lockdown 0.1.2 → 0.1.3

data/History.txt

@@ -1,4 +1,10 @@
-== 0.1.1 2008-04-18
+== 0.1.3 2008-04-25
+* Still Don't have correct dependencies. Added in first crack at lockdown_all generator.
+
+== 0.1.2 2008-04-25
+* Didn't have correct dependencies.
+
+== 0.1.1 2008-04-24
 * Fixed bug with session cleanup.
 
 == 0.1.0 2008-04-18

data/Manifest.txt

@@ -20,6 +20,39 @@ lib/lockdown/helper.rb
 lib/lockdown/model.rb
 lib/lockdown/version.rb
 lib/lockdown/view.rb
+rails_generators/lockdown_all/USAGE
+rails_generators/lockdown_all/lockdown_all_generator.rb
+rails_generators/lockdown_all/templates/app/controllers/permissions_controller.rb
+rails_generators/lockdown_all/templates/app/controllers/sessions_controller.rb
+rails_generators/lockdown_all/templates/app/controllers/user_groups_controller.rb
+rails_generators/lockdown_all/templates/app/controllers/users_controller.rb
+rails_generators/lockdown_all/templates/app/helpers/permissions_helper.rb
+rails_generators/lockdown_all/templates/app/helpers/user_groups_helper.rb
+rails_generators/lockdown_all/templates/app/helpers/users_helper.rb
+rails_generators/lockdown_all/templates/app/models/permission.rb
+rails_generators/lockdown_all/templates/app/models/user.rb
+rails_generators/lockdown_all/templates/app/models/user_group.rb
+rails_generators/lockdown_all/templates/app/views/permissions/_data.html.erb
+rails_generators/lockdown_all/templates/app/views/permissions/index.html.erb
+rails_generators/lockdown_all/templates/app/views/permissions/show.html.erb
+rails_generators/lockdown_all/templates/app/views/sessions/new.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/_data.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/_form.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/edit.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/index.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/new.html.erb
+rails_generators/lockdown_all/templates/app/views/user_groups/show.html.erb
+rails_generators/lockdown_all/templates/app/views/users/_data.html.erb
+rails_generators/lockdown_all/templates/app/views/users/_form.html.erb
+rails_generators/lockdown_all/templates/app/views/users/_password.html.erb
+rails_generators/lockdown_all/templates/app/views/users/edit.html.erb
+rails_generators/lockdown_all/templates/app/views/users/index.html.erb
+rails_generators/lockdown_all/templates/app/views/users/new.html.erb
+rails_generators/lockdown_all/templates/app/views/users/show.html.erb
+rails_generators/lockdown_all/templates/db/migrate/create_permissions.rb
+rails_generators/lockdown_all/templates/db/migrate/create_profile.rb
+rails_generators/lockdown_all/templates/db/migrate/create_user_groups.rb
+rails_generators/lockdown_all/templates/db/migrate/create_users.rb
 script/console
 script/destroy
 script/generate
@@ -31,7 +64,9 @@ tasks/website.rake
 test/test_generator_helper.rb
 test/test_helper.rb
 test/test_lockdown.rb
+test/test_lockdown_all_generator.rb
 test/test_lockdown_generator.rb
+test/test_lockdown_models_generator.rb
 website/index.html
 website/index.txt
 website/javascripts/rounded_corners_lite.inc.js

data/config/hoe.rb

@@ -9,7 +9,6 @@ HOMEPATH = "http://#{RUBYFORGE_PROJECT}.rubyforge.org"
 DOWNLOAD_PATH = "http://rubyforge.org/projects/#{RUBYFORGE_PROJECT}"
 EXTRA_DEPENDENCIES = [
   ['rubigen', '>=1.2.4']
-#  ['activesupport', '>= 1.3.1']
 ]    # An array of rubygem dependencies [name, version]
 
 @config_file = "~/.rubyforge/user-config.yml"

data/lib/lockdown/version.rb

@@ -2,7 +2,7 @@ module Lockdown #:nodoc:
   module VERSION #:nodoc:
     MAJOR = 0
     MINOR = 1
-    TINY  = 2
+    TINY  = 3
 
