RubyGems - barkest_core - Versions diffs - 1.5.3.0 - Mend

barkest_core 1.5.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (308) hide show

checksums.yaml +7 -0
data/.gitignore +13 -0
data/Gemfile +22 -0
data/Gemfile.lock +254 -0
data/MIT-LICENSE +20 -0
data/README.md +364 -0
data/Rakefile +37 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Bold.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-BoldItalic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Italic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Regular.ttf +0 -0
data/app/assets/images/barkest_core/.keep +0 -0
data/app/assets/images/barkest_core/barcode-B.svg +181 -0
data/app/assets/javascripts/barkest_core/.keep +0 -0
data/app/assets/javascripts/barkest_core/application.js +22 -0
data/app/assets/javascripts/barkest_core/bootstrap-datepicker.js +1800 -0
data/app/assets/javascripts/barkest_core/field_init.js +7 -0
data/app/assets/javascripts/barkest_core/jquery.doubleScroll.js +112 -0
data/app/assets/javascripts/barkest_core/masked_edit.js +25 -0
data/app/assets/javascripts/barkest_core/system_status.js.erb +201 -0
data/app/assets/stylesheets/barkest_core/.keep +0 -0
data/app/assets/stylesheets/barkest_core/application.css +17 -0
data/app/assets/stylesheets/barkest_core/custom.css.scss +264 -0
data/app/assets/stylesheets/barkest_core/datepicker3.css +790 -0
data/app/controllers/.keep +0 -0
data/app/controllers/access_groups_controller.rb +74 -0
data/app/controllers/account_activations_controller.rb +29 -0
data/app/controllers/application_controller.rb +5 -0
data/app/controllers/barkest_core/application_controller_base.rb +113 -0
data/app/controllers/barkest_core/engine_controller_base.rb +15 -0
data/app/controllers/barkest_core/testsub_controller.rb +21 -0
data/app/controllers/contact_controller.rb +32 -0
data/app/controllers/log_view_controller.rb +31 -0
data/app/controllers/password_resets_controller.rb +126 -0
data/app/controllers/sessions_controller.rb +64 -0
data/app/controllers/status_controller.rb +150 -0
data/app/controllers/system_config_controller.rb +238 -0
data/app/controllers/system_update_controller.rb +164 -0
data/app/controllers/test_access_controller.rb +44 -0
data/app/controllers/test_report_controller.rb +75 -0
data/app/controllers/users_controller.rb +218 -0
data/app/helpers/.keep +0 -0
data/app/helpers/barkest_core/application_helper.rb +134 -0
data/app/helpers/barkest_core/form_helper.rb +469 -0
data/app/helpers/barkest_core/html_helper.rb +70 -0
data/app/helpers/barkest_core/misc_helper.rb +68 -0
data/app/helpers/barkest_core/pdf_helper.rb +180 -0
data/app/helpers/barkest_core/recaptcha_helper.rb +115 -0
data/app/helpers/barkest_core/sessions_helper.rb +94 -0
data/app/helpers/barkest_core/status_helper.rb +118 -0
data/app/helpers/barkest_core/users_helper.rb +32 -0
data/app/mailers/.keep +0 -0
data/app/mailers/application_mailer.rb +5 -0
data/app/mailers/barkest_core/application_mailer_base.rb +30 -0
data/app/mailers/barkest_core/contact_form.rb +20 -0
data/app/mailers/barkest_core/user_mailer.rb +44 -0
data/app/models/.keep +0 -0
data/app/models/access_group.rb +121 -0
data/app/models/access_group_group_member.rb +13 -0
data/app/models/access_group_user_member.rb +11 -0
data/app/models/barkest_core/auth_config.rb +95 -0
data/app/models/barkest_core/authorize_failure.rb +7 -0
data/app/models/barkest_core/contact_message.rb +37 -0
data/app/models/barkest_core/database_config.rb +223 -0
data/app/models/barkest_core/db_table.rb +21 -0
data/app/models/barkest_core/email_config.rb +132 -0
data/app/models/barkest_core/global_status.rb +267 -0
data/app/models/barkest_core/log_entry.rb +101 -0
data/app/models/barkest_core/log_view_options.rb +51 -0
data/app/models/barkest_core/ms_sql_db_definition.rb +441 -0
data/app/models/barkest_core/ms_sql_definition.rb +221 -0
data/app/models/barkest_core/ms_sql_function.rb +423 -0
