RubyGems - barkest_core - Versions diffs - 1.5.3.0 - Mend

barkest_core 1.5.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (308) hide show

checksums.yaml +7 -0
data/.gitignore +13 -0
data/Gemfile +22 -0
data/Gemfile.lock +254 -0
data/MIT-LICENSE +20 -0
data/README.md +364 -0
data/Rakefile +37 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Bold.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-BoldItalic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Italic.ttf +0 -0
data/app/assets/fonts/barkest_core/ArchivoNarrow-Regular.ttf +0 -0
data/app/assets/images/barkest_core/.keep +0 -0
data/app/assets/images/barkest_core/barcode-B.svg +181 -0
data/app/assets/javascripts/barkest_core/.keep +0 -0
data/app/assets/javascripts/barkest_core/application.js +22 -0
data/app/assets/javascripts/barkest_core/bootstrap-datepicker.js +1800 -0
data/app/assets/javascripts/barkest_core/field_init.js +7 -0
data/app/assets/javascripts/barkest_core/jquery.doubleScroll.js +112 -0
data/app/assets/javascripts/barkest_core/masked_edit.js +25 -0
data/app/assets/javascripts/barkest_core/system_status.js.erb +201 -0
data/app/assets/stylesheets/barkest_core/.keep +0 -0
data/app/assets/stylesheets/barkest_core/application.css +17 -0
data/app/assets/stylesheets/barkest_core/custom.css.scss +264 -0
data/app/assets/stylesheets/barkest_core/datepicker3.css +790 -0
data/app/controllers/.keep +0 -0
data/app/controllers/access_groups_controller.rb +74 -0
data/app/controllers/account_activations_controller.rb +29 -0
data/app/controllers/application_controller.rb +5 -0
data/app/controllers/barkest_core/application_controller_base.rb +113 -0
data/app/controllers/barkest_core/engine_controller_base.rb +15 -0
data/app/controllers/barkest_core/testsub_controller.rb +21 -0
data/app/controllers/contact_controller.rb +32 -0
data/app/controllers/log_view_controller.rb +31 -0
data/app/controllers/password_resets_controller.rb +126 -0
data/app/controllers/sessions_controller.rb +64 -0
data/app/controllers/status_controller.rb +150 -0
data/app/controllers/system_config_controller.rb +238 -0
data/app/controllers/system_update_controller.rb +164 -0
data/app/controllers/test_access_controller.rb +44 -0
data/app/controllers/test_report_controller.rb +75 -0
data/app/controllers/users_controller.rb +218 -0
data/app/helpers/.keep +0 -0
data/app/helpers/barkest_core/application_helper.rb +134 -0
data/app/helpers/barkest_core/form_helper.rb +469 -0
data/app/helpers/barkest_core/html_helper.rb +70 -0
data/app/helpers/barkest_core/misc_helper.rb +68 -0
data/app/helpers/barkest_core/pdf_helper.rb +180 -0
data/app/helpers/barkest_core/recaptcha_helper.rb +115 -0
data/app/helpers/barkest_core/sessions_helper.rb +94 -0
data/app/helpers/barkest_core/status_helper.rb +118 -0
data/app/helpers/barkest_core/users_helper.rb +32 -0
data/app/mailers/.keep +0 -0
data/app/mailers/application_mailer.rb +5 -0
data/app/mailers/barkest_core/application_mailer_base.rb +30 -0
data/app/mailers/barkest_core/contact_form.rb +20 -0
data/app/mailers/barkest_core/user_mailer.rb +44 -0
data/app/models/.keep +0 -0
data/app/models/access_group.rb +121 -0
data/app/models/access_group_group_member.rb +13 -0
data/app/models/access_group_user_member.rb +11 -0
data/app/models/barkest_core/auth_config.rb +95 -0
data/app/models/barkest_core/authorize_failure.rb +7 -0
data/app/models/barkest_core/contact_message.rb +37 -0
data/app/models/barkest_core/database_config.rb +223 -0
data/app/models/barkest_core/db_table.rb +21 -0
data/app/models/barkest_core/email_config.rb +132 -0
data/app/models/barkest_core/global_status.rb +267 -0
data/app/models/barkest_core/log_entry.rb +101 -0
data/app/models/barkest_core/log_view_options.rb +51 -0
data/app/models/barkest_core/ms_sql_db_definition.rb +441 -0
data/app/models/barkest_core/ms_sql_definition.rb +221 -0
data/app/models/barkest_core/ms_sql_function.rb +423 -0
data/app/models/barkest_core/not_logged_in.rb +7 -0
data/app/models/barkest_core/pdf_table_builder.rb +407 -0
data/app/models/barkest_core/self_update_config.rb +37 -0
data/app/models/barkest_core/user_alert.rb +29 -0
