RubyGems - barkest_core - Versions diffs - 1.5.3.0 - Mend

barkest_core 1.5.3.0

Files changed (308) hide show

checksums.yaml +7 -0
data/.gitignore +13 -0
data/Gemfile +22 -0
data/Gemfile.lock +254 -0
data/MIT-LICENSE +20 -0
data/README.md +364 -0
data/Rakefile +37 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Bold.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-BoldItalic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Italic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Regular.ttf +0 -0
data/app/assets/images/barkest_core/.keep +0 -0
data/app/assets/images/barkest_core/barcode-B.svg +181 -0
data/app/assets/javascripts/barkest_core/.keep +0 -0
data/app/assets/javascripts/barkest_core/application.js +22 -0
data/app/assets/javascripts/barkest_core/bootstrap-datepicker.js +1800 -0
data/app/assets/javascripts/barkest_core/field_init.js +7 -0
data/app/assets/javascripts/barkest_core/jquery.doubleScroll.js +112 -0
data/app/assets/javascripts/barkest_core/masked_edit.js +25 -0
data/app/assets/javascripts/barkest_core/system_status.js.erb +201 -0
data/app/assets/stylesheets/barkest_core/.keep +0 -0
data/app/assets/stylesheets/barkest_core/application.css +17 -0
data/app/assets/stylesheets/barkest_core/custom.css.scss +264 -0
data/app/assets/stylesheets/barkest_core/datepicker3.css +790 -0
data/app/controllers/.keep +0 -0
data/app/controllers/access_groups_controller.rb +74 -0
data/app/controllers/account_activations_controller.rb +29 -0
data/app/controllers/application_controller.rb +5 -0
data/app/controllers/barkest_core/application_controller_base.rb +113 -0
data/app/controllers/barkest_core/engine_controller_base.rb +15 -0
data/app/controllers/barkest_core/testsub_controller.rb +21 -0
data/app/controllers/contact_controller.rb +32 -0
data/app/controllers/log_view_controller.rb +31 -0
data/app/controllers/password_resets_controller.rb +126 -0
data/app/controllers/sessions_controller.rb +64 -0
data/app/controllers/status_controller.rb +150 -0
data/app/controllers/system_config_controller.rb +238 -0
data/app/controllers/system_update_controller.rb +164 -0
data/app/controllers/test_access_controller.rb +44 -0
data/app/controllers/test_report_controller.rb +75 -0
data/app/controllers/users_controller.rb +218 -0
data/app/helpers/.keep +0 -0
data/app/helpers/barkest_core/application_helper.rb +134 -0
data/app/helpers/barkest_core/form_helper.rb +469 -0
data/app/helpers/barkest_core/html_helper.rb +70 -0
data/app/helpers/barkest_core/misc_helper.rb +68 -0
data/app/helpers/barkest_core/pdf_helper.rb +180 -0
data/app/helpers/barkest_core/recaptcha_helper.rb +115 -0
data/app/helpers/barkest_core/sessions_helper.rb +94 -0
data/app/helpers/barkest_core/status_helper.rb +118 -0
data/app/helpers/barkest_core/users_helper.rb +32 -0
data/app/mailers/.keep +0 -0
data/app/mailers/application_mailer.rb +5 -0
data/app/mailers/barkest_core/application_mailer_base.rb +30 -0
data/app/mailers/barkest_core/contact_form.rb +20 -0
data/app/mailers/barkest_core/user_mailer.rb +44 -0
data/app/models/.keep +0 -0
data/app/models/access_group.rb +121 -0
data/app/models/access_group_group_member.rb +13 -0
data/app/models/access_group_user_member.rb +11 -0
data/app/models/barkest_core/auth_config.rb +95 -0
data/app/models/barkest_core/authorize_failure.rb +7 -0
data/app/models/barkest_core/contact_message.rb +37 -0
data/app/models/barkest_core/database_config.rb +223 -0
data/app/models/barkest_core/db_table.rb +21 -0
data/app/models/barkest_core/email_config.rb +132 -0
data/app/models/barkest_core/global_status.rb +267 -0
data/app/models/barkest_core/log_entry.rb +101 -0
data/app/models/barkest_core/log_view_options.rb +51 -0
data/app/models/barkest_core/ms_sql_db_definition.rb +441 -0
data/app/models/barkest_core/ms_sql_definition.rb +221 -0
data/app/models/barkest_core/ms_sql_function.rb +423 -0
data/app/models/barkest_core/not_logged_in.rb +7 -0
