discourse_mountable_sso 0.0.1

data/test/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,91 @@
+body{
+	background-color: #C4C1BD;
+}
+.Sign_Form{
+	text-align: center;
+	margin:auto;
+	margin-top:10px;	
+	width:500px;
+	background-color: rgba(0, 0, 0, .2);
+	padding-bottom:20px;
+	padding-top:2px;
+	border-radius: 18px;
+	box-shadow: 5px 5px 5px #888888;
+
+}
+
+.Signup_Errors{
+	list-style-type: none;
+	text-align:left;
+	margin-left:66px;
+	color:red;
+}
+
+.Main_Header{
+	background-image: url('header_bg.png');
+	height:60px;
+	padding:0 20px;
+	border-radius: 18px;
+	box-shadow: 5px 5px 5px #888888;
+
+}
+
+.Main_Header h1{
+	float:left;
+	margin-top:8px;
+	color:#C4C1BD;
+	background-image: url('ruby-source-logo.png');
+	height:43px;
+	width:215px;
+	text-indent:-9999px;
+}
+
+.nav{
+	list-style-type: none;
+	float: right;
+	color:#C4C1BD;
+
+}
+.nav li{
+	display: inline;
+	margin-right:5px;
+
+}
+.nav_links{
+	color: #C4C1BD;
+	text-decoration: none;
+} 
+
+.notice, .valid_notice, .invalid_notice{
+	height:35px;
+	width: 400px;
+	margin:auto;
+	margin-top:20px;
+}
+.notice, .invalid_notice p, .valid_notice p{
+	text-align:center;
+	margin-top:6px;
+}
+
+.notice{
+	background-color: transparent;
+}
+
+.invalid_notice{
+	background-color: #FFCCCC;
+	border:1px solid red;
+}
+.valid_notice{
+	background-color: #CCFFCC;
+	border:1px solid green;
+}
+
+.User_Header{
+
+	background-color: rgba(0, 0, 0, .2);
+	border-radius: 18px;
+	margin:auto;
+	width:220px;
+	text-align:center;
+}
+

data/test/dummy/app/assets/stylesheets/login.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/test/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,51 @@
+class ApplicationController < ActionController::Base
+  # Prevent CSRF attacks by raising an exception.
+  # For APIs, you may want to use :null_session instead.
+  protect_from_forgery with: :exception
+
+
+  protected
+  def authenticate_user
+  	unless session[:user_id]
+  		redirect_to(:controller => 'sessions', :action => 'login')
+  		return false
+  	else
+      # set current_user by the current user object
+      	@current_user = User.find session[:user_id] 
+  		return true
+  	end
+  end
+
+  def get_discourse_data
+    current_user = User.find session[:user_id] if session[:user_id]
+    discourse_data = {}
+    if current_user
+      discourse_data[:avatar_url] = "http://ftp.lemoow.com/avatars/1/original/_D8_AC.jpg"
+      discourse_data[:email] = current_user.email
+      discourse_data[:name] = current_user.username
+      discourse_data[:username] = current_user.username
+      discourse_data[:external_id] = current_user.id
+    end
+    discourse_data
+  end
+
+	def logged_in?
+		session[:user_id].present?
+	end
+
+	def return_to_url path
+		session[:return_to] = path	
+	end
+	
+
+  #This method for prevent user to access Signup & Login Page without logout
+  def save_login_state
+    if session[:user_id]
+            redirect_to(:controller => 'sessions', :action => 'home')
+      return false
+    else
+      return true
+    end
+  end
+
+end

