RubyGems - authentasaurus - Versions diffs - 0.8.8 → 0.8.9 - Mend

authentasaurus 0.8.8 → 0.8.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (146) hide show

data/lib/authentasaurus/ar/models/recovery.rb DELETED

@@ -1,34 +0,0 @@
-module Authentasaurus::Ar::Models
-  module Recovery
-    extend ActiveSupport::Concern
-    included do
-      require "digest/sha1"
-      unloadable
-      belongs_to :user
-    	before_validation :make_token!, :on => :create
-      before_save :send_recovery
-    	scope :valid, lambda { { :conditions => ["updated_at <= ?", Authentasaurus::Configuration.instance.configuration[:modules][:recoverable][:token_expires_after].days.from_now] } }
-    	validates_uniqueness_of :user_id
-    	validates_presence_of :email
-    	validates_presence_of :user_id, :message => :"recovery.user_id.blank"
-    	validates_format_of :email, :with => %r{[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}}
-    end
-    module ClassMethods
-    end
-    def make_token!
-      self.token = Digest::SHA1.hexdigest "#{Time.now.to_i} #{rand} #{self.email}"
-    end
-    def send_recovery
-  		AuthentasaurusEmailer.deliver_recovery_mail(self.user, self.token) if Authentasaurus::Configuration.instance.configuration[:modules][:recoverable][:send_email]
-    end
-  end
-end

data/lib/authentasaurus/ar/models/session.rb DELETED

@@ -1,78 +0,0 @@
-# This class represents a session model, a session authenticates a username and a password.
-#
-# A session behaves just like an ActiveRecord model
-module Authentasaurus::Ar::Models
-  module Session
-    extend ActiveSupport::Concern
-    included do # :nodoc:
-      include ActiveModel::Validations
-      include ActiveModel::Conversion
-      attr_accessor :username, :password, :remember
-      validates_presence_of :username, :password
-      attr_reader :user
-    end
-    module ClassMethods
-      # Takes a hash of attributes keys and values just like new and authenticates the information.
-      # Returns true or false
-      def create(*attrs)
-        attributes = attrs.extract_options!
-        attrs = attrs.flatten
-        self_obj = self.new attributes
-        self_obj.save(attrs)
-        return self_obj
-      end
-      # Takes an id (usually from an ActiveController session) and returns a User object
-      def current_user(id, session_type = Authentasaurus::Configuration.instance.user_model.to_sym)
-        session_type.to_s.camelize.constantize.find id
-      end
-    end
-    # Takes a hash of attributes keys and values just like ActiveRecord models
-    def initialize(attributes = nil)
-      if attributes
-        attributes.each do |key,value|
-          send(key.to_s + '=', value)
-        end
-      else
-        self.remember = false
-      end
-    end
-    # Authenticates the information saved in the attributes
-    # Returns true or false
-    def save(*session_types)
-      session_types = session_types.flatten
-      if session_types.empty?
-        user_model = Authentasaurus::Configuration.instance.user_model.to_sym
-        session_types = [user_model]
-      end
-      ret = true
-      session_types.each do |type|
-        @user = type.to_s.camelize.constantize.authenticate(self.username.downcase, self.password, self.remember == "1")
-        if @user.nil?
-          self.errors.add_to_base I18n.t(:invalid_login, :scope => [:authentasaurus, :messages, :sessions])
-          ret &= false
-        else
-          ret = true
-          break
-        end
-      end
-      ret
-    end
-    def new_record? #:nodoc:
-      true
-    end
-    def persisted? #:nodoc:
-      false
-    end
-  end
-end

data/lib/authentasaurus/ar/models/user_invitation.rb DELETED

@@ -1,30 +0,0 @@
-module Authentasaurus::Ar::Models
-  module UserInvitation
-    extend ActiveSupport::Concern
-    included do
-      require 'digest/sha2'
-      validates_presence_of :email
-      validates_uniqueness_of :email, :scope => :token
-      validates_format_of :email, :with => %r{[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}}
-      before_validation :create_token
-      #send email
-      after_create :send_invitation
-    end
-    module ClassMethods
-    end
-    def send_invitation
-      AuthentasaurusEmailer.deliver_invitation_mail(self.email, self.token) if Authentasaurus::Configuration.instance.configuration[:modules][:invitable][:send_email]
-    end
-    private
-    def create_token
-      return if self.email.nil? || self.email.blank?
-      string_to_hash=self.email + "invitable.olation" + self.email.hash.to_s
-  		self.token = Digest::SHA2.hexdigest(string_to_hash)
-    end
-  end
-end

