chaltron 1.1.7 → 2.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c903358c42ce7e75e0ecae0e4f87b025e9909f769ec87c7644a02fa36cf8a948
-  data.tar.gz: 5cf855bce93ee306d909091109db3947c279ab284a00e96662b748b17fdb9a2c
+  metadata.gz: aefae6179b039a391256431f1581b0a57d28abf2a3c4edb33f9541368f30e3b8
+  data.tar.gz: 4e8d46b611a4874dd2f3f5399ab24a08fdcf85c5434cb04b194ef8bb45fa0bb3
 SHA512:
-  metadata.gz: 6e272d644dd254dffb34be9997ce334fbd5ce76894c9315933cc8a0ac766c212eeba164c7deffdc93e87ef34e7bc9ae889ebcb249b5b3d99155cc5af6a1cc270
-  data.tar.gz: d5867fa6b7f3e3279db592afada65c3bb85d801a17f604e56c7c660d871e33edc5f0afe7ef3703bfbbaa95074a7223df8d8aca954531e9066da36793decfb943
+  metadata.gz: f69e5c6708976f4e2448c5820584039685b4c6e61b2cc6162fb68759fb3f2e72e670a399eea0927f7fe16f3ebe56ea06d9c6a02a19d10394b962c06c33e596ce
+  data.tar.gz: 90dfb275ad24a7d88405c16c772227f8367f1d1c619c2bd0c7f129f711eb2cf431a338729d900c8b3146208d86148a2d9af28ed08b825eb5249a28ca5b1aea7f

data/app/assets/javascripts/chaltron.js

@@ -1,19 +1 @@
-//= require jquery
-//= require jquery_ujs
-//= require popper
-//= require bootstrap
-//= require datatables/jquery.dataTables
-//= require datatables/dataTables.bootstrap4
-//= require datatables/extensions/Responsive/dataTables.responsive
-//= require datatables/extensions/Responsive/responsive.bootstrap4
-//= require datatables/extensions/Select/dataTables.select
-//= require nprogress
-//= require nprogress-turbolinks
-//= require nprogress-ajax
-
 //= require_tree ./chaltron
-
-
-NProgress.configure({
-  showSpinner: false,
-});

data/app/assets/javascripts/chaltron/core.js.erb

@@ -0,0 +1,62 @@
+// Using UMD pattern from
+// https://github.com/umdjs/umd#regular-module
+// `returnExports.js` version
+(function (root, factory) {
+  if (typeof define === 'function' && define.amd) {
+    // AMD. Register as an anonymous module.
+    define('Chaltron', function(){ return factory(root);});
+  } else if (typeof module === 'object' && module.exports) {
+    // Node. Does not work with strict CommonJS, but
+    // only CommonJS-like environments that support module.exports,
+    // like Node.
+    module.exports = factory(root);
+  } else {
+    // Browser globals (root is window)
+    root.Chaltron = factory(root);
+  }
+}(this, function(global) {
+  'use strict';
+  // Use previously defined object if exists in current scope
+  var Chaltron = global && global.Chaltron || {};
+
+  // Check if value is different than undefined and null;
+  var isSet = function(value) {
+    return typeof(value) !== 'undefined' && value !== null;
+  };
+
+  var DEFAULT_OPTIONS = {
+    defaultLocale: 'en',
+    locale: 'en'
+  };
+  var key;
+  for (key in DEFAULT_OPTIONS) if (!isSet(Chaltron[key])) {
+    Chaltron[key] = DEFAULT_OPTIONS[key];
+  }
+
+  // Load locales files
+  Chaltron.locales = {}
+  <%  Dir.glob(File.expand_path('../locales/*.json', __FILE__)) do |file| %>
+    Chaltron.locales["<%= File.basename(file, '.json') %>"] = <%= File.read(file) %>
+  <% end %>
+
+  // Return current locale. If no locale has been set, then
+  // the current locale will be the default locale.
+  Chaltron.currentLocale = function() {
+    return this.locale || this.defaultLocale;
+  };
+
+  Chaltron.missingTranslation = function(scope, locale) {
+    return 'missing translation ' + scope + ' for ' + locale;
+  };
+
+  Chaltron.translate = function(scope, locale) {
+    locale = locale || Chaltron.currentLocale();
+    if (!isSet(Chaltron.locales[locale]) || !isSet(Chaltron.locales[locale][scope])) {
+      return Chaltron.missingTranslation(scope, locale);
+    }
+    return Chaltron.locales[locale][scope];
+  };
+
+  // Just return a value to define the module export.
+  return Chaltron;
+}));

