RubyGems - erp_app - Versions diffs - 3.0.13 → 3.0.14 - Mend

erp_app 3.0.13 → 3.0.14

Files changed (100) hide show

data/app/controllers/erp_app/desktop/security_management/users_controller.rb ADDED

@@ -0,0 +1,145 @@
+module ErpApp
+  module Desktop
+    module SecurityManagement
+      class UsersController < ErpApp::Desktop::SecurityManagement::BaseController
+        def available_setup
+          begin
+            columns = []
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Party Description", :name => 'party_description', :xtype => 'textfield', :width => 200 })
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Username", :name => 'username', :xtype => 'textfield', :width => 95 })
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Email", :name => 'email', :xtype => 'textfield', :width => 100 })
+            definition = []
+            definition << DynamicFormField.textfield({ :fieldLabel => "Party Description", :name => 'party_description' })
+            definition << DynamicFormField.textfield({ :fieldLabel => "Username", :name => 'username' })
+            definition << DynamicFormField.textfield({ :fieldLabel => "Email", :name => 'email' })
+            definition << DynamicFormField.hidden({ :fieldLabel => "ID", :name => 'id' })
+            render :inline => "{
+              \"success\": true,
+              \"columns\": [#{columns.join(',')}],
+              \"fields\": #{definition.to_json}
+            }"
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def selected_setup
+          available_setup
+        end
+        def available
+          assign_to = params[:assign_to]
+          assign_to_id = params[:id]
+          sort  = (params[:sort] || 'username').downcase
+          dir   = (params[:dir] || 'asc').downcase
+          query_filter = params[:query_filter].strip rescue nil
+          ar = assign_to_id.blank? ? User : assign_to.constantize.find(assign_to_id).users_not
+          ar = params[:query_filter].blank? ? ar : ar.where("UPPER(username) LIKE UPPER('%#{query_filter}%') OR UPPER(email) LIKE UPPER('%#{query_filter}%') ")
+          available = ar.paginate(:page => page, :per_page => per_page, :order => "#{sort} #{dir}")
+          render :json => {:total => ar.count, :data => available.map{|x| {:username => x.username, :email => x.email, :party_description => x.party.description, :id => x.id}}}
+        end
+        def selected
+          assign_to = params[:assign_to]
+          assign_to_id = params[:id]
+          sort  = (params[:sort] || 'username').downcase
+          dir   = (params[:dir] || 'asc').downcase
+          query_filter = params[:query_filter].strip rescue nil
+          ar = assign_to_id.blank? ? User : assign_to.constantize.find(assign_to_id).users
+          ar = (params[:query_filter].blank? ? ar : ar.where("UPPER(username) LIKE UPPER('%#{query_filter}%') OR UPPER(email) LIKE UPPER('%#{query_filter}%') "))
+          selected = ar.paginate(:page => page, :per_page => per_page, :order => "#{sort} #{dir}")
+          render :json => {:total => ar.count, :data => selected.map{|x| {:username => x.username, :email => x.email, :party_description => x.party.description, :id => x.id}}}
+        end
+        def add
+          begin
+            assign_to = params[:assign_to]
+            assign_to_id = params[:id]
+            selected = JSON.parse(params[:selection])
+            a = assign_to.constantize.find(assign_to_id)
+            selected.each do |x|
+              u = User.find(x)
+              case assign_to
+              when 'Group'
+                a.add_user(u)
+              when 'SecurityRole'
+                u.add_role(a)
+              when 'Capability'
+                u.add_capability(a)
+              end
+            end
+            render :json => {:success => true, :message => 'Group(s) Added'}
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def remove
+          begin
+            assign_to = params[:assign_to]
+            assign_to_id = params[:id]
+            selected = JSON.parse(params[:selection])
+            a = assign_to.constantize.find(assign_to_id)
+            selected.each do |x|
+              u = User.find(x)
+              case assign_to
+              when 'Group'
+                a.remove_user(u)
+              when 'SecurityRole'
+                u.remove_role(a)
+              when 'Capability'
+                u.remove_capability(a)
+              end
+            end
+            render :json => {:success => true, :message => 'Group(s) Removed'}
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def effective_security
+          begin
+            assign_to_id = params[:id]
+            u = User.find(assign_to_id)
+            render :json => {:success => true, :roles => u.all_roles, :capabilities => u.class_capabilities_to_hash }
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+      end
+    end
+  end
+end