data/test/dummy/app/controllers/sessions_controller.rb

@@ -0,0 +1,51 @@
+class SessionsController < ApplicationController
+ 
+	before_filter :authenticate_user, :except => [:index, :login, :login_attempt, :logout]
+	before_filter :save_login_state, :only => [:index, :login, :login_attempt]
+
+	def home
+		#Home Page
+	end
+
+	def profile
+		#Profile Page
+	end
+
+	def setting
+		#Setting Page
+	end
+
+	def login
+		#Login Form
+	end
+
+	def login_attempt
+		authorized_user = User.authenticate(params[:username_or_email],params[:login_password])
+		if authorized_user
+			session[:user_id] = authorized_user.id
+			flash[:notice] = "Wow Welcome again, you logged in as #{authorized_user.username}"
+			# binding.pry
+
+			if session[:return_to]
+				url = session[:return_to]
+				session[:return_to] = nil
+				redirect_to url
+			else
+				redirect_to(:action => 'home')
+			end
+
+		else
+			flash[:notice] = "Invalid Username or Password"
+        	flash[:color]= "invalid"
+			render "login"	
+		end
+	end
+
+
+	def logout
+		# binding.pry
+		session[:user_id] = nil
+		redirect_to :action => 'login'
+	end
+
+end

data/test/dummy/app/controllers/users_controller.rb

@@ -0,0 +1,26 @@
+  class UsersController < ApplicationController
+
+  before_filter :save_login_state, :only => [:new, :create]
+
+  # def user_params
+  #   params.require(:user).permit(:username, :email, :password, :password_confirmation)
+  # end
+  
+  def new
+      #Signup Form
+      @user = User.new     
+  end
+
+   def create
+    	@user = User.new(params[:user])
+    	if @user.save
+    		flash[:notice] = "You Signed up successfully"
+        flash[:color]= "valid"
+      else
+        flash[:notice] = "Form is invalid"
+        flash[:color]= "invalid"
+      end
+      render "new"
+    end
+
+end

data/test/dummy/app/helpers/application_helper.rb

@@ -0,0 +1,2 @@
+module ApplicationHelper
+end

data/test/dummy/app/models/user.rb

@@ -0,0 +1,42 @@
+class User < ActiveRecord::Base
+
+  attr_accessor :password
+
+  before_save :encrypt_password
+  after_save :clear_password
+  attr_accessible :username, :email, :password, :password_confirmation
+  validates :username, :presence => true, :uniqueness => true, :length => { :in => 3..20 }
+  validates :password, :confirmation => true
+  validates_length_of :password, :in => 6..20, :on => :create
+
+
+
+  def self.authenticate(username_or_email="", login_password="")
+
+    user = User.find_by_username(username_or_email)
+
+    if user && user.match_password(login_password)
+      return user
+    else
+      return false
+    end
+  end   
+
+  def match_password(login_password="")
+    encrypted_password == BCrypt::Engine.hash_secret(login_password, salt)
+  end
+
+
+
+  def encrypt_password
+    unless password.blank?
+      self.salt = BCrypt::Engine.generate_salt
+      self.encrypted_password = BCrypt::Engine.hash_secret(password, salt)
+    end
+  end
+
+  def clear_password
+    self.password = nil
+  end
+
+end

data/test/dummy/app/views/layouts/application.html.erb

@@ -0,0 +1,42 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>RubySource User Auth</title>
+  <%= stylesheet_link_tag    "application", :media => "all" %>
+  <%= javascript_include_tag "application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+	<div class="Main_Header">
+		<h1>Ruby Source</h1>
+		<%unless session[:user_id]%>
+			<ul class="nav">
+				<li><%= link_to :Signup , :signup, class: "nav_links"%></li>|
+				<li><%= link_to :Login , :login, class: "nav_links"%></li>	
+			</ul>
+		<%else%>
+			<ul class="nav">
+				<li><%= link_to :Home , :home, class: "nav_links" %> |</li>
+				<li><%= link_to :Profile , :profile, class: "nav_links" %> |</li>
+				<li><%= link_to :Setting , :setting, class: "nav_links" %> |</li>
+				<li><%= link_to :Logout , :logout, class: "nav_links" %></li>	
+			</ul>
+		<%end%>
+	</div>
+	<% if flash[:color]== "valid" %>
+		<div class="valid_notice">
+			<p><%= flash[:notice]%></p>
+		</div>
+	<% elsif flash[:color]== "invalid"%>
+		<div class="invalid_notice">
+			<p><%=flash[:notice]%></p>
+		</div>
+	<%else%>
+		<div class="notice">
+			<p><%=flash[:notice]%></p>
+		</div>
+	<%end%>
+<%= yield %>
+
+</body>
+</html>