data/app/models/barkest_core/pdf_table_builder.rb +407 -0
data/app/models/barkest_core/self_update_config.rb +37 -0
data/app/models/barkest_core/user_alert.rb +29 -0
data/app/models/barkest_core/user_alert_generators.rb +58 -0
data/app/models/barkest_core/user_manager.rb +404 -0
data/app/models/barkest_core/work_path.rb +74 -0
data/app/models/disable_user.rb +18 -0
data/app/models/ldap_access_group.rb +15 -0
data/app/models/system_config.rb +99 -0
data/app/models/user.rb +405 -0
data/app/models/user_login_history.rb +11 -0
data/app/views/.keep +0 -0
data/app/views/access_groups/_form.html.erb +19 -0
data/app/views/access_groups/edit.html.erb +2 -0
data/app/views/access_groups/index.html.erb +32 -0
data/app/views/access_groups/new.html.erb +2 -0
data/app/views/access_groups/show.html.erb +4 -0
data/app/views/barkest_core/contact_form/contact.html.erb +16 -0
data/app/views/barkest_core/contact_form/contact.text.erb +13 -0
data/app/views/barkest_core/testsub/_links.html.erb +5 -0
data/app/views/barkest_core/testsub/page1.html.erb +3 -0
data/app/views/barkest_core/testsub/page2.html.erb +2 -0
data/app/views/barkest_core/testsub/page3.html.erb +2 -0
data/app/views/barkest_core/user_mailer/account_activation.html.erb +7 -0
data/app/views/barkest_core/user_mailer/account_activation.text.erb +6 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.html.erb +3 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.text.erb +5 -0
data/app/views/barkest_core/user_mailer/password_reset.html.erb +8 -0
data/app/views/barkest_core/user_mailer/password_reset.text.erb +7 -0
data/app/views/contact/index.html.erb +24 -0
data/app/views/layouts/_footer_copyright.html.erb +1 -0
data/app/views/layouts/_menu_admin.html.erb +5 -0
data/app/views/layouts/_menu_anon.html.erb +0 -0
data/app/views/layouts/_menu_auth.html.erb +3 -0
data/app/views/layouts/_menu_footer.html.erb +1 -0
data/app/views/layouts/_nav_logo.html.erb +1 -0
data/app/views/layouts/application.html.erb +2 -0
data/app/views/layouts/barkest_core/_application.html.erb +24 -0
data/app/views/layouts/barkest_core/_footer.html.erb +18 -0
data/app/views/layouts/barkest_core/_header.html.erb +38 -0
data/app/views/layouts/barkest_core/_html_mailer.html.erb +11 -0
data/app/views/layouts/barkest_core/_menu_account.html.erb +14 -0
data/app/views/layouts/barkest_core/_menu_sample.html.erb +1 -0
data/app/views/layouts/barkest_core/_messages.html.erb +4 -0
data/app/views/layouts/barkest_core/_shim.html.erb +4 -0
data/app/views/layouts/barkest_core/_subheader.html.erb +1 -0
data/app/views/layouts/barkest_core/_text_mailer.text.erb +4 -0
data/app/views/layouts/mailer.html.erb +1 -0
data/app/views/layouts/mailer.text.erb +1 -0
data/app/views/log_view/index.html.erb +100 -0
data/app/views/password_resets/edit.html.erb +20 -0
data/app/views/password_resets/new.html.erb +14 -0
data/app/views/sessions/new.html.erb +27 -0
data/app/views/shared/_error_messages.html.erb +29 -0
data/app/views/shared/_generic_user_alert.html.erb +4 -0
data/app/views/status/current.html.erb +34 -0
data/app/views/status/test.html.erb +50 -0
data/app/views/system_config/index.html.erb +25 -0
data/app/views/system_config/show_auth.html.erb +28 -0
data/app/views/system_config/show_database.html.erb +36 -0
data/app/views/system_config/show_email.html.erb +21 -0
data/app/views/system_config/show_self_update.html.erb +13 -0
data/app/views/system_update/index.html.erb +31 -0
data/app/views/system_update/new.html.erb +2 -0
data/app/views/test_access/allow_anon.html.erb +2 -0
data/app/views/test_access/require_admin.html.erb +2 -0
data/app/views/test_access/require_group_x.html.erb +2 -0
data/app/views/test_access/require_user.html.erb +2 -0
data/app/views/test_report/index.csv.csvrb +23 -0
data/app/views/test_report/index.html.erb +6 -0
data/app/views/test_report/index.pdf.prawn +50 -0
data/app/views/test_report/index.xlsx.axlsx +28 -0