data/app/assets/javascripts/chaltron/datatables.js

@@ -0,0 +1,69 @@
+document.addEventListener('turbolinks:load', function(){
+  var defaultOptions = {
+    destroy: true,
+    autoWidth: false,
+    responsive: true,
+    stateSave: true,
+    language: Chaltron.translate('datatables')
+  };
+
+  // generic datatable
+  var container = $('table.datatable');
+  if (container.length > 0) {
+    var table = container.DataTable(defaultOptions);
+    document.addEventListener('turbolinks:before-cache', function() {
+      table.destroy();
+    });
+  }
+
+  // users
+  container = $('table#users');
+  if (container.length > 0) {
+    var user_table = container.DataTable(defaultOptions);
+    document.addEventListener('turbolinks:before-cache', function() {
+      user_table.destroy();
+    });
+  }
+
+  // logs
+  container = $('table#logs');
+  if (container.length > 0) {
+    var log_table = container.DataTable($.extend({}, defaultOptions, {
+      processing: true,
+      serverSide: true,
+      ajax: container.data('source'),
+      // default sorting: date (2nd column) desc
+      order: [[1,'desc']],
+      columns: [
+        { data: 'severity', searchable: false },
+        { data: 'date',     searchable: false },
+        { data: 'message' },
+        { data: 'category', searchable: false },
+      ],
+      columnDefs: [
+        { orderSequence: ['desc', 'asc'], targets: [ 1 ] },
+        { className: 'text-center', 'targets': [ 0 ] }
+      ]
+    }));
+    document.addEventListener('turbolinks:before-cache', function() {
+      log_table.destroy();
+    });
+  }
+
+  // ldap_create
+  container = $('table#ldap_create');
+  if (container.length > 0) {
+    var ldap_create_table = container.DataTable($.extend({}, defaultOptions, {
+      paging: false,
+      // default sorting: uid (2nd column) asc
+      order: [[1,'asc']],
+      columnDefs: [
+        { orderable: false, className: 'select-checkbox', targets: 0 }
+      ]
+    }));
+    document.addEventListener('turbolinks:before-cache', function() {
+      ldap_create_table.destroy();
+    });
+  }
+
+});

data/app/assets/javascripts/chaltron/flash_messages.js

@@ -0,0 +1,14 @@
+document.addEventListener('turbolinks:load', function(){
+  
+  // flash messages
+  var flash = $('.flash-container div.alert');
+  if (flash.length > 0) {
+    flash.click(function(){
+      $(this).fadeOut();
+    });
+    setTimeout(function(){
+      flash.fadeOut();
+    }, 5000);
+  }
+
+});

data/app/assets/javascripts/chaltron/ldap_create.js

@@ -0,0 +1,44 @@
+$(document).on('turbolinks:load', function() {
+  container = $('table#ldap_create');
+  if (container.length > 0) {
+
+    var toggleButton = function() {
+      var any = $('input.entry' + ':checkbox')
+                .filter(function() { return this.checked; })
+                .length > 0;
+      if (any) {
+        $('#ldap_create_button').prop('disabled', false);
+      } else {
+        $('#ldap_create_button').prop('disabled', true);
+      }
+    };
+    // checkboxes
+    $('input.entry' + ':checkbox:disabled').prop('indeterminate', true);
+    $('input.entry' + ':checkbox').off().on('click', function() {
+      toggleButton();
+    });
+    $('#entry-check-all').off().on('click', function() {
+      $('input.entry' + ':checkbox:enabled').prop('checked', this.checked);
+      toggleButton();
+    });
+
+    $('form#ldap_create').on('submit', function(event) {
+      var selectedEntry = $('input.entry' + ':checkbox:checked')
+                          .map(function() { return $(this).attr('data-entry'); })
+                          .get();
+      if(selectedEntry.lenght == 0) {
+        // should nevere be here!!
+        event.preventDefault();
+      } else {
+        $.each(selectedEntry, function(index, entry){
+          $('<input/>', {
+            name: 'uids[]',
+            type: 'hidden',
+            multiple: 'multiple',
+            value: entry
+          }).appendTo('form#ldap_create');
+        });
+      }
+    });
+  }
+});

data/app/assets/javascripts/chaltron/locales/en.json

@@ -0,0 +1,25 @@
+{
+  "datatables": {
+    "sEmptyTable":     "No data available in table",
+    "sInfo":           "Showing _START_ to _END_ of _TOTAL_ entries",
+    "sInfoEmpty":      "Showing 0 to 0 of 0 entries",
+    "sInfoFiltered":   "(filtered from _MAX_ total entries)",
+    "sInfoPostFix":    "",
+    "sInfoThousands":  ",",
+    "sLengthMenu":     "Show _MENU_ entries",
+    "sLoadingRecords": "Loading...",
+    "sProcessing":     "Processing...",
+    "sSearch":         "Search:",
+    "sZeroRecords":    "No matching records found",
+    "oPaginate": {
+      "sFirst":    "First",
+      "sLast":     "Last",
+      "sNext":     "Next",
+      "sPrevious": "Previous"
+    },
+    "oAria": {
+      "sSortAscending":  ": activate to sort column ascending",
+      "sSortDescending": ": activate to sort column descending"
+    }
+  }
+}

