erp_tech_svcs 3.0.0 → 3.0.1

data/README.md

@@ -0,0 +1,62 @@
+#ErpTechSvcs
+
+This engine is implemented with the premise that services like logging, tracing and encryption would likely already exist in many organizations, so they are factored here so they can easily be re-implemented. There are default implementations here, and we track several excellent Rails projects as potential implementations of services like security and content/digital asset mgt.
+
+##Initializer Options
+
+- installation\_domain
+  - The domain that your Compass AE instance is installed at.
+  - Default : 'localhost:3000'
+- login\_url
+  - Path to the login page.
+  - Default : '/erp_app/login'
+- email\_notifications\_from
+  - From address for email notifications.
+  - Default : 'notifications@noreply.com'
+- max\_file\_size\_in\_mb
+  - Max allowed file upload size in mega bytes.
+  - Default : 5
+- file\_assets\_location
+  - Where you want file_assets to be saved to.
+  - Default : file_assets
+- file\_storage
+  - File storage to use either s3 or filesystem.
+  - Default : :filesystem
+
+### Override Initializer
+
+To override these settings simple create a erp_tech_svcs.rb file in your initializers and override the config options you want
+
+    Rails.application.config.erp_tech_svcs.configure do |config|
+      config.installation_domain = 'localhost:3000'
+      config.login_url = '/erp_app/login'
+      config.email_notifications_from = 'notifications@noreply.com'
+      config.max_file_size_in_mb = 5
+      config.file_assets_location = 'file_assets'
+      config.file_storage = :filesystem
+    end
+    Rails.application.config.erp_tech_svcs.configure!
+
+##Notes
+
+We use [pdfkit](https://github.com/jdpace/PDFKit) and there is an initializer in erp\_tech\_svcs to set it up with some defaults.  You will need to create your
+own initializer to overwrite this if you have wkhtmltopdf in another location
+
+    # config/initializers/pdfkit.rb
+    PDFKit.configure do |config|
+      if RUBY_PLATFORM =~ /(:?mswin|mingw)/
+        # set path to wkhtmltopdf on windows here
+        config.wkhtmltopdf = '/opt/local/bin/wkhtmltopdf'
+      else
+        config.wkhtmltopdf = '/opt/local/bin/wkhtmltopdf'
+      end
+
+      config.default_options = {
+        :page_size => 'Letter',
+        :print_media_type => true,
+        :disable_smart_shrinking => true,
+        :dpi => 300,
+        :no_background => true
+    #    :use_xserver => true
+      }
+    end

data/app/controllers/erp_tech_svcs/session_controller.rb

@@ -1,13 +1,18 @@
 module ErpTechSvcs
   class SessionController < ActionController::Base
     def create
-      if login(params[:login],params[:password])
-        request.xhr? ? (render :json => {:success => true}) : (redirect_to params[:login_to])
-      else
-        message = "Login failed. Try again"
-        flash[:notice] = message
-        request.xhr? ? (render :json => {:success => false, :errors => {:reason => message}}) : (render :text => message)
-      end
+      last_login_at = nil
+      potential_user = User.where('username = ? or email = ?', params[:login], params[:login]).first
+      last_login_at = potential_user.last_login_at unless potential_user.nil?
+        if login(params[:login],params[:password])
+          login_to = last_login_at.nil? ? params[:first_login_to] : params[:login_to]
+          login_to = login_to || params[:login_to]
+          request.xhr? ? (render :json => {:success => true, :login_to => login_to}) : (redirect_to login_to)
+        else
+          message = "Login failed. Try again"
+          flash[:notice] = message
+          request.xhr? ? (render :json => {:success => false, :errors => {:reason => message}}) : (render :text => message)
+        end
     end
 
