RubyGems - authentasaurus - Versions diffs - 0.8.8 → 0.8.9 - Mend

authentasaurus 0.8.8 → 0.8.9

Files changed (146) hide show

data/lib/authentasaurus/ar/models/recovery.rb DELETED

@@ -1,34 +0,0 @@
-module Authentasaurus::Ar::Models
-  module Recovery
-    extend ActiveSupport::Concern
-    included do
-      require "digest/sha1"
-      unloadable
-      belongs_to :user
-    	before_validation :make_token!, :on => :create
-      before_save :send_recovery
-    	scope :valid, lambda { { :conditions => ["updated_at <= ?", Authentasaurus::Configuration.instance.configuration[:modules][:recoverable][:token_expires_after].days.from_now] } }
-    	validates_uniqueness_of :user_id
-    	validates_presence_of :email
-    	validates_presence_of :user_id, :message => :"recovery.user_id.blank"
-    	validates_format_of :email, :with => %r{[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}}
-    end
-    module ClassMethods
-    end
-    def make_token!
-      self.token = Digest::SHA1.hexdigest "#{Time.now.to_i} #{rand} #{self.email}"
-    end
-    def send_recovery
-  		AuthentasaurusEmailer.deliver_recovery_mail(self.user, self.token) if Authentasaurus::Configuration.instance.configuration[:modules][:recoverable][:send_email]
-    end
-  end
-end

data/lib/authentasaurus/ar/models/session.rb DELETED

@@ -1,78 +0,0 @@
-# This class represents a session model, a session authenticates a username and a password.
-#
-# A session behaves just like an ActiveRecord model
-module Authentasaurus::Ar::Models
-  module Session
-    extend ActiveSupport::Concern
-    included do # :nodoc:
-      include ActiveModel::Validations
-      include ActiveModel::Conversion
-      attr_accessor :username, :password, :remember
-      validates_presence_of :username, :password
-      attr_reader :user
-    end
-    module ClassMethods
-      # Takes a hash of attributes keys and values just like new and authenticates the information.
-      # Returns true or false
-      def create(*attrs)
-        attributes = attrs.extract_options!
-        attrs = attrs.flatten
-        self_obj = self.new attributes
-        self_obj.save(attrs)
-        return self_obj
-      end
-      # Takes an id (usually from an ActiveController session) and returns a User object
-      def current_user(id, session_type = Authentasaurus::Configuration.instance.user_model.to_sym)
-        session_type.to_s.camelize.constantize.find id
-      end
-    end
-    # Takes a hash of attributes keys and values just like ActiveRecord models
-    def initialize(attributes = nil)
-      if attributes
-        attributes.each do |key,value|
-          send(key.to_s + '=', value)
-        end
-      else
-        self.remember = false
-      end
-    end
-    # Authenticates the information saved in the attributes
-    # Returns true or false
-    def save(*session_types)
-      session_types = session_types.flatten
-      if session_types.empty?
-        user_model = Authentasaurus::Configuration.instance.user_model.to_sym
-        session_types = [user_model]
-      end
-      ret = true
-      session_types.each do |type|
-        @user = type.to_s.camelize.constantize.authenticate(self.username.downcase, self.password, self.remember == "1")
-        if @user.nil?
-          self.errors.add_to_base I18n.t(:invalid_login, :scope => [:authentasaurus, :messages, :sessions])
-          ret &= false
-        else
-          ret = true
-          break
-        end
-      end
-      ret
-    end
-    def new_record? #:nodoc:
-      true
-    end
-    def persisted? #:nodoc:
-      false
-    end
-  end
-end

data/lib/authentasaurus/ar/models/user_invitation.rb DELETED

@@ -1,30 +0,0 @@
-module Authentasaurus::Ar::Models
-  module UserInvitation
-    extend ActiveSupport::Concern
-    included do
-      require 'digest/sha2'
-      validates_presence_of :email
-      validates_uniqueness_of :email, :scope => :token
-      validates_format_of :email, :with => %r{[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,4}}
-      before_validation :create_token
-      #send email
-      after_create :send_invitation
-    end
-    module ClassMethods
-    end
-    def send_invitation
-      AuthentasaurusEmailer.deliver_invitation_mail(self.email, self.token) if Authentasaurus::Configuration.instance.configuration[:modules][:invitable][:send_email]
-    end
-    private
-    def create_token
-      return if self.email.nil? || self.email.blank?
-      string_to_hash=self.email + "invitable.olation" + self.email.hash.to_s
-  		self.token = Digest::SHA2.hexdigest(string_to_hash)
-    end
-  end
-end

