authengine 0.0.2

data/app/models/user_observer.rb

@@ -0,0 +1,14 @@
+class UserObserver < ActiveRecord::Observer
+  def after_create(user)
+    Authengine::UserMailer.signup_notification(user).deliver
+  end
+
+  def after_save(user)
+    # the next line causes deprecation warnings in
+    # actionmailer/lib/actionmailer/adv_attr_accessor.rb
+    # this could become fatal when the deprecated methods are removed
+    Authengine::UserMailer.activation(user).deliver if user.pending? # pending? true if user is activated
+    Authengine::UserMailer.forgot_password(user).deliver if user.recently_forgot_password?
+    Authengine::UserMailer.reset_password(user).deliver if user.recently_reset_password?
+  end
+end

data/app/models/user_role.rb

@@ -0,0 +1,4 @@
+class UserRole < ActiveRecord::Base
+  belongs_to :user
+  belongs_to :role
+end

data/app/models/useraction.rb

@@ -0,0 +1,56 @@
+class Useraction < ActiveRecord::Base
+  belongs_to :user
+  belongs_to :action
+
+  delegate :lastName, :to => :user, :prefix => true
+  scope :expired, :conditions => ['updated_at < ?',Time.zone.now.advance(:hours => -24)]
+  
+  def self.create(params)
+    self.name.constantize.send(:expired).each { |u| u.destroy }
+    super
+  end
+
+  def self.current
+    eval("Useraction#{current_index}")
+  end
+
+  def self.date_range
+    t = Time.zone.now.to_date
+    t.advance(:days => -4) .. t
+  end
+
+  # if current index = 2
+  #     i     days before today
+  #     0     2
+  #     1     1
+  #     2     0
+  #     3     4
+  #     4     3
+  def self.date_of_index(i)
+    Time.zone.now.to_date.advance(:days => -((current_index - i)%5))
+  end
+
+  def params_truncated
+    # because some requests, especially the "actions" controller, produce huge params fields, with little value
+    # so we display a truncated version only (but full params are stored
+    # in the db, available for display if necessary).
+     if params.to_s.size > 80
+       p = params.to_s[0..80]+" ...more"
+     else
+       p = params.to_s
+     end
+     p.gsub(/^\{|\}$/,"") # remove start/end braces
+  end
+
+  private
+
+  def self.current_index
+    (Time.zone.now.to_datetime - Date.new(2011,1,1)).to_i.%5
+  end
+end
+
+class Useraction0 < Useraction; end
+class Useraction1 < Useraction; end
+class Useraction2 < Useraction; end
+class Useraction3 < Useraction; end
+class Useraction4 < Useraction; end

data/app/views/authengine/accounts/edit.html.erb

@@ -0,0 +1,19 @@
+<% form_tag user_account_path(current_user), :method => :put do %>
+<p><label for="old_password" class="block">Old Password</label><br />
+<%= password_field_tag 'old_password', @old_password, :size => 45 %></p>
+
+<p><label for="password" class="block">New Password</label><br />
+<%= password_field_tag 'password', {}, :size => 45 %><br />
+<small>Between 4 and 40 characters</small></p>
+
+<p><label for="password_confirmation"  class="block">Confirm new password</label><br />
+<%= password_field_tag 'password_confirmation', {}, :size => 45 %></p>
+
+<%= submit_tag 'Change password' %>
+<br/>
+<p><%= link_to("Cancel", :controller=>session[:referer][:controller], :action=>session[:referer][:action])%></p>
+
+<% end %>
+<script type='text/javascript'>
+document.getElementById('old_password').focus()
+</script>

data/app/views/authengine/actions/create.html.erb

@@ -0,0 +1,2 @@
+<h1>Actions#create</h1>
+<p>Find me in app/views/actions/create.html.erb</p>

data/app/views/authengine/actions/destroy.html.erb

@@ -0,0 +1,2 @@
+<h1>Actions#destroy</h1>
+<p>Find me in app/views/actions/destroy.html.erb</p>

