infopark_fiona_connector 6.9.4 → 6.10.0.beta1

data/app/helpers/rails_connector/layout_helper.rb

@@ -0,0 +1,29 @@
+module RailsConnector
+
+  # This module contains helpers that render tags for the html head
+  # and the end of the html body.
+  # @api public
+  module LayoutHelper
+
+    # Renders all tags needed in the html head.
+    # @api public
+    def rails_connector_header_tags
+      html = "".html_safe
+      html += tag('meta', :name => 'generator',
+          :content => "Rails Connector for Infopark CMS Fiona by Infopark AG (www.infopark.de)")
+      html += include_edit_marker_support
+      html += include_editing_stylesheet
+      html
+    end
+
+    # Renders all tags needed at the end of the body tag.
+    # @api public
+    def rails_connector_after_content_tags
+      html = "".html_safe
+      html += render_marker_code
+      html += include_editing_javascript
+      html
+    end
+  end
+
+end

data/app/helpers/rails_connector/marker_helper.rb

@@ -141,9 +141,7 @@ module RailsConnector
         size = options.delete(:size)
         target = options.delete(:target) || "_blank"
 
-        link_to_function(name.to_s,
-          "inline_editing.openEditDialog('#{obj.id}', '#{attr}', '#{context.id || 'null'}', '#{size || 'null'}', '#{target || 'null'}')"
-        )
+        link_to name.to_s, '#', onclick: "inline_editing.openEditDialog('#{obj.id}', '#{attr}', '#{context.id || 'null'}', '#{size || 'null'}', '#{target || 'null'}'); return false;"
       end
     end
 

data/app/helpers/rails_connector/table_of_contents_helper.rb

@@ -0,0 +1,22 @@
+module RailsConnector
+
+  #
+  # This module contains a helper that can be used to build a table of contents of an object.
+  #
+  # @api public
+  module TableOfContentsHelper
+
+    #
+    # The <tt>table_of_contents</tt> helper method gets an object as argument and returns an array,
+    # which can be used as the table of contents of the given object.
+    #
+    # The returned array consists of the child objects of the given object.
+    # The array is sorted according to the configured sort order and the sort keys.
+    # It also contains only objects which the current user is permitted to view.
+    #
+    # @api public
+    def table_of_contents(obj)
+      obj.sorted_toclist.reject { |o| not o.permitted_for_user?(current_user) }
+    end
+  end
+end

data/app/models/named_link.rb

@@ -0,0 +1,2 @@
+# ::NamedLink is just a shortcut
+::NamedLink = RailsConnector::NamedLink

data/app/views/cms/_index.html.erb

@@ -0,0 +1,7 @@
+<h1 class="cms_title"><%= display_field @obj, :title %></h1>
+<ul class="cms_toclist">
+<% @obj.toclist.each do |item| %>
+  <li><%= link_to display_field(item, :title), cms_path(item) %></li>
+<% end %>
+</ul>
+<%= display_field @obj, :body %>

data/app/views/cms/index.html.erb

@@ -0,0 +1 @@
+<%= render :partial => 'index' %>

data/app/views/errors/403_forbidden.html.erb

@@ -0,0 +1,3 @@
+<h1><%= t(:'rails_connector.lib.cms_accessible.protected') %></h1>
+
+<p><%= t(:"rails_connector.views.errors.forbidden.no_permissions") %></p>

data/app/views/errors/410_gone.html.erb

@@ -0,0 +1,7 @@
+<h1><%= t(:'rails_connector.lib.cms_accessible.not_released') %></h1>
+
+<% if @valid_until && @valid_until < Time.now %>
+  <%= raw t(:"rails_connector.views.errors.gone.not_released_anymore", :valid_until => "<strong>#{l @valid_until}</strong>") %>
+<% elsif @valid_from && Time.now < @valid_from %>
+  <%= raw t(:"rails_connector.views.errors.gone.not_yet_released", :valid_from => "<strong>#{l @valid_from}</strong>") %>
+<% end %>

