ae_users 0.6.0

data/app/views/auth/forgot.rhtml

@@ -0,0 +1,3 @@
+<h1>Thank you</h1>
+
+<p>A new password has been generated and emailed to you.</p>

data/app/views/auth/forgot_form.rhtml

@@ -0,0 +1,6 @@
+<h1>I forgot my password...</h1>
+
+<p>No problem.  Just type in your email address below and we'll <b>reset your password to a random one</b>, and send
+  it to you via email.</p>
+  
+<%= render :partial => 'forgot_form' %>

data/app/views/auth/index.css.erb

@@ -0,0 +1,23 @@
+.auth_form {
+  margin-left: 0.5em;
+  width: 300px;
+}
+.auth_form input {
+  width: 100%;
+}
+.auth_form input[type=radio], .auth_form input[type=checkbox] {
+  width: auto;
+}
+.auth_form label.block {
+  margin-left: -0.5em;
+  font-weight: bold;
+  display: block;
+}
+#openid_url {
+	background-color: #fff;
+	background-image: url(<%= image_path "ae_users/openid.gif" %>);
+	background-position: left;
+	background-repeat: no-repeat;
+	padding-left: 18px;
+	width: 90%;
+}

data/app/views/auth/login.rhtml

@@ -0,0 +1,6 @@
+<div id="login">
+    <h2>Log in</h2>
+    <%= render :partial => 'auth_form' %>
+</div>
+
+<%= render :partial => 'other_login_options' %>

data/app/views/auth/needs_activation.rhtml

@@ -0,0 +1,6 @@
+<h1>Account not activated</h1>
+
+<p>That account hasn't been activated yet.  If you want to try resending the activation email (because you
+  didn't receive it, or accidentally deleted it), click the button below.</p>
+  
+<p><%= button_to "Resend activation email", :action => 'resend_activation', :account => params[:account], :email => params[:email] %></p>

data/app/views/auth/needs_person.html.erb

@@ -0,0 +1,32 @@
+<h2>Welcome!</h2>
+
+<p>This is the first time you've visited this site.  We just need a few pieces of information
+from you before we can log you in.  We've attempted to get as much of it as possible from your
+OpenID provider, but some of it may be missing and/or incorrect.  Please check the following form
+before pressing "Save changes" below.</p>
+
+<%= auth_stylesheet %>
+
+<% form_for("person", @person, :url => {:action => 'needs_person'}, 
+	:html => {:id => 'edit_profile_form', :style => "max-width: 800px;"}) do |f| %>
+  <%= hidden_field_tag "return_to", params[:return_to] %>
+  <%= render :partial => 'account/personal_info', :locals => {:f => f} %>
+  
+  <p>
+  	<label for="email" class="block">Email:</label>
+  	<%= text_field_tag "email", params[:email] %>
+  </p>
+  
+  <% if @app_profile -%>
+  
+  <% form_for("app_profile", @app_profile) do |profile_form| %>
+          <%= render :partial => "account/#{@app_profile.class.name.tableize.singularize}", 
+				:locals => {:f => profile_form}%>
+          <label></label>
+          <%= submit_tag %>
+      <% end %>
+  <% else -%>
+      <label></label>
+      <%= submit_tag %>
+  <% end -%>
+<% end %>

data/app/views/auth/needs_profile.rhtml

@@ -0,0 +1,14 @@
+<h1>Update your profile</h1>
+
+<p>Hello!  It appears this is the first time you've logged into this site.  Before you log in,
+    please take a moment to update your personal information below.</p>
+  
+<%= auth_stylesheet %>
+
+<% form_for("app_profile", @app_profile, :html => {:class => 'auth_form'}) do |profile_form| %>
+    <%= hidden_field_tag "return_to", params[:return_to] %>
+    <%= hidden_field_tag "person", @person.id %>
+    <%= render :partial => "account/#{@app_profile.class.name.tableize.singularize}", 
+		:locals => {:f => profile_form}%>
+    <%= submit_tag "Update your profile" %>
+<% end %>

data/app/views/auth/openid_login.html.erb

@@ -0,0 +1,6 @@
+<div id="openid_login">
+    <h2>Log in with OpenID</h2>
+    <%= render :partial => 'openid_auth_form' %>
+</div>
+
+<%= render :partial => "other_login_options" %>

