RubyGems - erp_app - Versions diffs - 3.0.13 → 3.0.14 - Mend

erp_app 3.0.13 → 3.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (100) hide show

data/app/controllers/erp_app/desktop/security_management/users_controller.rb ADDED

@@ -0,0 +1,145 @@
+module ErpApp
+  module Desktop
+    module SecurityManagement
+      class UsersController < ErpApp::Desktop::SecurityManagement::BaseController
+        def available_setup
+          begin
+            columns = []
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Party Description", :name => 'party_description', :xtype => 'textfield', :width => 200 })
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Username", :name => 'username', :xtype => 'textfield', :width => 95 })
+            columns << DynamicGridColumn.build_column({ :fieldLabel => "Email", :name => 'email', :xtype => 'textfield', :width => 100 })
+            definition = []
+            definition << DynamicFormField.textfield({ :fieldLabel => "Party Description", :name => 'party_description' })
+            definition << DynamicFormField.textfield({ :fieldLabel => "Username", :name => 'username' })
+            definition << DynamicFormField.textfield({ :fieldLabel => "Email", :name => 'email' })
+            definition << DynamicFormField.hidden({ :fieldLabel => "ID", :name => 'id' })
+            render :inline => "{
+              \"success\": true,
+              \"columns\": [#{columns.join(',')}],
+              \"fields\": #{definition.to_json}
+            }"
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def selected_setup
+          available_setup
+        end
+        def available
+          assign_to = params[:assign_to]
+          assign_to_id = params[:id]
+          sort  = (params[:sort] || 'username').downcase
+          dir   = (params[:dir] || 'asc').downcase
+          query_filter = params[:query_filter].strip rescue nil
+          ar = assign_to_id.blank? ? User : assign_to.constantize.find(assign_to_id).users_not
+          ar = params[:query_filter].blank? ? ar : ar.where("UPPER(username) LIKE UPPER('%#{query_filter}%') OR UPPER(email) LIKE UPPER('%#{query_filter}%') ")
+          available = ar.paginate(:page => page, :per_page => per_page, :order => "#{sort} #{dir}")
+          render :json => {:total => ar.count, :data => available.map{|x| {:username => x.username, :email => x.email, :party_description => x.party.description, :id => x.id}}}
+        end
+        def selected
+          assign_to = params[:assign_to]
+          assign_to_id = params[:id]
+          sort  = (params[:sort] || 'username').downcase
+          dir   = (params[:dir] || 'asc').downcase
+          query_filter = params[:query_filter].strip rescue nil
+          ar = assign_to_id.blank? ? User : assign_to.constantize.find(assign_to_id).users
+          ar = (params[:query_filter].blank? ? ar : ar.where("UPPER(username) LIKE UPPER('%#{query_filter}%') OR UPPER(email) LIKE UPPER('%#{query_filter}%') "))
+          selected = ar.paginate(:page => page, :per_page => per_page, :order => "#{sort} #{dir}")
+          render :json => {:total => ar.count, :data => selected.map{|x| {:username => x.username, :email => x.email, :party_description => x.party.description, :id => x.id}}}
+        end
+        def add
+          begin
+            assign_to = params[:assign_to]
+            assign_to_id = params[:id]
+            selected = JSON.parse(params[:selection])
+            a = assign_to.constantize.find(assign_to_id)
+            selected.each do |x|
+              u = User.find(x)
+              case assign_to
+              when 'Group'
+                a.add_user(u)
+              when 'SecurityRole'
+                u.add_role(a)
+              when 'Capability'
+                u.add_capability(a)
+              end
+            end
+            render :json => {:success => true, :message => 'Group(s) Added'}
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def remove
+          begin
+            assign_to = params[:assign_to]
+            assign_to_id = params[:id]
+            selected = JSON.parse(params[:selection])
+            a = assign_to.constantize.find(assign_to_id)
+            selected.each do |x|
+              u = User.find(x)
+              case assign_to
+              when 'Group'
+                a.remove_user(u)
+              when 'SecurityRole'
+                u.remove_role(a)
+              when 'Capability'
+                u.remove_capability(a)
+              end
+            end
+            render :json => {:success => true, :message => 'Group(s) Removed'}
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+        def effective_security
+          begin
+            assign_to_id = params[:id]
+            u = User.find(assign_to_id)
+            render :json => {:success => true, :roles => u.all_roles, :capabilities => u.class_capabilities_to_hash }
+          rescue Exception => e
+            Rails.logger.error e.message
+            Rails.logger.error e.backtrace.join("\n")
+            render :inline => {
+              :success => false,
+              :message => e.message
+            }.to_json
+          end
+        end
+      end
+    end
+  end
+end