data/test/dummy/app/views/sessions/home.html.erb

@@ -0,0 +1 @@
+<h2 class='User_Header'><%=@current_user.username%> Home <h2>

data/test/dummy/app/views/sessions/login.html.erb

@@ -0,0 +1,15 @@
+<% @page_title = "UserAuth | Login" -%>
+<div class= "Sign_Form">
+	<h1>Log in</h1>
+	<%= form_tag(:action => 'login_attempt') do %>
+		<p>
+		Username or Email:</br> <%= text_field_tag(:username_or_email) %>
+		</p> 
+		
+		<p>
+		Password:</br> <%= password_field_tag :login_password %>
+		</p> 
+
+		<%= submit_tag("Log In") %>
+	<% end %>
+</div>

data/test/dummy/app/views/sessions/profile.html.erb

@@ -0,0 +1 @@
+<h2 class='User_Header'><%=@current_user.username%> Profile <h2>

data/test/dummy/app/views/sessions/setting.html.erb

@@ -0,0 +1 @@
+<h2 class='User_Header'><%=@current_user.username%> Setting <h2>

data/test/dummy/app/views/users/new.html.erb

@@ -0,0 +1,32 @@
+<% @page_title = "UserAuth | Signup" -%>
+<div class= "Sign_Form">
+  <h1>Sign Up</h1>
+  <%= form_for(:user, :url => {:controller => 'users', :action => 'create'}) do |f| %>
+
+    <p>          
+      Username:</br> <%= f.text_field :username%>
+    </p>
+
+    <p>
+      Email:</br> <%= f.text_field :email%>
+    </p>
+
+    <p>      
+      Password:</br> <%= f.password_field :password%>
+    </p>
+
+    <p>     
+      Password Confirmation:</br> <%= f.password_field :password_confirmation%>
+    </p>
+
+    <%= f.submit :Signup %>
+  <% end %>
+
+  <% if @user.errors.any? %>
+	<ul class="Signup_Errors">
+		<% for message_error in @user.errors.full_messages %>
+			<li>* <%= message_error %></li>
+	  	<% end %>
+	</ul>
+  <% end %>
+</div>

data/test/dummy/config/application.rb

@@ -0,0 +1,59 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'rails/all'
+
+Bundler.require(*Rails.groups)
+require "discourse_mountable_sso"
+
+module Dummy
+  class Application < Rails::Application
+    # Settings in config/environments/* take precedence over those specified here.
+    # Application configuration should go into files in config/initializers
+    # -- all .rb files in that directory are automatically loaded.
+
+    # Custom directories with classes and modules you want to be autoloadable.
+    # config.autoload_paths += %W(#{config.root}/extras)
+
+    # Only load the plugins named here, in the order given (default is alphabetical).
+    # :all can be used as a placeholder for all plugins not explicitly named.
+    # config.plugins = [ :exception_notification, :ssl_requirement, :all ]
+
+    # Activate observers that should always be running.
+    # config.active_record.observers = :cacher, :garbage_collector, :forum_observer
+
+    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
+    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
+    # config.time_zone = 'Central Time (US & Canada)'
+
+    # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
+    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
+    # config.i18n.default_locale = :de
+
+    # Configure the default encoding used in templates for Ruby 1.9.
+    config.encoding = "utf-8"
+
+    # Configure sensitive parameters which will be filtered from the log file.
+    config.filter_parameters += [:password]
+
+    # Enable escaping HTML in JSON.
+    config.active_support.escape_html_entities_in_json = true
+
+    # Use SQL instead of Active Record's schema dumper when creating the database.
+    # This is necessary if your schema can't be completely dumped by the schema dumper,
+    # like if you have constraints or database-specific column types
+    # config.active_record.schema_format = :sql
+
+    # Enforce whitelist mode for mass assignment.
+    # This will create an empty whitelist of attributes available for mass-assignment for all models
+    # in your app. As such, your models will need to explicitly whitelist or blacklist accessible
+    # parameters by using an attr_accessible or attr_protected declaration.
+    config.active_record.whitelist_attributes = true
+
+    # Enable the asset pipeline
+    config.assets.enabled = true
+
+    # Version of your assets, change this if you want to expire all your assets
+    config.assets.version = '1.0'
+  end
+end
+

