lockdown 0.4.6 → 0.5.0

data/rails_generators/lockdown/templates/app/helpers/users_helper.rb

@@ -0,0 +1,78 @@
+module UsersHelper
+  def profile_first_name_value
+    if @action_name == "show"
+      h @profile.first_name 
+    else
+      text_field_tag "profile[first_name]", @profile.first_name
+    end
+  end
+
+  def profile_last_name_value
+    if @action_name == "show"
+      h @profile.last_name 
+    else
+      text_field_tag "profile[last_name]", @profile.last_name
+    end
+  end
+
+  def profile_email_value
+    if @action_name == "show"
+      h @profile.email 
+    else
+      text_field_tag "profile[email]", @profile.email 
+    end
+  end
+
+  def user_login_value
+    if @action_name == "show"
+      h @user.login 
+    else
+      text_field_tag "user[login]", @user.login
+    end
+  end
+
+  def user_password_value
+    if @action_name == "show"
+      h "Hidden for security..."
+    else
+      %{<input autocomplete="off" type="password" name="user[password]" id="user_password"/>}
+    end
+  end
+
+  def user_password_confirmation_value
+    if @action_name == "show"
+      h "Hidden for security..."
+    else
+      %{<input autocomplete="off" type="password" name="user[password_confirmation]" id="user_password_confirmation"/>}
+    end
+  end
+
+  def user_user_groups_value
+    if @action_name == "show"
+      @user.user_groups.collect{|ug| ug.name + "<br/>"}
+    else
+      rvalue = %{<ul id="all_user_groups" class="checklist">}
+      #
+      # Restrict user group list to the list of the current user.
+      # This prevents a user from creating someone with more access than
+      # him/herself.
+      #
+      @user_groups_for_user.each_with_index do |ug,i|
+        bg =  ( i % 2 == 0 ) ? "even" : "odd"
+        input_id = "ug_#{ug.id}"
+        checked = (@user.user_group_ids.include?(ug.id) ? "checked" : "")
+        bg << "_" << checked if checked.length > 0
+        rvalue << <<-HTML
+          <li class="#{bg}">
+            <label id="lbl_#{input_id}" for="#{input_id}" onclick="do_highlight('#{input_id}')">
+            <input id="#{input_id}" name="#{input_id}" type="checkbox" #{checked}/>&nbsp;&nbsp;#{ug.name}
+            </label>
+          </li>
+        HTML
+      end
+      rvalue << "</ul>"
+    end
+  end
+
+
+end

data/rails_generators/lockdown/templates/app/models/permission.rb

@@ -0,0 +1,13 @@
+class Permission < ActiveRecord::Base
+  has_and_belongs_to_many :user_groups
+  
+	def all_users
+		User.find_by_sql <<-SQL
+			select users.* 
+			from users, user_groups_users, permissions_user_groups
+			where users.id = user_groups_users.user_id 
+			and user_groups_users.user_group_id = permissions_user_groups.user_group_id
+			and permissions_user_groups.permission_id = #{self.id}
+		SQL
+  end
+end

data/rails_generators/lockdown/templates/app/models/profile.rb

@@ -0,0 +1,10 @@
+class Profile < ActiveRecord::Base
+  SYSTEM = 1
+  
+  validates_presence_of :email, :first_name, :last_name
+  
+  validates_length_of :email, :within => 5..100
+  validates_format_of :email, :with => /\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i
+  
+  validates_uniqueness_of :email, :case_sensitive => false
+end

