jakewendt-simply_documents 1.3.4

data/lib/tasks/application.rake

@@ -0,0 +1,40 @@
+namespace :app do
+
+#	task :args_as_array do
+#		args = $*.dup.slice(1..-1)
+#		puts args.collect {|arg| "X:" << arg }.join("\n")
+#		exit
+#	end
+
+	desc "Add some expected users."
+	task :add_users => :environment do
+		puts "Adding users"
+		%w( 859908 228181 214766 180918 66458 808 768475 
+			10883 86094 754783 769067 854720 16647 ).each do |uid|
+			puts " - Adding user with uid:#{uid}:"
+			User.find_create_and_update_by_uid(uid)
+		end
+	end
+
+	desc "Deputize user by UID"
+	task :deputize => :environment do
+		puts
+		if ENV['uid'].blank?
+			puts "User's CalNet UID required."
+			puts "Usage: rake #{$*} uid=INTEGER"
+			puts
+			exit
+		end
+		if !User.exists?(:uid => ENV['uid'])
+			puts "No user found with uid=#{ENV['uid']}."
+			puts
+			exit
+		end
+		user = User.find(:first, :conditions => { :uid => ENV['uid'] })
+		puts "Found user #{user.displayname}.  Deputizing..."
+		user.deputize
+		puts "User deputized: #{user.is_administrator?}"
+		puts
+	end
+
+end

data/lib/tasks/database.rake

@@ -0,0 +1,52 @@
+namespace :db do
+
+	desc "Create yml fixtures for given model in database\n" <<
+	     "rake db:extract_fixtures_from pages"
+	task :extract_fixtures_from => :environment do
+		me = $*.shift
+		while( table_name = $*.shift )
+			File.open("#{RAILS_ROOT}/db/#{table_name}.yml", 'w') do |file|
+				data = table_name.singularize.capitalize.constantize.find(
+					:all).collect(&:attributes)
+				file.write data.inject({}) { |hash, record|
+					record.delete('created_at')
+					record.delete('updated_at')
+					hash["#{table_name}_#{record['id']}"] = record
+					hash
+				}.to_yaml
+			end
+		end
+		exit
+	end
+
+	desc "Dump MYSQL table descriptions."
+	task :describe => :environment do
+		puts
+		puts "FYI: This task ONLY works on MYSQL databases."
+		puts
+		config = ActiveRecord::Base.connection.instance_variable_get(:@config)
+#=> {:adapter=>"mysql", :host=>"localhost", :password=>nil, :username=>"root", :database=>"my_development", :encoding=>"utf8"}
+
+		tables = ActiveRecord::Base.connection.execute('show tables;')
+		while( table = tables.fetch_row ) do
+			puts "Table: #{table}"
+
+			#	may have to include host and port
+			system("mysql --table=true " <<
+				"--user=#{config[:username]} " <<
+				"--password='#{config[:password]}' " <<
+				"--execute='describe #{table}' " <<
+				config[:database]);
+
+			#
+			#	mysql formats the table well so doing it by hand is something that
+			#	will have to wait until I feel like wasting my time
+			#
+			#	columns = ActiveRecord::Base.connection.execute("describe #{table};")
+			#	while( column = columns.fetch_hash ) do
+			#		puts column.keys Extra Default Null Type Field Key
+			#	end
+		end
+	end
+
+end