data/config/cms_routes.rb

@@ -0,0 +1,17 @@
+Rails.application.routes.draw do
+  root to: 'rails_connector/cms_dispatch#index'
+  match ':id(/*slug)',
+    to: 'rails_connector/cms_dispatch#index',
+    constraints: { id: /\d+|[0-9a-f]{16}/ },
+    as: "cms_id",
+    via: :all
+  match 'toggle_markers/:id',
+    to: 'rails_connector/cms_dispatch#toggle_editmarkers',
+    as: "toggle_markers",
+    via: :all
+  match '/*permalink',
+    to: 'rails_connector/cms_dispatch#index',
+    as: 'cms_permalink',
+    format: false,
+    via: :all
+end

data/config/locales/de.rails_connector.errors.yml

@@ -0,0 +1,11 @@
+de:
+  rails_connector:
+    errors:
+      messages:
+        blank: "darf nicht leer sein"
+      forbidden:
+        no_permissions: "Sie haben nicht die notwendigen Zugriffsrechte"
+      gone:
+        not_released_anymore: "Die Datei war nur bis zum %{valid_until} veröffentlicht."
+        not_yet_released: "Die Datei wird erst am %{valid_from} veröffentlicht."
+

data/config/locales/de.rails_connector.lib.yml

@@ -0,0 +1,6 @@
+de:
+  rails_connector:
+    lib:
+      cms_accessible:
+        protected: "Die Datei ist geschützt"
+        not_released: "Die Datei wurde nicht veröffentlicht"

data/config/locales/de.rails_connector.views.yml

@@ -0,0 +1,9 @@
+de:
+  rails_connector:
+    views:
+      errors:
+        forbidden:
+          no_permissions: "Sie haben nicht die notwendigen Zugriffsrechte"
+        gone:
+          not_released_anymore: "Die Datei war nur bis zum %{valid_until} veröffentlicht."
+          not_yet_released: "Die Datei wird erst am %{valid_from} veröffentlicht."

data/config/locales/en.rails_connector.errors.yml

@@ -0,0 +1,10 @@
+en:
+  rails_connector:
+    errors:
+      messages:
+        blank: "cannot be blank"
+      forbidden:
+        no_permissions: "You don't have the required permissions"
+      gone:
+        not_released_anymore: "The file was released only until %{valid_until}"
+        not_yet_released: "The file will be released on %{valid_from}"

data/config/locales/en.rails_connector.lib.yml

@@ -0,0 +1,6 @@
+en:
+  rails_connector:
+    lib:
+      cms_accessible:
+        protected: "This file is protected"
+        not_released: "The file has not been released"

data/config/locales/en.rails_connector.views.yml

@@ -0,0 +1,9 @@
+en:
+  rails_connector:
+    views:
+      errors:
+        forbidden:
+          no_permissions: "You don't have the required permissions"
+        gone:
+          not_released_anymore: "The file was released only until %{valid_until}"
+          not_yet_released: "The file will be released on %{valid_from}"

data/lib/gem_dependencies.rb

@@ -0,0 +1,67 @@
+class GemDependencies
+  def self.dependency_for(gem_name)
+    dependencies.detect{ |dep| dep[:name] == gem_name }
+  end
+
+  # generates code that should be included or eval'ed inside a Gemfile.
+  # for every rc dependency, a 'gem' statement is generated.
+  # this statement specifies that dependency using the _minimum_ allowed version.
+  #
+  # example:
+  # if the RC depends on "json", "~> 1.2.3", the following statement will be generated:
+  # gem "json", "= 1.2.3"
+  def self.minimum_version_gemfile_code(options = {})
+    dependencies_minimum_versions = dependencies.map do |dependency|
+      minimum_version = calculate_minimum_version(dependency[:version])
+      if minimum_version
+        dependency.merge(:version => "= #{minimum_version}")
+      else
+        dependency.delete(:version)
+      end
+      dependency
+    end
+
+    dependencies_minimum_versions.map do |dependency|
+      gem_name = dependency[:name]
+      next if gem_name == 'rails'
+      gem_options = ""
+      gem_options << ", '#{dependency[:version]}'" if dependency[:version]
+      gem_options <<
+        if options[:internal] && dependency[:git]
+          ", :git => '#{dependency[:git]}', :ref => '#{dependency[:ref]}', :submodules => true"
+        elsif options[:internal] && dependency[:path]
+          ", :path => '#{dependency[:path]}'"
+        else
+          ""
+        end
+      # do not require the gems here, the rails connector gem needs to do that on it's own.
+      # if these gems were loaded without :require => false,
+      # the tests would not detect a failure of the rails connector to require them.
+      "gem '#{gem_name}'#{gem_options}, :require => false"
+    end.join("\n")
+  end
+
+  def self.minimum_version_for(gem, version=nil)
+    version ||= dependencies.select do |dep|
+      dep[:name] == gem
+    end.first[:version]
+
+    calculate_minimum_version(version)
+  end
+
+  def self.calculate_minimum_version(version)
+    gem_requirement = Gem::Requirement.new(version)
+
+    minimum_requirements = gem_requirement.requirements.select do |requirement|
+      ["=", ">=", "~>"].include?(requirement[0])
+    end
+
+    if minimum_requirements.length > 1
+      raise "multiple minimum version requirements found for version requirement #{version}"
+    elsif minimum_requirements.length < 1
+      return nil
+    end
+
+    minimum_requirements[0][1]
+  end
+end