data/rails_generators/lockdown/templates/app/models/user.rb

@@ -0,0 +1,72 @@
+require 'digest/sha1'
+class User < ActiveRecord::Base
+  has_and_belongs_to_many :user_groups
+  belongs_to :profile
+  
+  # Virtual attributes
+  attr_accessor :password
+
+  validates_presence_of     :login
+  validates_presence_of     :password,                   :if => :password_required?
+  validates_presence_of     :password_confirmation,      :if => :password_required?
+  validates_length_of       :password, :within => 4..40, :if => :password_required?
+  validates_confirmation_of :password,                   :if => :password_required?
+  validates_length_of       :login,    :within => 3..40
+  validates_uniqueness_of   :login, :case_sensitive => false
+  
+  validates_presence_of :profile
+	validates_associated	:profile
+  
+	before_save :prepare_for_save
+
+  attr_accessible :login, :password, :password_confirmation
+  
+  # Authenticates a user by their login name and unencrypted password.  
+  # Returns the user or nil.
+  def self.authenticate(login, password)
+    u = find :first, :conditions => ['login = ?', login] # need to get the salt
+    u && u.authenticated?(password) ? u : nil
+  end
+
+  # Encrypts some data with the salt.
+  def self.encrypt(password, salt)
+    Digest::SHA1.hexdigest("--#{salt}--#{password}--")
+  end
+
+  # Encrypts the password with the user salt
+  def encrypt(password)
+    self.class.encrypt(password, salt)
+  end
+
+  def authenticated?(password)
+    crypted_password == encrypt(password)
+  end
+  
+  def email
+    self.profile.email
+  end
+  
+  def full_name
+    self.profile.first_name + " " + self.profile.last_name
+  end
+  
+  protected
+
+  def prepare_for_save
+    encrypt_password
+    self.profile.save
+  end
+      
+  def encrypt_password
+    return if password.blank?
+    if new_record?
+      self.salt = Digest::SHA1.hexdigest("--#{Time.now.to_s}--#{login}--") 
+    end
+    self.crypted_password = encrypt(password)
+  end
+    
+  def password_required?
+    (crypted_password.blank? || !password.blank?)
+  end
+    
+end

data/rails_generators/lockdown/templates/app/models/user_group.rb

@@ -0,0 +1,15 @@
+class UserGroup < ActiveRecord::Base
+  has_and_belongs_to_many :permissions
+  has_and_belongs_to_many :users
+
+  validates_presence_of :name
+  
+	def all_users
+		User.find_by_sql <<-SQL
+			select users.* 
+			from users, user_groups_users
+			where users.id = user_groups_users.user_id 
+			and user_groups_users.user_group_id = #{self.id}
+    SQL
+	end
+end

data/rails_generators/lockdown/templates/app/views/permissions/_data.html.erb

@@ -0,0 +1,13 @@
+<p>
+  <b>Name</b><br />
+  <%= permission_name_value %>
+</p>
+<p>
+  <b>Access rights:</b><br />
+  <%= permission_access_rights_value %>
+</p>
+<p>
+  <b>Users with permission:</b><br />
+  <%= permission_users_value %>
+</p>
+

data/rails_generators/lockdown/templates/app/views/permissions/index.html.erb

@@ -0,0 +1,16 @@
+<h1>Listing Permissions</h1>
+
+<table>
+  <tr>
+    <th>Name</th>
+  </tr>
+
+<% for permission in @permissions %>
+  <tr>
+    <td><%=h permission.name %></td>
+    <td><%= link_to 'Show', permission %></td>
+  </tr>
+<% end %>
+</table>
+
+<br />

data/rails_generators/lockdown/templates/app/views/permissions/show.html.erb

@@ -0,0 +1,3 @@
+<%= render :partial => "data",  :locals => {:f => nil} %>
+
+<%= link_to 'Back', permissions_path %>

data/rails_generators/lockdown/templates/app/views/sessions/new.html.erb

@@ -0,0 +1,12 @@
+<%= flash[:notice] if flash[:notice] %>
+<%= flash[:error] if flash[:error] %>
+
+<% form_tag sessions_path do -%>
+	<p><label for="login">Login</label><br/>
+	<%= text_field_tag 'login' %></p>
+
+	<p><label for="password">Password</label><br/>
+	<%= password_field_tag 'password' %></p>
+
+	<p><%= submit_tag 'Log in' %></p>
+<% end -%>

