browsercms 4.0.0.alpha → 4.0.0.beta

data/app/views/cms/section_nodes/_children.html.erb

@@ -1,3 +1,5 @@
+<span class="children <%= initial_visibility_class(parent) %>">
 <% children.keys.each do |section_node| %>
     <%= render partial: 'section_node', locals: {section_node: section_node, parent: parent, children: children[section_node]} %>
 <% end %>
+</span>

data/app/views/cms/section_nodes/_row_buttons.html.erb

@@ -7,5 +7,5 @@
   <!--<li><%= link_to("Hide", "#", class: 'add-link') unless section_node.root? %></li>-->
   <li><%= link_to 'Remove', engine_aware_path(section_node.node),
                   class: 'add-link http_delete confirm_with_title',
-                  title: "Are you sure you want to remove #{section_node.node.name}?" unless section_node.root? %></li>
+                  title: "Are you sure you want to remove #{section_node.node.name}?" if section_node.deletable? %></li>
 </ul>

data/app/views/cms/section_nodes/_section_node.html.erb

@@ -1,4 +1,4 @@
-<ul class="nav nav-list <%= initial_visibility_class(section_node) %>">
+<ul class="nav nav-list">
   <li class="nav-list-item">
     <span class="nav-list-span <%= sitemap_depth_class(section_node) %> <%= draggable_class?(@modifiable_sections, section_node, parent) %>"
           data-id="<%= section_node.id %>"

data/app/views/cms/sessions/new.html.erb

@@ -1,17 +1,16 @@
 <% use_page_title 'Sign in' %>
 <%= render 'cms/application/page_title' %>
 
-  <%= simple_form_for(resource, :as => resource_name, :url => session_path(resource_name)) do |f| %>
-      <%=  render layout: 'cms/application/main_with_sidebar' do  %>
+<%= simple_form_for(resource, :as => resource_name, :url => session_path(resource_name)) do |f| %>
+    <%= render layout: 'cms/application/main_with_sidebar' do %>
         <%= f.input :login, :required => false, :autofocus => true %>
         <%= f.input :password, :required => false %>
         <%= f.input :remember_me, :as => :boolean if devise_mapping.rememberable? %>
-
-      <% end %>
-      <%= render layout: 'cms/application/row' do %>
-          <%= button_menu :bottom do %>
-              <%= f.button :submit, "Sign in", class: 'right btn-primary' %>
-          <% end %>
-      <% end %>
-  <% end %>
-<%= render "devise/shared/links" %>
+        <%= render "devise/shared/links" %>
+    <% end %>
+    <%= render layout: 'cms/application/row' do %>
+        <%= button_menu :bottom do %>
+            <%= f.button :submit, "Sign in", class: 'right btn-primary' %>
+        <% end %>
+    <% end %>
+<% end %>

data/app/views/layouts/cms/application.html.erb

@@ -2,7 +2,7 @@
 <html>
 <head>
   <%= javascript_include_tag "cms/application" %>
-  <%= javascript_include_tag *cms_content_editor %>
+  <%= javascript_include_tag cms_content_editor %>
   <%= render 'layouts/cms/head' %>
 </head>
 <body>
@@ -11,6 +11,9 @@
 </nav>
 <%= render 'cms/sites/flash' %>
 <section class="container center-column main-container bottom-form-btn clearfix">
+  <% if content_for?(:before_main_content) %>
+      <%= yield :before_main_content  %>
+  <% end %>
   <%= yield %>
   <div class="padded row-fluid">
     <div class="span12"><%= render :partial => 'layouts/cms/footer' %></div>

data/app/views/portlets/email_page/_form.html.erb

@@ -1,5 +1,5 @@
 <%= f.input :name %>
 <%= f.input :sender, hint: "Enter the email for the 'from' field on any emails sent out." %>
-<%= f.input :subject, as: :cms_text_field, default: "A link you might be interested in" %>
+<%= f.input :subject, input_html: { value: f.object.subject || "A link you might be interested in" } %>
 <%= f.input :success_url, hint: "Leave blank to return the same page" %>
 <%= f.input :template, as: :template_editor  %>

data/app/views/portlets/email_page/render.html.erb

@@ -1,5 +1,5 @@
 <div class="email-page-portlet">
-  <%= form_for @email_message, :url => cms.portlet_handler_path(@portlet, "deliver"), :method=>'post' do |f| %>
+  <%= cms_form_for @email_message, :url => cms.portlet_handler_path(@portlet, "deliver"), :method=>'post' do |f| %>
     <%= hidden_field_tag :email_page_portlet_url, @email_page_portlet_url %>
     <%= f.cms_error_messages %>
     <p>