     def destroy

data/app/controllers/erp_tech_svcs/user_controller.rb

@@ -10,31 +10,52 @@ module ErpTechSvcs
       end
     end
 
-    def reset_password
-      begin
-      login_url = params[:login_url].blank? ? ErpTechSvcs::Config.login_url : params[:login_url]
-      if user = (User.find_by_email(params[:login]) || User.find_by_username(params[:login]))
-        new_password = Sorcery::Model::TemporaryToken.generate_random_token
-        user.password_confirmation = new_password
-        if user.change_password!(new_password)
-          user.add_instance_attribute(:login_url,login_url)
-          user.deliver_reset_password_instructions!
-          message = "Password has been reset.  An email has been sent with further instructions to #{user.email}."
+    def update_password
+      if user = User.authenticate(current_user.username, params[:old_password])
+        user.password_confirmation = params[:password_confirmation]
+        if user.change_password!(params[:password])
           success = true
         else
-          message = "Error re-setting password."
+          #### validation failed ####
+          message = user.errors.full_messages
           success = false
         end
       else
-        message = "Invalid email address."
+        message = "Invalid current password."
         success = false
       end
-      render :json => {:success => success,:message => message}
+
+      request.xhr? ? (render :json => {:success => success, :message => message}) : (render :text => message)
+    end
+
+    def reset_password
+      begin
+        login_url = params[:login_url].blank? ? ErpTechSvcs::Config.login_url : params[:login_url]
+        if user = (User.find_by_email(params[:login]) || User.find_by_username(params[:login]))
+          new_password = Sorcery::Model::TemporaryToken.generate_random_token
+          user.password_confirmation = new_password
+          if user.change_password!(new_password)
+            user.add_instance_attribute(:login_url,login_url)
+            user.add_instance_attribute(:domain, params[:domain])
+            user.deliver_reset_password_instructions!
+            message = "Password has been reset.  An email has been sent with further instructions to #{user.email}."
+            success = true
+          else
+            message = "Error re-setting password."
+            success = false
+          end
+        else
+          message = "Invalid email address."
+          success = false
+        end
+        render :json => {:success => success,:message => message}
       rescue Exception=>ex
         logger.error ex.message
         logger.error ex.backtrace
         render :json => {:success => false,:message => 'Error sending email.'}
       end
     end
+
+
   end#UserController
-end#ErpTechSvcs
+end#ErpTechSvcs

data/app/mailers/user_mailer.rb

@@ -3,14 +3,20 @@ class UserMailer < ActionMailer::Base
 
   def activation_needed_email(user)
     @user = user
-    @url  = "#{ErpTechSvcs::Config.installation_domain}/users/activate/#{user.activation_token}"
+    @url  = "#{get_domain(user.instance_attributes[:domain])}/users/activate/#{user.activation_token}"
     @url << "?login_url=#{@user.instance_attributes[:login_url]}" unless @user.instance_attributes[:login_url].nil?
     mail(:to => user.email, :subject => "An account has been created and needs activation")
   end
 
   def reset_password_email(user)
     @user = user
-    @url  = "#{ErpTechSvcs::Config.installation_domain}#{@user.instance_attributes[:login_url]}"
+    @url  = "#{get_domain(user.instance_attributes[:domain])}#{@user.instance_attributes[:login_url]}"
     mail(:to => user.email, :subject => "Your password has been reset")
   end
+
+  def get_domain(domain)
+    domain = domain || ErpTechSvcs::Config.installation_domain
+    domain = "http://#{domain}" if domain.index('http').nil?
+    domain
+  end
 end