data/app/models/barkest_core/user_alert_generators.rb +58 -0
data/app/models/barkest_core/user_manager.rb +404 -0
data/app/models/barkest_core/work_path.rb +74 -0
data/app/models/disable_user.rb +18 -0
data/app/models/ldap_access_group.rb +15 -0
data/app/models/system_config.rb +99 -0
data/app/models/user.rb +405 -0
data/app/models/user_login_history.rb +11 -0
data/app/views/.keep +0 -0
data/app/views/access_groups/_form.html.erb +19 -0
data/app/views/access_groups/edit.html.erb +2 -0
data/app/views/access_groups/index.html.erb +32 -0
data/app/views/access_groups/new.html.erb +2 -0
data/app/views/access_groups/show.html.erb +4 -0
data/app/views/barkest_core/contact_form/contact.html.erb +16 -0
data/app/views/barkest_core/contact_form/contact.text.erb +13 -0
data/app/views/barkest_core/testsub/_links.html.erb +5 -0
data/app/views/barkest_core/testsub/page1.html.erb +3 -0
data/app/views/barkest_core/testsub/page2.html.erb +2 -0
data/app/views/barkest_core/testsub/page3.html.erb +2 -0
data/app/views/barkest_core/user_mailer/account_activation.html.erb +7 -0
data/app/views/barkest_core/user_mailer/account_activation.text.erb +6 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.html.erb +3 -0
data/app/views/barkest_core/user_mailer/invalid_password_reset.text.erb +5 -0
data/app/views/barkest_core/user_mailer/password_reset.html.erb +8 -0
data/app/views/barkest_core/user_mailer/password_reset.text.erb +7 -0
data/app/views/contact/index.html.erb +24 -0
data/app/views/layouts/_footer_copyright.html.erb +1 -0
data/app/views/layouts/_menu_admin.html.erb +5 -0
data/app/views/layouts/_menu_anon.html.erb +0 -0
data/app/views/layouts/_menu_auth.html.erb +3 -0
data/app/views/layouts/_menu_footer.html.erb +1 -0
data/app/views/layouts/_nav_logo.html.erb +1 -0
data/app/views/layouts/application.html.erb +2 -0
data/app/views/layouts/barkest_core/_application.html.erb +24 -0
data/app/views/layouts/barkest_core/_footer.html.erb +18 -0
data/app/views/layouts/barkest_core/_header.html.erb +38 -0
data/app/views/layouts/barkest_core/_html_mailer.html.erb +11 -0
data/app/views/layouts/barkest_core/_menu_account.html.erb +14 -0
data/app/views/layouts/barkest_core/_menu_sample.html.erb +1 -0
data/app/views/layouts/barkest_core/_messages.html.erb +4 -0
data/app/views/layouts/barkest_core/_shim.html.erb +4 -0
data/app/views/layouts/barkest_core/_subheader.html.erb +1 -0
data/app/views/layouts/barkest_core/_text_mailer.text.erb +4 -0
data/app/views/layouts/mailer.html.erb +1 -0
data/app/views/layouts/mailer.text.erb +1 -0
data/app/views/log_view/index.html.erb +100 -0
data/app/views/password_resets/edit.html.erb +20 -0
data/app/views/password_resets/new.html.erb +14 -0
data/app/views/sessions/new.html.erb +27 -0
data/app/views/shared/_error_messages.html.erb +29 -0
data/app/views/shared/_generic_user_alert.html.erb +4 -0
data/app/views/status/current.html.erb +34 -0
data/app/views/status/test.html.erb +50 -0
data/app/views/system_config/index.html.erb +25 -0
data/app/views/system_config/show_auth.html.erb +28 -0
data/app/views/system_config/show_database.html.erb +36 -0
data/app/views/system_config/show_email.html.erb +21 -0
data/app/views/system_config/show_self_update.html.erb +13 -0
data/app/views/system_update/index.html.erb +31 -0
data/app/views/system_update/new.html.erb +2 -0
data/app/views/test_access/allow_anon.html.erb +2 -0
data/app/views/test_access/require_admin.html.erb +2 -0
data/app/views/test_access/require_group_x.html.erb +2 -0
data/app/views/test_access/require_user.html.erb +2 -0
data/app/views/test_report/index.csv.csvrb +23 -0
data/app/views/test_report/index.html.erb +6 -0
data/app/views/test_report/index.pdf.prawn +50 -0
data/app/views/test_report/index.xlsx.axlsx +28 -0
data/app/views/users/_user.html.erb +57 -0
data/app/views/users/_user_details.html.erb +15 -0
data/app/views/users/_user_details_for_list.html.erb +1 -0
data/app/views/users/_user_form.html.erb +13 -0
data/app/views/users/disable_confirm.html.erb +19 -0
data/app/views/users/edit.html.erb +15 -0
data/app/views/users/index.html.erb +9 -0
data/app/views/users/new.html.erb +10 -0
data/app/views/users/show.html.erb +46 -0