data/app/views/users/_user.html.erb +57 -0
data/app/views/users/_user_details.html.erb +15 -0
data/app/views/users/_user_details_for_list.html.erb +1 -0
data/app/views/users/_user_form.html.erb +13 -0
data/app/views/users/disable_confirm.html.erb +19 -0
data/app/views/users/edit.html.erb +15 -0
data/app/views/users/index.html.erb +9 -0
data/app/views/users/new.html.erb +10 -0
data/app/views/users/show.html.erb +46 -0
data/bin/rails +12 -0
data/config/routes.rb +3 -0
data/db/migrate/20160617172539_create_access_groups.rb +10 -0
data/db/migrate/20160617172725_create_users.rb +26 -0
data/db/migrate/20160617172833_create_user_login_histories.rb +12 -0
data/db/migrate/20160622151720_create_access_group_user_members.rb +9 -0
data/db/migrate/20160622151925_create_access_group_group_members.rb +9 -0
data/db/migrate/20160701005706_create_ldap_access_groups.rb +11 -0
data/db/migrate/20161108155029_create_system_configs.rb +11 -0
data/db/seeds/barkest_core_01_create_users.rb +42 -0
data/db/seeds.rb +53 -0
data/lib/barkest_core/concerns/association_with_defaults.rb +55 -0
data/lib/barkest_core/concerns/boolean_parser.rb +88 -0
data/lib/barkest_core/concerns/date_parser.rb +181 -0
data/lib/barkest_core/concerns/email_tester.rb +55 -0
data/lib/barkest_core/concerns/encrypted_fields.rb +156 -0
data/lib/barkest_core/concerns/named_model.rb +73 -0
data/lib/barkest_core/concerns/number_parser.rb +145 -0
data/lib/barkest_core/concerns/utc_conversion.rb +60 -0
data/lib/barkest_core/engine.rb +105 -0
data/lib/barkest_core/extensions/active_record_extensions.rb +120 -0
data/lib/barkest_core/extensions/application_configuration_extensions.rb +38 -0
data/lib/barkest_core/extensions/application_extensions.rb +50 -0
data/lib/barkest_core/extensions/axlsx_extenstions.rb +157 -0
data/lib/barkest_core/extensions/fixture_set_extensions.rb +107 -0
data/lib/barkest_core/extensions/generator_extensions.rb +271 -0
data/lib/barkest_core/extensions/main_app_extensions.rb +35 -0
data/lib/barkest_core/extensions/prawn_document_extensions.rb +367 -0
data/lib/barkest_core/extensions/prawn_table_extensions.rb +131 -0
data/lib/barkest_core/extensions/router_extensions.rb +106 -0
data/lib/barkest_core/extensions/simple_formatter_extensions.rb +66 -0
data/lib/barkest_core/extensions/test_case_extensions.rb +348 -0
data/lib/barkest_core/extensions/time_extensions.rb +164 -0
data/lib/barkest_core/handlers/csv_handler.rb +30 -0
data/lib/barkest_core/version.rb +3 -0
data/lib/barkest_core.rb +324 -0
data/lib/generators/barkest/install_generator.rb +102 -0
data/lib/generators/barkest_core/actions/01_patch_application_controller.rb +55 -0
data/lib/generators/barkest_core/actions/02_patch_application_mailer.rb +56 -0
data/lib/generators/barkest_core/actions/03_patch_assets.rb +62 -0
data/lib/generators/barkest_core/actions/04_patch_layouts.rb +36 -0
data/lib/generators/barkest_core/actions/05_patch_routes.rb +93 -0
data/lib/generators/barkest_core/actions/06_patch_seeds.rb +60 -0
data/lib/generators/barkest_core/actions/07_copy_migrations.rb +51 -0
data/lib/generators/barkest_core/actions/08_configure_database.rb +52 -0
data/lib/generators/barkest_core/actions/09_configure_secrets.rb +29 -0
data/lib/generators/barkest_core/actions/99_patch_gitignore.rb +57 -0
data/lib/generators/barkest_core/install_generator.rb +17 -0
data/test/barkest_core_test.rb +83 -0
data/test/controllers/access_groups_controller_test.rb +53 -0
data/test/controllers/contact_controller_test.rb +10 -0
data/test/controllers/sessions_controller_test.rb +10 -0
data/test/controllers/users_controller_test.rb +10 -0
data/test/dummy/.gitignore +10 -0
data/test/dummy/README.rdoc +28 -0
data/test/dummy/Rakefile +6 -0
data/test/dummy/app/assets/images/.keep +0 -0
data/test/dummy/app/assets/javascripts/application.js +14 -0
data/test/dummy/app/assets/stylesheets/application.css +16 -0
data/test/dummy/app/controllers/application_controller.rb +5 -0