data/lib/infopark_fiona_connector.rb

@@ -1,3 +1,24 @@
+# @api public
+module ::RailsConnector
+  PLATFORM_CLOUD = :cloud.freeze
+  PLATFORM_FIONA = :fiona.freeze
+
+  # return either <tt>:fiona</tt> or <tt>:cloud</tt> depending on the app's configuration.
+  # @return [Symbol]
+  def self.platform
+    PLATFORM_FIONA
+  end
+
+  def self.platform_cloud?
+    false
+  end
+
+  def self.platform_fiona?
+    true
+  end
+end
+
+require 'rails_connector/core_extensions'
 require 'rails_connector/rack_middlewares'
 require 'rails_connector/core_extensions'
 require "rails_connector/errors"
@@ -18,4 +39,5 @@ module RailsConnector
   autoload_all_sources
 end
 
+require "rails_connector/engine" if defined?(Rails)
 require "rails_connector/fiona_engine" if defined?(Rails)

data/lib/obj.rb

@@ -0,0 +1,3 @@
+# empty implementation for Obj
+# only unsed in case the app does not define Obj itself
+::Obj = Class.new(RailsConnector::BasicObj)

data/lib/rails_connector/authenticable.rb

@@ -0,0 +1,30 @@
+module RailsConnector
+  module Authenticable
+    def self.included(mod)
+      %w(logged_in? admin? current_user).each do |method_name|
+        unless instance_method_defined?(mod, method_name)
+          mod.class_eval do
+            private
+            define_method(method_name, InstanceMethods.method(method_name).to_proc)
+          end
+        end
+
+        mod.send(:helper_method, method_name)
+      end
+    end
+
+    module InstanceMethods
+      def self.logged_in?; false; end
+      def self.admin?; false; end
+      def self.current_user; nil; end
+    end
+
+    private
+
+    def self.instance_method_defined?(mod, method_name)
+      (
+        mod.instance_methods + mod.protected_instance_methods + mod.private_instance_methods
+      ).map(&:to_s).include?(method_name)
+    end
+  end
+end

data/lib/rails_connector/basic_obj.rb

@@ -262,7 +262,7 @@ module RailsConnector
     # @api public
     def toclist(*args)
       return [] unless publication?
-      toclist = children.find(:all).select{ |toc| toc.exportable? }
+      toclist = children.to_a.select{ |toc| toc.exportable? }
       toclist = toclist.reject { |toc| toc.binary? } unless args.include?(:all)
       toclist
     end
@@ -566,7 +566,7 @@ module RailsConnector
 
     def self.try_type
       result = yield
-      result if class_of_active_record_descendant(result)
+      result if result < CmsBaseModel
     rescue NameError, ActiveRecord::ActiveRecordError
       nil
     end

data/lib/rails_connector/blob.rb

@@ -7,10 +7,8 @@ module RailsConnector
 
     class << self
       # Does not retrieve the column blob_data.
-      def find_with_excluded_blob_data(*args)
-        args << Hash.new unless Hash === args.last
-        args.last[:select] = 'blob_name, blob_length'
-        find_without_excluded_blob_data(*args)
+      def find_with_excluded_blob_data(primary_key)
+        select(:blob_name, :blob_length).find(primary_key)
       end
 
       alias_method_chain :find, :excluded_blob_data

data/lib/rails_connector/blob_mysql.rb

@@ -13,7 +13,7 @@ module RailsConnector
     end
 
     def fetch_into_file(file)
-      mysql2_client = connection.instance_variable_get '@connection'
+      mysql2_client = self.class.connection.raw_connection
       ActiveRecord::Base.logger.debug "Streaming blob from MySQL2 into #{file.path}"
 