data/app/views/authengine/actions/edit.html.erb

@@ -0,0 +1,80 @@
+<h1>Edit role</h1>
+
+<%= error_messages_for :role %>
+
+<% form_for(@role) do |f| %>
+<table>
+		<tr><td>Name:</td><td colspan="3"><%= f.text_field :name %></td></tr>
+	<tr><td>Manage DB Users:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageDbUsers', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageDbUsers', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageDbUsers', 'none') %>
+	</td>
+	</tr>
+	<tr><td>Manage Students:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageStudents', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageStudents', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageStudents', 'none') %>
+	</td>
+	</tr>
+	<tr><td>Manage Self:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageSelf', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageSelf', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageSelf', 'none') %>
+	</td>
+	</tr>
+	<tr><td>Manage Queries:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageQueries', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageQueries', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageQueries', 'none') %>
+	</td>
+	</tr>
+	<tr><td>Manage Roles:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageRoles', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageRoles', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageRoles', 'none') %>
+	</td>
+	</tr>
+	<tr><td>Manage Translations:</td>
+	<td>	<%= f.label :read %>
+			<%= radio_button('role', 'manageTranslations', 'read') %>
+	</td>
+	<td>	<%= f.label :write %>
+			<%= radio_button('role', 'manageTranslations', 'write') %>
+	</td>
+	<td>	<%= f.label :none %>
+			<%= radio_button('role', 'manageTranslations', 'none') %>
+	</td>
+	</tr>
+</table>  
+  <p>
+    <%= f.submit "Update" %>
+  </p>
+<% end %>
+<%= link_to 'Show', @role %> |
+<%= link_to 'Back', roles_path %>

data/app/views/authengine/actions/index.html.haml

@@ -0,0 +1,26 @@
+%h1 Configure Permissions for Roles
+= form_tag update_all_authengine_action_roles_path,:method => :put do
+  %table{:style=>"width:780px"}
+    %tr
+      %th{:style=>"width:200px"}
+        Controller
+      %th{:style=>"width:125px"}
+        Action
+      - for role in @roles do
+        %th{:style=>"width:70px"}
+          = role
+
+  %div{:style=>"height:400px; width:1000px; margin-r:0px; overflow:auto"}
+    %table{:style=>"width:780px"}
+      - for action in @actions do
+        %tr{:class=>"#{cycle('odd', 'even')}"}
+          %td{:style=>"width:200px"}
+            = action.controller_name
+          %td{:style=>"width:125px"}
+            = action.action_name
+          - for role in @roles do
+            %td{:style=>"width:70px"}
+              %input{:name=>"permission[#{role.id}][#{action.id}]" , :type=>"hidden", :value=>'0'}
+              = check_box_tag("permission[#{role.id}][#{action.id}]", "1", @allowed[role.id].include?(action.id) )
+
+  = submit_tag 'Save'

data/app/views/authengine/actions/new.html.erb

@@ -0,0 +1,2 @@
+<h1>Actions#new</h1>
+<p>Find me in app/views/actions/new.html.erb</p>

data/app/views/authengine/actions/show.html.erb

@@ -0,0 +1,8 @@
+<p>
+  <b>Name:</b>
+  <%=h @role.name %>
+</p>
+
+
+<%= link_to 'Edit', edit_role_path(@role) %> |
+<%= link_to 'Back', roles_path %>

data/app/views/authengine/actions/update.html.erb

@@ -0,0 +1,11 @@
+<h1>Update Actions</h1>
+<% params[:permission].each do |role, permissions| %>
+<%= "role name: #{role}):" %><br/>
+<% permissions.each do |controller, actions|%>
+<%= "controller: #{controller}," %><br/>
+<% actions.each do |action_name, val|%>
+<%= "action #{action_name}" %><br/>
+<% end %>
+<% end %>
+<br/>
+<% end %>

data/app/views/authengine/admin/_show.html.haml

@@ -0,0 +1,5 @@
+%ul
+  %li= link_to "Manage users", authengine_users_path
+  %li= link_to "Manage access roles", authengine_roles_path
+  %li= link_to "Manage access", authengine_actions_path
+  %li= link_to "Restrict access for the current session", edit_authengine_user_user_roles_path(current_user)

data/app/views/authengine/layouts/authengine.html.haml

@@ -0,0 +1,9 @@
+- content_for :authengine do
+  = yield
+
+- content_for :head do
+  - if Rails.env.test?
+    %script
+      confirm = function(){ return true; }; alert = function() { return true; };
+
+= render :file => 'layouts/application'

data/app/views/authengine/roles/index.html.haml

@@ -0,0 +1,12 @@
+= message_block :on => :role
+%h1 Edit roles
+%table{:cellspacing =>'0', :cellpadding => '4'}
+  %tr
+    %th Role
+  - for role in @all_roles
+    %tr
+      %td= role.name
+      %td= (link_to "Remove", authengine_role_path(role), :method => :delete) unless role.is_developer?
+
+%p= link_to 'Add new role', :controller=>:roles, :action=>:new
+%p= link_to "Cancel", admin_index_path

