erp_tech_svcs 3.0.0

data/Rakefile

@@ -0,0 +1,30 @@
+#!/usr/bin/env rake
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+begin
+  require 'rdoc/task'
+rescue LoadError
+  require 'rdoc/rdoc'
+  require 'rake/rdoctask'
+  RDoc::Task = Rake::RDocTask
+end
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'ErpTechSvcs'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../spec/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+Bundler::GemHelper.install_tasks
+
+require "rspec/core/rake_task"
+RSpec::Core::RakeTask.new(:spec)
+task :default => :spec

data/app/assets/javascripts/erp_tech_svcs/application.js

@@ -0,0 +1,9 @@
+// This is a manifest file that'll be compiled into including all the files listed below.
+// Add new JavaScript/Coffee code in separate files in this directory and they'll automatically
+// be included in the compiled file accessible from http://example.com/assets/application.js
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// the compiled file.
+//
+//= require jquery
+//= require jquery_ujs
+//= require_tree .

data/app/assets/stylesheets/erp_tech_svcs/application.css

@@ -0,0 +1,7 @@
+/*
+ * This is a manifest file that'll automatically include all the stylesheets available in this directory
+ * and any sub-directories. You're free to add application-wide styles to this file and they'll appear at
+ * the top of the compiled file, but it's generally better to create a new file per style scope.
+ *= require_self
+ *= require_tree . 
+*/

data/app/controllers/erp_tech_svcs/session_controller.rb

@@ -0,0 +1,19 @@
+module ErpTechSvcs
+  class SessionController < ActionController::Base
+    def create
+      if login(params[:login],params[:password])
+        request.xhr? ? (render :json => {:success => true}) : (redirect_to params[:login_to])
+      else
+        message = "Login failed. Try again"
+        flash[:notice] = message
+        request.xhr? ? (render :json => {:success => false, :errors => {:reason => message}}) : (render :text => message)
+      end
+    end
+
+    def destroy
+      logout
+      login_url = params[:login_url].blank? ? ErpTechSvcs::Config.login_url : params[:login_url]
+      redirect_to login_url, :notice => "You have successfully logged out."
+    end
+  end#SessionsController
+end#ErpTechSvcs

data/app/controllers/erp_tech_svcs/user_controller.rb

@@ -0,0 +1,40 @@
+module ErpTechSvcs
+  class UserController < ActionController::Base
+    def activate
+      login_url = params[:login_url].blank? ? ErpTechSvcs::Config.login_url : params[:login_url]
+      if @user = User.load_from_activation_token(params[:activation_token])
+        @user.activate!
+        redirect_to login_url, :notice => 'User was successfully activated.'
+      else
+        redirect_to login_url, :notice => "Invalid activation token."
+      end
+    end
+
+    def reset_password
+      begin
+      login_url = params[:login_url].blank? ? ErpTechSvcs::Config.login_url : params[:login_url]
+      if user = (User.find_by_email(params[:login]) || User.find_by_username(params[:login]))
+        new_password = Sorcery::Model::TemporaryToken.generate_random_token
+        user.password_confirmation = new_password
+        if user.change_password!(new_password)
+          user.add_instance_attribute(:login_url,login_url)
+          user.deliver_reset_password_instructions!
+          message = "Password has been reset.  An email has been sent with further instructions to #{user.email}."
+          success = true
+        else
+          message = "Error re-setting password."
+          success = false
+        end
+      else
+        message = "Invalid email address."
+        success = false
+      end
+      render :json => {:success => success,:message => message}
+      rescue Exception=>ex
+        logger.error ex.message
+        logger.error ex.backtrace
+        render :json => {:success => false,:message => 'Error sending email.'}
+      end
+    end
+  end#UserController
+end#ErpTechSvcs

