cccux 0.1.0

data/config/routes.rb

@@ -0,0 +1,63 @@
+Cccux::Engine.routes.draw do
+  # Devise authentication routes - use different path to avoid conflicts
+  # devise_for :users, class_name: 'Cccux::User', path: 'auth'
+  
+  root 'dashboard#index'
+  get '/test', to: 'simple#index'
+  
+  # Model Discovery Routes
+  get 'model-discovery', to: 'dashboard#model_discovery', as: :model_discovery
+  post 'sync-permissions', to: 'dashboard#sync_permissions', as: :sync_permissions
+  
+  # Admin CRUD routes for user management
+  resources :users do
+      member do
+        patch :toggle_active
+        post :assign_role
+        delete :remove_role
+      end
+      collection do
+        get :search
+      end
+    end
+    
+    resources :roles do
+      member do
+        patch :toggle_active
+        get :permissions
+        patch :update_permissions
+      end
+      collection do
+        get :search
+        patch :reorder
+        get :model_columns
+      end
+    end
+    
+    resources :ability_permissions do
+      member do
+        patch :toggle_active
+      end
+      collection do
+        get :search
+        get :grid
+        post :bulk_create
+        get :actions_for_subject
+      end
+    end
+    
+    resources :user_roles, only: [:index, :create, :destroy] do
+      collection do
+        get :search
+      end
+    end
+    
+    resources :role_abilities, only: [:index, :create, :destroy] do
+      collection do
+        get :search
+      end
+    end
+    
+    # Catch-all route for any unmatched paths in CCCUX - redirect to home
+    match '*unmatched', to: 'dashboard#not_found', via: :all
+end

data/db/migrate/20250626194001_create_cccux_roles.rb

@@ -0,0 +1,15 @@
+class CreateCccuxRoles < ActiveRecord::Migration[8.0]
+  def change
+    create_table :cccux_roles do |t|
+      t.string :name
+      t.text :description
+      t.boolean :active
+      t.integer :priority
+
+      t.timestamps
+    end
+    add_index :cccux_roles, :name, unique: true
+    add_index :cccux_roles, :active
+    add_index :cccux_roles, :priority
+  end
+end

data/db/migrate/20250626194007_create_cccux_ability_permissions.rb

@@ -0,0 +1,18 @@
+class CreateCccuxAbilityPermissions < ActiveRecord::Migration[8.0]
+  def change
+    create_table :cccux_ability_permissions do |t|
+      t.string :action
+      t.string :subject
+      t.text :description
+      t.boolean :active
+
+      t.timestamps
+    end
+    
+    # Add indexes for better query performance
+    add_index :cccux_ability_permissions, :action
+    add_index :cccux_ability_permissions, :subject
+    add_index :cccux_ability_permissions, :active
+    add_index :cccux_ability_permissions, [:action, :subject], unique: true
+  end
+end

data/db/migrate/20250626194011_create_cccux_user_roles.rb

@@ -0,0 +1,13 @@
+class CreateCccuxUserRoles < ActiveRecord::Migration[8.0]
+  def change
+    create_table :cccux_user_roles do |t|
+      t.references :user, null: false, foreign_key: { to_table: :users }
+      t.references :role, null: false, foreign_key: { to_table: :cccux_roles }
+
+      t.timestamps
+    end
+    
+    # Add unique index to prevent duplicate user-role assignments
+    add_index :cccux_user_roles, [:user_id, :role_id], unique: true
+  end
+end

data/db/migrate/20250626194016_create_cccux_role_abilities.rb

@@ -0,0 +1,10 @@
+class CreateCccuxRoleAbilities < ActiveRecord::Migration[8.0]
+  def change
+    create_table :cccux_role_abilities do |t|
+      t.references :role, null: false, foreign_key: { to_table: :cccux_roles }
+      t.references :ability_permission, null: false, foreign_key: { to_table: :cccux_ability_permissions }
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20250627170611_add_owned_to_cccux_role_abilities.rb