data/app/views/authengine/roles/new.html.haml

@@ -0,0 +1,15 @@
+= message_block :on => :role
+%h1 Add role
+
+= form_for @role, :url => authengine_roles_path  do |f|
+  %table
+    %tr
+      %td
+        %label{:for => :name} Name:
+      %td{:colspan=>"3"}= f.text_field :name, :autocomplete => 'off'
+    %tr
+      %td= f.label(:parent_id, "Parent:")
+      %td{:colspan=>"3"}= f.select :parent_id, @roles.collect{|r| [r.name, r.id]}
+  - submit_or_return_to authengine_roles_path
+
+-focus('role_name')

data/app/views/authengine/roles/show.html.erb

@@ -0,0 +1,8 @@
+<p>
+  <b>Name:</b>
+  <%=h @role.name %>
+</p>
+
+
+<%= link_to 'Edit', edit_role_path(@role) %> |
+<%= link_to 'Back', roles_path %>

data/app/views/authengine/sessions/new.html.haml

@@ -0,0 +1,18 @@
+- focus('login')
+= message_block
+- unless logged_in?
+  %h1 Please log in
+  =form_tag authengine_sessions_path do
+    %table
+      %tr
+        %td User name:
+        %td
+          =text_field_tag "login"
+      %tr
+        %td Password
+        %td
+          =password_field_tag "password"
+      %tr
+        %td
+          = submit_tag 'Log in...'
+        %td

data/app/views/authengine/user_mailer/activation.html.erb

@@ -0,0 +1,5 @@
+<p><%=h @user.firstName %> <%=h @user.lastName %>,</p>
+<p>your <%= APPLICATION_NAME || "database" %> access account has been activated.  To visit the site, follow the link below:</p>
+<p><%= @url %></p>
+<p>Please respect the confidentiality of the information in the database. Never share your username or password with anyone.</p>
+<p><%= APPLICATION_NAME || "database" %> administrator</p>

data/app/views/authengine/user_mailer/forgot_password.html.erb

@@ -0,0 +1,3 @@
+<%=h @user.login %>, to reset your password, please visit
+
+<%= @url %>

data/app/views/authengine/user_mailer/message_to_admin.html.erb

@@ -0,0 +1,2 @@
+The following message was sent from a user:
+<%= @body %>

data/app/views/authengine/user_mailer/reset_password.html.erb

@@ -0,0 +1 @@
+<%=h @user.login %>, Your password has been reset

data/app/views/authengine/user_mailer/signup_notification.html.erb

@@ -0,0 +1,5 @@
+<p><%=h @user.firstName %> <%=h @user.lastName %></p>
+<p>An account has been created so that you can access the <%= APPLICATION_NAME || "database" %>.</p>
+<p>Please click <a href='<%= @url %>'>here</a> to activate your account.</p>
+<p>You will be asked to select a login name and password.</p>
+<p><%= APPLICATION_NAME || "database" %> administrator</p>

data/app/views/authengine/user_roles/edit.html.haml

@@ -0,0 +1,10 @@
+= message_block
+
+%h1 Select new temporary access role for this session
+
+= form_for @user_role, :url => authengine_user_user_roles_path(current_user), :method => :put do |f|
+  %table
+    %tr
+      %td= f.label :role_id, "New role"
+      %td= f.select :role_id, @roles.collect{|r| [r.name, r.id]}
+  - submit_or_return_to admin_index_path

data/app/views/authengine/user_roles/index.html.haml

@@ -0,0 +1,14 @@
+%h2 Roles for #{@user.first_last_name}
+%h3 Roles assigned:
+%ul#assigned_roles
+  - for role in @user.user_roles.map(&:role)
+    %li #{role.name} [ #{link_to "remove role", authengine_user_user_role_path(@user,role), :method => :delete} ]
+
+%h3 Roles available:
+%ul#available_roles
+  - for role in (@all_roles - @user.user_roles.map(&:role))
+    = form_for @user_role, :url => authengine_user_user_roles_path(@user), :method => :post do |f|
+      = hidden_field :user_role, :role_id, :value => role.id
+      %li #{role.name} [ #{ link_to "assign role", "#", :onclick => "$(this).closest('form').submit()"} ]
+
+%p= link_to "Back", authengine_users_path

data/app/views/authengine/user_roles/new.html.haml

@@ -0,0 +1,8 @@
+%h1 Select new access role
+
+= form_for @user_role, :url => authengine_user_user_roles_path(current_user), :method => :post do |f|
+  %table
+    %tr
+      %td= f.label :role_id, "New role"
+      %td= f.select :role_id, @roles.collect{|r| [r.name, r.id]}
+  - submit_or_return_to admin_index_path

