nemail verification. Now that the entire account object is passed, you need to\ninspect the account object's `status` property to see if it is `UNVERIFIED`.\n\nIf your registration form is passing data for the new account's custom data\nobject, you will need to change your `ng-model` references from\n`formModel.customData.` to `formModel.`. We will automaticaly\nfind the properties that are not part of the base account object, and place them\non the custom data object for you.\n\n#### Error responses\n\nThis SDK now expects any HTTP call which results in a `4xx` error to supply an\n`error` property on the JSON body of the response. Previously it expected\nan `errorMessage` property\n\n\n# 0.6.0\n\n### Breaking Changes\n\nStormpath's password reset API accepts email address only,\nnot username. This library was allowing a username to be\nsent, but that will not work. If using the [Stormpath Express SDK]\nyou will also need to update that library to `>=0.5.0`\n\n# 0.5.5\n\nFix a redirect loop in the state change interceptor\n\n# 0.5.4\n\nFix an undefined attribute bug with the group membership directives\n\n# 0.5.3\n\nAdding social login support. **NOTE**: this is overloading oauth grant_type,\nand we will change this API in the future so use with this disclaimer.\n\n### Bug Fixes\n\n# 0.5.2\n\n### Improvements\n\n* Remove un-used `$cookieStore` dependency\n\n### Bug Fixes\n\n* The config option FORM_CONTENT_TYPE was not being used to modify\n the body of the request (only the content-type header)\n\n# 0.5.1\n\n### Bug Fixes\n\nThe `defaultPostLoginState` option was not being used by the SDK, but now it is!\n\n# 0.5.0\n\n### New Features\n\nXHR requests now set the `withCredentials` option to `true`, allowing you to\nmake cross-domain requests that will send the `access_token` and `XSRF-TOKEN`\ncookies. Your server must respond with the necessary\n[Cross-Origin-Resource-Sharing (CORS)](https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS) headers.\nIf you are using our Express SDK this is done by specifying\n[Allowed Origins on spConfig](https://github.com/stormpath/stormpath-sdk-express#allowedOrigins)\n\n# 0.4.1\n\n### New Features\n\nThe UI Router integration now accepts a `forbiddenState` option, this is the\nstate we will send the user to if they are unauthorized for a given state.\nThis is useful if you want to show a default \"Forbidden\" view in these\nsituations.\n\nAdded documentation for the [$stateChangeUnauthenticated] and\n[$stateChangeUnauthorized] events!\n\n# 0.4.0\n\n### Breaking Changes\n\nThe [ifUserInGroup] and [ifUserNotInGroup] directives now requires you to pass\neither a string expression or a reference to a scope variable. I.E. this will\nnow throw a parse exception unless `admin` is a reference to a scope property:\n\n```html\n
Hello, Administrator
\n```\n\nIt should be re-written to be a string expression with quotes:\n\n```html\n
Hello, Administrator
\n```\n\n## New Features\n\nThe [ifUserInGroup] and [ifUserNotInGroup] directives now support regular\nexpressions :)\n\nSee the documentation of [ifUserInGroup] for more information\n\n# 0.3.0\n\n### Breaking Changes\n\n* The `logout` directive is renamed to\n[`spLogout`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.spLogout:spLogout)\n\n* The registration form now uses property names of\n`givenName` and `surname`, instead of `firstName` and `lastName`\n\n* Form submissions now use `application/x-www-form-urlencoded` as the Content Type.\nYour server needs to negotiate this type, if you are using our server SDKs this happens\nfor you. If you wish to continue using `application/json` as the Content\nType you can define `STORMPATH_CONFIG.FORM_CONTENT_TYPE='application/json'` in a\nconfig block\n\n## Deprecation Notices\n\n* [`whileResolvingUser`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.whileResolvingUser:while-resolving-user)\nis deprecatead. Use\n[`ifUserStateKnown`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUserStateKnown:ifUserStateKnown)\ninstead.\n\n### New Features\n\n* **Custom Data on Registration**. You can now pass custom data during\nregistration, simply reference `formModel.customData.myCustomProperty` in your\n`ng-model` directive. This is only possible if you are supplying a custom\ntemplate to the directive. See the\n[`spRegistrationForm`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.spRegistrationForm:spRegistrationForm)\ndirective for more detail.\n\n* **Group-Based Access Control**. This can now control access to UI Routes,\nbased on group membership. See\n[`SpStateConfig`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.SpStateConfig:SpStateConfig)\nfor examples. We've also introduced the\n[`ifUserInGroup`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUserInGroup:ifUserInGroup)\nand\n[`ifUserNotInGroup`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUserNotInGroup:ifUserNotInGroup)\ndirectives.\n\n### Bug Fixes\n\n* [`whileResolvingUser`](https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.whileResolvingUser:while-resolving-user)\nwould break after logout (user state was not properly reflected after logout)\n\n[Stormpath Express SDK]: https://github.com/stormpath/stormpath-sdk-express\n[$stateChangeUnauthenticated]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.$stormpath#events_$statechangeunauthenticated\n[$stateChangeUnauthorized]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.$stormpath#events_$statechangeunauthorized\n[ifUserInGroup]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUserInGroup:ifUserInGroup\n[ifUserNotInGroup]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUserNotInGroup:ifUserNotInGroup\n[Express-Stormpath]: https://github.com/stormpath/express-stormpath\n[Server Configuration]: http://docs.stormpath.com/angularjs/guide/protect_api.html\n[Yeoman Guide]: http://docs.stormpath.com/angularjs/guide/\n[Stormpath Client API]: https://docs.stormpath.com/client-api/product-guide/latest/index.html" }, { "path": "CONTRIBUTING.md", "content": "# Contribution Guide\n\nWe love pull requests!\n\nHere are a few things you'll need to know if you want to make a contribution to\nthis library.\n\n### Development Workflow\n\nAll modifications should happen to the source files in the `src/` directory, not\nthe files minified in the `dist/` directory. The latter is used for keeping a\nminified version of the current, tagged build. We give this to\n[Bower](http://bower.io).\n\nYou can submit a PR after modifying the source files. We will publish a new\nversion in `dist/` when we are ready to cut a new release.\n\n### API Documentation\n\nThe API documentation is auto-generated from the the JS-Doc style comments\nthat you find in the `src/` files. Do not edit files in `dist/`.\n\nYou can regenerate the API docs by running `grunt docs`. If you want to\nsee your changes as you edit them you can use `grunt serve` to start a\nlivereload server that will reload your changes as you make them.\n\nWhen editing the JS Doc comments, please follow this order for tags:\n\n```\n@ngdoc\n@name\n@methodOf (or eventOf, etc)\n@eventType (if applicable)\n@param\n@returns\n@description\n@example\n```\n\nAfter you have made your edits, commit your changes and make a pull request.\n\nAnd put a newline before and after the line that includes the tag.\n\n### Product Guide Documentation\n\nThe source files for the product guide are located in the `docs/source`\ndirectory. The format is RST and they are compiled by Sphinx.\n\nTo work with the product guide, run `grunt guide`. This will start a livereload\nserver which reloads the documents as you edit them.\n\nAfter you have made your edits, commit the changes to the RST files and make\na pull request." }, { "path": "Gruntfile.js", "content": "// Generated on 2015-01-02 using generator-angular-fullstack 2.0.13\n'use strict';\n\nmodule.exports = function (grunt) {\n // Load grunt tasks automatically\n require('load-grunt-tasks')(grunt);\n\n\n grunt.initConfig({\n builddir: '.tmp/build',\n tmpdir: '.tmp',\n srcDir: './src',\n src: '<%= srcDir %>/**/*.js',\n pkg: grunt.file.readJSON('package.json'),\n buildtag: '-dev-' + grunt.template.today('yyyy-mm-dd'),\n meta: {\n banner: '/**\\n' +\n ' * <%= pkg.name %>\\n' +\n ' * Copyright <%= pkg.author %> '+grunt.template.today('yyyy')+'\\n' +\n ' * <%= pkg.description %>\\n' +\n ' * @version v<%= pkg.version %><%= buildtag %>\\n' +\n ' * @link <%= pkg.homepage %>\\n' +\n ' * @license <%= pkg.license %>\\n' +\n ' */'\n },\n clean: {\n ngdocs: '<%= tmpdir %>/site/**/*'\n },\n replace: {\n dist: {\n options: {\n patterns: [\n {\n match: 'PACKAGE_VERSION',\n replacement: '<%= pkg.version %>'\n },\n {\n match: 'PACKAGE_NAME',\n replacement: '<%= pkg.name %>'\n }\n ]\n },\n files: [\n {expand: true, flatten: true, src: ['<%= builddir %>/<%= pkg.name %>*.js'], dest: '<%= builddir %>'}\n ]\n }\n },\n concat: {\n options: {\n banner: '<%= meta.banner %>\\n\\n'+\n '/* commonjs package manager support (eg componentjs) */\\n'+\n 'if (typeof module !== \"undefined\" && typeof exports !== \"undefined\" && module.exports === exports){\\n'+\n ' module.exports = \\'stormpath\\';\\n'+\n '}\\n\\n'+\n '(function (window, angular, undefined) {\\n',\n footer: '})(window, window.angular);'\n },\n build: {\n src: '<%= src %>',\n dest: '<%= builddir %>/<%= pkg.name %>.js'\n }\n },\n uglify: {\n options: {\n banner: '<%= meta.banner %>\\n'\n },\n build: {\n files: {\n '<%= builddir %>/<%= pkg.name %>.min.js': ['', '<%= concat.build.dest %>'],\n '<%= builddir %>/<%= pkg.name %>.tpls.min.js': ['', '<%= builddir %>/<%= pkg.name %>.tpls.js']\n }\n }\n },\n release: {\n files: ['<%= pkg.name %>.js', '<%= pkg.name %>.min.js'],\n src: '<%= builddir %>',\n dest: 'release'\n },\n jshint: {\n all: ['Gruntfile.js', 'src/*.js', '<%= builddir %>/<%= pkg.name %>.js'],\n options: {\n eqnull: true\n }\n },\n watch: {\n gruntfile: {\n files: ['Gruntfile.js']\n },\n ngdocs: {\n files: ['<%= src %>','ngdoc_assets/**/*'],\n tasks: ['docs'],\n options: {\n livereload: 35730,\n spawn: false\n }\n },\n guide: {\n files: ['docs/source/*.rst','docs/source/_themes/stormpath/*/**'],\n tasks: ['shell:guide'],\n options: {\n livereload: 35731,\n spawn: false\n }\n },\n src: {\n files: ['<%= src %>'],\n tasks: ['build']\n },\n develop: {\n files: ['<%= srcDir %>/*.{js,html}'],\n tasks: ['dist']\n }\n },\n connect: {\n ngdocs: {\n options: {\n port: 9001,\n base: '<%= tmpdir %>/site',\n livereload: 35730\n }\n },\n guide: {\n options: {\n port: 9002,\n livereload: 35731,\n base: ['docs/build/html']\n }\n }\n },\n open: {\n docs: {\n url: 'http://localhost:<%= connect.ngdocs.options.port %>'\n },\n guide:{\n url: 'http://localhost:<%= connect.guide.options.port %>'\n }\n },\n ngdocs: {\n options: {\n dest: '<%= tmpdir %>/site',\n scripts: [\n 'angular.js'\n ],\n styles: [ 'ngdoc_assets/stormpath-angular.css' ],\n html5Mode: false,\n title: 'stormpath-sdk-angularjs',\n startPage: '/api',\n navTemplate: 'ngdoc_assets/nav.html'\n },\n api: {\n src: ['<%= src %>','ngdoc_assets/index.ngdoc'],\n title: 'API Reference',\n api: true\n }\n },\n copy: {\n dist: {\n files:[{\n expand: true,\n flatten: true,\n src: '<%= builddir %>/*',\n dest: 'dist/'\n }]\n }\n },\n html2js: {\n options: {\n module: 'stormpath.templates',\n fileHeaderString: '<%= meta.banner %>\\n\\n'+\n '/* commonjs package manager support (eg componentjs) */\\n'+\n 'if (typeof module !== \"undefined\" && typeof exports !== \"undefined\" && module.exports === exports){\\n'+\n ' module.exports = \\'stormpath.templates\\';\\n'+\n '}\\n\\n'+\n '(function (window, angular, undefined) {\\n',\n fileFooterString: '})(window, window.angular);',\n htmlmin: {\n collapseBooleanAttributes: false,\n collapseWhitespace: true,\n removeAttributeQuotes: true,\n removeComments: true,\n removeEmptyAttributes: false,\n removeRedundantAttributes: true,\n removeScriptTypeAttributes: false,\n removeStyleLinkTypeAttributes: false\n }\n },\n main: {\n src: ['src/**/*.tpl.html'],\n dest: '<%= builddir %>/<%= pkg.name %>.tpls.js'\n }\n },\n shell: {\n guide: {\n command: 'make clean && make html',\n options:{\n execOptions: {\n cwd: 'docs/'\n }\n }\n }\n }\n });\n\n grunt.registerTask('docs', 'Builds the Guide and ngDocs for deployment',function () {\n grunt.task.run(\n ['clean:ngdocs','ngdocs','shell:guide']\n );\n });\n\n grunt.registerTask('serve',\n 'Serves the API documentation, and live reloads as you edit it',\n ['ngdocs','connect:ngdocs','open:docs','watch:ngdocs']\n );\n\n grunt.registerTask('build', 'Perform a normal build', ['concat', 'html2js','uglify','docs']);\n\n grunt.registerTask('dist', 'Perform a distribution', ['build', 'replace:dist', 'copy:dist']);\n\n grunt.registerTask('develop',\n 'Build source and distribution, useful if you are modifying this module as a linked modue while developging another module',\n ['watch:develop']\n );\n\n grunt.registerTask('guide',\n 'Serve and livereload the Guide from the docs/ folder',\n ['connect:guide','open:guide','watch:guide']\n );\n};\n" }, { "path": "LICENSE", "content": "\n\n Apache License\n Version 2.0, January 2004\n http://www.apache.org/licenses/\n\n TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION\n\n 1. Definitions.\n\n \"License\" shall mean the terms and conditions for use, reproduction,\n and distribution as defined by Sections 1 through 9 of this document.\n\n \"Licensor\" shall mean the copyright owner or entity authorized by\n the copyright owner that is granting the License.\n\n \"Legal Entity\" shall mean the union of the acting entity and all\n other entities that control, are controlled by, or are under common\n control with that entity. For the purposes of this definition,\n \"control\" means (i) the power, direct or indirect, to cause the\n direction or management of such entity, whether by contract or\n otherwise, or (ii) ownership of fifty percent (50%) or more of the\n outstanding shares, or (iii) beneficial ownership of such entity.\n\n \"You\" (or \"Your\") shall mean an individual or Legal Entity\n exercising permissions granted by this License.\n\n \"Source\" form shall mean the preferred form for making modifications,\n including but not limited to software source code, documentation\n source, and configuration files.\n\n \"Object\" form shall mean any form resulting from mechanical\n transformation or translation of a Source form, including but\n not limited to compiled object code, generated documentation,\n and conversions to other media types.\n\n \"Work\" shall mean the work of authorship, whether in Source or\n Object form, made available under the License, as indicated by a\n copyright notice that is included in or attached to the work\n (an example is provided in the Appendix below).\n\n \"Derivative Works\" shall mean any work, whether in Source or Object\n form, that is based on (or derived from) the Work and for which the\n editorial revisions, annotations, elaborations, or other modifications\n represent, as a whole, an original work of authorship. For the purposes\n of this License, Derivative Works shall not include works that remain\n separable from, or merely link (or bind by name) to the interfaces of,\n the Work and Derivative Works thereof.\n\n \"Contribution\" shall mean any work of authorship, including\n the original version of the Work and any modifications or additions\n to that Work or Derivative Works thereof, that is intentionally\n submitted to Licensor for inclusion in the Work by the copyright owner\n or by an individual or Legal Entity authorized to submit on behalf of\n the copyright owner. For the purposes of this definition, \"submitted\"\n means any form of electronic, verbal, or written communication sent\n to the Licensor or its representatives, including but not limited to\n communication on electronic mailing lists, source code control systems,\n and issue tracking systems that are managed by, or on behalf of, the\n Licensor for the purpose of discussing and improving the Work, but\n excluding communication that is conspicuously marked or otherwise\n designated in writing by the copyright owner as \"Not a Contribution.\"\n\n \"Contributor\" shall mean Licensor and any individual or Legal Entity\n on behalf of whom a Contribution has been received by Licensor and\n subsequently incorporated within the Work.\n\n 2. Grant of Copyright License. Subject to the terms and conditions of\n this License, each Contributor hereby grants to You a perpetual,\n worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n copyright license to reproduce, prepare Derivative Works of,\n publicly display, publicly perform, sublicense, and distribute the\n Work and such Derivative Works in Source or Object form.\n\n 3. Grant of Patent License. Subject to the terms and conditions of\n this License, each Contributor hereby grants to You a perpetual,\n worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n (except as stated in this section) patent license to make, have made,\n use, offer to sell, sell, import, and otherwise transfer the Work,\n where such license applies only to those patent claims licensable\n by such Contributor that are necessarily infringed by their\n Contribution(s) alone or by combination of their Contribution(s)\n with the Work to which such Contribution(s) was submitted. If You\n institute patent litigation against any entity (including a\n cross-claim or counterclaim in a lawsuit) alleging that the Work\n or a Contribution incorporated within the Work constitutes direct\n or contributory patent infringement, then any patent licenses\n granted to You under this License for that Work shall terminate\n as of the date such litigation is filed.\n\n 4. Redistribution. You may reproduce and distribute copies of the\n Work or Derivative Works thereof in any medium, with or without\n modifications, and in Source or Object form, provided that You\n meet the following conditions:\n\n (a) You must give any other recipients of the Work or\n Derivative Works a copy of this License; and\n\n (b) You must cause any modified files to carry prominent notices\n stating that You changed the files; and\n\n (c) You must retain, in the Source form of any Derivative Works\n that You distribute, all copyright, patent, trademark, and\n attribution notices from the Source form of the Work,\n excluding those notices that do not pertain to any part of\n the Derivative Works; and\n\n (d) If the Work includes a \"NOTICE\" text file as part of its\n distribution, then any Derivative Works that You distribute must\n include a readable copy of the attribution notices contained\n within such NOTICE file, excluding those notices that do not\n pertain to any part of the Derivative Works, in at least one\n of the following places: within a NOTICE text file distributed\n as part of the Derivative Works; within the Source form or\n documentation, if provided along with the Derivative Works; or,\n within a display generated by the Derivative Works, if and\n wherever such third-party notices normally appear. The contents\n of the NOTICE file are for informational purposes only and\n do not modify the License. You may add Your own attribution\n notices within Derivative Works that You distribute, alongside\n or as an addendum to the NOTICE text from the Work, provided\n that such additional attribution notices cannot be construed\n as modifying the License.\n\n You may add Your own copyright statement to Your modifications and\n may provide additional or different license terms and conditions\n for use, reproduction, or distribution of Your modifications, or\n for any such Derivative Works as a whole, provided Your use,\n reproduction, and distribution of the Work otherwise complies with\n the conditions stated in this License.\n\n 5. Submission of Contributions. Unless You explicitly state otherwise,\n any Contribution intentionally submitted for inclusion in the Work\n by You to the Licensor shall be under the terms and conditions of\n this License, without any additional terms or conditions.\n Notwithstanding the above, nothing herein shall supersede or modify\n the terms of any separate license agreement you may have executed\n with Licensor regarding such Contributions.\n\n 6. Trademarks. This License does not grant permission to use the trade\n names, trademarks, service marks, or product names of the Licensor,\n except as required for reasonable and customary use in describing the\n origin of the Work and reproducing the content of the NOTICE file.\n\n 7. Disclaimer of Warranty. Unless required by applicable law or\n agreed to in writing, Licensor provides the Work (and each\n Contributor provides its Contributions) on an \"AS IS\" BASIS,\n WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or\n implied, including, without limitation, any warranties or conditions\n of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A\n PARTICULAR PURPOSE. You are solely responsible for determining the\n appropriateness of using or redistributing the Work and assume any\n risks associated with Your exercise of permissions under this License.\n\n 8. Limitation of Liability. In no event and under no legal theory,\n whether in tort (including negligence), contract, or otherwise,\n unless required by applicable law (such as deliberate and grossly\n negligent acts) or agreed to in writing, shall any Contributor be\n liable to You for damages, including any direct, indirect, special,\n incidental, or consequential damages of any character arising as a\n result of this License or out of the use or inability to use the\n Work (including but not limited to damages for loss of goodwill,\n work stoppage, computer failure or malfunction, or any and all\n other commercial damages or losses), even if such Contributor\n has been advised of the possibility of such damages.\n\n 9. Accepting Warranty or Additional Liability. While redistributing\n the Work or Derivative Works thereof, You may choose to offer,\n and charge a fee for, acceptance of support, warranty, indemnity,\n or other liability obligations and/or rights consistent with this\n License. However, in accepting such obligations, You may act only\n on Your own behalf and on Your sole responsibility, not on behalf\n of any other Contributor, and only if You agree to indemnify,\n defend, and hold each Contributor harmless for any liability\n incurred by, or claims asserted against, such Contributor by reason\n of your accepting any such warranty or additional liability.\n\n END OF TERMS AND CONDITIONS\n\n APPENDIX: How to apply the Apache License to your work.\n\n To apply the Apache License to your work, attach the following\n boilerplate notice, with the fields enclosed by brackets \"[]\"\n replaced with your own identifying information. (Don't include\n the brackets!) The text should be enclosed in the appropriate\n comment syntax for the file format. We also recommend that a\n file or class name and description of purpose be included on the\n same \"printed page\" as the copyright notice for easier\n identification within third-party archives.\n\n Copyright 2015 Stormpath, Inc.\n\n Licensed under the Apache License, Version 2.0 (the \"License\");\n you may not use this file except in compliance with the License.\n You may obtain a copy of the License at\n\n http://www.apache.org/licenses/LICENSE-2.0\n\n Unless required by applicable law or agreed to in writing, software\n distributed under the License is distributed on an \"AS IS\" BASIS,\n WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n See the License for the specific language governing permissions and\n limitations under the License.\n" }, { "path": "OLD-README.md", "content": "# Stormpath is Joining Okta\nWe are incredibly excited to announce that [Stormpath is joining forces with Okta](https://stormpath.com/blog/stormpaths-new-path?utm_source=github&utm_medium=readme&utm-campaign=okta-announcement). Please visit [the Migration FAQs](https://stormpath.com/oktaplusstormpath?utm_source=github&utm_medium=readme&utm-campaign=okta-announcement) for a detailed look at what this means for Stormpath users.\n\nWe're available to answer all questions at [support@stormpath.com](mailto:support@stormpath.com).\n\n# Stormpath AngularJS SDK\n\n[![NPM Version](https://img.shields.io/npm/v/stormpath-sdk-angularjs.svg?style=flat)](https://npmjs.org/package/stormpath-sdk-angularjs)\n[![NPM Downloads](http://img.shields.io/npm/dm/stormpath-sdk-angularjs.svg?style=flat)](https://npmjs.org/package/stormpath-sdk-angularjs)\n[![Bower Version](https://img.shields.io/bower/v/stormpath-sdk-angularjs.svg?style=flat)](https://bower.io)\n[![Build Status](https://img.shields.io/travis/stormpath/stormpath-sdk-angularjs.svg?style=flat)](https://travis-ci.org/stormpath/stormpath-sdk-angularjs)\n\nThis module provides services and directives for AngularJS that will allow you to solve common user management tasks using [Stormpath](https://stormpath.com/), such as *login* and *signup*.\n\n*Stormpath is a User Management API that reduces development time with instant-on, scalable user infrastructure. Stormpath's intuitive API and expert support make it easy for developers to authenticate, manage and secure users and roles in any application.*\n\n* [Getting Started](#getting-started)\n* [Documentation](#documentation)\n* [Example](#example)\n* [Help](#help)\n* [Contributing](#contributing)\n* [License](#license)\n\n## Getting Started\n\nFollow these steps to add Stormpath user authentication to your AngularJS app.\n\n1. **Install or Download the Stormpath Angular SDK**\n\n If you are using Bower or NPM, you can install this module with the respective command:\n\n ```\n npm install stormpath-sdk-angularjs --save\n ```\n\n ```\n bower install stormpath-sdk-angularjs --save\n ```\n\n If you are not using a package manager, you can download the latest source from our Github CDN by using these links:\n\n * [stormpath-sdk-angularjs.min.js](https://raw.githubusercontent.com/stormpath/stormpath-sdk-angularjs/master/dist/stormpath-sdk-angularjs.min.js)\n * [stormpath-sdk-angularjs.tpls.min.js](https://raw.githubusercontent.com/stormpath/stormpath-sdk-angularjs/master/dist/stormpath-sdk-angularjs.tpls.min.js)\n\n Then include them in your *index.html* file:\n\n ```html\n \n \n ```\n\n2. **Add the Module to Your App's Dependencies**\n\n Add the `stormpath` module and templates to your app's dependencies in *app.js*:\n\n ```javascript\n var app = angular.module('myApp', [..., 'stormpath', 'stormpath.templates']);\n ```\n\n3. **Configure Stormpath**\n\n The Angular SDK leverages the [Stormpath Client API][] for its authentication needs. Login to your Stormpath Tenant, and find your Client API domain (inside your application's policy section). Add your Client API domain as the `ENDPOINT_PREFIX` setting, via your `.config()` function:\n\n ```javascript\n angular.module('myApp', [..., 'stormpath', 'stormpath.templates'])\n .config(function (STORMPATH_CONFIG) {\n\n // Specify your Client API domain here:\n\n STORMPATH_CONFIG.ENDPOINT_PREFIX = 'https://{{clientApiDomainName}}';\n });\n ```\n You will need to tell Stormpath where your front-end application is running, by adding its domain to the list of Authorized Origin URIs on your Stormpath Application. This can be done from the Stormpath Admin Console. For example, if you are developing on a local sever that runs your front-end app at `http://localhost:3000`, you need to add that URI to the list\n\n If this is not done, you will see the error `Origin 'http://localhost:3000' is therefore not allowed access.` in the browser error log.\n\n If you will be using social login, you will also need to add this URI to the list of Authorized Callback URIs, otherwise you will see the error `Specified redirect_uri is not in the application's configured authorized callback uri's.` when you attempt social login.\n\n\n4. **Configure Routing**\n\n In your app's `run()` block, configure the login state and the default state after login.\n\n For `ngRouter`:\n\n ```javascript\n angular.module('myApp')\n .run(function($stormpath){\n $stormpath.ngRouter({\n forbiddenRoute: '/forbidden',\n defaultPostLoginRoute: '/home',\n loginRoute: '/login'\n });\n });\n ```\n\n For `uiRouter`:\n\n ```javascript\n app.run(function($stormpath){\n $stormpath.uiRouter({\n loginState: 'login',\n defaultPostLoginState: 'home'\n });\n });\n ```\n\n Set `loginState` to your login state. If you don't have one, create one.\n Set `defaultPostLoginState` to your default state after login.\n\n\n\n5. **Insert the Login and Registration Forms**\n\n You can use the [`sp-login-form`][] and [`sp-registration-form`][] directives to inject these default forms into your application, you should put this in the views/states where you want them to appear:\n\n ```html\n
\n ```\n\n ```html\n
\n ```\n\n