data/lib/tasks/documentation.rake

@@ -0,0 +1,68 @@
+#
+#	This file has been copied from rails 
+#		.../rails-2.3.5/lib/tasks/documentation.rake
+#	so that parts of it could be modified.
+
+namespace :doc do	|doc|
+
+#	Rake::RDocTask.new("app") { |rdoc|
+#
+#		We cannot overwrite or override an RDoc rake task.
+#		Redefining it here actually creates another
+#		of the same name and both are run when
+#		`rake doc:app` is called.	The Rakefile
+#		is modified to handle the modifications.
+#
+#		Actually, that's not entirely true.  This would
+#		add another task, but you can remove and override
+#		a task.  The rdoc_rails plugin was overriding my
+#		override, which caused all the frustration!!!
+#
+#	}
+
+	plugins = FileList['vendor/plugins/**'].collect { |plugin| 
+		File.basename(plugin) }
+
+	namespace :plugins do
+		# Define doc tasks for each plugin
+		plugins.each do |plugin|
+
+			#	clear rails' Rake::Task of the same name
+			Rake::Task[plugin].clear_actions
+			Rake::Task[plugin].clear_prerequisites
+
+			Rake::RDocTask.new(plugin) { |rdoc|
+				plugin_base  = "vendor/plugins/#{plugin}"
+				ENV['format'] ||= 'railsfish'
+				rdoc.rdoc_dir = "doc/plugins/#{plugin}"
+				rdoc.template = ENV['template'] if ENV['template']
+				rdoc.title    = "#{plugin.titlecase} Plugin Documentation"
+				rdoc.options << '--line-numbers' << '--inline-source'
+				rdoc.options << '--charset' << 'utf-8'
+				rdoc.options << '--format'  << ENV['format']
+				rdoc.rdoc_files.include("#{plugin_base}/lib/**/*.rb")
+				rdoc.rdoc_files.include("#{plugin_base}/app/**/*.rb")
+
+				%w( README README.rdoc ).each do |readme|
+					if File.exist?("#{plugin_base}/#{readme}")
+						rdoc.main = "#{plugin_base}/#{readme}"
+						break
+					end
+				end
+				%w( TODO.org MIT-LICENSE LICENSE CHANGELOG README README.rdoc ).each do |possible_file|
+					if File.exist?("#{plugin_base}/#{possible_file}")
+						rdoc.rdoc_files.include("#{plugin_base}/#{possible_file}") 
+					end
+				end
+			}
+
+		end
+	end
+
+	task :parse_readme => :environment do
+		require 'rdoc/markup/to_html'
+		h = RDoc::Markup::ToHtml.new
+		puts h.convert( File.read('README.rdoc') )
+	end
+
+end

data/lib/tasks/rcov.rake

@@ -0,0 +1,44 @@
+#
+#	This is from Advanced Rails Recipes, page 277
+#
+
+#	TODO use the version in simply_helpful and delete this
+
+#namespace :test do
+#	
+#	desc 'Tracks test coverage with rcov'
+#	task :coverage do
+#		rm_f "coverage"
+#		rm_f "coverage.data"
+#		
+#		unless PLATFORM['i386-mswin32']
+#			rcov = "rcov --sort coverage --rails --aggregate coverage.data " <<
+#							"--text-summary -Ilib -T " <<
+#							"-x gems/*,db/migrate/*,jrails/*/*" <<
+#							',\(eval\),\(recognize_optimized\),\(erb\)' <<    # needed in jruby
+#							",yaml,yaml/*,lib/tmail/parser.y,jruby.jar!/*" << # needed in jruby
+#							",html_test/*/*" <<
+#							",html_test_extension/*/*"
+#		else
+#			rcov = "rcov.cmd --sort coverage --rails --aggregate " <<
+#							"coverage.data --text-summary -Ilib -T"
+#		end
+#		
+#		dirs = Dir.glob("test/**/*_test.rb").collect{|f|File.dirname(f)}.uniq
+#		lastdir = dirs.pop
+#		dirs.each do |dir|
+#			system("#{rcov} --no-html #{dir}/*_test.rb")
+#		end
+#		system("#{rcov} --html #{lastdir}/*_test.rb") unless lastdir.nil?
+#		
+#		unless PLATFORM['i386-mswin32']
+##	jruby-1.5.0.RC1 > PLATFORM 
+##	 => "java" 
+##			system("open coverage/index.html") if PLATFORM['darwin']
+#			system("open coverage/index.html")
+#		else
+#			system("\"C:/Program Files/Mozilla Firefox/firefox.exe\" " +
+#						 "coverage/index.html")
+#		end
+#	end
+#end

data/lib/tasks/simply_authorized.rake

@@ -0,0 +1,2 @@
+#	From `script/generate simply_authorized` ...
+require 'simply_authorized/test_tasks'

