biovision-base 0.5.170614

data/app/assets/stylesheets/biovision/base/track.scss

@@ -0,0 +1,28 @@
+#agents-filter {
+  .pages {
+    align-items: center;
+    display: flex;
+
+    button {
+      height: 1.2rem;
+      margin: 0;
+      padding: 0;
+      width: 2rem;
+    }
+  }
+}
+
+div.track {
+  border: .1rem dotted;
+  font-size: $small_font_size;
+  margin: .4rem;
+  padding: .4rem;
+  width: calc(100% - .8rem);
+
+  > div {
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+    width: 100%;
+  }
+}

data/app/controllers/admin/agents_controller.rb

@@ -0,0 +1,30 @@
+class Admin::AgentsController < AdminController
+  include LockableEntity
+  include ToggleableEntity
+
+  before_action :set_entity, except: [:index]
+  before_action :check_entity_lock, only: [:toggle]
+
+  # get /admin/agents
+  def index
+    @filter     = params[:filter] || Hash.new
+    @collection = Agent.page_for_administration current_page, @filter
+  end
+
+  # get /admin/agents/:id
+  def show
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = Agent.find_by(id: params[:id], deleted: false)
+    if @entity.nil?
+      handle_http_404('Agent is not found or was deleted')
+    end
+  end
+end

data/app/controllers/admin/browsers_controller.rb

@@ -0,0 +1,30 @@
+class Admin::BrowsersController < AdminController
+  include LockableEntity
+  include ToggleableEntity
+
+  before_action :set_entity, except: [:index]
+  before_action :check_entity_lock, only: [:toggle]
+
+  # get /admin/browsers
+  def index
+    @collection = Browser.page_for_administration(current_page)
+  end
+
+  # get /admin/browsers/:id
+  def show
+    @collection = @entity.agents.page_for_administration(current_page)
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = Browser.find_by(id: params[:id], deleted: false)
+    if @entity.nil?
+      handle_http_404('Browser is not found or was deleted')
+    end
+  end
+end

data/app/controllers/admin/codes_controller.rb

@@ -0,0 +1,25 @@
+class Admin::CodesController < AdminController
+  before_action :set_entity, except: [:index]
+
+  # get /admin/codes
+  def index
+    @collection = Code.page_for_administration current_page
+  end
+
+  # get /admin/codes/:id
+  def show
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = Code.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find code')
+    end
+  end
+end

data/app/controllers/admin/editable_pages_controller.rb

@@ -0,0 +1,25 @@
+class Admin::EditablePagesController < AdminController
+  before_action :set_entity, except: [:index]
+
+  # get /admin/editable_pages
+  def index
+    @collection = EditablePage.page_for_administration
+  end
+
+  # get /admin/editable_pages/:id
+  def show
+  end
+
+  private
+
+  def restrict_access
+    require_privilege :chief_editor
+  end
+
+  def set_entity
+    @entity = EditablePage.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404("Cannot find editable_page #{params[:id]}")
+    end
+  end
+end

data/app/controllers/admin/index_controller.rb

@@ -0,0 +1,5 @@
+class Admin::IndexController < AdminController
+  # get /admin
+  def index
+  end
+end

data/app/controllers/admin/metrics_controller.rb

@@ -0,0 +1,29 @@
+class Admin::MetricsController < AdminController
+  before_action :set_entity, except: [:index]
+
+  # get /admin/metrics
+  def index
+    @collection = Metric.page_for_administration
+  end
+
+  # get /admin/metrics/:id
+  def show
+  end
+
+  # get /admin/metrics/:id/data
+  def data
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :metrics_manager
+  end
+
+  def set_entity
+    @entity = Metric.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find metric')
+    end
+  end
+end