data/app/assets/javascripts/chaltron/locales/it.json

@@ -0,0 +1,25 @@
+{
+  "datatables": {
+    "sEmptyTable":     "Nessun dato presente nella tabella",
+    "sInfo":           "Vista da _START_ a _END_ di _TOTAL_ elementi",
+    "sInfoEmpty":      "Vista da 0 a 0 di 0 elementi",
+    "sInfoFiltered":   "(filtrati da _MAX_ elementi totali)",
+    "sInfoPostFix":    "",
+    "sInfoThousands":  ".",
+    "sLengthMenu":     "Visualizza _MENU_ elementi",
+    "sLoadingRecords": "Caricamento...",
+    "sProcessing":     "Elaborazione...",
+    "sSearch":         "Cerca:",
+    "sZeroRecords":    "La ricerca non ha portato alcun risultato.",
+    "oPaginate": {
+      "sFirst":      "Inizio",
+      "sPrevious":   "Precedente",
+      "sNext":       "Successivo",
+      "sLast":       "Fine"
+    },
+    "oAria": {
+      "sSortAscending":  ": attiva per ordinare la colonna in ordine crescente",
+      "sSortDescending": ": attiva per ordinare la colonna in ordine decrescente"
+    }
+  }
+}

data/app/assets/javascripts/chaltron/navbar.js

@@ -0,0 +1,86 @@
+function NavbarBuilder() {
+
+  function renderDropdownMenu(item){
+    var i, ref;
+    ref = $(item).find('ul li a');
+    for(i = 0; i < ref.length; i++) {
+      $(ref[i]).addClass('dropdown-item').removeClass('nav-link');
+    }
+    ref = $(item).find('ul');
+    for(i = 0; i < ref.length; i++) {
+      renderDropdownLinks(ref[i]);
+    }
+  }
+
+  function renderDropdownLinks(item) {
+    var links = $(item).find('li a');
+    klass = 'dropdown-menu';
+    if($(item).parent().hasClass('dropdown-menu-right')) {
+      klass += ' dropdown-menu-right';
+    }
+    var div = $('<div></div>').addClass(klass).attr('aria-labelledby', 'navbarDropdown').append(links);
+    $(item).replaceWith(div);
+  }
+
+  function prependClass(item, klass) {
+    if($(item).attr('class')  ) {
+      klass += ' ' + $(item).attr('class');
+    }
+    $(item).addClass(klass);
+    if($(item).hasClass('justify-content-end')) {
+      $(item).removeClass('mr-auto');
+    }
+  }
+
+  function renderIconLink(item) {
+    if($(item).attr('icon')  ) {
+      $(item).html("<i class=\"fa fa-" + $(item).attr('icon') + "\"></i>&nbsp;" + $(item).text());
+    }
+  }
+
+  return {
+    create: function () {
+      // backup
+      $('#navigation').data('navbar', $('#navigation').html());
+
+      var i, ref;
+      ref = $('#navigation ul');
+      for(i = 0; i < ref.length; i++) {
+        prependClass(ref[i], 'navbar-nav mr-auto');
+      }
+      $('#navigation ul li').addClass('nav-item');
+      $('#navigation ul li a').addClass('nav-link');
+      $('#navigation ul li ul').parent().addClass('dropdown');
+      $('#navigation ul li.dropdown').children('a').addClass('dropdown-toggle').attr(
+        {id: 'navbarDropdown', role: 'button', 'aria-haspopup': 'true', 'aria-expanded': 'false', 'data-toggle': 'dropdown'}
+      );
+      ref = $('#navigation ul li.dropdown');
+      for(i = 0; i < ref.length; i++) {
+        renderDropdownMenu(ref[i]);
+      }
+      ref = $('#navigation ul li a');
+      for(i = 0; i < ref.length; i++) {
+        renderIconLink(ref[i]);
+      }
+    },
+    destroy: function () {
+      // restore
+      $('#navigation').html($('#navigation').data('navbar'));
+    }
+  };
+}
+
+document.addEventListener('turbolinks:load', function(){
+  var navbar = new NavbarBuilder();
+  navbar.create();
+}, {once: true});
+
+document.addEventListener('turbolinks:render', function(){
+  var navbar = new NavbarBuilder();
+  navbar.create();
+});
+
+document.addEventListener('turbolinks:before-render', function(){
+  var navbar = new NavbarBuilder();
+  navbar.destroy();
+});

data/app/assets/stylesheets/chaltron.scss

@@ -1,29 +1,2 @@
-// Bootstrap
-@import 'bootstrap';
-
-// font-awesome
-@import 'font-awesome-sprockets';
-@import 'font-awesome';
-
-// datatables
-@import 'datatables/dataTables.bootstrap4';
-@import 'datatables/extensions/Responsive/responsive.bootstrap4';
-@import 'datatables/extensions/Select/select.bootstrap4';
-
-// bootstrap_form
-@import 'rails_bootstrap_forms';
-
-// minor fix
-.dataTables_wrapper .dataTables_filter input {
-  margin-left: 0.5em;
-}
-
-// nprogress
-@import 'nprogress';
-@import 'nprogress-bootstrap';
-
-// Core CSS
 @import 'chaltron/layout';
-
-// logs
 @import 'chaltron/logs';

