RubyGems - esp-auth - Versions diffs - 1.0.0 - Mend

Files changed (51) hide show

data/lib/generators/esp_auth/install/templates/app/models/user.rb ADDED Viewed

@@ -0,0 +1,67 @@
+class User < ActiveRecord::Base
+  attr_accessible :name, :email, :nickname, :name, :first_name, :last_name, :location, :description, :image, :phone, :urls, :raw_info, :uid
+  validates_presence_of :uid
+  has_many :permissions
+  default_value_for :sign_in_count, 0
+  devise :omniauthable, :trackable, :timeoutable
+  searchable do
+    integer :uid
+    text :term do [name, email, nickname].join(' ') end
+    integer :permissions_count do permissions.count end
+  end
+  Permission.enums[:role].each do | role |
+    define_method "#{role}_of?" do |context|
+      permissions.for_role(role).for_context_and_ancestors(context).exists?
+    end
+    define_method "#{role}?" do
+      permissions.for_role(role).exists?
+    end
+  end
+  def contexts
+    permissions.map(&:context).uniq
+  end
+  def contexts_tree
+    contexts.flat_map{|c| c.respond_to?(:subtree) ? c.subtree : c}
+            .uniq
+            .flat_map{|c| c.respond_to?(:subcontexts) ? [c] + c.subcontexts : c }
+            .uniq
+  end
+end
+# == Schema Information
+#
+# Table name: users
+#
+#  id                 :integer         not null, primary key
+#  uid                :string(255)
+#  name               :text
+#  email              :text
+#  nickname           :text
+#  first_name         :text
+#  last_name          :text
+#  location           :text
+#  description        :text
+#  image              :text
+#  phone              :text
+#  urls               :text
+#  raw_info           :text
+#  sign_in_count      :integer         default(0)
+#  current_sign_in_at :datetime
+#  last_sign_in_at    :datetime
+#  current_sign_in_ip :string(255)
+#  last_sign_in_ip    :string(255)
+#  created_at         :datetime        not null
+#  updated_at         :datetime        not null
+#

data/lib/generators/esp_auth/install/templates/config/locales/permissions_enum.ru.yml ADDED Viewed

@@ -0,0 +1,6 @@
+ru:
+  activerecord:
+    attributes:
+      permission:
+        role_enum:
+          manager:              Менеджер

data/lib/generators/esp_auth/install/templates/config/schedule.rb ADDED Viewed

@@ -0,0 +1,5 @@
+set :job_template, "/usr/local/bin/bash -l -c ':job'" if RUBY_PLATFORM =~ /freebsd/
+every 1.day, :at => '4:00 am' do
+    rake 'esp_auth:sync'
+end

data/lib/generators/esp_auth/install/templates/db/migrate/esp_auth_create_contexts.rb ADDED Viewed

@@ -0,0 +1,12 @@
+class EspAuthCreateContexts < ActiveRecord::Migration
+  def change
+    create_table :contexts do |t|
+      t.string :title
+      t.string :ancestry
+      t.string :weight
+      t.timestamps
+    end
+    add_index :contexts, :weight
+    add_index :contexts, :ancestry
+  end
+end

data/lib/generators/esp_auth/install/templates/db/migrate/esp_auth_create_permissions.rb ADDED Viewed

@@ -0,0 +1,11 @@
+class EspAuthCreatePermissions < ActiveRecord::Migration
+  def change
+    create_table :permissions do |t|
+      t.references :user
+      t.references :context, :polymorphic => true
+      t.string :role
+      t.timestamps
+    end
+    add_index :permissions, [:user_id, :role, :context_id, :context_type], :name => 'by_user_and_role_and_context'
+  end
+end

data/lib/generators/esp_auth/install/templates/db/migrate/esp_auth_create_subcontexts.rb ADDED Viewed

@@ -0,0 +1,9 @@
+class EspAuthCreateSubcontexts < ActiveRecord::Migration
+  def change
+    create_table :subcontexts do |t|
+      t.string :title
+      t.references :context
+      t.timestamps
+    end
+  end
+end

data/lib/generators/esp_auth/install/templates/db/migrate/esp_auth_create_users.rb ADDED Viewed

@@ -0,0 +1,29 @@
+class EspAuthCreateUsers < ActiveRecord::Migration
+  def change
+    create_table :users do | t |
+      t.string  :uid                # omniauth[:uid]
+      t.text    :name,              # omniauth[:info]
+                :email,
+                :nickname,
+                :first_name,
+                :last_name,
+                :location,
+                :description,
+                :image,
+                :phone,
+                :urls
+      t.text    :raw_info           # omniauth[:extra]
+      # Trackable
+      t.integer  :sign_in_count
+      t.datetime :current_sign_in_at
+      t.datetime :last_sign_in_at
+      t.string   :current_sign_in_ip
+      t.string   :last_sign_in_ip
+      t.timestamps
+    end
+    add_index :users, :uid
+  end
+end

data/lib/generators/esp_auth/install/templates/db/seeds.rb ADDED Viewed

@@ -0,0 +1,4 @@
+User.find_or_initialize_by_uid('1').tap do | user |
+  user.save(:validate => false)
+  user.permissions.create! :context => Context.first, :role => :manager if user.permissions.empty?
+end

data/lib/generators/esp_auth/install/templates/spec/models/ability_spec.rb ADDED Viewed