data/app/controllers/admin/privilege_groups_controller.rb

@@ -0,0 +1,48 @@
+class Admin::PrivilegeGroupsController < AdminController
+  before_action :set_entity, except: [:index]
+  before_action :set_privilege, only: [:add_privilege, :remove_privilege]
+
+  # get /admin/privilege_groups
+  def index
+    @collection = PrivilegeGroup.page_for_administration
+  end
+
+  # get /admin/privilege_groups/:id
+  def show
+    @collection = @entity.privileges.ordered_by_name
+  end
+
+  # put /admin/privilege_groups/:id/privileges/:privilege_id
+  def add_privilege
+    @entity.add_privilege(@privilege)
+
+    render json: { data: { privilege_ids: @entity.privilege_ids } }
+  end
+
+  # delete /admin/privilege_groups/:id/privileges/:privilege_id
+  def remove_privilege
+    @entity.remove_privilege(@privilege)
+
+    render json: { data: { privilege_ids: @entity.privilege_ids } }
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = PrivilegeGroup.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find privilege group')
+    end
+  end
+
+  def set_privilege
+    @privilege = Privilege.find_by(id: params[:privilege_id])
+    if @entity.nil?
+      handle_http_404('Cannot find privilege')
+    end
+  end
+end

data/app/controllers/admin/privileges_controller.rb

@@ -0,0 +1,5 @@
+class Admin::PrivilegesController < AdminController
+  include LockableEntity
+  include EntityPriority
+  include Biovision::Admin::Privileges
+end

data/app/controllers/admin/tokens_controller.rb

@@ -0,0 +1,28 @@
+class Admin::TokensController < AdminController
+  include ToggleableEntity
+
+  before_action :set_entity, except: [:index]
+
+  # get /admin/tokens
+  def index
+    @filter     = params[:filter] || {}
+    @collection = Token.page_for_administration(current_page, @filter)
+  end
+
+  # get /admin/tokens/:id
+  def show
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = Token.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find token')
+    end
+  end
+end

data/app/controllers/admin/users_controller.rb

@@ -0,0 +1,87 @@
+class Admin::UsersController < AdminController
+  include Authentication
+  include ToggleableEntity
+
+  before_action :set_entity, except: [:index, :search]
+  before_action :set_privilege, only: [:grant_privilege, :revoke_privilege]
+
+  # get /admin/users
+  def index
+    @filter     = params[:filter] || Hash.new
+    @collection = User.page_for_administration current_page, @filter
+  end
+
+  # get /admin/users/:id
+  def show
+  end
+
+  # get /admin/users/:id/tokens
+  def tokens
+    @collection = Token.owned_by(@entity).page_for_administration(current_page)
+  end
+
+  # get /admin/users/:id/codes
+  def codes
+    @collection = Code.owned_by(@entity).page_for_administration(current_page)
+  end
+
+  # get /admin/users/:id/privileges
+  def privileges
+  end
+
+  # put /admin/users/:id/privileges/:privilege_id
+  def grant_privilege
+    @privilege.grant(@entity)
+
+    render json: { data: { user_privilege_ids: @entity.user_privilege_ids } }
+  end
+
+  # delete /admin/users/:id/privileges/:privilege_id
+  def revoke_privilege
+    @privilege.revoke(@entity)
+
+    render json: { data: { user_privilege_ids: @entity.user_privilege_ids } }
+  end
+
+  # get /admin/users/search
+  def search
+    query = param_from_request(:q)
+    if query.blank?
+      @collection = []
+    else
+      @collection = User.search(query).order('slug asc').first(10)
+    end
+  end
+
+  # post /admin/users/:id/authenticate
+  def authenticate
+    cookies['pt'] = {
+      value: cookies['token'],
+      expires: 1.year.from_now,
+      domain: :all,
+      httponly: true
+    }
+    create_token_for_user(@entity)
+    redirect_to my_path
+  end
+
+  protected
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = User.find_by(id: params[:id])
+    if @entity.nil?
+      handle_http_404('Cannot find user')
+    end
+  end
+
+  def set_privilege
+    @privilege = Privilege.find_by(id: params[:privilege_id], deleted: false)
+    if @privilege.nil?
+      handle_http_404("Cannot use privilege #{params[:privilege_id]}")
+    end
+  end
+end