data/app/models/barkest_core/not_logged_in.rb +7 -0
data/app/models/barkest_core/pdf_table_builder.rb +407 -0
data/app/models/barkest_core/self_update_config.rb +37 -0
data/app/models/barkest_core/user_alert.rb +29 -0
data/app/models/barkest_core/user_alert_generators.rb +58 -0
data/app/models/barkest_core/user_manager.rb +404 -0
data/app/models/barkest_core/work_path.rb +74 -0
data/app/models/disable_user.rb +18 -0
data/app/models/ldap_access_group.rb +15 -0
data/app/models/system_config.rb +99 -0
data/app/models/user.rb +405 -0
data/app/models/user_login_history.rb +11 -0
data/app/views/.keep +0 -0
data/app/views/access_groups/_form.html.erb +19 -0
data/app/views/access_groups/edit.html.erb +2 -0
data/app/views/access_groups/index.html.erb +32 -0
data/app/views/access_groups/new.html.erb +2 -0
data/app/views/access_groups/show.html.erb +4 -0
data/app/views/barkest_core/contact_form/contact.html.erb +16 -0
data/app/views/barkest_core/contact_form/contact.text.erb +13 -0
data/app/views/barkest_core/testsub/_links.html.erb +5 -0
data/app/views/barkest_core/testsub/page1.html.erb +3 -0
data/app/views/barkest_core/testsub/page2.html.erb +2 -0
data/app/views/barkest_core/testsub/page3.html.erb +2 -0
data/app/views/barkest_core/user_mailer/account_activation.html.erb +7 -0
data/app/views/barkest_core/user_mailer/account_activation.text.erb +6 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.html.erb +3 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.text.erb +5 -0
data/app/views/barkest_core/user_mailer/password_reset.html.erb +8 -0
data/app/views/barkest_core/user_mailer/password_reset.text.erb +7 -0
data/app/views/contact/index.html.erb +24 -0
data/app/views/layouts/_footer_copyright.html.erb +1 -0
data/app/views/layouts/_menu_admin.html.erb +5 -0
data/app/views/layouts/_menu_anon.html.erb +0 -0
data/app/views/layouts/_menu_auth.html.erb +3 -0
data/app/views/layouts/_menu_footer.html.erb +1 -0
data/app/views/layouts/_nav_logo.html.erb +1 -0
data/app/views/layouts/application.html.erb +2 -0
data/app/views/layouts/barkest_core/_application.html.erb +24 -0
data/app/views/layouts/barkest_core/_footer.html.erb +18 -0
data/app/views/layouts/barkest_core/_header.html.erb +38 -0
data/app/views/layouts/barkest_core/_html_mailer.html.erb +11 -0
data/app/views/layouts/barkest_core/_menu_account.html.erb +14 -0
data/app/views/layouts/barkest_core/_menu_sample.html.erb +1 -0
data/app/views/layouts/barkest_core/_messages.html.erb +4 -0
data/app/views/layouts/barkest_core/_shim.html.erb +4 -0
data/app/views/layouts/barkest_core/_subheader.html.erb +1 -0
data/app/views/layouts/barkest_core/_text_mailer.text.erb +4 -0
data/app/views/layouts/mailer.html.erb +1 -0
data/app/views/layouts/mailer.text.erb +1 -0
data/app/views/log_view/index.html.erb +100 -0
data/app/views/password_resets/edit.html.erb +20 -0
data/app/views/password_resets/new.html.erb +14 -0
data/app/views/sessions/new.html.erb +27 -0
data/app/views/shared/_error_messages.html.erb +29 -0
data/app/views/shared/_generic_user_alert.html.erb +4 -0
data/app/views/status/current.html.erb +34 -0
data/app/views/status/test.html.erb +50 -0
data/app/views/system_config/index.html.erb +25 -0
data/app/views/system_config/show_auth.html.erb +28 -0
data/app/views/system_config/show_database.html.erb +36 -0
data/app/views/system_config/show_email.html.erb +21 -0
data/app/views/system_config/show_self_update.html.erb +13 -0
data/app/views/system_update/index.html.erb +31 -0
data/app/views/system_update/new.html.erb +2 -0
data/app/views/test_access/allow_anon.html.erb +2 -0
data/app/views/test_access/require_admin.html.erb +2 -0
data/app/views/test_access/require_group_x.html.erb +2 -0
data/app/views/test_access/require_user.html.erb +2 -0
data/app/views/test_report/index.csv.csvrb +23 -0
data/app/views/test_report/index.html.erb +6 -0
data/app/views/test_report/index.pdf.prawn +50 -0
data/app/views/test_report/index.xlsx.axlsx +28 -0
