alberich 0.2.0

data/test/dummy/config/database.yml

@@ -0,0 +1,25 @@
+# SQLite version 3.x
+#   gem install sqlite3
+#
+#   Ensure the SQLite 3 gem is defined in your Gemfile
+#   gem 'sqlite3'
+development:
+  adapter: sqlite3
+  database: db/development.sqlite3
+  pool: 5
+  timeout: 5000
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+test:
+  adapter: sqlite3
+  database: db/test.sqlite3
+  pool: 5
+  timeout: 5000
+
+production:
+  adapter: sqlite3
+  database: db/production.sqlite3
+  pool: 5
+  timeout: 5000

data/test/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the rails application
+require File.expand_path('../application', __FILE__)
+
+# Initialize the rails application
+Dummy::Application.initialize!

data/test/dummy/config/environments/development.rb

@@ -0,0 +1,37 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # In the development environment your application's code is reloaded on
+  # every request. This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Log error messages when you accidentally call methods on nil.
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send
+  config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger
+  config.active_support.deprecation = :log
+
+  # Only use best-standards-support built into browsers
+  config.action_dispatch.best_standards_support = :builtin
+
+  # Raise exception on mass assignment protection for Active Record models
+  config.active_record.mass_assignment_sanitizer = :strict
+
+  # Log the query plan for queries taking more than this (works
+  # with SQLite, MySQL, and PostgreSQL)
+  config.active_record.auto_explain_threshold_in_seconds = 0.5
+
+  # Do not compress assets
+  config.assets.compress = false
+
+  # Expands the lines which load the assets
+  config.assets.debug = true
+end

data/test/dummy/config/environments/production.rb

@@ -0,0 +1,67 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # Code is not reloaded between requests
+  config.cache_classes = true
+
+  # Full error reports are disabled and caching is turned on
+  config.consider_all_requests_local       = false
+  config.action_controller.perform_caching = true
+
+  # Disable Rails's static asset server (Apache or nginx will already do this)
+  config.serve_static_assets = false
+
+  # Compress JavaScripts and CSS
+  config.assets.compress = true
+
+  # Don't fallback to assets pipeline if a precompiled asset is missed
+  config.assets.compile = false
+
+  # Generate digests for assets URLs
+  config.assets.digest = true
+
+  # Defaults to nil and saved in location specified by config.assets.prefix
+  # config.assets.manifest = YOUR_PATH
+
+  # Specifies the header that your server uses for sending files
+  # config.action_dispatch.x_sendfile_header = "X-Sendfile" # for apache
+  # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx
+
+  # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
+  # config.force_ssl = true
+
+  # See everything in the log (default is :info)
+  # config.log_level = :debug
+
+  # Prepend all log lines with the following tags
+  # config.log_tags = [ :subdomain, :uuid ]
+
+  # Use a different logger for distributed setups
+  # config.logger = ActiveSupport::TaggedLogging.new(SyslogLogger.new)
+
+  # Use a different cache store in production
+  # config.cache_store = :mem_cache_store
+
+  # Enable serving of images, stylesheets, and JavaScripts from an asset server
+  # config.action_controller.asset_host = "http://assets.example.com"
+
+  # Precompile additional assets (application.js, application.css, and all non-JS/CSS are already added)
+  # config.assets.precompile += %w( search.js )
+
+  # Disable delivery errors, bad email addresses will be ignored
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Enable threaded mode
+  # config.threadsafe!
+
+  # Enable locale fallbacks for I18n (makes lookups for any locale fall back to
+  # the I18n.default_locale when a translation can not be found)
+  config.i18n.fallbacks = true
+
+  # Send deprecation notices to registered listeners
+  config.active_support.deprecation = :notify
+
+  # Log the query plan for queries taking more than this (works
+  # with SQLite, MySQL, and PostgreSQL)
+  # config.active_record.auto_explain_threshold_in_seconds = 0.5
+end

data/test/dummy/config/environments/test.rb

@@ -0,0 +1,37 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # The test environment is used exclusively to run your application's
+  # test suite. You never need to work with it otherwise. Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs. Don't rely on the data there!
+  config.cache_classes = true
+
+  # Configure static asset server for tests with Cache-Control for performance
+  config.serve_static_assets = true
+  config.static_cache_control = "public, max-age=3600"
+
+  # Log error messages when you accidentally call methods on nil
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Raise exceptions instead of rendering exception templates
+  config.action_dispatch.show_exceptions = false
+
+  # Disable request forgery protection in test environment
+  config.action_controller.allow_forgery_protection    = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  config.action_mailer.delivery_method = :test
+
+  # Raise exception on mass assignment protection for Active Record models
+  config.active_record.mass_assignment_sanitizer = :strict
+
+  # Print deprecation notices to the stderr
+  config.active_support.deprecation = :stderr
+end