data/app/views/auth/resend_activation.rhtml

@@ -0,0 +1,3 @@
+<h1>Thank you</h1>
+
+<p>A new activation key has been generated, and an email has been sent to your address.</p>

data/app/views/auth_notifier/account_activation.rhtml

@@ -0,0 +1,13 @@
+Dear <%=@name%>,
+
+Thank you for signing up for an account on <%=@server_name%>!  There's just one more
+step you need to do before you can use it: we need you to verify that this email address
+belongs to you.
+
+To do that, simply go to:
+
+<%= url_for :only_path => false, :controller => "account", :action => "activate", :account => @account.id, :activation_key => @account.activation_key, :escape => false%>
+
+Thanks again for signing up!
+
+- The Management

data/app/views/auth_notifier/generated_password.rhtml

@@ -0,0 +1,10 @@
+Dear <%=@name%>,
+
+You have requested a password reset for your account on <%=@server_name%>.  This has been
+completed.  Your new password is:
+
+<%= @password %>
+
+Thanks!
+
+- The Management

data/app/views/permission/_add_grantee.rhtml

@@ -0,0 +1,47 @@
+<% if AeUsers.js_framework == "prototype" -%>
+<ul style="list-style-type: none; padding-left: 0;">
+<% for grantee in @grantees do -%>
+  <li granteeName="<%=h grantee.name %>">
+    <% if grantee.kind_of? Role -%>
+      <table>
+        <tr>
+          <td>
+            <%= image_tag "ae_users/group.png", :style => "float: left;" %>
+            <div class="grantee_id" style="display: none;"><%= grantee.class.name %>:<%= grantee.id %></div>
+          </td>
+          <td>
+            <b><%=h grantee.name %></b><br/>
+            <i><%=pluralize(grantee.people.count, "person")%></i>
+          </td>
+        </tr>
+      </table>
+    <% elsif grantee.kind_of? Person -%>
+      <table>
+        <tr>
+          <td>
+            <%= image_tag "ae_users/user.png", :style => "float: left;" %>
+            <div class="grantee_id" style="display: none;"><%= grantee.class.name %>:<%= grantee.id %></div>
+          </td>
+          <td>
+            <b><%=h grantee.name %></b><br/>
+            <i>
+              <% if grantee.primary_email_address.nil? -%>
+                No email address
+              <% else -%>
+                <%=h grantee.primary_email_address %>
+              <% end -%>
+          </td>
+        </tr>
+      </table>
+    <% end -%>
+  </li>
+<% end -%>
+</ul>
+
+<% elsif AeUsers.js_framework == "jquery" -%>
+
+<% for grantee in @grantees do -%>
+<%=grantee.name %><% if grantee.kind_of? Role %> (<%= pluralize(grantee.people.count, "person") %>)<% end %>|<%=grantee.class.name %>:<%= grantee.id %>
+<% end -%>
+
+<% end -%>

data/app/views/permission/_role_member.rhtml

@@ -0,0 +1,8 @@
+<li id="person_<%=person.id%>"><%= image_tag "ae_users/user.png" %>
+  <%=h person.name %>
+  <%= link_to_remote "Remove",
+            { :url => { :controller => "permission", :action => "remove_role_member", :id => person.id, :role => @role.id },
+            :success => "$('person_#{person.id}').remove();",
+            :confirm => "Are you sure you want to remove that member from this role?" },
+            { :class => "permission_action" } %>
+</li>

