EliteJournal 1.9.400

data/app/helpers/tags_helper.rb

@@ -0,0 +1,7 @@
+module TagsHelper
+  def show_tags(tags)
+    links = []
+    tags.each { |t| links << link_to(t.tag, :controller => 'journal', :action => 'tag', :params => {'tag' => t.tag})}
+    links.join(', ')
+  end
+end

data/app/helpers/user_helper.rb

@@ -0,0 +1,2 @@
+module UserHelper
+end

data/app/helpers/users_helper.rb

@@ -0,0 +1,2 @@
+module UsersHelper
+end

data/app/models/blogger_api.rb

@@ -0,0 +1,24 @@
+class BloggerApi
+	attr_reader :request
+	
+	def initialize(request)
+		@request = request
+	end
+	
+	def deletePost(appkey, postid, username, password, publish)
+		raise 'Invalid login' unless User.authenticate(username, password)
+		post = Post.find(postid)
+		post.destroy
+		true
+	end
+	
+	def getUsersBlogs(appkey, username, password)
+		raise 'Invalid login' unless user = User.authenticate(username, password)
+		[ {'ur' => server_url, 'blogid' => 1, 'blogName' => user.title }]
+	end
+	
+	private
+	def server_url
+		'http://' << request.host << request.port_string
+	end
+end

data/app/models/comment.rb

@@ -0,0 +1,18 @@
+class Comment < ActiveRecord::Base
+  belongs_to :post
+  has_many   :comments, :dependent => true
+
+  validates_presence_of :body
+
+  def before_save
+    self.posted_by = 'Anonymous' if self.posted_by.nil? or self.posted_by.empty?
+    self.subject   = '' if self.subject.nil?
+    
+    # Scrub up
+    self.posted_by = CGI.escapeElement self.posted_by, 'script'
+    self.subject   = CGI.escapeElement self.subject, 'script'
+    self.body      = CGI.escapeElement self.body, 'script'
+    
+    self.rendered  = RedCloth.new(self.body).to_html
+  end
+end

data/app/models/draft.rb

@@ -0,0 +1,12 @@
+class Draft < ActiveRecord::Base
+  belongs_to :category
+  belongs_to :user
+
+  validates_presence_of :user_id
+  
+  def before_save
+    self.subject = CGI.escapeElement(self.subject, 'script') if self.subject
+    self.tb_url  = CGI.escapeElement(self.tb_url, 'script')  if self.tb_url
+    self.body    = CGI.escapeElement(self.body, 'script')    if self.body
+  end
+end

data/app/models/face.rb

@@ -0,0 +1,24 @@
+class Face < Image
+  # A user's "face" should be no bigger than 75x75.  So scale it with RMagick, if available
+  begin 
+    require 'RMagick'
+    
+    def before_save
+      image = Magick::Image.read_inline(encode64(self.picture)).first
+      image.change_geometry!('75x75') { |c,r,i| i.resize!(c, r) }
+      self.height =  image.rows.to_s
+      self.width  =  image.columns.to_s
+      self.picture = image.to_blob
+    end
+  rescue LoadError
+    # If RMagick isn't available, well, just dump the whole thing into the DB without scaling.
+    # Too bad, so sorry.  Install RMagick or write us some pure Ruby to scale images :).
+    require_dependency 'image_size'
+    def before_save
+      image = ImageSize.new(self.picture)
+      ratio = 75.0 / image.get_width
+      self.width  = (image.get_width * ratio).to_i
+      self.height = (image.get_height * ratio).to_i
+    end
+  end
+end

data/app/models/feed_killer.rb

@@ -0,0 +1,17 @@
+class FeedKiller < ActiveRecord::Observer
+  observe Post
+  
+  def after_save(post)
+    @user = post.user.username
+  end
+  
+  def filter(controller)
+    # Invalidate the user's feed
+    controller.expire_page :controller => 'rss',  :action => @user
+    controller.expire_page :controller => 'atom', :action => @user
+    
+    # Invalidate the main feeds
+    controller.expire_page :controller => 'rss',  :action => 'index'
+    controller.expire_page :controller => 'atom', :action => 'feed'
+  end
+end