data/test/dummy/app/controllers/concerns/.keep +0 -0
data/test/dummy/app/helpers/application_helper.rb +2 -0
data/test/dummy/app/mailers/.keep +0 -0
data/test/dummy/app/mailers/application_mailer.rb +3 -0
data/test/dummy/app/models/.keep +0 -0
data/test/dummy/app/models/concerns/.keep +0 -0
data/test/dummy/app/views/layouts/application.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.text.erb +1 -0
data/test/dummy/app/views/system_config/show_fake.html.erb +3 -0
data/test/dummy/bin/bundle +3 -0
data/test/dummy/bin/rails +4 -0
data/test/dummy/bin/rake +4 -0
data/test/dummy/bin/setup +29 -0
data/test/dummy/config/application.rb +27 -0
data/test/dummy/config/boot.rb +5 -0
data/test/dummy/config/environment.rb +5 -0
data/test/dummy/config/environments/development.rb +47 -0
data/test/dummy/config/environments/production.rb +79 -0
data/test/dummy/config/environments/test.rb +44 -0
data/test/dummy/config/initializers/assets.rb +11 -0
data/test/dummy/config/initializers/backtrace_silencers.rb +7 -0
data/test/dummy/config/initializers/cookies_serializer.rb +3 -0
data/test/dummy/config/initializers/db_updater_ext.rb +33 -0
data/test/dummy/config/initializers/filter_parameter_logging.rb +4 -0
data/test/dummy/config/initializers/inflections.rb +16 -0
data/test/dummy/config/initializers/mime_types.rb +4 -0
data/test/dummy/config/initializers/session_store.rb +3 -0
data/test/dummy/config/initializers/sys_config_ext.rb +12 -0
data/test/dummy/config/initializers/wrap_parameters.rb +14 -0
data/test/dummy/config/locales/en.yml +23 -0
data/test/dummy/config/routes.rb +60 -0
data/test/dummy/config.ru +4 -0
data/test/dummy/db/schema.rb +95 -0
data/test/dummy/db/seeds/barkest_core_01_create_users.rb +42 -0
data/test/dummy/db/seeds.rb +51 -0
data/test/dummy/lib/assets/.keep +0 -0
data/test/dummy/log/.keep +0 -0
data/test/dummy/public/404.html +67 -0
data/test/dummy/public/422.html +67 -0
data/test/dummy/public/500.html +66 -0
data/test/dummy/public/favicon.ico +0 -0
data/test/dummy/sql/my_test_view.sql +3 -0
data/test/fixtures/access_groups.yml +21 -0
data/test/fixtures/users.yml +71 -0
data/test/helpers/barkest_core/sessions_helper_test.rb +22 -0
data/test/integration/access_group_mgmt_test.rb +33 -0
data/test/integration/access_test.rb +24 -0
data/test/integration/account_activations_access_test.rb +12 -0
data/test/integration/contact_test.rb +98 -0
data/test/integration/extra_partial_test.rb +41 -0
data/test/integration/log_view_access_test.rb +12 -0
data/test/integration/password_resets_test.rb +101 -0
data/test/integration/reports_test.rb +53 -0
data/test/integration/status_access_test.rb +27 -0
data/test/integration/system_config_access_test.rb +24 -0
data/test/integration/system_update_access_test.rb +19 -0
data/test/integration/users_access_test.rb +34 -0
data/test/integration/users_edit_test.rb +178 -0
data/test/integration/users_index_test.rb +62 -0
data/test/integration/users_login_test.rb +67 -0
data/test/integration/users_signup_test.rb +54 -0
data/test/mailers/.keep +0 -0
data/test/mailers/barkest_core/contact_form_test.rb +28 -0
data/test/mailers/barkest_core/user_mailer_test.rb +43 -0
data/test/mailers/previews/barkest_core/contact_form_preview.rb +17 -0
data/test/mailers/previews/barkest_core/user_mailer_preview.rb +26 -0
data/test/models/access_group_group_member_test.rb +28 -0
data/test/models/access_group_test.rb +114 -0
data/test/models/access_group_user_member_test.rb +28 -0
data/test/models/barkest_core/auth_config_test.rb +57 -0
data/test/models/barkest_core/bool_parser_test.rb +28 -0
data/test/models/barkest_core/contact_message_test.rb +61 -0
data/test/models/barkest_core/database_config_test.rb +33 -0
data/test/models/barkest_core/date_parser_test.rb +110 -0
data/test/models/barkest_core/email_config_test.rb +57 -0
data/test/models/barkest_core/global_status_test.rb +50 -0