data/bin/rails +12 -0
data/config/routes.rb +3 -0
data/db/migrate/20160617172539_create_access_groups.rb +10 -0
data/db/migrate/20160617172725_create_users.rb +26 -0
data/db/migrate/20160617172833_create_user_login_histories.rb +12 -0
data/db/migrate/20160622151720_create_access_group_user_members.rb +9 -0
data/db/migrate/20160622151925_create_access_group_group_members.rb +9 -0
data/db/migrate/20160701005706_create_ldap_access_groups.rb +11 -0
data/db/migrate/20161108155029_create_system_configs.rb +11 -0
data/db/seeds/barkest_core_01_create_users.rb +42 -0
data/db/seeds.rb +53 -0
data/lib/barkest_core/concerns/association_with_defaults.rb +55 -0
data/lib/barkest_core/concerns/boolean_parser.rb +88 -0
data/lib/barkest_core/concerns/date_parser.rb +181 -0
data/lib/barkest_core/concerns/email_tester.rb +55 -0
data/lib/barkest_core/concerns/encrypted_fields.rb +156 -0
data/lib/barkest_core/concerns/named_model.rb +73 -0
data/lib/barkest_core/concerns/number_parser.rb +145 -0
data/lib/barkest_core/concerns/utc_conversion.rb +60 -0
data/lib/barkest_core/engine.rb +105 -0
data/lib/barkest_core/extensions/active_record_extensions.rb +120 -0
data/lib/barkest_core/extensions/application_configuration_extensions.rb +38 -0
data/lib/barkest_core/extensions/application_extensions.rb +50 -0
data/lib/barkest_core/extensions/axlsx_extenstions.rb +157 -0
data/lib/barkest_core/extensions/fixture_set_extensions.rb +107 -0
data/lib/barkest_core/extensions/generator_extensions.rb +271 -0
data/lib/barkest_core/extensions/main_app_extensions.rb +35 -0
data/lib/barkest_core/extensions/prawn_document_extensions.rb +367 -0
data/lib/barkest_core/extensions/prawn_table_extensions.rb +131 -0
data/lib/barkest_core/extensions/router_extensions.rb +106 -0
data/lib/barkest_core/extensions/simple_formatter_extensions.rb +66 -0
data/lib/barkest_core/extensions/test_case_extensions.rb +348 -0
data/lib/barkest_core/extensions/time_extensions.rb +164 -0
data/lib/barkest_core/handlers/csv_handler.rb +30 -0
data/lib/barkest_core/version.rb +3 -0
data/lib/barkest_core.rb +324 -0
data/lib/generators/barkest/install_generator.rb +102 -0
data/lib/generators/barkest_core/actions/01_patch_application_controller.rb +55 -0
data/lib/generators/barkest_core/actions/02_patch_application_mailer.rb +56 -0
data/lib/generators/barkest_core/actions/03_patch_assets.rb +62 -0
data/lib/generators/barkest_core/actions/04_patch_layouts.rb +36 -0
data/lib/generators/barkest_core/actions/05_patch_routes.rb +93 -0
data/lib/generators/barkest_core/actions/06_patch_seeds.rb +60 -0
data/lib/generators/barkest_core/actions/07_copy_migrations.rb +51 -0
data/lib/generators/barkest_core/actions/08_configure_database.rb +52 -0
data/lib/generators/barkest_core/actions/09_configure_secrets.rb +29 -0
data/lib/generators/barkest_core/actions/99_patch_gitignore.rb +57 -0
data/lib/generators/barkest_core/install_generator.rb +17 -0
data/test/barkest_core_test.rb +83 -0
data/test/controllers/access_groups_controller_test.rb +53 -0
data/test/controllers/contact_controller_test.rb +10 -0
data/test/controllers/sessions_controller_test.rb +10 -0
data/test/controllers/users_controller_test.rb +10 -0
data/test/dummy/.gitignore +10 -0
data/test/dummy/README.rdoc +28 -0
data/test/dummy/Rakefile +6 -0
data/test/dummy/app/assets/images/.keep +0 -0
data/test/dummy/app/assets/javascripts/application.js +14 -0
data/test/dummy/app/assets/stylesheets/application.css +16 -0
data/test/dummy/app/controllers/application_controller.rb +5 -0
data/test/dummy/app/controllers/concerns/.keep +0 -0
data/test/dummy/app/helpers/application_helper.rb +2 -0
data/test/dummy/app/mailers/.keep +0 -0
data/test/dummy/app/mailers/application_mailer.rb +3 -0
data/test/dummy/app/models/.keep +0 -0
data/test/dummy/app/models/concerns/.keep +0 -0
data/test/dummy/app/views/layouts/application.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.html.erb +1 -0
data/test/dummy/app/views/layouts/mailer.text.erb +1 -0
data/test/dummy/app/views/system_config/show_fake.html.erb +3 -0
data/test/dummy/bin/bundle +3 -0
data/test/dummy/bin/rails +4 -0
data/test/dummy/bin/rake +4 -0