data/lib/authentasaurus/ar/models/validation.rb DELETED

@@ -1,27 +0,0 @@
-module Authentasaurus::Ar::Models
-  module Validation
-    extend ActiveSupport::Concern
-    included do
-      belongs_to :user, :polymorphic => true
-      # Check that everything is there
-      validates_presence_of :user_id, :validation_code, :user_type, :email
-      # Check foreign keys
-      validates_associated :user
-      # Check unique user
-      validates_uniqueness_of :user_id, :scope => [:user_type, :email]
-      validates_uniqueness_of :validation_code
-      #send email
-      after_create :send_validation
-    end
-    module ClassMethods
-    end
-    def send_validation
-      AuthentasaurusEmailer.deliver_validation_mail(self.user.name, self.email, self.validation_code) if Authentasaurus::Configuration.instance.configuration[:modules][:validatable][:send_email]
-    end
-  end
-end

data/lib/authentasaurus/arel/acts_as_authenticatable.rb DELETED

@@ -1,67 +0,0 @@
-module Authentasaurus::Arel
-  module ActsAsAuthenticatable
-    extend ActiveSupport::Concern
-    module ClassMethods
-      ## Authenticates the username and password
-      def authenticate(username, password, remember = false)
-        case(self.format)
-        when ActiveResource::Formats::XmlFormat
-          user = self.new Hash.from_xml(self.post(:signin,:username => username, :password => password, :remember => remember).body).values.first
-        when ActiveResource::Formats::JsonFormat
-          user = self.new ActiveSupport::JSON.decode(self.post(:signin,:username => username, :password => password, :remember => remember).body)
-        else
-          user = self.new Hash.from_xml(self.post(:signin,:username => username, :password => password, :remember => remember).body).values.first
-        end
-        unless user.nil?
-          if self.sync && !self.sync_to.nil?
-            last_update = user.attributes.delete "updated_at"
-            local_user = self.sync_to.find_or_initialize_by_username user.username, user.attributes
-            unless local_user.new_record?
-              last_update_datetime = (last_update.kind_of?(String)) ? (DateTime.parse(last_update)) : (last_update)
-              if local_user.updated_at < last_update_datetime
-                local_user.update_attributes user.attributes
-              end
-            else
-              local_user.password = password
-              local_user.password_confirmation = password
-              local_user.hashed_password = user.hashed_password
-              local_user.password_seed = user.password_seed
-              self.sync_to.default_data.each do |key,value|
-                local_user.send(key.to_s + '=', value)
-              end
-              local_user.save
-            end
-          end
-        end
-        return user
-      end
-    end
-    def sync
-      if self.class.sync && !self.class.sync_to.nil?
-        user = self.dup
-        last_update = user.attributes.delete "updated_at"
-        local_user = self.class.sync_to.find_or_initialize_by_username user.username, user.attributes
-        unless local_user.new_record?
-          local_user.update_attributes user.attributes
-        else
-          self.sync_to.default_data.each do |key,value|
-            local_user.send(key.to_s + '=', value)
-          end
-          local_user.save
-        end
-      else
-        false
-      end
-    end
-  end
-end

data/lib/authentasaurus/arel/authenticatable.rb DELETED

@@ -1,21 +0,0 @@
-module Authentasaurus::Arel
-  module Authenticatable
-    extend ActiveSupport::Concern
-    module ClassMethods
-      def authenticatable(*args)
-        self.unloadable
-        options = args.extract_options!
-        self.site = options[:site] || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:site]
-        self.element_name = options[:session_element].try(:to_s) || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:session_element]
-        self.sync = options[:sync] || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:sync]
-        self.sync_to = options[:sync_to].try(:to_s).try(:camelize).try(:constantize) || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:sync_to].camelize.constantize
-        # include authentication methods
-        include Authentasaurus::Arel::ActsAsAuthenticatable
-      end
-    end
-  end
-end