\n These forms will read their configuration from the Client API and allow you to login or register for your application.\n You should now be able to use these forms to login to your application.\n\n6. **Add Login and Logout Links**\n\n Use the [`sp-logout`][] directive to end the session:\n\n ```html\n Logout\n ```\n\n For the login link, just point the user to your login state:\n\n ```html\n Login\n ```\n\n7. **Hide Elements When Logged In**\n\n Use the [`if-user`][] directive:\n\n ```html\n Logout\n ```\n\n8. **Hide Elements When Logged Out**\n\n Use the [`if-not-user`][] directive:\n\n ```html\n Login\n ```\n\n9. **Protect Your States**\n\n On all states that you want to protect, add:\n\n ```javascript\n sp: {\n authenticate: true\n }\n ```\n\n For `ngRouter`:\n\n ```javascript\n angular.module('myApp')\n .config(function ($routeProvider) {\n $routeProvider\n .when('/profile', {\n templateUrl: 'app/profile/profile.html',\n controller: 'ProfileCtrl',\n sp: {\n authenticate: true\n }\n });\n });\n ```\n\n For `uiRouter`:\n\n ```javascript\n angular.module('myApp')\n .config(function ($stateProvider) {\n $stateProvider\n .state('profile', {\n url: '/profile',\n templateUrl: 'app/profile/profile.html',\n controller: 'ProfileCtrl',\n sp: {\n authenticate: true\n }\n });\n });\n ```\n\n\n10. **Login!**\n\n That's it! You just added user authentication to your app with Stormpath. See the [API Documentation][] for further information on how Stormpath can be used with your AngularJS app.\n\n Looking for social login? Simply configure the directories in your Stormpath tenant, and the buttons will automatically appear in the login form. For more reading, please see the [Social Login Product Guide][].\n\n11. **Making Authenticated Requests**\n\n Once you are able to successfully authenticate (log in) from your application, you will want to authorize access to API endpoints on your server. The Angular SDK provides methods for getting the current authenticated access token, and using it to authenticate requests.\n\n Imagine you have an API on your server, such as `http://localhost:3000/api/subscription`, and you want to authorize requests to this endpoint and know who the user is.\n\n If you want to manually construct a request, using the `$http` library, you can use our access token getter to add the access token to the request:\n\n ```javascript\n StormpathOAuthToken.getAccessToken()\n .then(function(accessToken){\n $http({\n url: 'http://localhost:3000/api/subscription',\n method: 'GET',\n headers: {\n Authorization: 'Bearer ' + accessToken\n }\n });\n })\n .catch(function() {\n // No access token, the user is not logged in\n });\n ```\n\n If you don't want to manually add the access token to every request, you can white-list URLs by expression and the Angular SDK will automatically add this token to all requests that have a matching URL:\n\n ```javascript\n angular.module('myApp', [..., 'stormpath', 'stormpath.templates'])\n .config(function (STORMPATH_CONFIG) {\n\n // Automatically add access token to all /api requests\n\n STORMPATH_CONFIG.AUTO_AUTHORIZED_URIS.push(new RegExp('/api'));\n });\n ```\n\n12. **Authorizing Requests Server-Side**\n\n Once your app has made the request with the access token, your server will need to read the token and make an authorization decision. We provide SDKs for your backend server that make this easy. Please follow one of the following links for a language-specific or framework-specific guide:\n\n **Java**\n\n Spring Boot developers should make use of our Spring Boot plugin, and see the [Token Management Documentation](https://docs.stormpath.com/java/spring-boot-web/tutorial.html#token-management).\n\n **.NET**\n\n ASP.NET developers can leverage our [ASP.NET](https://docs.stormpath.com/dotnet/aspnet/latest/) and [ASP.NET Core](https://docs.stormpath.com/dotnet/aspnetcore/latest/) libraries to achieve authorization in their applications, please see the Authorization section of each guide.\n\n **Node.js**\n\n Express developers can use our [Express-Stormpath](https://docs.stormpath.com/nodejs/express/latest/) library to easily authenticate requests with access tokens and make authorization decisions, please see the [Token Authentication](https://docs.stormpath.com/nodejs/express/latest/authentication.html#token-authentication) documentation.\n\n Node applications can generically use the [Stormpath Node SDK](https://docs.stormpath.com/nodejs/jsdoc/) to validate tokens, using the [JwtAuthenticator](https://docs.stormpath.com/nodejs/jsdoc/JwtAuthenticator.html).\n\n **PHP**\n\n Laravel developers can use our Stormpath-Laravel or [Stormpath-Lumen](https://docs.stormpath.com/php/lumen/latest/index.html) libraries and their respective `stormpath.auth` middleware to authenticate requests, please see the User Data section of the documentation for each library.\n\n **Other**\n\n Don't see your environment listed? Not a problem! Our access tokens are simple JWTs, that can be validated with most generic JWT validation libraries. Our product guide can walk you through the process, [Validating an Access Token](https://docs.stormpath.com/rest/product-guide/latest/auth_n.html#validating-an-access-token\").\n\n Need more assistance? Feel free to contact our support channel, details are below.\n\n## Documentation\n\nFor all available directives and services, see the [API Documentation][].\n\n## Example\n\nSee the [example app][] in this repository for an example application that uses\nYeoman as it's boilerplate.\n\nFor a simplified example that does not use a boilerplate system, please see\nthis repository:\n\n[Stormpath Angular + Express Fullstack Sample Project](https://github.com/stormpath/express-stormpath-angular-sample-project)\n\nIf you are hosting your API on a different domain than your Angular application,\nplease see the [CORS example app][] in this repository.\n\n## Browserify\n\nThis module can be used with Browserify. Please add the following lines to your\n`package.json` file:\n\n```json\n\"browser\": {\n \"stormpath\": \"./node_modules/stormpath-sdk-angularjs/dist/stormpath-sdk-angularjs.js\",\n \"stormpath.templates\": \"./node_modules/stormpath-sdk-angularjs/dist/stormpath-sdk-angularjs.tpls.js\"\n}\n```\n\nYou should also install the package `angular-ui-router`, as our library\ncurrently depends on it.\n\nThen in your application you can use `require` to require our modules:\n\n```javascript\nvar app = angular.module('todoApp', [\n require('angular-ui-router'),\n require('stormpath'),\n require('stormpath.templates')\n]);\n```\n\n## Support\n\nWe're here to help if you get stuck. There are several ways that you an get in\ntouch with a member of our team:\n\n* Send an email to [support@stormpath.com](mailto:support@stormpath.com)\n* Open a Github Issue on this repository.\n* Join us on our Slack channel: [https://talkstormpath.shipit.xyz/](https://talkstormpath.shipit.xyz/)\n\n[Stormpath AngularJS SDK]: https://github.com/stormpath/stormpath-sdk-angularjs\n[Stormpath Product Guide]: https://docs.stormpath.com/rest/product-guide/latest/\n[Stormpath React SDK]: https://github.com/stormpath/stormpath-sdk-react\n[express-stormpath]: https://docs.stormpath.com/nodejs/express/latest/\n\n## Contributing\n\nFound something you want to change? Please see the [Contribution Guide](CONTRIBUTING.md),\nwe love your input!\n\n## License\n\nApache 2.0, see [LICENSE](LICENSE).\n\n[`if-user`]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifUser:ifUser\n[`if-not-user`]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.ifNotUser:ifNotUser\n[`sp-login-form`]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.spLoginForm:spLoginForm\n[`sp-logout`]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.spLogout:spLogout\n[`sp-registration-form`]: https://docs.stormpath.com/angularjs/sdk/#/api/stormpath.spRegistrationForm:spRegistrationForm\n[example app]: https://github.com/stormpath/stormpath-sdk-angularjs/tree/master/example/dashboard-app\n[API Documentation]: https://docs.stormpath.com/angularjs/sdk/\n[Server Integration Guide]: https://docs.stormpath.com/angularjs/sdk/#/server\n[express-stormpath]: https://github.com/stormpath/express-stormpath\n[Stormpath SPA Development Server]: https://github.com/stormpath/stormpath-spa-dev-server\n[UI-Router]: https://github.com/angular-ui/ui-router\n[Yeoman Guide]: https://docs.stormpath.com/angularjs/guide\n[support center]: https://support.stormpath.com\n[CORS example app]: https://github.com/stormpath/stormpath-sdk-angularjs/tree/master/example/cors-app\n[Stormpath Client API]: https://docs.stormpath.com/client-api/product-guide/latest/index.html\n[Social Login Product Guide]: https://docs.stormpath.com/rest/product-guide/latest/auth_n.html#how-social-authentication-works\n" }, { "path": "README.md", "content": "# Stormpath is Joining Okta\nWe are incredibly excited to announce that [Stormpath is joining forces with Okta](https://stormpath.com/blog/stormpaths-new-path?utm_source=github&utm_medium=readme&utm-campaign=okta-announcement). Please visit [the Migration FAQs](https://stormpath.com/oktaplusstormpath?utm_source=github&utm_medium=readme&utm-campaign=okta-announcement) for a detailed look at what this means for Stormpath users.\n\nWe're available to answer all questions at [support@stormpath.com](mailto:support@stormpath.com).\n\n## What does this mean for developers who are using this library?\n\n* If you have upgraded to the 2.x series from 1.x, you should downgrade to 1.1.1. Why? The 2.x series depends on the Stormpath Client API, which will not be migrated to the Okta platform.\n* When downgrading to 1.1.1 you will need to use one of our backend framework integrations to serve the APIs that the 1.x series depends on.\n* These backend integrations are being patched to work with Okta:\n - [Java Spring](https://docs.stormpath.com/java/#tab3)\n - [Java Spring Boot](https://docs.stormpath.com/java/#tab1)\n - [Node Express](https://docs.stormpath.com/nodejs/)\n - [ASP.NET 4.x](https://docs.stormpath.com/dotnet/#tab3)\n - [ASP.NET Core](https://docs.stormpath.com/dotnet/#tab2)\n* If you are using the Express integration, please see the [Express-Stormpath Angular Sample Project][], it can be used to test your migration to Okta.\n\n# README\n\nIf you are actively using this library, you can find the old readme in [OLD-README.md](OLD-README.md). It is not possible to register for new Stormpath tenants at this time, so you must already have a Stormpath tenant if you wish to use this library during the migration period.\n\n[Express-Stormpath Angular Sample Project]: https://github.com/stormpath/express-stormpath-angular-sample-project\n" }, { "path": "TROUBLESHOOTING.md", "content": "# Troubleshooting\n\nThis document contains a list of common problems that you may run into while\nworking with this library.\n\n#### \"Invalid username or password.\" when using Social Login\n\nIf you are using [express-stormpath][] as your back-end you may see this error\nwhen attempting a social login. This happens if the Body Parser module is\nconfigured before the Express Stormpath module. If you must do this, please\nensure that you are enabling the extended option for the parser:\n\n```javascript\napp.use(bodyParser.urlencoded({ extended: true }));\n```\n\nThis issue is being tracked here:\n\nhttps://github.com/stormpath/express-stormpath/issues/194\n\n[express-stormpath]: https://github.com/stormpath/express-stormpath" }, { "path": "bower.json", "content": "{\n \"name\": \"stormpath-sdk-angularjs\",\n \"version\": \"2.0.1\",\n \"main\": [\n \"dist/stormpath-sdk-angularjs.min.js\",\n \"dist/stormpath-sdk-angularjs.tpls.min.js\"\n ],\n \"keywords\": [\n \"stormpath\",\n \"jwt\",\n \"token\",\n \"user\",\n \"angular\",\n \"token based authentication\",\n \"login\",\n \"password\",\n \"registration\",\n \"user management\"\n ],\n \"ignore\": [\n \".tmp\",\n \"build\",\n \"docs\",\n \"example\",\n \"ngdoc_assets\",\n \"src\"\n ],\n \"dependencies\": {\n \"angular\": \">=1.2.*\"\n }\n}\n" }, { "path": "dist/stormpath-sdk-angularjs.js", "content": "/**\n * stormpath-sdk-angularjs\n * Copyright Stormpath, Inc. 2017\n * \n * @version v2.0.1-dev-2017-04-04\n * @link https://github.com/stormpath/stormpath-sdk-angularjs\n * @license Apache-2.0\n */\n\n/* commonjs package manager support (eg componentjs) */\nif (typeof module !== \"undefined\" && typeof exports !== \"undefined\" && module.exports === exports){\n module.exports = 'stormpath';\n}\n\n(function (window, angular, undefined) {\n'use strict';\n\n/**\n * @ngdoc object\n *\n * @name stormpath.SpStateConfig:SpStateConfig\n *\n * @property {boolean} authenticate\n *\n * If `true`, the user must be authenticated in order to view this state.\n * If the user is not authenticated, they will\n * be redirected to the `login` state. After they login, they will be redirected to\n * the state that was originally requested.\n *\n * @property {object} authorize\n *\n * An object that defines access control rules. Currently, it supports a group-based\n * check. See the example below.\n *\n * @property {boolean} waitForUser\n *\n * If `true`, delay the state transition until we know\n * if the user is authenticated or not. This is useful for situations where\n * you want everyone to see this state, but the state may look different\n * depending on the user's authentication state.\n *\n *\n * @description\n *\n * The Stormpath State Config is an object that you can define on a UI Router\n * state. Use this configuration to define access control for your routes, as\n * defined by UI Router.\n *\n * You will need to be using the UI Router module, and you need\n * to enable the integration by calling\n * {@link stormpath.$stormpath#methods_uiRouter $stormpath.uiRouter()} in your\n * application's config block.\n *\n * If you're using Angular's built-in `$routeProvider` instead of UI Router, please\n * use {@link stormpath.$stormpath#methods_ngRouter $stormpath.ngRouter()} instead.\n *\n * **NOTE:** Do not define this configuration on a abstract state, it must go on\n * the child state. However, the controller of the abstract state will be\n * initialized AFTER any configuration rules of the child state have been met.\n *\n * # Support for `data.authorities`\n *\n * If you have used [JHipster](https://jhipster.github.io/) to generate your\n * project, you are likely using the `data.authorities` property to define\n * authorization for your views. This library will look for the `data.authorities`\n * property and apply the same logic as our own `sp.authorize` property.\n *\n * @example\n *\n * 
\n *\n * angular.module('myApp')\n *   .config(function ($stateProvider) {\n *\n *     // Wait until we know if the user is logged in before showing the homepage\n *     $stateProvider\n *       .state('main', {\n *         url: '/',\n *         sp: {\n *           waitForUser: true\n *         }\n *       });\n *\n *     // Require a user to be authenticated in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/secrets',\n *         controller: 'SecretsCtrl',\n *         sp: {\n *           authenticate: true\n *         }\n *       });\n *\n *     // Require a user to be in the admins group in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/admin',\n *         controller: 'AdminCtrl',\n *         sp: {\n *           authorize: {\n *             group: 'admins'\n *           }\n *         }\n *       });\n * });\n *
\n *\n * If using JHipster generated code:\n *\n * 
\n *     // Require a user to be in the admins group in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/admin',\n *         controller: 'AdminCtrl',\n *         data: {\n *           authorities: ['admins']\n *         }\n *       });\n *
\n */\n\n /**\n * @ngdoc object\n *\n * @name stormpath.SpRouteConfig:SpRouteConfig\n *\n * @property {boolean} authenticate\n *\n * If `true`, the user must be authenticated in order to view this route.\n * If the user is not authenticated, they will\n * be redirected to the `login` route. After they login, they will be redirected to\n * the route that was originally requested.\n *\n * @property {object} authorize\n *\n * An object that defines access control rules. Currently, it supports a group-based\n * check. See the example below.\n *\n * @property {boolean} waitForUser\n *\n * If `true`, delay the route transition until we know\n * if the user is authenticated or not. This is useful for situations where\n * you want everyone to see this route, but the route may look different\n * depending on the user's authentication route.\n *\n *\n * @description\n *\n * The Stormpath Route Config is an object that you can define on a route.\n * Use this configuration to define access control for your routes, as\n * defined by the ngRoute module.\n *\n * You will need to be using the ngRoute module, and you need\n * to enable the integration by calling\n * {@link stormpath.$stormpath#methods_ngRouter $stormpath.ngRouter()} in your\n * application's config block.\n *\n * If you're using UI Router instead of Angular's built-in `$routeProvider`, please\n * use {@link stormpath.$stormpath#methods_uiRouter $stormpath.uiRouter()} instead.\n *\n * @example\n *\n * 
\n *\n * angular.module('myApp')\n *   .config(function ($routeProvider) {\n *     // Wait until we know if the user is logged in before showing the homepage\n *     $routeProvider\n *       .when('/main', {\n*         controller: 'MainCtrl',\n *         sp: {\n *           waitForUser: true\n *         }\n *       });\n *\n *     // Require a user to be authenticated in order to see this route\n *     $routeProvider\n *       .when('/secrets', {\n *         controller: 'SecretsCtrl',\n *         sp: {\n *           authenticate: true\n *         }\n *       });\n *\n *     // Require a user to be in the admins group in order to see this route\n *     $routeProvider\n *       .when('/secrets', {\n *         controller: 'AdminCtrl',\n *         sp: {\n *           authorize: {\n *             group: 'admins'\n *           }\n *         }\n *       });\n * });\n *
\n */\nangular.module('stormpath', [\n 'stormpath.CONFIG',\n 'stormpath.utils',\n 'stormpath.auth',\n 'stormpath.userService',\n 'stormpath.viewModelService',\n 'stormpath.socialLogin',\n 'stormpath.oauth'\n])\n\n.factory('StormpathAgentInterceptor',['$isCurrentDomain', '$spHeaders', function($isCurrentDomain, $spHeaders){\n function StormpathAgentInterceptor(){\n\n }\n /**\n * Adds the X-Stormpath-Agent header, if the requested URL is on the same\n * domain as the current document.\n *\n * @param {Object} config $http config object.\n * @return {Object} config $http config object.\n */\n StormpathAgentInterceptor.prototype.request = function(config){\n\n var uriExpressions = [\n '/change$',\n '/forgot$',\n '/login$',\n '/logout$',\n '/me$',\n '/oauth/token$',\n '/oauth/token$',\n '/register$',\n '/revoke$',\n '/verify$'\n ];\n\n if (uriExpressions.some(function(expr){\n return new RegExp(expr).test(config.url);\n })) {\n config.headers = angular.extend(config.headers, $spHeaders);\n }\n\n return config;\n };\n\n return new StormpathAgentInterceptor();\n}])\n.config(['$httpProvider',function($httpProvider){\n $httpProvider.interceptors.push('StormpathAgentInterceptor');\n}])\n.provider('$stormpath', [function $stormpathProvider(){\n /**\n * @ngdoc object\n *\n * @name stormpath.$stormpath\n *\n * @description\n *\n * This service allows you to enable application-wide features of the library.\n *\n * At the moment the only feature is the UI Router integration, which is\n * documented below.\n */\n\n this.$get = [\n '$user', '$injector', 'STORMPATH_CONFIG', '$rootScope', '$location',\n function stormpathServiceFactory($user, $injector, STORMPATH_CONFIG, $rootScope, $location) {\n var $state;\n var $route;\n\n function StormpathService(){\n var encoder = new UrlEncodedFormParser();\n this.encodeUrlForm = encoder.encode.bind(encoder);\n\n if ($injector.has('$state')) {\n $state = $injector.get('$state');\n }\n\n if ($injector.has('$route')) {\n $route = $injector.get('$route');\n }\n\n return this;\n }\n function stateChangeUnauthenticatedEvent(toState, toParams){\n /**\n * @ngdoc event\n *\n * @name stormpath.$stormpath#$stateChangeUnauthenticated\n *\n * @eventOf stormpath.$stormpath\n *\n * @eventType broadcast on root scope\n *\n * @param {Object} event\n *\n * Angular event object.\n *\n * @param {Object} toState The state that the user attempted to access.\n *\n * @param {Object} toParams The state params of the state that the user\n * attempted to access.\n *\n * @description\n *\n * This event is broadcast when a UI state change is prevented,\n * because the user is not logged in.\n *\n * Use this event if you want to implement your own strategy for\n * presenting the user with a login form.\n *\n * To receive this event, you must be using the UI Router integration.\n *\n * @example\n *\n * 
\n         *   $rootScope.$on('$stateChangeUnauthenticated',function(e,toState,toParams){\n         *     // Your custom logic for deciding how the user should login, and\n         *     // if you want to redirect them to the desired state afterwards\n         *   });\n         *
\n */\n $rootScope.$broadcast(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHENTICATED,toState,toParams);\n }\n function stateChangeUnauthorizedEvent(toState,toParams){\n /**\n * @ngdoc event\n *\n * @name stormpath.$stormpath#$stateChangeUnauthorized\n *\n * @eventOf stormpath.$stormpath\n *\n * @eventType broadcast on root scope\n *\n * @param {Object} event\n *\n * Angular event object.\n *\n * @param {Object} toState The state that the user attempted to access.\n *\n * @param {Object} toParams The state params of the state that the user\n * attempted to access.\n *\n * @description\n *\n * This event is broadcast when a UI state change is prevented,\n * because the user is not authorized by the rules defined in the\n * {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configuration}\n * for the requested state.\n *\n * Use this event if you want to implement your own strategy for telling\n * the user that they are forbidden from viewing that state.\n *\n * To receive this event, you must be using the UI Router integration.\n *\n * @example\n *\n * 
\n         *   $rootScope.$on('$stateChangeUnauthorized',function(e,toState,toParams){\n         *     // Your custom logic for deciding how the user should be\n         *     // notified that they are forbidden from this state\n         *   });\n         *
\n */\n $rootScope.$broadcast(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHORIZED,toState,toParams);\n }\n StormpathService.prototype.stateChangeInterceptor = function stateChangeInterceptor(config) {\n $rootScope.$on('$stateChangeStart', function(e,toState,toParams){\n var sp = toState.sp || {}; // Grab the sp config for this state\n var authorities = (toState.data && toState.data.authorities) ? toState.data.authorities : undefined;\n\n if((sp.authenticate || sp.authorize || (authorities && authorities.length)) && (!$user.currentUser)){\n e.preventDefault();\n $user.get().then(function(){\n // The user is authenticated, continue to the requested state\n if(sp.authorize || (authorities && authorities.length)){\n if(authorizeStateConfig(sp, authorities)){\n $state.go(toState.name,toParams);\n }else{\n stateChangeUnauthorizedEvent(toState,toParams);\n }\n }else{\n $state.go(toState.name,toParams);\n }\n },function(){\n // The user is not authenticated, emit the necessary event\n stateChangeUnauthenticatedEvent(toState,toParams);\n });\n }else if(sp.waitForUser && ($user.currentUser===null)){\n e.preventDefault();\n $user.get().finally(function(){\n $state.go(toState.name,toParams);\n });\n }\n else if($user.currentUser && (sp.authorize || (authorities && authorities.length))){\n if(!authorizeStateConfig(sp, authorities)){\n e.preventDefault();\n stateChangeUnauthorizedEvent(toState,toParams);\n }\n }else if(toState.name===config.loginState){\n /*\n If the user is already logged in, we will redirect\n away from the login page and send the user to the\n post login state.\n */\n if($user.currentUser!==false){\n e.preventDefault();\n $user.get().finally(function(){\n if($user.currentUser && $user.currentUser.href){\n $state.go(config.defaultPostLoginState);\n } else {\n $state.go(toState.name,toParams);\n }\n });\n }\n }\n });\n };\n\n function authorizeStateConfig(spStateConfig, authorities){\n var sp = spStateConfig;\n if(sp && sp.authorize && sp.authorize.group) {\n return $user.currentUser.inGroup(sp.authorize.group);\n }else if(authorities){\n // add support for reading from JHipster's data: { authorities: ['ROLE_ADMIN'] }\n // https://github.com/stormpath/stormpath-sdk-angularjs/issues/190\n var roles = authorities.filter(function(authority){\n return $user.currentUser.inGroup(authority);\n });\n return roles.length > 0;\n }else{\n console.error('Unknown authorize configuration for spStateConfig',spStateConfig);\n return false;\n }\n }\n\n function routeChangeUnauthenticatedEvent(toRoute) {\n /**\n * @ngdoc event\n *\n * @name stormpath.$stormpath#$routeChangeUnauthenticated\n *\n * @eventOf stormpath.$stormpath\n *\n * @eventType broadcast on root scope\n *\n * @param {Object} event\n *\n * Angular event object.\n *\n * @param {Object} toRoute The route that the user attempted to access.\n *\n * @description\n *\n * This event is broadcast when a route change is prevented,\n * because the user is not logged in.\n *\n * Use this event if you want to implement your own strategy for\n * presenting the user with a login form.\n *\n * To receive this event, you must be using the ngRoute module.\n *\n * @example\n *\n * 
\n         *   $rootScope.$on('$routeChangeUnauthenticated', function(event, toRoute) {\n         *     // Your custom logic for deciding how the user should login, and\n         *     // if you want to redirect them to the desired route afterwards\n         *   });\n         *
\n */\n $rootScope.$broadcast(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHENTICATED, toRoute);\n }\n\n function routeChangeUnauthorizedEvent(toRoute) {\n /**\n * @ngdoc event\n *\n * @name stormpath.$stormpath#$routeChangeUnauthorized\n *\n * @eventOf stormpath.$stormpath\n *\n * @eventType broadcast on root scope\n *\n * @param {Object} event\n *\n * Angular event object.\n *\n * @param {Object} toRoute The route that the user attempted to access.\n *\n * @description\n *\n * This event is broadcast when a route change is prevented,\n * because the user is not authorized by the rules defined in the\n * {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configuration}\n * for the requested route.\n *\n * Use this event if you want to implement your own strategy for telling\n * the user that they are forbidden from viewing that route.\n *\n * To receive this event, you must be using the ngRoute module.\n *\n * @example\n *\n * 
\n         *   $rootScope.$on('$routeChangeUnauthorized', function(event, toRoute) {\n         *     // Your custom logic for deciding how the user should be\n         *     // notified that they are forbidden from this route\n         *   });\n         *
\n */\n $rootScope.$broadcast(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHORIZED, toRoute);\n }\n\n StormpathService.prototype.routeChangeInterceptor = function routeChangeInterceptor(config) {\n function goToRoute(route) {\n setTimeout(function() {\n if (route.$$route.originalPath === $location.path()) {\n $route.reload();\n } else {\n $location.path(route);\n }\n });\n }\n\n $rootScope.$on('$routeChangeStart', function(event, toRoute) {\n if (!toRoute.$$route) {\n return;\n }\n\n var sp = toRoute.$$route.sp || {}; // Grab the sp config for this route\n\n if ((sp.authenticate || sp.authorize) && !$user.currentUser) {\n event.preventDefault();\n\n $user.get().then(function() {\n // The user is authenticated, continue to the requested route\n if (sp.authorize) {\n if (authorizeStateConfig(sp)) {\n goToRoute(toRoute);\n } else {\n stateChangeUnauthorizedEvent(toRoute);\n }\n } else {\n goToRoute(toRoute);\n }\n }, function() {\n // The user is not authenticated, emit the necessary event\n routeChangeUnauthenticatedEvent(toRoute);\n });\n } else if (sp.waitForUser && $user.currentUser === null) {\n event.preventDefault();\n\n $user.get().finally(function() {\n goToRoute(toRoute);\n });\n } else if ($user.currentUser && sp.authorize) {\n if (!authorizeStateConfig(sp)) {\n event.preventDefault();\n routeChangeUnauthorizedEvent(toRoute);\n }\n } else if (toRoute.$$route.originalPath === config.loginRoute) {\n /*\n If the user is already logged in, we will redirect\n away from the login page and send the user to the\n post login route.\n */\n if ($user.currentUser && $user.currentUser.href) {\n event.preventDefault();\n goToRoute(config.defaultPostLoginRoute);\n }\n }\n });\n };\n\n function authorizeRouteConfig(spRouteConfig) {\n var sp = spRouteConfig;\n\n if (sp && sp.authorize && sp.authorize.group) {\n return $user.currentUser.inGroup(sp.authorize.group);\n }\n\n console.error('Unknown authorize configuration for spRouteConfig', sp);\n return false;\n }\n\n /**\n * @ngdoc function\n *\n * @name stormpath#uiRouter\n *\n * @methodOf stormpath.$stormpath\n *\n * @param {object} config\n *\n * * **`autoRedirect`** - Defaults to true. After the user logs in at\n * the state defined by `loginState`, they will be redirected back to the\n * state that was originally requested.\n *\n * * **`defaultPostLoginState`** - Where the user should be sent, after login,\n * if they have visited the login page directly. If you do not define a value,\n * nothing will happen at the login state. You can alternatively use the\n * {@link stormpath.authService.$auth#events_$authenticated $authenticated} event to know\n * that login is successful.\n *\n * * **`forbiddenState`** - The UI state name that we should send the user\n * to if they try to an access a view that they are not authorized to view.\n * This happens in response to an `authorize` rule in one of your\n * {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configurations}\n *\n * * **`loginState`** - The UI state name that we should send the user\n * to if they need to login. You'll probably use `login` for this value.\n *\n * @description\n *\n * Call this method to enable the integration with the UI Router module.\n *\n * When enabled, you can define {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configurations} on your UI states.\n * This object allows you to define access control for the state.\n *\n * You can pass config options to this integration, the options control the\n * default behavior around \"need to login\" and \"forbidden\" situations.\n * If you wish to implement your own logic for these situations, simply\n * omit the options and use the events (documented below) to know\n * what is happening in the application.\n *\n * @example\n *\n * 
\n       * angular.module('myApp')\n       *   .run(function($stormpath){\n       *     $stormpath.uiRouter({\n       *       forbiddenState: 'forbidden',\n       *       defaultPostLoginState: 'main',\n       *       loginState: 'login'\n       *     });\n       *   });\n       *
\n */\n StormpathService.prototype.uiRouter = function uiRouter(config){\n var self = this;\n config = typeof config === 'object' ? config : {};\n this.stateChangeInterceptor(config);\n\n if(config.loginState){\n self.unauthenticatedWather = $rootScope.$on(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHENTICATED,function(e,toState,toParams){\n self.postLogin = {\n toState: toState,\n toParams: toParams\n };\n $state.go(config.loginState);\n });\n }\n\n $rootScope.$on(STORMPATH_CONFIG.AUTHENTICATION_SUCCESS_EVENT_NAME,function(){\n if(self.postLogin && (config.autoRedirect !== false)){\n $state.go(self.postLogin.toState,self.postLogin.toParams).then(function(){\n self.postLogin = null;\n });\n }else if(config.defaultPostLoginState){\n $state.go(config.defaultPostLoginState);\n }\n });\n\n if(config.forbiddenState){\n self.forbiddenWatcher = $rootScope.$on(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHORIZED,function(){\n $state.go(config.forbiddenState);\n });\n }\n };\n\n /**\n * @ngdoc function\n *\n * @name stormpath#ngRouter\n *\n * @methodOf stormpath.$stormpath\n *\n * @param {object} config\n *\n * * **`autoRedirect`** - Defaults to true. After the user logs in at\n * the route defined by `loginRoute`, they will be redirected back to the\n * route that was originally requested.\n *\n * * **`defaultPostLoginRoute`** - Where the user should be sent, after login,\n * if they have visited the login page directly. If you do not define a value,\n * nothing will happen at the login route. You can alternatively use the\n * {@link stormpath.authService.$auth#events_$authenticated $authenticated} event to know\n * that login is successful.\n *\n * * **`forbiddenRoute`** - The route that we should send the user\n * to if they try to an access a view that they are not authorized to view.\n * This happens in response to an `authorize` rule in one of your\n * {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configurations}\n *\n * * **`loginRoute`** - The route name that we should send the user\n * to if they need to login. You'll probably use `login` for this value.\n *\n * @description\n *\n * Call this method to enable the integration with the ngRoute module.\n *\n * When enabled, you can define {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configurations} on your routes.\n * This object allows you to define access control for the route.\n *\n * You can pass config options to this integration, the options control the\n * default behavior around \"need to login\" and \"forbidden\" situations.\n * If you wish to implement your own logic for these situations, simply\n * omit the options and use the events (documented below) to know\n * what is happening in the application.\n *\n * @example\n *\n * 
\n       * angular.module('myApp')\n       *   .run(function($stormpath){\n       *     $stormpath.ngRouter({\n       *       forbiddenRoute: '/forbidden',\n       *       defaultPostLoginRoute: '/home',\n       *       loginRoute: '/login'\n       *     });\n       *   });\n       *