data/app/views/users/_user.html.erb +57 -0
data/app/views/users/_user_details.html.erb +15 -0
data/app/views/users/_user_details_for_list.html.erb +1 -0
data/app/views/users/_user_form.html.erb +13 -0
data/app/views/users/disable_confirm.html.erb +19 -0
data/app/views/users/edit.html.erb +15 -0
data/app/views/users/index.html.erb +9 -0
data/app/views/users/new.html.erb +10 -0
data/app/views/users/show.html.erb +46 -0
data/bin/rails +12 -0
data/config/routes.rb +3 -0
data/db/migrate/20160617172539_create_access_groups.rb +10 -0
data/db/migrate/20160617172725_create_users.rb +26 -0
data/db/migrate/20160617172833_create_user_login_histories.rb +12 -0
data/db/migrate/20160622151720_create_access_group_user_members.rb +9 -0
data/db/migrate/20160622151925_create_access_group_group_members.rb +9 -0
data/db/migrate/20160701005706_create_ldap_access_groups.rb +11 -0
data/db/migrate/20161108155029_create_system_configs.rb +11 -0
data/db/seeds/barkest_core_01_create_users.rb +42 -0
data/db/seeds.rb +53 -0
data/lib/barkest_core/concerns/association_with_defaults.rb +55 -0
data/lib/barkest_core/concerns/boolean_parser.rb +88 -0
data/lib/barkest_core/concerns/date_parser.rb +181 -0
data/lib/barkest_core/concerns/email_tester.rb +55 -0
data/lib/barkest_core/concerns/encrypted_fields.rb +156 -0
data/lib/barkest_core/concerns/named_model.rb +73 -0
data/lib/barkest_core/concerns/number_parser.rb +145 -0
data/lib/barkest_core/concerns/utc_conversion.rb +60 -0
data/lib/barkest_core/engine.rb +105 -0
data/lib/barkest_core/extensions/active_record_extensions.rb +120 -0
data/lib/barkest_core/extensions/application_configuration_extensions.rb +38 -0
data/lib/barkest_core/extensions/application_extensions.rb +50 -0
data/lib/barkest_core/extensions/axlsx_extenstions.rb +157 -0
data/lib/barkest_core/extensions/fixture_set_extensions.rb +107 -0
data/lib/barkest_core/extensions/generator_extensions.rb +271 -0
data/lib/barkest_core/extensions/main_app_extensions.rb +35 -0
data/lib/barkest_core/extensions/prawn_document_extensions.rb +367 -0
data/lib/barkest_core/extensions/prawn_table_extensions.rb +131 -0
data/lib/barkest_core/extensions/router_extensions.rb +106 -0
data/lib/barkest_core/extensions/simple_formatter_extensions.rb +66 -0
data/lib/barkest_core/extensions/test_case_extensions.rb +348 -0
data/lib/barkest_core/extensions/time_extensions.rb +164 -0
data/lib/barkest_core/handlers/csv_handler.rb +30 -0
data/lib/barkest_core/version.rb +3 -0
data/lib/barkest_core.rb +324 -0
data/lib/generators/barkest/install_generator.rb +102 -0
data/lib/generators/barkest_core/actions/01_patch_application_controller.rb +55 -0
data/lib/generators/barkest_core/actions/02_patch_application_mailer.rb +56 -0
data/lib/generators/barkest_core/actions/03_patch_assets.rb +62 -0
data/lib/generators/barkest_core/actions/04_patch_layouts.rb +36 -0
data/lib/generators/barkest_core/actions/05_patch_routes.rb +93 -0
data/lib/generators/barkest_core/actions/06_patch_seeds.rb +60 -0
data/lib/generators/barkest_core/actions/07_copy_migrations.rb +51 -0
data/lib/generators/barkest_core/actions/08_configure_database.rb +52 -0
data/lib/generators/barkest_core/actions/09_configure_secrets.rb +29 -0
data/lib/generators/barkest_core/actions/99_patch_gitignore.rb +57 -0
data/lib/generators/barkest_core/install_generator.rb +17 -0
data/test/barkest_core_test.rb +83 -0
data/test/controllers/access_groups_controller_test.rb +53 -0
data/test/controllers/contact_controller_test.rb +10 -0
data/test/controllers/sessions_controller_test.rb +10 -0
data/test/controllers/users_controller_test.rb +10 -0
data/test/dummy/.gitignore +10 -0
data/test/dummy/README.rdoc +28 -0
data/test/dummy/Rakefile +6 -0
data/test/dummy/app/assets/images/.keep +0 -0
data/test/dummy/app/assets/javascripts/application.js +14 -0
data/test/dummy/app/assets/stylesheets/application.css +16 -0