@@ -0,0 +1,9 @@
+class AddOwnedToCccuxRoleAbilities < ActiveRecord::Migration[7.1]
+  def change
+    add_column :cccux_role_abilities, :owned, :boolean, default: false, null: false
+    
+    # Add index for better query performance
+    add_index :cccux_role_abilities, [:role_id, :ability_permission_id, :owned], 
+              name: 'index_role_abilities_on_role_permission_owned'
+  end
+end

data/db/migrate/20250705193709_add_context_to_cccux_role_abilities.rb

@@ -0,0 +1,9 @@
+class AddContextToCccuxRoleAbilities < ActiveRecord::Migration[8.0]
+  def change
+    add_column :cccux_role_abilities, :context, :string, default: 'global', null: false
+    
+    # Add index for better query performance
+    add_index :cccux_role_abilities, [:role_id, :ability_permission_id, :context], 
+              name: 'index_role_abilities_on_role_permission_context'
+  end
+end

data/db/migrate/20250706214415_add_ownership_configuration_to_role_abilities.rb

@@ -0,0 +1,21 @@
+class AddOwnershipConfigurationToRoleAbilities < ActiveRecord::Migration[8.0]
+  def change
+    add_column :cccux_role_abilities, :ownership_source, :string
+    add_column :cccux_role_abilities, :ownership_conditions, :text
+    
+    # Add index for ownership_source lookups
+    add_index :cccux_role_abilities, :ownership_source unless index_exists?(:cccux_role_abilities, :ownership_source)
+    
+    # Remove old unique index if it exists
+    if index_exists?(:cccux_role_abilities, [:role_id, :ability_permission_id, :owned], name: 'index_role_abilities_on_role_permission_owned')
+      remove_index :cccux_role_abilities, name: 'index_role_abilities_on_role_permission_owned'
+    end
+    
+    # Add new unique index including ownership_source
+    unless index_exists?(:cccux_role_abilities, [:role_id, :ability_permission_id, :owned, :context, :ownership_source], name: 'index_role_abilities_on_role_permission_owned_source')
+      add_index :cccux_role_abilities, [:role_id, :ability_permission_id, :owned, :context, :ownership_source], 
+                unique: true, 
+                name: 'index_role_abilities_on_role_permission_owned_source'
+    end
+  end
+end

data/db/seeds.rb

@@ -0,0 +1,136 @@
+# Seeds for CCCUX Engine
+puts "🌱 Seeding CCCUX data..."
+
+# Create comprehensive permissions for all CCCUX models
+cccux_models = ['User', 'Role', 'AbilityPermission', 'UserRole', 'RoleAbility']
+# Use granular RESTful actions instead of simplified CRUD
+restful_actions = ['index', 'show', 'new', 'create', 'edit', 'update', 'destroy']
+
+puts "📋 Creating permissions for CCCUX models..."
+cccux_models.each do |model|
+  restful_actions.each do |action|
+    permission = Cccux::AbilityPermission.find_or_create_by(
+      action: action,
+      subject: "Cccux::#{model}"
+    ) do |p|
+      p.description = "#{action.capitalize} #{model.downcase.pluralize}"
+      p.active = true
+    end
+  end
+end
+
+# Create permissions for host app models (without Cccux namespace)
+host_models = ['User', 'Role', 'AbilityPermission']
+host_models.each do |model|
+  restful_actions.each do |action|
+    permission = Cccux::AbilityPermission.find_or_create_by(
+      action: action,
+      subject: model
+    ) do |p|
+      p.description = "#{action.capitalize} host app #{model.downcase.pluralize}"
+      p.active = true
+    end
+  end
+end
+
+# Create special 'manage' permissions for Role and AbilityPermission
+['Role', 'AbilityPermission'].each do |model|
+  permission = Cccux::AbilityPermission.find_or_create_by(
+    action: 'manage',
+    subject: model
+  ) do |p|
+    p.description = "Full management of #{model.downcase.pluralize}"
+    p.active = true
+  end
+end
+
+puts "✅ Created #{Cccux::AbilityPermission.count} permissions"
+
+# Create Role Manager Role
+role_manager_role = Cccux::Role.find_or_create_by(name: 'Role Manager') do |role|
+  role.description = 'System administrator with full access to all CCCUX functionality'
+  role.active = true
+  role.priority = 1
+end
+
+# Create Guest Role  
+guest_role = Cccux::Role.find_or_create_by(name: 'Guest') do |role|
+  role.description = 'Guest users with minimal read-only permissions'
+  role.active = true
+  role.priority = 10
+end
+
+# Create Basic User Role (for new registrations)
+basic_role = Cccux::Role.find_or_create_by(name: 'Basic User') do |role|
+  role.description = 'Standard registered user with limited permissions'
+  role.active = true
+  role.priority = 5
+end
+
+puts "✅ Created #{Cccux::Role.count} roles"
+
+puts "🔑 Assigning permissions to Role Manager role..."
+# Assign Role Manager permissions - all RESTful actions:
+role_manager_permissions = []
+
+# CCCUX models: all RESTful actions
+cccux_models.each do |model|
+  restful_actions.each do |action|
+    permission = Cccux::AbilityPermission.find_by(
+      action: action, 
+      subject: "Cccux::#{model}"
+    )
+    role_manager_permissions << permission if permission
+  end
+end
+
+# Host app models: all RESTful actions
+host_models.each do |model|
+  restful_actions.each do |action|
+    permission = Cccux::AbilityPermission.find_by(
+      action: action,
+      subject: model
+    )
+    role_manager_permissions << permission if permission
+  end
+end
+
+# Special manage permissions for Role and AbilityPermission
+['Role', 'AbilityPermission'].each do |model|
+  permission = Cccux::AbilityPermission.find_by(
+    action: 'manage',
+    subject: model
+  )
+  role_manager_permissions << permission if permission
+end
+
+# Assign all permissions to Role Manager role
+role_manager_permissions.compact.each do |permission|
+  unless role_manager_role.ability_permissions.include?(permission)
+    Cccux::RoleAbility.create!(role: role_manager_role, ability_permission: permission)
+  end
+end
+
+puts "🔐 Assigning minimal permissions to Guest role..."
+# Guest users get minimal read-only permissions
+guest_permissions = [
+  { action: 'index', subject: 'Order' },
+  { action: 'show', subject: 'Order' }
+]
+
+guest_permissions.each do |perm|
+  permission = Cccux::AbilityPermission.find_by(action: perm[:action], subject: perm[:subject])
+  if permission && !guest_role.ability_permissions.include?(permission)
+    Cccux::RoleAbility.create!(role: guest_role, ability_permission: permission)
+  end
+end
+
+puts "✅ CCCUX seeded successfully!"
+puts "🔧 #{role_manager_role.ability_permissions.count} permissions assigned to Role Manager role"
+puts "👥 #{guest_role.ability_permissions.count} permissions assigned to Guest role"
+puts "📊 #{Cccux::Role.count} roles created"
+puts ""
+puts "🎯 Next steps:"
+puts "   1. Run the interactive setup: rake cccux:engine_init"
+puts "   2. Or manually create your first Role Manager via console"
+puts "   3. Visit /cccux to access the admin interface" 