\n */\n StormpathService.prototype.ngRouter = function ngRouter(config) {\n var self = this;\n\n config = typeof config === 'object' ? config : {};\n\n this.routeChangeInterceptor(config);\n\n if (config.loginRoute) {\n this.unauthenticatedWather = $rootScope.$on(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHENTICATED, function(event, toRoute) {\n self.postLogin = {\n toRoute: toRoute\n };\n\n $location.path(config.loginRoute);\n });\n }\n\n $rootScope.$on(STORMPATH_CONFIG.AUTHENTICATION_SUCCESS_EVENT_NAME, function() {\n if (self.postLogin && config.autoRedirect !== false) {\n $location.path(self.postLogin.toRoute);\n self.postLogin = null;\n } else if (config.defaultPostLoginRoute) {\n $location.path(config.defaultPostLoginRoute);\n }\n });\n\n if (config.forbiddenRoute) {\n this.forbiddenWatcher = $rootScope.$on(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHORIZED, function() {\n $location.path(config.forbiddenRoute);\n });\n }\n };\n\n StormpathService.prototype.regexAttrParser = function regexAttrParser(value){\n var expr;\n if(value instanceof RegExp){\n expr = value;\n }else if(value && /^\\/.+\\/[gim]?$/.test(value)){\n expr = new RegExp(value.split('/')[1],value.split('/')[2]);\n }else{\n expr = value;\n }\n return expr;\n };\n\n function UrlEncodedFormParser(){\n\n // Copy & modify from https://github.com/hapijs/qs/blob/master/lib/stringify.js\n\n this.delimiter = '&';\n this.arrayPrefixGenerators = {\n brackets: function (prefix) {\n return prefix + '[]';\n },\n indices: function (prefix, key) {\n return prefix + '[' + key + ']';\n },\n repeat: function (prefix) {\n return prefix;\n }\n };\n return this;\n }\n UrlEncodedFormParser.prototype.stringify = function stringify(obj, prefix, generateArrayPrefix) {\n\n if (obj instanceof Date) {\n obj = obj.toISOString();\n }\n else if (obj === null) {\n obj = '';\n }\n\n if (typeof obj === 'string' ||\n typeof obj === 'number' ||\n typeof obj === 'boolean') {\n\n return [encodeURIComponent(prefix) + '=' + encodeURIComponent(obj)];\n }\n\n var values = [];\n\n if (typeof obj === 'undefined') {\n return values;\n }\n\n var objKeys = Object.keys(obj);\n for (var i = 0, il = objKeys.length; i < il; ++i) {\n var key = objKeys[i];\n if (Array.isArray(obj)) {\n values = values.concat(this.stringify(obj[key], generateArrayPrefix(prefix, key), generateArrayPrefix));\n }\n else {\n values = values.concat(this.stringify(obj[key], prefix + '[' + key + ']', generateArrayPrefix));\n }\n }\n\n return values;\n };\n UrlEncodedFormParser.prototype.encode = function encode(obj, options) {\n\n options = options || {};\n var delimiter = typeof options.delimiter === 'undefined' ? this.delimiter : options.delimiter;\n\n var keys = [];\n\n if (typeof obj !== 'object' ||\n obj === null) {\n\n return '';\n }\n\n var arrayFormat;\n if (options.arrayFormat in this.arrayPrefixGenerators) {\n arrayFormat = options.arrayFormat;\n }\n else if ('indices' in options) {\n arrayFormat = options.indices ? 'indices' : 'repeat';\n }\n else {\n arrayFormat = 'indices';\n }\n\n var generateArrayPrefix = this.arrayPrefixGenerators[arrayFormat];\n\n var objKeys = Object.keys(obj);\n for (var i = 0, il = objKeys.length; i < il; ++i) {\n var key = objKeys[i];\n keys = keys.concat(this.stringify(obj[key], key, generateArrayPrefix));\n }\n\n return keys.join(delimiter);\n };\n\n return new StormpathService();\n }\n ];\n}])\n.run(['$rootScope','$user','STORMPATH_CONFIG',function($rootScope,$user,STORMPATH_CONFIG){\n $rootScope.user = $user.currentUser || null;\n $user.get().finally(function(){\n $rootScope.user = $user.currentUser;\n });\n $rootScope.$on(STORMPATH_CONFIG.GET_USER_EVENT,function(){\n $rootScope.user = $user.currentUser;\n });\n $rootScope.$on(STORMPATH_CONFIG.SESSION_END_EVENT,function(){\n $rootScope.user = $user.currentUser;\n });\n $rootScope.$on(STORMPATH_CONFIG.SESSION_END_ERROR_EVENT,function(event, error){\n console.error('Logout error', error);\n });\n $rootScope.$on(STORMPATH_CONFIG.UNAUTHENTICATED_EVENT,function(event, error){\n console.error('UNAUTHENTICATED_EVENT');\n });\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifUser:ifUser\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is logged in.\n *\n * @example\n *\n * 
\n * 
\n *   
Hello, {{user.fullName}}
\n * 
\n *
\n */\n.directive('ifUser',['$user','$rootScope',function($user,$rootScope){\n return {\n link: function(scope,element){\n $rootScope.$watch('user',function(user){\n if(user && user.href){\n element.removeClass('ng-hide');\n }else{\n element.addClass('ng-hide');\n }\n });\n }\n };\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifNotUser:ifNotUser\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is NOT logged in.\n *\n * @example\n *\n * 
\n * 
\n *   
Hello, you need to login
\n * 
\n *
\n */\n.directive('ifNotUser',['$user','$rootScope',function($user,$rootScope){\n return {\n link: function(scope,element){\n $rootScope.$watch('user',function(user){\n if(user && user.href){\n element.addClass('ng-hide');\n }else{\n element.removeClass('ng-hide');\n }\n });\n }\n };\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifUserInGroup:ifUserInGroup\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is logged in\n * and is a member of the group that is specified by the expression.\n *\n * The attribute value MUST be one of:\n *\n * * A string expression, surrounded by quotes\n * * A reference to a property on the $scope. That property can be a string or\n * regular expression.\n *\n * **Note**: This feature depends on the data that is returned by the\n * {@link api/stormpath.STORMPATH_CONFIG:STORMPATH_CONFIG#properties_CURRENT_USER_URI CURRENT_USER_URI}.\n * Your server should expand the account's groups before returning the user.\n * If you are using [express-stormpath](https://github.com/stormpath/express-stormpath), simply use\n * [Automatic Expansion](http://docs.stormpath.com/nodejs/express/latest/user_data.html#automatic-expansion)\n *\n * # Using Regular Expressions\n *\n * If using a string expression as the attribute value, you can pass a regular\n * expression by wrapping it in the literal\n * syntax, e.g.\n * * `'/admins/'` would match any group which has *admins* in the name\n * * `'/admin$/'` would match any group were the name **ends with** *admin*\n *\n * If referencing a scope property, you should create the value as a RegExp type,\n * e.g.:\n *\n * 
\n *    $scope.matchGroup = new RegExp(/admins/);\n *
\n *\n * All regular expressions are evaluated via\n * [RegExp.prototype.test](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/RegExp/test)\n *\n * @example\n *\n * 
\n *   \n  \n  \n  \n  \n\n\n
\n  
\n  
\n    
Logout
\n    
\n  
\n  
\n    
\n  
\n\n
\n\n"
  },
  {
    "path": "example/cors-app/package.json",
    "content": "{\n  \"name\": \"cors-app\",\n  \"version\": \"1.0.0\",\n  \"description\": \"\",\n  \"main\": \"server.js\",\n  \"scripts\": {\n    \"test\": \"echo \\\"Error: no test specified\\\" && exit 1\",\n    \"start\": \"node server.js\"\n  },\n  \"author\": \"\",\n  \"license\": \"ISC\",\n  \"dependencies\": {\n    \"cors\": \"^2.7.1\",\n    \"express\": \"^4.13.3\",\n    \"express-stormpath\": \"^3.0.0\",\n    \"open\": \"0.0.5\"\n  }\n}\n"
  },
  {
    "path": "example/cors-app/server.js",
    "content": "var cors = require('cors');\nvar express = require('express');\nvar stormpath = require('express-stormpath');\nvar open = require('open');\nvar path = require('path');\n\n/*\n  The websiteService is a naive Express app, it's only\n  purpose is to serve the assets for our Angular application\n */\n\nvar websiteDomain = 'http://a.localhost:3000';\n\nvar websiteService = express();\n\nwebsiteService.use('/',express.static(path.join(__dirname,'client')));\n\nwebsiteService.listen(3000,function () {\n  open(websiteDomain);  // Opens the Angular app in your browser\n});\n\n/*\n  The apiService is your API that you want to protect with\n  Stormpath.  We use the CORS module to whitelist the website\n  domain, thus allowing it to communicate with the API domain\n */\n\nvar apiService = express();\n\napiService.use(cors({\n  origin: websiteDomain,\n  credentials: true\n}));\n\napiService.use(stormpath.init(apiService,{ }));\n\n/*\n  We use the loginRequired middleware, as that will assert\n  that the Angular client has authenticated and has valid\n  OAuth tokens in the cookies that were stpored on the API domain\n */\n\napiService.get('/api/thing', stormpath.loginRequired, function (req,res) {\n  res.json(req.user);\n});\n\napiService.on('stormpath.ready',function() {\n  apiService.listen(4000);\n});"
  },
  {
    "path": "example/dashboard-app/.bowerrc",
    "content": "{\n    \"directory\": \"client/bower_components\"\n}\n"
  },
  {
    "path": "example/dashboard-app/.buildignore",
    "content": "*.coffee"
  },
  {
    "path": "example/dashboard-app/.editorconfig",
    "content": "# EditorConfig helps developers define and maintain consistent\n# coding styles between different editors and IDEs\n# editorconfig.org\n\nroot = true\n\n\n[*]\n\n# Change these settings to your own preference\nindent_style = space\nindent_size = 2\n\n# We recommend you to keep these unchanged\nend_of_line = lf\ncharset = utf-8\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[*.md]\ntrim_trailing_whitespace = false\n"
  },
  {
    "path": "example/dashboard-app/.gitattributes",
    "content": "* text=auto"
  },
  {
    "path": "example/dashboard-app/.gitignore",
    "content": "node_modules\npublic\n.tmp\n.idea\nclient/bower_components\ndist\n/server/config/local.env.js\nstormpath.yml\n"
  },
  {
    "path": "example/dashboard-app/.travis.yml",
    "content": "language: node_js\nnode_js:\n  - '0.10'\n  - '0.11'\nbefore_script:\n  - npm install -g bower grunt-cli\n  - bower install\nservices: mongodb"
  },
  {
    "path": "example/dashboard-app/.yo-rc.json",
    "content": "{\n  \"generator-angular-fullstack\": {\n    \"insertRoutes\": true,\n    \"registerRoutesFile\": \"server/routes.js\",\n    \"routesNeedle\": \"// Insert routes below\",\n    \"routesBase\": \"/api/\",\n    \"pluralizeRoutes\": true,\n    \"insertSockets\": true,\n    \"registerSocketsFile\": \"server/config/socketio.js\",\n    \"socketsNeedle\": \"// Insert sockets below\",\n    \"filters\": {\n      \"js\": true,\n      \"html\": true,\n      \"css\": true,\n      \"uirouter\": true,\n      \"bootstrap\": true,\n      \"uibootstrap\": false\n    }\n  },\n  \"generator-ng-component\": {\n    \"routeDirectory\": \"client/app/\",\n    \"directiveDirectory\": \"client/app/\",\n    \"filterDirectory\": \"client/app/\",\n    \"serviceDirectory\": \"client/app/\",\n    \"basePath\": \"client\",\n    \"moduleName\": \"\",\n    \"filters\": [\n      \"uirouter\"\n    ],\n    \"extensions\": [\n      \"js\",\n      \"html\",\n      \"css\"\n    ],\n    \"directiveSimpleTemplates\": \"\",\n    \"directiveComplexTemplates\": \"\",\n    \"filterTemplates\": \"\",\n    \"serviceTemplates\": \"\",\n    \"factoryTemplates\": \"\",\n    \"controllerTemplates\": \"\",\n    \"decoratorTemplates\": \"\",\n    \"providerTemplates\": \"\",\n    \"routeTemplates\": \"\"\n  }\n}"
  },
  {
    "path": "example/dashboard-app/Gruntfile.js",
    "content": "// Generated on 2015-09-24 using generator-angular-fullstack 2.0.13\n'use strict';\n\nmodule.exports = function (grunt) {\n  var localConfig;\n  try {\n    localConfig = require('./server/config/local.env');\n  } catch(e) {\n    localConfig = {};\n  }\n\n  // Load grunt tasks automatically, when needed\n  require('jit-grunt')(grunt, {\n    express: 'grunt-express-server',\n    useminPrepare: 'grunt-usemin',\n    ngtemplates: 'grunt-angular-templates',\n    cdnify: 'grunt-google-cdn',\n    protractor: 'grunt-protractor-runner',\n    injector: 'grunt-asset-injector',\n    buildcontrol: 'grunt-build-control'\n  });\n\n  // Time how long tasks take. Can help when optimizing build times\n  require('time-grunt')(grunt);\n\n  // Define the configuration for all the tasks\n  grunt.initConfig({\n\n    // Project settings\n    pkg: grunt.file.readJSON('package.json'),\n    yeoman: {\n      // configurable paths\n      client: require('./bower.json').appPath || 'client',\n      dist: 'dist'\n    },\n    express: {\n      options: {\n        port: process.env.PORT || 9000,\n        // output option will force Grunt to wait for this\n        // line to be seen in server output, before continuing\n        output: 'Stormpath Ready'\n      },\n      dev: {\n        options: {\n          script: 'server/app.js',\n          debug: true\n        }\n      },\n      prod: {\n        options: {\n          script: 'dist/server/app.js'\n        }\n      }\n    },\n    open: {\n      server: {\n        url: 'http://localhost:<%= express.options.port %>'\n      }\n    },\n    watch: {\n      injectJS: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.js',\n          '!<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '!<%= yeoman.client %>/{app,components}/**/*.mock.js',\n          '!<%= yeoman.client %>/app/app.js'],\n        tasks: ['injector:scripts']\n      },\n      injectCss: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.css'\n        ],\n        tasks: ['injector:css']\n      },\n      mochaTest: {\n        files: ['server/**/*.spec.js'],\n        tasks: ['env:test', 'mochaTest']\n      },\n      jsTest: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '<%= yeoman.client %>/{app,components}/**/*.mock.js'\n        ],\n        tasks: ['newer:jshint:all', 'karma']\n      },\n      gruntfile: {\n        files: ['Gruntfile.js']\n      },\n      livereload: {\n        files: [\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.css',\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.html',\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.js',\n          '!{.tmp,<%= yeoman.client %>}{app,components}/**/*.spec.js',\n          '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.mock.js',\n          '<%= yeoman.client %>/assets/images/{,*//*}*.{png,jpg,jpeg,gif,webp,svg}'\n        ],\n        options: {\n          livereload: true\n        }\n      },\n      express: {\n        files: [\n          'server/**/*.{js,json}'\n        ],\n        tasks: ['express:dev', 'wait'],\n        options: {\n          livereload: true,\n          nospawn: true //Without this option specified express won't be reloaded\n        }\n      }\n    },\n\n    // Make sure code styles are up to par and there are no obvious mistakes\n    jshint: {\n      options: {\n        jshintrc: '<%= yeoman.client %>/.jshintrc',\n        reporter: require('jshint-stylish')\n      },\n      server: {\n        options: {\n          jshintrc: 'server/.jshintrc'\n        },\n        src: [\n          'server/**/*.js',\n          '!server/**/*.spec.js'\n        ]\n      },\n      serverTest: {\n        options: {\n          jshintrc: 'server/.jshintrc-spec'\n        },\n        src: ['server/**/*.spec.js']\n      },\n      all: [\n        '<%= yeoman.client %>/{app,components}/**/*.js',\n        '!<%= yeoman.client %>/{app,components}/**/*.spec.js',\n        '!<%= yeoman.client %>/{app,components}/**/*.mock.js'\n      ],\n      test: {\n        src: [\n          '<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '<%= yeoman.client %>/{app,components}/**/*.mock.js'\n        ]\n      }\n    },\n\n    // Empties folders to start fresh\n    clean: {\n      dist: {\n        files: [{\n          dot: true,\n          src: [\n            '.tmp',\n            '<%= yeoman.dist %>/*',\n            '!<%= yeoman.dist %>/.git*',\n            '!<%= yeoman.dist %>/.openshift',\n            '!<%= yeoman.dist %>/Procfile'\n          ]\n        }]\n      },\n      server: '.tmp'\n    },\n\n    // Add vendor prefixed styles\n    autoprefixer: {\n      options: {\n        browsers: ['last 1 version']\n      },\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '.tmp/',\n          src: '{,*/}*.css',\n          dest: '.tmp/'\n        }]\n      }\n    },\n\n    // Debugging with node inspector\n    'node-inspector': {\n      custom: {\n        options: {\n          'web-host': 'localhost'\n        }\n      }\n    },\n\n    // Use nodemon to run server in debug mode with an initial breakpoint\n    nodemon: {\n      debug: {\n        script: 'server/app.js',\n        options: {\n          nodeArgs: ['--debug-brk'],\n          env: {\n            PORT: process.env.PORT || 9000\n          },\n          callback: function (nodemon) {\n            nodemon.on('log', function (event) {\n              console.log(event.colour);\n            });\n\n            // opens browser on initial server start\n            nodemon.on('config:update', function () {\n              setTimeout(function () {\n                require('open')('http://localhost:8080/debug?port=5858');\n              }, 500);\n            });\n          }\n        }\n      }\n    },\n\n    // Automatically inject Bower components into the app\n    wiredep: {\n      target: {\n        src: '<%= yeoman.client %>/index.html',\n        ignorePath: '<%= yeoman.client %>/',\n        exclude: [/bootstrap-sass-official/, /bootstrap.js/, '/json3/', '/es5-shim/']\n      }\n    },\n\n    // Renames files for browser caching purposes\n    rev: {\n      dist: {\n        files: {\n          src: [\n            '<%= yeoman.dist %>/public/{,*/}*.js',\n            '<%= yeoman.dist %>/public/{,*/}*.css',\n            '<%= yeoman.dist %>/public/assets/images/{,*/}*.{png,jpg,jpeg,gif,webp,svg}',\n            '<%= yeoman.dist %>/public/assets/fonts/*'\n          ]\n        }\n      }\n    },\n\n    // Reads HTML for usemin blocks to enable smart builds that automatically\n    // concat, minify and revision files. Creates configurations in memory so\n    // additional tasks can operate on them\n    useminPrepare: {\n      html: ['<%= yeoman.client %>/index.html'],\n      options: {\n        dest: '<%= yeoman.dist %>/public'\n      }\n    },\n\n    // Performs rewrites based on rev and the useminPrepare configuration\n    usemin: {\n      html: ['<%= yeoman.dist %>/public/{,*/}*.html'],\n      css: ['<%= yeoman.dist %>/public/{,*/}*.css'],\n      js: ['<%= yeoman.dist %>/public/{,*/}*.js'],\n      options: {\n        assetsDirs: [\n          '<%= yeoman.dist %>/public',\n          '<%= yeoman.dist %>/public/assets/images'\n        ],\n        // This is so we update image references in our ng-templates\n        patterns: {\n          js: [\n            [/(assets\\/images\\/.*?\\.(?:gif|jpeg|jpg|png|webp|svg))/gm, 'Update the JS to reference our revved images']\n          ]\n        }\n      }\n    },\n\n    // The following *-min tasks produce minified files in the dist folder\n    imagemin: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '<%= yeoman.client %>/assets/images',\n          src: '{,*/}*.{png,jpg,jpeg,gif}',\n          dest: '<%= yeoman.dist %>/public/assets/images'\n        }]\n      }\n    },\n\n    svgmin: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '<%= yeoman.client %>/assets/images',\n          src: '{,*/}*.svg',\n          dest: '<%= yeoman.dist %>/public/assets/images'\n        }]\n      }\n    },\n\n    // Allow the use of non-minsafe AngularJS files. Automatically makes it\n    // minsafe compatible so Uglify does not destroy the ng references\n    ngAnnotate: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '.tmp/concat',\n          src: '*/**.js',\n          dest: '.tmp/concat'\n        }]\n      }\n    },\n\n    // Package all the html partials into a single javascript payload\n    ngtemplates: {\n      options: {\n        // This should be the name of your apps angular module\n        module: 'dashboardApp',\n        htmlmin: {\n          collapseBooleanAttributes: true,\n          collapseWhitespace: true,\n          removeAttributeQuotes: true,\n          removeEmptyAttributes: true,\n          removeRedundantAttributes: true,\n          removeScriptTypeAttributes: true,\n          removeStyleLinkTypeAttributes: true\n        },\n        usemin: 'app/app.js'\n      },\n      main: {\n        cwd: '<%= yeoman.client %>',\n        src: ['{app,components}/**/*.html'],\n        dest: '.tmp/templates.js'\n      },\n      tmp: {\n        cwd: '.tmp',\n        src: ['{app,components}/**/*.html'],\n        dest: '.tmp/tmp-templates.js'\n      }\n    },\n\n    // Replace Google CDN references\n    cdnify: {\n      dist: {\n        html: ['<%= yeoman.dist %>/public/*.html']\n      }\n    },\n\n    // Copies remaining files to places other tasks can use\n    copy: {\n      dist: {\n        files: [{\n          expand: true,\n          dot: true,\n          cwd: '<%= yeoman.client %>',\n          dest: '<%= yeoman.dist %>/public',\n          src: [\n            '*.{ico,png,txt}',\n            '.htaccess',\n            'bower_components/**/*',\n            'assets/images/{,*/}*.{webp}',\n            'assets/fonts/**/*',\n            'index.html'\n          ]\n        }, {\n          expand: true,\n          cwd: '.tmp/images',\n          dest: '<%= yeoman.dist %>/public/assets/images',\n          src: ['generated/*']\n        }, {\n          expand: true,\n          dest: '<%= yeoman.dist %>',\n          src: [\n            'package.json',\n            'server/**/*'\n          ]\n        }]\n      },\n      styles: {\n        expand: true,\n        cwd: '<%= yeoman.client %>',\n        dest: '.tmp/',\n        src: ['{app,components}/**/*.css']\n      }\n    },\n\n    buildcontrol: {\n      options: {\n        dir: 'dist',\n        commit: true,\n        push: true,\n        connectCommits: false,\n        message: 'Built %sourceName% from commit %sourceCommit% on branch %sourceBranch%'\n      },\n      heroku: {\n        options: {\n          remote: 'heroku',\n          branch: 'master'\n        }\n      },\n      openshift: {\n        options: {\n          remote: 'openshift',\n          branch: 'master'\n        }\n      }\n    },\n\n    // Run some tasks in parallel to speed up the build process\n    concurrent: {\n      server: [\n      ],\n      test: [\n      ],\n      debug: {\n        tasks: [\n          'nodemon',\n          'node-inspector'\n        ],\n        options: {\n          logConcurrentOutput: true\n        }\n      },\n      dist: [\n        'imagemin',\n        'svgmin'\n      ]\n    },\n\n    // Test settings\n    karma: {\n      unit: {\n        configFile: 'karma.conf.js',\n        singleRun: true\n      }\n    },\n\n    mochaTest: {\n      options: {\n        reporter: 'spec'\n      },\n      src: ['server/**/*.spec.js']\n    },\n\n    protractor: {\n      options: {\n        configFile: 'protractor.conf.js'\n      },\n      chrome: {\n        options: {\n          args: {\n            browser: 'chrome'\n          }\n        }\n      }\n    },\n\n    env: {\n      test: {\n        NODE_ENV: 'test'\n      },\n      prod: {\n        NODE_ENV: 'production'\n      },\n      all: localConfig\n    },\n\n    injector: {\n      options: {\n\n      },\n      // Inject application script files into index.html (doesn't include bower)\n      scripts: {\n        options: {\n          transform: function(filePath) {\n            filePath = filePath.replace('/client/', '');\n            filePath = filePath.replace('/.tmp/', '');\n            return '';\n          },\n          starttag: '',\n          endtag: ''\n        },\n        files: {\n          '<%= yeoman.client %>/index.html': [\n              ['{.tmp,<%= yeoman.client %>}/{app,components}/**/*.js',\n               '!{.tmp,<%= yeoman.client %>}/app/app.js',\n               '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.spec.js',\n               '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.mock.js']\n            ]\n        }\n      },\n\n      // Inject component css into index.html\n      css: {\n        options: {\n          transform: function(filePath) {\n            filePath = filePath.replace('/client/', '');\n            filePath = filePath.replace('/.tmp/', '');\n            return '';\n          },\n          starttag: '',\n          endtag: ''\n        },\n        files: {\n          '<%= yeoman.client %>/index.html': [\n            '<%= yeoman.client %>/{app,components}/**/*.css'\n          ]\n        }\n      }\n    },\n  });\n\n  // Used for delaying livereload until after server has restarted\n  grunt.registerTask('wait', function () {\n    grunt.log.ok('Waiting for server reload...');\n\n    var done = this.async();\n\n    setTimeout(function () {\n      grunt.log.writeln('Done waiting!');\n      done();\n    }, 1500);\n  });\n\n  grunt.registerTask('express-keepalive', 'Keep grunt running', function() {\n    this.async();\n  });\n\n  grunt.registerTask('serve', function (target) {\n    if (target === 'dist') {\n      return grunt.task.run(['build', 'env:all', 'env:prod', 'express:prod', 'wait', 'open', 'express-keepalive']);\n    }\n\n    if (target === 'debug') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'concurrent:server',\n        'injector',\n        'wiredep',\n        'autoprefixer',\n        'concurrent:debug'\n      ]);\n    }\n\n    grunt.task.run([\n      'clean:server',\n      'env:all',\n      'concurrent:server',\n      'injector',\n      'wiredep',\n      'autoprefixer',\n      'express:dev',\n      'wait',\n      'open',\n      'watch'\n    ]);\n  });\n\n  grunt.registerTask('server', function () {\n    grunt.log.warn('The `server` task has been deprecated. Use `grunt serve` to start a server.');\n    grunt.task.run(['serve']);\n  });\n\n  grunt.registerTask('test', function(target) {\n    if (target === 'server') {\n      return grunt.task.run([\n        'env:all',\n        'env:test',\n        'mochaTest'\n      ]);\n    }\n\n    else if (target === 'client') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'concurrent:test',\n        'injector',\n        'autoprefixer',\n        'karma'\n      ]);\n    }\n\n    else if (target === 'e2e') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'env:test',\n        'concurrent:test',\n        'injector',\n        'wiredep',\n        'autoprefixer',\n        'express:dev',\n        'protractor'\n      ]);\n    }\n\n    else grunt.task.run([\n      'test:server',\n      'test:client'\n    ]);\n  });\n\n  grunt.registerTask('build', [\n    'clean:dist',\n    'concurrent:dist',\n    'injector',\n    'wiredep',\n    'useminPrepare',\n    'autoprefixer',\n    'ngtemplates',\n    'concat',\n    'ngAnnotate',\n    'copy:dist',\n    'cdnify',\n    'cssmin',\n    'uglify',\n    'rev',\n    'usemin'\n  ]);\n\n  grunt.registerTask('default', [\n    'newer:jshint',\n    'test',\n    'build'\n  ]);\n};\n"
  },
  {
    "path": "example/dashboard-app/README.md",
    "content": "# Stormpath Angular SDK Example\n\nThis folder contains an example application that is built with the [Stormpath Angular SDK][]\nand [Stormpath Express][].\n\nThis application is the same one that is built when you follow the [Yeoman Guide][].\n\n#### Running the Example Application\n\n1. To run this application, you will need Bower and Grunt as global packages:\n\n  ```bash\n  npm install -g grunt bower\n  ```\n\n2. Clone this repo to your computer, and enter the directory for this example:\n\n  ```bash\n  git clone https://github.com/stormpath/stormpath-sdk-angularjs.git\n  cd stormpath-sdk-angularjs/example/dashboard-app\n  ```\n\n3. Install the dependencies:\n\n  ```bash\n  npm install\n  bower install\n  ```\n4. Export your environment variables for your Stormpath Tenant and Application:\n\n  ```bash\n  export STORMPATH_CLIENT_APIKEY_ID=xxx\n  export STORMPATH_CLIENT_APIKEY_SECRET=xxx\n  export STORMPATH_APPLICATION_HREF=xxx\n  ```\n\n5. Start the server with Grunt, this should start the server and open the Angular\n  application in your browser:\n\n  ```bash\n  grunt serve\n  ```\n\n[Stormpath Angular SDK]: https://github.com/stormpath/stormpath-sdk-angularjs\n[Stormpath Express]: https://github.com/stormpath/stormpath-express\n[Yeoman Guide]: https://docs.stormpath.com/angularjs/guide\n"
  },
  {
    "path": "example/dashboard-app/bower.json",
    "content": "{\n  \"name\": \"dashboard\",\n  \"version\": \"0.0.0\",\n  \"dependencies\": {\n    \"angular\": \">=1.2.*\",\n    \"json3\": \"~3.3.1\",\n    \"es5-shim\": \"~3.0.1\",\n    \"jquery\": \"~1.11.0\",\n    \"bootstrap\": \"~3.1.1\",\n    \"angular-resource\": \">=1.2.*\",\n    \"angular-cookies\": \">=1.2.*\",\n    \"angular-sanitize\": \">=1.2.*\",\n    \"font-awesome\": \">=4.1.0\",\n    \"lodash\": \"~2.4.1\",\n    \"angular-ui-router\": \"~0.2.10\",\n    \"stormpath-sdk-angularjs\": \"~1.0.0\"\n  },\n  \"devDependencies\": {\n    \"angular-mocks\": \">=1.2.*\",\n    \"angular-scenario\": \">=1.2.*\"\n  }\n}\n"
  },
  {
    "path": "example/dashboard-app/client/.htaccess",
    "content": "# Apache Configuration File\n\n# (!) Using `.htaccess` files slows down Apache, therefore, if you have access\n# to the main server config file (usually called `httpd.conf`), you should add\n# this logic there: http://httpd.apache.org/docs/current/howto/htaccess.html.\n\n# ##############################################################################\n# # CROSS-ORIGIN RESOURCE SHARING (CORS)                                       #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Cross-domain AJAX requests                                                 |\n# ------------------------------------------------------------------------------\n\n# Enable cross-origin AJAX requests.\n# http://code.google.com/p/html5security/wiki/CrossOriginRequestSecurity\n# http://enable-cors.org/\n\n# \n#    Header set Access-Control-Allow-Origin \"*\"\n# \n\n# ------------------------------------------------------------------------------\n# | CORS-enabled images                                                        |\n# ------------------------------------------------------------------------------\n\n# Send the CORS header for images when browsers request it.\n# https://developer.mozilla.org/en/CORS_Enabled_Image\n# http://blog.chromium.org/2011/07/using-cross-domain-images-in-webgl-and.html\n# http://hacks.mozilla.org/2011/11/using-cors-to-load-webgl-textures-from-cross-domain-images/\n\n\n    \n        \n            SetEnvIf Origin \":\" IS_CORS\n            Header set Access-Control-Allow-Origin \"*\" env=IS_CORS\n        \n    \n\n\n# ------------------------------------------------------------------------------\n# | Web fonts access                                                           |\n# ------------------------------------------------------------------------------\n\n# Allow access from all domains for web fonts\n\n\n    \n        Header set Access-Control-Allow-Origin \"*\"\n    \n\n\n\n# ##############################################################################\n# # ERRORS                                                                     #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | 404 error prevention for non-existing redirected folders                   |\n# ------------------------------------------------------------------------------\n\n# Prevent Apache from returning a 404 error for a rewrite if a directory\n# with the same name does not exist.\n# http://httpd.apache.org/docs/current/content-negotiation.html#multiviews\n# http://www.webmasterworld.com/apache/3808792.htm\n\nOptions -MultiViews\n\n# ------------------------------------------------------------------------------\n# | Custom error messages / pages                                              |\n# ------------------------------------------------------------------------------\n\n# You can customize what Apache returns to the client in case of an error (see\n# http://httpd.apache.org/docs/current/mod/core.html#errordocument), e.g.:\n\nErrorDocument 404 /404.html\n\n\n# ##############################################################################\n# # INTERNET EXPLORER                                                          #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Better website experience                                                  |\n# ------------------------------------------------------------------------------\n\n# Force IE to render pages in the highest available mode in the various\n# cases when it may not: http://hsivonen.iki.fi/doctype/ie-mode.pdf.\n\n\n    Header set X-UA-Compatible \"IE=edge\"\n    # `mod_headers` can't match based on the content-type, however, we only\n    # want to send this header for HTML pages and not for the other resources\n    \n        Header unset X-UA-Compatible\n    \n\n\n# ------------------------------------------------------------------------------\n# | Cookie setting from iframes                                                |\n# ------------------------------------------------------------------------------\n\n# Allow cookies to be set from iframes in IE.\n\n# \n#   Header set P3P \"policyref=\\\"/w3c/p3p.xml\\\", CP=\\\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\\\"\"\n# \n\n# ------------------------------------------------------------------------------\n# | Screen flicker                                                             |\n# ------------------------------------------------------------------------------\n\n# Stop screen flicker in IE on CSS rollovers (this only works in\n# combination with the `ExpiresByType` directives for images from below).\n\n# BrowserMatch \"MSIE\" brokenvary=1\n# BrowserMatch \"Mozilla/4.[0-9]{2}\" brokenvary=1\n# BrowserMatch \"Opera\" !brokenvary\n# SetEnvIf brokenvary 1 force-no-vary\n\n\n# ##############################################################################\n# # MIME TYPES AND ENCODING                                                    #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Proper MIME types for all files                                            |\n# ------------------------------------------------------------------------------\n\n\n\n  # Audio\n    AddType audio/mp4                                   m4a f4a f4b\n    AddType audio/ogg                                   oga ogg\n\n  # JavaScript\n    # Normalize to standard type (it's sniffed in IE anyways):\n    # http://tools.ietf.org/html/rfc4329#section-7.2\n    AddType application/javascript                      js jsonp\n    AddType application/json                            json\n\n  # Video\n    AddType video/mp4                                   mp4 m4v f4v f4p\n    AddType video/ogg                                   ogv\n    AddType video/webm                                  webm\n    AddType video/x-flv                                 flv\n\n  # Web fonts\n    AddType application/font-woff                       woff\n    AddType application/vnd.ms-fontobject               eot\n\n    # Browsers usually ignore the font MIME types and sniff the content,\n    # however, Chrome shows a warning if other MIME types are used for the\n    # following fonts.