data/app/helpers/chaltron/ldap_helper.rb

@@ -18,4 +18,13 @@ module Chaltron::LdapHelper
     end
   end
 
+  def custom_checkbox(options)
+    id = options.delete(:id)
+    klass = options.delete(:class)
+    content_tag :div, class: 'custom-control custom-checkbox' do
+      check_box_tag('checkbox', nil, nil, options.merge(id: id, class: "custom-control-input d-none #{klass}")) +
+      label_tag(id, '', class: 'custom-control-label d-block', for: id)
+    end
+  end
+
 end

data/app/views/chaltron/ldap/_entry.html.erb

@@ -1,5 +1,7 @@
 <tr>
-  <td></td>
+  <td>
+    <%= custom_checkbox(id: "checkbox-#{entry.username}", data: {entry: entry.username}, class: 'entry') %>
+  </td>
   <td class='username'><%= entry.username %></td>
   <td class='fullname'><%= display_entry_name(entry) %></td>
   <td class='email'><%= display_entry_email(entry) %></td>

data/app/views/chaltron/ldap/multi_new.html.erb

@@ -12,7 +12,9 @@
           <%= content_tag 'table', id: 'ldap_create', class: 'table table-striped table-sm' do %>
             <thead>
               <tr>
-                <th></th>
+                <th class='checkbox'>
+                  <%= custom_checkbox(id: 'entry-check-all', class: 'entry') %>
+                </th>
                 <th class='username'>
                   <%= User.human_attribute_name(:username) %>
                 </th>
@@ -39,7 +41,9 @@
       <div class='form-group row'>
         <div class='col-sm-2'></div>
         <div class='col-sm-10'>
-          <%= f.submit t('.submit_text'), class: 'btn btn-primary' %>
+          <%= f.submit t('.submit_text'), id: 'ldap_create_button',
+                                          class: 'btn btn-primary',
+                                          disabled: true %>
           <%= back_link class: 'btn btn-default pull-right',
             text: t('chaltron.common.cancel'), icon: 'times' %>
         </div>