data/lib/tasks/simply_helpful.rake

@@ -0,0 +1,2 @@
+#	From `script/generate simply_helpful` ...
+require 'simply_helpful/test_tasks'

data/lib/tasks/simply_sessions.rake

@@ -0,0 +1,5 @@
+#	From `script/generate simply_sessions` ...
+unless Gem.source_index.find_name('jakewendt-simply_sessions').empty?
+	gem 'jakewendt-simply_sessions'
+	require 'simply_sessions/test_tasks'
+end

data/lib/tasks/ucb_ccls_engine_tasks.rake

@@ -0,0 +1,50 @@
+#namespace :ccls do
+#	desc "Sync extra files from CCLS engine."
+#	task :sync do
+#
+##	How to make this work ONLY for apps and not self/plugin/engine.
+#
+#		FileUtils.mkdir_p('db/migrate') unless File.directory?('db/migrate')
+#		rsync_command = <<-EOF.gsub(/\s+/,' ').squish!
+#			rsync -ruv 
+#			--exclude='versions'
+#			vendor/plugins/ucb_ccls_engine/db/migrate db
+#		EOF
+#		system rsync_command
+#
+#		FileUtils.mkdir_p('public') unless File.directory?('public')
+#		rsync_command = <<-EOF.gsub(/\s+/,' ').squish!
+#			rsync -ruv 
+#			--exclude='versions'
+#			vendor/plugins/ucb_ccls_engine/public .
+#		EOF
+#		system rsync_command
+#
+#		rsync_command = <<-EOF.gsub(/\s+/,' ').squish!
+#			rsync -ruv 
+#			--exclude='app'
+#			--exclude='assets'
+#			--exclude='config'
+#			--exclude='db'
+#			--exclude='extensions'
+#			--exclude='fixtures'
+#			--exclude='helpers'
+#			--exclude='log'
+#			--exclude='versions'
+#			--exclude='test_helper.rb'
+#			--exclude='engine_\*_test.rb'
+#			vendor/plugins/ucb_ccls_engine/test .
+#		EOF
+#		system rsync_command
+#	end
+#end
+
+#
+#	If the gem doesn't exist then this would block
+#	the usage of rake gems:install
+#	If we wrap it in this condition, it works fine.
+#
+if Gem.searcher.find('paperclip')
+	require 'paperclip'
+	load "tasks/paperclip.rake"
+end

data/rails/init.rb

@@ -0,0 +1 @@
+require 'jakewendt-simply_documents'

data/test/app/controllers/application_controller.rb

@@ -0,0 +1,41 @@
+class ApplicationController < ActionController::Base
+
+	before_filter :login_required
+
+	helper :all # include all helpers, all the time
+
+	helper_method :current_user, :logged_in?
+
+	# See ActionController::RequestForgeryProtection for details
+	protect_from_forgery
+
+	def logged_in?
+		!current_user.nil?
+	end
+
+	def current_user_required
+		unless logged_in?
+			access_denied("goodbye","/some_fake_login_path")
+		end
+	end
+	alias_method :login_required, :current_user_required
+
+	def current_user
+		@current_user ||= if( session && session[:uid] )
+				#	if the user model hasn't been loaded yet
+				#	this will return nil and fail.
+				User.find_by_uid(session[:uid])
+			else
+				nil
+			end
+	end
+
+	def redirections
+		@redirections ||= HashWithIndifferentAccess.new({
+			:not_be_user => {
+				:redirect_to => user_path(current_user)
+			}
+		})
+	end
+
+end

data/test/app/controllers/home_controller.rb

@@ -0,0 +1,10 @@
+class HomeController < ApplicationController
+
+	skip_before_filter :login_required
+
+	def show
+		render :text => "You are home.",
+			:layout => true
+	end
+
+end