data/app/controllers/erp_app/desktop/user_management/base_controller.rb CHANGED

@@ -28,7 +28,7 @@ module ErpApp
           response = {}
           application = DesktopApplication.find_by_internal_identifier('user_management')
           begin
-            current_user.with_capability(application, :create, 'User') do
+            current_user.with_capability(:create, 'User') do
               user = User.new(
                 :email => params[:email],
@@ -76,7 +76,7 @@ module ErpApp
         def delete
           application = DesktopApplication.find_by_internal_identifier('user_management')
-          if current_user.has_capability?(application, 'create', 'User')
+          if current_user.has_capability?('create', 'User')
             unless @user.party.nil?
               @user.party.destroy
             else

data/app/controllers/erp_app/desktop/user_management/role_management_controller.rb CHANGED

@@ -5,7 +5,7 @@ module ErpApp
 			  def available_roles
           user_id = params[:user_id]
-          roles = Role.all
+          roles = SecurityRole.order('description ASC').all
           unless user_id.empty?
             current_role_ids = User.find(user_id).roles.collect{|r| r.id}
@@ -20,7 +20,7 @@ module ErpApp
           roles = []
           unless user_id.empty?
-            roles = User.find(user_id).roles
+            roles = User.find(user_id).roles.order('description ASC')
           end
           render :json => roles.map{|role| {:text => role.description, :iconCls => 'icon-user', :leaf => true, :role_id => role.id}}
@@ -31,10 +31,10 @@ module ErpApp
           user_id  = params[:user_id]
           user = User.find(user_id)
-          roles = Role.where("id in (#{role_ids.join(',')})").all
-          user.remove_all_roles
-          user.add_roles(roles)
-          user.save
+          roles = SecurityRole.where("id in (#{role_ids.join(',')})").all
+          user.party.remove_all_roles
+          user.party.add_roles(roles)
+          user.party.save
           render :json => {:success => true, :message => 'Roles Saved'}
 			  end

data/app/controllers/erp_app/public_controller.rb CHANGED

@@ -2,17 +2,6 @@ module ErpApp
 	class PublicController < ActionController::Base
     before_filter :set_file_support
-    # DEPRECATED, use erp_app/public#download
-    # def download_file
-    #    path = params[:path]
-    #    file_klass = FileAsset.type_by_extension(File.extname(path))
-    #    if file_klass == Image
-    #      send_file path, :type => "image/#{File.extname(path)}"
-    #    else
-    #      send_file path, :type => file_klass.content_type
-    #    end
-	  # end
     # TODO:
     # reorder menuitems
     # drag and drop image into ckeditor uses bad (but somehow not broken, i.e. ../../images/) url (filesystem on firefox, chrome OK)
@@ -28,10 +17,10 @@ module ErpApp
       file = file.first
       unless file.nil?
-        if file.has_capabilities?
+        if file.is_secured?
           begin
             unless current_user == false
-              current_user.with_capability(file, :download, nil) do
+              current_user.with_capability(:download, file) do
                 serve_file(file, disposition)
               end
             else
@@ -58,7 +47,7 @@ module ErpApp
       if ErpTechSvcs::Config.file_storage == :s3
         path = File.join(file.directory,file.name).sub(%r{^/},'')
         options = { :response_content_disposition => disposition }
-        options[:expires] = ErpTechSvcs::Config.s3_url_expires_in_seconds if file.has_capabilities?
+        options[:expires] = ErpTechSvcs::Config.s3_url_expires_in_seconds if file.is_secured?
         redirect_to @file_support.bucket.objects[path].url_for(:read, options).to_s
       else
         # to use X-Sendfile or X-Accel-Redirect, set config.action_dispatch.x_sendfile_header in environment config file

data/app/models/application.rb CHANGED

@@ -1,20 +1,11 @@
 class Application < ActiveRecord::Base
-  has_capabilities
   has_user_preferences
   has_and_belongs_to_many :app_containers
   has_and_belongs_to_many :widgets
   validates_uniqueness_of :javascript_class_name
-  validates_uniqueness_of :internal_identifier, :scope => :type
-  def to_access_hash
-    {
-      :iid => self.internal_identifier,
-      :capabilities => self.capabilites_to_hash,
-      :widgets => widgets.collect{|widget| widget.to_access_hash}
-    }
-  end
+  validates_uniqueness_of :internal_identifier, :scope => :type, :case_sensitive => false
   def locate_resources(resource_type)
     resource_loader = ErpApp::ApplicationResourceLoader::DesktopOrganizerLoader.new(self)