data/app/helpers/erp_tech_svcs/application_helper.rb

@@ -0,0 +1,4 @@
+module ErpTechSvcs
+  module ApplicationHelper
+  end
+end

data/app/mailers/user_mailer.rb

@@ -0,0 +1,16 @@
+class UserMailer < ActionMailer::Base
+  default :from => ErpTechSvcs::Config.email_notifications_from
+
+  def activation_needed_email(user)
+    @user = user
+    @url  = "#{ErpTechSvcs::Config.installation_domain}/users/activate/#{user.activation_token}"
+    @url << "?login_url=#{@user.instance_attributes[:login_url]}" unless @user.instance_attributes[:login_url].nil?
+    mail(:to => user.email, :subject => "An account has been created and needs activation")
+  end
+
+  def reset_password_email(user)
+    @user = user
+    @url  = "#{ErpTechSvcs::Config.installation_domain}#{@user.instance_attributes[:login_url]}"
+    mail(:to => user.email, :subject => "Your password has been reset")
+  end
+end

data/app/models/audit_log.rb

@@ -0,0 +1,60 @@
+class AuditLog < ActiveRecord::Base
+
+  validates :party_id, :presence => {:message => 'Party cannot be blank'}
+  validates :description, :presence => {:message => 'Description cannot be blank'}
+  validates :audit_log_type, :presence => {:message => 'Audit Log Type cannot be blank'}
+
+  belongs_to :audit_log_type
+  has_many   :audit_log_items
+  belongs_to :event_record, :polymorphic => true
+
+  class << self
+    def custom_application_log_message(party, msg)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','custom_message'),
+        :description => "#{party.description}: #{msg}"
+      )
+    end
+
+    def party_logout(party)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','successful_logout'),
+        :description => "#{party.description} has logged out"
+      )
+    end
+
+    def party_login(party)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','successful_login'),
+        :description => "#{party.description} has logged in"
+      )
+    end
+
+    def party_access(party, url)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','accessed_area'),
+        :description => "#{party.description} has accessed area #{url}"
+      )
+    end
+
+    def party_failed_access(party, url)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','accessed_area'),
+        :description => "#{party.description} has tried to access a restricted area #{url}"
+      )
+    end
+
+    def party_session_timeout(party)
+      self.create(
+        :party_id => party.id,
+        :audit_log_type => AuditLogType.find_by_type_and_subtype_iid('application','session_timeout'),
+        :description => "#{party.description} session has expired"
+      )
+    end
+  end
+end

data/app/models/audit_log_item.rb

@@ -0,0 +1,4 @@
+class AuditLogItem < ActiveRecord::Base
+  belongs_to :audit_log_item_type
+  belongs_to :audit_log
+end

data/app/models/audit_log_item_type.rb

@@ -0,0 +1,6 @@
+class AuditLogItemType < ActiveRecord::Base
+  acts_as_nested_set
+  acts_as_erp_type
+
+  has_many :audit_log_items
+end

data/app/models/audit_log_type.rb

@@ -0,0 +1,24 @@
+class AuditLogType < ActiveRecord::Base
+  acts_as_nested_set
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+  acts_as_erp_type
+  has_many :audit_logs
+  belongs_to_erp_type :parent, :class_name => "AuditLogType"
+  
+  # find by type Internal Identifier and subtype Internal Identifier
+  def self.find_by_type_and_subtype_iid(txn_type, txn_subtype)
+    result = nil
+    txn_type_recs = find_all_by_internal_identifier(txn_type.strip)
+    txn_type_recs.each do |txn_type_rec|
+      txn_subtype_rec = find_by_parent_id_and_internal_identifier(txn_type_rec.id, txn_subtype.strip)
+      result = txn_subtype_rec 
+      unless txn_subtype_rec.nil?
+        result = txn_subtype_rec
+        break
+      end
+    end unless txn_type_recs.blank?
+    
+    result
+  end
+		 	
+end

data/app/models/capability.rb

@@ -0,0 +1,8 @@
+class Capability < ActiveRecord::Base
+  has_roles
+
+  belongs_to :capability_type
+  has_and_belongs_to_many :capable_models
+
+  alias :type :capability_type
+end

data/app/models/capability_type.rb

@@ -0,0 +1,3 @@
+class CapabilityType < ActiveRecord::Base
+  has_many :capabilities
+end

data/app/models/capable_model.rb

@@ -0,0 +1,4 @@
+class CapableModel < ActiveRecord::Base
+  belongs_to :capable_model_record, :polymorphic => true
+  has_and_belongs_to_many :capabilities
+end