data/lib/authentasaurus/ar/models/validation.rb DELETED

@@ -1,27 +0,0 @@
-module Authentasaurus::Ar::Models
-  module Validation
-    extend ActiveSupport::Concern
-    included do
-      belongs_to :user, :polymorphic => true
-      # Check that everything is there
-      validates_presence_of :user_id, :validation_code, :user_type, :email
-      # Check foreign keys
-      validates_associated :user
-      # Check unique user
-      validates_uniqueness_of :user_id, :scope => [:user_type, :email]
-      validates_uniqueness_of :validation_code
-      #send email
-      after_create :send_validation
-    end
-    module ClassMethods
-    end
-    def send_validation
-      AuthentasaurusEmailer.deliver_validation_mail(self.user.name, self.email, self.validation_code) if Authentasaurus::Configuration.instance.configuration[:modules][:validatable][:send_email]
-    end
-  end
-end

data/lib/authentasaurus/arel/acts_as_authenticatable.rb DELETED

@@ -1,67 +0,0 @@
-module Authentasaurus::Arel
-  module ActsAsAuthenticatable
-    extend ActiveSupport::Concern
-    module ClassMethods
-      ## Authenticates the username and password
-      def authenticate(username, password, remember = false)
-        case(self.format)
-        when ActiveResource::Formats::XmlFormat
-          user = self.new Hash.from_xml(self.post(:signin,:username => username, :password => password, :remember => remember).body).values.first
-        when ActiveResource::Formats::JsonFormat
-          user = self.new ActiveSupport::JSON.decode(self.post(:signin,:username => username, :password => password, :remember => remember).body)
-        else
-          user = self.new Hash.from_xml(self.post(:signin,:username => username, :password => password, :remember => remember).body).values.first
-        end
-        unless user.nil?
-          if self.sync && !self.sync_to.nil?
-            last_update = user.attributes.delete "updated_at"
-            local_user = self.sync_to.find_or_initialize_by_username user.username, user.attributes
-            unless local_user.new_record?
-              last_update_datetime = (last_update.kind_of?(String)) ? (DateTime.parse(last_update)) : (last_update)
-              if local_user.updated_at < last_update_datetime
-                local_user.update_attributes user.attributes
-              end
-            else
-              local_user.password = password
-              local_user.password_confirmation = password
-              local_user.hashed_password = user.hashed_password
-              local_user.password_seed = user.password_seed
-              self.sync_to.default_data.each do |key,value|
-                local_user.send(key.to_s + '=', value)
-              end
-              local_user.save
-            end
-          end
-        end
-        return user
-      end
-    end
-    def sync
-      if self.class.sync && !self.class.sync_to.nil?
-        user = self.dup
-        last_update = user.attributes.delete "updated_at"
-        local_user = self.class.sync_to.find_or_initialize_by_username user.username, user.attributes
-        unless local_user.new_record?
-          local_user.update_attributes user.attributes
-        else
-          self.sync_to.default_data.each do |key,value|
-            local_user.send(key.to_s + '=', value)
-          end
-          local_user.save
-        end
-      else
-        false
-      end
-    end
-  end
-end

data/lib/authentasaurus/arel/authenticatable.rb DELETED

@@ -1,21 +0,0 @@
-module Authentasaurus::Arel
-  module Authenticatable
-    extend ActiveSupport::Concern
-    module ClassMethods
-      def authenticatable(*args)
-        self.unloadable
-        options = args.extract_options!
-        self.site = options[:site] || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:site]
-        self.element_name = options[:session_element].try(:to_s) || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:session_element]
-        self.sync = options[:sync] || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:sync]
-        self.sync_to = options[:sync_to].try(:to_s).try(:camelize).try(:constantize) || Authentasaurus::Configuration.instance.configuration[:modules][:remote][self.name.underscore.gsub(/_sync/, "").to_sym][:sync_to].camelize.constantize
-        # include authentication methods
-        include Authentasaurus::Arel::ActsAsAuthenticatable
-      end
-    end
-  end
-end