data/test/models/barkest_core/ms_sql_db_updater_test.rb +115 -0
data/test/models/barkest_core/ms_sql_definition_test.rb +102 -0
data/test/models/barkest_core/ms_sql_function_test.rb +131 -0
data/test/models/barkest_core/number_parser_test.rb +29 -0
data/test/models/barkest_core/self_update_config_test.rb +29 -0
data/test/models/barkest_core/user_alert_test.rb +19 -0
data/test/models/barkest_core/user_manager_test.rb +34 -0
data/test/models/barkest_core/work_path_test.rb +26 -0
data/test/models/disable_user_test.rb +27 -0
data/test/models/generic_time_test.rb +66 -0
data/test/models/ldap_access_group_test.rb +31 -0
data/test/models/pdf_table_builder_test.rb +6 -0
data/test/models/system_config_test.rb +78 -0
data/test/models/user_login_history_test.rb +37 -0
data/test/models/user_test.rb +130 -0
data/test/test_helper.rb +63 -0
metadata +798 -0

data/app/models/barkest_core/work_path.rb ADDED Viewed

@@ -0,0 +1,74 @@
+require 'tmpdir'
+module BarkestCore
+  ##
+  # This class simply locates a temporary working directory for the application.
+  #
+  # By default we shoot for shared memory such as /run/shm or /dev/shm.  If those
+  # fail, we look to /tmp.
+  #
+  class WorkPath
+    ##
+    # Gets the temporary working directory location for the application.
+    #
+    def self.location
+      @location ||=
+          begin
+            retval = nil
+            %w(/run/shm /var/run/shm /dev/shm /tmp).each do |root|
+              if Dir.exist?(root)
+                retval = try_path(root)
+                break if retval
+              end
+            end
+            retval || try_path(Dir.tmpdir)
+          end
+    end
+    ##
+    # Gets a path for a specific temporary file.
+    #
+    def self.path_for(filename)
+      raise StandardError.new('Cannot determine location.') unless location
+      location + '/' + filename
+    end
+    ##
+    # Gets the path to the system status file.
+    #
+    # This file is used by long running processes to log their progress.
+    #
+    def self.system_status_file
+      @system_status_file ||= path_for('system_status')
+    end
+    private
+    def self.app_name
+      @app_name ||=
+          if Rails.application.respond_to?(:app_name)
+            Rails.application.app_name.underscore
+          else
+            Rails.application.class.name.underscore
+          end.gsub('/','-')
+    end
+    def self.try_path(path)
+      return nil if path.blank?
+      path = path.gsub('\\', '/')
+      path = path[0...-1] if path[-1] == '/'
+      path += '/barkest_' + app_name
+      return nil unless (Dir.exist?(path) || Dir.mkdir(path))
+      begin
+        test_file = path + '/test.file'
+        File.write(test_file, app_name)
+        File.delete(test_file)
+      rescue
+        return nil
+      end
+      path
+    end
+  end
+end

data/app/models/disable_user.rb ADDED Viewed

@@ -0,0 +1,18 @@
+##
+# This model is used to disable a user with a reason for the disabling.
+class DisableUser
+  include ActiveModel::Model
+  include ActiveModel::Validations
+  attr_accessor :reason, :user
+  validates :reason, presence: true
+  validate do
+    if user && user.is_a?(User)
+      errors.add(:user, 'must be enabled') unless user.enabled?
+    else
+      errors.add(:user, 'must be provided')
+    end
+  end
+end

data/app/models/ldap_access_group.rb ADDED Viewed

@@ -0,0 +1,15 @@
+##
+# Defines an LDAP group that belongs to an Access Group.
+class LdapAccessGroup < ::BarkestCore::DbTable
+  belongs_to :group, class_name: 'AccessGroup'
+  validates :group,
+            presence: true
+  validates :name,
+            presence: true,
+            length: { maximum: 200 },
+            uniqueness: { case_sensitive: false, scope: :group_id }
+end

data/app/models/system_config.rb ADDED Viewed

@@ -0,0 +1,99 @@
+require 'encrypted_strings'
+##
+# Defines a mechanism to store and retrieve configurations using the core database.
