infopark_fiona_connector 6.9.4 → 7.0.1.5.2.3.rc4

data/lib/rails_connector/authenticable.rb

@@ -0,0 +1,30 @@
+module RailsConnector
+  module Authenticable
+    def self.included(mod)
+      %w(logged_in? admin? current_user).each do |method_name|
+        unless instance_method_defined?(mod, method_name)
+          mod.class_eval do
+            private
+            define_method(method_name, InstanceMethods.method(method_name).to_proc)
+          end
+        end
+
+        mod.send(:helper_method, method_name)
+      end
+    end
+
+    module InstanceMethods
+      def self.logged_in?; false; end
+      def self.admin?; false; end
+      def self.current_user; nil; end
+    end
+
+    private
+
+    def self.instance_method_defined?(mod, method_name)
+      (
+        mod.instance_methods + mod.protected_instance_methods + mod.private_instance_methods
+      ).map(&:to_s).include?(method_name)
+    end
+  end
+end

data/lib/rails_connector/basic_obj.rb

@@ -1,5 +1,6 @@
 require "json"
 require 'openssl'
+require 'rails_connector/fiona_datetime'
 
 module RailsConnector
 
@@ -9,14 +10,23 @@ module RailsConnector
   # [parent] the Obj of which this one is a child - nil for the root object
   # @api public
   class BasicObj < CmsBaseModel
+    include RailsConnector::Meta
+
     CRYPT_KEY = "\xd7\x28\x9c\x63\xd6\x29\xdf\x20\xcd\x32\xcf\x30\xcf\x30\xcf\x30\xdf\x20\xb6\x49"\
         "\x91\x6e\x99\x66\x90\x6f\x8f\x70\x9e\x61\x8d\x72\x94\x6b\xdf\x20\xbe\x41\xb8\x47\xc4\x3b"\
         "\xdf\x20\xbd\x42\x9a\x65\x8d\x72\x93\x6c\x96\x69\x91\x6e".freeze
 
-    include DateAttribute
+    PREDEFINED_ATTRIBUTES = %w(blob body title channels sort_key1 sort_type1 sort_key2 sort_type2
+      sort_key3 sort_type3 sort_order).freeze
+
 
     self.store_full_sti_class = false
 
+    def self.inherited(subclass)
+      super
+      subclass.delegate_attributes
+    end
+
     def self.configure_for_content(which)
       case which
       when :released then configure_column_information("objs", true)
@@ -36,10 +46,59 @@ module RailsConnector
       self.inheritance_column = "obj_class"
 
       @@use_cached_permissions = use_cached_permissions
+      descendants.each do |klass|
+        klass.reset_table_name
+        klass.initialize_attributes
+      end
+
+      RailsConnector::Meta::EagerLoader.instance.obj_classes.each do |class_name, obj_class|
+        next unless obj_class
+
+        if class_name =~ /^[A-Z]/
+          klass = class_name.safe_constantize
+          next unless klass
+          if klass < RailsConnector::BasicObj
+            klass.initialize_attributes
+          end
+        end
+      end
+    end
+
+    def self.initialize_attributes
+      PREDEFINED_ATTRIBUTES.each do |attribute|
+        self.send(:define_attribute, attribute, ActiveRecord::Type::String.new)
+      end
+
+      return if obj_class_definition.blank?
+
+      obj_class_definition.custom_attributes.each_key do |attribute|
+        self.send(:define_attribute, attribute, ActiveRecord::Type::String.new)
+      end
+    end
+
+    def self.delegate_attributes
+      PREDEFINED_ATTRIBUTES.each do |attribute|
+        delegate attribute, to: :attr_dict
+      end
+
+      return if obj_class_definition.blank?
+
+      obj_class_definition.custom_attributes.each_key do |attribute|
+        delegate attribute, to: :attr_dict
+      end
     end
 
-    # use released contents as a default
-    configure_for_content(:released)
+    attribute :last_changed, :fiona_datetime
+    attribute :valid_from, :fiona_datetime
+    attribute :valid_until, :fiona_datetime
+    attribute :suppress_export, :boolean
+    attribute :is_edited, :boolean
+    attribute :is_released, :boolean
+
+    delegate :sort_keys, to: :attr_dict
+    delegate :body_data_path, to: :attr_dict
+    delegate :empty?, to: :attr_dict
+    delegate :text_links, to: :attr_dict
 