data/lib/authentasaurus/authorization.rb DELETED

@@ -1,344 +0,0 @@
-# =Authorization Helpers
-# The authorization module provides helpers for restricting access to your controllers.
-#
-# Each controller is considered an area in Authentasaurus, for example UsersController stands for
-# "users" area. Each area must be defined in the Areas table so Authentasaurus can control access
-# to it.
-#
-# Authentasaurus provides a simple rake task to define areas automatically:
-#
-#  rake authentasaurus:create_areas
-#
-# == Restricting Access
-# You can restrict access to any controller using one of the following class methods on your
-# controller.
-#
-# At login, Authentasaurus will load the permissions of the group the user belongs to in the session
-# and will use them to authorize access to the area.
-#
-# There are three levels of restriction in Authentasaurus, login, read and write; with the exception
-# of login, read and write don't have any logic behind them; they are defined using the Permission and
-# are only symbolically named i.e.: you can use read instead of write and vice versa it only depends on
-# how you use them.
-#
-# === Restricting access to logged in users
-# You can restrict access to an area to logged in users only using the ActionController::ClassMethods#require_login
-# class method.
-#
-# Consider the following example restricting access to the pages controller to only logged in users:
-#
-#   class PagesController < ActionController::Base
-#     require_login
-#     ...
-#   end
-#
-# You can also specify which actions to restrict:
-#
-#   require_login :new, :create, :index
-#
-# Authentasaurus will automatically redirect users to the sign-in page if they try accessing the area
-# while they are not logged in. Once the user logs in he/she is redirected back to his/her original destination
-# unless you explicitly skip that behaviour:
-#
-#   require_login :skip_request => true
-#
-# === Restricting access according to permissions
-# Unlike the login restriction, permissions restrictions checks if the user is logged in and has
-# the permission to access the area.
-#
-# Users get permissions from their parent group and permissions are dynamically set in the database.
-#
-# Authentasaurus currently supports only two permissions, read and write, both permissions are
-# symbolically named, they have no meaning.
-#
-# ==== Restricting access to users with read permission
-#
-#   class PagesController < ActionController::Base
-#     require_read
-#     ...
-#   end
-#
-# ActionController::ClassMethods#require_read takes the same options as ActionController::ClassMethods#require_login
-# and ActionController::ClassMethods#require_write
-#
-# ==== Restricting access to users with write permission
-#
-#   class PagesController < ActionController::Base
-#     require_write
-#     ...
-#   end
-#
-# ActionController::ClassMethods#require_write takes the same options as ActionController::ClassMethods#require_login
-# and ActionController::ClassMethods#require_read
-#
-# == Checking if the user is logged in in actions or views
-# Along with the class helpers, Authentasaurus includes a helper to check if the user is logged in
-# inside any of your actions:
-#
-#   is_logged_in?
-#
-# Check ActionController::CommonInstanceMethods#is_logged_in? for more information.
-#
-# == Checking permissions in actions or views
-# You can also check if the logged in user has a certain permission.
-#
-# Consider the following example to check if the logged in user has read permission on the current
-# area
-#
-#   has?(:read)
-#
-# You can also check permissions on an area while in another, for example to check if the current
-# user has write permission on the users area:
-#
-#   has?(:write,:users)
-#
-# Check ActionController::CommonInstanceMethods#has? for more information.
-#
-# == Retrieving the current user in actions or views
-# To get the logged in user you can use the following helper:
-#
-#   current_user
-#
-# Check ActionController::CommonInstanceMethods#current_user for more information.
-module Authentasaurus::Authorization
-  module CommonInstanceMethods
-    # Returns an object of the current user
-    #
-    # <b>Parameters:</b>
-    #
-    #   user_model  - The model class representing a user (User by default)
-    def current_user(user_model = nil)#:doc:
-      user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-      return user_model.find session[:user_id] if session[:user_id]
-    end
-    # Checks if the current user has the appropriate permission
-    #
-    # <b>ex</b>:
-    #    has?(:write) or has?(:read, :users)
-    #
-    # <b>Parameters:</b>
-    #
-    #   permission  - The permission to check, either :read or :write
-    #   area        - The area to check the permission on, by default checks the current area.
-    def has?(permission, area = nil) #:doc:
-      return false unless is_logged_in?
-      check = false
-      case permission
-      when :write
-        unless area
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==self.controller_name || perm=="all" }
-        else
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==area.to_s || perm=="all" }
-        end
-      when :read
-        unless area
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==self.controller_name || perm=="all" }
-        else
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==area.to_s || perm=="all" }
-        end
-      end
-      return check
-    end
-    # Checks if the current user is logged in but takes no further action
-    #
-    # <b>Parameters:</b>
-    #
-    #   user_model  - The model class representing a user (User by default)
-    def is_logged_in?(user_model = nil) #:doc:
-      user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-      unless user_model.find_by_id(session[:user_id]) || !defined?(cookie_login?)
-        return cookie_login?(user_model)
-      end
-			return true
-    end
-  end
-  module ActionController
-    def self.included(base) # :nodoc:
-      base.send :extend, ClassMethods
-      base.send :include, InstanceMethods