data/test/dummy/app/controllers/application_controller.rb +5 -0
data/test/dummy/app/controllers/concerns/.keep +0 -0
data/test/dummy/app/helpers/application_helper.rb +2 -0
data/test/dummy/app/mailers/.keep +0 -0
data/test/dummy/app/mailers/application_mailer.rb +3 -0
data/test/dummy/app/models/.keep +0 -0
data/test/dummy/app/models/concerns/.keep +0 -0
data/test/dummy/app/views/layouts/application.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.text.erb +1 -0
data/test/dummy/app/views/system_config/show_fake.html.erb +3 -0
data/test/dummy/bin/bundle +3 -0
data/test/dummy/bin/rails +4 -0
data/test/dummy/bin/rake +4 -0
data/test/dummy/bin/setup +29 -0
data/test/dummy/config/application.rb +27 -0
data/test/dummy/config/boot.rb +5 -0
data/test/dummy/config/environment.rb +5 -0
data/test/dummy/config/environments/development.rb +47 -0
data/test/dummy/config/environments/production.rb +79 -0
data/test/dummy/config/environments/test.rb +44 -0
data/test/dummy/config/initializers/assets.rb +11 -0
data/test/dummy/config/initializers/backtrace_silencers.rb +7 -0
data/test/dummy/config/initializers/cookies_serializer.rb +3 -0
data/test/dummy/config/initializers/db_updater_ext.rb +33 -0
data/test/dummy/config/initializers/filter_parameter_logging.rb +4 -0
data/test/dummy/config/initializers/inflections.rb +16 -0
data/test/dummy/config/initializers/mime_types.rb +4 -0
data/test/dummy/config/initializers/session_store.rb +3 -0
data/test/dummy/config/initializers/sys_config_ext.rb +12 -0
data/test/dummy/config/initializers/wrap_parameters.rb +14 -0
data/test/dummy/config/locales/en.yml +23 -0
data/test/dummy/config/routes.rb +60 -0
data/test/dummy/config.ru +4 -0
data/test/dummy/db/schema.rb +95 -0
data/test/dummy/db/seeds/barkest_core_01_create_users.rb +42 -0
data/test/dummy/db/seeds.rb +51 -0
data/test/dummy/lib/assets/.keep +0 -0
data/test/dummy/log/.keep +0 -0
data/test/dummy/public/404.html +67 -0
data/test/dummy/public/422.html +67 -0
data/test/dummy/public/500.html +66 -0
data/test/dummy/public/favicon.ico +0 -0
data/test/dummy/sql/my_test_view.sql +3 -0
data/test/fixtures/access_groups.yml +21 -0
data/test/fixtures/users.yml +71 -0
data/test/helpers/barkest_core/sessions_helper_test.rb +22 -0
data/test/integration/access_group_mgmt_test.rb +33 -0
data/test/integration/access_test.rb +24 -0
data/test/integration/account_activations_access_test.rb +12 -0
data/test/integration/contact_test.rb +98 -0
data/test/integration/extra_partial_test.rb +41 -0
data/test/integration/log_view_access_test.rb +12 -0
data/test/integration/password_resets_test.rb +101 -0
data/test/integration/reports_test.rb +53 -0
data/test/integration/status_access_test.rb +27 -0
data/test/integration/system_config_access_test.rb +24 -0
data/test/integration/system_update_access_test.rb +19 -0
data/test/integration/users_access_test.rb +34 -0
data/test/integration/users_edit_test.rb +178 -0
data/test/integration/users_index_test.rb +62 -0
data/test/integration/users_login_test.rb +67 -0
data/test/integration/users_signup_test.rb +54 -0
data/test/mailers/.keep +0 -0
data/test/mailers/barkest_core/contact_form_test.rb +28 -0
data/test/mailers/barkest_core/user_mailer_test.rb +43 -0
data/test/mailers/previews/barkest_core/contact_form_preview.rb +17 -0
data/test/mailers/previews/barkest_core/user_mailer_preview.rb +26 -0
data/test/models/access_group_group_member_test.rb +28 -0
data/test/models/access_group_test.rb +114 -0
data/test/models/access_group_user_member_test.rb +28 -0
data/test/models/barkest_core/auth_config_test.rb +57 -0
data/test/models/barkest_core/bool_parser_test.rb +28 -0
data/test/models/barkest_core/contact_message_test.rb +61 -0
data/test/models/barkest_core/database_config_test.rb +33 -0
data/test/models/barkest_core/date_parser_test.rb +110 -0
data/test/models/barkest_core/email_config_test.rb +57 -0
data/test/models/barkest_core/global_status_test.rb +50 -0