data/app/models/attribute_type.rb

@@ -0,0 +1,30 @@
+class AttributeType < ActiveRecord::Base
+  has_many :attribute_values, :dependent => :destroy
+
+  validates_uniqueness_of :internal_identifier
+  validates :description, :presence => true
+
+  before_save :update_iid
+
+  def values_by_date_range(start_date, end_date)
+    raise "attribute_type does not have a data_type of Date" unless self.data_type == "Date"
+    
+    attribute_values = self.attribute_values
+    attribute_values.each do |attribute_value|
+      unless attribute_value.value_as_date >= start_date and attribute_value.value_as_date <= end_date
+        attribute_values.delete(attribute_value)
+      end
+    end
+
+    attribute_values
+  end
+
+  def self.find_by_iid_with_description(description)
+    iid = description.strip.underscore.gsub(/\s+/,"_")
+    AttributeType.find_by_internal_identifier iid
+  end
+
+  def update_iid
+    self.internal_identifier = self.description.strip.underscore.gsub(/\s+/,"_")
+  end
+end

data/app/models/attribute_value.rb

@@ -0,0 +1,41 @@
+class AttributeValue < ActiveRecord::Base
+  belongs_to :attributed_record, :polymorphic => true
+  belongs_to :attribute_type
+
+  validates_format_of :value, :with => /\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2}/, :if => :is_date?
+  before_destroy :destroy_attribute_types_without_values
+
+  def is_date?
+    self.attribute_type.data_type == 'Date' ? true : false
+  end
+
+  def value_as_data_type
+    data_type = self.attribute_type.data_type
+
+    case data_type
+    when "Date"
+      self.value.to_date
+    when "Boolean"
+      self.value == "true" ? true : false
+    when "Int"
+      self.value.to_i
+    when "Float"
+      self.value.to_f
+    else
+      self.value
+    end
+  end
+
+  def value_as_date
+    if self.is_date?
+      self.value.to_date
+    else
+      raise "value is not a Date or is not properly formated"
+    end
+  end
+
+  def destroy_attribute_types_without_values
+    self.attribute_type.destroy unless self.attribute_type.attribute_values.count > 1
+  end
+  
+end

data/app/models/file_asset.rb

@@ -1,15 +1,31 @@
 require 'fileutils'
 
 Paperclip.interpolates(:file_path){|data, style|
-  case ErpTechSvcs::FileSupport.options[:storage]
+  case Rails.application.config.erp_tech_svcs.file_storage
   when :filesystem
-    File.join(Rails.root,'public',data.instance.directory,data.instance.name)
+    file_support = ErpTechSvcs::FileSupport::Base.new
+    File.join(file_support.root,data.instance.directory,data.instance.name)
   when :s3
     File.join(data.instance.directory,data.instance.name)
   end
 }
 
-Paperclip.interpolates(:file_url){|data, style|File.join(data.instance.directory,data.instance.name)}
+Paperclip.interpolates(:file_url){|data, style|
+  url = File.join(data.instance.directory, data.instance.name)
+  case Rails.application.config.erp_tech_svcs.file_storage
+  when :filesystem
+    #if public is at the front of this path and we are using file_system remove it
+    dir_pieces = url.split('/')
+    unless dir_pieces[1] == 'public'
+      "/download/#{data.instance.name}?path=#{dir_pieces.delete_if{|name| name == data.instance.name}.join('/')}"
+    else
+      dir_pieces.delete_at(1) if dir_pieces[1] == 'public'
+      dir_pieces.join('/')
+    end
+  when :s3
+    url
+  end
+}
 
 class FileAsset < ActiveRecord::Base
   if respond_to?(:class_attribute)
@@ -28,9 +44,13 @@ class FileAsset < ActiveRecord::Base
   belongs_to :file_asset_holder, :polymorphic => true
   instantiates_with_sti
 