\n    AddType application/x-font-ttf                      ttc ttf\n    AddType font/opentype                               otf\n\n    # Make SVGZ fonts work on iPad:\n    # https://twitter.com/FontSquirrel/status/14855840545\n    AddType     image/svg+xml                           svg svgz\n    AddEncoding gzip                                    svgz\n\n  # Other\n    AddType application/octet-stream                    safariextz\n    AddType application/x-chrome-extension              crx\n    AddType application/x-opera-extension               oex\n    AddType application/x-shockwave-flash               swf\n    AddType application/x-web-app-manifest+json         webapp\n    AddType application/x-xpinstall                     xpi\n    AddType application/xml                             atom rdf rss xml\n    AddType image/webp                                  webp\n    AddType image/x-icon                                ico\n    AddType text/cache-manifest                         appcache manifest\n    AddType text/vtt                                    vtt\n    AddType text/x-component                            htc\n    AddType text/x-vcard                                vcf\n\n\n\n# ------------------------------------------------------------------------------\n# | UTF-8 encoding                                                             |\n# ------------------------------------------------------------------------------\n\n# Use UTF-8 encoding for anything served as `text/html` or `text/plain`.\nAddDefaultCharset utf-8\n\n# Force UTF-8 for certain file formats.\n\n    AddCharset utf-8 .atom .css .js .json .rss .vtt .webapp .xml\n\n\n\n# ##############################################################################\n# # URL REWRITES                                                               #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Rewrite engine                                                             |\n# ------------------------------------------------------------------------------\n\n# Turning on the rewrite engine and enabling the `FollowSymLinks` option is\n# necessary for the following directives to work.\n\n# If your web host doesn't allow the `FollowSymlinks` option, you may need to\n# comment it out and use `Options +SymLinksIfOwnerMatch` but, be aware of the\n# performance impact: http://httpd.apache.org/docs/current/misc/perf-tuning.html#symlinks\n\n# Also, some cloud hosting services require `RewriteBase` to be set:\n# http://www.rackspace.com/knowledge_center/frequently-asked-question/why-is-mod-rewrite-not-working-on-my-site\n\n\n    Options +FollowSymlinks\n  # Options +SymLinksIfOwnerMatch\n    RewriteEngine On\n  # RewriteBase /\n\n\n# ------------------------------------------------------------------------------\n# | Suppressing / Forcing the \"www.\" at the beginning of URLs                  |\n# ------------------------------------------------------------------------------\n\n# The same content should never be available under two different URLs especially\n# not with and without \"www.\" at the beginning. This can cause SEO problems\n# (duplicate content), therefore, you should choose one of the alternatives and\n# redirect the other one.\n\n# By default option 1 (no \"www.\") is activated:\n# http://no-www.org/faq.php?q=class_b\n\n# If you'd prefer to use option 2, just comment out all the lines from option 1\n# and uncomment the ones from option 2.\n\n# IMPORTANT: NEVER USE BOTH RULES AT THE SAME TIME!\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Option 1: rewrite www.example.com → example.com\n\n\n    RewriteCond %{HTTPS} !=on\n    RewriteCond %{HTTP_HOST} ^www\\.(.+)$ [NC]\n    RewriteRule ^ http://%1%{REQUEST_URI} [R=301,L]\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Option 2: rewrite example.com → www.example.com\n\n# Be aware that the following might not be a good idea if you use \"real\"\n# subdomains for certain parts of your website.\n\n# \n#    RewriteCond %{HTTPS} !=on\n#    RewriteCond %{HTTP_HOST} !^www\\..+$ [NC]\n#    RewriteRule ^ http://www.%{HTTP_HOST}%{REQUEST_URI} [R=301,L]\n# \n\n\n# ##############################################################################\n# # SECURITY                                                                   #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Content Security Policy (CSP)                                              |\n# ------------------------------------------------------------------------------\n\n# You can mitigate the risk of cross-site scripting and other content-injection\n# attacks by setting a Content Security Policy which whitelists trusted sources\n# of content for your site.\n\n# The example header below allows ONLY scripts that are loaded from the current\n# site's origin (no inline scripts, no CDN, etc). This almost certainly won't\n# work as-is for your site!\n\n# To get all the details you'll need to craft a reasonable policy for your site,\n# read: http://html5rocks.com/en/tutorials/security/content-security-policy (or\n# see the specification: http://w3.org/TR/CSP).\n\n# \n#    Header set Content-Security-Policy \"script-src 'self'; object-src 'self'\"\n#    \n#        Header unset Content-Security-Policy\n#    \n# \n\n# ------------------------------------------------------------------------------\n# | File access                                                                |\n# ------------------------------------------------------------------------------\n\n# Block access to directories without a default document.\n# Usually you should leave this uncommented because you shouldn't allow anyone\n# to surf through every directory on your server (which may includes rather\n# private places like the CMS's directories).\n\n\n    Options -Indexes\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Block access to hidden files and directories.\n# This includes directories used by version control systems such as Git and SVN.\n\n\n    RewriteCond %{SCRIPT_FILENAME} -d [OR]\n    RewriteCond %{SCRIPT_FILENAME} -f\n    RewriteRule \"(^|/)\\.\" - [F]\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Block access to backup and source files.\n# These files may be left by some text editors and can pose a great security\n# danger when anyone has access to them.\n\n\n    Order allow,deny\n    Deny from all\n    Satisfy All\n\n\n# ------------------------------------------------------------------------------\n# | Secure Sockets Layer (SSL)                                                 |\n# ------------------------------------------------------------------------------\n\n# Rewrite secure requests properly to prevent SSL certificate warnings, e.g.:\n# prevent `https://www.example.com` when your certificate only allows\n# `https://secure.example.com`.\n\n# \n#    RewriteCond %{SERVER_PORT} !^443\n#    RewriteRule ^ https://example-domain-please-change-me.com%{REQUEST_URI} [R=301,L]\n# \n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Force client-side SSL redirection.\n\n# If a user types \"example.com\" in his browser, the above rule will redirect him\n# to the secure version of the site. That still leaves a window of opportunity\n# (the initial HTTP connection) for an attacker to downgrade or redirect the\n# request. The following header ensures that browser will ONLY connect to your\n# server via HTTPS, regardless of what the users type in the address bar.\n# http://www.html5rocks.com/en/tutorials/security/transport-layer-security/\n\n# \n#    Header set Strict-Transport-Security max-age=16070400;\n# \n\n# ------------------------------------------------------------------------------\n# | Server software information                                                |\n# ------------------------------------------------------------------------------\n\n# Avoid displaying the exact Apache version number, the description of the\n# generic OS-type and the information about Apache's compiled-in modules.\n\n# ADD THIS DIRECTIVE IN THE `httpd.conf` AS IT WILL NOT WORK IN THE `.htaccess`!\n\n# ServerTokens Prod\n\n\n# ##############################################################################\n# # WEB PERFORMANCE                                                            #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Compression                                                                |\n# ------------------------------------------------------------------------------\n\n\n\n    # Force compression for mangled headers.\n    # http://developer.yahoo.com/blogs/ydn/posts/2010/12/pushing-beyond-gzipping\n    \n        \n            SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip|deflate)\\s*,?\\s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding\n            RequestHeader append Accept-Encoding \"gzip,deflate\" env=HAVE_Accept-Encoding\n        \n    \n\n    # Compress all output labeled with one of the following MIME-types\n    # (for Apache versions below 2.3.7, you don't need to enable `mod_filter`\n    #  and can remove the `` and `` lines\n    #  as `AddOutputFilterByType` is still in the core directives).\n    \n        AddOutputFilterByType DEFLATE application/atom+xml \\\n                                      application/javascript \\\n                                      application/json \\\n                                      application/rss+xml \\\n                                      application/vnd.ms-fontobject \\\n                                      application/x-font-ttf \\\n                                      application/x-web-app-manifest+json \\\n                                      application/xhtml+xml \\\n                                      application/xml \\\n                                      font/opentype \\\n                                      image/svg+xml \\\n                                      image/x-icon \\\n                                      text/css \\\n                                      text/html \\\n                                      text/plain \\\n                                      text/x-component \\\n                                      text/xml\n    \n\n\n\n# ------------------------------------------------------------------------------\n# | Content transformations                                                    |\n# ------------------------------------------------------------------------------\n\n# Prevent some of the mobile network providers from modifying the content of\n# your site: http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.9.5.\n\n# \n#    Header set Cache-Control \"no-transform\"\n# \n\n# ------------------------------------------------------------------------------\n# | ETag removal                                                               |\n# ------------------------------------------------------------------------------\n\n# Since we're sending far-future expires headers (see below), ETags can\n# be removed: http://developer.yahoo.com/performance/rules.html#etags.\n\n# `FileETag None` is not enough for every server.\n\n    Header unset ETag\n\n\nFileETag None\n\n# ------------------------------------------------------------------------------\n# | Expires headers (for better cache control)                                 |\n# ------------------------------------------------------------------------------\n\n# The following expires headers are set pretty far in the future. If you don't\n# control versioning with filename-based cache busting, consider lowering the\n# cache time for resources like CSS and JS to something like 1 week.\n\n\n\n    ExpiresActive on\n    ExpiresDefault                                      \"access plus 1 month\"\n\n  # CSS\n    ExpiresByType text/css                              \"access plus 1 year\"\n\n  # Data interchange\n    ExpiresByType application/json                      \"access plus 0 seconds\"\n    ExpiresByType application/xml                       \"access plus 0 seconds\"\n    ExpiresByType text/xml                              \"access plus 0 seconds\"\n\n  # Favicon (cannot be renamed!)\n    ExpiresByType image/x-icon                          \"access plus 1 week\"\n\n  # HTML components (HTCs)\n    ExpiresByType text/x-component                      \"access plus 1 month\"\n\n  # HTML\n    ExpiresByType text/html                             \"access plus 0 seconds\"\n\n  # JavaScript\n    ExpiresByType application/javascript                \"access plus 1 year\"\n\n  # Manifest files\n    ExpiresByType application/x-web-app-manifest+json   \"access plus 0 seconds\"\n    ExpiresByType text/cache-manifest                   \"access plus 0 seconds\"\n\n  # Media\n    ExpiresByType audio/ogg                             \"access plus 1 month\"\n    ExpiresByType image/gif                             \"access plus 1 month\"\n    ExpiresByType image/jpeg                            \"access plus 1 month\"\n    ExpiresByType image/png                             \"access plus 1 month\"\n    ExpiresByType video/mp4                             \"access plus 1 month\"\n    ExpiresByType video/ogg                             \"access plus 1 month\"\n    ExpiresByType video/webm                            \"access plus 1 month\"\n\n  # Web feeds\n    ExpiresByType application/atom+xml                  \"access plus 1 hour\"\n    ExpiresByType application/rss+xml                   \"access plus 1 hour\"\n\n  # Web fonts\n    ExpiresByType application/font-woff                 \"access plus 1 month\"\n    ExpiresByType application/vnd.ms-fontobject         \"access plus 1 month\"\n    ExpiresByType application/x-font-ttf                \"access plus 1 month\"\n    ExpiresByType font/opentype                         \"access plus 1 month\"\n    ExpiresByType image/svg+xml                         \"access plus 1 month\"\n\n\n\n# ------------------------------------------------------------------------------\n# | Filename-based cache busting                                               |\n# ------------------------------------------------------------------------------\n\n# If you're not using a build process to manage your filename version revving,\n# you might want to consider enabling the following directives to route all\n# requests such as `/css/style.12345.css` to `/css/style.css`.\n\n# To understand why this is important and a better idea than `*.css?v231`, read:\n# http://stevesouders.com/blog/2008/08/23/revving-filenames-dont-use-querystring\n\n# \n#    RewriteCond %{REQUEST_FILENAME} !-f\n#    RewriteCond %{REQUEST_FILENAME} !-d\n#    RewriteRule ^(.+)\\.(\\d+)\\.(js|css|png|jpg|gif)$ $1.$3 [L]\n# \n\n# ------------------------------------------------------------------------------\n# | File concatenation                                                         |\n# ------------------------------------------------------------------------------\n\n# Allow concatenation from within specific CSS and JS files, e.g.:\n# Inside of `script.combined.js` you could have\n#   \n#   \n# and they would be included into this single file.\n\n# \n#    \n#        Options +Includes\n#        AddOutputFilterByType INCLUDES application/javascript application/json\n#        SetOutputFilter INCLUDES\n#    \n#    \n#        Options +Includes\n#        AddOutputFilterByType INCLUDES text/css\n#        SetOutputFilter INCLUDES\n#    \n# \n\n# ------------------------------------------------------------------------------\n# | Persistent connections                                                     |\n# ------------------------------------------------------------------------------\n\n# Allow multiple requests to be sent over the same TCP connection:\n# http://httpd.apache.org/docs/current/en/mod/core.html#keepalive.\n\n# Enable if you serve a lot of static content but, be aware of the\n# possible disadvantages!\n\n# \n#    Header set Connection Keep-Alive\n# \n"
  },
  {
    "path": "example/dashboard-app/client/.jshintrc",
    "content": "{\n  \"node\": true,\n  \"browser\": true,\n  \"esnext\": true,\n  \"bitwise\": true,\n  \"camelcase\": true,\n  \"curly\": true,\n  \"eqeqeq\": true,\n  \"immed\": true,\n  \"indent\": 2,\n  \"latedef\": true,\n  \"newcap\": true,\n  \"noarg\": true,\n  \"quotmark\": \"single\",\n  \"regexp\": true,\n  \"undef\": true,\n  \"unused\": true,\n  \"strict\": true,\n  \"trailing\": true,\n  \"smarttabs\": true,\n  \"globals\": {\n    \"jQuery\": true,\n    \"angular\": true,\n    \"console\": true,\n    \"$\": true,\n    \"_\": true,\n    \"moment\": true,\n    \"describe\": true,\n    \"beforeEach\": true,\n    \"module\": true,\n    \"inject\": true,\n    \"it\": true,\n    \"expect\": true,\n    \"browser\": true,\n    \"element\": true,\n    \"by\": true\n  }\n}\n"
  },
  {
    "path": "example/dashboard-app/client/app/app.css",
    "content": "\n/**\n * Bootstrap Fonts\n */\n\n@font-face {\n    font-family: 'Glyphicons Halflings';\n    src: url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.eot');\n    src: url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.eot?#iefix') format('embedded-opentype'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.woff') format('woff'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.ttf') format('truetype'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.svg#glyphicons_halflingsregular') format('svg');\n}\n\n/**\n *Font Awesome Fonts\n */\n\n@font-face {\n    font-family: 'FontAwesome';\n    src: url('../bower_components/font-awesome/fonts/fontawesome-webfont.eot?v=4.1.0');\n    src: url('../bower_components/font-awesome/fonts/fontawesome-webfont.eot?#iefix&v=4.1.0') format('embedded-opentype'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0') format('woff'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.ttf?v=4.1.0') format('truetype'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.svg?v=4.1.0#fontawesomeregular') format('svg');\n    font-weight: normal;\n    font-style: normal;\n}\n\n/**\n * App-wide Styles\n */\n\n.browsehappy {\n    margin: 0.2em 0;\n    background: #ccc;\n    color: #000;\n    padding: 0.2em 0;\n}\n"
  },
  {
    "path": "example/dashboard-app/client/app/app.js",
    "content": "'use strict';\n\nangular.module('dashboardApp', [\n  'ngCookies',\n  'ngResource',\n  'ngSanitize',\n  'ui.router',\n  'stormpath',\n  'stormpath.templates'\n])\n  .config(function ($stateProvider, $urlRouterProvider, $locationProvider) {\n    $urlRouterProvider\n      .otherwise('/');\n\n    $locationProvider.html5Mode(true);\n  })\n  .run(function($stormpath,$rootScope,$state){\n\n    /*\n      In this example we use UI router, and this\n      is how we tell the Stormpath module which\n      states we would like to use to use for login\n      and post-login\n     */\n\n    $stormpath.uiRouter({\n      loginState: 'login',\n      defaultPostLoginState: 'main'\n    });\n\n    /*\n      We want to redirect users back to the login\n      state after they logout, so we watch for the\n      logout event and then transition them to the\n      login state\n     */\n    $rootScope.$on('$sessionEnd',function () {\n      $state.transitionTo('login');\n    });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/forgot/forgot.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ForgotCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/forgot/forgot.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ForgotCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ForgotCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ForgotCtrl = $controller('ForgotCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/forgot/forgot.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/forgot/forgot.html",
    "content": "
\n\n
\n  
\n    
\n      
Forgot Password
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/forgot/forgot.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('forgot', {\n        url: '/forgot',\n        templateUrl: 'app/forgot/forgot.html',\n        controller: 'ForgotCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/login/login.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('LoginCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/login/login.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: LoginCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var LoginCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    LoginCtrl = $controller('LoginCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/login/login.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/login/login.html",
    "content": "
\n\n
\n  
\n    
\n      
Login
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/login/login.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('login', {\n        url: '/login',\n        templateUrl: 'app/login/login.html',\n        controller: 'LoginCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/main/main.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('MainCtrl', function ($scope, $http) {\n    $scope.awesomeThings = [];\n\n    $http.get('/api/things').success(function(awesomeThings) {\n      $scope.awesomeThings = awesomeThings;\n    });\n\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/main/main.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: MainCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var MainCtrl,\n      scope,\n      $httpBackend;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function (_$httpBackend_, $controller, $rootScope) {\n    $httpBackend = _$httpBackend_;\n    $httpBackend.expectGET('/api/things')\n      .respond(['HTML5 Boilerplate', 'AngularJS', 'Karma', 'Express']);\n\n    scope = $rootScope.$new();\n    MainCtrl = $controller('MainCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should attach a list of things to the scope', function () {\n    $httpBackend.flush();\n    expect(scope.awesomeThings.length).toBe(4);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/main/main.css",
    "content": ".thing-form {\n    margin: 20px 0;\n}\n\n#banner {\n    border-bottom: none;\n    margin-top: -20px;\n}\n\n#banner h1 {\n    font-size: 60px;\n    line-height: 1;\n    letter-spacing: -1px;\n}\n\n.hero-unit {\n    position: relative;\n    padding: 30px 15px;\n    color: #F5F5F5;\n    text-align: center;\n    text-shadow: 0 1px 0 rgba(0, 0, 0, 0.1);\n    background: #4393B9;\n}\n\n.footer {\n    text-align: center;\n    padding: 30px 0;\n    margin-top: 70px;\n    border-top: 1px solid #E5E5E5;\n}"
  },
  {
    "path": "example/dashboard-app/client/app/main/main.html",
    "content": "
\n\n
\n  
\n    
'Allo, 'Allo!
\n    
Kick-start your next web app with Angular Fullstack
\n    \"I'm\n  
\n
\n\n
\n  
\n    
\n      
Features:
\n      \n    
\n  
\n
\n\n\n"
  },
  {
    "path": "example/dashboard-app/client/app/main/main.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('main', {\n        url: '/',\n        templateUrl: 'app/main/main.html',\n        controller: 'MainCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/profile/profile.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ProfileCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/profile/profile.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ProfileCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ProfileCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ProfileCtrl = $controller('ProfileCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/profile/profile.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/profile/profile.html",
    "content": "
\n\n
\n  
\n    
\n      
My Profile
\n      
\n    
\n\n  
\n\n  
\n    
\n      
\n    
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/profile/profile.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('profile', {\n        url: '/profile',\n        templateUrl: 'app/profile/profile.html',\n        controller: 'ProfileCtrl',\n        sp: {\n          authenticate: true\n        }\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/register/register.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('RegisterCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/register/register.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: RegisterCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var RegisterCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    RegisterCtrl = $controller('RegisterCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/register/register.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/register/register.html",
    "content": "
\n\n
\n  
\n    
\n      
Registration
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/register/register.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('register', {\n        url: '/register',\n        templateUrl: 'app/register/register.html',\n        controller: 'RegisterCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/reset/reset.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ResetCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/reset/reset.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ResetCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ResetCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ResetCtrl = $controller('ResetCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/reset/reset.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/reset/reset.html",
    "content": "
\n\n
\n  
\n    
\n      
Reset Your Password
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/reset/reset.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('reset', {\n        url: '/reset?sptoken',\n        templateUrl: 'app/reset/reset.html',\n        controller: 'ResetCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/app/verify/verify.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('VerifyCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/dashboard-app/client/app/verify/verify.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: VerifyCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var VerifyCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    VerifyCtrl = $controller('VerifyCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/client/app/verify/verify.css",
    "content": ""
  },
  {
    "path": "example/dashboard-app/client/app/verify/verify.html",
    "content": "
\n\n
\n  
\n    
\n      
Verify Your Account
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/dashboard-app/client/app/verify/verify.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($stateProvider) {\n    $stateProvider\n      .state('verify', {\n        url: '/verify?sptoken',\n        templateUrl: 'app/verify/verify.html',\n        controller: 'VerifyCtrl'\n      });\n  });"
  },
  {
    "path": "example/dashboard-app/client/components/navbar/navbar.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('NavbarCtrl', function ($scope, $location) {\n    $scope.menu = [{\n      'title': 'Home',\n      'link': '/'\n    }];\n\n    $scope.isCollapsed = true;\n\n    $scope.isActive = function(route) {\n      return route === $location.path();\n    };\n  });"
  },
  {
    "path": "example/dashboard-app/client/components/navbar/navbar.html",
    "content": "
\n  
\n    
\n      \n      dashboard\n    
\n    
\n      \n    
\n  
\n
\n"
  },
  {
    "path": "example/dashboard-app/client/index.html",
    "content": "\n\n\n\n  \n  \n    \n    \n    \n    \n    \n    \n    \n    \n      \n      \n      \n    \n    \n    \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n    \n  \n  \n    \n\n    \n    
\n\n    \n    \n\n    \n    \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n    \n\n        \n        \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n        \n\n\n"
  },
  {
    "path": "example/dashboard-app/client/robots.txt",
    "content": "# robotstxt.org\n\nUser-agent: *\n"
  },
  {
    "path": "example/dashboard-app/e2e/main/main.po.js",
    "content": "/**\n * This file uses the Page Object pattern to define the main page for tests\n * https://docs.google.com/presentation/d/1B6manhG0zEXkC-H-tPo2vwU06JhL8w9-XCF9oehXzAQ\n */\n\n'use strict';\n\nvar MainPage = function() {\n  this.heroEl = element(by.css('.hero-unit'));\n  this.h1El = this.heroEl.element(by.css('h1'));\n  this.imgEl = this.heroEl.element(by.css('img'));\n};\n\nmodule.exports = new MainPage();\n\n"
  },
  {
    "path": "example/dashboard-app/e2e/main/main.spec.js",
    "content": "'use strict';\n\ndescribe('Main View', function() {\n  var page;\n\n  beforeEach(function() {\n    browser.get('/');\n    page = require('./main.po');\n  });\n\n  it('should include jumbotron with correct data', function() {\n    expect(page.h1El.getText()).toBe('\\'Allo, \\'Allo!');\n    expect(page.imgEl.getAttribute('src')).toMatch(/assets\\/images\\/yeoman.png$/);\n    expect(page.imgEl.getAttribute('alt')).toBe('I\\'m Yeoman');\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/karma.conf.js",
    "content": "// Karma configuration\n// http://karma-runner.github.io/0.10/config/configuration-file.html\n\nmodule.exports = function(config) {\n  config.set({\n    // base path, that will be used to resolve files and exclude\n    basePath: '',\n\n    // testing framework to use (jasmine/mocha/qunit/...)\n    frameworks: ['jasmine'],\n\n    // list of files / patterns to load in the browser\n    files: [\n      'client/bower_components/jquery/dist/jquery.js',\n      'client/bower_components/angular/angular.js',\n      'client/bower_components/angular-mocks/angular-mocks.js',\n      'client/bower_components/angular-resource/angular-resource.js',\n      'client/bower_components/angular-cookies/angular-cookies.js',\n      'client/bower_components/angular-sanitize/angular-sanitize.js',\n      'client/bower_components/angular-route/angular-route.js',\n      'client/bower_components/lodash/dist/lodash.compat.js',\n      'client/bower_components/angular-ui-router/release/angular-ui-router.js',\n      'client/app/app.js',\n      'client/app/app.coffee',\n      'client/app/**/*.js',\n      'client/app/**/*.coffee',\n      'client/components/**/*.js',\n      'client/components/**/*.coffee',\n      'client/app/**/*.jade',\n      'client/components/**/*.jade',\n      'client/app/**/*.html',\n      'client/components/**/*.html'\n    ],\n\n    preprocessors: {\n      '**/*.jade': 'ng-jade2js',\n      '**/*.html': 'html2js',\n      '**/*.coffee': 'coffee',\n    },\n\n    ngHtml2JsPreprocessor: {\n      stripPrefix: 'client/'\n    },\n\n    ngJade2JsPreprocessor: {\n      stripPrefix: 'client/'\n    },\n\n    // list of files / patterns to exclude\n    exclude: [],\n\n    // web server port\n    port: 8080,\n\n    // level of logging\n    // possible values: LOG_DISABLE || LOG_ERROR || LOG_WARN || LOG_INFO || LOG_DEBUG\n    logLevel: config.LOG_INFO,\n\n\n    // enable / disable watching file and executing tests whenever any file changes\n    autoWatch: false,\n\n\n    // Start these browsers, currently available:\n    // - Chrome\n    // - ChromeCanary\n    // - Firefox\n    // - Opera\n    // - Safari (only Mac)\n    // - PhantomJS\n    // - IE (only Windows)\n    browsers: ['PhantomJS'],\n\n\n    // Continuous Integration mode\n    // if true, it capture browsers, run tests and exit\n    singleRun: false\n  });\n};\n"
  },
  {
    "path": "example/dashboard-app/package.json",