data/test/models/barkest_core/ms_sql_db_updater_test.rb +115 -0
data/test/models/barkest_core/ms_sql_definition_test.rb +102 -0
data/test/models/barkest_core/ms_sql_function_test.rb +131 -0
data/test/models/barkest_core/number_parser_test.rb +29 -0
data/test/models/barkest_core/self_update_config_test.rb +29 -0
data/test/models/barkest_core/user_alert_test.rb +19 -0
data/test/models/barkest_core/user_manager_test.rb +34 -0
data/test/models/barkest_core/work_path_test.rb +26 -0
data/test/models/disable_user_test.rb +27 -0
data/test/models/generic_time_test.rb +66 -0
data/test/models/ldap_access_group_test.rb +31 -0
data/test/models/pdf_table_builder_test.rb +6 -0
data/test/models/system_config_test.rb +78 -0
data/test/models/user_login_history_test.rb +37 -0
data/test/models/user_test.rb +130 -0
data/test/test_helper.rb +63 -0
metadata +798 -0

data/app/models/barkest_core/work_path.rb ADDED Viewed

@@ -0,0 +1,74 @@
+require 'tmpdir'
+module BarkestCore
+  ##
+  # This class simply locates a temporary working directory for the application.
+  #
+  # By default we shoot for shared memory such as /run/shm or /dev/shm.  If those
+  # fail, we look to /tmp.
+  #
+  class WorkPath
+    ##
+    # Gets the temporary working directory location for the application.
+    #
+    def self.location
+      @location ||=
+          begin
+            retval = nil
+            %w(/run/shm /var/run/shm /dev/shm /tmp).each do |root|
+              if Dir.exist?(root)
+                retval = try_path(root)
+                break if retval
+              end
+            end
+            retval || try_path(Dir.tmpdir)
+          end
+    end
+    ##
+    # Gets a path for a specific temporary file.
+    #
+    def self.path_for(filename)
+      raise StandardError.new('Cannot determine location.') unless location
+      location + '/' + filename
+    end
+    ##
+    # Gets the path to the system status file.
+    #
+    # This file is used by long running processes to log their progress.
+    #
+    def self.system_status_file
+      @system_status_file ||= path_for('system_status')
+    end
+    private
+    def self.app_name
+      @app_name ||=
+          if Rails.application.respond_to?(:app_name)
+            Rails.application.app_name.underscore
+          else
+            Rails.application.class.name.underscore
+          end.gsub('/','-')
+    end
+    def self.try_path(path)
+      return nil if path.blank?
+      path = path.gsub('\\', '/')
+      path = path[0...-1] if path[-1] == '/'
+      path += '/barkest_' + app_name
+      return nil unless (Dir.exist?(path) || Dir.mkdir(path))
+      begin
+        test_file = path + '/test.file'
+        File.write(test_file, app_name)
+        File.delete(test_file)
+      rescue
+        return nil
+      end
+      path
+    end
+  end
+end

data/app/models/disable_user.rb ADDED Viewed

@@ -0,0 +1,18 @@
+##
+# This model is used to disable a user with a reason for the disabling.
+class DisableUser
+  include ActiveModel::Model
+  include ActiveModel::Validations
+  attr_accessor :reason, :user
+  validates :reason, presence: true
+  validate do
+    if user && user.is_a?(User)
+      errors.add(:user, 'must be enabled') unless user.enabled?
+    else
+      errors.add(:user, 'must be provided')
+    end
+  end
+end

data/app/models/ldap_access_group.rb ADDED Viewed

@@ -0,0 +1,15 @@
+##
+# Defines an LDAP group that belongs to an Access Group.
+class LdapAccessGroup < ::BarkestCore::DbTable
+  belongs_to :group, class_name: 'AccessGroup'
+  validates :group,
+            presence: true
+  validates :name,
+            presence: true,
+            length: { maximum: 200 },
+            uniqueness: { case_sensitive: false, scope: :group_id }
+end

data/app/models/system_config.rb ADDED Viewed

@@ -0,0 +1,99 @@
+require 'encrypted_strings'
+##
+# Defines a mechanism to store and retrieve configurations using the core database.