+  has_capabilities
+
   #paperclip
   has_attached_file :data,
-    :storage => ErpTechSvcs::FileSupport.options[:storage],
+    :storage => Rails.application.config.erp_tech_svcs.file_storage,
+    :s3_protocol => Rails.application.config.erp_tech_svcs.s3_protocol,
+    :s3_permissions => :public_read,
     :s3_credentials => "#{Rails.root}/config/s3.yml",
     :path => ":file_path",
     :url => ":file_url",
@@ -59,11 +79,13 @@ class FileAsset < ActiveRecord::Base
     end
 
     def type_by_extension(extension)
-      all_subclasses.detect{ |k| k.valid_extensions.include?(extension) }
+      klass = all_subclasses.detect{ |k| k.valid_extensions.include?(extension) }
+      klass = TextFile if klass.nil?
+      klass
     end
 
     def validate_extension(data, file)
-      if file.name && !file.class.valid_extensions.include?(::File.extname(file.name))
+      if file.name && !file.class.valid_extensions.include?(File.extname(file.name))
         types = all_valid_extensions.map{ |type| type.gsub(/^\./, '') }.join(', ')
         "#{file.name} is not a valid file type. Valid file types are #{types}."
       end
@@ -92,9 +114,12 @@ class FileAsset < ActiveRecord::Base
     base_path ||= data.original_filename if data.respond_to?(:original_filename)
 
     directory, name = FileAsset.split_path(base_path) if base_path and name.blank?
-    directory.gsub!(File.join(Rails.root,'public'),'')
+    directory.gsub!(Rails.root.to_s,'')
 
     @type ||= FileAsset.type_for(name) if name
+    @type = "TextFile" if @type.nil?
+    @name = name
+
     data = StringIO.new(data) if data.is_a?(String)
 
     super attributes.merge(:directory => directory, :name => name, :data => data)
@@ -115,7 +140,7 @@ class FileAsset < ActiveRecord::Base
   def set_content_type
     unless @type.nil?
       klass = @type.constantize
-      content_type = klass == Image ? "image/#{self.extname.downcase}" : klass.content_type
+      content_type = klass == Image ? "image/#{File.extname(@name).gsub(/^\.+/, '')}" : klass.content_type
       self.data.instance_write(:content_type, content_type)
     end
   end
@@ -124,11 +149,20 @@ class FileAsset < ActiveRecord::Base
     update_attribute :data_file_name, name if data_file_name != name
   end
 
+  def get_contents
+    file_support = ErpTechSvcs::FileSupport::Base.new(:storage => Rails.application.config.erp_tech_svcs.file_storage)
+    file_support.get_contents(File.join(self.directory,self.data_file_name))
+  end
+
   def move(new_parent_path)
-    file_support = ErpTechSvcs::FileSupport::Base.new(:storage => ErpTechSvcs::FileSupport.options[:storage])
-    file_support.save_move(File.join(self.directory,self.name), new_parent_path)
-    self.directory = new_parent_path
-    self.save
+    file_support = ErpTechSvcs::FileSupport::Base.new(:storage => Rails.application.config.erp_tech_svcs.file_storage)
+    result, message = file_support.save_move(File.join(self.directory, self.name), new_parent_path)
+    if result
+      self.directory = new_parent_path.gsub(Regexp.new(Rails.root.to_s), '') # strip rails root from new_parent_path, we want relative path
+      self.save
+    end
+
+    return result, message
   end
 
 end
@@ -176,3 +210,15 @@ class HtmlFile < TextFile
   self.content_type = 'text/html'
   self.valid_extensions = %w(.html)
 end
+
+class Pdf < TextFile
+  self.file_type = :pdf
+  self.content_type = 'application/pdf'
+  self.valid_extensions = %w(.pdf)
+end
+
+class Swf < TextFile
+  self.file_type = :swf
+  self.content_type = 'application/x-shockwave-flash'
+  self.valid_extensions = %w(.swf)
+end

data/app/models/secured_model.rb

@@ -4,9 +4,11 @@ class SecuredModel < ActiveRecord::Base
 
   class << self
     def find_models_by_klass_and_role(model_klass, role)
-     role = Role.iid(role) if role.is_a? String
+     role        = Role.iid(role) if role.is_a? String
+     model_klass = model_klass.to_s unless model_klass.is_a? String
 