data/app/models/image.rb

@@ -0,0 +1,7 @@
+class Image < ActiveRecord::Base
+  validates_presence_of :user_id
+  validates_presence_of :picture
+  validates_presence_of :content_type
+  validates_presence_of :height
+  validates_presence_of :width
+end

data/app/models/link.rb

@@ -0,0 +1,10 @@
+class Link < ActiveRecord::Base
+  belongs_to :user
+
+  validates_presence_of :link_text, :link_url, :user_id
+  
+  def before_save
+    self.link_text = CGI.escapeElement self.link_text, 'script'
+    self.link_url  = CGI.escapeElement self.link_url,  'script'
+  end
+end

data/app/models/meta_weblog_api.rb

@@ -0,0 +1,82 @@
+class MetaWeblogApi
+	attr_reader :request
+	
+	def initialize(request)
+		@request = request
+	end
+	
+	def newPost(blogid, username, password, struct, publish)
+		raise 'Invalid login' unless user = User.authenticate(username, password)
+		
+		post = Post.new
+		post.user = user
+		post.body = struct['description']
+		post.subject = struct['title']
+		
+		if struct['categories']
+			struct['categories'].each do |c|
+				thetag = Tag.find_by_tag(c) || Tag.new('tag' => c)
+				thetag.increment('numitems')
+				thetag.save
+				post.tags << thetag
+			end
+		end
+				
+		post.save
+		post.id.to_s
+	end
+	
+	def deletePost(appkey, postid, username, password, publish)
+		raise 'Invalid login' unless User.authenticate(username, password)
+		Post.find(postid).destroy rescue nil
+		true
+	end
+	
+	def editPost(postid, username, password, struct, publish)
+		raise 'Invalid login' unless user = User.authenticate(username, password)
+		
+		post = Post.find(postid)
+		raise 'Not your post' unless post.user.id == user.id
+
+		post.body = struct['description']
+		post.subject = struct['title']
+		
+		 # Add tags Need Editing of Tags.
+		
+		post.save
+		true
+	end
+	
+	def getCategories(blogid, username, password)
+		raise 'Invalid login' unless User.authenticate(username, password)
+		Tag.find_all(nil, 'tag').collect { |t| t.tag }
+	end
+	
+	def getRecentPosts(blogid, username, password, numberOfPosts)
+		raise 'Invalid login' unless user = User.authenticate(username, password)
+		
+		user.posts.find_all(nil, 'created_at DESC', numberOfPosts).collect { |p| item_from(p) }
+	end
+	
+	def getPost(postid, username, password)
+		raise 'Invalid login' unless User.authenticate(username, password)
+		
+		item_from(Post.find(postid))
+	end
+	
+	private
+	def item_from(post, rendered=true)
+		item = {
+			'description' => post.body,
+			'title'       => post.subject,
+			'postid'      => post.id.to_s,
+			'url'         => "#{server_url}/view/#{post.id}",
+			'dateCreated' => post.created_at,
+			'categories'  => post.tags.collect { |t| t.tag }
+		}
+	end
+	
+	def server_url
+		'http://' << request.host << request.port_string
+	end
+end

data/app/models/ping.rb

@@ -0,0 +1,16 @@
+class Ping < ActiveRecord::Base
+  belongs_to :post
+
+  validates_presence_of :post_id, :url
+
+  def validate
+    errors.add('post_id', 'Must have a post id') if self.post_id == 0
+  end
+  
+  def before_save
+    self.title      = CGI.escapeElement(self.title, 'script')
+    self.excerpt    = CGI.escapeElement(self.excerpt, 'script')
+    self.url        = CGI.escapeElement(self.url, 'script')
+    self.blog_name  = CGI.escapeElement(self.blog_name, 'script')
+  end
+end