data/app/models/configuration_item_type.rb CHANGED

@@ -1,5 +1,5 @@
 class ConfigurationItemType < ActiveRecord::Base
-  validates :internal_identifier, :uniqueness => true
+  validates :internal_identifier, :uniqueness => {:case_sensitive => false}
   has_and_belongs_to_many :configuration_options, :uniq => true do
     def default

data/app/models/configuration_option.rb CHANGED

@@ -1,5 +1,5 @@
 class ConfigurationOption < ActiveRecord::Base
-  validates :internal_identifier, :uniqueness => {:scope => :id}
+  validates :internal_identifier, :uniqueness => {:scope => :id, :case_sensitive => false}
   has_and_belongs_to_many :configuration_item_types
   has_and_belongs_to_many :configuration_items

data/app/models/widget.rb CHANGED

@@ -1,18 +1,9 @@
 class Widget < ActiveRecord::Base
-  has_roles
-  has_capabilities
   has_and_belongs_to_many :applications
   has_many :user_preferences, :as => :preferenced_record
-  validates_uniqueness_of :xtype
-  validates_uniqueness_of :internal_identifier
+  validates_uniqueness_of :xtype, :case_sensitive => false
+  validates_uniqueness_of :internal_identifier, :case_sensitive => false
-  def to_access_hash
-    {
-      :xtype => self.xtype,
-      :roles => self.roles.collect{|role| role.internal_identifier},
-      :capabilities => self.capabilites_to_hash
-    }
-  end
 end

data/config/routes.rb CHANGED

@@ -50,9 +50,12 @@ ErpApp::Engine.routes.draw do
   match '/desktop/user_management/role_management/:action' => "desktop/user_management/role_management"
   match '/desktop/user_management/application_management/:action' => "desktop/user_management/application_management"
-  #system_management
-  match '/desktop/system_management/:action' => "desktop/system_management/base#index"
-  match '/desktop/system_management/application_role_management/:action' => "desktop/system_management/application_role_management"
+  #security_management
+  match '/desktop/security_management/groups(/:action(/:assign_to(/:id)))' => "desktop/security_management/groups"
+  match '/desktop/security_management/users(/:action(/:assign_to(/:id)))' => "desktop/security_management/users"
+  match '/desktop/security_management/roles(/:action(/:assign_to(/:id)))' => "desktop/security_management/roles"
+  match '/desktop/security_management/capabilities(/:action(/:assign_to(/:id)))' => "desktop/security_management/capabilities"
+  match '/desktop/security_management/(/:action)' => "desktop/security_management/base"
   #control_panel
   match '/desktop/control_panel/application_management/:action(/:id)' => "desktop/control_panel/application_management"