data/app/controllers/admin_controller.rb

@@ -0,0 +1,10 @@
+class AdminController < ApplicationController
+  before_action :restrict_access
+
+  protected
+
+  def restrict_access
+    return if UserPrivilege.user_has_any_privilege?(current_user)
+    handle_http_401("User #{current_user&.id} has no privileges")
+  end
+end

data/app/controllers/agents_controller.rb

@@ -0,0 +1,67 @@
+class AgentsController < AdminController
+  before_action :set_entity, only: [:edit, :update, :destroy]
+  before_action :restrict_editing, only: [:edit, :update, :destroy]
+
+  # get /agents/new
+  def new
+    @entity = Agent.new
+  end
+
+  # post /agents
+  def create
+    @entity = Agent.new entity_parameters
+    if @entity.save
+      redirect_to admin_agent_path(@entity)
+    else
+      render :new, status: :bad_request
+    end
+  end
+
+  # get /agents/:id
+  def show
+  end
+
+  # get /agents/:id/edit
+  def edit
+  end
+
+  # patch /agents/:id
+  def update
+    if @entity.update entity_parameters
+      redirect_to admin_agent_path(@entity), notice: t('agents.update.success')
+    else
+      render :edit, status: :bad_request
+    end
+  end
+
+  # delete /agents/:id
+  def destroy
+    if @entity.update! deleted: true
+      flash[:notice] = t('agents.destroy.success')
+    end
+    redirect_to admin_agents_path
+  end
+
+  private
+
+  def restrict_access
+    require_privilege :administrator
+  end
+
+  def set_entity
+    @entity = Agent.find_by(id: params[:id], deleted: false)
+    if @entity.nil?
+      handle_http_404('Agent is not found or was deleted')
+    end
+  end
+
+  def restrict_editing
+    if @entity.locked?
+      redirect_to admin_agent_path(@entity), alert: t('agents.edit.forbidden')
+    end
+  end
+
+  def entity_parameters
+    params.require(:agent).permit(Agent.entity_parameters)
+  end
+end

data/app/controllers/authentication_controller.rb

@@ -0,0 +1,70 @@
+class AuthenticationController < ApplicationController
+  include Authentication
+
+  before_action :redirect_authenticated_user, except: [:new, :destroy]
+  before_action :set_foreign_site, only: [:auth_callback]
+
+  # get /login
+  def new
+  end
+
+  # post /login
+  def create
+    user = User.find_by(slug: params[:login].to_s.downcase)
+    if user&.authenticate(params[:password].to_s) && user.allow_login?
+      create_token_for_user(user)
+      Metric.register(User::METRIC_AUTHENTICATION_SUCCESS)
+      redirect_to root_path
+    else
+      Metric.register(User::METRIC_AUTHENTICATION_FAILURE)
+      flash.now[:alert] = t(:could_not_log_in)
+      render :new, status: :unauthorized
+    end
+  end
+
+  # delete /logout
+  def destroy
+    deactivate_token if current_user
+    redirect_to root_path
+  end
+
+  # get /auth/:provider/callback
+  def auth_callback
+    data = request.env['omniauth.auth']
+    user = @foreign_site.authenticate(data, tracking_for_entity)
+    create_token_for_user(user) if user.allow_login?
+
+    redirect_to my_path
+  end
+
+  private
+
+  def deactivate_token
+    token = Token.find_by token: cookies['token'].split(':').last
+    token.update active: false
+    pop_token
+  end
+
+  def set_foreign_site
+    @foreign_site = ForeignSite.with_slug(params[:provider]).first
+    if @foreign_site.nil?
+      metric = Metric::METRIC_HTTP_503
+      status = :service_unavailable
+      handle_http_error('Cannot set foreign site', metric, status, status)
+    end
+  end
+
+  def pop_token
+    if cookies['pt']
+      cookies['token'] = {
+        value: cookies['pt'],
+        expires: 1.year.from_now,
+        domain: :all,
+        httponly: true
+      }
+      cookies['pt']    = nil
+    else
+      cookies['token'] = nil
+    end
+  end
+end