       table_name = mysql2_client.escape(self.class.table_name)

data/lib/rails_connector/blob_oracle.rb

@@ -31,7 +31,7 @@ module RailsConnector
     end
 
     def blob_handle
-      con = connection.instance_variable_get '@connection'
+      con = self.class.connection.raw_connection
       con.exec(sql, id).fetch.first
     end
   end

data/lib/rails_connector/cms_accessible.rb

@@ -0,0 +1,114 @@
+module RailsConnector
+
+  # @api public
+  module CmsAccessible
+
+  protected
+
+    # Filter method to load a CMS object.
+    #
+    # To require the loading for all actions, use this in your controllers:
+    #   before_filter :load_object
+    def load_object
+      CmsEnv.new(request.env).load
+      loaded_obj = request.env[CmsEnv::OBJ_ENV_KEY]
+      raise loaded_obj if loaded_obj.is_a?(StandardError)
+      @obj = loaded_obj
+    end
+
+    # Filter method to check if the already loaded object is active. If it is
+    # not, a 410 Gone error message will be generate (by calling render_obj_error).
+    #
+    # To require the check for all actions, use this in your controllers:
+    #   before_filter :load_object
+    #   before_filter :ensure_object_is_active
+    def ensure_object_is_active
+      unless @obj.active?
+        @valid_from = @obj.valid_from
+        @valid_until = @obj.valid_until
+        @obj = nil
+        render_obj_error(410, "gone")
+        return false
+      end
+      return true
+    end
+
+    # Filter method to check if access to the loaded object is permitted. If it is
+    # not, a 403 Forbidden error message will be generated (by calling render_obj_error)
+    #
+    # To require the check for all actions, use this in your controllers:
+    #   before_filter :load_object
+    #   before_filter :ensure_object_is_permitted
+    def ensure_object_is_permitted
+      unless is_permitted(@obj)
+        @obj = nil
+        render_obj_error(403, "forbidden")
+        return false
+      end
+      return true
+    end
+
+    # This method is called when rendering an error caused by either {ensure_object_is_permitted}
+    # or {ensure_object_is_active} before filter. It renders an error template located in
+    # "errors/*.html.erb" with given HTTP status and content type "text/html" and with no layout.
+    # Overwrite this method to change the error page.
+    # @api public
+    def render_obj_error(status, name)
+      force_html_format
+      render(
+        :template => "errors/#{status}_#{name}",
+        :layout => false,
+        :status => status,
+        :content_type => Mime::HTML
+      )
+    end
+
+    # Enforce "html" as template format.
+    # @api public
+    def force_html_format
+      request.format = :html
+    end
+
+    # Inclusion hook to make is_permitted available as helper method.
+    def self.included(base)
+      base.__send__ :helper_method, :is_permitted
+    end
+
+    # Helper method to check live permissions
+    def is_permitted(obj)
+      obj.permitted_for_user?(current_user)
+    end
+
+    # Filter method which sets the header 'X-Robots-Tag: unavailable_after'
+    # to the valid_until date of the current object.
+    def set_google_expire_header
+      if @obj && (date = @obj.valid_until)
+        headers['X-Robots-Tag: unavailable_after'] = date.rfc822
+      end
+    end
+
+    # Deliver the obj's body as response by file or data.
+    # May respond with status 304 if a If-Modified-Since header is found.
+    # @api public
+    def deliver_file
+      if @obj.body_data_url
+        redirect_to enforce_protocol_from_request(@obj.body_data_url)
+      elsif stale?(:last_modified => @obj.last_changed.utc)
+        mime_type = @obj.mime_type
+        mime_type += '; charset=utf-8' if mime_type =~ /^text\//
+
+        if (filepath = @obj.body_data_path).present?
+          send_file(File.expand_path(filepath), {
+            :type => mime_type,
+            :filename => @obj.filename,
+            :disposition => 'inline',
+          })
+        else
+          # generics should send its body, empty files should be delivered as
+          # empty files - and not lead to an application error
+          send_data @obj.body || '', :type => mime_type, :filename => @obj.filename, :disposition => 'inline'
+        end
+      end
+    end
+  end
+end