@@ -0,0 +1,83 @@
+# encoding: utf-8
+require 'spec_helper'
+describe Ability do
+  context 'менеджер' do
+    context 'корневого контекста' do
+      subject { ability_for(manager_of(root)) }
+      context 'управление контекстами' do
+        it { should     be_able_to(:manage, root) }
+        it { should     be_able_to(:manage, child_1) }
+        it { should     be_able_to(:manage, child_1_1) }
+        it { should     be_able_to(:manage, child_2) }
+      end
+      context 'управление подконтекстами' do
+        it { should     be_able_to(:manage, subcontext(root)) }
+        it { should     be_able_to(:manage, subcontext(child_1)) }
+        it { should     be_able_to(:manage, subcontext(child_1_1)) }
+        it { should     be_able_to(:manage, subcontext(child_2)) }
+      end
+      context 'управление правами доступа' do
+        it { should     be_able_to(:manage, another_manager_of(root).permissions.first) }
+        it { should     be_able_to(:manage, another_manager_of(child_1).permissions.first) }
+        it { should     be_able_to(:manage, another_manager_of(child_1_1).permissions.first) }
+        it { should     be_able_to(:manage, another_manager_of(child_2).permissions.first) }
+      end
+    end
+    context 'вложенного контекста' do
+      subject { ability_for(manager_of(child_1)) }
+      context 'управление контекстами' do
+        it { should_not be_able_to(:manage, root) }
+        it { should     be_able_to(:manage, child_1) }
+        it { should     be_able_to(:manage, child_1_1) }
+        it { should_not be_able_to(:manage, child_2) }
+      end
+      context 'управление подконтекстами' do
+        it { should_not be_able_to(:manage, subcontext(root)) }
+        it { should     be_able_to(:manage, subcontext(child_1)) }
+        it { should     be_able_to(:manage, subcontext(child_1_1)) }
+        it { should_not be_able_to(:manage, subcontext(child_2)) }
+      end
+      context 'управление правами доступа' do
+        it { should_not be_able_to(:manage, another_manager_of(root).permissions.first) }
+        it { should     be_able_to(:manage, another_manager_of(child_1).permissions.first) }
+        it { should     be_able_to(:manage, another_manager_of(child_1_1).permissions.first) }
+        it { should_not be_able_to(:manage, another_manager_of(child_2).permissions.first) }
+      end
+    end
+    context 'подконтеста' do
+      subject { ability_for(manager_of(subcontext(child_1)))}
+      context 'управление контекстами' do
+        it { should_not be_able_to(:manage, root) }
+        it { should_not be_able_to(:manage, child_1) }
+        it { should_not be_able_to(:manage, child_1_1) }
+        it { should_not be_able_to(:manage, child_2) }
+      end
+      context 'управление подконтекстами' do
+        it { should_not be_able_to(:manage, another_subcontext(root)) }
+        it { should_not be_able_to(:manage, another_subcontext(child_1)) }
+        it { should_not be_able_to(:manage, another_subcontext(child_1_1)) }
+        it { should_not be_able_to(:manage, another_subcontext(child_2)) }
+        it { should     be_able_to(:manage, subcontext(child_1)) }
+      end
+      context 'управление правами доступа' do
+        it { should_not be_able_to(:manage, another_manager_of(root).permissions.first) }
+        it { should_not be_able_to(:manage, another_manager_of(child_1).permissions.first) }
+        it { should_not be_able_to(:manage, another_manager_of(child_1_1).permissions.first) }
+        it { should_not be_able_to(:manage, another_manager_of(child_2).permissions.first) }
+      end
+    end
+  end
+end

data/lib/omniauth/strategies/identity.rb ADDED Viewed

@@ -0,0 +1,15 @@
+require 'omniauth/strategies/oauth2'
+module OmniAuth
+  module Strategies
+    class Identity < OmniAuth::Strategies::OAuth2
+      uid { raw_info['uid'] }
+      info { raw_info['info'] }
+      extra { {:raw_info => raw_info} }
+      def raw_info
+        @raw_info ||= access_token.get("/oauth/user.json?oauth_token=#{access_token.token}").parsed
+      end
+    end
+  end
+end

data/lib/tasks/sync.rake ADDED Viewed

@@ -0,0 +1,17 @@
+require 'curb'
+require 'progress_bar'
+desc "Syncronize blue-pages tree"
+namespace :esp_auth do
+  task :sync => :environment do
+    remotes = JSON.parse(Curl::Easy.http_get("#{Settings['blue-pages.url']}/categories/2.json?sync=true").body_str)
+    bar = ProgressBar.new(remotes.count)
+    remotes.each do | remote |
+      (Context.find_by_id(remote['id']) || Context.new).tap do | context |
+        context.update_attributes! remote
+      end
+      bar.increment!
+    end
+  end
+end

esp-auth 1.0.0