data/app/views/portlets/list/_form.html.erb

@@ -0,0 +1,33 @@
+<%
+   # Setup that would otherwise be done in Controller#new / #edit
+   if @block.content_type.blank?
+     @block.content_type = Cms::HtmlBlock.name
+   end
+   @orderable_attributes = @block.current_content_type.orderable_attributes
+
+   views = {
+           list: "List",
+           table: "Table",
+   }
+%>
+<% if @block.persisted? %>
+    <% content_for :sidebar_after do %>
+    <div class='sidebar-block'>
+      <h4 class="gray">Custom View</h4>
+
+      <p>Create/edit the following file: app/views/<%= @block.view_as_path %></p>
+    </div>
+    <% end %>
+<% end %>
+<%= f.input :name, as: :name %>
+<%= f.input :content_type,
+            collection: Cms::ContentType.available,
+            label_method: :display_name,
+            value_method: :name,
+            include_blank: false,
+            input_html: {'data-role' => "content_type_selector"} %>
+<%= f.input :limit, hint: 'Show at most this many items.', placeholder: 'Displays all items if left blank.' %>
+<%= render partial: 'cms/content_types/order_field', locals: {f: f, collection: @orderable_attributes} %>
+<%= f.input :reverse_order, as: :boolean %>
+<%= f.input :view_as, collection: views.invert, include_blank: false %>
+<%= f.input :template, as: :template_editor %>

data/app/views/portlets/list/_list.html.erb

@@ -0,0 +1,6 @@
+<h1 class="cms-list-portlet"><%= @portlet.name %></h1>
+<ul class="cms-list-portlet" data-view-as="list">
+  <% collection.each do |content| %>
+      <li><%= link_to_addressable_content(content.name, content) %></li>
+  <% end %>
+</ul>

data/app/views/portlets/list/_table.html.erb

@@ -0,0 +1,13 @@
+<h1 class="cms-list-portlet"><%= @portlet.name %></h1>
+<table class="cms-list-portlet" data-view-as="table">
+  <thead>
+  <tr>
+    <th>Name</th>
+  </tr>
+  </thead>
+  <% collection.each do |content| %>
+      <tr>
+        <td><%= link_to_addressable_content(content.name, content) %></td>
+      </tr>
+  <% end %>
+</table>

data/app/views/portlets/list/render.html.erb

@@ -0,0 +1 @@
+<%= render file: @portlet.view_as_full_path, locals: {collection: @content_blocks} %>

data/app/views/portlets/tag_cloud/_form.html.erb

@@ -1,4 +1,4 @@
 <%= f.input :name %>
 <%= f.input :limit, :size => 4 %>
-<%= f.input :sizes, :default => TagCloudPortlet.default_sizes, as: :cms_text_field %>
+<%= f.input :sizes, input_html: { value: f.object.sizes || TagCloudPortlet.default_sizes } %>
 <%= f.input :template, as: :template_editor %>

data/config/routes.rb

@@ -14,20 +14,20 @@ Cms::Engine.routes.draw do
              skip: [:sessions],
              path: :users,
              class_name: 'Cms::PersistentUser',
-             controllers: { passwords: 'cms/passwords' },
+             controllers: {passwords: 'cms/passwords'},
              module: :devise
 
   devise_scope :cms_user do
     get '/login' => "sessions#new", :as => 'login'
-    get '/login' => "sessions#new", :as =>  :new_cms_user_session
-    post '/login' => "sessions#create", :as =>  :cms_user_session
+    get '/login' => "sessions#new", :as => :new_cms_user_session
+    post '/login' => "sessions#create", :as => :cms_user_session
     get '/logout' => "sessions#destroy", :as => 'logout'
 
   end
 
   get '/toolbar', :to => "toolbar#index", :as => 'toolbar'
 
-  put "/inline_content/:content_name/:id", to: "inline_content#update", as: "update_inline_content"
+  put "/inline_content/:id", to: "inline_content#update", as: "update_inline_content"
   resources :page_components
   resources :connectors do
     member do
@@ -39,6 +39,11 @@ Cms::Engine.routes.draw do
   end
   resources :links
 