-     SecuredModel.joins(['join roles_secured_models on roles_secured_models.secured_model_id = secured_models.id']).where('secured_record_type = ? and role_id = ?',model_klass, role.id).collect(&:secured_record)
+     SecuredModel.joins(['join roles_secured_models on roles_secured_models.secured_model_id = secured_models.id'])
+                 .where('secured_record_type = ? and role_id = ?', model_klass, role.id).collect(&:secured_record)
     end
   end
 

data/app/models/user.rb

@@ -1,24 +1,26 @@
 class User < ActiveRecord::Base
+  include ActiveModel::Validations
+
+  attr_accessor :password_validator
+
   has_roles
   include ErpTechSvcs::Utils::CompassAccessNegotiator
 
   belongs_to :party
-  
+
   attr_accessible :email, :password, :password_confirmation
   authenticates_with_sorcery!
 
   #password validations
-  validates_length_of :password, :minimum => 3, :message => "password must be at least 3 characters long", :if => :password
   validates_confirmation_of :password, :message => "should match confirmation", :if => :password
+  validates :password, :presence => true, :password_strength => true, :if => :password
 
   #email validations
-  validates :email, :presence => {:message => 'Email cannot be blank'}
-  validates_uniqueness_of :email
+  validates :email, :presence => {:message => 'Email cannot be blank'}, :uniqueness => true
   validates_format_of :email, :with => /\b[A-Z0-9._%a-z\-]+@(?:[A-Z0-9a-z\-]+\.)+[A-Za-z]{2,4}\z/
 
   #username validations
-  validates :email, :presence => {:message => 'Username cannot be blank'}
-  validates_uniqueness_of :username
+  validates :username, :presence => {:message => 'Username cannot be blank'}, :uniqueness => true
 
   #these two methods allow us to assign instance level attributes that are not persisted.  These are used for mailers
   def instance_attributes
@@ -29,5 +31,5 @@ class User < ActiveRecord::Base
     @instance_attrs = {} if @instance_attrs.nil?
     @instance_attrs[k] = v
   end
-  
+
 end

data/app/validators/password_strength_validator.rb

@@ -0,0 +1,8 @@
+class PasswordStrengthValidator < ActiveModel::EachValidator
+  # implement the method where the validation logic must reside
+  def validate_each(record, attribute, value)
+    password_validation_hash = record.password_validator || {:error_message => 'must be at least 8 characters long and start and end with a letter', :regex => '^[A-Za-z]\w{6,}[A-Za-z]$'}
+    record.errors[attribute] << password_validation_hash[:error_message] unless Regexp.new(password_validation_hash[:regex]) =~ value
+  end
+end
+        

data/app/views/user_mailer/activation_needed_email.html.erb

@@ -8,7 +8,7 @@
     <p>
       You have successfully registered, to activate your account follow this link: <a href="<%= @url %>"><%= @url %></a>.
     </p>
-    <p>Your username is <%=@user.username%> and your temporary password is <%=@user.instance_attributes[:temp_password]%></p>
+    <p>Your username is <%=@user.username%>, use the password you set during registration to login.</p>
     <p>Thanks for joining and have a great day!!</p>
   </body>
 </html>

data/config/initializers/erp_tech_svcs.rb

@@ -3,5 +3,10 @@ Rails.application.config.erp_tech_svcs.configure do |config|
   config.login_url = '/erp_app/login'
   config.email_notifications_from = 'notifications@noreply.com'
   config.max_file_size_in_mb = 5
+  config.file_assets_location = 'file_assets' # relative to Rails.root/
+  config.s3_url_expires_in_seconds = 60 
+  config.s3_protocol = 'https' # Can be either 'http' or 'https'
+  config.file_storage = :filesystem # Can be either :s3 or :filesystem
+  config.s3_cache_expires_in_minutes = 60 
 end
-Rails.application.config.erp_tech_svcs.configure!
+Rails.application.config.erp_tech_svcs.configure!