data/config/initializers/devise.rb

@@ -1,256 +1,260 @@
-# Use this hook to configure devise mailer, warden hooks and so forth.
-# Many of these configuration options can be set straight in your model.
-Devise.setup do |config|
-  # The secret key used by Devise. Devise uses this key to generate
-  # random tokens. Changing this key will render invalid all existing
-  # confirmation, reset password and unlock tokens in the database.
-  # config.secret_key = 'b329892371e2344d4ac2ca83059d9e4edee312765f952accfd5794570204e34d83bcdaf6fdcb9aa707d70a707f04695d6a88cf00693852533e913c26b658b455'
-
-  # ==> Mailer Configuration
-  # Configure the e-mail address which will be shown in Devise::Mailer,
-  # note that it will be overwritten if you use your own mailer class
-  # with default "from" parameter.
-  config.mailer_sender = 'please-change-me-at-config-initializers-devise@example.com'
-
-  # Configure the class responsible to send e-mails.
-  # config.mailer = 'Devise::Mailer'
-
-  # ==> ORM configuration
-  # Load and configure the ORM. Supports :active_record (default) and
-  # :mongoid (bson_ext recommended) by default. Other ORMs may be
-  # available as additional gems.
-  require 'devise/orm/active_record'
-
-  # ==> Configuration for any authentication mechanism
-  # Configure which keys are used when authenticating a user. The default is
-  # just :email. You can configure it to use [:username, :subdomain], so for
-  # authenticating a user, both parameters are required. Remember that those
-  # parameters are used only when authenticating and not when retrieving from
-  # session. If you need permissions, you should implement that in a before filter.
-  # You can also supply a hash where the value is a boolean determining whether
-  # or not authentication should be aborted when the value is not present.
-  config.authentication_keys = [:login]
-
-  # Configure parameters from the request object used for authentication. Each entry
-  # given should be a request method and it will automatically be passed to the
-  # find_for_authentication method and considered in your model lookup. For instance,
-  # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
-  # The same considerations mentioned for authentication_keys also apply to request_keys.
-  # config.request_keys = []
-
-  # Configure which authentication keys should be case-insensitive.
-  # These keys will be downcased upon creating or modifying a user and when used
-  # to authenticate or find a user. Default is :email.
-  config.case_insensitive_keys = [:username, :email]
-
-  # Configure which authentication keys should have whitespace stripped.
-  # These keys will have whitespace before and after removed upon creating or
-  # modifying a user and when used to authenticate or find a user. Default is :email.
-  config.strip_whitespace_keys = [:username, :email]
-
-  # Tell if authentication through request.params is enabled. True by default.
-  # It can be set to an array that will enable params authentication only for the
-  # given strategies, for example, `config.params_authenticatable = [:database]` will
-  # enable it only for database (email + password) authentication.
-  # config.params_authenticatable = true
-
-  # Tell if authentication through HTTP Auth is enabled. False by default.
-  # It can be set to an array that will enable http authentication only for the
-  # given strategies, for example, `config.http_authenticatable = [:database]` will
-  # enable it only for database authentication. The supported strategies are:
-  # :database      = Support basic authentication with authentication key + password
-  # config.http_authenticatable = false
-
-  # If http headers should be returned for AJAX requests. True by default.
-  # config.http_authenticatable_on_xhr = true
-
-  # The realm used in Http Basic Authentication. 'Application' by default.
-  # config.http_authentication_realm = 'Application'
-
-  # It will change confirmation, password recovery and other workflows
-  # to behave the same regardless if the e-mail provided was right or wrong.
-  # Does not affect registerable.
-  # config.paranoid = true
-
-  # By default Devise will store the user in session. You can skip storage for
-  # particular strategies by setting this option.
-  # Notice that if you are skipping storage for all authentication paths, you
-  # may want to disable generating routes to Devise's sessions controller by
-  # passing skip: :sessions to `devise_for` in your config/routes.rb
-  config.skip_session_storage = [:http_auth]
-
-  # By default, Devise cleans up the CSRF token on authentication to
-  # avoid CSRF token fixation attacks. This means that, when using AJAX
-  # requests for sign in and sign up, you need to get a new CSRF token
-  # from the server. You can disable this option at your own risk.
-  # config.clean_up_csrf_token_on_authentication = true
-
-  # ==> Configuration for :database_authenticatable
-  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
-  # using other encryptors, it sets how many times you want the password re-encrypted.
-  #
-  # Limiting the stretches to just one in testing will increase the performance of
-  # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use
-  # a value less than 10 in other environments. Note that, for bcrypt (the default
-  # encryptor), the cost increases exponentially with the number of stretches (e.g.
-  # a value of 20 is already extremely slow: approx. 60 seconds for 1 calculation).
-  config.stretches = Rails.env.test? ? 1 : 10
-
-  # Setup a pepper to generate the encrypted password.
-  # config.pepper = '2b12b15c7b15b7205f776f689afe0892252ab7273f8be6e46c0bd98b96790f1a930f0587db5a60e768ba79370513cae7c6b11e4babab1a0adabdd9f424f57291'
-
-  # ==> Configuration for :confirmable
-  # A period that the user is allowed to access the website even without
-  # confirming their account. For instance, if set to 2.days, the user will be
-  # able to access the website for two days without confirming their account,
-  # access will be blocked just in the third day. Default is 0.days, meaning
-  # the user cannot access the website without confirming their account.
-  # config.allow_unconfirmed_access_for = 2.days
-
-  # A period that the user is allowed to confirm their account before their
-  # token becomes invalid. For example, if set to 3.days, the user can confirm
-  # their account within 3 days after the mail was sent, but on the fourth day