    "content": "{\n  \"name\": \"dashboard\",\n  \"version\": \"0.0.0\",\n  \"main\": \"server/app.js\",\n  \"dependencies\": {\n    \"body-parser\": \"~1.5.0\",\n    \"composable-middleware\": \"^0.3.0\",\n    \"compression\": \"~1.0.1\",\n    \"connect-mongo\": \"^0.4.1\",\n    \"cookie-parser\": \"~1.0.1\",\n    \"ejs\": \"~0.8.4\",\n    \"errorhandler\": \"~1.0.0\",\n    \"express\": \"^4.13.3\",\n    \"express-session\": \"~1.0.2\",\n    \"express-stormpath\": \"^3.0.0\",\n    \"lodash\": \"~2.4.1\",\n    \"method-override\": \"~1.0.0\",\n    \"morgan\": \"~1.0.0\",\n    \"serve-favicon\": \"~2.0.1\"\n  },\n  \"devDependencies\": {\n    \"grunt\": \"~0.4.4\",\n    \"grunt-autoprefixer\": \"~0.7.2\",\n    \"grunt-wiredep\": \"~1.8.0\",\n    \"grunt-concurrent\": \"~0.5.0\",\n    \"grunt-contrib-clean\": \"~0.5.0\",\n    \"grunt-contrib-concat\": \"~0.4.0\",\n    \"grunt-contrib-copy\": \"~0.5.0\",\n    \"grunt-contrib-cssmin\": \"~0.9.0\",\n    \"grunt-contrib-htmlmin\": \"~0.2.0\",\n    \"grunt-contrib-imagemin\": \"~0.7.1\",\n    \"grunt-contrib-jshint\": \"~0.10.0\",\n    \"grunt-contrib-uglify\": \"~0.4.0\",\n    \"grunt-contrib-watch\": \"~0.6.1\",\n    \"grunt-google-cdn\": \"~0.4.0\",\n    \"grunt-newer\": \"~0.7.0\",\n    \"grunt-ng-annotate\": \"^0.2.3\",\n    \"grunt-rev\": \"~0.1.0\",\n    \"grunt-svgmin\": \"~0.4.0\",\n    \"grunt-usemin\": \"~2.1.1\",\n    \"grunt-env\": \"~0.4.1\",\n    \"grunt-node-inspector\": \">=0.2.0\",\n    \"grunt-nodemon\": \"~0.2.0\",\n    \"grunt-angular-templates\": \"^0.5.4\",\n    \"grunt-dom-munger\": \"^3.4.0\",\n    \"grunt-protractor-runner\": \"^1.1.0\",\n    \"grunt-asset-injector\": \"^0.1.0\",\n    \"grunt-karma\": \"~0.8.2\",\n    \"grunt-build-control\": \"DaftMonk/grunt-build-control\",\n    \"grunt-mocha-test\": \"~0.10.2\",\n    \"jit-grunt\": \"^0.5.0\",\n    \"time-grunt\": \"~0.3.1\",\n    \"grunt-express-server\": \"~0.4.17\",\n    \"grunt-open\": \"~0.2.3\",\n    \"open\": \"~0.0.4\",\n    \"jshint-stylish\": \"~0.1.5\",\n    \"connect-livereload\": \"~0.4.0\",\n    \"karma-ng-scenario\": \"~0.1.0\",\n    \"karma-firefox-launcher\": \"~0.1.3\",\n    \"karma-script-launcher\": \"~0.1.0\",\n    \"karma-html2js-preprocessor\": \"~0.1.0\",\n    \"karma-ng-jade2js-preprocessor\": \"^0.1.2\",\n    \"karma-jasmine\": \"~0.1.5\",\n    \"karma-chrome-launcher\": \"~0.1.3\",\n    \"requirejs\": \"~2.1.11\",\n    \"karma-requirejs\": \"~0.2.1\",\n    \"karma-coffee-preprocessor\": \"~0.2.1\",\n    \"karma-jade-preprocessor\": \"0.0.11\",\n    \"karma-phantomjs-launcher\": \"~0.1.4\",\n    \"karma\": \"~0.12.9\",\n    \"karma-ng-html2js-preprocessor\": \"~0.1.0\",\n    \"supertest\": \"~0.11.0\",\n    \"should\": \"~3.3.1\"\n  },\n  \"engines\": {\n    \"node\": \">=0.10.0\"\n  },\n  \"scripts\": {\n    \"start\": \"node server/app.js\",\n    \"test\": \"grunt test\",\n    \"update-webdriver\": \"node node_modules/grunt-protractor-runner/node_modules/protractor/bin/webdriver-manager update\"\n  },\n  \"private\": true\n}\n"
  },
  {
    "path": "example/dashboard-app/protractor.conf.js",
    "content": "// Protractor configuration\n// https://github.com/angular/protractor/blob/master/referenceConf.js\n\n'use strict';\n\nexports.config = {\n  // The timeout for each script run on the browser. This should be longer\n  // than the maximum time your application needs to stabilize between tasks.\n  allScriptsTimeout: 110000,\n\n  // A base URL for your application under test. Calls to protractor.get()\n  // with relative paths will be prepended with this.\n  baseUrl: 'http://localhost:' + (process.env.PORT || '9000'),\n\n  // If true, only chromedriver will be started, not a standalone selenium.\n  // Tests for browsers other than chrome will not run.\n  chromeOnly: true,\n\n  // list of files / patterns to load in the browser\n  specs: [\n    'e2e/**/*.spec.js'\n  ],\n\n  // Patterns to exclude.\n  exclude: [],\n\n  // ----- Capabilities to be passed to the webdriver instance ----\n  //\n  // For a full list of available capabilities, see\n  // https://code.google.com/p/selenium/wiki/DesiredCapabilities\n  // and\n  // https://code.google.com/p/selenium/source/browse/javascript/webdriver/capabilities.js\n  capabilities: {\n    'browserName': 'chrome'\n  },\n\n  // ----- The test framework -----\n  //\n  // Jasmine and Cucumber are fully supported as a test and assertion framework.\n  // Mocha has limited beta support. You will need to include your own\n  // assertion framework if working with mocha.\n  framework: 'jasmine',\n\n  // ----- Options to be passed to minijasminenode -----\n  //\n  // See the full list at https://github.com/juliemr/minijasminenode\n  jasmineNodeOpts: {\n    defaultTimeoutInterval: 30000\n  }\n};\n"
  },
  {
    "path": "example/dashboard-app/server/.jshintrc",
    "content": "{\n  \"node\": true,\n  \"esnext\": true,\n  \"bitwise\": true,\n  \"eqeqeq\": true,\n  \"immed\": true,\n  \"latedef\": \"nofunc\",\n  \"newcap\": true,\n  \"noarg\": true,\n  \"regexp\": true,\n  \"undef\": true,\n  \"smarttabs\": true,\n  \"asi\": true,\n  \"debug\": true\n}\n"
  },
  {
    "path": "example/dashboard-app/server/.jshintrc-spec",
    "content": "{\n  \"extends\": \".jshintrc\",\n  \"globals\": {\n    \"describe\": true,\n    \"it\": true,\n    \"before\": true,\n    \"beforeEach\": true,\n    \"after\": true,\n    \"afterEach\": true\n  }\n}\n"
  },
  {
    "path": "example/dashboard-app/server/api/thing/index.js",
    "content": "'use strict';\n\nvar express = require('express');\nvar controller = require('./thing.controller');\n\nvar router = express.Router();\n\nrouter.get('/', controller.index);\n\nmodule.exports = router;"
  },
  {
    "path": "example/dashboard-app/server/api/thing/thing.controller.js",
    "content": "/**\n * Using Rails-like standard naming convention for endpoints.\n * GET     /things              ->  index\n * POST    /things              ->  create\n * GET     /things/:id          ->  show\n * PUT     /things/:id          ->  update\n * DELETE  /things/:id          ->  destroy\n */\n\n'use strict';\n\nvar _ = require('lodash');\n\n// Get list of things\nexports.index = function(req, res) {\n  res.json([\n  {\n  name : 'Development Tools',\n  info : 'Integration with popular tools such as Bower, Grunt, Karma, Mocha, JSHint, Node Inspector, Livereload, Protractor, Jade, Stylus, Sass, CoffeeScript, and Less.'\n  }, {\n  name : 'Server and Client integration',\n  info : 'Built with a powerful and fun stack: MongoDB, Express, AngularJS, and Node.'\n  }, {\n  name : 'Smart Build System',\n  info : 'Build system ignores `spec` files, allowing you to keep tests alongside code. Automatic injection of scripts and styles into your index.html'\n  },  {\n  name : 'Modular Structure',\n  info : 'Best practice client and server structures allow for more code reusability and maximum scalability'\n  },  {\n  name : 'Optimized Build',\n  info : 'Build process packs up your templates as a single JavaScript payload, minifies your scripts/css/images, and rewrites asset names for caching.'\n  },{\n  name : 'Deployment Ready',\n  info : 'Easily deploy your app to Heroku or Openshift with the heroku and openshift subgenerators'\n  }\n  ]);\n};"
  },
  {
    "path": "example/dashboard-app/server/api/thing/thing.spec.js",
    "content": "'use strict';\n\nvar should = require('should');\nvar app = require('../../app');\nvar request = require('supertest');\n\ndescribe('GET /api/things', function() {\n\n  it('should respond with JSON array', function(done) {\n    request(app)\n      .get('/api/things')\n      .expect(200)\n      .expect('Content-Type', /json/)\n      .end(function(err, res) {\n        if (err) return done(err);\n        res.body.should.be.instanceof(Array);\n        done();\n      });\n  });\n});\n"
  },
  {
    "path": "example/dashboard-app/server/app.js",
    "content": "/**\n * Main application file\n */\n\n'use strict';\n\n// Set default node environment to development\nprocess.env.NODE_ENV = process.env.NODE_ENV || 'development';\n\nvar express = require('express');\nvar config = require('./config/environment');\nvar ExpressStormpath = require('express-stormpath');\n\n// Setup server\nvar app = express();\n\nvar server = require('http').createServer(app);\n\n/*\n  The config/express file is setting up the static file server which serves your\n  angular application assets.  We don't need to authenticate those requests, so\n  we do this before calling Stormpath.\n */\n\nrequire('./config/express')(app);\n\nconsole.log('Initializing Stormpath');\n\n/*\n  Now we initialize Stormpath, any middleware that is registered after this\n  point will be protected by Stormpath.\n\n  The spa setting tells the Stormpath library where your Angular app is,\n  as it will need to serve it for the default routes like /login and\n  /register.  The appPath property is provided by the configuration parser\n  in the Yeoman boilerplate.\n */\n\napp.use(ExpressStormpath.init(app,{\n  web: {\n    produces: ['application/json'],\n    spa: {\n      enabled: true,\n      view: app.get('appPath')\n    },\n    register: {\n      form: {\n        fields: {\n          /*\n            We can define custom form fields here, and they will appear in the\n            front-end.  The Angular SDK will read this registration view model\n            from the Express server by making a JSON GET request to /register\n           */\n          favoriteColor: {\n            enabled: true,\n            label: 'Favorite Color?',\n            placeholder: 'e.g. Blue',\n            required: true,\n            type: 'text'\n          }\n        }\n      }\n    },\n    me: {\n      /*\n        For security purposes, we don't expose user information by default.  To\n        facilitate our Profile page example, we will need to enable the\n        expansion of the user's custom data object.\n       */\n      expand: {\n        customData: true\n      }\n    }\n  }\n}));\n\n\nrequire('./routes')(app);\n\napp.on('stormpath.ready',function() {\n  console.log('Stormpath Ready');\n});\n\n// Start server\nserver.listen(config.port, config.ip, function () {\n  console.log('Express server listening on %d, in %s mode', config.port, app.get('env'));\n});\n\n\n// Expose app\nexports = module.exports = app;\n"
  },
  {
    "path": "example/dashboard-app/server/components/errors/index.js",
    "content": "/**\n * Error responses\n */\n\n'use strict';\n\nmodule.exports[404] = function pageNotFound(req, res) {\n  var viewFilePath = '404';\n  var statusCode = 404;\n  var result = {\n    status: statusCode\n  };\n\n  res.status(result.status);\n  res.render(viewFilePath, function (err) {\n    if (err) { return res.json(result, result.status); }\n\n    res.render(viewFilePath);\n  });\n};\n"
  },
  {
    "path": "example/dashboard-app/server/config/environment/development.js",
    "content": "'use strict';\n\n// Development specific configuration\n// ==================================\nmodule.exports = {\n  // MongoDB connection options\n  mongo: {\n    uri: 'mongodb://localhost/dashboard-dev'\n  },\n\n  seedDB: true\n};\n"
  },
  {
    "path": "example/dashboard-app/server/config/environment/index.js",
    "content": "'use strict';\n\nvar path = require('path');\nvar _ = require('lodash');\n\nfunction requiredProcessEnv(name) {\n  if(!process.env[name]) {\n    throw new Error('You must set the ' + name + ' environment variable');\n  }\n  return process.env[name];\n}\n\n// All configurations will extend these options\n// ============================================\nvar all = {\n  env: process.env.NODE_ENV,\n\n  // Root path of server\n  root: path.normalize(__dirname + '/../../..'),\n\n  // Server port\n  port: process.env.PORT || 9000,\n\n  // Should we populate the DB with sample data?\n  seedDB: false,\n\n  // Secret for session, you will want to change this and make it an environment variable\n  secrets: {\n    session: 'dashboard-secret'\n  },\n\n  // List of user roles\n  userRoles: ['guest', 'user', 'admin'],\n\n  // MongoDB connection options\n  mongo: {\n    options: {\n      db: {\n        safe: true\n      }\n    }\n  },\n\n};\n\n// Export the config object based on the NODE_ENV\n// ==============================================\nmodule.exports = _.merge(\n  all,\n  require('./' + process.env.NODE_ENV + '.js') || {});"
  },
  {
    "path": "example/dashboard-app/server/config/environment/production.js",
    "content": "'use strict';\n\n// Production specific configuration\n// =================================\nmodule.exports = {\n  // Server IP\n  ip:       process.env.OPENSHIFT_NODEJS_IP ||\n            process.env.IP ||\n            undefined,\n\n  // Server port\n  port:     process.env.OPENSHIFT_NODEJS_PORT ||\n            process.env.PORT ||\n            8080,\n\n  // MongoDB connection options\n  mongo: {\n    uri:    process.env.MONGOLAB_URI ||\n            process.env.MONGOHQ_URL ||\n            process.env.OPENSHIFT_MONGODB_DB_URL+process.env.OPENSHIFT_APP_NAME ||\n            'mongodb://localhost/dashboard'\n  }\n};"
  },
  {
    "path": "example/dashboard-app/server/config/environment/test.js",
    "content": "'use strict';\n\n// Test specific configuration\n// ===========================\nmodule.exports = {\n  // MongoDB connection options\n  mongo: {\n    uri: 'mongodb://localhost/dashboard-test'\n  }\n};"
  },
  {
    "path": "example/dashboard-app/server/config/express.js",
    "content": "/**\n * Express configuration\n */\n\n'use strict';\n\nvar express = require('express');\nvar favicon = require('serve-favicon');\nvar morgan = require('morgan');\nvar compression = require('compression');\nvar bodyParser = require('body-parser');\nvar methodOverride = require('method-override');\nvar cookieParser = require('cookie-parser');\nvar errorHandler = require('errorhandler');\nvar path = require('path');\nvar config = require('./environment');\n\nmodule.exports = function(app) {\n  var env = app.get('env');\n\n  app.set('views', config.root + '/server/views');\n  app.engine('html', require('ejs').renderFile);\n  app.set('view engine', 'html');\n  app.set('trust proxy', true);\n  app.use(compression());\n  app.use(methodOverride());\n  app.use(cookieParser());\n\n  if ('production' === env) {\n    app.use(favicon(path.join(config.root, 'public', 'favicon.ico')));\n    app.use(express.static(path.join(config.root, 'public')));\n    app.set('appPath', path.join(config.root, 'public', 'index.html'));\n    app.use(morgan('dev'));\n  }\n\n  if ('development' === env || 'test' === env) {\n    app.use(require('connect-livereload')());\n    app.use(express.static(path.join(config.root, '.tmp')));\n    app.use(express.static(path.join(config.root, 'client')));\n    app.set('appPath', path.join(config.root, 'client', 'index.html'));\n    app.use(morgan('dev'));\n    app.use(errorHandler()); // Error handler - has to be last\n  }\n};\n"
  },
  {
    "path": "example/dashboard-app/server/config/local.env.sample.js",
    "content": "'use strict';\n\n// Use local.env.js for environment variables that grunt will set when the server starts locally.\n// Use for your api keys, secrets, etc. This file should not be tracked by git.\n//\n// You will need to set these on the server you deploy to.\n\nmodule.exports = {\n  DOMAIN:           'http://localhost:9000',\n  SESSION_SECRET:   'dashboard-secret',\n\n  // Control debug level for modules using visionmedia/debug\n  DEBUG: ''\n};\n"
  },
  {
    "path": "example/dashboard-app/server/routes.js",
    "content": "/**\n * Main application routes\n */\n\n'use strict';\n\nvar errors = require('./components/errors');\nvar ExpressStormpath = require('express-stormpath');\n\nmodule.exports = function(app) {\n\n  // Insert routes below\n  app.use('/api/things', ExpressStormpath.loginRequired, require('./api/thing'));\n\n  // All undefined asset or api routes should return a 404\n  app.route('/:url(api|auth|components|app|bower_components|assets)/*')\n   .get(errors[404]);\n\n  // All other routes should redirect to the index.html\n  app.route('/*')\n    .get(function(req, res) {\n      res.sendFile(app.get('appPath'));\n    });\n};\n"
  },
  {
    "path": "example/dashboard-app/server/views/404.html",
    "content": "\n\n  \n    \n    Page Not Found :(\n    \n  \n  \n    
\n      
Not found :(
\n      
Sorry, but the page you were trying to view does not exist.
\n      
It looks like this was the result of either:
\n      
    \n        
  • a mistyped address
    • \n        
  • an out-of-date link
    • \n      
\n      \n      \n    
\n  \n\n"
  },
  {
    "path": "example/ng-route-app/.bowerrc",
    "content": "{\n    \"directory\": \"client/bower_components\"\n}\n"
  },
  {
    "path": "example/ng-route-app/.buildignore",
    "content": "*.coffee"
  },
  {
    "path": "example/ng-route-app/.editorconfig",
    "content": "# EditorConfig helps developers define and maintain consistent\n# coding styles between different editors and IDEs\n# editorconfig.org\n\nroot = true\n\n\n[*]\n\n# Change these settings to your own preference\nindent_style = space\nindent_size = 2\n\n# We recommend you to keep these unchanged\nend_of_line = lf\ncharset = utf-8\ntrim_trailing_whitespace = true\ninsert_final_newline = true\n\n[*.md]\ntrim_trailing_whitespace = false\n"
  },
  {
    "path": "example/ng-route-app/.gitattributes",
    "content": "* text=auto"
  },
  {
    "path": "example/ng-route-app/.gitignore",
    "content": "node_modules\npublic\n.tmp\n.idea\nclient/bower_components\ndist\n/server/config/local.env.js\nstormpath.yml\n"
  },
  {
    "path": "example/ng-route-app/.travis.yml",
    "content": "language: node_js\nnode_js:\n  - '0.10'\n  - '0.11'\nbefore_script:\n  - npm install -g bower grunt-cli\n  - bower install\nservices: mongodb"
  },
  {
    "path": "example/ng-route-app/.yo-rc.json",
    "content": "{\n  \"generator-angular-fullstack\": {\n    \"insertRoutes\": true,\n    \"registerRoutesFile\": \"server/routes.js\",\n    \"routesNeedle\": \"// Insert routes below\",\n    \"routesBase\": \"/api/\",\n    \"pluralizeRoutes\": true,\n    \"insertSockets\": true,\n    \"registerSocketsFile\": \"server/config/socketio.js\",\n    \"socketsNeedle\": \"// Insert sockets below\",\n    \"filters\": {\n      \"js\": true,\n      \"html\": true,\n      \"css\": true,\n      \"uirouter\": true,\n      \"bootstrap\": true,\n      \"uibootstrap\": false\n    }\n  },\n  \"generator-ng-component\": {\n    \"routeDirectory\": \"client/app/\",\n    \"directiveDirectory\": \"client/app/\",\n    \"filterDirectory\": \"client/app/\",\n    \"serviceDirectory\": \"client/app/\",\n    \"basePath\": \"client\",\n    \"moduleName\": \"\",\n    \"filters\": [\n      \"uirouter\"\n    ],\n    \"extensions\": [\n      \"js\",\n      \"html\",\n      \"css\"\n    ],\n    \"directiveSimpleTemplates\": \"\",\n    \"directiveComplexTemplates\": \"\",\n    \"filterTemplates\": \"\",\n    \"serviceTemplates\": \"\",\n    \"factoryTemplates\": \"\",\n    \"controllerTemplates\": \"\",\n    \"decoratorTemplates\": \"\",\n    \"providerTemplates\": \"\",\n    \"routeTemplates\": \"\"\n  }\n}"
  },
  {
    "path": "example/ng-route-app/Gruntfile.js",
    "content": "// Generated on 2015-09-24 using generator-angular-fullstack 2.0.13\n'use strict';\n\nmodule.exports = function (grunt) {\n  var localConfig;\n  try {\n    localConfig = require('./server/config/local.env');\n  } catch(e) {\n    localConfig = {};\n  }\n\n  // Load grunt tasks automatically, when needed\n  require('jit-grunt')(grunt, {\n    express: 'grunt-express-server',\n    useminPrepare: 'grunt-usemin',\n    ngtemplates: 'grunt-angular-templates',\n    cdnify: 'grunt-google-cdn',\n    protractor: 'grunt-protractor-runner',\n    injector: 'grunt-asset-injector',\n    buildcontrol: 'grunt-build-control'\n  });\n\n  // Time how long tasks take. Can help when optimizing build times\n  require('time-grunt')(grunt);\n\n  // Define the configuration for all the tasks\n  grunt.initConfig({\n\n    // Project settings\n    pkg: grunt.file.readJSON('package.json'),\n    yeoman: {\n      // configurable paths\n      client: require('./bower.json').appPath || 'client',\n      dist: 'dist'\n    },\n    express: {\n      options: {\n        port: process.env.PORT || 9000,\n        // output option will force Grunt to wait for this\n        // line to be seen in server output, before continuing\n        output: 'Stormpath Ready'\n      },\n      dev: {\n        options: {\n          script: 'server/app.js',\n          debug: true\n        }\n      },\n      prod: {\n        options: {\n          script: 'dist/server/app.js'\n        }\n      }\n    },\n    open: {\n      server: {\n        url: 'http://localhost:<%= express.options.port %>'\n      }\n    },\n    watch: {\n      injectJS: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.js',\n          '!<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '!<%= yeoman.client %>/{app,components}/**/*.mock.js',\n          '!<%= yeoman.client %>/app/app.js'],\n        tasks: ['injector:scripts']\n      },\n      injectCss: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.css'\n        ],\n        tasks: ['injector:css']\n      },\n      mochaTest: {\n        files: ['server/**/*.spec.js'],\n        tasks: ['env:test', 'mochaTest']\n      },\n      jsTest: {\n        files: [\n          '<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '<%= yeoman.client %>/{app,components}/**/*.mock.js'\n        ],\n        tasks: ['newer:jshint:all', 'karma']\n      },\n      gruntfile: {\n        files: ['Gruntfile.js']\n      },\n      livereload: {\n        files: [\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.css',\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.html',\n          '{.tmp,<%= yeoman.client %>}/{app,components}/**/*.js',\n          '!{.tmp,<%= yeoman.client %>}{app,components}/**/*.spec.js',\n          '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.mock.js',\n          '<%= yeoman.client %>/assets/images/{,*//*}*.{png,jpg,jpeg,gif,webp,svg}'\n        ],\n        options: {\n          livereload: true\n        }\n      },\n      express: {\n        files: [\n          'server/**/*.{js,json}'\n        ],\n        tasks: ['express:dev', 'wait'],\n        options: {\n          livereload: true,\n          nospawn: true //Without this option specified express won't be reloaded\n        }\n      }\n    },\n\n    // Make sure code styles are up to par and there are no obvious mistakes\n    jshint: {\n      options: {\n        jshintrc: '<%= yeoman.client %>/.jshintrc',\n        reporter: require('jshint-stylish')\n      },\n      server: {\n        options: {\n          jshintrc: 'server/.jshintrc'\n        },\n        src: [\n          'server/**/*.js',\n          '!server/**/*.spec.js'\n        ]\n      },\n      serverTest: {\n        options: {\n          jshintrc: 'server/.jshintrc-spec'\n        },\n        src: ['server/**/*.spec.js']\n      },\n      all: [\n        '<%= yeoman.client %>/{app,components}/**/*.js',\n        '!<%= yeoman.client %>/{app,components}/**/*.spec.js',\n        '!<%= yeoman.client %>/{app,components}/**/*.mock.js'\n      ],\n      test: {\n        src: [\n          '<%= yeoman.client %>/{app,components}/**/*.spec.js',\n          '<%= yeoman.client %>/{app,components}/**/*.mock.js'\n        ]\n      }\n    },\n\n    // Empties folders to start fresh\n    clean: {\n      dist: {\n        files: [{\n          dot: true,\n          src: [\n            '.tmp',\n            '<%= yeoman.dist %>/*',\n            '!<%= yeoman.dist %>/.git*',\n            '!<%= yeoman.dist %>/.openshift',\n            '!<%= yeoman.dist %>/Procfile'\n          ]\n        }]\n      },\n      server: '.tmp'\n    },\n\n    // Add vendor prefixed styles\n    autoprefixer: {\n      options: {\n        browsers: ['last 1 version']\n      },\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '.tmp/',\n          src: '{,*/}*.css',\n          dest: '.tmp/'\n        }]\n      }\n    },\n\n    // Debugging with node inspector\n    'node-inspector': {\n      custom: {\n        options: {\n          'web-host': 'localhost'\n        }\n      }\n    },\n\n    // Use nodemon to run server in debug mode with an initial breakpoint\n    nodemon: {\n      debug: {\n        script: 'server/app.js',\n        options: {\n          nodeArgs: ['--debug-brk'],\n          env: {\n            PORT: process.env.PORT || 9000\n          },\n          callback: function (nodemon) {\n            nodemon.on('log', function (event) {\n              console.log(event.colour);\n            });\n\n            // opens browser on initial server start\n            nodemon.on('config:update', function () {\n              setTimeout(function () {\n                require('open')('http://localhost:8080/debug?port=5858');\n              }, 500);\n            });\n          }\n        }\n      }\n    },\n\n    // Automatically inject Bower components into the app\n    wiredep: {\n      target: {\n        src: '<%= yeoman.client %>/index.html',\n        ignorePath: '<%= yeoman.client %>/',\n        exclude: [/bootstrap-sass-official/, /bootstrap.js/, '/json3/', '/es5-shim/']\n      }\n    },\n\n    // Renames files for browser caching purposes\n    rev: {\n      dist: {\n        files: {\n          src: [\n            '<%= yeoman.dist %>/public/{,*/}*.js',\n            '<%= yeoman.dist %>/public/{,*/}*.css',\n            '<%= yeoman.dist %>/public/assets/images/{,*/}*.{png,jpg,jpeg,gif,webp,svg}',\n            '<%= yeoman.dist %>/public/assets/fonts/*'\n          ]\n        }\n      }\n    },\n\n    // Reads HTML for usemin blocks to enable smart builds that automatically\n    // concat, minify and revision files. Creates configurations in memory so\n    // additional tasks can operate on them\n    useminPrepare: {\n      html: ['<%= yeoman.client %>/index.html'],\n      options: {\n        dest: '<%= yeoman.dist %>/public'\n      }\n    },\n\n    // Performs rewrites based on rev and the useminPrepare configuration\n    usemin: {\n      html: ['<%= yeoman.dist %>/public/{,*/}*.html'],\n      css: ['<%= yeoman.dist %>/public/{,*/}*.css'],\n      js: ['<%= yeoman.dist %>/public/{,*/}*.js'],\n      options: {\n        assetsDirs: [\n          '<%= yeoman.dist %>/public',\n          '<%= yeoman.dist %>/public/assets/images'\n        ],\n        // This is so we update image references in our ng-templates\n        patterns: {\n          js: [\n            [/(assets\\/images\\/.*?\\.(?:gif|jpeg|jpg|png|webp|svg))/gm, 'Update the JS to reference our revved images']\n          ]\n        }\n      }\n    },\n\n    // The following *-min tasks produce minified files in the dist folder\n    imagemin: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '<%= yeoman.client %>/assets/images',\n          src: '{,*/}*.{png,jpg,jpeg,gif}',\n          dest: '<%= yeoman.dist %>/public/assets/images'\n        }]\n      }\n    },\n\n    svgmin: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '<%= yeoman.client %>/assets/images',\n          src: '{,*/}*.svg',\n          dest: '<%= yeoman.dist %>/public/assets/images'\n        }]\n      }\n    },\n\n    // Allow the use of non-minsafe AngularJS files. Automatically makes it\n    // minsafe compatible so Uglify does not destroy the ng references\n    ngAnnotate: {\n      dist: {\n        files: [{\n          expand: true,\n          cwd: '.tmp/concat',\n          src: '*/**.js',\n          dest: '.tmp/concat'\n        }]\n      }\n    },\n\n    // Package all the html partials into a single javascript payload\n    ngtemplates: {\n      options: {\n        // This should be the name of your apps angular module\n        module: 'dashboardApp',\n        htmlmin: {\n          collapseBooleanAttributes: true,\n          collapseWhitespace: true,\n          removeAttributeQuotes: true,\n          removeEmptyAttributes: true,\n          removeRedundantAttributes: true,\n          removeScriptTypeAttributes: true,\n          removeStyleLinkTypeAttributes: true\n        },\n        usemin: 'app/app.js'\n      },\n      main: {\n        cwd: '<%= yeoman.client %>',\n        src: ['{app,components}/**/*.html'],\n        dest: '.tmp/templates.js'\n      },\n      tmp: {\n        cwd: '.tmp',\n        src: ['{app,components}/**/*.html'],\n        dest: '.tmp/tmp-templates.js'\n      }\n    },\n\n    // Replace Google CDN references\n    cdnify: {\n      dist: {\n        html: ['<%= yeoman.dist %>/public/*.html']\n      }\n    },\n\n    // Copies remaining files to places other tasks can use\n    copy: {\n      dist: {\n        files: [{\n          expand: true,\n          dot: true,\n          cwd: '<%= yeoman.client %>',\n          dest: '<%= yeoman.dist %>/public',\n          src: [\n            '*.{ico,png,txt}',\n            '.htaccess',\n            'bower_components/**/*',\n            'assets/images/{,*/}*.{webp}',\n            'assets/fonts/**/*',\n            'index.html'\n          ]\n        }, {\n          expand: true,\n          cwd: '.tmp/images',\n          dest: '<%= yeoman.dist %>/public/assets/images',\n          src: ['generated/*']\n        }, {\n          expand: true,\n          dest: '<%= yeoman.dist %>',\n          src: [\n            'package.json',\n            'server/**/*'\n          ]\n        }]\n      },\n      styles: {\n        expand: true,\n        cwd: '<%= yeoman.client %>',\n        dest: '.tmp/',\n        src: ['{app,components}/**/*.css']\n      }\n    },\n\n    buildcontrol: {\n      options: {\n        dir: 'dist',\n        commit: true,\n        push: true,\n        connectCommits: false,\n        message: 'Built %sourceName% from commit %sourceCommit% on branch %sourceBranch%'\n      },\n      heroku: {\n        options: {\n          remote: 'heroku',\n          branch: 'master'\n        }\n      },\n      openshift: {\n        options: {\n          remote: 'openshift',\n          branch: 'master'\n        }\n      }\n    },\n\n    // Run some tasks in parallel to speed up the build process\n    concurrent: {\n      server: [\n      ],\n      test: [\n      ],\n      debug: {\n        tasks: [\n          'nodemon',\n          'node-inspector'\n        ],\n        options: {\n          logConcurrentOutput: true\n        }\n      },\n      dist: [\n        'imagemin',\n        'svgmin'\n      ]\n    },\n\n    // Test settings\n    karma: {\n      unit: {\n        configFile: 'karma.conf.js',\n        singleRun: true\n      }\n    },\n\n    mochaTest: {\n      options: {\n        reporter: 'spec'\n      },\n      src: ['server/**/*.spec.js']\n    },\n\n    protractor: {\n      options: {\n        configFile: 'protractor.conf.js'\n      },\n      chrome: {\n        options: {\n          args: {\n            browser: 'chrome'\n          }\n        }\n      }\n    },\n\n    env: {\n      test: {\n        NODE_ENV: 'test'\n      },\n      prod: {\n        NODE_ENV: 'production'\n      },\n      all: localConfig\n    },\n\n    injector: {\n      options: {\n\n      },\n      // Inject application script files into index.html (doesn't include bower)\n      scripts: {\n        options: {\n          transform: function(filePath) {\n            filePath = filePath.replace('/client/', '');\n            filePath = filePath.replace('/.tmp/', '');\n            return '';\n          },\n          starttag: '',\n          endtag: ''\n        },\n        files: {\n          '<%= yeoman.client %>/index.html': [\n              ['{.tmp,<%= yeoman.client %>}/{app,components}/**/*.js',\n               '!{.tmp,<%= yeoman.client %>}/app/app.js',\n               '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.spec.js',\n               '!{.tmp,<%= yeoman.client %>}/{app,components}/**/*.mock.js']\n            ]\n        }\n      },\n\n      // Inject component css into index.html\n      css: {\n        options: {\n          transform: function(filePath) {\n            filePath = filePath.replace('/client/', '');\n            filePath = filePath.replace('/.tmp/', '');\n            return '';\n          },\n          starttag: '',\n          endtag: ''\n        },\n        files: {\n          '<%= yeoman.client %>/index.html': [\n            '<%= yeoman.client %>/{app,components}/**/*.css'\n          ]\n        }\n      }\n    },\n  });\n\n  // Used for delaying livereload until after server has restarted\n  grunt.registerTask('wait', function () {\n    grunt.log.ok('Waiting for server reload...');\n\n    var done = this.async();\n\n    setTimeout(function () {\n      grunt.log.writeln('Done waiting!');\n      done();\n    }, 1500);\n  });\n\n  grunt.registerTask('express-keepalive', 'Keep grunt running', function() {\n    this.async();\n  });\n\n  grunt.registerTask('serve', function (target) {\n    if (target === 'dist') {\n      return grunt.task.run(['build', 'env:all', 'env:prod', 'express:prod', 'wait', 'open', 'express-keepalive']);\n    }\n\n    if (target === 'debug') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'concurrent:server',\n        'injector',\n        'wiredep',\n        'autoprefixer',\n        'concurrent:debug'\n      ]);\n    }\n\n    grunt.task.run([\n      'clean:server',\n      'env:all',\n      'concurrent:server',\n      'injector',\n      'wiredep',\n      'autoprefixer',\n      'express:dev',\n      'wait',\n      'open',\n      'watch'\n    ]);\n  });\n\n  grunt.registerTask('server', function () {\n    grunt.log.warn('The `server` task has been deprecated. Use `grunt serve` to start a server.');\n    grunt.task.run(['serve']);\n  });\n\n  grunt.registerTask('test', function(target) {\n    if (target === 'server') {\n      return grunt.task.run([\n        'env:all',\n        'env:test',\n        'mochaTest'\n      ]);\n    }\n\n    else if (target === 'client') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'concurrent:test',\n        'injector',\n        'autoprefixer',\n        'karma'\n      ]);\n    }\n\n    else if (target === 'e2e') {\n      return grunt.task.run([\n        'clean:server',\n        'env:all',\n        'env:test',\n        'concurrent:test',\n        'injector',\n        'wiredep',\n        'autoprefixer',\n        'express:dev',\n        'protractor'\n      ]);\n    }\n\n    else grunt.task.run([\n      'test:server',\n      'test:client'\n    ]);\n  });\n\n  grunt.registerTask('build', [\n    'clean:dist',\n    'concurrent:dist',\n    'injector',\n    'wiredep',\n    'useminPrepare',\n    'autoprefixer',\n    'ngtemplates',\n    'concat',\n    'ngAnnotate',\n    'copy:dist',\n    'cdnify',\n    'cssmin',\n    'uglify',\n    'rev',\n    'usemin'\n  ]);\n\n  grunt.registerTask('default', [\n    'newer:jshint',\n    'test',\n    'build'\n  ]);\n};\n"