     STRING = [MAJOR, MINOR, TINY].join('.')
   end

data/rails_generators/lockdown_all/USAGE

@@ -0,0 +1,5 @@
+Description:
+  
+  
+Usage:
+  

data/rails_generators/lockdown_all/lockdown_all_generator.rb

@@ -0,0 +1,69 @@
+class LockdownAllGenerator < RubiGen::Base
+  
+  default_options :author => nil
+  
+  attr_reader :name
+  
+  def initialize(runtime_args, runtime_options = {})
+    super
+    usage if args.empty?
+    @name = args.shift
+  end
+
+  def manifest
+    record do |m|
+      # Ensure appropriate folder(s) exists
+      m.directory 'app/helpers'
+      m.directory 'app/models'
+      m.directory 'app/views'
+      m.directory 'app/views/users'
+      m.directory 'app/views/user_groups'
+      m.directory 'app/views/permissions'
+      m.directory 'app/views/sessions'
+      m.directory 'app/controllers'
+
+      #Controllers
+      m.file "app/controllers/permissions_controller.rb",  "app/controllers/permissions_controller.rb"
+      m.file "app/controllers/users_controller.rb",        "app/controllers/users_controller.rb"
+      m.file "app/controllers/user_groups_controller.rb",  "app/controllers/user_groups_controller.rb"
+
+      #Models
+      m.file "app/models/permission.rb",  "app/models/permission.rb"
+      m.file "app/models/user.rb",        "app/models/user.rb"
+      m.file "app/models/user_group.rb",  "app/models/user_group.rb"
+
+      #Helpers
+      m.file "app/helpers/permissions_helper.rb",  "app/helpers/permissions_helper.rb"
+      m.file "app/helpers/users_helper.rb",        "app/helpers/users_helper.rb"
+      m.file "app/helpers/user_groups_helper.rb",  "app/helpers/user_groups_helper.rb"
+
+      #Views
+      copy_views(m, "users")
+      m.file "app/views/users/_password.html.erb", "app/views/users/_password.html.erb"
+
+      copy_views(m, "user_groups")
+
+      copy_views(m, "permissions")
+
+      m.file "app/views/sessions/new.html.erb", "app/views/sessions/new.html.erb"
+    end
+  end
+
+  protected
+    def banner
+      <<-EOS
+Creates a ...
+
+USAGE: #{$0} #{spec.name} name
+EOS
+    end
+
+    def copy_views(m, vw)
+      m.file "app/views/#{vw}/_data.html.erb", "app/views/#{vw}/_data.html.erb"
+      m.file "app/views/#{vw}/_form.html.erb", "app/views/#{vw}/_form.html.erb"
+      m.file "app/views/#{vw}/index.html.erb", "app/views/#{vw}/index.html.erb"
+      m.file "app/views/#{vw}/show.html.erb", "app/views/#{vw}/show.html.erb"
+      m.file "app/views/#{vw}/edit.html.erb", "app/views/#{vw}/edit.html.erb"
+      m.file "app/views/#{vw}/new.html.erb", "app/views/#{vw}/new.html.erb"
+    end
+end

data/rails_generators/lockdown_all/templates/app/controllers/permissions_controller.rb

@@ -0,0 +1,22 @@
+class PermissionsController < ApplicationController
+  # GET /permissions
+  # GET /permissions.xml
+  def index
+    @permissions = Permission.find(:all)
+
+    respond_to do |format|
+      format.html # index.html.erb
+      format.xml  { render :xml => @permissions }
+    end
+  end
+
+  # GET /permissions/1
+  # GET /permissions/1.xml
+  def show
+    @permission = Permission.find(params[:id])
+    respond_to do |format|
+      format.html # show.html.erb
+      format.xml  { render :xml => @permission }
+    end
+  end
+end

data/rails_generators/lockdown_all/templates/app/controllers/sessions_controller.rb