     # Patch to avoid a type_condition being added by ActiveRecord::Base.add_conditions! for Obj.find(params):
     def self.descends_from_active_record?
@@ -65,6 +124,11 @@ module RailsConnector
       # We don't cache types at all here.
     end
 
+    def self.reset_reflections
+      has_many :children, :class_name => 'Obj', :foreign_key => 'parent_obj_id'
+      belongs_to :parent, :class_name => 'Obj', :foreign_key => 'parent_obj_id'
+    end
+
     # @api public
     def permissions
       @@use_cached_permissions ? attr_dict.permissions : arel_permissions
@@ -101,12 +165,6 @@ module RailsConnector
       @@homepage_id = nil
     end
 
-     # returns the obj's permalink.
-     # @api public
-     def permalink
-       self[:permalink]
-     end
-
     # This method determines the controller that should be invoked when the Obj is requested.
     # By default a controller matching the Obj's obj_class will be used.
     # If the controller does not exist, the CmsController will be used as a fallback.
@@ -208,13 +266,13 @@ module RailsConnector
     # and edited? will always return false in this case.
     # @api public
     def edited?
-      (is_edited == 1)
+      is_edited
     end
 
     # Returns true if this object has released content
     # @api public
     def released?
-      (is_released == 1)
+      is_released
     end
 
     # Returns true if the Obj is suppressed.
@@ -223,7 +281,7 @@ module RailsConnector
     # as a standalone web page.
     # @api public
     def suppressed?
-      suppress_export == 1
+      suppress_export
     end
 
     # Returns true if the export of the object is not suppressed and the content is active?
@@ -253,16 +311,14 @@ module RailsConnector
     def root?
       parent_obj_id.nil?
     end
-
-    has_many :children, :class_name => 'Obj', :foreign_key => 'parent_obj_id'
-    belongs_to :parent, :class_name => 'Obj', :foreign_key => 'parent_obj_id'
+    #
 
     # Returns a list of exportable? children excluding the binary? ones unless :all is specfied.
     # This is mainly used for navigations.
     # @api public
     def toclist(*args)
       return [] unless publication?
-      toclist = children.find(:all).select{ |toc| toc.exportable? }
+      toclist = children.to_a.select{ |toc| toc.exportable? }
       toclist = toclist.reject { |toc| toc.binary? } unless args.include?(:all)
       toclist
     end
@@ -300,18 +356,6 @@ module RailsConnector
       return self.sort_order == "descending" ? sorted_list.reverse : sorted_list
     end
 
-    def sort_key1
-      self[:sort_key1]
-    end
-
-    def sort_key2
-      self[:sort_key2]
-    end
-
-    def sort_key3
-      self[:sort_key3]
-    end
-
     # Returns an Array of all the ancestor objects, starting at the root and ending at this object's parent.
     # @api public
     def ancestors
@@ -336,26 +380,17 @@ module RailsConnector
     # Passing an invalid key will not raise an error, but return nil.
     # @api public
     def [](key)
-      # convenience access to name
-      return name if key.to_sym == :name
+      if has_attribute?(key)
+        begin
+          if attr_dict.respond_to?(key)
+            return attr_dict.send(key)
+          end
 
-      # regular activerecord attributes
-      if @attributes.include?(key.to_s)
-        if key == :valid_from or key == :valid_until or key == :last_changed
-          return as_date(super(key))
-        else
-          return super(key)
+          read_attribute(key)
+        rescue NoMethodError
+          nil
         end
       end
-
-      # Unknown Obj attributes are delegated to the corresponding instance of AttrDict.
-      begin
-        return (attr_dict.send key)
-      rescue NoMethodError
-      end
-
-      # fallback
-      return nil
     end
 
     # Reloads the attributes of this object from the database, invalidates custom attributes
@@ -384,9 +419,7 @@ module RailsConnector
     # for binary Objs body_length equals the file size
     # for non-binary Objs body_length equals the number of characters in the body (main content)
     # @api public
-    def body_length
-      attr_dict.body_length
-    end
+    delegate :body_length, to: :attr_dict
 
     # Override this method to provide an external url
     # where the content (the body) of this Obj can be downloaded.
@@ -462,27 +495,6 @@ module RailsConnector
       rslt
     end
 