data/rails_generators/lockdown/templates/app/views/user_groups/_data.html.erb

@@ -0,0 +1,44 @@
+<!-- 
+take the style block out.  this is duplicated in users/_data.html.erb
+without this, the user group selection is just no good
+-->
+<style>
+.checklist{
+  overflow: auto;
+  border: 1px solid #ccc;
+  list-style: none;
+  height: 300px;
+  text-align: left;
+  list-style: none;
+  margin-left: 12px;
+}
+
+.checklist li{
+  padding-left: 6px;
+}
+
+li.even_checked,
+li.even{
+  background: #DFDFDF;
+}
+
+li.even_checked,
+li.odd_checked{
+  color: red;
+}
+</style>
+
+<p>
+  <b>Name</b><br />
+  <%= user_group_name_value %>
+</p>
+<p>
+  <b>Permissions</b><br />
+  <%= user_group_permissions_value %>
+</p>
+<% if @action_name == "show" %>
+	<p>
+		<b>Users in user group:</b><br />
+		<%= user_group_users_value  %>
+	</p>
+<% end%>

data/rails_generators/lockdown/templates/app/views/user_groups/_form.html.erb

@@ -0,0 +1,11 @@
+<%
+  submit_label = "Update"
+  submit_label = "Create" if @user_group.new_record?
+-%>
+
+<%= error_messages_for :user_group %>
+
+<% form_for(@user_group) do |f| %>
+  <%= render :partial => "data", :locals => {:f => f} %>
+  <p> <%= f.submit submit_label %> </p>
+<% end %>

data/rails_generators/lockdown/templates/app/views/user_groups/edit.html.erb

@@ -0,0 +1,6 @@
+<h1>Editing Usergroup</h1>
+
+<%= render :partial => "form" %>
+
+<%= link_to 'Show', @user_group %> |
+<%= link_to 'Back', user_groups_path %>

data/rails_generators/lockdown/templates/app/views/user_groups/index.html.erb

@@ -0,0 +1,20 @@
+<h1>Listing User Groups</h1>
+
+<table>
+  <tr>
+    <th>Name</th>
+  </tr>
+
+<% for user_group in @user_groups %>
+  <tr>
+    <td><%=h user_group.name %></td>
+    <td><%= link_to 'Show', user_group %></td>
+    <td><%= link_to('Edit', edit_user_group_path(user_group)) unless Lockdown::System.has_user_group?(user_group) %></td>
+    <td><%= link_to('Destroy', user_group, :confirm => 'Are you sure?', :method => :delete) unless Lockdown::System.has_user_group?(user_group) %></td>
+  </tr>
+<% end %>
+</table>
+
+<br />
+
+<%= link_to 'New User Group', new_user_group_path %>

data/rails_generators/lockdown/templates/app/views/user_groups/new.html.erb

@@ -0,0 +1,5 @@
+<h1>New Usergroup</h1>
+
+<%= render :partial => "form" %>
+
+<%= link_to 'Back', user_groups_path %>

data/rails_generators/lockdown/templates/app/views/user_groups/show.html.erb

@@ -0,0 +1,6 @@
+<%= render :partial => "data",  :locals => {:f => nil} %>
+
+<% unless Lockdown::System.has_user_group?(@user_group) %>
+  <%= link_to 'Edit', edit_user_group_path(@user_group) %> |
+<% end %>
+<%= link_to 'Back', user_groups_path %>

data/rails_generators/lockdown/templates/app/views/users/_data.html.erb

@@ -0,0 +1,62 @@
+<!-- 
+take the style block out.  this is duplicated in users/_data.html.erb
+without this, the user group selection is just no good
+-->
+<style>
+.checklist{
+  overflow: auto;
+  border: 1px solid #ccc;
+  list-style: none;
+  height: 300px;
+  text-align: left;
+  list-style: none;
+  margin-left: 12px;
+}
+
+.checklist li{
+  padding-left: 6px;
+}
+
+li.even_checked,
+li.even{
+  background: #DFDFDF;
+}
+
+li.even_checked,
+li.odd_checked{
+  color: red;
+}
+</style>
+
+<p>
+  <b>First name</b><br />
+  <%= profile_first_name_value %>
+</p>
+<p>
+  <b>Last name</b><br />
+  <%= profile_last_name_value %>
+</p>
+<p>
+  <b>Email</b><br />
+  <%= profile_email_value %>
+</p>
+<p>
+	<b><span>L</span>ogin</b><br />
+  <%= user_login_value %>
+</p>
+
+<% unless @action_name == "show" -%>
+	<p id="password">
+		<% if @user.new_record? %>
+			<%= render :partial => "password" %>
+		<% else %>
+			<a href="#" onclick="change_password()">Change Password</a><br/>
+		<% end %>
+	</p>
+<% end -%>
+
+<p>
+  <b>User Groups</b><br />
+  <%= user_user_groups_value %>
+</p>
+