@@ -0,0 +1,37 @@
+# This controller handles the login/logout function of the site.  
+class SessionsController < ApplicationController
+  def new
+    #Stub required for Lockdown to grant access
+  end
+
+  def create
+    password_authentication(params[:login], params[:password])
+  end
+
+  def destroy
+		logger.info "resetting session in sessions controller"
+    reset_session
+    flash[:notice] = "You have been logged out."
+    redirect_back_or_default('/')
+  end
+  
+  protected
+		def password_authentication(login, password)
+			set_session_user(User.authenticate(login, password))
+			if logged_in?
+	      successful_login
+	   else
+	     failed_login
+	   end
+	 end
+  
+	 def failed_login(message = 'Authentication failed.')
+	   flash[:error] = message
+		 redirect_back_or_default login_url
+	 end
+	 
+		def successful_login
+		 flash[:notice] = "Logged in successfully"
+		 redirect_back_or_default "/"
+	 end
+end

data/rails_generators/lockdown_all/templates/app/controllers/user_groups_controller.rb

@@ -0,0 +1,113 @@
+class UserGroupsController < ApplicationController
+	before_filter :find_user_group, :only => [:show, :edit, :update, :destroy]
+	before_filter :protect_private, :only => [:edit, :update]
+	after_filter :update_permissions, :only => [:create, :update]
+
+  # GET /user_groups
+  # GET /user_groups.xml
+  def index
+    @user_groups = UserGroup.find(:all)
+
+    respond_to do |format|
+      format.html # index.html.erb
+      format.xml  { render :xml => @user_groups }
+    end
+  end
+
+  # GET /user_groups/1
+  # GET /user_groups/1.xml
+  def show
+    respond_to do |format|
+      format.html # show.html.erb
+      format.xml  { render :xml => @user_group }
+    end
+  end
+
+  # GET /user_groups/new
+  # GET /user_groups/new.xml
+  def new
+    @user_group = UserGroup.new
+		@all_permissions = Permission.all_but_public
+
+    respond_to do |format|
+      format.html # new.html.erb
+      format.xml  { render :xml => @user_group }
+    end
+  end
+
+  # GET /user_groups/1/edit
+  def edit
+		@all_permissions = Permission.all_but_public
+  end
+
+  # POST /user_groups
+  # POST /user_groups.xml
+  def create
+    @user_group = UserGroup.new(params[:user_group])
+
+    respond_to do |format|
+      if @user_group.save
+        flash[:notice] = 'UserGroup was successfully created.'
+        format.html { redirect_to(@user_group) }
+        format.xml  { render :xml => @user_group, :status => :created, :location => @user_group }
+      else
+        format.html { render :action => "new" }
+        format.xml  { render :xml => @user_group.errors, :status => :unprocessable_entity }
+      end
+    end
+  end
+
+  # PUT /user_groups/1
+  # PUT /user_groups/1.xml
+  def update
+    respond_to do |format|
+      if @user_group.update_attributes(params[:user_group])
+        flash[:notice] = 'UserGroup was successfully updated.'
+        format.html { redirect_to(@user_group) }
+        format.xml  { head :ok }
+      else
+        format.html { render :action => "edit" }
+        format.xml  { render :xml => @user_group.errors, :status => :unprocessable_entity }
+      end
+    end
+  end
+
+  # DELETE /user_groups/1
+  # DELETE /user_groups/1.xml
+  def destroy
+    @user_group.destroy
+
+    respond_to do |format|
+      format.html { redirect_to(user_groups_url) }
+      format.xml  { head :ok }
+    end
+  end
+
+	private
+
+	def find_user_group
+    @user_group = UserGroup.find(params[:id])
+  end
+
+	def protect_private
+		@user_group.protect_private
+  end
+
+	def update_permissions
+		new_perm_ids = params.collect{|p| p[0].split("_")[1].to_i if p[0] =~ /^perm_/}.compact
+		#
+		# Removed previously associated permissions if not checked this time.
+		#
+		@user_group.permissions.dup.each do |p|
+			@user_group.permissions.delete(p) unless new_perm_ids.include?(p.id)
+    end
+
+		# 
+		# Add in the new permissions
+		#
+		new_perm_ids.each do |id|
+			next if @user_group.permission_ids.include?(id)
+			@user_group.permissions << Permission.find(id)
+    end
+  end
+end