+  resources :content_types, only: [] do
+    collection do
+      post :index
+    end
+  end
   resources :pages do
     member do
       put :archive
@@ -116,7 +121,7 @@ Cms::Engine.routes.draw do
   resources :redirects
   resources :page_partials, :controller => 'dynamic_views'
   resources :page_templates, :controller => 'dynamic_views'
-  resources :page_routes, except: :show  do
+  resources :page_routes, except: :show do
     resources :conditions, :controller => "page_route_conditions"
     resources :requirements, :controller => "page_route_requirements"
   end

data/db/browsercms.seeds.rb

@@ -1,11 +1,12 @@
 require 'cms/data_loader'
 
+Cms::User.current = cmsadmin = Cms::User.new(login: "cmsadmin", first_name: "CMS", last_name:  "Administrator", email: "cmsadmin@example.com")
 if %w[development test dev local].include?(Rails.env)
-  pwd = "cmsadmin"
+  pwd = cmsadmin.change_password('cmsadmin')
 else
-  pwd = (0..8).inject("") { |s, i| s << (('a'..'z').to_a + ('A'..'Z').to_a + ('0'..'9').to_a).sample }
+  pwd = cmsadmin.new_password
 end
-Cms::User.current = create_user(:cmsadmin, :login => "cmsadmin", :first_name => "CMS", :last_name => "Administrator", :email => "cmsadmin@example.com", :password => pwd, :password_confirmation => pwd)
+cmsadmin.save
 
 create_permission(:administrate, :name => "administrate", :full_name => "Administer CMS", :description => "Allows users to administer the CMS, including adding users and groups.")
 create_permission(:edit_content, :name => "edit_content", :full_name => "Edit Content", :description => "Allows users to Add, Edit and Delete both Pages and Blocks. Can Save (but not Publish) and Assign them as well.")
@@ -21,8 +22,8 @@ group_types(:cms_user).permissions<<permissions(:publish_content)
 create_group(:guest, :name => 'Guest', :code => 'guest', :group_type => group_types(:guest_group_type))
 create_group(:content_admin, :name => 'Cms Administrators', :code => 'cms-admin', :group_type => group_types(:cms_user))
 create_group(:content_editor, :name => 'Content Editors', :code => 'content-editor', :group_type => group_types(:cms_user))
-users(:cmsadmin).groups << groups(:content_admin)
-users(:cmsadmin).groups << groups(:content_editor)
+cmsadmin.groups << groups(:content_admin)
+cmsadmin.groups << groups(:content_editor)
 
 groups(:content_admin).permissions<<permissions(:administrate)
 groups(:content_editor).permissions<<permissions(:edit_content)
@@ -30,11 +31,10 @@ groups(:content_editor).permissions<<permissions(:publish_content)
 
 create_site(:default, :name => "Default", :domain => "example.com")
 create_section(:root, :name => "My Site", :path => "/", :root => true)
-create_section(:system, :name => "system", :parent => sections(:root), :path => "/system", :hidden => true)
-
-Cms::Group.all.each { |g| g.sections = Cms::Section.all }
 
 create_page(:home, :name => "Home", :path => "/", :section => sections(:root), :template_file_name => "default.html.erb", :cacheable => true)
+
+create_section(:system, :name => "system", :parent => sections(:root), :path => "/system", :hidden => true)
 create_page(:not_found, :name => "Page Not Found", :path => "/system/not_found", :section => sections(:system), :template_file_name => "default.html.erb", :publish_on_save => true, :hidden => true, :cacheable => true)
 create_page(:access_denied, :name => "Access Denied", :path => "/system/access_denied", :section => sections(:system), :template_file_name => "default.html.erb", :publish_on_save => true, :hidden => true, :cacheable => true)
 create_page(:server_error, :name => "Server Error", :path => "/system/server_error", :section => sections(:system), :template_file_name => "default.html.erb", :publish_on_save => true, :hidden => true, :cacheable => true)
@@ -52,6 +52,8 @@ pages(:server_error).create_connector(html_blocks(:server_error), "main")
 pages(:server_error).publish!
 pages(:home).publish!
 
+Cms::Group.all.each { |g| g.sections = Cms::Section.all }
+
 unless Cms::DataLoader.silent_mode
   puts "*************************************************"
   puts "* YOUR CMS username/password is: cmsadmin/#{pwd}"

data/db/migrate/20130327184912_browsercms400.rb

@@ -55,10 +55,40 @@ class Browsercms400 < ActiveRecord::Migration
       t.timestamps
     end
 
+    add_devise_users
+    remove_reset_password_portlet
+    add_external_users
   end
 