data/test/app/models/user.rb

@@ -0,0 +1,3 @@
+class User < ActiveRecord::Base
+	authorized
+end

data/test/config/routes.rb

@@ -0,0 +1,9 @@
+ActionController::Routing::Routes.draw do |map|
+
+	map.resource :home, :only => :show
+	map.root :controller => :home, :action => :show
+
+#	map.logout 'logout', :controller => 'sessions', :action => 'destroy'
+#	map.resource :session, :only => [ :destroy ]
+
+end

data/test/functional/documents/documents_controller_test.rb

@@ -0,0 +1,222 @@
+#require File.dirname(__FILE__) + '/../../test_helper'
+require 'test_helper'
+
+class SimplyDocuments::DocumentsControllerTest < ActionController::TestCase
+	tests DocumentsController
+
+	ASSERT_ACCESS_OPTIONS = {
+		:model => 'Document',
+		:actions => [:new,:create,:edit,:update,:destroy,:index],
+		:method_for_create => :factory_create,
+		:attributes_for_create => :factory_attributes
+	}
+
+	def factory_create
+		Factory(:document)
+	end
+	def factory_attributes
+		Factory.attributes_for(:document)
+	end
+
+	assert_access_with_https
+	assert_access_with_login({
+		:logins => [:super_user,:admin,:editor]})
+
+	assert_no_access_with_http 
+	assert_no_access_with_login({ 
+		:logins => [:interviewer,:reader,:active_user] })
+	assert_no_access_without_login
+
+	assert_no_access_with_login(
+		:attributes_for_create => nil,
+		:method_for_create => nil,
+		:actions => nil,
+		:suffix => " and invalid id",
+		:login => :superuser,
+		:redirect => :documents_path,
+		:edit => { :id => 0 },
+		:update => { :id => 0 },
+		:destroy => { :id => 0 }
+	)
+
+%w( super_user admin editor ).each do |cu|
+
+
+##	still only privacy filter is based on "may_maintain_pages"
+##	which isn't really gonna work
+#	test "should get redirect to public s3 document with #{cu} login" do
+#		Document.any_instance.stubs(:s3_public?).returns(true)
+#		document = Factory(:document, :document_file_name => 'bogus_file_name')
+#		assert !File.exists?(document.document.path)
+#		login_as send(cu)
+#		get :show, :id => document.id
+#		assert_redirected_to document.document.url
+#	end
+#
+#	test "should get redirect to private s3 document with #{cu} login" do
+#		Document.any_instance.stubs(:s3_private?).returns(true)
+#		document = Factory(:document, :document_file_name => 'bogus_file_name')
+#		assert !File.exists?(document.document.path)
+#		login_as send(cu)
+#		get :show, :id => document.id
+#		assert_redirected_to document.s3_url
+#	end
+
+#	Add may_download_document
+
+#	test "should get redirect to public s3 document with #{cu} login" do
+#		Document.any_instance.stubs(:s3_public?).returns(true)
+#		document = Factory(:document, :document_file_name => 'bogus_file_name')
+#		assert !File.exists?(document.document.path)
+#		login_as send(cu)
+#		get :show, :id => document.id
+#		assert_redirected_to document.document.url
+#	end
+
+	test "should get redirect to private s3 document with #{cu} login" do
+		Document.has_attached_file :document, {
+			:s3_headers => {
+				'x-amz-storage-class' => 'REDUCED_REDUNDANCY' },
+			:s3_permissions => :private,
+			:storage => :s3,
+			:s3_protocol => 'https',
+			:s3_credentials => "#{Rails.root}/config/s3.yml",
+			:bucket => 'ccls',
+			:path => "documents/:id/:filename"
+		}
+
+		#	Since the REAL S3 credentials are only in production
+		#	Bad credentials make exists? return true????
+		Rails.stubs(:env).returns('production')
+		document = Factory(:document, :document_file_name => 'bogus_file_name')
+		assert !document.document.exists?
+		assert !File.exists?(document.document.path)
+
+		AWS::S3::S3Object.stubs(:exists?).returns(true)
+
+		login_as send(cu)
+		get :show, :id => document.id
+		assert_response :redirect