data/lib/authentasaurus/authorization.rb DELETED

@@ -1,344 +0,0 @@
-# =Authorization Helpers
-# The authorization module provides helpers for restricting access to your controllers.
-#
-# Each controller is considered an area in Authentasaurus, for example UsersController stands for
-# "users" area. Each area must be defined in the Areas table so Authentasaurus can control access
-# to it.
-#
-# Authentasaurus provides a simple rake task to define areas automatically:
-#
-#  rake authentasaurus:create_areas
-#
-# == Restricting Access
-# You can restrict access to any controller using one of the following class methods on your
-# controller.
-#
-# At login, Authentasaurus will load the permissions of the group the user belongs to in the session
-# and will use them to authorize access to the area.
-#
-# There are three levels of restriction in Authentasaurus, login, read and write; with the exception
-# of login, read and write don't have any logic behind them; they are defined using the Permission and
-# are only symbolically named i.e.: you can use read instead of write and vice versa it only depends on
-# how you use them.
-#
-# === Restricting access to logged in users
-# You can restrict access to an area to logged in users only using the ActionController::ClassMethods#require_login
-# class method.
-#
-# Consider the following example restricting access to the pages controller to only logged in users:
-#
-#   class PagesController < ActionController::Base
-#     require_login
-#     ...
-#   end
-#
-# You can also specify which actions to restrict:
-#
-#   require_login :new, :create, :index
-#
-# Authentasaurus will automatically redirect users to the sign-in page if they try accessing the area
-# while they are not logged in. Once the user logs in he/she is redirected back to his/her original destination
-# unless you explicitly skip that behaviour:
-#
-#   require_login :skip_request => true
-#
-# === Restricting access according to permissions
-# Unlike the login restriction, permissions restrictions checks if the user is logged in and has
-# the permission to access the area.
-#
-# Users get permissions from their parent group and permissions are dynamically set in the database.
-#
-# Authentasaurus currently supports only two permissions, read and write, both permissions are
-# symbolically named, they have no meaning.
-#
-# ==== Restricting access to users with read permission
-#
-#   class PagesController < ActionController::Base
-#     require_read
-#     ...
-#   end
-#
-# ActionController::ClassMethods#require_read takes the same options as ActionController::ClassMethods#require_login
-# and ActionController::ClassMethods#require_write
-#
-# ==== Restricting access to users with write permission
-#
-#   class PagesController < ActionController::Base
-#     require_write
-#     ...
-#   end
-#
-# ActionController::ClassMethods#require_write takes the same options as ActionController::ClassMethods#require_login
-# and ActionController::ClassMethods#require_read
-#
-# == Checking if the user is logged in in actions or views
-# Along with the class helpers, Authentasaurus includes a helper to check if the user is logged in
-# inside any of your actions:
-#
-#   is_logged_in?
-#
-# Check ActionController::CommonInstanceMethods#is_logged_in? for more information.
-#
-# == Checking permissions in actions or views
-# You can also check if the logged in user has a certain permission.
-#
-# Consider the following example to check if the logged in user has read permission on the current
-# area
-#
-#   has?(:read)
-#
-# You can also check permissions on an area while in another, for example to check if the current
-# user has write permission on the users area:
-#
-#   has?(:write,:users)
-#
-# Check ActionController::CommonInstanceMethods#has? for more information.
-#
-# == Retrieving the current user in actions or views
-# To get the logged in user you can use the following helper:
-#
-#   current_user
-#
-# Check ActionController::CommonInstanceMethods#current_user for more information.
-module Authentasaurus::Authorization
-  module CommonInstanceMethods
-    # Returns an object of the current user
-    #
-    # <b>Parameters:</b>
-    #
-    #   user_model  - The model class representing a user (User by default)
-    def current_user(user_model = nil)#:doc:
-      user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-      return user_model.find session[:user_id] if session[:user_id]
-    end
-    # Checks if the current user has the appropriate permission
-    #
-    # <b>ex</b>:
-    #    has?(:write) or has?(:read, :users)
-    #
-    # <b>Parameters:</b>
-    #
-    #   permission  - The permission to check, either :read or :write
-    #   area        - The area to check the permission on, by default checks the current area.
-    def has?(permission, area = nil) #:doc:
-      return false unless is_logged_in?
-      check = false
-      case permission
-      when :write
-        unless area
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==self.controller_name || perm=="all" }
-        else
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==area.to_s || perm=="all" }
-        end
-      when :read
-        unless area
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==self.controller_name || perm=="all" }
-        else
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==area.to_s || perm=="all" }
-        end
-      end
-      return check
-    end
-    # Checks if the current user is logged in but takes no further action
-    #