+
+
   private
 
+  def add_external_users
+    change_table :cms_users do |t|
+      t.column :type, :string, default: 'Cms::User'
+      t.column :source, :string
+      t.text :external_data
+    end
+  end
+
+  def remove_reset_password_portlet
+    Cms::Portlet.connection.execute("UPDATE cms_portlets SET type = 'DeprecatedPlaceholder' WHERE type = 'ResetPasswordPortlet'")
+  end
+
+  def add_devise_users
+    change_table(:cms_users) do |t|
+      t.string :encrypted_password, :null => false, :default => ""
+      t.rename   :reset_token, :reset_password_token
+      t.datetime :reset_password_sent_at
+      t.rename :remember_token_expires_at, :remember_created_at
+      t.remove :remember_token
+      t.remove :crypted_password
+    end
+
+    add_index :cms_users, :email,                :unique => true
+    add_index :cms_users, :reset_password_token, :unique => true
+  end
   # In 4.x, all core tables MUST start with cms_. See https://github.com/browsermedia/browsercms/issues/639
   def apply_cms_namespace_to_all_core_tables
     unversioned_tables.each do |table_name|

data/doc/features/simple_form_refactor.md

@@ -30,10 +30,10 @@ All of the existing simple_form input mappings are available. See http://simple-
 Here are some examples showing how to use the CMS specific inputs.
 
 ```
-<%= f.input :name, as: :cms_text_field, default: "Some Value" %>
+<%= f.input :name %>
 ```
 