data/test/dummy/bin/setup +29 -0
data/test/dummy/config/application.rb +27 -0
data/test/dummy/config/boot.rb +5 -0
data/test/dummy/config/environment.rb +5 -0
data/test/dummy/config/environments/development.rb +47 -0
data/test/dummy/config/environments/production.rb +79 -0
data/test/dummy/config/environments/test.rb +44 -0
data/test/dummy/config/initializers/assets.rb +11 -0
data/test/dummy/config/initializers/backtrace_silencers.rb +7 -0
data/test/dummy/config/initializers/cookies_serializer.rb +3 -0
data/test/dummy/config/initializers/db_updater_ext.rb +33 -0
data/test/dummy/config/initializers/filter_parameter_logging.rb +4 -0
data/test/dummy/config/initializers/inflections.rb +16 -0
data/test/dummy/config/initializers/mime_types.rb +4 -0
data/test/dummy/config/initializers/session_store.rb +3 -0
data/test/dummy/config/initializers/sys_config_ext.rb +12 -0
data/test/dummy/config/initializers/wrap_parameters.rb +14 -0
data/test/dummy/config/locales/en.yml +23 -0
data/test/dummy/config/routes.rb +60 -0
data/test/dummy/config.ru +4 -0
data/test/dummy/db/schema.rb +95 -0
data/test/dummy/db/seeds/barkest_core_01_create_users.rb +42 -0
data/test/dummy/db/seeds.rb +51 -0
data/test/dummy/lib/assets/.keep +0 -0
data/test/dummy/log/.keep +0 -0
data/test/dummy/public/404.html +67 -0
data/test/dummy/public/422.html +67 -0
data/test/dummy/public/500.html +66 -0
data/test/dummy/public/favicon.ico +0 -0
data/test/dummy/sql/my_test_view.sql +3 -0
data/test/fixtures/access_groups.yml +21 -0
data/test/fixtures/users.yml +71 -0
data/test/helpers/barkest_core/sessions_helper_test.rb +22 -0
data/test/integration/access_group_mgmt_test.rb +33 -0
data/test/integration/access_test.rb +24 -0
data/test/integration/account_activations_access_test.rb +12 -0
data/test/integration/contact_test.rb +98 -0
data/test/integration/extra_partial_test.rb +41 -0
data/test/integration/log_view_access_test.rb +12 -0
data/test/integration/password_resets_test.rb +101 -0
data/test/integration/reports_test.rb +53 -0
data/test/integration/status_access_test.rb +27 -0
data/test/integration/system_config_access_test.rb +24 -0
data/test/integration/system_update_access_test.rb +19 -0
data/test/integration/users_access_test.rb +34 -0
data/test/integration/users_edit_test.rb +178 -0
data/test/integration/users_index_test.rb +62 -0
data/test/integration/users_login_test.rb +67 -0
data/test/integration/users_signup_test.rb +54 -0
data/test/mailers/.keep +0 -0
data/test/mailers/barkest_core/contact_form_test.rb +28 -0
data/test/mailers/barkest_core/user_mailer_test.rb +43 -0
data/test/mailers/previews/barkest_core/contact_form_preview.rb +17 -0
data/test/mailers/previews/barkest_core/user_mailer_preview.rb +26 -0
data/test/models/access_group_group_member_test.rb +28 -0
data/test/models/access_group_test.rb +114 -0
data/test/models/access_group_user_member_test.rb +28 -0
data/test/models/barkest_core/auth_config_test.rb +57 -0
data/test/models/barkest_core/bool_parser_test.rb +28 -0
data/test/models/barkest_core/contact_message_test.rb +61 -0
data/test/models/barkest_core/database_config_test.rb +33 -0
data/test/models/barkest_core/date_parser_test.rb +110 -0
data/test/models/barkest_core/email_config_test.rb +57 -0
data/test/models/barkest_core/global_status_test.rb +50 -0
data/test/models/barkest_core/ms_sql_db_updater_test.rb +115 -0
data/test/models/barkest_core/ms_sql_definition_test.rb +102 -0
data/test/models/barkest_core/ms_sql_function_test.rb +131 -0
data/test/models/barkest_core/number_parser_test.rb +29 -0
data/test/models/barkest_core/self_update_config_test.rb +29 -0
data/test/models/barkest_core/user_alert_test.rb +19 -0
data/test/models/barkest_core/user_manager_test.rb +34 -0
data/test/models/barkest_core/work_path_test.rb +26 -0
data/test/models/disable_user_test.rb +27 -0
data/test/models/generic_time_test.rb +66 -0
data/test/models/ldap_access_group_test.rb +31 -0
data/test/models/pdf_table_builder_test.rb +6 -0
data/test/models/system_config_test.rb +78 -0
data/test/models/user_login_history_test.rb +37 -0
data/test/models/user_test.rb +130 -0
data/test/test_helper.rb +63 -0
metadata +798 -0