data/app/views/authengine/useractions/_useraction.html.erb

@@ -0,0 +1,6 @@
+<tr>
+  <td><%= useraction.created_at.to_formatted_s(:log_format) %></td>
+	<td><%= useraction.user.first_last_name %></td>
+	<td><%= (useraction.action.controller_name+"/"+useraction.action.action_name) unless !useraction.action %></td>
+	<td><%= useraction.params_truncated  %></td>
+</tr>

data/app/views/authengine/useractions/index.html.erb

@@ -0,0 +1,13 @@
+<h1>User activity logs</h1>
+<table>
+	<tr><th>Date</th></tr>
+  <% @dates.keys.sort.each do |date| %>
+		<tr><td><%= link_to date, :controller=>"useractions", :action=>:show, :actionlog_id=>@dates[date] %></td></tr>
+	<% end %>
+</table>
+<h1>Rails logs</h1>
+<table>
+	<tr><td><%= if RAILS_ENV == 'production' then link_to 'Production log', '/rails_logs/show' else link_to 'Development log', '/rails_logs/show' end %></td></tr>
+	<tr><td><%= link_to 'Cron log', "/cron_logs/show" %></td></tr>
+	<tr><td><%= link_to 'Failed login log', "/failedlogin_logs/show" %></td></tr>
+</table>

data/app/views/authengine/useractions/show.html.haml

@@ -0,0 +1,14 @@
+%h1 User activity log for #{ @date }
+%script
+  var rank = #{ sort_map(@useractions, @sort_criteria) }
+  var rows = #{ table_rows(@useractions, 'useraction') }
+  var last_sort = "#{ @sort_criteria.first.to_s }"
+%script{:src => '/javascripts/column_sort.js' }
+%table#sortable
+  %tr
+    %th
+      - js_sort("Time(GMT)",'created_at')
+    %th
+      - js_sort("User",'user_lastName')
+    %th Controller/Action
+    %th Parameters

data/app/views/authengine/useractions/update.html.erb

@@ -0,0 +1,2 @@
+<h1>Useractions#update</h1>
+<p>Find me in app/views/useractions/update.html.erb</p>

data/app/views/authengine/users/_no_privacy_policy.html.haml

@@ -0,0 +1 @@
+%p= submit_tag 'Sign up'

data/app/views/authengine/users/_privacy_policy_example.html.haml

@@ -0,0 +1,36 @@
+#privacy_policy{:style=>"display:none; width:600px"}
+  %h2 Please read the #{APPLICATION_NAME || "database"} Privacy Policy and indicate your committment to comply by checking all the checkboxes
+  %p  #{ORGANIZATION_NAME} Privacy Policy
+  %table
+    %tr
+      %td{:colspan=>"2"} As a condition of my being granted access to the #{APPLICATION_NAME || "database"}:
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb1 
+      %td I agree to treat all client and donor data responsibly and to keep all information secure.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb2 
+      %td I understand that client data are private and confidential and that data should be accessed only in the course of my official duties for #{APPLICATION_NAME || "database"}.
+    %tr
+      %td{:colspan=>"2"} When working with the #{APPLICATION_NAME || "database"} and files, I will observe the following guidelines for handling confidential client data:
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb3 
+      %td I will not discuss any client information or display it in an environment where it may be viewed or overheard by unauthorized individuals.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb4 
+      %td When using the #{APPLICATION_NAME || "database"}, I will log out of my session if I ever leave my computer for any length of time.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb5 
+      %td When printing, photocopying or faxing anything including client information, I will ensure that only authorized personnel will be able to see the output.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb6 
+      %td I will store all paper documents in the file cabinet in the #{APPLICATION_NAME || "database"} office and will ensure that the cabinet is only accessed by #{APPLICATION_NAME} personnel.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb7 
+      %td I will not, without the permission of the Executive Director, remove any client information from the #{APPLICATION_NAME || "database"} office, save it on removable media or my personal computer, or send this information via instant message or unsecured file transfer.
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb8 
+      %td I recognize that violations of this policy are a serious matter that can result in the suspension of my access to the database and other disciplinary measures. 
+    %tr{:valign => 'top'}
+      %td= check_box "user[cb]", :cb9 
+      %td I understand that client information is private and confidential, and I will work to the best of my ability to preserve this privacy and confidentiality – and our clients’ trust – throughout my time with #{APPLICATION_NAME || "database"}.
+  %p= submit_tag 'Sign up'