data/app/models/encryption_key.rb

@@ -0,0 +1,9 @@
+class EncryptionKey
+  
+  def self.get_key()
+    #PLEASE OVERRIDE THIS FUNCTION TO ACCESS A KEY IN A LOCATION THAT MEETS YOUR ORGANIZATIONS
+    #PII/PCI STANDARDS
+    return 'a private key'
+  end
+  
+end

data/app/models/extensions/contact_purpose.rb

@@ -0,0 +1,3 @@
+ContactPurpose.class_eval do
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+end

data/app/models/extensions/contact_type.rb

@@ -0,0 +1,3 @@
+ContactType.class_eval do
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+end

data/app/models/extensions/note.rb

@@ -0,0 +1,6 @@
+Note.class_eval do
+  def created_by_username
+    party = Party.find(created_by.id)
+    party.user.username
+  end
+end

data/app/models/extensions/note_type.rb

@@ -0,0 +1,3 @@
+NoteType.class_eval do
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+end

data/app/models/extensions/party.rb

@@ -0,0 +1,3 @@
+Party.class_eval do
+  has_one :user, :dependent => :destroy
+end

data/app/models/extensions/relationship_type.rb

@@ -0,0 +1,3 @@
+RelationshipType.class_eval do
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+end

data/app/models/extensions/role_type.rb

@@ -0,0 +1,3 @@
+RoleType.class_eval do
+  include ErpTechSvcs::Utils::DefaultNestedSetMethods
+end