data/app/controllers/.keep ADDED Viewed

File without changes

data/app/controllers/access_groups_controller.rb ADDED Viewed

@@ -0,0 +1,74 @@
+##
+# This is the controller that allows managing the access groups used for authorizing access to resources.
+#
+class AccessGroupsController < ApplicationController
+  before_action :validate_user
+  before_action :set_access_group, only: [:show, :edit, :update, :destroy]
+  ##
+  # GET /access_groups
+  def index
+    @access_groups = AccessGroup.all.sorted
+  end
+  ##
+  # GET /access_groups/1
+  def show
+  end
+  ##
+  # GET /access_groups/new
+  def new
+    @access_group = AccessGroup.new
+  end
+  ##
+  # GET /access_groups/1/edit
+  def edit
+  end
+  ##
+  # POST /access_groups
+  def create
+    @access_group = AccessGroup.new(access_group_params)
+    if @access_group.save
+      redirect_to access_groups_url, notice: 'Access group was successfully created.'
+    else
+      render :new
+    end
+  end
+  ##
+  # PATCH/PUT /access_groups/1
+  def update
+    if @access_group.update(access_group_params)
+      redirect_to access_groups_url, notice: 'Access group was successfully updated.'
+    else
+      render :edit
+    end
+  end
+  ##
+  # DELETE /access_groups/1
+  def destroy
+    @access_group.destroy
+    redirect_to access_groups_url, notice: 'Access group was successfully destroyed.'
+  end
+  private
+  def validate_user
+    authorize! true
+  end
+  # Use callbacks to share common setup or constraints between actions.
+  def set_access_group
+    @access_group = AccessGroup.find(params[:id])
+  end
+  # Only allow a trusted parameter "white list" through.
+  def access_group_params
+    params.require(:access_group).permit(:name, :ldap_group_list)
+  end
+end