data/test/dummy/config/initializers/alberich.rb

@@ -0,0 +1,13 @@
+Alberich.user_class = "User"
+Alberich.groups_for_user_method = "all_groups"
+Alberich.user_group_class = "UserGroup"
+Alberich.permissioned_object_classes = ["StandaloneResource",
+                                        "ParentResource",
+                                        "ChildResource"]
+Alberich.additional_privilege_scopes = ["User", "GlobalResource"]
+
+Alberich.require_user_method = "require_user"
+
+ActiveSupport.on_load(:action_controller) do
+  ActionController::Base.send(:include, Alberich::ApplicationControllerHelper)
+end

data/test/dummy/config/initializers/backtrace_silencers.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
+# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
+
+# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
+# Rails.backtrace_cleaner.remove_silencers!

data/test/dummy/config/initializers/inflections.rb

@@ -0,0 +1,15 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new inflection rules using the following format
+# (all these examples are active by default):
+# ActiveSupport::Inflector.inflections do |inflect|
+#   inflect.plural /^(ox)$/i, '\1en'
+#   inflect.singular /^(ox)en/i, '\1'
+#   inflect.irregular 'person', 'people'
+#   inflect.uncountable %w( fish sheep )
+# end
+#
+# These inflection rules are supported but not enabled by default:
+# ActiveSupport::Inflector.inflections do |inflect|
+#   inflect.acronym 'RESTful'
+# end

data/test/dummy/config/initializers/mime_types.rb

@@ -0,0 +1,5 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new mime types for use in respond_to blocks:
+# Mime::Type.register "text/richtext", :rtf
+# Mime::Type.register_alias "text/html", :iphone

data/test/dummy/config/initializers/secret_token.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# Your secret key for verifying the integrity of signed cookies.
+# If you change this key, all old signed cookies will become invalid!
+# Make sure the secret is at least 30 characters and all random,
+# no regular words or you'll be exposed to dictionary attacks.
+Dummy::Application.config.secret_token = '1456949ecb52d46f41d8e31d399c3c1e9e07a8d3237e46783932fcc5a2995c5a2656d6158d2f7f6baa2ce60e8a1d4d44f5ef5ff83cf5619b3a88213e053c9d12'

data/test/dummy/config/initializers/session_store.rb

@@ -0,0 +1,8 @@
+# Be sure to restart your server when you modify this file.
+
+Dummy::Application.config.session_store :cookie_store, key: '_dummy_session'
+
+# Use the database for sessions instead of the cookie-based default,
+# which shouldn't be used to store highly confidential information
+# (create the session table with "rails generate session_migration")
+# Dummy::Application.config.session_store :active_record_store

data/test/dummy/config/initializers/warden.rb

@@ -0,0 +1,79 @@
+Rails.configuration.middleware.use RailsWarden::Manager do |config|
+  config.failure_app = UserSessionsController
+  config.default_scope = :user
+
+  # all UI requests are handled in the default scope
+  config.scope_defaults(
+    :user,
+    :strategies   => :database,
+    :store        => true,
+    :action       => 'unauthenticated'
+  )
+
+  config.scope_defaults(
+    :api,
+    :strategies   => :database,
+    :store        => true,
+    :action       => 'unauthenticated'
+  )
+end
+
+class Warden::SessionSerializer
+  def serialize(user)
+    raise ArgumentError, "Cannot serialize invalid user object: #{user}" if not user.is_a? User and user.id.is_a? Integer
+    user.id
+  end
+
+  def deserialize(id)
+    raise ArgumentError, "Cannot deserialize non-integer id: #{id}" unless id.is_a? Integer
+    User.find(id) rescue nil
+  end
+end
+
+module Warden::Mixins::Common
+  def get_credentials
+    if request.authorization && request.authorization =~ /^Basic (.*)/m
+      Rails.logger.debug("Using basic HTTP auth header")
+      Base64.decode64($1).split(/:/, 2)
+    else
+      [params[:username], params[:password]]
+    end
+  end
+end
+
+# authenticate against database
+Warden::Strategies.add(:database) do
+  def authenticate!
+    username, password = get_credentials
+    return unless username && password
+    Rails.logger.debug("Warden is authenticating #{username} against database")
+    ipaddress = request.env[ 'HTTP_X_FORWARDED_FOR' ] ? request.env[ 'HTTP_X_FORWARDED_FOR' ] : request.remote_ip
+    u = User.authenticate(username, password, ipaddress)
+    u ? success!(u) : fail!("Username or password is not correct - could not log in")
+  end
+end
+
+Warden::Manager.after_authentication do |user,auth,opts|
+  current_session_id = auth.request.session_options[:id]
+  session = auth.env['rack.session']
+  perm_session = Alberich::PermissionSession.create!(:user => user,
+                                              :session_id => current_session_id)
+  session[:permission_session_id] = perm_session.id
+  perm_session.update_session_entities(user)
+end
+Warden::Manager.after_set_user do |user,auth,opts|
+  current_session_id = auth.request.session_options[:id]
+  session = auth.env['rack.session']
+  perm_session_id = session[:permission_session_id]
+  if perm_session_id
+    perm_session = Alberich::PermissionSession.find_by_id(perm_session_id)
+    #if session_id doesn't match what we originally set, update the value
+    # This isn't needed for perm checks (that's why we store
+    # permission_session_id), but matching the correct session_id will facilitate
+    # permission_session cleanup
+    if perm_session && (perm_session.session_id != current_session_id)
+      perm_session.session_id = current_session_id
+      perm_session.save!
+    end
+  end
+end