-  # their account can't be confirmed with the token any more.
-  # Default is nil, meaning there is no restriction on how long a user can take
-  # before confirming their account.
-  # config.confirm_within = 3.days
-
-  # If true, requires any email changes to be confirmed (exactly the same way as
-  # initial account confirmation) to be applied. Requires additional unconfirmed_email
-  # db field (see migrations). Until confirmed, new email is stored in
-  # unconfirmed_email column, and copied to email column on successful confirmation.
-  config.reconfirmable = true
-
-  # Defines which key will be used when confirming an account
-  # config.confirmation_keys = [ :email ]
-
-  # ==> Configuration for :rememberable
-  # The time the user will be remembered without asking for credentials again.
-  # config.remember_for = 2.weeks
-
-  # If true, extends the user's remember period when remembered via cookie.
-  # config.extend_remember_period = false
-
-  # Options to be passed to the created cookie. For instance, you can set
-  # secure: true in order to force SSL only cookies.
-  # config.rememberable_options = {}
-
-  # ==> Configuration for :validatable
-  # Range for password length.
-  config.password_length = 8..128
-
-  # Email regex used to validate email formats. It simply asserts that
-  # one (and only one) @ exists in the given string. This is mainly
-  # to give user feedback and not to assert the e-mail validity.
-  config.email_regexp = /\A[^@\s]+@[^@\s]+\z/
-
-  # ==> Configuration for :timeoutable
-  # The time you want to timeout the user session without activity. After this
-  # time the user will be asked for credentials again. Default is 30 minutes.
-  # config.timeout_in = 30.minutes
-
-  # If true, expires auth token on session timeout.
-  # config.expire_auth_token_on_timeout = false
-
-  # ==> Configuration for :lockable
-  # Defines which strategy will be used to lock an account.
-  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
-  # :none            = No lock strategy. You should handle locking by yourself.
-  # config.lock_strategy = :failed_attempts
-
-  # Defines which key will be used when locking and unlocking an account
-  # config.unlock_keys = [ :email ]
-
-  # Defines which strategy will be used to unlock an account.
-  # :email = Sends an unlock link to the user email
-  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
-  # :both  = Enables both strategies
-  # :none  = No unlock strategy. You should handle unlocking by yourself.
-  # config.unlock_strategy = :both
-
-  # Number of authentication tries before locking an account if lock_strategy
-  # is failed attempts.
-  # config.maximum_attempts = 20
-
-  # Time interval to unlock the account if :time is enabled as unlock_strategy.
-  # config.unlock_in = 1.hour
-
-  # Warn on the last attempt before the account is locked.
-  # config.last_attempt_warning = false
-
-  # ==> Configuration for :recoverable
-  #
-  # Defines which key will be used when recovering the password for an account
-  # config.reset_password_keys = [ :email ]
-
-  # Time interval you can reset your password with a reset password key.
-  # Don't put a too small interval or your users won't have the time to
-  # change their passwords.
-  config.reset_password_within = 6.hours
-
-  # ==> Configuration for :encryptable
-  # Allow you to use another encryption algorithm besides bcrypt (default). You can use
-  # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1,
-  # :authlogic_sha512 (then you should set stretches above to 20 for default behavior)
-  # and :restful_authentication_sha1 (then you should set stretches to 10, and copy
-  # REST_AUTH_SITE_KEY to pepper).
-  #
-  # Require the `devise-encryptable` gem when using anything other than bcrypt
-  # config.encryptor = :sha512
-
-  # ==> Scopes configuration
-  # Turn scoped views on. Before rendering "sessions/new", it will first check for
-  # "users/sessions/new". It's turned off by default because it's slower if you
-  # are using only default views.
-  # config.scoped_views = false
-
-  # Configure the default scope given to Warden. By default it's the first
-  # devise role declared in your routes (usually :user).
-  # config.default_scope = :user
-
-  # Set this configuration to false if you want /users/sign_out to sign out
-  # only the current scope. By default, Devise signs out all scopes.
-  # config.sign_out_all_scopes = true
-
-  # ==> Navigation configuration
-  # Lists the formats that should be treated as navigational. Formats like
-  # :html, should redirect to the sign in page when the user does not have
-  # access, but formats like :xml or :json, should return 401.
-  #
-  # If you have any extra navigational formats, like :iphone or :mobile, you
-  # should add them to the navigational formats lists.
-  #
-  # The "*/*" below is required to match Internet Explorer requests.
-  # config.navigational_formats = ['*/*', :html]
-
-  # The default HTTP method used to sign out a resource. Default is :delete.
-  config.sign_out_via = :delete
-
-  # ==> OmniAuth
-  # Add a new OmniAuth provider. Check the wiki for more information on setting
-  # up on your models and hooks.
-  # config.omniauth :github, 'APP_ID', 'APP_SECRET', scope: 'user,public_repo'
-
-  # ==> Warden configuration
-  # If you want to use other strategies, that are not supported by Devise, or
-  # change the failure app, you can configure them inside the config.warden block.
-  #
-  # config.warden do |manager|
-  #   manager.intercept_401 = false
-  #   manager.default_strategies(scope: :user).unshift :some_external_strategy
-  # end
-
-  # ==> Mountable engine configurations
-  # When using Devise inside an engine, let's call it `MyEngine`, and this engine
-  # is mountable, there are some extra configurations to be taken into account.
-  # The following options are available, assuming the engine is mounted as:
-  #
-  #     mount MyEngine, at: '/my_engine'
-  #
-  # The router that invoked `devise_for`, in the example above, would be:
-  # config.router_name = :my_engine
-  #
-  # When using omniauth, Devise cannot automatically set Omniauth path,
-  # so you need to do it manually. For the users scope, it would be:
-  # config.omniauth_path_prefix = '/my_engine/users/auth'
+if defined?(Devise)
+  require 'omniauth-ldap'
+
+  # Use this hook to configure devise mailer, warden hooks and so forth.
+  # Many of these configuration options can be set straight in your model.