data/rails_generators/lockdown_all/templates/app/controllers/users_controller.rb

@@ -0,0 +1,124 @@
+class UsersController < ApplicationController
+	before_filter :find_user, :only => [:show, :edit, :update, :destroy]
+	after_filter :update_user_groups, :only => [:create, :update]
+  # GET /users
+  # GET /users.xml
+  def index
+    @users = User.all
+    logger.info "===============> access rights: #{session[:access_rights].join("\n")}" unless session[:access_rights] == :all
+    logger.info "===============> is: #{current_user_is_admin?}"
+    respond_to do |format|
+      format.html # index.html.erb
+      format.xml  { render :xml => @users }
+    end
+  end
+
+  # GET /users/1
+  # GET /users/1.xml
+  def show
+    respond_to do |format|
+      format.html # show.html.erb
+      format.xml  { render :xml => @user }
+    end
+  end
+
+  # GET /users/new
+  # GET /users/new.xml
+  def new
+		@user = User.new
+		@profile = Profile.new
+    @user_groups_for_user = UserGroup.find_assignable_for_user(current_user)
+		respond_to do |format|
+     format.html # new.html.erb
+     format.xml  { render :xml => @user }
+		end
+  end
+
+  # GET /users/1/edit
+  def edit
+    @user_groups_for_user = UserGroup.find_assignable_for_user(current_user)
+  end
+  
+  # POST /users
+  # POST /users.xml
+  def create
+    @user = User.new(params[:user])
+    @profile = Profile.new(params[:profile])
+
+    @user.profile = @profile
+		if @user.save
+			flash[:notice] = "Thanks for signing up!"
+			redirect_to(users_path)
+		else
+			flash[:error] = "Please correct the following issues"
+			render :action => "new" 
+    end
+  end
+  
+  # PUT /users/1
+  # PUT /users/1.xml
+  def update
+		@user.profile.attributes = params[:profile]
+		@user.attributes = params[:user]
+
+    respond_to do |format|
+      if @user.save
+        flash[:notice] = 'User was successfully updated.'
+        format.html { redirect_to(@user) }
+        format.xml  { head :ok }
+      else
+        format.html { render :action => "edit" }
+        format.xml  { render :xml => @user.errors, :status => :unprocessable_entity }
+      end
+    end
+  end
+
+  # DELETE /users/1
+  # DELETE /users/1.xml
+  def destroy
+    @user.destroy
+
+    respond_to do |format|
+      format.html { redirect_to(users_url) }
+      format.xml  { head :ok }
+    end
+  end
+
+	def change_password 
+		render :update do |page|
+			page.replace_html 'password', :partial => 'password'
+		end
+	end
+
+	private
+
+	def find_user
+		# Skip test if current user is an administrator
+		unless current_user_is_admin? 
+			# Raise error if id not = current logged in user
+			raise SecurityError.new if (current_user_id != params[:id].to_i)
+		end
+		@user = User.find(params[:id])
+		raise SecurityError.new if @user.nil?
+		@profile = @user.profile
+	end
+
+	def update_user_groups
+		new_ug_ids = params.collect{|p| p[0].split("_")[1].to_i if p[0] =~ /^ug_/}.compact
+		#
+		# Removed previously associated user_groups if not checked this time.
+		#
+		@user.user_groups.dup.each do |g|
+			#Don't remove the automatically assigned user groups
+			next if g.system_assigned?
+			@user.user_groups.delete(g) unless new_ug_ids.include?(g.id)
+    end
+		# 
+		# Add in the new permissions
+		#
+		new_ug_ids.each do |id|
+			next if @user.user_group_ids.include?(id)
+			@user.user_groups << UserGroup.find(id)
+    end
+  end
+end