data/rails_generators/lockdown/templates/app/views/users/_form.html.erb

@@ -0,0 +1,18 @@
+<%
+  submit_label = "Update"
+  submit_label = "Create" if @user.new_record?
+-%>
+
+<script type="text/javascript">
+	function change_password()
+	{
+		new Ajax.Request("/users/change_password", {asynchronous: true, postBody: 'authenticity_token=<%= form_authenticity_token %>'});
+	}
+</script>
+<%= error_messages_for :profile %>
+<%= error_messages_for :user %>
+
+<% form_for(@user) do |f| %>
+  <%= render :partial => "data", :locals => {:f => f} %>
+  <p> <%= f.submit submit_label %> </p>
+<% end %>

data/rails_generators/lockdown/templates/app/views/users/_password.html.erb

@@ -0,0 +1,5 @@
+<b><span>P</span>assword</b><br />
+<%= user_password_value  %>
+<br/><br/>
+<b><span>P</span>assword confirmation</b><br />
+<%= user_password_confirmation_value %>

data/rails_generators/lockdown/templates/app/views/users/edit.html.erb

@@ -0,0 +1,6 @@
+<h1>Editing User</h1>
+
+<%= render :partial => "form" %>
+
+<%= link_to 'Show', @user %> |
+<%= link_to 'Back', users_path %>

data/rails_generators/lockdown/templates/app/views/users/index.html.erb

@@ -0,0 +1,22 @@
+<h1>Listing Users</h1>
+
+<table>
+  <tr>
+    <th>Login</th>
+    <th>Name</th>
+  </tr>
+
+<% @users.each do |user| %>
+  <tr>
+    <td><%=h user.login %></td>
+    <td><%=h user.full_name %></td>
+    <td><%= link_to 'Show', user %></td>
+    <td><%= link_to 'Edit', edit_user_path(user) %></td>
+    <td><%= link_to 'Destroy', user, :confirm => 'Are you sure?', :method => :delete %></td>
+  </tr>
+<% end %>
+</table>
+
+<br />
+
+<%= link_to 'New User', new_user_path %>

data/rails_generators/lockdown/templates/app/views/users/new.html.erb

@@ -0,0 +1,5 @@
+<h1>New User</h1>
+
+<%= render :partial => "form" %>
+
+<%= link_to 'Back', users_path %>

data/rails_generators/lockdown/templates/app/views/users/show.html.erb

@@ -0,0 +1,4 @@
+<%= render :partial => "data",  :locals => {:f => nil} %>
+
+<%= link_to 'Edit', edit_user_path(@user) %> |
+<%= link_to 'Back', users_path %>

data/rails_generators/lockdown/templates/db/migrate/create_admin_user_and_user_group.rb

@@ -0,0 +1,19 @@
+class CreateAdminUserAndUserGroup < ActiveRecord::Migration
+  def self.up
+		# TODO: Change the password
+    u = User.new(	:password => "password", 
+									:password_confirmation => "password", 
+									:login => "admin")
+
+    u.profile = Profile.create(:first_name => "Administrator",
+																:last_name => "User",
+																:email => "administrator@a.com")
+    u.save
+
+		Lockdown::System.make_user_administrator(u)
+  end
+	 
+  def self.down
+    #Nothing to see here...
+	end
+end

data/rails_generators/lockdown/templates/db/migrate/create_permissions.rb

@@ -0,0 +1,19 @@
+class CreatePermissions < ActiveRecord::Migration
+  def self.up
+    create_table :permissions do |t|
+      t.string :name
+
+      t.timestamps
+    end
+
+		create_table :permissions_user_groups, :id => false do |t|
+      t.integer :permission_id
+      t.integer :user_group_id
+    end
+  end
+
+  def self.down
+		drop_table :permissions_user_groups
+    drop_table :permissions
+  end
+end