data/app/controllers/erp_app/desktop/user_management/base_controller.rb CHANGED

@@ -28,7 +28,7 @@ module ErpApp
           response = {}
           application = DesktopApplication.find_by_internal_identifier('user_management')
           begin
-            current_user.with_capability(application, :create, 'User') do
+            current_user.with_capability(:create, 'User') do
               user = User.new(
                 :email => params[:email],
@@ -76,7 +76,7 @@ module ErpApp
         def delete
           application = DesktopApplication.find_by_internal_identifier('user_management')
-          if current_user.has_capability?(application, 'create', 'User')
+          if current_user.has_capability?('create', 'User')
             unless @user.party.nil?
               @user.party.destroy
             else

data/app/controllers/erp_app/desktop/user_management/role_management_controller.rb CHANGED

@@ -5,7 +5,7 @@ module ErpApp
 			  def available_roles
           user_id = params[:user_id]
-          roles = Role.all
+          roles = SecurityRole.order('description ASC').all
           unless user_id.empty?
             current_role_ids = User.find(user_id).roles.collect{|r| r.id}
@@ -20,7 +20,7 @@ module ErpApp
           roles = []
           unless user_id.empty?
-            roles = User.find(user_id).roles
+            roles = User.find(user_id).roles.order('description ASC')
           end
           render :json => roles.map{|role| {:text => role.description, :iconCls => 'icon-user', :leaf => true, :role_id => role.id}}
@@ -31,10 +31,10 @@ module ErpApp
           user_id  = params[:user_id]
           user = User.find(user_id)
-          roles = Role.where("id in (#{role_ids.join(',')})").all
-          user.remove_all_roles
-          user.add_roles(roles)
-          user.save
+          roles = SecurityRole.where("id in (#{role_ids.join(',')})").all
+          user.party.remove_all_roles
+          user.party.add_roles(roles)
+          user.party.save
           render :json => {:success => true, :message => 'Roles Saved'}
 			  end

data/app/controllers/erp_app/public_controller.rb CHANGED

@@ -2,17 +2,6 @@ module ErpApp
 	class PublicController < ActionController::Base
     before_filter :set_file_support
-    # DEPRECATED, use erp_app/public#download
-    # def download_file
-    #    path = params[:path]
-    #    file_klass = FileAsset.type_by_extension(File.extname(path))
-    #    if file_klass == Image
-    #      send_file path, :type => "image/#{File.extname(path)}"
-    #    else
-    #      send_file path, :type => file_klass.content_type
-    #    end
-	  # end
     # TODO:
     # reorder menuitems
     # drag and drop image into ckeditor uses bad (but somehow not broken, i.e. ../../images/) url (filesystem on firefox, chrome OK)
@@ -28,10 +17,10 @@ module ErpApp
       file = file.first
       unless file.nil?
-        if file.has_capabilities?
+        if file.is_secured?
           begin
             unless current_user == false
-              current_user.with_capability(file, :download, nil) do
+              current_user.with_capability(:download, file) do
                 serve_file(file, disposition)
               end
             else
@@ -58,7 +47,7 @@ module ErpApp
       if ErpTechSvcs::Config.file_storage == :s3
         path = File.join(file.directory,file.name).sub(%r{^/},'')
         options = { :response_content_disposition => disposition }
-        options[:expires] = ErpTechSvcs::Config.s3_url_expires_in_seconds if file.has_capabilities?
+        options[:expires] = ErpTechSvcs::Config.s3_url_expires_in_seconds if file.is_secured?
         redirect_to @file_support.bucket.objects[path].url_for(:read, options).to_s
       else
         # to use X-Sendfile or X-Accel-Redirect, set config.action_dispatch.x_sendfile_header in environment config file

data/app/models/application.rb CHANGED

@@ -1,20 +1,11 @@
 class Application < ActiveRecord::Base
-  has_capabilities
   has_user_preferences
   has_and_belongs_to_many :app_containers
   has_and_belongs_to_many :widgets
   validates_uniqueness_of :javascript_class_name
-  validates_uniqueness_of :internal_identifier, :scope => :type
-  def to_access_hash
-    {
-      :iid => self.internal_identifier,
-      :capabilities => self.capabilites_to_hash,
-      :widgets => widgets.collect{|widget| widget.to_access_hash}
-    }
-  end
+  validates_uniqueness_of :internal_identifier, :scope => :type, :case_sensitive => false
   def locate_resources(resource_type)
     resource_loader = ErpApp::ApplicationResourceLoader::DesktopOrganizerLoader.new(self)