data/test/dummy/config/initializers/wrap_parameters.rb

@@ -0,0 +1,14 @@
+# Be sure to restart your server when you modify this file.
+#
+# This file contains settings for ActionController::ParamsWrapper which
+# is enabled by default.
+
+# Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array.
+ActiveSupport.on_load(:action_controller) do
+  wrap_parameters format: [:json]
+end
+
+# Disable root element in JSON by default.
+ActiveSupport.on_load(:active_record) do
+  self.include_root_in_json = false
+end

data/test/dummy/config/locales/en.yml

@@ -0,0 +1,5 @@
+# Sample localization file for English. Add more files in this directory for other locales.
+# See https://github.com/svenfuchs/rails-i18n/tree/master/rails%2Flocale for starting points.
+
+en:
+  hello: "Hello world"

data/test/dummy/config/routes.rb

@@ -0,0 +1,33 @@
+Rails.application.routes.draw do
+  resources :child_resources
+
+
+  resources :parent_resources
+
+
+  resources :standalone_resources
+
+
+  resources :global_resources
+
+
+  resources :user_groups do
+    member do
+      get 'add_members'
+      get 'add_member'
+      delete 'remove_member'
+    end
+  end
+
+  root      :to => "users#index"
+
+  resources :users
+  resource :user_session
+  match 'login',       :to => 'user_sessions#new',     :as => 'login'
+  match 'logout',      :to => 'user_sessions#destroy', :as => 'logout'
+  match 'register',    :to => 'users#new',             :as => 'register'
+
+  resource  'account', :to => 'users'
+
+  mount Alberich::Engine => "/alberich"
+end

data/test/dummy/db/migrate/20120801010101_create_users.rb

@@ -0,0 +1,20 @@
+class CreateUsers < ActiveRecord::Migration
+  def change
+    create_table :users do |t|
+      t.string :username,               :null => false
+      t.string :email
+      t.string :crypted_password
+      t.string :first_name
+      t.string :last_name
+      t.integer :login_count,            :null => false, :default => 0
+      t.integer :failed_login_count,     :null => false, :default => 0
+      t.datetime :last_request_at
+      t.datetime :current_login_at
+      t.datetime :last_login_at
+      t.string :current_login_ip
+      t.string :last_login_ip
+
+      t.timestamps
+    end
+  end
+end

data/test/dummy/db/migrate/20121121054319_create_user_groups.rb

@@ -0,0 +1,16 @@
+class CreateUserGroups < ActiveRecord::Migration
+  def change
+    create_table :user_groups do |t|
+      t.string :name, :null => false
+      t.string :description
+
+      t.integer :lock_version, :default => 0
+      t.timestamps
+    end
+
+    create_table :members_user_groups, :id => false do |t|
+      t.integer :user_group_id, :null => false
+      t.integer :member_id, :null => false
+    end
+  end
+end

data/test/dummy/db/migrate/20130220160811_create_global_resources.rb

@@ -0,0 +1,10 @@
+class CreateGlobalResources < ActiveRecord::Migration
+  def change
+    create_table :global_resources do |t|
+      t.string :name
+      t.string :description
+
+      t.timestamps
+    end
+  end
+end

data/test/dummy/db/migrate/20130220175258_create_standalone_resources.rb

@@ -0,0 +1,10 @@
+class CreateStandaloneResources < ActiveRecord::Migration
+  def change
+    create_table :standalone_resources do |t|
+      t.string :name
+      t.string :description
+
+      t.timestamps
+    end
+  end
+end

data/test/dummy/db/migrate/20130226145412_create_parent_resources.rb

@@ -0,0 +1,10 @@
+class CreateParentResources < ActiveRecord::Migration
+  def change
+    create_table :parent_resources do |t|
+      t.string :name
+      t.string :description
+
+      t.timestamps
+    end
+  end
+end