data/rails_generators/lockdown/templates/db/migrate/create_profiles.rb

@@ -0,0 +1,26 @@
+class CreateProfiles < ActiveRecord::Migration
+  def self.up
+    create_table :profiles do |t|
+      t.string :first_name
+      t.string :last_name
+      t.string :email
+      t.integer :updated_by
+      t.boolean :is_disabled
+
+      t.timestamps
+    end
+
+		# The System profile is used as the updated_by reference when records 
+    # are created programatically and the responsible user cannot be determined 
+    # or is simply not available.
+		# TODO: Change email address
+		Profile.create(:first_name => "System",
+										:last_name => "User",
+										:email => "system@a.com")
+
+  end
+
+  def self.down
+    drop_table :profiles
+  end
+end

data/rails_generators/lockdown/templates/db/migrate/create_user_groups.rb

@@ -0,0 +1,19 @@
+class CreateUserGroups < ActiveRecord::Migration
+  def self.up
+    create_table :user_groups do |t|
+      t.string :name
+
+      t.timestamps
+    end
+
+    create_table :user_groups_users, :id => false do |t|
+      t.integer :user_group_id
+      t.integer :user_id
+    end
+  end
+
+  def self.down
+		drop_table :user_groups_users
+    drop_table :user_groups
+  end
+end

data/rails_generators/lockdown/templates/db/migrate/create_users.rb

@@ -0,0 +1,17 @@
+class CreateUsers < ActiveRecord::Migration
+  def self.up
+    create_table :users do |t|
+      t.string :login
+      t.string :crypted_password
+      t.string :salt
+      t.integer :profile_id
+      t.integer :updated_by
+
+      t.timestamps
+    end
+  end
+
+  def self.down
+    drop_table :users
+  end
+end

data/rails_generators/lockdown_all/lockdown_all_generator.rb

@@ -40,8 +40,6 @@ class LockdownAllGenerator < Rails::Generator::Base
 							"app/models/profile.rb"
 
 
-
-
       #Route file (i like having them on individual lines)
       m.route_resources "permissions"
       m.route_resources "user_groups"

data/test/test_generator_helper.rb

@@ -1,4 +1,8 @@
-require File.dirname(__FILE__) + '/test_helper'
+begin
+  require File.dirname(__FILE__) + '/test_helper'
+rescue LoadError
+  require 'test/unit'
+end
 require 'fileutils'
 
 # Must set before requiring generator libs.
@@ -10,6 +14,11 @@ if defined?(APP_ROOT)
 else
   APP_ROOT = app_root
 end
+if defined?(RAILS_ROOT)
+  RAILS_ROOT.replace(app_root)
+else
+  RAILS_ROOT = app_root
+end
 
 begin
   require 'rubigen'

data/test/test_lockdown_generator.rb

@@ -1,16 +1,18 @@
 require File.join(File.dirname(__FILE__), "test_generator_helper.rb")
 
+require 'rails_generator'
+
 class TestLockdownGenerator < Test::Unit::TestCase
   include RubiGen::GeneratorTestHelper
 
   def setup
     bare_setup
   end
-  
+
   def teardown
     bare_teardown
   end
-  
+
   # Some generator-related assertions:
   #   assert_generated_file(name, &block) # block passed the file contents
   #   assert_directory_exists(name)
@@ -24,20 +26,20 @@ class TestLockdownGenerator < Test::Unit::TestCase
   #   app_root_files - put this in teardown to show files generated by the test method (e.g. p app_root_files)
   #   bare_setup - place this in setup method to create the APP_ROOT folder for each test
   #   bare_teardown - place this in teardown method to destroy the TMP_ROOT or APP_ROOT folder after each test
-  
+
   def test_generator_without_options
-    run_generator('lockdown', [APP_ROOT], sources)
-    assert_directory_exists "path/to/included/folder"
-    assert_generated_file   "path/to/included/folder/some_file"
+    name = "myapp"
+    run_generator('lockdown', [name], sources)
+    assert_generated_file("some_file")
   end
-  
+
   private
   def sources
     [RubiGen::PathSource.new(:test, File.join(File.dirname(__FILE__),"..", generator_path))
     ]
   end
-  
+
   def generator_path
-    "app_generators"
+    "rails_generators"
   end
 end