data/config/initializers/file_support.rb

@@ -1 +1,9 @@
-ErpTechSvcs::FileSupport::S3Manager.setup_connection() if ErpTechSvcs::FileSupport.options[:storage] == :s3
+# we need to_prepare so that this is checked multiple times during startup as erp_tech_svcs.file_storage can be overridden. 
+Rails.application.config.to_prepare do
+  # Rescue here, Compass should not die if it cannot connect to S3
+  begin
+    ErpTechSvcs::FileSupport::S3Manager.setup_connection() if Rails.application.config.erp_tech_svcs.file_storage == :s3
+  rescue Exception => e
+    Rails.logger.error "ERROR: Failed to connect to Amazon S3 #{e.inspect}"
+  end
+end

data/config/initializers/sorcery.rb

@@ -125,7 +125,7 @@ Rails.application.config.sorcery.configure do |config|
     user.activation_success_email_method_name = nil                                   # activation success email method
                                                                                       # on your mailer class.
 
-    # user.prevent_non_active_users_to_login = true                                   # do you want to prevent or allow
+    user.prevent_non_active_users_to_login = true                                     # do you want to prevent or allow
                                                                                       # users that did not activate by
                                                                                       # email to login?
 
@@ -164,9 +164,9 @@ Rails.application.config.sorcery.configure do |config|
                                                                                       # user is banned and when it will
                                                                                       # be active again.
 
-    user.consecutive_login_retries_amount_limit = 5                                   # how many failed logins allowed.
+    user.consecutive_login_retries_amount_limit = 3                                   # how many failed logins allowed.
 
-    # user.login_lock_time_period = 60 * 60                                           # how long the user should be
+    user.login_lock_time_period = 60                                                  # how long the user should be
                                                                                       # banned. in seconds. 0 for
                                                                                       # permanent.
 

data/config/routes.rb

@@ -6,4 +6,5 @@ Rails.application.routes.draw do
   #handle activation
   get "/users/activate/:activation_token" => 'erp_tech_svcs/user#activate'
   post "/users/reset_password" => 'erp_tech_svcs/user#reset_password'
-end
+  post "/users/update_password" => 'erp_tech_svcs/user#update_password'
+end

data/db/data_migrations/20120109173616_create_download_capability_type.rb

@@ -0,0 +1,13 @@
+class CreateDownloadCapabilityType
+  
+  def self.up
+    CapabilityType.create(:internal_identifier => 'download', :description => 'Download')
+    Role.create(:description => 'File Downloader', :internal_identifier => 'file_downloader')
+  end
+  
+  def self.down
+    CapabilityType.where("internal_identifier = 'download'").first.destroy unless Role.where("internal_identifier = 'download'").first.nil?
+    Role.where("internal_identifier = 'file_downloader'").first.destroy  unless Role.where("internal_identifier = 'file_downloader'").first.nil?
+  end
+
+end

data/db/migrate/20080805000010_base_tech_services.rb

@@ -32,15 +32,20 @@ class BaseTechServices < ActiveRecord::Migration
         t.string :activation_state, :default => nil
         t.string :activation_token, :default => nil
         t.datetime :activation_token_expires_at, :default => nil
-      
+
+        t.string :security_question_1
+        t.string :security_answer_1
+        t.string :security_question_2
+        t.string :security_answer_2
+
         t.timestamps
       end
       add_index :users, :email, :unique => true
       add_index :users, :username, :unique => true
-      add_index :users, [:last_logout_at, :last_activity_at], :name => 'activity_idx', :unique => true
-      add_index :users, :remember_me_token, :unique => true
-      add_index :users, :reset_password_token, :unique => true
-      add_index :users, :activation_token, :unique => true
+      add_index :users, [:last_logout_at, :last_activity_at], :name => 'activity_idx'
+      add_index :users, :remember_me_token
+      add_index :users, :reset_password_token
+      add_index :users, :activation_token
     