data/app/views/permission/_show.rhtml

@@ -0,0 +1,81 @@
+<style type="text/css">
+div.auto_complete {
+  z-index: 1000;
+}
+
+.permission_action {
+  font-size: 80%; 
+  text-transform: uppercase; 
+  text-decoration: none;
+  color: #444;
+  background-color: #ffc;
+}
+</style>
+<%= auto_complete_stylesheet %>
+
+<% div_for item, :permissions do %>
+  <ul>
+  <% permission_names(item).each do |perm| -%>
+    <li><b><%=h(perm.to_s.humanize)%></b>:
+    <% grants = permission_grants(item, perm) -%>
+    <% if grants.length == 0 -%>
+      <% if all_permitted?(item, perm) -%>
+        everybody
+      <% elsif grants.length == 0 -%>
+        <span id="<%= perm %>_nobody">nobody</span>
+      <% end -%>
+    <% else -%>
+      <% grants.each_index do |i| -%>
+        <% grant = grants[i] -%>
+        <span id="grant_<%=grant.id%>">
+          <% if grant.grantee.kind_of? Role -%>
+            <%= image_tag "ae_users/group.png" %>
+          <% elsif grant.grantee.kind_of? Person -%>
+            <%= image_tag "ae_users/user.png" %>
+          <% end -%>
+          <% if grant.grantee -%>
+            <%= h(grant.grantee.name) %>
+          <% else -%>
+            Unknown entity
+          <% end -%>
+          <% if logged_in? and logged_in_person.permitted?(item, "change_permissions") and not (grant.grantee == logged_in_person) -%>
+            <%= link_to_remote "Remove",
+                { :url => { :controller => "permission", :action => "revoke", :id => grant.id, :format => "js" },
+                :success => "$('grant_#{grant.id}').remove();",
+                :confirm => "Are you sure you want to revoke that permission?",
+				:failure => "alert(request.responseText)" },
+                { :class => "permission_action" } %>
+          <% end -%>
+
+          <% if i < grants.length - 1 %>, <% end %>
+        </span>
+      <% end -%>
+    <% end -%>
+    <% if logged_in? and logged_in_person.permitted?(item, "change_permissions") -%>
+      <div id="<%= perm %>_insert_grants_here" style="display: inline;"></div>
+      | <span id="grant_open_<%=perm%>">
+          <%= link_to_function "Add", "$('grant_open_#{perm}').toggle(); $('grant_#{perm}').toggle(); $('#{perm}_grantee_shim').focus();",
+            :class => "permission_action" %>
+        </span>
+        <span id="grant_<%=perm %>" style="display: none;">
+        <%= link_to_function "&laquo;", "$('grant_open_#{perm}').toggle(); $('grant_#{perm}').toggle();",
+            :class => "permission_action" %>
+          <%= user_picker "#{perm}_grantee", :roles => true,
+            :callback => "nobody = $('#{perm}_nobody');
+                if (nobody) {
+                  nobody.remove();
+                }
+                new Ajax.Updater('#{perm}_insert_grants_here', '#{url_for :controller => 'permission', :action => 'grant', :perm => full_permission_name(item, perm), 
+                  :item_klass => item.class.name, :item_id => item.id, :escape => false}',
+                  {
+                    parameters: { 'klass': klass, 'id': id },
+                    insertion: Insertion.Bottom,
+                  }
+                );" %>
+        </span>
+      <% end -%>
+    </li>
+  <% end -%>
+  </ul>
+<% end %>
+

data/app/views/permission/add_role_member.rhtml

@@ -0,0 +1,3 @@
+<li><%= image_tag "ae_users/user.png" %>
+      <%=h @person.name %>
+    </li>

data/app/views/permission/admin.rhtml

@@ -0,0 +1,45 @@
+<h1>Administration</h1>
+
+<style type="text/css">
+.permission_action {
+  font-size: 80%; 
+  text-transform: uppercase; 
+  text-decoration: none;
+  color: #444;
+  background-color: #ffc;
+}
+</style>
+
+<h2>Base permissions</h2>
+
+<blockquote>Base permissions apply to all objects of a particular type.  If you grant someone base permissions on a type of object, they will be able to perform that action on any object of that type.  Please choose the type of object you want to change the permissions for:</blockquote>
+
+<ul>
+  <% @pclasses.each do |pc| -%>
+    <li>
+      <%= link_to pc.name.pluralize.humanize, :action => "edit", :klass => pc.name %>
+    </li>
+  <% end -%>
+</ul>
+
+<h2>Roles</h2>
+
+<blockquote>Roles are groups of people.  Roles can be given permissions just as if they were people.  This can be convenient for assigning permissions to large groups of people at once.  Please choose the role you want to edit:</blockquote>
+
+<ul>
+  <% @roles.each do |role| -%>
+    <li id="role_<%= role.id%>">
+      <%= link_to role.name, :action => "edit_role", :id => role.id %>
+      <%= link_to_remote "Delete",
+            { :url => { :controller => "permission", :action => "delete_role", :id => role.id },
+            :success => "$('role_#{role.id}').remove();",
+            :confirm => "Are you sure you want to delete that role?" },
+            { :class => "permission_action" } %>
+    </li>
+  <% end -%>
+</ul>
+
+<% form_for :role, @role, :url => {:action => "create_role"} do |f| %>
+  New role: <%= f.text_field "name" %>
+  <%= submit_tag "Create" %>
+<% end %>