data/app/models/configuration_item_type.rb CHANGED

@@ -1,5 +1,5 @@
 class ConfigurationItemType < ActiveRecord::Base
-  validates :internal_identifier, :uniqueness => true
+  validates :internal_identifier, :uniqueness => {:case_sensitive => false}
   has_and_belongs_to_many :configuration_options, :uniq => true do
     def default

data/app/models/configuration_option.rb CHANGED

@@ -1,5 +1,5 @@
 class ConfigurationOption < ActiveRecord::Base
-  validates :internal_identifier, :uniqueness => {:scope => :id}
+  validates :internal_identifier, :uniqueness => {:scope => :id, :case_sensitive => false}
   has_and_belongs_to_many :configuration_item_types
   has_and_belongs_to_many :configuration_items

data/app/models/widget.rb CHANGED

@@ -1,18 +1,9 @@
 class Widget < ActiveRecord::Base
-  has_roles
-  has_capabilities
   has_and_belongs_to_many :applications
   has_many :user_preferences, :as => :preferenced_record
-  validates_uniqueness_of :xtype
-  validates_uniqueness_of :internal_identifier
+  validates_uniqueness_of :xtype, :case_sensitive => false
+  validates_uniqueness_of :internal_identifier, :case_sensitive => false
-  def to_access_hash
-    {
-      :xtype => self.xtype,
-      :roles => self.roles.collect{|role| role.internal_identifier},
-      :capabilities => self.capabilites_to_hash
-    }
-  end
 end

data/config/routes.rb CHANGED

@@ -50,9 +50,12 @@ ErpApp::Engine.routes.draw do
   match '/desktop/user_management/role_management/:action' => "desktop/user_management/role_management"
   match '/desktop/user_management/application_management/:action' => "desktop/user_management/application_management"
-  #system_management
-  match '/desktop/system_management/:action' => "desktop/system_management/base#index"
-  match '/desktop/system_management/application_role_management/:action' => "desktop/system_management/application_role_management"
+  #security_management
+  match '/desktop/security_management/groups(/:action(/:assign_to(/:id)))' => "desktop/security_management/groups"
+  match '/desktop/security_management/users(/:action(/:assign_to(/:id)))' => "desktop/security_management/users"
+  match '/desktop/security_management/roles(/:action(/:assign_to(/:id)))' => "desktop/security_management/roles"
+  match '/desktop/security_management/capabilities(/:action(/:assign_to(/:id)))' => "desktop/security_management/capabilities"
+  match '/desktop/security_management/(/:action)' => "desktop/security_management/base"
   #control_panel
   match '/desktop/control_panel/application_management/:action(/:id)' => "desktop/control_panel/application_management"