+#
+# The +get+ and +set+ methods allow values to be stored in an encrypted fashion as well.
+#
+# The encryption will use the +encrypted_config_key+ value or the +secret_key_base+ value from
+# +secrets.yml+.  Ideally, use +encrypted_config_key+ to allow +secret_key_base+ to change if
+# necessary.
+class SystemConfig < ::BarkestCore::DbTable
+  validates :key,
+            presence: true,
+            length: { maximum: 128 },
+            uniqueness: { case_sensitive: false }
+  before_save :downcase_key
+  ##
+  # Sets the value storing it as a YAML string.
+  def value=(new_value)
+    val = new_value.nil? ? nil : new_value.to_yaml
+    write_attribute :value, val
+  end
+  ##
+  # Gets the value loading it from a YAML string.
+  def value
+    val = read_attribute(:value).to_s
+    return nil if val.empty?
+    YAML.load val
+  end
+  ##
+  # Gets a value from the database.
+  #
+  # If the value was stored encrypted, it will be decrypted before being returned.
+  #
+  # As a feature during testing +config/key_name.yml+ will be used if it exists and the database
+  # value is missing.
+  #
+  def self.get(key_name)
+    begin
+      record = where(key: key_name.to_s.downcase).first
+      if record
+        value = record.value
+        if value.is_a?(Hash) && value.keys.include?(:encrypted_value)
+          value = value[:encrypted_value]
+          unless value.nil? || value == ''
+            value = YAML.load(crypto_cipher.decrypt(value)) rescue nil
+          end
+        end
+      elsif Rails.env.test?
+        yml_file = "#{BarkestCore.app_root}/config/#{key_name}.yml"
+        value = File.exist?(yml_file) ? YAML.load_file(yml_file) : nil
+      else
+        value = nil
+      end
+      value
+    rescue
+      nil # if 'system_configs' table has not been created, return nil.
+    end
+  end
+  ##
+  # Stores a value to the database.
+  #
+  # All values are converted into YAML strings before storage.
+  #
+  # If +encrypt+ is set to true, then the value will be encrypted before being stored.
+  def self.set(key_name, value, encrypt = false)
+    key_name = key_name.to_s.downcase
+    if encrypt
+      value = crypto_cipher.encrypt(value.to_yaml) unless value.nil? || value == ''
+      value = { encrypted_value: value }
+    end
+    record = find_or_initialize_by(key: key_name)
+    record.value = value
+    record.save
+  end
+  private
+  def self.crypto_password
+    @crypto_password ||= Rails.application.secrets[:encrypted_config_key] || Rails.application.secrets[:secret_key_base]
+  end
+  def self.crypto_cipher
+    @crypto_cipher ||= EncryptedStrings::SymmetricCipher.new(password: crypto_password)
+  end
+  def downcase_key
+    key.downcase!
+  end
+end

data/app/models/user.rb ADDED Viewed

@@ -0,0 +1,405 @@
+##
+# The user class defines the individual users in the application.
+#
+# Each user can login with their email address, if the domain portion of their
+# email address happens to match an LdapSource, then that LdapSource will be
+# used to authenticate them, otherwise the +password_digest+ stored in the
+# database will be used to authenticate them.
+class User < ::BarkestCore::DbTable
+  ANONYMOUS_EMAIL = 'anonymous@local.server'
+  UNIQUE_STRING_FIELD = :email
+  include BarkestCore::NamedModel
+  include BarkestCore::EmailTester
+  has_many :access_group_user_members, class_name: 'AccessGroupUserMember', foreign_key: 'member_id'
+  private :access_group_user_members, :access_group_user_members=
+  has_many :groups, class_name: 'AccessGroup', through: :access_group_user_members
+  has_many :login_histories, :class_name => 'UserLoginHistory'
+  belongs_to :disabled_by, class_name: 'User'
+  before_save :downcase_email
+  before_create :create_activation_digest
+  ##
+  # Gets the temporary token used to remember this user.
+  attr_accessor :remember_token
+  ##
+  # Gets the temporary token used to activate this user.
+  attr_accessor :activation_token
+  ##
+  # Gets the temporary token used to reset this user's password.
+  attr_accessor :reset_token
+  has_secure_password
+  validates :name,
+            presence: true,
+            length: { maximum: 100 }
+  validates :email,
+            presence: true,
+            length: { maximum: 255 },
+            uniqueness: { case_sensitive: false },
+            format: { with: VALID_EMAIL_REGEX }
+  validates :disabled_reason,
+            length: { maximum: 200 }
+  validates :last_ip,
+            length: { maximum: 64 }
+  validates :password,
+            presence: true,
+            length: { minimum: 6 },
+            allow_nil: true
+  ##
+  # Gets the email address in a partially obfuscated fashion.