  },
  {
    "path": "example/ng-route-app/README.md",
    "content": "# Stormpath Angular SDK Example\n\nThis folder contains an example application that is built with the [Stormpath Angular SDK][]\nand [Stormpath Express][].\n\nThis application is the same one that is built when you follow the [Yeoman Guide][],\nbut instead of [UI Router][], it uses the [ngRoute][] module.\n\n#### Running the Example Application\n\n1. To run this application, you will need Bower and Grunt as global packages:\n\n  ```bash\n  npm install -g grunt bower\n  ```\n\n2. Clone this repo to your computer, and enter the directory for this example:\n\n  ```bash\n  git clone https://github.com/stormpath/stormpath-sdk-angularjs.git\n  cd stormpath-sdk-angularjs/example/ng-route-app\n  ```\n\n3. Install the dependencies:\n\n  ```bash\n  npm install\n  bower install\n  ```\n4. Export your environment variables for your Stormpath Tenant and Application:\n\n  ```bash\n  export STORMPATH_CLIENT_APIKEY_ID=xxx\n  export STORMPATH_CLIENT_APIKEY_SECRET=xxx\n  export STORMPATH_APPLICATION_HREF=xxx\n  ```\n\n5. Start the server with Grunt, this should start the server and open the Angular\n  application in your browser:\n\n  ```bash\n  grunt serve\n  ```\n\n[Stormpath Angular SDK]: https://github.com/stormpath/stormpath-sdk-angularjs\n[Stormpath Express]: https://github.com/stormpath/stormpath-express\n[Yeoman Guide]: https://docs.stormpath.com/angularjs/guide\n[UI Router]: https://github.com/angular-ui/ui-router\n[ngRoute]: https://docs.angularjs.org/api/ngRoute\n"
  },
  {
    "path": "example/ng-route-app/bower.json",
    "content": "{\n  \"name\": \"dashboard\",\n  \"version\": \"0.0.0\",\n  \"dependencies\": {\n    \"angular\": \">=1.2.*\",\n    \"json3\": \"~3.3.1\",\n    \"es5-shim\": \"~3.0.1\",\n    \"jquery\": \"~1.11.0\",\n    \"bootstrap\": \"~3.1.1\",\n    \"angular-route\": \"~1.4.7\",\n    \"angular-resource\": \">=1.2.*\",\n    \"angular-cookies\": \">=1.2.*\",\n    \"angular-sanitize\": \">=1.2.*\",\n    \"font-awesome\": \">=4.1.0\",\n    \"lodash\": \"~2.4.1\",\n    \"stormpath-sdk-angularjs\": \"~1.0.0\"\n  },\n  \"devDependencies\": {\n    \"angular-mocks\": \">=1.2.*\",\n    \"angular-scenario\": \">=1.2.*\"\n  }\n}\n"
  },
  {
    "path": "example/ng-route-app/client/.htaccess",
    "content": "# Apache Configuration File\n\n# (!) Using `.htaccess` files slows down Apache, therefore, if you have access\n# to the main server config file (usually called `httpd.conf`), you should add\n# this logic there: http://httpd.apache.org/docs/current/howto/htaccess.html.\n\n# ##############################################################################\n# # CROSS-ORIGIN RESOURCE SHARING (CORS)                                       #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Cross-domain AJAX requests                                                 |\n# ------------------------------------------------------------------------------\n\n# Enable cross-origin AJAX requests.\n# http://code.google.com/p/html5security/wiki/CrossOriginRequestSecurity\n# http://enable-cors.org/\n\n# \n#    Header set Access-Control-Allow-Origin \"*\"\n# \n\n# ------------------------------------------------------------------------------\n# | CORS-enabled images                                                        |\n# ------------------------------------------------------------------------------\n\n# Send the CORS header for images when browsers request it.\n# https://developer.mozilla.org/en/CORS_Enabled_Image\n# http://blog.chromium.org/2011/07/using-cross-domain-images-in-webgl-and.html\n# http://hacks.mozilla.org/2011/11/using-cors-to-load-webgl-textures-from-cross-domain-images/\n\n\n    \n        \n            SetEnvIf Origin \":\" IS_CORS\n            Header set Access-Control-Allow-Origin \"*\" env=IS_CORS\n        \n    \n\n\n# ------------------------------------------------------------------------------\n# | Web fonts access                                                           |\n# ------------------------------------------------------------------------------\n\n# Allow access from all domains for web fonts\n\n\n    \n        Header set Access-Control-Allow-Origin \"*\"\n    \n\n\n\n# ##############################################################################\n# # ERRORS                                                                     #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | 404 error prevention for non-existing redirected folders                   |\n# ------------------------------------------------------------------------------\n\n# Prevent Apache from returning a 404 error for a rewrite if a directory\n# with the same name does not exist.\n# http://httpd.apache.org/docs/current/content-negotiation.html#multiviews\n# http://www.webmasterworld.com/apache/3808792.htm\n\nOptions -MultiViews\n\n# ------------------------------------------------------------------------------\n# | Custom error messages / pages                                              |\n# ------------------------------------------------------------------------------\n\n# You can customize what Apache returns to the client in case of an error (see\n# http://httpd.apache.org/docs/current/mod/core.html#errordocument), e.g.:\n\nErrorDocument 404 /404.html\n\n\n# ##############################################################################\n# # INTERNET EXPLORER                                                          #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Better website experience                                                  |\n# ------------------------------------------------------------------------------\n\n# Force IE to render pages in the highest available mode in the various\n# cases when it may not: http://hsivonen.iki.fi/doctype/ie-mode.pdf.\n\n\n    Header set X-UA-Compatible \"IE=edge\"\n    # `mod_headers` can't match based on the content-type, however, we only\n    # want to send this header for HTML pages and not for the other resources\n    \n        Header unset X-UA-Compatible\n    \n\n\n# ------------------------------------------------------------------------------\n# | Cookie setting from iframes                                                |\n# ------------------------------------------------------------------------------\n\n# Allow cookies to be set from iframes in IE.\n\n# \n#   Header set P3P \"policyref=\\\"/w3c/p3p.xml\\\", CP=\\\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\\\"\"\n# \n\n# ------------------------------------------------------------------------------\n# | Screen flicker                                                             |\n# ------------------------------------------------------------------------------\n\n# Stop screen flicker in IE on CSS rollovers (this only works in\n# combination with the `ExpiresByType` directives for images from below).\n\n# BrowserMatch \"MSIE\" brokenvary=1\n# BrowserMatch \"Mozilla/4.[0-9]{2}\" brokenvary=1\n# BrowserMatch \"Opera\" !brokenvary\n# SetEnvIf brokenvary 1 force-no-vary\n\n\n# ##############################################################################\n# # MIME TYPES AND ENCODING                                                    #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Proper MIME types for all files                                            |\n# ------------------------------------------------------------------------------\n\n\n\n  # Audio\n    AddType audio/mp4                                   m4a f4a f4b\n    AddType audio/ogg                                   oga ogg\n\n  # JavaScript\n    # Normalize to standard type (it's sniffed in IE anyways):\n    # http://tools.ietf.org/html/rfc4329#section-7.2\n    AddType application/javascript                      js jsonp\n    AddType application/json                            json\n\n  # Video\n    AddType video/mp4                                   mp4 m4v f4v f4p\n    AddType video/ogg                                   ogv\n    AddType video/webm                                  webm\n    AddType video/x-flv                                 flv\n\n  # Web fonts\n    AddType application/font-woff                       woff\n    AddType application/vnd.ms-fontobject               eot\n\n    # Browsers usually ignore the font MIME types and sniff the content,\n    # however, Chrome shows a warning if other MIME types are used for the\n    # following fonts.\n    AddType application/x-font-ttf                      ttc ttf\n    AddType font/opentype                               otf\n\n    # Make SVGZ fonts work on iPad:\n    # https://twitter.com/FontSquirrel/status/14855840545\n    AddType     image/svg+xml                           svg svgz\n    AddEncoding gzip                                    svgz\n\n  # Other\n    AddType application/octet-stream                    safariextz\n    AddType application/x-chrome-extension              crx\n    AddType application/x-opera-extension               oex\n    AddType application/x-shockwave-flash               swf\n    AddType application/x-web-app-manifest+json         webapp\n    AddType application/x-xpinstall                     xpi\n    AddType application/xml                             atom rdf rss xml\n    AddType image/webp                                  webp\n    AddType image/x-icon                                ico\n    AddType text/cache-manifest                         appcache manifest\n    AddType text/vtt                                    vtt\n    AddType text/x-component                            htc\n    AddType text/x-vcard                                vcf\n\n\n\n# ------------------------------------------------------------------------------\n# | UTF-8 encoding                                                             |\n# ------------------------------------------------------------------------------\n\n# Use UTF-8 encoding for anything served as `text/html` or `text/plain`.\nAddDefaultCharset utf-8\n\n# Force UTF-8 for certain file formats.\n\n    AddCharset utf-8 .atom .css .js .json .rss .vtt .webapp .xml\n\n\n\n# ##############################################################################\n# # URL REWRITES                                                               #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Rewrite engine                                                             |\n# ------------------------------------------------------------------------------\n\n# Turning on the rewrite engine and enabling the `FollowSymLinks` option is\n# necessary for the following directives to work.\n\n# If your web host doesn't allow the `FollowSymlinks` option, you may need to\n# comment it out and use `Options +SymLinksIfOwnerMatch` but, be aware of the\n# performance impact: http://httpd.apache.org/docs/current/misc/perf-tuning.html#symlinks\n\n# Also, some cloud hosting services require `RewriteBase` to be set:\n# http://www.rackspace.com/knowledge_center/frequently-asked-question/why-is-mod-rewrite-not-working-on-my-site\n\n\n    Options +FollowSymlinks\n  # Options +SymLinksIfOwnerMatch\n    RewriteEngine On\n  # RewriteBase /\n\n\n# ------------------------------------------------------------------------------\n# | Suppressing / Forcing the \"www.\" at the beginning of URLs                  |\n# ------------------------------------------------------------------------------\n\n# The same content should never be available under two different URLs especially\n# not with and without \"www.\" at the beginning. This can cause SEO problems\n# (duplicate content), therefore, you should choose one of the alternatives and\n# redirect the other one.\n\n# By default option 1 (no \"www.\") is activated:\n# http://no-www.org/faq.php?q=class_b\n\n# If you'd prefer to use option 2, just comment out all the lines from option 1\n# and uncomment the ones from option 2.\n\n# IMPORTANT: NEVER USE BOTH RULES AT THE SAME TIME!\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Option 1: rewrite www.example.com → example.com\n\n\n    RewriteCond %{HTTPS} !=on\n    RewriteCond %{HTTP_HOST} ^www\\.(.+)$ [NC]\n    RewriteRule ^ http://%1%{REQUEST_URI} [R=301,L]\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Option 2: rewrite example.com → www.example.com\n\n# Be aware that the following might not be a good idea if you use \"real\"\n# subdomains for certain parts of your website.\n\n# \n#    RewriteCond %{HTTPS} !=on\n#    RewriteCond %{HTTP_HOST} !^www\\..+$ [NC]\n#    RewriteRule ^ http://www.%{HTTP_HOST}%{REQUEST_URI} [R=301,L]\n# \n\n\n# ##############################################################################\n# # SECURITY                                                                   #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Content Security Policy (CSP)                                              |\n# ------------------------------------------------------------------------------\n\n# You can mitigate the risk of cross-site scripting and other content-injection\n# attacks by setting a Content Security Policy which whitelists trusted sources\n# of content for your site.\n\n# The example header below allows ONLY scripts that are loaded from the current\n# site's origin (no inline scripts, no CDN, etc). This almost certainly won't\n# work as-is for your site!\n\n# To get all the details you'll need to craft a reasonable policy for your site,\n# read: http://html5rocks.com/en/tutorials/security/content-security-policy (or\n# see the specification: http://w3.org/TR/CSP).\n\n# \n#    Header set Content-Security-Policy \"script-src 'self'; object-src 'self'\"\n#    \n#        Header unset Content-Security-Policy\n#    \n# \n\n# ------------------------------------------------------------------------------\n# | File access                                                                |\n# ------------------------------------------------------------------------------\n\n# Block access to directories without a default document.\n# Usually you should leave this uncommented because you shouldn't allow anyone\n# to surf through every directory on your server (which may includes rather\n# private places like the CMS's directories).\n\n\n    Options -Indexes\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Block access to hidden files and directories.\n# This includes directories used by version control systems such as Git and SVN.\n\n\n    RewriteCond %{SCRIPT_FILENAME} -d [OR]\n    RewriteCond %{SCRIPT_FILENAME} -f\n    RewriteRule \"(^|/)\\.\" - [F]\n\n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Block access to backup and source files.\n# These files may be left by some text editors and can pose a great security\n# danger when anyone has access to them.\n\n\n    Order allow,deny\n    Deny from all\n    Satisfy All\n\n\n# ------------------------------------------------------------------------------\n# | Secure Sockets Layer (SSL)                                                 |\n# ------------------------------------------------------------------------------\n\n# Rewrite secure requests properly to prevent SSL certificate warnings, e.g.:\n# prevent `https://www.example.com` when your certificate only allows\n# `https://secure.example.com`.\n\n# \n#    RewriteCond %{SERVER_PORT} !^443\n#    RewriteRule ^ https://example-domain-please-change-me.com%{REQUEST_URI} [R=301,L]\n# \n\n# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n# Force client-side SSL redirection.\n\n# If a user types \"example.com\" in his browser, the above rule will redirect him\n# to the secure version of the site. That still leaves a window of opportunity\n# (the initial HTTP connection) for an attacker to downgrade or redirect the\n# request. The following header ensures that browser will ONLY connect to your\n# server via HTTPS, regardless of what the users type in the address bar.\n# http://www.html5rocks.com/en/tutorials/security/transport-layer-security/\n\n# \n#    Header set Strict-Transport-Security max-age=16070400;\n# \n\n# ------------------------------------------------------------------------------\n# | Server software information                                                |\n# ------------------------------------------------------------------------------\n\n# Avoid displaying the exact Apache version number, the description of the\n# generic OS-type and the information about Apache's compiled-in modules.\n\n# ADD THIS DIRECTIVE IN THE `httpd.conf` AS IT WILL NOT WORK IN THE `.htaccess`!\n\n# ServerTokens Prod\n\n\n# ##############################################################################\n# # WEB PERFORMANCE                                                            #\n# ##############################################################################\n\n# ------------------------------------------------------------------------------\n# | Compression                                                                |\n# ------------------------------------------------------------------------------\n\n\n\n    # Force compression for mangled headers.\n    # http://developer.yahoo.com/blogs/ydn/posts/2010/12/pushing-beyond-gzipping\n    \n        \n            SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip|deflate)\\s*,?\\s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding\n            RequestHeader append Accept-Encoding \"gzip,deflate\" env=HAVE_Accept-Encoding\n        \n    \n\n    # Compress all output labeled with one of the following MIME-types\n    # (for Apache versions below 2.3.7, you don't need to enable `mod_filter`\n    #  and can remove the `` and `` lines\n    #  as `AddOutputFilterByType` is still in the core directives).\n    \n        AddOutputFilterByType DEFLATE application/atom+xml \\\n                                      application/javascript \\\n                                      application/json \\\n                                      application/rss+xml \\\n                                      application/vnd.ms-fontobject \\\n                                      application/x-font-ttf \\\n                                      application/x-web-app-manifest+json \\\n                                      application/xhtml+xml \\\n                                      application/xml \\\n                                      font/opentype \\\n                                      image/svg+xml \\\n                                      image/x-icon \\\n                                      text/css \\\n                                      text/html \\\n                                      text/plain \\\n                                      text/x-component \\\n                                      text/xml\n    \n\n\n\n# ------------------------------------------------------------------------------\n# | Content transformations                                                    |\n# ------------------------------------------------------------------------------\n\n# Prevent some of the mobile network providers from modifying the content of\n# your site: http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.9.5.\n\n# \n#    Header set Cache-Control \"no-transform\"\n# \n\n# ------------------------------------------------------------------------------\n# | ETag removal                                                               |\n# ------------------------------------------------------------------------------\n\n# Since we're sending far-future expires headers (see below), ETags can\n# be removed: http://developer.yahoo.com/performance/rules.html#etags.\n\n# `FileETag None` is not enough for every server.\n\n    Header unset ETag\n\n\nFileETag None\n\n# ------------------------------------------------------------------------------\n# | Expires headers (for better cache control)                                 |\n# ------------------------------------------------------------------------------\n\n# The following expires headers are set pretty far in the future. If you don't\n# control versioning with filename-based cache busting, consider lowering the\n# cache time for resources like CSS and JS to something like 1 week.\n\n\n\n    ExpiresActive on\n    ExpiresDefault                                      \"access plus 1 month\"\n\n  # CSS\n    ExpiresByType text/css                              \"access plus 1 year\"\n\n  # Data interchange\n    ExpiresByType application/json                      \"access plus 0 seconds\"\n    ExpiresByType application/xml                       \"access plus 0 seconds\"\n    ExpiresByType text/xml                              \"access plus 0 seconds\"\n\n  # Favicon (cannot be renamed!)\n    ExpiresByType image/x-icon                          \"access plus 1 week\"\n\n  # HTML components (HTCs)\n    ExpiresByType text/x-component                      \"access plus 1 month\"\n\n  # HTML\n    ExpiresByType text/html                             \"access plus 0 seconds\"\n\n  # JavaScript\n    ExpiresByType application/javascript                \"access plus 1 year\"\n\n  # Manifest files\n    ExpiresByType application/x-web-app-manifest+json   \"access plus 0 seconds\"\n    ExpiresByType text/cache-manifest                   \"access plus 0 seconds\"\n\n  # Media\n    ExpiresByType audio/ogg                             \"access plus 1 month\"\n    ExpiresByType image/gif                             \"access plus 1 month\"\n    ExpiresByType image/jpeg                            \"access plus 1 month\"\n    ExpiresByType image/png                             \"access plus 1 month\"\n    ExpiresByType video/mp4                             \"access plus 1 month\"\n    ExpiresByType video/ogg                             \"access plus 1 month\"\n    ExpiresByType video/webm                            \"access plus 1 month\"\n\n  # Web feeds\n    ExpiresByType application/atom+xml                  \"access plus 1 hour\"\n    ExpiresByType application/rss+xml                   \"access plus 1 hour\"\n\n  # Web fonts\n    ExpiresByType application/font-woff                 \"access plus 1 month\"\n    ExpiresByType application/vnd.ms-fontobject         \"access plus 1 month\"\n    ExpiresByType application/x-font-ttf                \"access plus 1 month\"\n    ExpiresByType font/opentype                         \"access plus 1 month\"\n    ExpiresByType image/svg+xml                         \"access plus 1 month\"\n\n\n\n# ------------------------------------------------------------------------------\n# | Filename-based cache busting                                               |\n# ------------------------------------------------------------------------------\n\n# If you're not using a build process to manage your filename version revving,\n# you might want to consider enabling the following directives to route all\n# requests such as `/css/style.12345.css` to `/css/style.css`.\n\n# To understand why this is important and a better idea than `*.css?v231`, read:\n# http://stevesouders.com/blog/2008/08/23/revving-filenames-dont-use-querystring\n\n# \n#    RewriteCond %{REQUEST_FILENAME} !-f\n#    RewriteCond %{REQUEST_FILENAME} !-d\n#    RewriteRule ^(.+)\\.(\\d+)\\.(js|css|png|jpg|gif)$ $1.$3 [L]\n# \n\n# ------------------------------------------------------------------------------\n# | File concatenation                                                         |\n# ------------------------------------------------------------------------------\n\n# Allow concatenation from within specific CSS and JS files, e.g.:\n# Inside of `script.combined.js` you could have\n#   \n#   \n# and they would be included into this single file.\n\n# \n#    \n#        Options +Includes\n#        AddOutputFilterByType INCLUDES application/javascript application/json\n#        SetOutputFilter INCLUDES\n#    \n#    \n#        Options +Includes\n#        AddOutputFilterByType INCLUDES text/css\n#        SetOutputFilter INCLUDES\n#    \n# \n\n# ------------------------------------------------------------------------------\n# | Persistent connections                                                     |\n# ------------------------------------------------------------------------------\n\n# Allow multiple requests to be sent over the same TCP connection:\n# http://httpd.apache.org/docs/current/en/mod/core.html#keepalive.\n\n# Enable if you serve a lot of static content but, be aware of the\n# possible disadvantages!\n\n# \n#    Header set Connection Keep-Alive\n# \n"
  },
  {
    "path": "example/ng-route-app/client/.jshintrc",
    "content": "{\n  \"node\": true,\n  \"browser\": true,\n  \"esnext\": true,\n  \"bitwise\": true,\n  \"camelcase\": true,\n  \"curly\": true,\n  \"eqeqeq\": true,\n  \"immed\": true,\n  \"indent\": 2,\n  \"latedef\": true,\n  \"newcap\": true,\n  \"noarg\": true,\n  \"quotmark\": \"single\",\n  \"regexp\": true,\n  \"undef\": true,\n  \"unused\": true,\n  \"strict\": true,\n  \"trailing\": true,\n  \"smarttabs\": true,\n  \"globals\": {\n    \"jQuery\": true,\n    \"angular\": true,\n    \"console\": true,\n    \"$\": true,\n    \"_\": true,\n    \"moment\": true,\n    \"describe\": true,\n    \"beforeEach\": true,\n    \"module\": true,\n    \"inject\": true,\n    \"it\": true,\n    \"expect\": true,\n    \"browser\": true,\n    \"element\": true,\n    \"by\": true\n  }\n}\n"
  },
  {
    "path": "example/ng-route-app/client/app/app.css",
    "content": "\n/**\n * Bootstrap Fonts\n */\n\n@font-face {\n    font-family: 'Glyphicons Halflings';\n    src: url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.eot');\n    src: url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.eot?#iefix') format('embedded-opentype'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.woff') format('woff'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.ttf') format('truetype'),\n    url('../bower_components/bootstrap/fonts/glyphicons-halflings-regular.svg#glyphicons_halflingsregular') format('svg');\n}\n\n/**\n *Font Awesome Fonts\n */\n\n@font-face {\n    font-family: 'FontAwesome';\n    src: url('../bower_components/font-awesome/fonts/fontawesome-webfont.eot?v=4.1.0');\n    src: url('../bower_components/font-awesome/fonts/fontawesome-webfont.eot?#iefix&v=4.1.0') format('embedded-opentype'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0') format('woff'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.ttf?v=4.1.0') format('truetype'),\n    url('../bower_components/font-awesome/fonts/fontawesome-webfont.svg?v=4.1.0#fontawesomeregular') format('svg');\n    font-weight: normal;\n    font-style: normal;\n}\n\n/**\n * App-wide Styles\n */\n\n.browsehappy {\n    margin: 0.2em 0;\n    background: #ccc;\n    color: #000;\n    padding: 0.2em 0;\n}\n"
  },
  {
    "path": "example/ng-route-app/client/app/app.js",
    "content": "'use strict';\n\nangular.module('dashboardApp', [\n  'ngCookies',\n  'ngResource',\n  'ngSanitize',\n  'ngRoute',\n  'stormpath',\n  'stormpath.templates'\n])\n  .config(function ($routeProvider, $locationProvider) {\n    $routeProvider.otherwise('/');\n    $locationProvider.html5Mode(true);\n  })\n  .run(function($stormpath, $rootScope, $location) {\n    $stormpath.ngRouter({\n      loginRoute: '/login',\n      defaultPostLoginRoute: '/'\n    });\n\n    $rootScope.$on('$sessionEnd', function() {\n      $location.path('/login');\n    });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/forgot/forgot.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ForgotCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/forgot/forgot.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ForgotCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ForgotCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ForgotCtrl = $controller('ForgotCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/forgot/forgot.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/forgot/forgot.html",
    "content": "
\n\n
\n  
\n    
\n      
Forgot Password
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/forgot/forgot.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/forgot', {\n        templateUrl: 'app/forgot/forgot.html',\n        controller: 'ForgotCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/login/login.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('LoginCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/login/login.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: LoginCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var LoginCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    LoginCtrl = $controller('LoginCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/login/login.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/login/login.html",
    "content": "
\n\n
\n  
\n    
\n      
Login
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/login/login.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/login', {\n        templateUrl: 'app/login/login.html',\n        controller: 'LoginCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/main/main.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('MainCtrl', function ($scope, $http) {\n    $scope.awesomeThings = [];\n\n    $http.get('/api/things').success(function(awesomeThings) {\n      $scope.awesomeThings = awesomeThings;\n    });\n\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/main/main.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: MainCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var MainCtrl,\n      scope,\n      $httpBackend;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function (_$httpBackend_, $controller, $rootScope) {\n    $httpBackend = _$httpBackend_;\n    $httpBackend.expectGET('/api/things')\n      .respond(['HTML5 Boilerplate', 'AngularJS', 'Karma', 'Express']);\n\n    scope = $rootScope.$new();\n    MainCtrl = $controller('MainCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should attach a list of things to the scope', function () {\n    $httpBackend.flush();\n    expect(scope.awesomeThings.length).toBe(4);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/main/main.css",
    "content": ".thing-form {\n    margin: 20px 0;\n}\n\n#banner {\n    border-bottom: none;\n    margin-top: -20px;\n}\n\n#banner h1 {\n    font-size: 60px;\n    line-height: 1;\n    letter-spacing: -1px;\n}\n\n.hero-unit {\n    position: relative;\n    padding: 30px 15px;\n    color: #F5F5F5;\n    text-align: center;\n    text-shadow: 0 1px 0 rgba(0, 0, 0, 0.1);\n    background: #4393B9;\n}\n\n.footer {\n    text-align: center;\n    padding: 30px 0;\n    margin-top: 70px;\n    border-top: 1px solid #E5E5E5;\n}"
  },
  {
    "path": "example/ng-route-app/client/app/main/main.html",
    "content": "
\n\n
\n  
\n    
'Allo, 'Allo!