-    # <b>Parameters:</b>
-    #
-    #   user_model  - The model class representing a user (User by default)
-    def is_logged_in?(user_model = nil) #:doc:
-      user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-      unless user_model.find_by_id(session[:user_id]) || !defined?(cookie_login?)
-        return cookie_login?(user_model)
-      end
-			return true
-    end
-  end
-  module ActionController
-    def self.included(base) # :nodoc:
-      base.send :extend, ClassMethods
-      base.send :include, InstanceMethods
-    end
-    module ClassMethods
-      # Requires the user to login before accessing the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the action destroy requires login and that Authentasaurus
-      # shouldn't store the request in the session (typically for logout actions).
-      #
-      #   require_login :destroy, :skip_request => true
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_login (*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    		    controller.instance_eval {check_logged_in !options[:skip_request].nil?, options[:user_model]}
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval {check_logged_in !options[:skip_request].nil?, options[:user_model]}
-          end
-        end
-      end
-      # Requires the user to have a write permission to that area to access the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the actions create_user and delete_user requires login and write
-      # permission.
-      #
-      #   require_write :create_user, :delete_user
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_write(*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    			  controller.instance_eval { check_write_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval {check_write_permissions !options[:skip_request].nil?, options[:user_model]}
-          end
-        end
-      end
-      # Requires the user to have a read permission to that area to access the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the action show_user requires login and read permission.
-      #
-      #   require_read :show_user
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_read(*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    			  controller.instance_eval { check_read_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval { check_read_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        end
-      end
-    end
-    module InstanceMethods #:nodoc:
-      private
-      include CommonInstanceMethods
-      # Checks if the current user is logged in and redirects to the login path if the user is not logged in.
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_logged_in(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        unless is_logged_in?(user_model)
-          login_required skip_request
-        end
-      end
-      # Checks if the current user is logged in and has write permission over the current controller, redirects to no access
-      # page if the user hasn't the permissions and redirects to the login path if the user is not logged in
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_write_permissions(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if is_logged_in?(user_model) && user_model.new.respond_to?(:permissions)
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==self.controller_name || perm=="all" }
-          unless check
-            redirect_to no_access_authentasaurus_sessions_path
-          end
-        else
-          login_required skip_request
-        end
-      end
-      # Checks if the current user is logged in and has read permission over the current controller, redirects to no access
-      # page if the user hasn't the permissions and redirects to the login path if the user is not logged in
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_read_permissions(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if is_logged_in?(user_model) && user_model.new.respond_to?(:permissions)
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==self.controller_name || perm=="all" }
-          unless check
-            redirect_to no_access_authentasaurus_sessions_path
-          end
-        else
-          login_required skip_request
-        end
-      end
-      # Logs in the user through a remember me cookie
-      def cookie_login?(user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if cookies[:remember_me_token]
-          user = user_model.find_by_remember_me_token cookies[:remember_me_token]
-          if user.nil?
-            cookies.delete :remember_me_token
-            return false
-          else
-            session[:user_id] = user.id
-            session[:user_permissions] = {:read => user.permissions.collect{|per| per.area.name if per.read}, :write => user.permissions.collect{|per| per.area.name if per.write}}
-            return true
-          end
-        else
-          return false
-        end
-      end
-      # Redirects the user to the login page
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def login_required(skip_request) #:nodoc:
-        unless(skip_request)
-          session[:original_url]=request.url
-        end
-        flash.now[:alert] = t(:login_required, :scope => [:authentasaurus, :action_controller, :errors, :messages])
-        redirect_to new_authentasaurus_session_path
-      end
-      def controller_instance #:nodoc:
-        self
-      end
-    end
-  end
-  module ActionView # :nodoc:
-    def self.included(base)
-      base.send :include, CommonInstanceMethods
-    end
-  end
-end