data/test/dummy/config/boot.rb

@@ -0,0 +1,10 @@
+require 'rubygems'
+gemfile = File.expand_path('../../../../Gemfile', __FILE__)
+
+if File.exist?(gemfile)
+  ENV['BUNDLE_GEMFILE'] = gemfile
+  require 'bundler'
+  Bundler.setup
+end
+
+$:.unshift File.expand_path('../../../../lib', __FILE__)

data/test/dummy/config/database.yml

@@ -0,0 +1,42 @@
+# MySQL.  Versions 4.1 and 5.0 are recommended.
+# 
+# Install the MYSQL driver
+#   gem install mysql2
+#
+# Ensure the MySQL gem is defined in your Gemfile
+#   gem 'mysql2'
+#
+# And be sure to use new-style password hashing:
+#   http://dev.mysql.com/doc/refman/5.0/en/old-client.html
+development:
+  adapter: mysql2
+  encoding: utf8
+  reconnect: false
+  database: user_auth_development
+  pool: 5
+  username: root
+  password: root
+  socket: /tmp/mysql.sock
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+test:
+  adapter: mysql2
+  encoding: utf8
+  reconnect: false
+  database: user_auth_test
+  pool: 5
+  username: root
+  password: root
+  socket: /tmp/mysql.sock
+
+production:
+  adapter: mysql2
+  encoding: utf8
+  reconnect: false
+  database: User_Auth_production
+  pool: 5
+  username: root
+  password: root
+  socket: /tmp/mysql.sock

data/test/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the rails application
+require File.expand_path('../application', __FILE__)
+
+# Initialize the rails application
+Dummy::Application.initialize!

data/test/dummy/config/environments/development.rb

@@ -0,0 +1,37 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # In the development environment your application's code is reloaded on
+  # every request. This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Log error messages when you accidentally call methods on nil.
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send
+  config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger
+  config.active_support.deprecation = :log
+
+  # Only use best-standards-support built into browsers
+  config.action_dispatch.best_standards_support = :builtin
+
+  # Raise exception on mass assignment protection for Active Record models
+  config.active_record.mass_assignment_sanitizer = :strict
+
+  # Log the query plan for queries taking more than this (works
+  # with SQLite, MySQL, and PostgreSQL)
+  config.active_record.auto_explain_threshold_in_seconds = 0.5
+
+  # Do not compress assets
+  config.assets.compress = false
+
+  # Expands the lines which load the assets
+  config.assets.debug = true
+end