\n    
Kick-start your next web app with Angular Fullstack
\n    \"I'm\n  
\n
\n\n
\n  
\n    
\n      
Features:
\n      \n    
\n  
\n
\n\n\n"
  },
  {
    "path": "example/ng-route-app/client/app/main/main.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/', {\n        templateUrl: 'app/main/main.html',\n        controller: 'MainCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/profile/profile.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ProfileCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/profile/profile.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ProfileCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ProfileCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ProfileCtrl = $controller('ProfileCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/profile/profile.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/profile/profile.html",
    "content": "
\n\n
\n  
\n    
\n      
My Profile
\n      
\n    
\n\n  
\n\n  
\n    
\n      
\n    
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/profile/profile.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/profile', {\n        templateUrl: 'app/profile/profile.html',\n        controller: 'ProfileCtrl',\n        sp: {\n          authenticate: true\n        }\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/register/register.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('RegisterCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/register/register.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: RegisterCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var RegisterCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    RegisterCtrl = $controller('RegisterCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/register/register.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/register/register.html",
    "content": "
\n\n
\n  
\n    
\n      
Registration
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/register/register.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/register', {\n        templateUrl: 'app/register/register.html',\n        controller: 'RegisterCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/reset/reset.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('ResetCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/reset/reset.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: ResetCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var ResetCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    ResetCtrl = $controller('ResetCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/reset/reset.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/reset/reset.html",
    "content": "
\n\n
\n  
\n    
\n      
Reset Your Password
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/reset/reset.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/reset', {\n        templateUrl: 'app/reset/reset.html',\n        controller: 'ResetCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/app/verify/verify.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('VerifyCtrl', function ($scope) {\n    $scope.message = 'Hello';\n  });\n"
  },
  {
    "path": "example/ng-route-app/client/app/verify/verify.controller.spec.js",
    "content": "'use strict';\n\ndescribe('Controller: VerifyCtrl', function () {\n\n  // load the controller's module\n  beforeEach(module('dashboardApp'));\n\n  var VerifyCtrl, scope;\n\n  // Initialize the controller and a mock scope\n  beforeEach(inject(function ($controller, $rootScope) {\n    scope = $rootScope.$new();\n    VerifyCtrl = $controller('VerifyCtrl', {\n      $scope: scope\n    });\n  }));\n\n  it('should ...', function () {\n    expect(1).toEqual(1);\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/client/app/verify/verify.css",
    "content": ""
  },
  {
    "path": "example/ng-route-app/client/app/verify/verify.html",
    "content": "
\n\n
\n  
\n    
\n      
Verify Your Account
\n      
\n    
\n  
\n  
\n
"
  },
  {
    "path": "example/ng-route-app/client/app/verify/verify.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .config(function ($routeProvider) {\n    $routeProvider\n      .when('/verify', {\n        templateUrl: 'app/verify/verify.html',\n        controller: 'VerifyCtrl'\n      });\n  });"
  },
  {
    "path": "example/ng-route-app/client/components/navbar/navbar.controller.js",
    "content": "'use strict';\n\nangular.module('dashboardApp')\n  .controller('NavbarCtrl', function ($scope, $location) {\n    $scope.menu = [{\n      'title': 'Home',\n      'link': '/'\n    }];\n\n    $scope.isCollapsed = true;\n\n    $scope.isActive = function(route) {\n      return route === $location.path();\n    };\n  });"
  },
  {
    "path": "example/ng-route-app/client/components/navbar/navbar.html",
    "content": "
\n  
\n    
\n      \n      dashboard\n    
\n    
\n      \n    
\n  
\n
\n"
  },
  {
    "path": "example/ng-route-app/client/index.html",
    "content": "\n\n\n\n  \n  \n    \n    \n    \n    \n    \n    \n    \n    \n      \n      \n      \n    \n    \n    \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n    \n  \n  \n    \n\n    \n    
\n\n    \n    \n\n    \n    \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n      \n    \n\n        \n        \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n          \n        \n\n\n"
  },
  {
    "path": "example/ng-route-app/client/robots.txt",
    "content": "# robotstxt.org\n\nUser-agent: *\n"
  },
  {
    "path": "example/ng-route-app/e2e/main/main.po.js",
    "content": "/**\n * This file uses the Page Object pattern to define the main page for tests\n * https://docs.google.com/presentation/d/1B6manhG0zEXkC-H-tPo2vwU06JhL8w9-XCF9oehXzAQ\n */\n\n'use strict';\n\nvar MainPage = function() {\n  this.heroEl = element(by.css('.hero-unit'));\n  this.h1El = this.heroEl.element(by.css('h1'));\n  this.imgEl = this.heroEl.element(by.css('img'));\n};\n\nmodule.exports = new MainPage();\n\n"
  },
  {
    "path": "example/ng-route-app/e2e/main/main.spec.js",
    "content": "'use strict';\n\ndescribe('Main View', function() {\n  var page;\n\n  beforeEach(function() {\n    browser.get('/');\n    page = require('./main.po');\n  });\n\n  it('should include jumbotron with correct data', function() {\n    expect(page.h1El.getText()).toBe('\\'Allo, \\'Allo!');\n    expect(page.imgEl.getAttribute('src')).toMatch(/assets\\/images\\/yeoman.png$/);\n    expect(page.imgEl.getAttribute('alt')).toBe('I\\'m Yeoman');\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/karma.conf.js",
    "content": "// Karma configuration\n// http://karma-runner.github.io/0.10/config/configuration-file.html\n\nmodule.exports = function(config) {\n  config.set({\n    // base path, that will be used to resolve files and exclude\n    basePath: '',\n\n    // testing framework to use (jasmine/mocha/qunit/...)\n    frameworks: ['jasmine'],\n\n    // list of files / patterns to load in the browser\n    files: [\n      'client/bower_components/jquery/dist/jquery.js',\n      'client/bower_components/angular/angular.js',\n      'client/bower_components/angular-mocks/angular-mocks.js',\n      'client/bower_components/angular-resource/angular-resource.js',\n      'client/bower_components/angular-cookies/angular-cookies.js',\n      'client/bower_components/angular-sanitize/angular-sanitize.js',\n      'client/bower_components/angular-route/angular-route.js',\n      'client/bower_components/lodash/dist/lodash.compat.js',\n      'client/bower_components/angular-ui-router/release/angular-ui-router.js',\n      'client/app/app.js',\n      'client/app/app.coffee',\n      'client/app/**/*.js',\n      'client/app/**/*.coffee',\n      'client/components/**/*.js',\n      'client/components/**/*.coffee',\n      'client/app/**/*.jade',\n      'client/components/**/*.jade',\n      'client/app/**/*.html',\n      'client/components/**/*.html'\n    ],\n\n    preprocessors: {\n      '**/*.jade': 'ng-jade2js',\n      '**/*.html': 'html2js',\n      '**/*.coffee': 'coffee',\n    },\n\n    ngHtml2JsPreprocessor: {\n      stripPrefix: 'client/'\n    },\n\n    ngJade2JsPreprocessor: {\n      stripPrefix: 'client/'\n    },\n\n    // list of files / patterns to exclude\n    exclude: [],\n\n    // web server port\n    port: 8080,\n\n    // level of logging\n    // possible values: LOG_DISABLE || LOG_ERROR || LOG_WARN || LOG_INFO || LOG_DEBUG\n    logLevel: config.LOG_INFO,\n\n\n    // enable / disable watching file and executing tests whenever any file changes\n    autoWatch: false,\n\n\n    // Start these browsers, currently available:\n    // - Chrome\n    // - ChromeCanary\n    // - Firefox\n    // - Opera\n    // - Safari (only Mac)\n    // - PhantomJS\n    // - IE (only Windows)\n    browsers: ['PhantomJS'],\n\n\n    // Continuous Integration mode\n    // if true, it capture browsers, run tests and exit\n    singleRun: false\n  });\n};\n"
  },
  {
    "path": "example/ng-route-app/package.json",
    "content": "{\n  \"name\": \"dashboard\",\n  \"version\": \"0.0.0\",\n  \"main\": \"server/app.js\",\n  \"dependencies\": {\n    \"body-parser\": \"~1.5.0\",\n    \"composable-middleware\": \"^0.3.0\",\n    \"compression\": \"~1.0.1\",\n    \"connect-mongo\": \"^0.4.1\",\n    \"cookie-parser\": \"~1.0.1\",\n    \"ejs\": \"~0.8.4\",\n    \"errorhandler\": \"~1.0.0\",\n    \"express\": \"^4.13.3\",\n    \"express-session\": \"~1.0.2\",\n    \"express-stormpath\": \"^3.0.0\",\n    \"lodash\": \"~2.4.1\",\n    \"method-override\": \"~1.0.0\",\n    \"morgan\": \"~1.0.0\",\n    \"serve-favicon\": \"~2.0.1\"\n  },\n  \"devDependencies\": {\n    \"grunt\": \"~0.4.4\",\n    \"grunt-autoprefixer\": \"~0.7.2\",\n    \"grunt-wiredep\": \"~1.8.0\",\n    \"grunt-concurrent\": \"~0.5.0\",\n    \"grunt-contrib-clean\": \"~0.5.0\",\n    \"grunt-contrib-concat\": \"~0.4.0\",\n    \"grunt-contrib-copy\": \"~0.5.0\",\n    \"grunt-contrib-cssmin\": \"~0.9.0\",\n    \"grunt-contrib-htmlmin\": \"~0.2.0\",\n    \"grunt-contrib-imagemin\": \"~0.7.1\",\n    \"grunt-contrib-jshint\": \"~0.10.0\",\n    \"grunt-contrib-uglify\": \"~0.4.0\",\n    \"grunt-contrib-watch\": \"~0.6.1\",\n    \"grunt-google-cdn\": \"~0.4.0\",\n    \"grunt-newer\": \"~0.7.0\",\n    \"grunt-ng-annotate\": \"^0.2.3\",\n    \"grunt-rev\": \"~0.1.0\",\n    \"grunt-svgmin\": \"~0.4.0\",\n    \"grunt-usemin\": \"~2.1.1\",\n    \"grunt-env\": \"~0.4.1\",\n    \"grunt-node-inspector\": \"~0.1.5\",\n    \"grunt-nodemon\": \"~0.2.0\",\n    \"grunt-angular-templates\": \"^0.5.4\",\n    \"grunt-dom-munger\": \"^3.4.0\",\n    \"grunt-protractor-runner\": \"^1.1.0\",\n    \"grunt-asset-injector\": \"^0.1.0\",\n    \"grunt-karma\": \"~0.8.2\",\n    \"grunt-build-control\": \"DaftMonk/grunt-build-control\",\n    \"grunt-mocha-test\": \"~0.10.2\",\n    \"jit-grunt\": \"^0.5.0\",\n    \"time-grunt\": \"~0.3.1\",\n    \"grunt-express-server\": \"~0.4.17\",\n    \"grunt-open\": \"~0.2.3\",\n    \"open\": \"~0.0.4\",\n    \"jshint-stylish\": \"~0.1.5\",\n    \"connect-livereload\": \"~0.4.0\",\n    \"karma-ng-scenario\": \"~0.1.0\",\n    \"karma-firefox-launcher\": \"~0.1.3\",\n    \"karma-script-launcher\": \"~0.1.0\",\n    \"karma-html2js-preprocessor\": \"~0.1.0\",\n    \"karma-ng-jade2js-preprocessor\": \"^0.1.2\",\n    \"karma-jasmine\": \"~0.1.5\",\n    \"karma-chrome-launcher\": \"~0.1.3\",\n    \"requirejs\": \"~2.1.11\",\n    \"karma-requirejs\": \"~0.2.1\",\n    \"karma-coffee-preprocessor\": \"~0.2.1\",\n    \"karma-jade-preprocessor\": \"0.0.11\",\n    \"karma-phantomjs-launcher\": \"~0.1.4\",\n    \"karma\": \"~0.12.9\",\n    \"karma-ng-html2js-preprocessor\": \"~0.1.0\",\n    \"supertest\": \"~0.11.0\",\n    \"should\": \"~3.3.1\"\n  },\n  \"engines\": {\n    \"node\": \">=0.10.0\"\n  },\n  \"scripts\": {\n    \"start\": \"node server/app.js\",\n    \"test\": \"grunt test\",\n    \"update-webdriver\": \"node node_modules/grunt-protractor-runner/node_modules/protractor/bin/webdriver-manager update\"\n  },\n  \"private\": true\n}\n"
  },
  {
    "path": "example/ng-route-app/protractor.conf.js",
    "content": "// Protractor configuration\n// https://github.com/angular/protractor/blob/master/referenceConf.js\n\n'use strict';\n\nexports.config = {\n  // The timeout for each script run on the browser. This should be longer\n  // than the maximum time your application needs to stabilize between tasks.\n  allScriptsTimeout: 110000,\n\n  // A base URL for your application under test. Calls to protractor.get()\n  // with relative paths will be prepended with this.\n  baseUrl: 'http://localhost:' + (process.env.PORT || '9000'),\n\n  // If true, only chromedriver will be started, not a standalone selenium.\n  // Tests for browsers other than chrome will not run.\n  chromeOnly: true,\n\n  // list of files / patterns to load in the browser\n  specs: [\n    'e2e/**/*.spec.js'\n  ],\n\n  // Patterns to exclude.\n  exclude: [],\n\n  // ----- Capabilities to be passed to the webdriver instance ----\n  //\n  // For a full list of available capabilities, see\n  // https://code.google.com/p/selenium/wiki/DesiredCapabilities\n  // and\n  // https://code.google.com/p/selenium/source/browse/javascript/webdriver/capabilities.js\n  capabilities: {\n    'browserName': 'chrome'\n  },\n\n  // ----- The test framework -----\n  //\n  // Jasmine and Cucumber are fully supported as a test and assertion framework.\n  // Mocha has limited beta support. You will need to include your own\n  // assertion framework if working with mocha.\n  framework: 'jasmine',\n\n  // ----- Options to be passed to minijasminenode -----\n  //\n  // See the full list at https://github.com/juliemr/minijasminenode\n  jasmineNodeOpts: {\n    defaultTimeoutInterval: 30000\n  }\n};\n"
  },
  {
    "path": "example/ng-route-app/server/.jshintrc",
    "content": "{\n  \"node\": true,\n  \"esnext\": true,\n  \"bitwise\": true,\n  \"eqeqeq\": true,\n  \"immed\": true,\n  \"latedef\": \"nofunc\",\n  \"newcap\": true,\n  \"noarg\": true,\n  \"regexp\": true,\n  \"undef\": true,\n  \"smarttabs\": true,\n  \"asi\": true,\n  \"debug\": true\n}\n"
  },
  {
    "path": "example/ng-route-app/server/.jshintrc-spec",
    "content": "{\n  \"extends\": \".jshintrc\",\n  \"globals\": {\n    \"describe\": true,\n    \"it\": true,\n    \"before\": true,\n    \"beforeEach\": true,\n    \"after\": true,\n    \"afterEach\": true\n  }\n}\n"
  },
  {
    "path": "example/ng-route-app/server/api/thing/index.js",
    "content": "'use strict';\n\nvar express = require('express');\nvar controller = require('./thing.controller');\n\nvar router = express.Router();\n\nrouter.get('/', controller.index);\n\nmodule.exports = router;"
  },
  {
    "path": "example/ng-route-app/server/api/thing/thing.controller.js",
    "content": "/**\n * Using Rails-like standard naming convention for endpoints.\n * GET     /things              ->  index\n * POST    /things              ->  create\n * GET     /things/:id          ->  show\n * PUT     /things/:id          ->  update\n * DELETE  /things/:id          ->  destroy\n */\n\n'use strict';\n\nvar _ = require('lodash');\n\n// Get list of things\nexports.index = function(req, res) {\n  res.json([\n  {\n  name : 'Development Tools',\n  info : 'Integration with popular tools such as Bower, Grunt, Karma, Mocha, JSHint, Node Inspector, Livereload, Protractor, Jade, Stylus, Sass, CoffeeScript, and Less.'\n  }, {\n  name : 'Server and Client integration',\n  info : 'Built with a powerful and fun stack: MongoDB, Express, AngularJS, and Node.'\n  }, {\n  name : 'Smart Build System',\n  info : 'Build system ignores `spec` files, allowing you to keep tests alongside code. Automatic injection of scripts and styles into your index.html'\n  },  {\n  name : 'Modular Structure',\n  info : 'Best practice client and server structures allow for more code reusability and maximum scalability'\n  },  {\n  name : 'Optimized Build',\n  info : 'Build process packs up your templates as a single JavaScript payload, minifies your scripts/css/images, and rewrites asset names for caching.'\n  },{\n  name : 'Deployment Ready',\n  info : 'Easily deploy your app to Heroku or Openshift with the heroku and openshift subgenerators'\n  }\n  ]);\n};"
  },
  {
    "path": "example/ng-route-app/server/api/thing/thing.spec.js",
    "content": "'use strict';\n\nvar should = require('should');\nvar app = require('../../app');\nvar request = require('supertest');\n\ndescribe('GET /api/things', function() {\n\n  it('should respond with JSON array', function(done) {\n    request(app)\n      .get('/api/things')\n      .expect(200)\n      .expect('Content-Type', /json/)\n      .end(function(err, res) {\n        if (err) return done(err);\n        res.body.should.be.instanceof(Array);\n        done();\n      });\n  });\n});\n"
  },
  {
    "path": "example/ng-route-app/server/app.js",
    "content": "/**\n * Main application file\n */\n\n'use strict';\n\n// Set default node environment to development\nprocess.env.NODE_ENV = process.env.NODE_ENV || 'development';\n\nvar express = require('express');\nvar config = require('./config/environment');\nvar ExpressStormpath = require('express-stormpath');\n\n// Setup server\nvar app = express();\n\nvar server = require('http').createServer(app);\n\n/*\n  The config/express file is setting up the static file server which serves your\n  angular application assets.  We don't need to authenticate those requests, so\n  we do this before calling Stormpath.\n */\n\nrequire('./config/express')(app);\n\nconsole.log('Initializing Stormpath');\n\n/*\n  Now we initialize Stormpath, any middleware that is registered after this\n  point will be protected by Stormpath.\n\n  The spaRoot setting tells the Stormpath library where your Angular app is,\n  as it will need to serve it for the default routes like /login and\n  /register.  The appPath property is provided by the configuration parser\n  in the Yeoman boilerplate.\n */\n\napp.use(ExpressStormpath.init(app,{\n  web: {\n    produces: ['application/json'],\n    spa: {\n      enabled: true,\n      view: app.get('appPath')\n    }\n  }\n}));\n\n\nrequire('./routes')(app);\n\napp.on('stormpath.ready',function() {\n  console.log('Stormpath Ready');\n});\n\n// Start server\nserver.listen(config.port, config.ip, function () {\n  console.log('Express server listening on %d, in %s mode', config.port, app.get('env'));\n});\n\n\n// Expose app\nexports = module.exports = app;\n\n"
  },
  {
    "path": "example/ng-route-app/server/components/errors/index.js",
    "content": "/**\n * Error responses\n */\n\n'use strict';\n\nmodule.exports[404] = function pageNotFound(req, res) {\n  var viewFilePath = '404';\n  var statusCode = 404;\n  var result = {\n    status: statusCode\n  };\n\n  res.status(result.status);\n  res.render(viewFilePath, function (err) {\n    if (err) { return res.json(result, result.status); }\n\n    res.render(viewFilePath);\n  });\n};\n"
  },
  {
    "path": "example/ng-route-app/server/config/environment/development.js",
    "content": "'use strict';\n\n// Development specific configuration\n// ==================================\nmodule.exports = {\n  // MongoDB connection options\n  mongo: {\n    uri: 'mongodb://localhost/dashboard-dev'\n  },\n\n  seedDB: true\n};\n"
  },
  {
    "path": "example/ng-route-app/server/config/environment/index.js",
    "content": "'use strict';\n\nvar path = require('path');\nvar _ = require('lodash');\n\nfunction requiredProcessEnv(name) {\n  if(!process.env[name]) {\n    throw new Error('You must set the ' + name + ' environment variable');\n  }\n  return process.env[name];\n}\n\n// All configurations will extend these options\n// ============================================\nvar all = {\n  env: process.env.NODE_ENV,\n\n  // Root path of server\n  root: path.normalize(__dirname + '/../../..'),\n\n  // Server port\n  port: process.env.PORT || 9000,\n\n  // Should we populate the DB with sample data?\n  seedDB: false,\n\n  // Secret for session, you will want to change this and make it an environment variable\n  secrets: {\n    session: 'dashboard-secret'\n  },\n\n  // List of user roles\n  userRoles: ['guest', 'user', 'admin'],\n\n  // MongoDB connection options\n  mongo: {\n    options: {\n      db: {\n        safe: true\n      }\n    }\n  },\n\n};\n\n// Export the config object based on the NODE_ENV\n// ==============================================\nmodule.exports = _.merge(\n  all,\n  require('./' + process.env.NODE_ENV + '.js') || {});"
  },
  {
    "path": "example/ng-route-app/server/config/environment/production.js",
    "content": "'use strict';\n\n// Production specific configuration\n// =================================\nmodule.exports = {\n  // Server IP\n  ip:       process.env.OPENSHIFT_NODEJS_IP ||\n            process.env.IP ||\n            undefined,\n\n  // Server port\n  port:     process.env.OPENSHIFT_NODEJS_PORT ||\n            process.env.PORT ||\n            8080,\n\n  // MongoDB connection options\n  mongo: {\n    uri:    process.env.MONGOLAB_URI ||\n            process.env.MONGOHQ_URL ||\n            process.env.OPENSHIFT_MONGODB_DB_URL+process.env.OPENSHIFT_APP_NAME ||\n            'mongodb://localhost/dashboard'\n  }\n};"
  },
  {
    "path": "example/ng-route-app/server/config/environment/test.js",
    "content": "'use strict';\n\n// Test specific configuration\n// ===========================\nmodule.exports = {\n  // MongoDB connection options\n  mongo: {\n    uri: 'mongodb://localhost/dashboard-test'\n  }\n};"
  },
  {
    "path": "example/ng-route-app/server/config/express.js",
    "content": "/**\n * Express configuration\n */\n\n'use strict';\n\nvar express = require('express');\nvar favicon = require('serve-favicon');\nvar morgan = require('morgan');\nvar compression = require('compression');\nvar bodyParser = require('body-parser');\nvar methodOverride = require('method-override');\nvar cookieParser = require('cookie-parser');\nvar errorHandler = require('errorhandler');\nvar path = require('path');\nvar config = require('./environment');\n\nmodule.exports = function(app) {\n  var env = app.get('env');\n\n  app.set('views', config.root + '/server/views');\n  app.engine('html', require('ejs').renderFile);\n  app.set('view engine', 'html');\n  app.set('trust proxy', true);\n  app.use(compression());\n  app.use(methodOverride());\n  app.use(cookieParser());\n\n  if ('production' === env) {\n    app.use(favicon(path.join(config.root, 'public', 'favicon.ico')));\n    app.use(express.static(path.join(config.root, 'public')));\n    app.set('appPath', path.join(config.root, 'public', 'index.html'));\n    app.use(morgan('dev'));\n  }\n\n  if ('development' === env || 'test' === env) {\n    app.use(require('connect-livereload')());\n    app.use(express.static(path.join(config.root, '.tmp')));\n    app.use(express.static(path.join(config.root, 'client')));\n    app.set('appPath', path.join(config.root, 'client', 'index.html'));\n    app.use(morgan('dev'));\n    app.use(errorHandler()); // Error handler - has to be last\n  }\n};\n\n"
  },
  {
    "path": "example/ng-route-app/server/config/local.env.sample.js",
    "content": "'use strict';\n\n// Use local.env.js for environment variables that grunt will set when the server starts locally.\n// Use for your api keys, secrets, etc. This file should not be tracked by git.\n//\n// You will need to set these on the server you deploy to.\n\nmodule.exports = {\n  DOMAIN:           'http://localhost:9000',\n  SESSION_SECRET:   'dashboard-secret',\n\n  // Control debug level for modules using visionmedia/debug\n  DEBUG: ''\n};\n"
  },
  {
    "path": "example/ng-route-app/server/routes.js",
    "content": "/**\n * Main application routes\n */\n\n'use strict';\n\nvar errors = require('./components/errors');\nvar ExpressStormpath = require('express-stormpath');\n\nmodule.exports = function(app) {\n\n  // Insert routes below\n  app.use('/api/things', ExpressStormpath.loginRequired, require('./api/thing'));\n\n  // All undefined asset or api routes should return a 404\n  app.route('/:url(api|auth|components|app|bower_components|assets)/*')\n   .get(errors[404]);\n\n  // All other routes should redirect to the index.html\n  app.route('/*')\n    .get(function(req, res) {\n      res.sendFile(app.get('appPath'));\n    });\n};\n"
  },
  {
    "path": "example/ng-route-app/server/views/404.html",
    "content": "\n\n  \n    \n    Page Not Found :(\n    \n  \n  \n    
\n      
Not found :(
\n      
Sorry, but the page you were trying to view does not exist.
\n      
It looks like this was the result of either:
\n      
    \n        
  • a mistyped address
    • \n        
  • an out-of-date link
    • \n      
\n      \n      \n    
\n  \n\n"
  },
  {
    "path": "index.js",
    "content": "var name = require('./dist/stormpath-sdk-angularjs');\nrequire('./dist/stormpath-sdk-angularjs.tpls');\n\nmodule.exports = name;\n"
  },
  {
    "path": "ngdoc_assets/example/index.ngdoc",
    "content": "@ngdoc overview\n@name Example\n@description\n\n\n## Example\n\nWe have a complete sample application which shows you how to create an\nAngularJS application with an Express backend.  Please see the example\nfolder in the repo:\n\nhttps://github.com/stormpath/stormpath-sdk-angularjs/tree/master/example\n\n\n"
  },
  {
    "path": "ngdoc_assets/index.ngdoc",
    "content": "@ngdoc overview\n@name API Documentation\n@description\n\n# Stormpath Angular JS SDK Ng Docs\n\n[![Bower Version](https://img.shields.io/bower/v/stormpath-sdk-angularjs.svg?style=flat)](https://bower.io)\n\n## Welcome!\n\nThis is the API documentation for the Stormpath AngularJS SDK.  Here you\nwill find the detailed description of all the compontents that this\nmodule provides to your application.  With this SDK you can:\n\n* Authenticate users\n* Get the current user object\n* Know if the user is logged in\n* Use [`ui-router`][ui-router] to control access to your view states (authentication and authorization)\n\n\n## Quickstart & Getting Started\n\nIf you are just getting started with this library, we suggest the [README](https://github.com/stormpath/stormpath-sdk-angularjs) on Github."
  },
  {
    "path": "ngdoc_assets/nav.html",
    "content": ""
  },
  {
    "path": "ngdoc_assets/server/index.ngdoc",
    "content": "@ngdoc overview\n@name Server Integration Guide\n@description\n\n# Server Integration Guide\n\nFront-end applications can not communicate with the Stormpath API directly,\nand thus need an integrated back-end.  This page has information about\nhow to integrate Stormpath into your back-end.\n\n## With Express.js\n\nIf you are using Express.js as your server, you can add our\n[Stormpath Express Module][] to your server.\n\n\n\n## With other environments\n\nIf you are using another type of server you will have to manually setup some\nserver endpoints to support this module.  Please visit\n[Stormpath Docs](https://docs.stormpath.com) to find the language SDK of your\nserver environment.\n\nUsing the SDK of your choice, you need to implement the endpoints in the\nfollowing table.  The expected URLs can be changed by modifying the URLs\nin the {@link api/stormpath.STORMPATH_CONFIG:STORMPATH_CONFIG STORMPATH_CONFIG}\n\n\n**Endpoints to implement:**\n\n\n  \n    \n    \n    \n  \n\n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n  \n    \n    \n    \n  \n\n
Server Endpoint DescriptionExpected EndpointStormpath SDK API to use
\n      
**Current User Endpoint**
\n      
Returns a JSON object of the currently logged-in Stormpath account
\n    		\n      `/me`\n      
\n    		\n      *N/A*\n    
\n      
**Email Verification**
\n      
Used to verify and consume email verification tokens
\n    		\n      `/verify`\n    \n      [Account Verification](http://docs.stormpath.com/rest/product-guide/#verify-an-email-address)\n    
\n      
**Forgot Password**
\n      
Used to create password reset tokens, triggering a password reset email
\n    		\n      `/forgot`\n    \n      [Password Reset](http://docs.stormpath.com/rest/product-guide/#reset-an-accounts-password)\n    
\n      
**Login**
\n      
\n        Used to authenticate a user and generate an access token which is stored in a secure cookie.\n        Also used to get a view model of how to render the login form. Read more about the view model [here](https://docs.stormpath.com/nodejs/express/latest/login.html#json-login-api).\n      
\n    		\n      `/login`\n    \n      [Login Attempts](http://docs.stormpath.com/rest/product-guide/#authenticate-an-account)\n    
\n      
**Logout**
\n      
Used to remove any session-related cookies, such as the access token.