+  def partial_email
+    uid,_,domain = email.partition('@')
+    if uid.length < 4
+      uid = '*' * uid.length
+    elsif uid.length < 8
+      uid = uid[0..2] + ('*' * (uid.length - 3))
+    else
+      uid = uid[0..2] + ('*' * (uid.length - 6)) + uid[-3..-1]
+    end
+    "#{uid}@#{domain}"
+  end
+  ##
+  # Is the user a system administrator?
+  def system_admin?
+    enabled && system_admin
+  end
+  ##
+  # Gets the effective group membership of this user.
+  def effective_groups(refresh = false)
+    @effective_groups = nil if refresh
+    @effective_groups ||= if system_admin?
+                          AccessGroup.all.map{ |g| g.to_s.upcase }
+                        else
+                          groups
+                              .collect{ |g| g.effective_groups }
+                              .flatten
+                              .inject([]){ |memo,item| memo << item unless memo.include?(item); memo }
+                        end
+                            .map{ |g| g.to_s.upcase }
+                            .sort
+  end
+  ##
+  # Does this user have the equivalent of one or more of these groups?
+  def has_any_group?(*group_list)
+    return true if system_admin?
+    group_list.each do |group|
+      group = group.to_s.upcase
+      return true if effective_groups.include?(group)
+    end
+    false
+  end
+  ##
+  # Generates a remember token and saves the digest to the user model.
+  def remember
+    self.remember_token = User.new_token
+    update_attribute(:remember_digest, User.digest(self.remember_token))
+  end
+  ##
+  # Removes the remember digest from the user model.
+  def forget
+    update_attribute(:remember_digest, nil)
+  end
+  ##
+  # Determines if the supplied token digests to the stored digest in the user model.
+  def authenticated?(attribute, token)
+    return false unless respond_to?("#{attribute}_digest")
+    digest = send("#{attribute}_digest")
+    return false if digest.blank?
+    BCrypt::Password.new(digest).is_password?(token)
+  end
+  ##
+  # Disables the user.
+  #
+  # The +other_user+ is required, cannot be the current user, and must be a system administrator.
+  # The +reason+ is technically optional, but should be provided.
+  def disable(other_user, reason)
+    return false unless other_user && other_user.system_admin?
+    return false if other_user == self
+    update_columns(
+        disabled_by_id: other_user.id,
+        disabled_at: Time.zone.now,
+        disabled_reason: reason,
+        enabled: false
+    )
+  end
+  ##
+  # Enables the user and removes any previous disable information.
+  def enable
+    update_columns(
+        disabled_by_id: nil,
+        disabled_at: nil,
+        disabled_reason: nil,
+        enabled: true
+    )
+  end
+  ##
+  # Marks the user as activated and removes the activation digest from the user model.
+  def activate
+    update_columns(
+        activated: true,
+        activated_at: Time.zone.now,
+        activation_digest: nil
+    )
+  end
+  ##
+  # Sends the activation email to the user.
+  def send_activation_email(client_ip = '0.0.0.0')
+    BarkestCore::UserMailer.account_activation(user: self, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Creates a reset token and stores the digest to the user model.
+  def create_reset_digest
+    self.reset_token = User.new_token
+    update_columns(
+        reset_digest: User.digest(reset_token),
+        reset_sent_at: Time.zone.now
+    )
+  end
+  ##
+  # Was the password reset requested more than 2 hours ago?
+  def password_reset_expired?
+    reset_sent_at.nil? || reset_sent_at < 2.hours.ago
+  end
+  ##
+  # Is this the anonymous user?
+  def anonymous?
+    email == ANONYMOUS_EMAIL
+  end
+  ##
+  # Gets the last successful login for this user.
+  def last_successful_login
+    @last_successful_login ||= login_histories.where(successful: true).order(created_at: :desc).first
+  end
+  ##
+  # Gets the last failed login for this user.
+  def last_failed_login
+    @last_failed_login ||= login_histories.where.not(successful: true).order(created_at: :desc).first
+  end
+  ##
+  # Gets the failed logins for a user since the last successful login.