data/app/controllers/account_activations_controller.rb ADDED Viewed

@@ -0,0 +1,29 @@
+##
+# This is a simple controller that handles account activation requests.
+#
+class AccountActivationsController < ApplicationController
+  ##
+  # Takes in the user's email address and activation token as parameters.
+  #
+  # If the activation token is correct for the email, then the account is activated.
+  # If a user is logged in, then the user must be activated already, so alert them that reactivation is not allowed.
+  def edit
+    if logged_in?
+      flash[:danger] = 'You cannot reactivate your account.'
+      redirect_to root_url
+    else
+      user = User.find_by(email: params[:email].downcase)
+      if user && !user.activated? && user.authenticated?(:activation, params[:id])
+        user.activate
+        log_in user
+        flash[:success] = 'Your account has been activated.'
+        redirect_to user
+      else
+        flash[:danger] = 'Invalid activation link'
+        redirect_to root_url
+      end
+    end
+  end
+end

data/app/controllers/application_controller.rb ADDED Viewed

@@ -0,0 +1,5 @@
+##
+# Default application controller.  Easy to override in child apps.
+class ApplicationController < ::BarkestCore::ApplicationControllerBase
+end

data/app/controllers/barkest_core/application_controller_base.rb ADDED Viewed

@@ -0,0 +1,113 @@
+module BarkestCore
+  ##
+  # This is the default application controller for the Barkest library.
+  # The application's ApplicationController should inherit from this.
+  class ApplicationControllerBase < ActionController::Base
+    include BarkestCore::SessionsHelper
+    include BarkestCore::RecaptchaHelper
+    include BarkestCore::StatusHelper
+    protect_from_forgery with: :exception
+    layout 'layouts/application'
+    helper BarkestCore::Engine.helpers
+    ##
+    # Should we show the denial reason when a user cannot access an action?
+    #
+    # Override this for any controller you want to show the denial reasons on.
+    def show_denial_reason?
+      false
+    end
+    ##
+    # Authorize the current action.
+    #
+    # * If +group_list+ is not provided or only contains +false+ then any authenticated user will be authorized.
+    # * If +group_list+ contains +true+ then only system administrators will be authorized.
+    # * Otherwise the +group_list+ contains a list of accepted groups that will be authorized.
+    #   Any user with one or more groups from the list will be granted access.
+    def authorize!(*group_list)
+      begin
+        # an authenticated user must exist.
+        unless logged_in?
+          store_location
+          raise_not_logged_in "You need to login to access '#{request.fullpath}'.",
+                              'nobody is logged in'
+        end
+        # clean up the group list.
+        group_list ||= []
+        group_list.delete false
+        group_list.delete ''
+        if group_list.include?(true)
+          # group_list contains "true" so only a system admin may continue.
+          unless system_admin?
+            if show_denial_reason?
+              flash[:info] = 'The requested path is only available to system administrators.'
+            end
+            raise_authorize_failure "Your are not authorized to access '#{request.fullpath}'.",
+                                    'requires system administrator'
+          end
+          log_authorize_success 'user is system admin'
+        elsif group_list.blank?
+          # group_list is empty or contained nothing but empty strings and boolean false.
+          # everyone can continue.
+          log_authorize_success 'only requires authenticated user'
+        else
+          # the group list contains one or more authorized groups.
+          # we want them to all be uppercase strings.
+          group_list = group_list.map{|v| v.to_s.upcase}.sort
+          result = current_user.has_any_group?(*group_list)
+          unless result
+            message = group_list.join(', ')
+            if show_denial_reason?
+              flash[:info] = "The requested path requires one of these groups: #{message}"
+            end
+            raise_authorize_failure "You are not authorized to access '#{request.fullpath}'.",
+                                    "requires one of: #{message}"
+          end
+          log_authorize_success "user has '#{result}' group"
+        end
+      rescue BarkestCore::AuthorizeFailure => err
+        flash[:danger] = err.message
+        redirect_to root_url and return false
+      end
+      true
+    end
+    rescue_from NotLoggedIn do |exception|
+      flash[:info] = exception.message
+      redirect_to login_url
+    end
+    private
+    def raise_authorize_failure(message, log_message = nil)
+      log_authorize_failure message, log_message
+      raise BarkestCore::AuthorizeFailure.new(message)
+    end
+    def raise_not_logged_in(message, log_message = nil)
+      log_authorize_failure message, log_message
+      raise BarkestCore::NotLoggedIn.new(message)
+    end
+    def log_authorize_failure(message, log_message = nil)
+      log_message ||= message
+      Rails.logger.info "AUTH(FAILURE): #{request.fullpath}, #{current_user}, #{message}"
+    end
+    def log_authorize_success(message)
+      Rails.logger.debug "AUTH(SUCCESS): #{request.fullpath}, #{current_user}, #{message}"
+    end
+  end
+end