+#
+# The +get+ and +set+ methods allow values to be stored in an encrypted fashion as well.
+#
+# The encryption will use the +encrypted_config_key+ value or the +secret_key_base+ value from
+# +secrets.yml+.  Ideally, use +encrypted_config_key+ to allow +secret_key_base+ to change if
+# necessary.
+class SystemConfig < ::BarkestCore::DbTable
+  validates :key,
+            presence: true,
+            length: { maximum: 128 },
+            uniqueness: { case_sensitive: false }
+  before_save :downcase_key
+  ##
+  # Sets the value storing it as a YAML string.
+  def value=(new_value)
+    val = new_value.nil? ? nil : new_value.to_yaml
+    write_attribute :value, val
+  end
+  ##
+  # Gets the value loading it from a YAML string.
+  def value
+    val = read_attribute(:value).to_s
+    return nil if val.empty?
+    YAML.load val
+  end
+  ##
+  # Gets a value from the database.
+  #
+  # If the value was stored encrypted, it will be decrypted before being returned.
+  #
+  # As a feature during testing +config/key_name.yml+ will be used if it exists and the database
+  # value is missing.
+  #
+  def self.get(key_name)
+    begin
+      record = where(key: key_name.to_s.downcase).first
+      if record
+        value = record.value
+        if value.is_a?(Hash) && value.keys.include?(:encrypted_value)
+          value = value[:encrypted_value]
+          unless value.nil? || value == ''
+            value = YAML.load(crypto_cipher.decrypt(value)) rescue nil
+          end
+        end
+      elsif Rails.env.test?
+        yml_file = "#{BarkestCore.app_root}/config/#{key_name}.yml"
+        value = File.exist?(yml_file) ? YAML.load_file(yml_file) : nil
+      else
+        value = nil
+      end
+      value
+    rescue
+      nil # if 'system_configs' table has not been created, return nil.
+    end
+  end
+  ##
+  # Stores a value to the database.
+  #
+  # All values are converted into YAML strings before storage.
+  #
+  # If +encrypt+ is set to true, then the value will be encrypted before being stored.
+  def self.set(key_name, value, encrypt = false)
+    key_name = key_name.to_s.downcase
+    if encrypt
+      value = crypto_cipher.encrypt(value.to_yaml) unless value.nil? || value == ''
+      value = { encrypted_value: value }
+    end
+    record = find_or_initialize_by(key: key_name)
+    record.value = value
+    record.save
+  end
+  private
+  def self.crypto_password
+    @crypto_password ||= Rails.application.secrets[:encrypted_config_key] || Rails.application.secrets[:secret_key_base]
+  end
+  def self.crypto_cipher
+    @crypto_cipher ||= EncryptedStrings::SymmetricCipher.new(password: crypto_password)
+  end
+  def downcase_key
+    key.downcase!
+  end
+end

data/app/models/user.rb ADDED Viewed

@@ -0,0 +1,405 @@
+##
+# The user class defines the individual users in the application.
+#
+# Each user can login with their email address, if the domain portion of their
+# email address happens to match an LdapSource, then that LdapSource will be
+# used to authenticate them, otherwise the +password_digest+ stored in the
+# database will be used to authenticate them.
+class User < ::BarkestCore::DbTable
+  ANONYMOUS_EMAIL = 'anonymous@local.server'
+  UNIQUE_STRING_FIELD = :email
+  include BarkestCore::NamedModel
+  include BarkestCore::EmailTester
+  has_many :access_group_user_members, class_name: 'AccessGroupUserMember', foreign_key: 'member_id'
+  private :access_group_user_members, :access_group_user_members=
+  has_many :groups, class_name: 'AccessGroup', through: :access_group_user_members
+  has_many :login_histories, :class_name => 'UserLoginHistory'
+  belongs_to :disabled_by, class_name: 'User'
+  before_save :downcase_email
+  before_create :create_activation_digest
+  ##
+  # Gets the temporary token used to remember this user.
+  attr_accessor :remember_token
+  ##
+  # Gets the temporary token used to activate this user.
+  attr_accessor :activation_token
+  ##
+  # Gets the temporary token used to reset this user's password.