data/app/views/permission/edit.rhtml

@@ -0,0 +1,9 @@
+<h1>
+  <% if @item.kind_of? ActiveRecord::Base -%>
+    Permissions for <%=h @item.name %>
+  <% else -%>
+    Base permissions for all <%=h @item.name.pluralize %>
+  <% end -%>
+</h1>
+
+<%= render :partial => "show", :locals => { :item => @item } %>

data/app/views/permission/edit_role.rhtml

@@ -0,0 +1,63 @@
+<h1>Editing role <%= @role.name %></h1>
+
+<h2>Members</h2>
+
+<style type="text/css">
+div.auto_complete {
+  z-index: 1000;
+}
+
+.permission_action {
+  font-size: 80%; 
+  text-transform: uppercase; 
+  text-decoration: none;
+  color: #444;
+  background-color: #ffc;
+}
+</style>
+<%= auto_complete_stylesheet %>
+
+<ul style="list-style-type: none;" id="members_list">
+  <% @role.people.each do |person| -%>
+    <%= render :partial => "role_member", :locals => {:person => person} %>
+  <% end -%>
+  <span id="add_member_open">
+    <%= link_to_function "Add member", "$('add_member_open').toggle(); $('add_member').toggle();",
+      :class => "permission_action" %>
+  </span>
+  <span id="add_member" style="display: none;">
+  <%= link_to_function "&laquo;", "$('add_member_open').toggle(); $('add_member').toggle();",
+      :class => "permission_action" %>
+    <%= user_picker "member_to_add",
+      :callback => "new Ajax.Updater('members_list', '#{url_for :controller => 'permission', :action => 'add_role_member',
+            :role => @role.id, :escape => false}',
+            {
+              parameters: { 'klass': klass, 'id': id },
+              insertion: Insertion.Top,
+            }
+          );" %>
+</ul>
+
+<h2>Permissions</h2>
+
+<ul>
+  <% @role.permissions.each do |perm| -%>
+    <li>
+      <% if perm.permission.nil? -%>
+        Global superadmin
+      <% else -%>
+        <%=h perm.permission.humanize %>
+        <% if not perm.permissioned.nil? -%>
+          <%=h perm.permissioned.class %>
+          <% if perm.permissioned.respond_to? "name" %>
+            "<%=h perm.permissioned.name %>"
+          <% elsif perm.permissioned.respond_to? "title" %>
+            "<%=h perm.permissioned.title %>"
+          <% else -%>
+            #<%= perm.permissioned.id %>
+          <% end -%>
+        <% end -%>
+      <% end -%>
+    </li>
+  <% end -%>
+</ul>

data/app/views/permission/grant.rhtml

@@ -0,0 +1,10 @@
+<% if @perm.grantee.kind_of? Role -%>
+  <%= image_tag "ae_users/group.png" %>
+<% elsif @perm.grantee.kind_of? Person -%>
+  <%= image_tag "ae_users/user.png" %>
+<% end -%>
+<%= h(@perm.grantee.name) %>
+            <%= link_to_remote "Remove",
+                { :url => { :controller => "permission", :action => "revoke", :id => @perm.id },
+                :success => "$('grant_#{@perm.id}').remove();" },
+                { :class => "permission_action" } %>

data/db/migrate/002_create_accounts.rb

@@ -0,0 +1,17 @@
+class CreateAccounts < ActiveRecord::Migration
+  def self.up
+    ActiveRecord::Base.establish_connection :users
+    create_table :accounts do |t|
+      t.column :password, :string, :null => false
+      t.column :active, :boolean
+      t.column :activation_key, :string
+      t.column :created_at, :datetime
+      t.column :updated_at, :datetime
+    end
+  end
+
+  def self.down
+    ActiveRecord::Base.establish_connection :users
+    drop_table :accounts
+  end
+end

data/db/migrate/003_create_email_addresses.rb

@@ -0,0 +1,17 @@
+class CreateEmailAddresses < ActiveRecord::Migration
+  def self.up
+    ActiveRecord::Base.establish_connection :users
+    create_table :email_addresses do |t|
+      t.column :address, :string, :null => false
+      t.column :primary, :boolean
+      t.column :account_id, :integer, :null => false
+      t.column :created_at, :datetime
+      t.column :updated_at, :datetime
+    end
+  end
+
+  def self.down
+    ActiveRecord::Base.establish_connection :users
+    drop_table :email_addresses
+  end
+end