data/app/controllers/barkest_core/engine_controller_base.rb ADDED Viewed

@@ -0,0 +1,15 @@
+module BarkestCore
+  ##
+  # An application controller base with a few modifications making it ideal for the parent class to engine controllers.
+  class EngineControllerBase < ApplicationControllerBase
+    # As an engine, we need to make sure the NotLoggedIn exception flows properly.
+    # If we let this fall through, it looks for the route inside our engine.
+    # We need to tell it to look at the main app instead.
+    rescue_from NotLoggedIn do |exception|
+      flash[:info] = exception.message
+      redirect_to main_app.login_url
+    end
+  end
+end

data/app/controllers/barkest_core/testsub_controller.rb ADDED Viewed

@@ -0,0 +1,21 @@
+module BarkestCore
+  ##
+  # A namespaced controller just for testing the submenu.
+  class TestsubController < ApplicationController
+    def page1
+    end
+    def page2
+      flash.now[:success] = 'The subheader should be above this message.'
+    end
+    def page3
+    end
+  end
+end

data/app/controllers/contact_controller.rb ADDED Viewed

@@ -0,0 +1,32 @@
+##
+# This controller provides the basic contact form.
+#
+class ContactController < ApplicationController
+  ##
+  # GET /contact
+  def index
+    @msg = BarkestCore::ContactMessage.new
+  end
+  ##
+  # POST /contact
+  def create
+    @msg = get_message
+    if @msg.valid? && verify_recaptcha_challenge(@msg)
+      @msg.remote_ip = request.remote_ip
+      @msg.send_message
+      flash[:success] = 'Your message has been sent.'
+      redirect_to root_url
+    else
+      render 'index'
+    end
+  end
+  private
+  def get_message
+    BarkestCore::ContactMessage.new(params.require(:barkest_core_contact_message).permit(:your_name, :your_email, :related_to, :subject, :body))
+  end
+end

data/app/controllers/log_view_controller.rb ADDED Viewed

@@ -0,0 +1,31 @@
+require 'time'
+class LogViewController < ApplicationController
+  before_action :valid_user
+  before_action :load_options
+  before_action :load_log
+  def index
+    @options.max_records = 50
+  end
+  private
+  def valid_user
+    authorize! true
+  end
+  def load_options
+    @options = BarkestCore::LogViewOptions.new(
+        params.include?(:barkest_core_log_view_options) ?
+            params.require(:barkest_core_log_view_options).permit(:min_severity, :start_time, :end_time, :search) :
+            { start_time: 7.days.ago }
+    )
+  end
+  def load_log
+    # load, filter, and reverse sort.
+    @log = BarkestCore::LogEntry.read_log.keep_if{ |r| @options.keep_log_entry? r }.sort{ |a,b| b <=> a }
+  end
+end