+#		assert_match %r{\Ahttp(s)?://s3.amazonaws.com/ccls/documents/\d+/bogus_file_name\.\?AWSAccessKeyId=\w+&Expires=\d+&Signature=.+\z}, @response.redirected_to
+#	newer versions of paperclip do not include the trailing "." after file name
+		assert_match %r{\Ahttp(s)?://s3.amazonaws.com/ccls/documents/\d+/bogus_file_name\?AWSAccessKeyId=\w+&Expires=\d+&Signature=.+\z}, @response.redirected_to
+	end
+
+
+
+
+
+
+	test "should NOT download document with nil document and #{cu} login" do
+		document = Factory(:document)
+		assert document.document.path.blank?
+		login_as send(cu)
+		get :show, :id => document.id
+		assert_redirected_to preview_document_path(document)
+		assert_not_nil flash[:error]
+	end
+
+	test "should NOT download document with no document and #{cu} login" do
+		document = Factory(:document, :document_file_name => 'bogus_file_name')
+		assert !File.exists?(document.document.path)
+		login_as send(cu)
+		get :show, :id => document.id
+		assert_redirected_to preview_document_path(document)
+		assert_not_nil flash[:error]
+	end
+
+	test "should NOT download nonexistant document with #{cu} login" do
+		assert !File.exists?('some_fake_file_name.doc')
+		login_as send(cu)
+		get :show, :id => 'some_fake_file_name',:format => 'doc'
+		assert_redirected_to documents_path
+		assert_not_nil flash[:error]
+	end
+
+	test "should preview document with document and #{cu} login" do
+		document = Factory(:document)
+		login_as send(cu)
+		get :preview, :id => document.id
+		assert_response :success
+		assert_nil flash[:error]
+	end
+
+	test "should download document by id with document and #{cu} login" do
+		document = Document.create!(Factory.attributes_for(:document, 
+			:document => File.open(File.dirname(__FILE__) + 
+				'/../../assets/edit_save_wireframe.pdf')))
+		login_as send(cu)
+		get :show, :id => document.reload.id
+		assert_nil flash[:error]
+		assert_not_nil @response.headers['Content-disposition'].match(
+			/attachment;.*pdf/)
+		document.destroy
+	end
+
+	test "should download document by name with document and #{cu} login" do
+		document = Document.create!(Factory.attributes_for(:document, 
+			:document => File.open(File.dirname(__FILE__) + 
+				'/../../assets/edit_save_wireframe.pdf')))
+		login_as send(cu)
+		get :show, :id => 'edit_save_wireframe',
+			:format => 'pdf'
+		assert_nil flash[:error]
+		assert_not_nil @response.headers['Content-disposition'].match(
+			/attachment;.*pdf/)
+		document.destroy
+	end
+
+	test "should NOT create invalid document with #{cu} login" do
+		login_as send(cu)
+		assert_no_difference('Document.count') do
+			post :create, :document => {}
+		end
+		assert_not_nil flash[:error]
+		assert_template 'new'
+		assert_response :success
+	end
+
+	test "should NOT update invalid document with #{cu} login" do
+		login_as send(cu)
+		put :update, :id => Factory(:document).id, 
+			:document => { :title => "a" }
+		assert_not_nil flash[:error]
+		assert_template 'edit'
+		assert_response :success
+	end
+
+end
+
+%w( interviewer reader active_user ).each do |cu|
+
+	test "should NOT preview document with #{cu} login" do
+		document = Factory(:document)
+		login_as send(cu)
+		get :preview, :id => document.id
+		assert_redirected_to root_path
+		assert_not_nil flash[:error]
+	end
+
+	test "should NOT download document with #{cu} login" do
+		document = Factory(:document)
+		login_as send(cu)
+		get :show, :id => document.id
+		assert_redirected_to root_path
+		assert_not_nil flash[:error]
+	end
+
+end
+
+	test "should NOT preview document without login" do
+		document = Factory(:document)
+		get :preview, :id => document.id
+		assert_redirected_to_login
+	end
+
+	test "should NOT download document without login" do
+		document = Factory(:document)
+		get :show, :id => document.id
+		assert_redirected_to_login
+	end
+
+end