+  Devise.setup do |config|
+    # The secret key used by Devise. Devise uses this key to generate
+    # random tokens. Changing this key will render invalid all existing
+    # confirmation, reset password and unlock tokens in the database.
+    # config.secret_key = 'b329892371e2344d4ac2ca83059d9e4edee312765f952accfd5794570204e34d83bcdaf6fdcb9aa707d70a707f04695d6a88cf00693852533e913c26b658b455'
+
+    # ==> Mailer Configuration
+    # Configure the e-mail address which will be shown in Devise::Mailer,
+    # note that it will be overwritten if you use your own mailer class
+    # with default "from" parameter.
+    config.mailer_sender = 'please-change-me-at-config-initializers-devise@example.com'
+
+    # Configure the class responsible to send e-mails.
+    # config.mailer = 'Devise::Mailer'
+
+    # ==> ORM configuration
+    # Load and configure the ORM. Supports :active_record (default) and
+    # :mongoid (bson_ext recommended) by default. Other ORMs may be
+    # available as additional gems.
+    require 'devise/orm/active_record'
+
+    # ==> Configuration for any authentication mechanism
+    # Configure which keys are used when authenticating a user. The default is
+    # just :email. You can configure it to use [:username, :subdomain], so for
+    # authenticating a user, both parameters are required. Remember that those
+    # parameters are used only when authenticating and not when retrieving from
+    # session. If you need permissions, you should implement that in a before filter.
+    # You can also supply a hash where the value is a boolean determining whether
+    # or not authentication should be aborted when the value is not present.
+    config.authentication_keys = [:login]
+
+    # Configure parameters from the request object used for authentication. Each entry
+    # given should be a request method and it will automatically be passed to the
+    # find_for_authentication method and considered in your model lookup. For instance,
+    # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
+    # The same considerations mentioned for authentication_keys also apply to request_keys.
+    # config.request_keys = []
+
+    # Configure which authentication keys should be case-insensitive.
+    # These keys will be downcased upon creating or modifying a user and when used
+    # to authenticate or find a user. Default is :email.
+    config.case_insensitive_keys = [:username, :email]
+
+    # Configure which authentication keys should have whitespace stripped.
+    # These keys will have whitespace before and after removed upon creating or
+    # modifying a user and when used to authenticate or find a user. Default is :email.
+    config.strip_whitespace_keys = [:username, :email]
+
+    # Tell if authentication through request.params is enabled. True by default.
+    # It can be set to an array that will enable params authentication only for the
+    # given strategies, for example, `config.params_authenticatable = [:database]` will
+    # enable it only for database (email + password) authentication.
+    # config.params_authenticatable = true
+
+    # Tell if authentication through HTTP Auth is enabled. False by default.
+    # It can be set to an array that will enable http authentication only for the
+    # given strategies, for example, `config.http_authenticatable = [:database]` will
+    # enable it only for database authentication. The supported strategies are:
+    # :database      = Support basic authentication with authentication key + password
+    # config.http_authenticatable = false
+
+    # If http headers should be returned for AJAX requests. True by default.
+    # config.http_authenticatable_on_xhr = true
+
+    # The realm used in Http Basic Authentication. 'Application' by default.
+    # config.http_authentication_realm = 'Application'
+
+    # It will change confirmation, password recovery and other workflows
+    # to behave the same regardless if the e-mail provided was right or wrong.
+    # Does not affect registerable.
+    # config.paranoid = true
+
+    # By default Devise will store the user in session. You can skip storage for
+    # particular strategies by setting this option.
+    # Notice that if you are skipping storage for all authentication paths, you
+    # may want to disable generating routes to Devise's sessions controller by
+    # passing skip: :sessions to `devise_for` in your config/routes.rb
+    config.skip_session_storage = [:http_auth]
+
+    # By default, Devise cleans up the CSRF token on authentication to
+    # avoid CSRF token fixation attacks. This means that, when using AJAX
+    # requests for sign in and sign up, you need to get a new CSRF token
+    # from the server. You can disable this option at your own risk.
+    # config.clean_up_csrf_token_on_authentication = true
+
+    # ==> Configuration for :database_authenticatable
+    # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+    # using other encryptors, it sets how many times you want the password re-encrypted.
+    #
+    # Limiting the stretches to just one in testing will increase the performance of
+    # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use
+    # a value less than 10 in other environments. Note that, for bcrypt (the default
+    # encryptor), the cost increases exponentially with the number of stretches (e.g.
+    # a value of 20 is already extremely slow: approx. 60 seconds for 1 calculation).
+    config.stretches = Rails.env.test? ? 1 : 10
+
+    # Setup a pepper to generate the encrypted password.
+    # config.pepper = '2b12b15c7b15b7205f776f689afe0892252ab7273f8be6e46c0bd98b96790f1a930f0587db5a60e768ba79370513cae7c6b11e4babab1a0adabdd9f424f57291'
+
+    # ==> Configuration for :confirmable
+    # A period that the user is allowed to access the website even without
+    # confirming their account. For instance, if set to 2.days, the user will be
+    # able to access the website for two days without confirming their account,
+    # access will be blocked just in the third day. Default is 0.days, meaning
+    # the user cannot access the website without confirming their account.
+    # config.allow_unconfirmed_access_for = 2.days
+
+    # A period that the user is allowed to confirm their account before their
+    # token becomes invalid. For example, if set to 3.days, the user can confirm
+    # their account within 3 days after the mail was sent, but on the fourth day
+    # their account can't be confirmed with the token any more.