-    # @api public
-    def last_changed
-      self[:last_changed]
-    end
-
-    # @api public
-    def valid_from
-      self[:valid_from]
-    end
-
-    # @api public
-    def valid_until
-      self[:valid_until]
-    end
-
-    # deprecated, use file_extension instead
-    def content_type
-      logger.warn "DEPRECATION WARNING: Obj#content_type is deprecated, use file_extension instead"
-      file_extension
-    end
-
     # Returns the MIME-type as determined from the file_extension - see MIME::Types
     # @api public
     def mime_type
@@ -503,30 +515,6 @@ module RailsConnector
 
     private
 
-    def as_date(value)
-      DateAttribute.parse(value) unless value.nil?
-    end
-
-    # Forwards any unknown method call to a corresponding instance
-    # of AttrDict and thus provides access to object fields, i.e. content.
-    #
-    # In case of an invalid method call, an error is raised.
-    #
-    # Hint: Use [] instead to suppress error messages.
-    def method_missing(method_id, *args)
-      super
-    rescue NoMethodError, NameError
-      # prevent infinite recursion when calling "attr_*" below,
-      # since rails checks the absence of an "_attr_*" method internally
-      raise if %w(_attr_dict _attr_defs _attr_values).include?(method_id.to_s)
-
-      if attr_dict.respond_to?(method_id)
-        attr_dict.send method_id, *args
-      else
-        raise
-      end
-    end
-
     def fiona_fields
       @fiona_fields ||=
         ['name', 'obj_class', 'workflow', 'suppressexport', 'permalink'].inject({}) do |all,field|
@@ -566,7 +554,7 @@ module RailsConnector
 
     def self.try_type
       result = yield
-      result if class_of_active_record_descendant(result)
+      result if result < CmsBaseModel
     rescue NameError, ActiveRecord::ActiveRecordError
       nil
     end
@@ -574,4 +562,3 @@ module RailsConnector
   end
 
 end
-

data/lib/rails_connector/blob.rb

@@ -7,13 +7,13 @@ module RailsConnector
 
     class << self
       # Does not retrieve the column blob_data.
-      def find_with_excluded_blob_data(*args)
-        args << Hash.new unless Hash === args.last
-        args.last[:select] = 'blob_name, blob_length'
-        find_without_excluded_blob_data(*args)
+      def find_with_excluded_blob_data(primary_key)
+        select(:blob_name, :blob_length).find(primary_key)
       end
 
-      alias_method_chain :find, :excluded_blob_data
+      alias_method :find_without_excluded_blob_data, :find
+      alias_method :find, :find_with_excluded_blob_data
+
     end
 
     def length
@@ -25,7 +25,7 @@ module RailsConnector
     end
 
     def path_of_stored_data(use_cached_file_if_older_than = Time.now)
-      store_data if !File.exists?(path) || use_cached_file_if_older_than > File.mtime(path)
+      store_data if !File.exists?(path) || file_size_differs? || stale?(use_cached_file_if_older_than)
       path
     end
 
@@ -65,6 +65,14 @@ module RailsConnector
       File.open(tmp_file, "wb", &block)
       File.rename(tmp_file, path)
     end
+
+    def stale?(time)
+      time > File.mtime(path)
+    end
+
+    def file_size_differs?
+      blob_length != File.stat(path).size
+    end
   end
 
 end

data/lib/rails_connector/blob_mapping.rb

@@ -0,0 +1,16 @@
+# -*- encoding : utf-8 -*-
+module RailsConnector
+  class BlobMapping < CmsBaseModel
+    def self.exists?
+      self.table_exists?
+    end
+
+    def self.get_fingerprint(name)
+      find_by_blob_name(name).fingerprint
+    end
+
+    def self.get_fingerprint_map(blob_names)
+      Hash[self.where(:blob_name => blob_names).select([:blob_name, :fingerprint]).map {|b| [b.blob_name, b.fingerprint] }]
+    end
+  end
+end

data/lib/rails_connector/blob_mysql.rb

@@ -13,7 +13,7 @@ module RailsConnector
     end
 
     def fetch_into_file(file)
-      mysql2_client = connection.instance_variable_get '@connection'
+      mysql2_client = self.class.connection.raw_connection
       ActiveRecord::Base.logger.debug "Streaming blob from MySQL2 into #{file.path}"
 
       table_name = mysql2_client.escape(self.class.table_name)

data/lib/rails_connector/blob_oracle.rb

@@ -31,7 +31,7 @@ module RailsConnector
     end
 
     def blob_handle
-      con = connection.instance_variable_get '@connection'
+      con = self.class.connection.raw_connection
       con.exec(sql, id).fetch.first
     end
   end