data/app/models/post.rb

@@ -0,0 +1,30 @@
+class Post < ActiveRecord::Base
+  SECTION_DELIMITER = '<!--ej:section-->'
+  
+  has_many                :comments, :dependent => true
+  has_many                :pings,    :dependent => true
+  belongs_to              :user
+  has_and_belongs_to_many :tags
+  
+  validates_presence_of :subject, :body, :user_id
+
+  # The updated_on time stamp is always updated to now.
+  def before_save
+    self.subject = CGI.escapeElement(self.subject, 'script')
+    self.body    = CGI.escapeElement(self.body, 'script')
+
+    @sections = self.body.split(/^----\s*$/).map! do |section|
+      RedCloth.new(section).to_html.gsub(/\t/, '')
+    end
+    self.rendered = @sections.join(SECTION_DELIMITER)
+  end
+
+  def updated?
+    self.created_at.strftime('%Y%m%d%H%M%S') != self.updated_at.strftime('%Y%m%d%H%M%S')
+  end
+
+  def sections
+    return @sections.dup if @sections
+    (@sections = self.rendered.split(SECTION_DELIMITER)).dup
+  end
+end

data/app/models/stylesheet.rb

@@ -0,0 +1,7 @@
+class Stylesheet < ActiveRecord::Base
+  belongs_to :user
+  
+  def before_save
+    self.data = CGI.escapeElement(self.data, 'script')
+  end
+end

data/app/models/tag.rb

@@ -0,0 +1,16 @@
+class Tag < ActiveRecord::Base
+  has_and_belongs_to_many :posts, :order => 'created_at DESC'
+  
+  validates_presence_of :tag
+  validates_uniqueness_of :tag
+  
+  def before_save
+    self.tag = CGI.escapeElement(self.tag, 'script')
+  end
+  
+  def related_tags
+    related_tags = []
+    self.posts.each { |p| p.tags.each { |tt| related_tags << tt } }
+    related_tags.uniq.select { |t| t.tag != self.tag }
+  end
+end

data/app/models/user.rb

@@ -0,0 +1,35 @@
+require 'digest/md5'
+
+class User < ActiveRecord::Base
+  has_many :posts,      :order => 'created_at DESC'
+  has_many :drafts,     :dependent => true
+  has_many :links,      :dependent => true
+  has_many :images,     :dependent => true
+  has_one  :stylesheet, :dependent => true
+  has_one  :face,       :dependent => true
+  
+  validates_presence_of     :username, :name
+  validates_uniqueness_of   :username
+  validates_confirmation_of :password
+  
+  def before_save
+    self.password = password.empty? ? self.class.find(id).password : Digest::MD5.hexdigest(password)
+  end
+  
+  class << self
+    def authenticate(username, password)
+      find_first(["username = ? AND password = ?", username, Digest::MD5.hexdigest(password)])
+    end
+    
+    def top_posters(n=5)
+      posters = find_by_sql("SELECT u.id FROM users u, posts p "    +
+                            "WHERE u.id = p.user_id GROUP BY u.id " +
+                            "ORDER BY COUNT(p.id) DESC LIMIT #{n}").flatten
+      posters.map { |p| find(p) }
+    end
+  end
+  
+  def last_post
+    self.posts.find_first(nil, 'created_at DESC') || self.posts.build('subject' => 'Example Post', 'rendered' => '<p>This is what a post looks like.</p>', 'created_at' => Time.now)
+  end
+end

data/app/views/account/info.rhtml

@@ -0,0 +1,30 @@
+<div id="accountinfo">
+  <form action="/account/info" method="post" enctype="multipart/form-data">
+    <input type="hidden" name="id" value="<%= @user.id %>" />
+    
+    <p><label for="user_username">Username</label><br />
+    <%= text_field 'user', 'username' %></p>
+
+    <p><label for="user_name">Name</label><br />
+    <%= text_field 'user', 'name' %></p>
+
+    <p><label for="user_title">Journal Title</label><br /><%= text_field('user', 'title') %></p>
+
+    <p><label for="user_subtitle">Journal Subtitle</label><br /><%= text_field('user', 'subtitle') %></p>
+
+    <p><label for="user_allows_comments">Allow Commenting?</label>&nbsp;&nbsp;<%= check_box('user', 'allows_comment', 'style' => 'width: auto;') %></p>
+    <p><label for="user_password">Password</label><br />
+    <input type="password" name="user[password]" id="user_password" size="30" /></p>
+
+    <p><label for="user_password_confirm">Confirm Password</label><br />
+    <input type="password" name="user[password_confirmation]" id="user_password_confirm" size="30" /></p>
+
+    <p style="float: left;"><label for="face_picture">Picture</label> 
+    <small>will be scaled to 75x75 pixels</small><br /> 
+    <input type="hidden" name="MAX_FILE_SIZE" value="<%= @app_config['uploads']['max_face_size'] %>" />
+    <input type="file" name="face[picture]" id="face_picture" /></p>
+    <p style="float: right;"><%= user_face(@user) %></p>
+    <p><input style="width: auto;" type="submit" value="Update Info" /></p>
+
+  <%= end_form_tag %>
+</div>