data/test/dummy/config/environments/production.rb

@@ -0,0 +1,67 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # Code is not reloaded between requests
+  config.cache_classes = true
+
+  # Full error reports are disabled and caching is turned on
+  config.consider_all_requests_local       = false
+  config.action_controller.perform_caching = true
+
+  # Disable Rails's static asset server (Apache or nginx will already do this)
+  config.serve_static_assets = false
+
+  # Compress JavaScripts and CSS
+  config.assets.compress = true
+
+  # Don't fallback to assets pipeline if a precompiled asset is missed
+  config.assets.compile = false
+
+  # Generate digests for assets URLs
+  config.assets.digest = true
+
+  # Defaults to nil and saved in location specified by config.assets.prefix
+  # config.assets.manifest = YOUR_PATH
+
+  # Specifies the header that your server uses for sending files
+  # config.action_dispatch.x_sendfile_header = "X-Sendfile" # for apache
+  # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx
+
+  # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
+  # config.force_ssl = true
+
+  # See everything in the log (default is :info)
+  # config.log_level = :debug
+
+  # Prepend all log lines with the following tags
+  # config.log_tags = [ :subdomain, :uuid ]
+
+  # Use a different logger for distributed setups
+  # config.logger = ActiveSupport::TaggedLogging.new(SyslogLogger.new)
+
+  # Use a different cache store in production
+  # config.cache_store = :mem_cache_store
+
+  # Enable serving of images, stylesheets, and JavaScripts from an asset server
+  # config.action_controller.asset_host = "http://assets.example.com"
+
+  # Precompile additional assets (application.js, application.css, and all non-JS/CSS are already added)
+  # config.assets.precompile += %w( search.js )
+
+  # Disable delivery errors, bad email addresses will be ignored
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Enable threaded mode
+  # config.threadsafe!
+
+  # Enable locale fallbacks for I18n (makes lookups for any locale fall back to
+  # the I18n.default_locale when a translation can not be found)
+  config.i18n.fallbacks = true
+
+  # Send deprecation notices to registered listeners
+  config.active_support.deprecation = :notify
+
+  # Log the query plan for queries taking more than this (works
+  # with SQLite, MySQL, and PostgreSQL)
+  # config.active_record.auto_explain_threshold_in_seconds = 0.5
+end

data/test/dummy/config/environments/test.rb

@@ -0,0 +1,37 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # The test environment is used exclusively to run your application's
+  # test suite. You never need to work with it otherwise. Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs. Don't rely on the data there!
+  config.cache_classes = true
+
+  # Configure static asset server for tests with Cache-Control for performance
+  config.serve_static_assets = true
+  config.static_cache_control = "public, max-age=3600"
+
+  # Log error messages when you accidentally call methods on nil
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Raise exceptions instead of rendering exception templates
+  config.action_dispatch.show_exceptions = false
+
+  # Disable request forgery protection in test environment
+  config.action_controller.allow_forgery_protection    = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  config.action_mailer.delivery_method = :test
+
+  # Raise exception on mass assignment protection for Active Record models
+  config.active_record.mass_assignment_sanitizer = :strict
+
+  # Print deprecation notices to the stderr
+  config.active_support.deprecation = :stderr
+end

data/test/dummy/config/initializers/backtrace_silencers.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
+# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
+
+# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
+# Rails.backtrace_cleaner.remove_silencers!

data/test/dummy/config/initializers/discourse_config.rb

@@ -0,0 +1,6 @@
+DiscourseMountableSso.configuration.secret = "83IC~q<ITI#15n(6f515sw5crA?lF&"
+DiscourseMountableSso.configuration.discourse_url = "http://localhost:3020/"	
+DiscourseMountableSso.configuration.login_path = "/login"
+DiscourseMountableSso.configuration.discourse_data_method = "get_discourse_data"
+DiscourseMountableSso.configuration.logged_in_check_method = "logged_in?"
+DiscourseMountableSso.configuration.store_return_to_url_method = "return_to_url"

data/test/dummy/config/initializers/inflections.rb

@@ -0,0 +1,15 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new inflection rules using the following format
+# (all these examples are active by default):
+# ActiveSupport::Inflector.inflections do |inflect|
+#   inflect.plural /^(ox)$/i, '\1en'
+#   inflect.singular /^(ox)en/i, '\1'
+#   inflect.irregular 'person', 'people'
+#   inflect.uncountable %w( fish sheep )
+# end
+#
+# These inflection rules are supported but not enabled by default:
+# ActiveSupport::Inflector.inflections do |inflect|
+#   inflect.acronym 'RESTful'
+# end

data/test/dummy/config/initializers/mime_types.rb

@@ -0,0 +1,5 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new mime types for use in respond_to blocks:
+# Mime::Type.register "text/richtext", :rtf
+# Mime::Type.register_alias "text/html", :iphone