data/lib/rails_connector/channel.rb

@@ -0,0 +1,19 @@
+module RailsConnector
+  class Channel < CmsBaseModel
+    self.primary_key = "channel_name"
+
+    def self.table_name
+      "#{table_name_prefix}" "channels"
+    end
+
+    has_many :news, :class_name => 'RailsConnector::News', :foreign_key => 'channel_name'
+    has_many :active_news,
+      lambda { where(['valid_from <= :now AND valid_until >= :now', {:now => Time.now.to_s(:number)}]) },
+      :class_name => 'RailsConnector::News', :foreign_key => 'channel_name'
+
+    has_many :objects, :through => :news
+
+    scope :with_prefix, -> (prefix) {where(["channel_name LIKE ?", "#{prefix}%"])}
+
+  end
+end

data/lib/rails_connector/cms_accessible.rb

@@ -0,0 +1,112 @@
+module RailsConnector
+
+  # @api public
+  module CmsAccessible
+
+  protected
+
+    # Filter method to load a CMS object.
+    #
+    # To require the loading for all actions, use this in your controllers:
+    #   before_action :load_object
+    def load_object
+      CmsEnv.new(request.env).load
+      loaded_obj = request.env[CmsEnv::OBJ_ENV_KEY]
+      raise loaded_obj if loaded_obj.is_a?(StandardError)
+      @obj = loaded_obj
+    end
+
+    # Filter method to check if the already loaded object is active. If it is
+    # not, a 410 Gone error message will be generate (by calling render_obj_error).
+    #
+    # To require the check for all actions, use this in your controllers:
+    #   before_action :load_object
+    #   before_action :ensure_object_is_active
+    def ensure_object_is_active
+      unless @obj.active?
+        @valid_from = @obj.valid_from
+        @valid_until = @obj.valid_until
+        @obj = nil
+        render_obj_error(410, "gone")
+      end
+      return true
+    end
+
+    # Filter method to check if access to the loaded object is permitted. If it is
+    # not, a 403 Forbidden error message will be generated (by calling render_obj_error)
+    #
+    # To require the check for all actions, use this in your controllers:
+    #   before_action :load_object
+    #   before_action :ensure_object_is_permitted
+    def ensure_object_is_permitted
+      unless is_permitted(@obj)
+        @obj = nil
+        render_obj_error(403, "forbidden")
+      end
+      return true
+    end
+
+    # This method is called when rendering an error caused by either {ensure_object_is_permitted}
+    # or {ensure_object_is_active} before filter. It renders an error template located in
+    # "errors/*.html.erb" with given HTTP status and content type "text/html" and with no layout.
+    # Overwrite this method to change the error page.
+    # @api public
+    def render_obj_error(status, name)
+      force_html_format
+      render(
+        :template => "errors/#{status}_#{name}",
+        :layout => false,
+        :status => status,
+        :content_type => Mime[:html]
+      )
+    end
+
+    # Enforce "html" as template format.
+    # @api public
+    def force_html_format
+      request.format = :html
+    end
+
+    # Inclusion hook to make is_permitted available as helper method.
+    def self.included(base)
+      base.__send__ :helper_method, :is_permitted
+    end
+
+    # Helper method to check live permissions
+    def is_permitted(obj)
+      obj.permitted_for_user?(current_user)
+    end
+
+    # Filter method which sets the header 'X-Robots-Tag: unavailable_after'
+    # to the valid_until date of the current object.
+    def set_google_expire_header
+      if @obj && (date = @obj.valid_until)
+        headers['X-Robots-Tag: unavailable_after'] = date.rfc822
+      end
+    end
+
+    # Deliver the obj's body as response by file or data.
+    # May respond with status 304 if a If-Modified-Since header is found.
+    # @api public
+    def deliver_file
+      if @obj.body_data_url
+        redirect_to enforce_protocol_from_request(@obj.body_data_url)
+      elsif stale?(:last_modified => @obj.last_changed.utc)
+        mime_type = @obj.mime_type
+        mime_type += '; charset=utf-8' if mime_type =~ /^text\//
+
+        if (filepath = @obj.body_data_path).present?
+          send_file(File.expand_path(filepath), {
+            :type => mime_type,
+            :filename => @obj.filename,
+            :disposition => 'inline',
+          })
+        else
+          # generics should send its body, empty files should be delivered as
+          # empty files - and not lead to an application error
+          send_data @obj.body || '', :type => mime_type, :filename => @obj.filename, :disposition => 'inline'
+        end
+      end
+    end
+  end
+end