data/lib/cccux/engine.rb

@@ -0,0 +1,50 @@
+module Cccux
+  class Engine < ::Rails::Engine
+    # Only isolate namespace if explicitly mounted - check this later
+    isolate_namespace Cccux
+    
+    # Prevent automatic route registration - only register when explicitly mounted
+    config.autoload_paths += %W(#{config.root}/lib)
+    
+    # Automatically append engine migrations to host app
+    initializer :append_migrations do |app|
+      unless app.root.to_s.match root.to_s
+        config.paths["db/migrate"].expanded.each do |expanded_path|
+          app.config.paths["db/migrate"] << expanded_path
+        end
+      end
+    end
+    
+    # Ensure concerns are autoloaded
+    config.autoload_paths << root.join('app', 'models', 'concerns')
+    config.eager_load_paths << root.join('app', 'models', 'concerns')
+    
+    # Load rake tasks
+    rake_tasks do
+      load 'tasks/cccux.rake'
+    end
+    
+    # Configure assets for both Sprockets and Propshaft
+    initializer "cccux.assets" do |app|
+      # Add engine assets to the load path
+      app.config.assets.paths << root.join('app', 'assets', 'stylesheets')
+      app.config.assets.paths << root.join('app', 'assets', 'javascripts')
+      
+      # For Propshaft, ensure engine assets are available
+      if defined?(Propshaft)
+        app.config.assets.paths << root.join('app', 'assets')
+      end
+    end
+    
+    # Include helpers in host application only when mounted
+    config.to_prepare do
+      # Only include helpers if the engine is actually mounted
+      if Rails.application.routes.respond_to?(:include?) && 
+         Rails.application.routes.include?(Cccux::Engine)
+        # Temporarily disabled to avoid conflicts with Devise
+        # ActionView::Base.include Cccux::AuthorizationHelper
+      end
+    end
+
+  end
+end

data/lib/cccux/version.rb

@@ -0,0 +1,3 @@
+module Cccux
+  VERSION = "0.1.0"
+end

data/lib/cccux.rb

@@ -0,0 +1,7 @@
+require "cccux/version"
+require "cccux/engine"
+require "cancancan"
+
+module Cccux
+  # Your code goes here...
+end