data/app/models/file_asset.rb

@@ -0,0 +1,178 @@
+require 'fileutils'
+
+Paperclip.interpolates(:file_path){|data, style|
+  case ErpTechSvcs::FileSupport.options[:storage]
+  when :filesystem
+    File.join(Rails.root,'public',data.instance.directory,data.instance.name)
+  when :s3
+    File.join(data.instance.directory,data.instance.name)
+  end
+}
+
+Paperclip.interpolates(:file_url){|data, style|File.join(data.instance.directory,data.instance.name)}
+
+class FileAsset < ActiveRecord::Base
+  if respond_to?(:class_attribute)
+    class_attribute :file_type
+    class_attribute :valid_extensions
+    class_attribute :content_type
+  else
+    class_inheritable_accessor :file_type
+    class_inheritable_accessor :content_type
+    class_inheritable_writer :valid_extensions
+  end
+
+  after_create :set_sti
+  after_save   :set_data_file_name
+
+  belongs_to :file_asset_holder, :polymorphic => true
+  instantiates_with_sti
+
+  #paperclip
+  has_attached_file :data,
+    :storage => ErpTechSvcs::FileSupport.options[:storage],
+    :s3_credentials => "#{Rails.root}/config/s3.yml",
+    :path => ":file_path",
+    :url => ":file_url",
+    :validations => { :extension => lambda { |data, file| validate_extension(data, file) } }
+
+  before_post_process :set_content_type
+
+  validates_attachment_presence :data
+  validates_attachment_size :data, :less_than => Rails.application.config.erp_tech_svcs.max_file_size_in_mb.megabytes
+
+  validates :name, :presence => {:message => 'Name can not be blank'}
+  validates_uniqueness_of :name, :scope => [:directory]
+  validates_each :directory, :name do |record, attr, value|
+    record.errors.add attr, 'may not contain consequtive dots' if value =~ /\.\./
+  end
+  validates_format_of :name, :with => /^\w/
+
+  class << self
+    def acceptable?(name)
+      valid_extensions.include?(File.extname(name))
+    end
+
+    def type_for(name)
+      classes = all_subclasses.uniq
+      classes.detect{ |k| k.acceptable?(name) }.try(:name)
+    end
+
+    def type_by_extension(extension)
+      all_subclasses.detect{ |k| k.valid_extensions.include?(extension) }
+    end
+
+    def validate_extension(data, file)
+      if file.name && !file.class.valid_extensions.include?(::File.extname(file.name))
+        types = all_valid_extensions.map{ |type| type.gsub(/^\./, '') }.join(', ')
+        "#{file.name} is not a valid file type. Valid file types are #{types}."
+      end
+    end
+
+    def valid_extensions
+      read_inheritable_attribute(:valid_extensions) || []
+    end
+
+    def all_valid_extensions
+      all_subclasses.map { |k| k.valid_extensions }.flatten.uniq
+    end
+
+    def split_path(path)
+      directory, name = ::File.split(path)
+      directory = nil if directory == '.'
+      [directory, name]
+    end
+  end
+
+  def initialize(attributes = {}, options)
+    attributes ||= {}
+
+    base_path = attributes.delete(:base_path)
+    @type, directory, name, data = attributes.values_at(:type, :directory, :name, :data)
+    base_path ||= data.original_filename if data.respond_to?(:original_filename)
+
+    directory, name = FileAsset.split_path(base_path) if base_path and name.blank?
+    directory.gsub!(File.join(Rails.root,'public'),'')
+
+    @type ||= FileAsset.type_for(name) if name
+    data = StringIO.new(data) if data.is_a?(String)
+
+    super attributes.merge(:directory => directory, :name => name, :data => data)
+  end
+
+  def basename
+    data_file_name.gsub(/\.#{extname}$/, "")
+  end
+
+  def extname
+    File.extname(self.data_file_name).gsub(/^\.+/, '')
+  end
+
+  def set_sti
+    update_attribute :type, @type
+  end
+
+  def set_content_type
+    unless @type.nil?
+      klass = @type.constantize
+      content_type = klass == Image ? "image/#{self.extname.downcase}" : klass.content_type
+      self.data.instance_write(:content_type, content_type)
+    end
+  end
+
+  def set_data_file_name
+    update_attribute :data_file_name, name if data_file_name != name
+  end
+
+  def move(new_parent_path)
+    file_support = ErpTechSvcs::FileSupport::Base.new(:storage => ErpTechSvcs::FileSupport.options[:storage])
+    file_support.save_move(File.join(self.directory,self.name), new_parent_path)
+    self.directory = new_parent_path
+    self.save
+  end
+
+end
+
+class Image < FileAsset
+  self.file_type = :image
+  self.valid_extensions = %w(.jpg .jpeg .gif .png .ico .PNG .JPEG .JPG)
+end
+
+class TextFile < FileAsset
+  self.file_type = :textfile
+  self.content_type = 'text/plain'
+  self.valid_extensions = %w(.txt .text)
+
+  def data=(data)
+    data = StringIO.new(data) if data.is_a?(String)
+    super
+  end
+
+  def text
+    @text ||= ::File.read(path) rescue ''
+  end
+end
+
+class Javascript < TextFile
+  self.file_type = :javascript
+  self.content_type = 'text/javascript'
+  self.valid_extensions = %w(.js)
+end
+
+class Stylesheet < TextFile
+  self.file_type = :stylesheet
+  self.content_type = 'text/css'
+  self.valid_extensions = %w(.css)
+end
+
+class Template < TextFile
+  self.file_type = :template
+  self.content_type = 'text/plain'
+  self.valid_extensions = %w(.erb .haml .liquid .builder)
+end
+
+class HtmlFile < TextFile
+  self.file_type = :html
+  self.content_type = 'text/html'
+  self.valid_extensions = %w(.html)
+end

data/app/models/role.rb

@@ -0,0 +1,17 @@
+class Role < ActiveRecord::Base
+  acts_as_erp_type
+
+  has_and_belongs_to_many :secured_models
+
+  validates :internal_identifier, :presence => {:message => 'Internal identifier cannot be blank'}
+  validates :internal_identifier, :presence => {:message => 'Description cannot be blank'}
+  validates_length_of       :internal_identifier,    :within => 3..100
+  validates_uniqueness_of   :internal_identifier,    :case_sensitive => false
+
+	def to_xml(options = {})
+		default_only = []
+  	options[:only] = (options[:only] || []) + default_only
+  	super(options)
+  end
+
+end

data/app/models/secured_model.rb

@@ -0,0 +1,13 @@
+class SecuredModel < ActiveRecord::Base
+  belongs_to :secured_record, :polymorphic => true
+  has_and_belongs_to_many :roles
+
+  class << self
+    def find_models_by_klass_and_role(model_klass, role)
+     role = Role.iid(role) if role.is_a? String
+
+     SecuredModel.joins(['join roles_secured_models on roles_secured_models.secured_model_id = secured_models.id']).where('secured_record_type = ? and role_id = ?',model_klass, role.id).collect(&:secured_record)
+    end
+  end
+
+end