+  attr_accessor :reset_token
+  has_secure_password
+  validates :name,
+            presence: true,
+            length: { maximum: 100 }
+  validates :email,
+            presence: true,
+            length: { maximum: 255 },
+            uniqueness: { case_sensitive: false },
+            format: { with: VALID_EMAIL_REGEX }
+  validates :disabled_reason,
+            length: { maximum: 200 }
+  validates :last_ip,
+            length: { maximum: 64 }
+  validates :password,
+            presence: true,
+            length: { minimum: 6 },
+            allow_nil: true
+  ##
+  # Gets the email address in a partially obfuscated fashion.
+  def partial_email
+    uid,_,domain = email.partition('@')
+    if uid.length < 4
+      uid = '*' * uid.length
+    elsif uid.length < 8
+      uid = uid[0..2] + ('*' * (uid.length - 3))
+    else
+      uid = uid[0..2] + ('*' * (uid.length - 6)) + uid[-3..-1]
+    end
+    "#{uid}@#{domain}"
+  end
+  ##
+  # Is the user a system administrator?
+  def system_admin?
+    enabled && system_admin
+  end
+  ##
+  # Gets the effective group membership of this user.
+  def effective_groups(refresh = false)
+    @effective_groups = nil if refresh
+    @effective_groups ||= if system_admin?
+                          AccessGroup.all.map{ |g| g.to_s.upcase }
+                        else
+                          groups
+                              .collect{ |g| g.effective_groups }
+                              .flatten
+                              .inject([]){ |memo,item| memo << item unless memo.include?(item); memo }
+                        end
+                            .map{ |g| g.to_s.upcase }
+                            .sort
+  end
+  ##
+  # Does this user have the equivalent of one or more of these groups?
+  def has_any_group?(*group_list)
+    return true if system_admin?
+    group_list.each do |group|
+      group = group.to_s.upcase
+      return true if effective_groups.include?(group)
+    end
+    false
+  end
+  ##
+  # Generates a remember token and saves the digest to the user model.
+  def remember
+    self.remember_token = User.new_token
+    update_attribute(:remember_digest, User.digest(self.remember_token))
+  end
+  ##
+  # Removes the remember digest from the user model.
+  def forget
+    update_attribute(:remember_digest, nil)
+  end
+  ##
+  # Determines if the supplied token digests to the stored digest in the user model.
+  def authenticated?(attribute, token)
+    return false unless respond_to?("#{attribute}_digest")
+    digest = send("#{attribute}_digest")
+    return false if digest.blank?
+    BCrypt::Password.new(digest).is_password?(token)
+  end
+  ##
+  # Disables the user.
+  #
+  # The +other_user+ is required, cannot be the current user, and must be a system administrator.
+  # The +reason+ is technically optional, but should be provided.
+  def disable(other_user, reason)
+    return false unless other_user && other_user.system_admin?
+    return false if other_user == self
+    update_columns(
+        disabled_by_id: other_user.id,
+        disabled_at: Time.zone.now,
+        disabled_reason: reason,
+        enabled: false
+    )
+  end
+  ##
+  # Enables the user and removes any previous disable information.
+  def enable
+    update_columns(
+        disabled_by_id: nil,
+        disabled_at: nil,
+        disabled_reason: nil,
+        enabled: true
+    )
+  end
+  ##
+  # Marks the user as activated and removes the activation digest from the user model.
+  def activate
+    update_columns(
+        activated: true,
+        activated_at: Time.zone.now,
+        activation_digest: nil
+    )
+  end
+  ##
+  # Sends the activation email to the user.
+  def send_activation_email(client_ip = '0.0.0.0')
+    BarkestCore::UserMailer.account_activation(user: self, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Creates a reset token and stores the digest to the user model.
+  def create_reset_digest
+    self.reset_token = User.new_token
+    update_columns(
+        reset_digest: User.digest(reset_token),
+        reset_sent_at: Time.zone.now
+    )
+  end
+  ##
+  # Was the password reset requested more than 2 hours ago?
+  def password_reset_expired?
+    reset_sent_at.nil? || reset_sent_at < 2.hours.ago
+  end
+  ##
+  # Is this the anonymous user?
+  def anonymous?
+    email == ANONYMOUS_EMAIL
+  end
+  ##
+  # Gets the last successful login for this user.
+  def last_successful_login
+    @last_successful_login ||= login_histories.where(successful: true).order(created_at: :desc).first
+  end
+  ##
+  # Gets the last failed login for this user.
+  def last_failed_login
+    @last_failed_login ||= login_histories.where.not(successful: true).order(created_at: :desc).first
+  end
+  ##
+  # Gets the failed logins for a user since the last successful login.