data/app/views/atom/feed.rxml

@@ -0,0 +1,15 @@
+xml.feed('version' => '0.3', 'xmlns' => 'http://purl.org/atom/ns#') do
+  xml.title @title
+  xml.link 'rel' => 'alternate', 'type' => 'text/html', 'href' => "#{@request.protocol}#{@request.host_with_port}#{@app_config['main']['app_base']}"
+  xml.modified @posts.first.updated_at.xmlschema if @posts.first
+  @posts.each do |p|
+    xml.entry do
+      xml.title p.subject
+      xml.link 'rel' => 'alternate', 'type' => 'text/html', 'href' => "http://#{@request.host}#{@app_config['main']['app_base']}view/#{p.id}"
+      xml.author { xml.name p.user.name }
+      xml.issued p.created_at.xmlschema
+      xml.modified p.updated_at.xmlschema
+      xml.content({'type' => 'text/html', 'mode' => 'escaped'}, p.rendered)
+    end
+  end
+end

data/app/views/auth/login.rhtml

@@ -0,0 +1,9 @@
+<div id="login">
+  <%= form_tag %>
+    <p><label for="username">Username</label><br />
+      <input type="text" id="username" name="username" /></p>
+    <p><label for="password">Password<br />
+      <input type="password" id="password" name="password" /></p>
+    <p><input type="submit" value="Log In" /></p>
+  <%= end_form_tag %>
+</div>

data/app/views/css/edit.rhtml

@@ -0,0 +1,18 @@
+<script type="text/javascript" src="/javascripts/livecss.js"></script>
+<h1>Editing stylesheet</h1>
+
+<div id="example_post">
+  <%= render_partial 'journal/post', @lastpost %>
+</div>
+
+<%= error_messages_for 'stylesheet' %>
+<%= form_tag :action => 'update' %>
+<p><label for="css">Enter Your CSS Below</label></p>
+<p><input type="checkbox" id="css_toggle" onclick="toggleLiveCss();" /> <label for="css_toggle">Turn Off Live CSS</label></p>
+<p><textarea style="width: 100%; height: 200px;" id="css" name="stylesheet[data]"><%= @stylesheet.data %></textarea></p>
+<p><input type="submit" value="Update CSS" /></p>
+<%= end_form_tag %>
+
+<script type="text/javascript">
+  document.onload = startLiveCss();
+</script>

data/app/views/css/list.rhtml

@@ -0,0 +1,24 @@
+<h1>Listing stylesheets</h1>
+
+<table>
+  <tr>
+<% for column in Stylesheet.content_columns %>
+    <th><%= column.human_name %></th>
+<% end %>
+  </tr>
+  
+<% for stylesheet in @stylesheets %>
+  <tr>
+  <% for column in Stylesheet.content_columns %>
+    <td><%=h stylesheet[column.name] %></td>
+  <% end %>
+    <td><%= link_to 'Show', :action => 'show', :id => stylesheet.id %></td>
+    <td><%= link_to 'Edit', :action => 'edit', :id => stylesheet.id %></td>
+    <td><%= link_to 'Destroy', :action => 'destroy', :id => stylesheet.id %></td>
+  </tr>
+<% end %>
+</table>
+
+<br />
+
+<%= link_to 'New stylesheet', :action => 'new' %>