\n    		\n      `/logout`\n    \n      *N/A*\n    
\n      
**Password Reset**
\n      
Used to complete the password reset workflow, with an sp token that\n      was issued by the forgot password flow
\n    		\n      `/change`\n    \n      [Password Reset](http://docs.stormpath.com/rest/product-guide/#reset-an-accounts-password)\n    
\n      
**User Registration**
\n      
\n        Used to create new Stormpath accounts.\n        Also used to get a view model of how to render the registration form. Read more about the view model [here](https://docs.stormpath.com/nodejs/express/latest/registration.html#json-registration-api).\n      
\n    		\n      `/register`\n    \n      [Account Creation](http://docs.stormpath.com/rest/product-guide/#create-an-account)\n    
\n\n## How Sessions Work\n\nThe Angular SDK is agnostic to the authentication strategy used, it assumes that\nyou are using a cookie-based system for authenticating the browser as a client.\nHowever we do suggest that you use JWT access tokens.  You can read more in our\nblog post, [Token Based Authentication for Single Page\nApps](https://stormpath.com/blog/token-auth-spa). Our [Stormpath Express Module]\ndoes this for you.\n\nMost of our SDKs have methods for issuing JWTs, and can be used to implement\nthis strategy in your server.\n\nIf you do not want to use JWT Access Tokens, you need to ensure the following on\nyour server:\n* The {@link api/stormpath.STORMPATH_CONFIG:STORMPATH_CONFIG#properties_authentication_endpoint AUTHENTICATION_ENDPOINT} should set a cookie that identifies a session for the\nuser\n* Your protected API endpoints should respond with `401 Unauthorized` if the\nuser does not have a valid session\n\n## How Our Token Authentication Works\n\n### Token Creation and Storage\n\nWhen a user logs in, the server will issue an access token in the form of a\nJWT.  This access token will be stored in an HTTP-only cookie and will also\nset the Secure flag (so that it is only sent over HTTPS) in your production\nenvironment.\n\nA secondary refresh token will also be stored in a secure cookie, and this token\nis used to get more access tokens as they expire.  The refresh tokens can\nbe revoked, using the Stormpath REST API.\n\nYou may have heard that cookies are insecure, but that is a vague statement.\nThe truth is that HTTP-only cookies, especially Secure-only cookies, are the\nmost secure place to store authentication information because the JavaScript\nenvironment cannot access them.  This is the best way to protect yourself\nfrom XSS attacks.\n\n### Token Expiration and Revocation\n\nAccess tokens are valid until they expire.  You should set an expiration (TTL) that\nmakes sense for your application.  If you are using Stormpath to manage your access\ntokens, you can modify the TTL by modifying the OAuth Policy of the Stormpath Application\nthat you are using for your Angular Application.\n\nFor more information, please see [Using Stormpath for OAuth 2.0 and Access/Refresh Token Management][]\n\n[docs.stormpath.com]: https://docs.stormpath.com\n[ui-router]: https://github.com/angular-ui/ui-router\n[stormpath-sdk-node]: https://github.com/stormpath/stormpath-sdk-node \"Stormpath Node SDK\"\n[Stormpath Express Module]: https://github.com/stormpath/express-stormpath\n\n[Using Stormpath for OAuth 2.0 and Access/Refresh Token Management]: http://docs.stormpath.com/guides/token-management/\n"
  },
  {
    "path": "ngdoc_assets/stormpath-angular.css",
    "content": ""
  },
  {
    "path": "package.json",
    "content": "{\n  \"name\": \"stormpath-sdk-angularjs\",\n  \"version\": \"2.0.1\",\n  \"description\": \"\",\n  \"main\": \"index.js\",\n  \"scripts\": {\n    \"test\": \"echo \\\"Error: no test specified\\\" && exit 1\"\n  },\n  \"author\": \"Stormpath, Inc.\",\n  \"license\": \"Apache-2.0\",\n  \"homepage\": \"https://github.com/stormpath/stormpath-sdk-angularjs\",\n  \"repository\": {\n    \"type\": \"git\",\n    \"url\": \"https://github.com/stormpath/stormpath-sdk-angularjs.git\"\n  },\n  \"devDependencies\": {\n    \"grunt-contrib-concat\": \"^0.5.1\",\n    \"grunt\": \"^0.4.5\",\n    \"load-grunt-tasks\": \"^3.4.0\",\n    \"grunt-contrib-uglify\": \"^0.11.0\",\n    \"grunt-contrib-jshint\": \"^0.11.3\",\n    \"grunt-contrib-clean\": \"^0.7.0\",\n    \"grunt-ngdocs\": \"^0.2.6\",\n    \"grunt-contrib-watch\": \"^0.6.1\",\n    \"connect-livereload\": \"^0.5.4\",\n    \"open\": \"0.0.5\",\n    \"grunt-open\": \"^0.2.3\",\n    \"grunt-contrib-copy\": \"^0.8.2\",\n    \"grunt-html2js\": \"^0.3.5\",\n    \"grunt-contrib-connect\": \"^0.11.2\",\n    \"grunt-shell\": \"^1.1.2\",\n    \"grunt-replace\": \"^0.11.0\"\n  },\n  \"dependencies\": {}\n}\n"
  },
  {
    "path": "protractor.conf.js",
    "content": "'use strict';\n\nexports.config = {\n  directConnect: true,\n  specs: ['test/protractor/*.js']\n};\n"
  },
  {
    "path": "src/module.js",
    "content": "'use strict';\n\n/**\n * @ngdoc object\n *\n * @name stormpath.SpStateConfig:SpStateConfig\n *\n * @property {boolean} authenticate\n *\n * If `true`, the user must be authenticated in order to view this state.\n * If the user is not authenticated, they will\n * be redirected to the `login` state.  After they login, they will be redirected to\n * the state that was originally requested.\n *\n * @property {object} authorize\n *\n * An object that defines access control rules.  Currently, it supports a group-based\n * check.  See the example below.\n *\n * @property {boolean} waitForUser\n *\n * If `true`, delay the state transition until we know\n * if the user is authenticated or not.  This is useful for situations where\n * you want everyone to see this state, but the state may look different\n * depending on the user's authentication state.\n *\n *\n * @description\n *\n * The Stormpath State Config is an object that you can define on a UI Router\n * state.  Use this configuration to define access control for your routes, as\n * defined by UI Router.\n *\n * You will need to be using the UI Router module, and you need\n * to enable the integration by calling\n * {@link stormpath.$stormpath#methods_uiRouter $stormpath.uiRouter()} in your\n * application's config block.\n *\n * If you're using Angular's built-in `$routeProvider` instead of UI Router, please\n * use {@link stormpath.$stormpath#methods_ngRouter $stormpath.ngRouter()} instead.\n *\n * **NOTE:** Do not define this configuration on a abstract state, it must go on\n * the child state.  However, the controller of the abstract state will be\n * initialized AFTER any configuration rules of the child state have been met.\n *\n * # Support for `data.authorities`\n *\n * If you have used [JHipster](https://jhipster.github.io/) to generate your\n * project, you are likely using the `data.authorities` property to define\n * authorization for your views. This library will look for the `data.authorities`\n * property and apply the same logic as our own `sp.authorize` property.\n *\n * @example\n *\n * 
\n *\n * angular.module('myApp')\n *   .config(function ($stateProvider) {\n *\n *     // Wait until we know if the user is logged in before showing the homepage\n *     $stateProvider\n *       .state('main', {\n *         url: '/',\n *         sp: {\n *           waitForUser: true\n *         }\n *       });\n *\n *     // Require a user to be authenticated in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/secrets',\n *         controller: 'SecretsCtrl',\n *         sp: {\n *           authenticate: true\n *         }\n *       });\n *\n *     // Require a user to be in the admins group in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/admin',\n *         controller: 'AdminCtrl',\n *         sp: {\n *           authorize: {\n *             group: 'admins'\n *           }\n *         }\n *       });\n * });\n * 
\n *\n * If using JHipster generated code:\n *\n *  
\n *     // Require a user to be in the admins group in order to see this state\n *     $stateProvider\n *       .state('secrets', {\n *         url: '/admin',\n *         controller: 'AdminCtrl',\n *         data: {\n *           authorities: ['admins']\n *         }\n *       });\n *  
\n */\n\n /**\n * @ngdoc object\n *\n * @name stormpath.SpRouteConfig:SpRouteConfig\n *\n * @property {boolean} authenticate\n *\n * If `true`, the user must be authenticated in order to view this route.\n * If the user is not authenticated, they will\n * be redirected to the `login` route.  After they login, they will be redirected to\n * the route that was originally requested.\n *\n * @property {object} authorize\n *\n * An object that defines access control rules.  Currently, it supports a group-based\n * check.  See the example below.\n *\n * @property {boolean} waitForUser\n *\n * If `true`, delay the route transition until we know\n * if the user is authenticated or not.  This is useful for situations where\n * you want everyone to see this route, but the route may look different\n * depending on the user's authentication route.\n *\n *\n * @description\n *\n * The Stormpath Route Config is an object that you can define on a route.\n * Use this configuration to define access control for your routes, as\n * defined by the ngRoute module.\n *\n * You will need to be using the ngRoute module, and you need\n * to enable the integration by calling\n * {@link stormpath.$stormpath#methods_ngRouter $stormpath.ngRouter()} in your\n * application's config block.\n *\n * If you're using UI Router instead of Angular's built-in `$routeProvider`, please\n * use {@link stormpath.$stormpath#methods_uiRouter $stormpath.uiRouter()} instead.\n *\n * @example\n *\n * 
\n *\n * angular.module('myApp')\n *   .config(function ($routeProvider) {\n *     // Wait until we know if the user is logged in before showing the homepage\n *     $routeProvider\n *       .when('/main', {\n*         controller: 'MainCtrl',\n *         sp: {\n *           waitForUser: true\n *         }\n *       });\n *\n *     // Require a user to be authenticated in order to see this route\n *     $routeProvider\n *       .when('/secrets', {\n *         controller: 'SecretsCtrl',\n *         sp: {\n *           authenticate: true\n *         }\n *       });\n *\n *     // Require a user to be in the admins group in order to see this route\n *     $routeProvider\n *       .when('/secrets', {\n *         controller: 'AdminCtrl',\n *         sp: {\n *           authorize: {\n *             group: 'admins'\n *           }\n *         }\n *       });\n * });\n * 
\n */\nangular.module('stormpath', [\n  'stormpath.CONFIG',\n  'stormpath.utils',\n  'stormpath.auth',\n  'stormpath.userService',\n  'stormpath.viewModelService',\n  'stormpath.socialLogin',\n  'stormpath.oauth'\n])\n\n.factory('StormpathAgentInterceptor',['$isCurrentDomain', '$spHeaders', function($isCurrentDomain, $spHeaders){\n  function StormpathAgentInterceptor(){\n\n  }\n  /**\n   * Adds the X-Stormpath-Agent header, if the requested URL is on the same\n   * domain as the current document.\n   *\n   * @param  {Object} config $http config object.\n   * @return {Object} config $http config object.\n   */\n  StormpathAgentInterceptor.prototype.request = function(config){\n\n    var uriExpressions = [\n      '/change$',\n      '/forgot$',\n      '/login$',\n      '/logout$',\n      '/me$',\n      '/oauth/token$',\n      '/oauth/token$',\n      '/register$',\n      '/revoke$',\n      '/verify$'\n    ];\n\n    if (uriExpressions.some(function(expr){\n      return new RegExp(expr).test(config.url);\n    })) {\n      config.headers = angular.extend(config.headers, $spHeaders);\n    }\n\n    return config;\n  };\n\n  return new StormpathAgentInterceptor();\n}])\n.config(['$httpProvider',function($httpProvider){\n  $httpProvider.interceptors.push('StormpathAgentInterceptor');\n}])\n.provider('$stormpath', [function $stormpathProvider(){\n  /**\n   * @ngdoc object\n   *\n   * @name stormpath.$stormpath\n   *\n   * @description\n   *\n   * This service allows you to enable application-wide features of the library.\n   *\n   * At the moment the only feature is the UI Router integration, which is\n   * documented below.\n   */\n\n  this.$get = [\n    '$user', '$injector', 'STORMPATH_CONFIG', '$rootScope', '$location',\n    function stormpathServiceFactory($user, $injector, STORMPATH_CONFIG, $rootScope, $location) {\n      var $state;\n      var $route;\n\n      function StormpathService(){\n        var encoder = new UrlEncodedFormParser();\n        this.encodeUrlForm = encoder.encode.bind(encoder);\n\n        if ($injector.has('$state')) {\n          $state = $injector.get('$state');\n        }\n\n        if ($injector.has('$route')) {\n          $route = $injector.get('$route');\n        }\n\n        return this;\n      }\n      function stateChangeUnauthenticatedEvent(toState, toParams){\n        /**\n         * @ngdoc event\n         *\n         * @name stormpath.$stormpath#$stateChangeUnauthenticated\n         *\n         * @eventOf stormpath.$stormpath\n         *\n         * @eventType broadcast on root scope\n         *\n         * @param {Object} event\n         *\n         * Angular event object.\n         *\n         * @param {Object} toState The state that the user attempted to access.\n         *\n         * @param {Object} toParams The state params of the state that the user\n         * attempted to access.\n         *\n         * @description\n         *\n         * This event is broadcast when a UI state change is prevented,\n         * because the user is not logged in.\n         *\n         * Use this event if you want to implement your own strategy for\n         * presenting the user with a login form.\n         *\n         * To receive this event, you must be using the UI Router integration.\n         *\n         * @example\n         *\n         * 
\n         *   $rootScope.$on('$stateChangeUnauthenticated',function(e,toState,toParams){\n         *     // Your custom logic for deciding how the user should login, and\n         *     // if you want to redirect them to the desired state afterwards\n         *   });\n         * 
\n         */\n        $rootScope.$broadcast(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHENTICATED,toState,toParams);\n      }\n      function stateChangeUnauthorizedEvent(toState,toParams){\n        /**\n         * @ngdoc event\n         *\n         * @name stormpath.$stormpath#$stateChangeUnauthorized\n         *\n         * @eventOf stormpath.$stormpath\n         *\n         * @eventType broadcast on root scope\n         *\n         * @param {Object} event\n         *\n         * Angular event object.\n         *\n         * @param {Object} toState The state that the user attempted to access.\n         *\n         * @param {Object} toParams The state params of the state that the user\n         * attempted to access.\n         *\n         * @description\n         *\n         * This event is broadcast when a UI state change is prevented,\n         * because the user is not authorized by the rules defined in the\n         * {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configuration}\n         * for the requested state.\n         *\n         * Use this event if you want to implement your own strategy for telling\n         * the user that they are forbidden from viewing that state.\n         *\n         * To receive this event, you must be using the UI Router integration.\n         *\n         * @example\n         *\n         * 
\n         *   $rootScope.$on('$stateChangeUnauthorized',function(e,toState,toParams){\n         *     // Your custom logic for deciding how the user should be\n         *     // notified that they are forbidden from this state\n         *   });\n         * 
\n         */\n        $rootScope.$broadcast(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHORIZED,toState,toParams);\n      }\n      StormpathService.prototype.stateChangeInterceptor = function stateChangeInterceptor(config) {\n        $rootScope.$on('$stateChangeStart', function(e,toState,toParams){\n          var sp = toState.sp || {}; // Grab the sp config for this state\n          var authorities = (toState.data && toState.data.authorities) ? toState.data.authorities : undefined;\n\n          if((sp.authenticate || sp.authorize || (authorities && authorities.length)) && (!$user.currentUser)){\n            e.preventDefault();\n            $user.get().then(function(){\n              // The user is authenticated, continue to the requested state\n              if(sp.authorize || (authorities && authorities.length)){\n                if(authorizeStateConfig(sp, authorities)){\n                  $state.go(toState.name,toParams);\n                }else{\n                  stateChangeUnauthorizedEvent(toState,toParams);\n                }\n              }else{\n                $state.go(toState.name,toParams);\n              }\n            },function(){\n              // The user is not authenticated, emit the necessary event\n              stateChangeUnauthenticatedEvent(toState,toParams);\n            });\n          }else if(sp.waitForUser && ($user.currentUser===null)){\n            e.preventDefault();\n            $user.get().finally(function(){\n              $state.go(toState.name,toParams);\n            });\n          }\n          else if($user.currentUser && (sp.authorize || (authorities && authorities.length))){\n            if(!authorizeStateConfig(sp, authorities)){\n              e.preventDefault();\n              stateChangeUnauthorizedEvent(toState,toParams);\n            }\n          }else if(toState.name===config.loginState){\n            /*\n              If the user is already logged in, we will redirect\n              away from the login page and send the user to the\n              post login state.\n             */\n            if($user.currentUser!==false){\n              e.preventDefault();\n              $user.get().finally(function(){\n                if($user.currentUser && $user.currentUser.href){\n                  $state.go(config.defaultPostLoginState);\n                } else {\n                  $state.go(toState.name,toParams);\n                }\n              });\n            }\n          }\n        });\n      };\n\n      function authorizeStateConfig(spStateConfig, authorities){\n        var sp = spStateConfig;\n        if(sp && sp.authorize && sp.authorize.group) {\n          return $user.currentUser.inGroup(sp.authorize.group);\n        }else if(authorities){\n          // add support for reading from JHipster's data: { authorities: ['ROLE_ADMIN'] }\n          // https://github.com/stormpath/stormpath-sdk-angularjs/issues/190\n          var roles = authorities.filter(function(authority){\n            return $user.currentUser.inGroup(authority);\n          });\n          return roles.length > 0;\n        }else{\n          console.error('Unknown authorize configuration for spStateConfig',spStateConfig);\n          return false;\n        }\n      }\n\n      function routeChangeUnauthenticatedEvent(toRoute) {\n        /**\n         * @ngdoc event\n         *\n         * @name stormpath.$stormpath#$routeChangeUnauthenticated\n         *\n         * @eventOf stormpath.$stormpath\n         *\n         * @eventType broadcast on root scope\n         *\n         * @param {Object} event\n         *\n         * Angular event object.\n         *\n         * @param {Object} toRoute The route that the user attempted to access.\n         *\n         * @description\n         *\n         * This event is broadcast when a route change is prevented,\n         * because the user is not logged in.\n         *\n         * Use this event if you want to implement your own strategy for\n         * presenting the user with a login form.\n         *\n         * To receive this event, you must be using the ngRoute module.\n         *\n         * @example\n         *\n         * 
\n         *   $rootScope.$on('$routeChangeUnauthenticated', function(event, toRoute) {\n         *     // Your custom logic for deciding how the user should login, and\n         *     // if you want to redirect them to the desired route afterwards\n         *   });\n         * 
\n         */\n        $rootScope.$broadcast(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHENTICATED, toRoute);\n      }\n\n      function routeChangeUnauthorizedEvent(toRoute) {\n        /**\n         * @ngdoc event\n         *\n         * @name stormpath.$stormpath#$routeChangeUnauthorized\n         *\n         * @eventOf stormpath.$stormpath\n         *\n         * @eventType broadcast on root scope\n         *\n         * @param {Object} event\n         *\n         * Angular event object.\n         *\n         * @param {Object} toRoute The route that the user attempted to access.\n         *\n         * @description\n         *\n         * This event is broadcast when a route change is prevented,\n         * because the user is not authorized by the rules defined in the\n         * {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configuration}\n         * for the requested route.\n         *\n         * Use this event if you want to implement your own strategy for telling\n         * the user that they are forbidden from viewing that route.\n         *\n         * To receive this event, you must be using the ngRoute module.\n         *\n         * @example\n         *\n         * 
\n         *   $rootScope.$on('$routeChangeUnauthorized', function(event, toRoute) {\n         *     // Your custom logic for deciding how the user should be\n         *     // notified that they are forbidden from this route\n         *   });\n         * 
\n         */\n        $rootScope.$broadcast(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHORIZED, toRoute);\n      }\n\n      StormpathService.prototype.routeChangeInterceptor = function routeChangeInterceptor(config) {\n        function goToRoute(route) {\n          setTimeout(function() {\n            if (route.$$route.originalPath === $location.path()) {\n              $route.reload();\n            } else {\n              $location.path(route);\n            }\n          });\n        }\n\n        $rootScope.$on('$routeChangeStart', function(event, toRoute) {\n          if (!toRoute.$$route) {\n            return;\n          }\n\n          var sp = toRoute.$$route.sp || {}; // Grab the sp config for this route\n\n          if ((sp.authenticate || sp.authorize) && !$user.currentUser) {\n            event.preventDefault();\n\n            $user.get().then(function() {\n              // The user is authenticated, continue to the requested route\n              if (sp.authorize) {\n                if (authorizeStateConfig(sp)) {\n                  goToRoute(toRoute);\n                } else {\n                  stateChangeUnauthorizedEvent(toRoute);\n                }\n              } else {\n                goToRoute(toRoute);\n              }\n            }, function() {\n              // The user is not authenticated, emit the necessary event\n              routeChangeUnauthenticatedEvent(toRoute);\n            });\n          } else if (sp.waitForUser && $user.currentUser === null) {\n            event.preventDefault();\n\n            $user.get().finally(function() {\n              goToRoute(toRoute);\n            });\n          } else if ($user.currentUser && sp.authorize) {\n            if (!authorizeStateConfig(sp)) {\n              event.preventDefault();\n              routeChangeUnauthorizedEvent(toRoute);\n            }\n          } else if (toRoute.$$route.originalPath === config.loginRoute) {\n            /*\n              If the user is already logged in, we will redirect\n              away from the login page and send the user to the\n              post login route.\n             */\n            if ($user.currentUser && $user.currentUser.href) {\n              event.preventDefault();\n              goToRoute(config.defaultPostLoginRoute);\n            }\n          }\n        });\n      };\n\n      function authorizeRouteConfig(spRouteConfig) {\n        var sp = spRouteConfig;\n\n        if (sp && sp.authorize && sp.authorize.group) {\n          return $user.currentUser.inGroup(sp.authorize.group);\n        }\n\n        console.error('Unknown authorize configuration for spRouteConfig', sp);\n        return false;\n      }\n\n      /**\n       * @ngdoc function\n       *\n       * @name stormpath#uiRouter\n       *\n       * @methodOf stormpath.$stormpath\n       *\n       * @param {object} config\n       *\n       * * **`autoRedirect`** - Defaults to true.  After the user logs in at\n       * the state defined by `loginState`, they will be redirected back to the\n       * state that was originally requested.\n       *\n       * * **`defaultPostLoginState`**  - Where the user should be sent, after login,\n       * if they have visited the login page directly.  If you do not define a value,\n       * nothing will happen at the login state.  You can alternatively use the\n       * {@link stormpath.authService.$auth#events_$authenticated $authenticated} event to know\n       * that login is successful.\n       *\n       * * **`forbiddenState`** - The UI state name that we should send the user\n       * to if they try to an access a view that they are not authorized to view.\n       * This happens in response to an `authorize` rule in one of your\n       * {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configurations}\n       *\n       * * **`loginState`** - The UI state name that we should send the user\n       * to if they need to login.  You'll probably use `login` for this value.\n       *\n       * @description\n       *\n       * Call this method to enable the integration with the UI Router module.\n       *\n       * When enabled, you can define {@link stormpath.SpStateConfig:SpStateConfig Stormpath State Configurations} on your UI states.\n       * This object allows you to define access control for the state.\n       *\n       * You can pass config options to this integration, the options control the\n       * default behavior around \"need to login\" and \"forbidden\" situations.\n       * If you wish to implement your own logic for these situations, simply\n       * omit the options and use the events (documented below) to know\n       * what is happening in the application.\n       *\n       * @example\n       *\n       * 
\n       * angular.module('myApp')\n       *   .run(function($stormpath){\n       *     $stormpath.uiRouter({\n       *       forbiddenState: 'forbidden',\n       *       defaultPostLoginState: 'main',\n       *       loginState: 'login'\n       *     });\n       *   });\n       * 
\n       */\n      StormpathService.prototype.uiRouter = function uiRouter(config){\n        var self = this;\n        config = typeof config === 'object' ? config : {};\n        this.stateChangeInterceptor(config);\n\n        if(config.loginState){\n          self.unauthenticatedWather = $rootScope.$on(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHENTICATED,function(e,toState,toParams){\n            self.postLogin = {\n              toState: toState,\n              toParams: toParams\n            };\n            $state.go(config.loginState);\n          });\n        }\n\n        $rootScope.$on(STORMPATH_CONFIG.AUTHENTICATION_SUCCESS_EVENT_NAME,function(){\n          if(self.postLogin && (config.autoRedirect !== false)){\n            $state.go(self.postLogin.toState,self.postLogin.toParams).then(function(){\n              self.postLogin = null;\n            });\n          }else if(config.defaultPostLoginState){\n            $state.go(config.defaultPostLoginState);\n          }\n        });\n\n        if(config.forbiddenState){\n          self.forbiddenWatcher = $rootScope.$on(STORMPATH_CONFIG.STATE_CHANGE_UNAUTHORIZED,function(){\n            $state.go(config.forbiddenState);\n          });\n        }\n      };\n\n      /**\n       * @ngdoc function\n       *\n       * @name stormpath#ngRouter\n       *\n       * @methodOf stormpath.$stormpath\n       *\n       * @param {object} config\n       *\n       * * **`autoRedirect`** - Defaults to true.  After the user logs in at\n       * the route defined by `loginRoute`, they will be redirected back to the\n       * route that was originally requested.\n       *\n       * * **`defaultPostLoginRoute`**  - Where the user should be sent, after login,\n       * if they have visited the login page directly.  If you do not define a value,\n       * nothing will happen at the login route.  You can alternatively use the\n       * {@link stormpath.authService.$auth#events_$authenticated $authenticated} event to know\n       * that login is successful.\n       *\n       * * **`forbiddenRoute`** - The route that we should send the user\n       * to if they try to an access a view that they are not authorized to view.\n       * This happens in response to an `authorize` rule in one of your\n       * {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configurations}\n       *\n       * * **`loginRoute`** - The route name that we should send the user\n       * to if they need to login.  You'll probably use `login` for this value.\n       *\n       * @description\n       *\n       * Call this method to enable the integration with the ngRoute module.\n       *\n       * When enabled, you can define {@link stormpath.SpRouteConfig:SpRouteConfig Stormpath Route Configurations} on your routes.\n       * This object allows you to define access control for the route.\n       *\n       * You can pass config options to this integration, the options control the\n       * default behavior around \"need to login\" and \"forbidden\" situations.\n       * If you wish to implement your own logic for these situations, simply\n       * omit the options and use the events (documented below) to know\n       * what is happening in the application.\n       *\n       * @example\n       *\n       * 
\n       * angular.module('myApp')\n       *   .run(function($stormpath){\n       *     $stormpath.ngRouter({\n       *       forbiddenRoute: '/forbidden',\n       *       defaultPostLoginRoute: '/home',\n       *       loginRoute: '/login'\n       *     });\n       *   });\n       * 
\n       */\n      StormpathService.prototype.ngRouter = function ngRouter(config) {\n        var self = this;\n\n        config = typeof config === 'object' ? config : {};\n\n        this.routeChangeInterceptor(config);\n\n        if (config.loginRoute) {\n          this.unauthenticatedWather = $rootScope.$on(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHENTICATED, function(event, toRoute) {\n            self.postLogin = {\n              toRoute: toRoute\n            };\n\n            $location.path(config.loginRoute);\n          });\n        }\n\n        $rootScope.$on(STORMPATH_CONFIG.AUTHENTICATION_SUCCESS_EVENT_NAME, function() {\n          if (self.postLogin && config.autoRedirect !== false) {\n            $location.path(self.postLogin.toRoute);\n            self.postLogin = null;\n          } else if (config.defaultPostLoginRoute) {\n            $location.path(config.defaultPostLoginRoute);\n          }\n        });\n\n        if (config.forbiddenRoute) {\n          this.forbiddenWatcher = $rootScope.$on(STORMPATH_CONFIG.ROUTE_CHANGE_UNAUTHORIZED, function() {\n            $location.path(config.forbiddenRoute);\n          });\n        }\n      };\n\n      StormpathService.prototype.regexAttrParser = function regexAttrParser(value){\n        var expr;\n        if(value instanceof RegExp){\n          expr = value;\n        }else if(value && /^\\/.+\\/[gim]?$/.test(value)){\n          expr = new RegExp(value.split('/')[1],value.split('/')[2]);\n        }else{\n          expr = value;\n        }\n        return expr;\n      };\n\n      function UrlEncodedFormParser(){\n\n        // Copy & modify from https://github.com/hapijs/qs/blob/master/lib/stringify.js\n\n        this.delimiter = '&';\n        this.arrayPrefixGenerators = {\n          brackets: function (prefix) {\n            return prefix + '[]';\n          },\n          indices: function (prefix, key) {\n            return prefix + '[' + key + ']';\n          },\n          repeat: function (prefix) {\n            return prefix;\n          }\n        };\n        return this;\n      }\n      UrlEncodedFormParser.prototype.stringify = function stringify(obj, prefix, generateArrayPrefix) {\n\n        if (obj instanceof Date) {\n          obj = obj.toISOString();\n        }\n        else if (obj === null) {\n          obj = '';\n        }\n\n        if (typeof obj === 'string' ||\n          typeof obj === 'number' ||\n          typeof obj === 'boolean') {\n\n          return [encodeURIComponent(prefix) + '=' + encodeURIComponent(obj)];\n        }\n\n        var values = [];\n\n        if (typeof obj === 'undefined') {\n          return values;\n        }\n\n        var objKeys = Object.keys(obj);\n        for (var i = 0, il = objKeys.length; i < il; ++i) {\n          var key = objKeys[i];\n          if (Array.isArray(obj)) {\n            values = values.concat(this.stringify(obj[key], generateArrayPrefix(prefix, key), generateArrayPrefix));\n          }\n          else {\n            values = values.concat(this.stringify(obj[key], prefix + '[' + key + ']', generateArrayPrefix));\n          }\n        }\n\n        return values;\n      };\n      UrlEncodedFormParser.prototype.encode = function encode(obj, options) {\n\n        options = options || {};\n        var delimiter = typeof options.delimiter === 'undefined' ? this.delimiter : options.delimiter;\n\n        var keys = [];\n\n        if (typeof obj !== 'object' ||\n          obj === null) {\n\n          return '';\n        }\n\n        var arrayFormat;\n        if (options.arrayFormat in this.arrayPrefixGenerators) {\n          arrayFormat = options.arrayFormat;\n        }\n        else if ('indices' in options) {\n          arrayFormat = options.indices ? 'indices' : 'repeat';\n        }\n        else {\n          arrayFormat = 'indices';\n        }\n\n        var generateArrayPrefix = this.arrayPrefixGenerators[arrayFormat];\n\n        var objKeys = Object.keys(obj);\n        for (var i = 0, il = objKeys.length; i < il; ++i) {\n          var key = objKeys[i];\n          keys = keys.concat(this.stringify(obj[key], key, generateArrayPrefix));\n        }\n\n        return keys.join(delimiter);\n      };\n\n      return new StormpathService();\n    }\n  ];\n}])\n.run(['$rootScope','$user','STORMPATH_CONFIG',function($rootScope,$user,STORMPATH_CONFIG){\n  $rootScope.user = $user.currentUser || null;\n  $user.get().finally(function(){\n    $rootScope.user = $user.currentUser;\n  });\n  $rootScope.$on(STORMPATH_CONFIG.GET_USER_EVENT,function(){\n    $rootScope.user = $user.currentUser;\n  });\n  $rootScope.$on(STORMPATH_CONFIG.SESSION_END_EVENT,function(){\n    $rootScope.user = $user.currentUser;\n  });\n  $rootScope.$on(STORMPATH_CONFIG.SESSION_END_ERROR_EVENT,function(event, error){\n    console.error('Logout error', error);\n  });\n  $rootScope.$on(STORMPATH_CONFIG.UNAUTHENTICATED_EVENT,function(event, error){\n    console.error('UNAUTHENTICATED_EVENT');\n  });\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifUser:ifUser\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is logged in.\n *\n * @example\n *\n * 
\n * 
\n *   
Hello, {{user.fullName}}
\n * 
\n * 
\n */\n.directive('ifUser',['$user','$rootScope',function($user,$rootScope){\n  return {\n    link: function(scope,element){\n      $rootScope.$watch('user',function(user){\n        if(user && user.href){\n          element.removeClass('ng-hide');\n        }else{\n          element.addClass('ng-hide');\n        }\n      });\n    }\n  };\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifNotUser:ifNotUser\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is NOT logged in.\n *\n * @example\n *\n * 
\n * 
\n *   
Hello, you need to login
\n * 
\n * 
\n */\n.directive('ifNotUser',['$user','$rootScope',function($user,$rootScope){\n  return {\n    link: function(scope,element){\n      $rootScope.$watch('user',function(user){\n        if(user && user.href){\n          element.addClass('ng-hide');\n        }else{\n          element.removeClass('ng-hide');\n        }\n      });\n    }\n  };\n}])\n\n/**\n * @ngdoc directive\n *\n * @name stormpath.ifUserInGroup:ifUserInGroup\n *\n * @description\n *\n * Use this directive to conditionally show an element if the user is logged in\n * and is a member of the group that is specified by the expression.\n *\n * The attribute value MUST be one of:\n *\n * * A string expression, surrounded by quotes\n * * A reference to a property on the $scope.  That property can be a string or\n * regular expression.\n *\n * **Note**: This feature depends on the data that is returned by the\n * {@link api/stormpath.STORMPATH_CONFIG:STORMPATH_CONFIG#properties_CURRENT_USER_URI CURRENT_USER_URI}.\n * Your server should expand the account's groups before returning the user.\n * If you are using [express-stormpath](https://github.com/stormpath/express-stormpath), simply use\n * [Automatic Expansion](http://docs.stormpath.com/nodejs/express/latest/user_data.html#automatic-expansion)\n *\n * # Using Regular Expressions\n *\n * If using a string expression as the attribute value, you can pass a regular\n * expression by wrapping it in the literal\n * syntax, e.g.\n *  * `'/admins/'` would match any group which has *admins* in the name\n *  * `'/admin$/'` would match any group were the name **ends with** *admin*\n *\n * If referencing a scope property, you should create the value as a RegExp type,\n * e.g.:\n *\n *  
\n *    $scope.matchGroup = new RegExp(/admins/);\n *  
\n *\n * All regular expressions are evaluated via\n * [RegExp.prototype.test](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/RegExp/test)\n *\n * @example\n *\n * 
\n *