     end
 
@@ -169,6 +174,8 @@ class BaseTechServices < ActiveRecord::Migration
       end
       add_index :file_assets, :type
       add_index :file_assets, [:file_asset_holder_id, :file_asset_holder_type], :name => 'file_asset_holder_idx'
+      add_index :file_assets, :name
+      add_index :file_assets, :directory
     end
 	
     unless table_exists?(:delayed_jobs)

data/db/migrate/20111117183144_create_has_attribute_tables.rb

@@ -0,0 +1,38 @@
+class CreateHasAttributeTables < ActiveRecord::Migration
+  def up
+    unless table_exists?(:attribute_types)
+      create_table :attribute_types do |t|
+        t.string :internal_identifier
+        t.string :description
+        t.string :data_type
+
+        t.timestamps
+      end
+
+      add_index :attribute_types, :internal_identifier,  :name => ':attribute_types_iid_idx'
+    end
+    unless table_exists?(:attribute_values)
+      create_table :attribute_values do |t|
+        t.integer :attributed_record_id
+        t.string :attributed_record_type
+        t.references :attribute_type
+        t.string  :value
+
+        t.timestamps
+      end
+
+      add_index :attribute_values, [:attributed_record_id, :attributed_record_type], :name => 'attribute_values_attributed_record_idx'
+      add_index :attribute_values, :attribute_type_id,  :name => 'attribute_values_attributed_type_idx'
+      add_index :attribute_values, :value,  :name => 'attribute_values_value_idx'
+    end
+  end
+
+  def down
+    if table_exists?(:attribute_types)
+      drop_table :attribute_types
+    end
+    if table_exists?(:attribute_values)
+      drop_table :attribute_values
+    end
+  end
+end

data/db/migrate/upgrade/20120329161641_add_file_asset_indexes.rb

@@ -0,0 +1,22 @@
+class AddFileAssetIndexes < ActiveRecord::Migration
+  def self.up
+    unless indexes(:file_assets).collect {|i| i.name}.include?('index_file_assets_on_type')
+      add_index :file_assets, :type
+    end
+
+    unless indexes(:file_assets).collect {|i| i.name}.include?('file_asset_holder_idx')
+      add_index :file_assets, [:file_asset_holder_id, :file_asset_holder_type], :name => 'file_asset_holder_idx'
+    end
+
+    unless indexes(:file_assets).collect {|i| i.name}.include?('index_file_assets_on_name')
+      add_index :file_assets, :name
+    end
+
+    unless indexes(:file_assets).collect {|i| i.name}.include?('index_file_assets_on_directory')
+      add_index :file_assets, :directory
+    end
+  end
+
+  def self.down
+  end
+end

data/lib/erp_tech_svcs/config.rb

@@ -1,10 +1,28 @@
 module ErpTechSvcs
   module Config
     class << self
-      attr_accessor :max_file_size_in_mb, :installation_domain, :login_url, :email_notifications_from
+      attr_accessor :max_file_size_in_mb, 
+                    :installation_domain, 
+                    :login_url,
+                    :email_notifications_from, 
+                    :file_assets_location, 
+                    :s3_url_expires_in_seconds,
+                    :s3_protocol,
+                    :file_storage,
+                    :s3_cache_expires_in_minutes
 
       def init!
-        @defaults = {:@max_file_size_in_mb => nil, :@installation_domain => nil, :@login_url => nil, :@email_notifications_from => nil}
+        @defaults = {
+          :@max_file_size_in_mb => 5,
+          :@installation_domain => 'localhost:3000',
+          :@login_url => '/erp_app/login',
+          :@email_notifications_from => 'notifications@noreply.com',
+          :@file_assets_location => 'file_assets', # relative to Rails.root/
+          :@s3_url_expires_in_seconds => 60,
+          :@s3_protocol => 'https', # Can be either 'http' or 'https'
+          :@file_storage => :filesystem, # Can be either :s3 or :filesystem
+          :@s3_cache_expires_in_minutes => 60
+        }
       end
 
       def reset!