data/app/models/user.rb

@@ -0,0 +1,33 @@
+class User < ActiveRecord::Base
+  has_roles
+  include ErpTechSvcs::Utils::CompassAccessNegotiator
+
+  belongs_to :party
+  
+  attr_accessible :email, :password, :password_confirmation
+  authenticates_with_sorcery!
+
+  #password validations
+  validates_length_of :password, :minimum => 3, :message => "password must be at least 3 characters long", :if => :password
+  validates_confirmation_of :password, :message => "should match confirmation", :if => :password
+
+  #email validations
+  validates :email, :presence => {:message => 'Email cannot be blank'}
+  validates_uniqueness_of :email
+  validates_format_of :email, :with => /\b[A-Z0-9._%a-z\-]+@(?:[A-Z0-9a-z\-]+\.)+[A-Za-z]{2,4}\z/
+
+  #username validations
+  validates :email, :presence => {:message => 'Username cannot be blank'}
+  validates_uniqueness_of :username
+
+  #these two methods allow us to assign instance level attributes that are not persisted.  These are used for mailers
+  def instance_attributes
+    @instance_attrs.nil? ? {} : @instance_attrs
+  end
+
+  def add_instance_attribute(k,v)
+    @instance_attrs = {} if @instance_attrs.nil?
+    @instance_attrs[k] = v
+  end
+  
+end

data/app/views/layouts/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>ErpTechSvcs</title>
+  <%= stylesheet_link_tag    "erp_tech_svcs/application" %>
+  <%= javascript_include_tag "erp_tech_svcs/application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/app/views/layouts/erp_tech_svcs/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>ErpTechSvcs</title>
+  <%= stylesheet_link_tag    "erp_tech_svcs/application" %>
+  <%= javascript_include_tag "erp_tech_svcs/application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/app/views/user_mailer/activation_needed_email.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta content="text/html; charset=UTF-8" http-equiv="Content-Type" />
+  </head>
+  <body>
+    <h1>Welcome <%= @user.username %></h1>
+    <p>
+      You have successfully registered, to activate your account follow this link: <a href="<%= @url %>"><%= @url %></a>.
+    </p>
+    <p>Your username is <%=@user.username%> and your temporary password is <%=@user.instance_attributes[:temp_password]%></p>
+    <p>Thanks for joining and have a great day!!</p>
+  </body>
+</html>

data/app/views/user_mailer/reset_password_email.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta content="text/html; charset=UTF-8" http-equiv="Content-Type" />
+  </head>
+  <body>
+    <h1>We have reset the password for, <%= @user.username %></h1>
+    <p>
+      The new password is <%= @user.password_confirmation  %>.
+      To login and update your password follow this link: <a href="<%= @url %>"><%= @url %></a>.
+    </p>
+    <p>Thanks for being a member and have a great day!</p>
+  </body>
+</html>

data/config/initializers/erp_tech_svcs.rb

@@ -0,0 +1,7 @@
+Rails.application.config.erp_tech_svcs.configure do |config|
+  config.installation_domain = 'localhost:3000'
+  config.login_url = '/erp_app/login'
+  config.email_notifications_from = 'notifications@noreply.com'
+  config.max_file_size_in_mb = 5
+end
+Rails.application.config.erp_tech_svcs.configure!

data/config/initializers/file_support.rb

@@ -0,0 +1 @@
+ErpTechSvcs::FileSupport::S3Manager.setup_connection() if ErpTechSvcs::FileSupport.options[:storage] == :s3

data/config/initializers/pdfkit.rb

@@ -0,0 +1,18 @@
+# config/initializers/pdfkit.rb
+PDFKit.configure do |config|
+  if RUBY_PLATFORM =~ /(:?mswin|mingw)/
+    # set path to wkhtmltopdf on windows here
+    config.wkhtmltopdf = '/opt/local/bin/wkhtmltopdf'
+  else
+    config.wkhtmltopdf = '/opt/local/bin/wkhtmltopdf'
+  end
+  
+  config.default_options = {
+    :page_size => 'Letter',
+    :print_media_type => true,
+    :disable_smart_shrinking => true,
+    :dpi => 300,
+    :no_background => true
+#    :use_xserver => true
+  }
+end