+  def failed_login_streak
+    @failed_login_streak ||=
+        begin
+          results = login_histories.where.not(successful: true)
+          if last_successful_login
+            results = results.where('created_at > ?', last_successful_login.created_at)
+          end
+          results.order(created_at: :desc)
+        end
+  end
+  def settings(reload = false)
+    @settings = nil if reload
+    @settings ||=
+        begin
+          h = SystemConfig.get("user_#{id}") || {}
+          h.instance_variable_set :@user_id, id
+          def h.save
+            SystemConfig.set "user_#{@user_id}", self
+          end
+          def h.method_missing(m,*a,&b)
+            x = (/^([A-Z][A-Z0-9_]*)(=)?$/i).match(m.to_s)
+            if x
+              key = x[1].to_sym
+              if x[2] == '='
+                val = a ? a.first : nil
+                self[key] = val
+                return val
+              else
+                return self[key]
+              end
+            end
+            super m, *a, &b
+          end
+          def h.[](key)
+            super key.to_sym
+          end
+          def h.[]=(key, value)
+            super key.to_sym, value
+          end
+          h
+        end
+  end
+  ##
+  # Sends the password reset email to the user.
+  def send_password_reset_email(client_ip = '0.0.0.0')
+    BarkestCore::UserMailer.password_reset(user: self, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a missing account message when a user requests a password reset.
+  def self.send_missing_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a disabled account message when a user requests a password reset.
+  def self.send_disabled_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email address has been disabled.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a non-activated account message when a user requests a password reset.
+  def self.send_inactive_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email has not yet been activated.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Sends a message informing the user we cannot change LDAP passwords.
+  def self.send_ldap_reset_email(email, client_ip = '0.0.0.0')
+    BarkestCore::UserMailer::invalid_password_reset(email: email, message: 'The account attached to this email is an LDAP account.  This application cannot change passwords on an LDAP account.', client_ip: client_ip).deliver_now
+  end
+  ##
+  # Returns a hash digest of the given string.
+  def self.digest(string)
+    cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST : BCrypt::Engine.cost
+    BCrypt::Password.create(string, cost: cost)
+  end
+  ##
+  # Generates a new random token in (url safe) base64.
+  def self.new_token
+    SecureRandom.urlsafe_base64(32)
+  end
+  ##
+  # Gets all known users.
+  def self.known
+    where.not(email: ANONYMOUS_EMAIL)
+  end
+  ##
+  # Gets all of the currently enabled users.
+  def self.enabled
+    where(enabled: true, activated: true)
+  end
+  ##
+  # Sorts the users by name.
+  def self.sorted
+    order(name: :asc)
+  end
+  ##
+  # Generates the necessary system administrator account.
+  #
+  # When the database is initially seeded, the only user is the system administrator.
+  # The system administrator is **admin@barkerest.com** and the password is initially **Password1**.
+  # You should change this immediately once the app is running.  You will most likely want to create
+  # a completely new admin account and disable the **admin@barkerest.com** account.
+  def self.ensure_admin_exists!
+    unless where(system_admin: true, enabled: true).count > 0
+      msg = "Creating/reactivating default administrator...\n"
+      if Rails.application.running?
+        Rails.logger.info msg
+      else
+        print msg
+      end
+      def_adm_email = 'admin@barkerest.com'
+      def_adm_pass = 'Password1'
+      user = User
+                 .where(
+                     email: def_adm_email
+                 )
+                 .first_or_create!(
+                     name: 'Default Administrator',
+                     email: def_adm_email,
+                     password: def_adm_pass,
+                     password_confirmation: def_adm_pass,
+                     enabled: true,
+                     system_admin: true,
+                     activated: true,
+                     activated_at: Time.zone.now
+                 )
+      unless user.enabled? && user.system_admin?
+        user.password = def_adm_pass
+        user.password_confirmation = def_adm_pass
+        user.enabled = true
+        user.system_admin = true
+        user.activated = true
+        user.activated_at = Time.zone.now
+        user.save!
+      end
+    end
+  end
+  ##
+  # Gets a generic anonymous user.
+  def self.anonymous
+    @anonymous = nil if Rails.env.test?
+    @anonymous ||=
+        begin
+          pwd = new_token
+          where(email: ANONYMOUS_EMAIL)
+              .first_or_create(
+                  email: ANONYMOUS_EMAIL,
+                  name: 'Anonymous',
+                  enabled: false,
+                  activated: true,
+                  activated_at: Time.zone.now,
+                  password: pwd,
+                  password_confirmation: pwd
+              )
+        end
+  end
+  private
+  def downcase_email
+    email.downcase!
+  end
+  def create_activation_digest
+    self.activation_token = User.new_token
+    self.activation_digest = User.digest(activation_token)
+  end
+end