data/db/data_migrations/20110728201729_erp_app_setup.rb CHANGED

@@ -30,8 +30,8 @@ class ErpAppSetup
       #######################################
       #roles
       #######################################
-      Role.create(:description => 'Admin', :internal_identifier => 'admin')
-      Role.create(:description => 'Employee', :internal_identifier => 'employee')
+      SecurityRole.create(:description => 'Admin', :internal_identifier => 'admin')
+      SecurityRole.create(:description => 'Employee', :internal_identifier => 'employee')
       #######################################
       #desktop setup
@@ -97,9 +97,6 @@ class ErpAppSetup
         :xtype => 'shared_notesgrid',
         :internal_identifier => 'shared_notes_grid'
       )
-      notes_grid.add_role('admin')
-      notes_grid.add_role('employee')
       notes_grid.save
       #######################################
@@ -111,8 +108,6 @@ class ErpAppSetup
         :xtype => 'controlpanel_userapplicationmgtpanel',
         :internal_identifier => 'application_management'
       )
-      app_mgr.add_role('admin')
       app_mgr.save
       role_mgr = ::Widget.create(
@@ -121,8 +116,6 @@ class ErpAppSetup
         :xtype => 'usermanagement_rolemanagementpanel',
         :internal_identifier => 'role_management'
       )
-      role_mgr.add_role('admin')
       role_mgr.save
       personal_info = ::Widget.create(
@@ -131,9 +124,6 @@ class ErpAppSetup
         :xtype => 'usermanagement_personalinfopanel',
         :internal_identifier => 'user_personal_info'
       )
-      personal_info.add_role('admin')
-      personal_info.add_role('employee')
       personal_info.save
       #create application and assign widgets
@@ -154,34 +144,6 @@ class ErpAppSetup
       user_mgr_app.widgets << notes_grid
       user_mgr_app.save
-      #######################################
-      #system management app
-      #######################################
-      app_role_management = ::Widget.create(
-        :description => 'Application Role Management',
-        :icon => 'icon-document',
-        :xtype => 'systemmanagement_applicationrolemanagment',
-        :internal_identifier => 'application_role_management'
-      )
-      app_role_management.add_role('admin')
-      app_role_management.save
-      system_management_app = DesktopApplication.create(
-        :description => 'System Management',
-        :icon => 'icon-monitor',
-        :javascript_class_name => 'Compass.ErpApp.Desktop.Applications.SystemManagement',
-        :internal_identifier => 'system_management',
-        :shortcut_id => 'system_management-win'
-      )
-      system_management_app.preference_types << desktop_shortcut_pt
-      system_management_app.preference_types << auto_load_app_pt
-      system_management_app.widgets << app_role_management
-      system_management_app.save
       #######################################
       #scaffold app
       #######################################
@@ -207,9 +169,6 @@ class ErpAppSetup
         :xtype => 'contactmechanismgrid',
         :internal_identifier => 'party_contact_management'
       )
-      party_contact_mgm_widget.add_role('admin')
-      party_contact_mgm_widget.add_role('employee')
       party_contact_mgm_widget.save
       party_mgm_widget = ::Widget.create(
@@ -218,9 +177,6 @@ class ErpAppSetup
         :xtype => 'partygrid',
         :internal_identifier => 'party_management_widget'
       )
-      party_mgm_widget.add_role('admin')
-      party_mgm_widget.add_role('employee')
       party_mgm_widget.save
       #create application
@@ -275,14 +231,12 @@ class ErpAppSetup
       truenorth_user.save
       admin_user.desktop.applications << user_mgr_app
-      admin_user.desktop.applications << system_management_app
       admin_user.desktop.applications << scaffold_app
       admin_user.desktop.save
       admin_user.organizer.applications << crm_app
       admin_user.organizer.save
       truenorth_user.desktop.applications << user_mgr_app
-      truenorth_user.desktop.applications << system_management_app
       truenorth_user.desktop.applications << scaffold_app
       truenorth_user.desktop.save
       truenorth_user.organizer.applications << crm_app

data/db/data_migrations/20110816161238_create_desktop_app_audit_log_viewer.rb CHANGED

@@ -11,7 +11,10 @@ class CreateDesktopAppAuditLogViewer
     app.preference_types << PreferenceType.iid('desktop_shortcut')
     app.preference_types << PreferenceType.iid('autoload_application')
     app.save
+    admin_user = User.find_by_username('admin')
+    admin_user.desktop.applications << app
+    admin_user.desktop.save
   end
   def self.down

data/db/data_migrations/20111108183739_add_default_capabilities.rb CHANGED

@@ -1,29 +1,22 @@
 class AddDefaultCapabilities
   def self.up
-    CapabilityType.create(:internal_identifier => 'edit', :description => 'Edit')
-    CapabilityType.create(:internal_identifier => 'delete', :description => 'Delete')
-    CapabilityType.create(:internal_identifier => 'create', :description => 'Create')
-    CapabilityType.create(:internal_identifier => 'view', :description => 'View')
+    admin = SecurityRole.find_by_internal_identifier('admin')
+    employee = SecurityRole.find_by_internal_identifier('employee')
-    user_management_application = DesktopApplication.find_by_internal_identifier('user_management')
-    user_management_application.add_capability('create', 'User', 'admin')
-    user_management_application.add_capability('delete', 'User', 'admin')
+    admin.add_capability('create', 'User')
+    admin.add_capability('delete', 'User')
-    notes_widget = Widget.find_by_internal_identifier('shared_notes_grid')
-    notes_widget.add_capability('create', 'Note', 'admin', 'employee')
-    notes_widget.add_capability('view', 'Note', 'admin', 'employee')
-    notes_widget.add_capability('delete', 'Note', 'admin')
+    admin.add_capability('create', 'Note')
+    employee.add_capability('create', 'Note')
+    admin.add_capability('view', 'Note')
+    employee.add_capability('view', 'Note')
+    admin.add_capability('delete', 'Note')
   end
   def self.down
-    CapabilityType.destroy_all("internal_identifier in (#{%w(edit,delete,create,view).map{|iid| "'#{iid}'"}.join(',')}")
-    user_management_application = DesktopApplication.find_by_internal_identifier('user_management')
-    user_management_application.remove_all_capabilities
-    notes_widget = Widget.find_by_internal_identifier('shared_notes_grid')
-    notes_widget.remove_all_capabilities
   end
 end