-Generates the 'name' field, and a :path input if the content block is addressable. Can supply a default value that will be used when creating a new record.
+Generates the 'name' field as a text field.
 
 ```
 <%= f.input :expires_on, as: :date_picker %>

data/doc/release_notes.md

@@ -1,5 +1,34 @@
-# v4.0
+# v4.0.0.beta
 
+* List Portlet [#678] - A convenient way to find content without custom coding.
+* NameInput [#682] - Improved :name input allows for consistent name fields look/feel. New content will be generated with it.
+* [Fixes #684] Forgot Password
+
+  * /cms/forgot-password doesn't exist
+  * Reenable the forgot password link (/forgot-password)
+  * The edit_password page (pulled from email) doesn't work when followed.
+
+## [#678] List Portlet
+
+This portlet is provides a configurable means to query for and display content without coding, similar to a greatly simplified Drupal views. The intent is to handle easy cases of finding a few content items without needing to create a full portlet. The following configuration options are supported:
+
+1. Content Type - User can select any available content type to list.
+2. Limit - Restrict the max results to some number (i.e. 5). Can be left blank to find all.
+3. Order - The results list can be ordered based on fields specific to each content type.
+4. Reverse order - Change the sorting order (asc to desc).
+5. View As - Results can be shown as a list or a table. Views can be customized as well.
+
+### Customizable Views
+
+Each list portlet can also have its own specific view that overrides the default list or table view. Developers can add a new file in a specific location, based on the name of the portlet. This view will then be used when showing the portlet. The exact path for each portlet is displayed in the sidebar. If using a table view, this will almost always need to be overriden since there is no way to configure which columns to show in the portlet.
+
+
+
+# v4.0.0.alpha
+
+Try it! gem install browsercms --pre
+
+See (and please help with!) current bug list here: https://github.com/browsermedia/browsercms/issues?milestone=22&state=open
 
 ## Major Features
 
@@ -185,6 +214,14 @@ There is now a core API for handling users that are authenticated/authorized aga
 
 A sample implementation of an authentication strategy can be found in lib/cms/authentication/test_password_strategy. Strategies are implemented as Devise Strategies and should either login or pass to the next strategy.
 
+Don't forget to enable your new strategy in config/initializers/devise.rb
+```
+# Add test_password strategy BEFORE other CMS authentication strategies
+config.warden do |manager|
+  manager.default_strategies(:scope => :cms_user).unshift :my_custom_strategy
+end
+```
+
 This implementation is intended to replace CAS based strategies used in BrowserCMS 3.x. It provides the ability to style the login page directly, and avoid having an external CAS server software.
 
 ## Upgrading

data/lib/cms/acts/cms_user.rb

@@ -100,11 +100,11 @@ module Cms
           # Return a list of the sections associated with this user that can be viewed.
           # Overridden from user so that able_to_view? will work correctly.
           def viewable_sections
-            @viewable_sections ||= Cms::Section.find(:all, :include => :groups, :conditions => ["#{Cms::Group.table_name}.id  in (?)", cms_groups.collect(&:id)])
+            @viewable_sections ||= Cms::Section.includes(:groups).where(["#{Cms::Group.table_name}.id  in (?)", cms_groups.collect(&:id)])
           end
 
           def permissions
-            @permissions ||= Cms::Permission.find(:all, :include => :groups, :conditions => ["#{Cms::Group.table_name}.id  in (?)", cms_groups.collect(&:id)])
+            @permissions ||= Cms::Permission.includes(:groups).where(["#{Cms::Group.table_name}.id  in (?)", cms_groups.collect(&:id)])
           end
 
           def able_to_edit?(section)

data/lib/cms/authentication/test_password_strategy.rb

@@ -16,4 +16,13 @@ module Cms
   end
 end
 
-Warden::Strategies.add(:test_password, Cms::Authentication::TestPasswordStrategy)
+Warden::Strategies.add(:test_password, Cms::Authentication::TestPasswordStrategy)
+
+# NOTE:  To enable a custom password strategy for BrowserCMS you must also add it to to the devise configuration.
+# 
+# For example enable the test_password strategy above by adding the following to config/initializers/devise.rb
+
+# # Add test_password strategy BEFORE other CMS authentication strategies
+# config.warden do |manager|
+#   manager.default_strategies(:scope => :cms_user).unshift :test_password
+# end

data/lib/cms/behaviors/connecting.rb

@@ -5,19 +5,22 @@ module Cms
       def self.default_naming_for(klass)
         klass.name.demodulize.titleize
       end
+
       def self.included(model_class)
         model_class.extend(MacroMethods)
       end
+
       module MacroMethods
         def connectable?
           !!@is_connectable
         end
+
         def is_connectable(options={})
           @is_connectable = true
           extend ClassMethods
           include InstanceMethods
 
-          attr_accessor :connect_to_page_id, :connect_to_container,:connected_page
+          attr_accessor :connect_to_page_id, :connect_to_container, :connected_page
           #attr_accessible :connect_to_page_id, :connect_to_container,:connected_page
 
           has_many :connectors, :as => :connectable, :class_name => 'Cms::Connector'
@@ -25,7 +28,7 @@ module Cms
           attr_accessor :updated_by_page
 
           after_create :connect_to_page
-          after_save :update_connected_pages, :unless=>:skip_callbacks
+          after_save :update_connected_pages, :unless => :skip_callbacks
 
 
         end
@@ -35,19 +38,26 @@ module Cms
         def content_block_type
           ::ActiveModel::Naming.singular(self)
         end
+
         def display_name
           Connecting.default_naming_for(self)
         end
+
         def display_name_plural
           display_name.pluralize
-        end                
+        end
       end
       module InstanceMethods
 
         # Returns a machine readable key that identifies the type of content this is.
         # Should match the key passed to ContentType.find_by_key
         def content_name
-          self.class.name.demodulize.underscore
+          class_name = self.class.name
+          if class_name.starts_with?("Cms::")
+            class_name.demodulize.underscore
+          else
+            class_name.underscore
+          end
         end
 
         def connected_pages
@@ -70,7 +80,7 @@ module Cms
         def display_name_plural
           self.class.display_name_plural
         end
-      
+
         def connect_to_page
           unless connect_to_page_id.blank? || connect_to_container.blank?
             #Note that we are setting connected_page so that page can look at that 
@@ -85,6 +95,7 @@ module Cms
         def supports_inline_editing?
           true
         end
+
         #
         # After blocks are updated, all pages they are connected to should also be updated,
         # connecting the page to the new version of the block, as well as putting the pages into
@@ -105,17 +116,17 @@ module Cms
               if p != updated_by_page
                 #This just creates a new version of the page
                 action = deleted? ? "Deleted" : "Edited"
-                p.update_attributes(:version_comment => "#{self.class.name.demodulize} ##{id} was #{action}", :publish_on_save=>false)
+                p.update_attributes(:version_comment => "#{self.class.name.demodulize} ##{id} was #{action}", :publish_on_save => false)
 
                 #The previous step will copy over a connector pointing to the previous version of this connectable
                 #We need to change that to point at the new version of this connectable
                 connectors_for_page = p.connectors
-#                puts "cfp #{connectors_for_page}"
+                #                puts "cfp #{connectors_for_page}"
                 page_draft_version = p.draft.version
                 cnn = connectors_for_page.for_page_version(page_draft_version)
-#                puts "Connectors for page version #{page_draft_version} are #{cnn.all}"
+                #                puts "Connectors for page version #{page_draft_version} are #{cnn.all}"
                 connectors = cnn.for_connectable(self)
-#                puts "Found connectors #{connectors.all}"
+                #                puts "Found connectors #{connectors.all}"
                 connectors.each do |con|
                   con.update_attribute(:connectable_version, draft_version)
                 end