-    end
-    module ClassMethods
-      # Requires the user to login before accessing the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the action destroy requires login and that Authentasaurus
-      # shouldn't store the request in the session (typically for logout actions).
-      #
-      #   require_login :destroy, :skip_request => true
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_login (*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    		    controller.instance_eval {check_logged_in !options[:skip_request].nil?, options[:user_model]}
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval {check_logged_in !options[:skip_request].nil?, options[:user_model]}
-          end
-        end
-      end
-      # Requires the user to have a write permission to that area to access the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the actions create_user and delete_user requires login and write
-      # permission.
-      #
-      #   require_write :create_user, :delete_user
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_write(*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    			  controller.instance_eval { check_write_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval {check_write_permissions !options[:skip_request].nil?, options[:user_model]}
-          end
-        end
-      end
-      # Requires the user to have a read permission to that area to access the actions specified
-      #
-      # <b>ex:</b> Tells Authentasaurus that the action show_user requires login and read permission.
-      #
-      #   require_read :show_user
-      #
-      # <b>Options</b>
-      #
-      #   :skip_request - skips saving the original request (to redirect to after login)
-      #   :user_model   - if defined, authentasaurus will use that model instead of the default "User"
-      #   :if           - specifies a method, proc or string to call to determine if the authorization should occur
-      #   :unless       - specifies a method, proc or string to call to determine if the authorization should not occur
-      def require_read(*attrs)
-        options = attrs.extract_options!.symbolize_keys
-        attrs = attrs.flatten
-        unless attrs.empty?
-          before_filter :only => attrs, :if => options[:if], :unless => options[:unless] do |controller|
-    			  controller.instance_eval { check_read_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        else
-          before_filter :if => options[:if], :unless => options[:unless] do |c|
-    			  c.instance_eval { check_read_permissions !options[:skip_request].nil?, options[:user_model] }
-          end
-        end
-      end
-    end
-    module InstanceMethods #:nodoc:
-      private
-      include CommonInstanceMethods
-      # Checks if the current user is logged in and redirects to the login path if the user is not logged in.
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_logged_in(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        unless is_logged_in?(user_model)
-          login_required skip_request
-        end
-      end
-      # Checks if the current user is logged in and has write permission over the current controller, redirects to no access
-      # page if the user hasn't the permissions and redirects to the login path if the user is not logged in
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_write_permissions(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if is_logged_in?(user_model) && user_model.new.respond_to?(:permissions)
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:write].find { |perm| perm==self.controller_name || perm=="all" }
-          unless check
-            redirect_to no_access_authentasaurus_sessions_path
-          end
-        else
-          login_required skip_request
-        end
-      end
-      # Checks if the current user is logged in and has read permission over the current controller, redirects to no access
-      # page if the user hasn't the permissions and redirects to the login path if the user is not logged in
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def check_read_permissions(skip_request = false, user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if is_logged_in?(user_model) && user_model.new.respond_to?(:permissions)
-          user_permissions = session[:user_permissions]
-          check = user_permissions[:read].find { |perm| perm==self.controller_name || perm=="all" }
-          unless check
-            redirect_to no_access_authentasaurus_sessions_path
-          end
-        else
-          login_required skip_request
-        end
-      end
-      # Logs in the user through a remember me cookie
-      def cookie_login?(user_model = nil) #:nodoc:
-        user_model = Authentasaurus::Configuration.instance.user_model.camelize.constantize if user_model.nil?
-        if cookies[:remember_me_token]
-          user = user_model.find_by_remember_me_token cookies[:remember_me_token]
-          if user.nil?
-            cookies.delete :remember_me_token
-            return false
-          else
-            session[:user_id] = user.id
-            session[:user_permissions] = {:read => user.permissions.collect{|per| per.area.name if per.read}, :write => user.permissions.collect{|per| per.area.name if per.write}}
-            return true
-          end
-        else
-          return false
-        end
-      end
-      # Redirects the user to the login page
-      #
-      # If skip_request is set to true, the user won't be redirected to the original url after he/she logs in.
-      def login_required(skip_request) #:nodoc:
-        unless(skip_request)
-          session[:original_url]=request.url
-        end
-        flash.now[:alert] = t(:login_required, :scope => [:authentasaurus, :action_controller, :errors, :messages])
-        redirect_to new_authentasaurus_session_path
-      end
-      def controller_instance #:nodoc:
-        self
-      end
-    end
-  end
-  module ActionView # :nodoc:
-    def self.included(base)
-      base.send :include, CommonInstanceMethods
-    end
-  end
-end