data/db/data_migrations/20110728201729_erp_app_setup.rb CHANGED

@@ -30,8 +30,8 @@ class ErpAppSetup
       #######################################
       #roles
       #######################################
-      Role.create(:description => 'Admin', :internal_identifier => 'admin')
-      Role.create(:description => 'Employee', :internal_identifier => 'employee')
+      SecurityRole.create(:description => 'Admin', :internal_identifier => 'admin')
+      SecurityRole.create(:description => 'Employee', :internal_identifier => 'employee')
       #######################################
       #desktop setup
@@ -97,9 +97,6 @@ class ErpAppSetup
         :xtype => 'shared_notesgrid',
         :internal_identifier => 'shared_notes_grid'
       )
-      notes_grid.add_role('admin')
-      notes_grid.add_role('employee')
       notes_grid.save
       #######################################
@@ -111,8 +108,6 @@ class ErpAppSetup
         :xtype => 'controlpanel_userapplicationmgtpanel',
         :internal_identifier => 'application_management'
       )
-      app_mgr.add_role('admin')
       app_mgr.save
       role_mgr = ::Widget.create(
@@ -121,8 +116,6 @@ class ErpAppSetup
         :xtype => 'usermanagement_rolemanagementpanel',
         :internal_identifier => 'role_management'
       )
-      role_mgr.add_role('admin')
       role_mgr.save
       personal_info = ::Widget.create(
@@ -131,9 +124,6 @@ class ErpAppSetup
         :xtype => 'usermanagement_personalinfopanel',
         :internal_identifier => 'user_personal_info'
       )
-      personal_info.add_role('admin')
-      personal_info.add_role('employee')
       personal_info.save
       #create application and assign widgets
@@ -154,34 +144,6 @@ class ErpAppSetup
       user_mgr_app.widgets << notes_grid
       user_mgr_app.save
-      #######################################
-      #system management app
-      #######################################
-      app_role_management = ::Widget.create(
-        :description => 'Application Role Management',
-        :icon => 'icon-document',
-        :xtype => 'systemmanagement_applicationrolemanagment',
-        :internal_identifier => 'application_role_management'
-      )
-      app_role_management.add_role('admin')
-      app_role_management.save
-      system_management_app = DesktopApplication.create(
-        :description => 'System Management',
-        :icon => 'icon-monitor',
-        :javascript_class_name => 'Compass.ErpApp.Desktop.Applications.SystemManagement',
-        :internal_identifier => 'system_management',
-        :shortcut_id => 'system_management-win'
-      )
-      system_management_app.preference_types << desktop_shortcut_pt
-      system_management_app.preference_types << auto_load_app_pt
-      system_management_app.widgets << app_role_management
-      system_management_app.save
       #######################################
       #scaffold app
       #######################################
@@ -207,9 +169,6 @@ class ErpAppSetup
         :xtype => 'contactmechanismgrid',
         :internal_identifier => 'party_contact_management'
       )
-      party_contact_mgm_widget.add_role('admin')
-      party_contact_mgm_widget.add_role('employee')
       party_contact_mgm_widget.save
       party_mgm_widget = ::Widget.create(
@@ -218,9 +177,6 @@ class ErpAppSetup
         :xtype => 'partygrid',
         :internal_identifier => 'party_management_widget'
       )
-      party_mgm_widget.add_role('admin')
-      party_mgm_widget.add_role('employee')
       party_mgm_widget.save
       #create application
@@ -275,14 +231,12 @@ class ErpAppSetup
       truenorth_user.save
       admin_user.desktop.applications << user_mgr_app
-      admin_user.desktop.applications << system_management_app
       admin_user.desktop.applications << scaffold_app
       admin_user.desktop.save
       admin_user.organizer.applications << crm_app
       admin_user.organizer.save
       truenorth_user.desktop.applications << user_mgr_app
-      truenorth_user.desktop.applications << system_management_app
       truenorth_user.desktop.applications << scaffold_app
       truenorth_user.desktop.save
       truenorth_user.organizer.applications << crm_app

data/db/data_migrations/20110816161238_create_desktop_app_audit_log_viewer.rb CHANGED

@@ -11,7 +11,10 @@ class CreateDesktopAppAuditLogViewer
     app.preference_types << PreferenceType.iid('desktop_shortcut')
     app.preference_types << PreferenceType.iid('autoload_application')
     app.save
+    admin_user = User.find_by_username('admin')
+    admin_user.desktop.applications << app
+    admin_user.desktop.save
   end
   def self.down

data/db/data_migrations/20111108183739_add_default_capabilities.rb CHANGED

@@ -1,29 +1,22 @@
 class AddDefaultCapabilities
   def self.up
-    CapabilityType.create(:internal_identifier => 'edit', :description => 'Edit')
-    CapabilityType.create(:internal_identifier => 'delete', :description => 'Delete')
-    CapabilityType.create(:internal_identifier => 'create', :description => 'Create')
-    CapabilityType.create(:internal_identifier => 'view', :description => 'View')
+    admin = SecurityRole.find_by_internal_identifier('admin')
+    employee = SecurityRole.find_by_internal_identifier('employee')
-    user_management_application = DesktopApplication.find_by_internal_identifier('user_management')
-    user_management_application.add_capability('create', 'User', 'admin')
-    user_management_application.add_capability('delete', 'User', 'admin')
+    admin.add_capability('create', 'User')
+    admin.add_capability('delete', 'User')
-    notes_widget = Widget.find_by_internal_identifier('shared_notes_grid')
-    notes_widget.add_capability('create', 'Note', 'admin', 'employee')
-    notes_widget.add_capability('view', 'Note', 'admin', 'employee')
-    notes_widget.add_capability('delete', 'Note', 'admin')
+    admin.add_capability('create', 'Note')
+    employee.add_capability('create', 'Note')
+    admin.add_capability('view', 'Note')
+    employee.add_capability('view', 'Note')
+    admin.add_capability('delete', 'Note')
   end
   def self.down
-    CapabilityType.destroy_all("internal_identifier in (#{%w(edit,delete,create,view).map{|iid| "'#{iid}'"}.join(',')}")
-    user_management_application = DesktopApplication.find_by_internal_identifier('user_management')
-    user_management_application.remove_all_capabilities
-    notes_widget = Widget.find_by_internal_identifier('shared_notes_grid')
-    notes_widget.remove_all_capabilities
   end
 end