+    # Default is nil, meaning there is no restriction on how long a user can take
+    # before confirming their account.
+    # config.confirm_within = 3.days
+
+    # If true, requires any email changes to be confirmed (exactly the same way as
+    # initial account confirmation) to be applied. Requires additional unconfirmed_email
+    # db field (see migrations). Until confirmed, new email is stored in
+    # unconfirmed_email column, and copied to email column on successful confirmation.
+    config.reconfirmable = true
+
+    # Defines which key will be used when confirming an account
+    # config.confirmation_keys = [ :email ]
+
+    # ==> Configuration for :rememberable
+    # The time the user will be remembered without asking for credentials again.
+    # config.remember_for = 2.weeks
+
+    # If true, extends the user's remember period when remembered via cookie.
+    # config.extend_remember_period = false
+
+    # Options to be passed to the created cookie. For instance, you can set
+    # secure: true in order to force SSL only cookies.
+    # config.rememberable_options = {}
+
+    # ==> Configuration for :validatable
+    # Range for password length.
+    config.password_length = 8..128
+
+    # Email regex used to validate email formats. It simply asserts that
+    # one (and only one) @ exists in the given string. This is mainly
+    # to give user feedback and not to assert the e-mail validity.
+    config.email_regexp = /\A[^@\s]+@[^@\s]+\z/
+
+    # ==> Configuration for :timeoutable
+    # The time you want to timeout the user session without activity. After this
+    # time the user will be asked for credentials again. Default is 30 minutes.
+    # config.timeout_in = 30.minutes
+
+    # If true, expires auth token on session timeout.
+    # config.expire_auth_token_on_timeout = false
+
+    # ==> Configuration for :lockable
+    # Defines which strategy will be used to lock an account.
+    # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+    # :none            = No lock strategy. You should handle locking by yourself.
+    # config.lock_strategy = :failed_attempts
+
+    # Defines which key will be used when locking and unlocking an account
+    # config.unlock_keys = [ :email ]
+
+    # Defines which strategy will be used to unlock an account.
+    # :email = Sends an unlock link to the user email
+    # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+    # :both  = Enables both strategies
+    # :none  = No unlock strategy. You should handle unlocking by yourself.
+    # config.unlock_strategy = :both
+
+    # Number of authentication tries before locking an account if lock_strategy
+    # is failed attempts.
+    # config.maximum_attempts = 20
+
+    # Time interval to unlock the account if :time is enabled as unlock_strategy.
+    # config.unlock_in = 1.hour
+
+    # Warn on the last attempt before the account is locked.
+    # config.last_attempt_warning = false
+
+    # ==> Configuration for :recoverable
+    #
+    # Defines which key will be used when recovering the password for an account
+    # config.reset_password_keys = [ :email ]
+
+    # Time interval you can reset your password with a reset password key.
+    # Don't put a too small interval or your users won't have the time to
+    # change their passwords.
+    config.reset_password_within = 6.hours
+
+    # ==> Configuration for :encryptable
+    # Allow you to use another encryption algorithm besides bcrypt (default). You can use
+    # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1,
+    # :authlogic_sha512 (then you should set stretches above to 20 for default behavior)
+    # and :restful_authentication_sha1 (then you should set stretches to 10, and copy
+    # REST_AUTH_SITE_KEY to pepper).
+    #
+    # Require the `devise-encryptable` gem when using anything other than bcrypt
+    # config.encryptor = :sha512
+
+    # ==> Scopes configuration
+    # Turn scoped views on. Before rendering "sessions/new", it will first check for
+    # "users/sessions/new". It's turned off by default because it's slower if you
+    # are using only default views.
+    # config.scoped_views = false
+
+    # Configure the default scope given to Warden. By default it's the first
+    # devise role declared in your routes (usually :user).
+    # config.default_scope = :user
+
+    # Set this configuration to false if you want /users/sign_out to sign out
+    # only the current scope. By default, Devise signs out all scopes.
+    # config.sign_out_all_scopes = true
+
+    # ==> Navigation configuration
+    # Lists the formats that should be treated as navigational. Formats like
+    # :html, should redirect to the sign in page when the user does not have
+    # access, but formats like :xml or :json, should return 401.
+    #
+    # If you have any extra navigational formats, like :iphone or :mobile, you
+    # should add them to the navigational formats lists.
+    #
+    # The "*/*" below is required to match Internet Explorer requests.
+    # config.navigational_formats = ['*/*', :html]
+
+    # The default HTTP method used to sign out a resource. Default is :delete.
+    config.sign_out_via = :delete
+
+    # ==> OmniAuth
+    # Add a new OmniAuth provider. Check the wiki for more information on setting
+    # up on your models and hooks.
+    # config.omniauth :github, 'APP_ID', 'APP_SECRET', scope: 'user,public_repo'
+
+    # ==> Warden configuration
+    # If you want to use other strategies, that are not supported by Devise, or
+    # change the failure app, you can configure them inside the config.warden block.
+    #
+    # config.warden do |manager|
+    #   manager.intercept_401 = false
+    #   manager.default_strategies(scope: :user).unshift :some_external_strategy
+    # end
+
+    # ==> Mountable engine configurations
+    # When using Devise inside an engine, let's call it `MyEngine`, and this engine
+    # is mountable, there are some extra configurations to be taken into account.
+    # The following options are available, assuming the engine is mounted as:
+    #
+    #     mount MyEngine, at: '/my_engine'
+    #
+    # The router that invoked `devise_for`, in the example above, would be:
+    # config.router_name = :my_engine
+    #
+    # When using omniauth, Devise cannot automatically set Omniauth path,
+    # so you need to do it manually. For the users scope, it would be:
+    # config.omniauth_path_prefix = '/my_engine/users/auth'
+  end
 end