data/app/controllers/password_resets_controller.rb ADDED Viewed

@@ -0,0 +1,126 @@
+##
+# This is a simple controller that processes user password reset requests.
+#
+class PasswordResetsController < ApplicationController
+  before_action :not_logged_in
+  before_action :load_user, only: [:edit, :update]
+  before_action :valid_user, only: [:edit, :update]
+  before_action :check_expiration, only: [:edit, :update]
+  ##
+  # Shows the form allowing the user to enter their email address and confirm their non-robot status.
+  #
+  def new
+  end
+  ##
+  # Verifies that the user is not a robot via recaptcha, once that is complete the submitted
+  # email address is looked up.  Depending on the status of the user account looked up, one
+  # of four actions will occur.
+  #
+  # 1. The user account is active and valid, a reset email is sent.
+  # 2. The user account is disabled, a disabled account message is sent.
+  # 3. The user account has not been activated, an inactive account message is sent.
+  # 4. The user account doesn't exist, a non-existent account message is sent.
+  #
+  # Because a message is always sent, the caller cannot determine if the email address
+  # is a valid user account.  If it is a valid attempt on a non-existent account,
+  # only the recipient will know that the email address is not associated with an account
+  # and will be able to work from there to create a new account.
+  #
+  def create
+    unless verify_recaptcha_challenge
+      flash.now[:danger] = 'You must complete the recaptcha challenge to reset your password.'
+      render 'new' and return
+    end
+    email = params[:password_reset][:email].downcase
+    unless email && User::VALID_EMAIL_REGEX.match(email)
+      flash.now[:danger] = 'You must provide a valid email address to reset your password.'
+      render 'new' and return
+    end
+    @user = User.find_by(email: email)
+    if @user && @user.ldap?
+      User.send_ldap_reset_email(email, request.remote_ip)
+    elsif @user && @user.enabled? && @user.activated?
+      @user.create_reset_digest
+      @user.send_password_reset_email request.remote_ip
+    elsif @user
+      if !@user.enabled?
+        User.send_disabled_reset_email(email, request.remote_ip)
+      elsif !@user.active?
+        User.send_inactive_reset_email(email, request.remote_ip)
+      else
+        User.send_missing_reset_email(email, request.remote_ip)
+      end
+    else
+      User.send_missing_reset_email(email, request.remote_ip)
+    end
+    flash[:info] = 'An email with password reset information has been sent to you.'
+    redirect_to root_url
+  end
+  ##
+  # Shows a form allowing the user to specify a new password for their account.
+  # This is of course after verifying that the email address is correct and the
+  # password reset token for the email address is correct.
+  #
+  def edit
+  end
+  ##
+  # Resets the user's password.  This is only done once the email address is
+  # confirmed as being associated with a valid account, and the password reset
+  # token provided matches that account.  The user must also complete a
+  # recaptcha challenge to prevent robotic submissions, and the user's password
+  # must not be blank.
+  #
+  def update
+    if params[:user][:password].blank?
+      @user.errors.add(:password, 'can\'t be blank')
+      render 'edit'
+    elsif !verify_recaptcha_challenge(@user)
+      render 'edit'
+    elsif @user.update_attributes(user_params)
+      log_in @user
+      flash[:success] = 'Password has been reset.'
+      redirect_to @user
+    else
+      render 'edit'
+    end
+  end
+  private
+  def not_logged_in
+    if logged_in?
+      flash[:danger] = 'A logged in user cannot request a password reset.'
+      redirect_to root_url
+    end
+  end
+  def user_params
+    params.require(:user).permit(:password, :password_confirmation)
+  end
+  def load_user
+    @user = User.find_by(email: params[:email])
+  end
+  def valid_user
+    unless @user && !@user.ldap? && @user.enabled? && @user.activated? && @user.authenticated?(:reset, params[:id])
+      redirect_to root_url
+    end
+  end
+  def check_expiration
+    if @user.password_reset_expired?
+      flash[:danger] = 'Password reset request has expired.'
+      redirect_to new_password_reset_url
+    end
+  end
+end