+  def failed_login_streak
+    @failed_login_streak ||=
+        begin
+          results = login_histories.where.not(successful: true)
+          if last_successful_login
+            results = results.where('created_at > ?', last_successful_login.created_at)
+          end
+          results.order(created_at: :desc)
+        end
+  end
+  def settings(reload = false)
+    @settings = nil if reload
+    @settings ||=
+        begin
+          h = SystemConfig.get("user_#{id}") || {}
+          h.instance_variable_set :@user_id, id
+          def h.save
+            SystemConfig.set "user_#{@user_id}", self
+          end
+          def h.method_missing(m,*a,&b)
+            x = (/^([A-Z][A-Z0-9_]*)(=)?$/i).match(m.to_s)
+            if x
+              key = x[1].to_sym
+              if x[2] == '='
+                val = a ? a.first : nil
+                self[key] = val
+                return val
+              else
+                return self[key]
+              end
+            end
+            super m, *a, &b
+          end
+          def h.[](key)
+            super key.to_sym
+          end
+          def h.[]=(key, value)
+            super key.to_sym, value
+          end
+          h
+        end
+  end
+  ##
+  # Sends the password reset email to the user.
+  def send_password_reset_email(client_ip = '0.0.0.0')
+    BarkestCore::UserMailer.password_reset(user: self, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a missing account message when a user requests a password reset.
+  def self.send_missing_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a disabled account message when a user requests a password reset.
+  def self.send_disabled_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email address has been disabled.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a non-activated account message when a user requests a password reset.
+  def self.send_inactive_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email has not yet been activated.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a message informing the user we cannot change LDAP passwords.
+  def self.send_ldap_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email is an LDAP account.  This application cannot change passwords on an LDAP account.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Returns a hash digest of the given string.
+  def self.digest(string)
+    cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST : BCrypt::Engine.cost
+    BCrypt::Password.create(string, cost: cost)
+  end
+  ##
+  # Generates a new random token in (url safe) base64.
+  def self.new_token
+    SecureRandom.urlsafe_base64(32)
+  end
+  ##
+  # Gets all known users.
+  def self.known
+    where.not(email: ANONYMOUS_EMAIL)
+  end
+  ##
+  # Gets all of the currently enabled users.
+  def self.enabled
+    where(enabled: true, activated: true)
+  end
+  ##
+  # Sorts the users by name.
+  def self.sorted
+    order(name: :asc)
+  end
+  ##
+  # Generates the necessary system administrator account.
+  #
+  # When the database is initially seeded, the only user is the system administrator.
+  # The system administrator is **admin@barkerest.com** and the password is initially **Password1**.
+  # You should change this immediately once the app is running.  You will most likely want to create
+  # a completely new admin account and disable the **admin@barkerest.com** account.
+  def self.ensure_admin_exists!
+    unless where(system_admin: true, enabled: true).count > 0
+      msg = "Creating/reactivating default administrator...\n"
+      if Rails.application.running?
+        Rails.logger.info msg
+      else
+        print msg
+      end
+      def_adm_email = 'admin@barkerest.com'
+      def_adm_pass = 'Password1'
+      user = User
+                 .where(
+                     email: def_adm_email
+                 )
+                 .first_or_create!(
+                     name: 'Default Administrator',
+                     email: def_adm_email,
+                     password: def_adm_pass,
+                     password_confirmation: def_adm_pass,
+                     enabled: true,
+                     system_admin: true,
+                     activated: true,
+                     activated_at: Time.zone.now
+                 )
+      unless user.enabled? && user.system_admin?
+        user.password = def_adm_pass
+        user.password_confirmation = def_adm_pass
+        user.enabled = true
+        user.system_admin = true
+        user.activated = true
+        user.activated_at = Time.zone.now
+        user.save!
+      end
+    end
+  end
+  ##
+  # Gets a generic anonymous user.
+  def self.anonymous
+    @anonymous = nil if Rails.env.test?
+    @anonymous ||=
+        begin
+          pwd = new_token
+          where(email: ANONYMOUS_EMAIL)
+              .first_or_create(
+                  email: ANONYMOUS_EMAIL,
+                  name: 'Anonymous',
+                  enabled: false,
+                  activated: true,
+                  activated_at: Time.zone.now,
+                  password: pwd,
+                  password_confirmation: pwd
+              )
+        end
+  end
+  private
+  def downcase_email
+    email.downcase!
+  end
+  def create_activation_digest
+    self.activation_token = User.new_token
+    self.activation_digest = User.digest(activation_token)
+  end
+end