RubyGems - lockdown - Versions diffs - 1.6.5 → 2.0.0 - Mend

lockdown 1.6.5 → 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (80) hide show

data/.gitignore +1 -0
data/README.txt +8 -5
data/Rakefile +43 -26
data/lib/lockdown/access.rb +108 -0
data/lib/lockdown/configuration.rb +201 -0
data/lib/lockdown/database.rb +31 -36
data/lib/lockdown/delivery.rb +26 -0
data/lib/lockdown/errors.rb +3 -7
data/lib/lockdown/frameworks/rails/controller.rb +21 -59
data/lib/lockdown/frameworks/rails/view.rb +1 -1
data/lib/lockdown/frameworks/rails.rb +7 -43
data/lib/lockdown/helper.rb +14 -85
data/lib/lockdown/orms/active_record.rb +7 -9
data/lib/lockdown/permission.rb +37 -203
data/lib/lockdown/resource.rb +54 -0
data/lib/lockdown/session.rb +16 -25
data/lib/lockdown/user_group.rb +16 -0
data/lib/lockdown.rb +15 -60
data/lockdown.gemspec +29 -69
data/test/helper.rb +9 -0
data/test/lockdown/test_access.rb +80 -0
data/test/lockdown/test_configuration.rb +194 -0
data/test/lockdown/test_delivery.rb +163 -0
data/test/lockdown/test_helper.rb +33 -0
data/test/lockdown/test_permission.rb +73 -0
data/test/lockdown/test_resource.rb +47 -0
data/test/lockdown/test_session.rb +31 -0
data/test/lockdown/test_user_group.rb +17 -0
data/test/test_lockdown.rb +11 -0
metadata +41 -78
data/lib/lockdown/context.rb +0 -41
data/lib/lockdown/references.rb +0 -19
data/lib/lockdown/rspec_helper.rb +0 -118
data/lib/lockdown/rules.rb +0 -372
data/lib/lockdown/system.rb +0 -58
data/rails_generators/lockdown/lockdown_generator.rb +0 -274
data/rails_generators/lockdown/templates/app/controllers/permissions_controller.rb +0 -22
data/rails_generators/lockdown/templates/app/controllers/sessions_controller.rb +0 -39
data/rails_generators/lockdown/templates/app/controllers/user_groups_controller.rb +0 -122
data/rails_generators/lockdown/templates/app/controllers/users_controller.rb +0 -117
data/rails_generators/lockdown/templates/app/helpers/permissions_helper.rb +0 -2
data/rails_generators/lockdown/templates/app/helpers/user_groups_helper.rb +0 -2
data/rails_generators/lockdown/templates/app/helpers/users_helper.rb +0 -2
data/rails_generators/lockdown/templates/app/models/permission.rb +0 -13
data/rails_generators/lockdown/templates/app/models/profile.rb +0 -10
data/rails_generators/lockdown/templates/app/models/user.rb +0 -95
data/rails_generators/lockdown/templates/app/models/user_group.rb +0 -15
data/rails_generators/lockdown/templates/app/views/permissions/index.html.erb +0 -16
data/rails_generators/lockdown/templates/app/views/permissions/show.html.erb +0 -26
data/rails_generators/lockdown/templates/app/views/sessions/new.html.erb +0 -12
data/rails_generators/lockdown/templates/app/views/user_groups/edit.html.erb +0 -33
data/rails_generators/lockdown/templates/app/views/user_groups/index.html.erb +0 -20
data/rails_generators/lockdown/templates/app/views/user_groups/new.html.erb +0 -31
data/rails_generators/lockdown/templates/app/views/user_groups/show.html.erb +0 -29
data/rails_generators/lockdown/templates/app/views/users/edit.html.erb +0 -51
data/rails_generators/lockdown/templates/app/views/users/index.html.erb +0 -22
data/rails_generators/lockdown/templates/app/views/users/new.html.erb +0 -50
data/rails_generators/lockdown/templates/app/views/users/show.html.erb +0 -33
data/rails_generators/lockdown/templates/config/initializers/lockit.rb +0 -1
data/rails_generators/lockdown/templates/db/migrate/create_admin_user.rb +0 -17
data/rails_generators/lockdown/templates/db/migrate/create_permissions.rb +0 -19
data/rails_generators/lockdown/templates/db/migrate/create_profiles.rb +0 -26
data/rails_generators/lockdown/templates/db/migrate/create_user_groups.rb +0 -19
data/rails_generators/lockdown/templates/db/migrate/create_users.rb +0 -17
data/rails_generators/lockdown/templates/lib/lockdown/README +0 -42
data/rails_generators/lockdown/templates/lib/lockdown/init.rb +0 -131
data/spec/lockdown/context_spec.rb +0 -191
data/spec/lockdown/database_spec.rb +0 -162
data/spec/lockdown/frameworks/rails/controller_spec.rb +0 -215
data/spec/lockdown/frameworks/rails/view_spec.rb +0 -96
data/spec/lockdown/frameworks/rails_spec.rb +0 -163
data/spec/lockdown/permission_spec.rb +0 -156
data/spec/lockdown/rspec_helper_spec.rb +0 -40
data/spec/lockdown/rules_spec.rb +0 -245
data/spec/lockdown/session_spec.rb +0 -112
data/spec/lockdown/system_spec.rb +0 -51
data/spec/lockdown_spec.rb +0 -19
data/spec/rcov.opts +0 -5
data/spec/spec.opts +0 -3
data/spec/spec_helper.rb +0 -8

data/rails_generators/lockdown/templates/app/models/user.rb DELETED Viewed

@@ -1,95 +0,0 @@
-require 'digest/sha1'
-class User < ActiveRecord::Base
-  has_and_belongs_to_many :user_groups
-  belongs_to :profile
-  # Virtual attributes
-  attr_accessor :password
-  validates_presence_of     :login
-  validates_presence_of     :password,                   :if => :password_required?
-  validates_presence_of     :password_confirmation,      :if => :password_required?
-  validates_length_of       :password, :within => 4..40, :if => :password_required?
-  validates_confirmation_of :password,                   :if => :password_required?
-  validates_length_of       :login,    :within => 3..40
-  validates_uniqueness_of   :login, :case_sensitive => false
-	before_save :encrypt_password
-	before_save :save_profile
-  attr_accessible :login, :password, :password_confirmation,
-                  :first_name, :last_name, :email
-  # Authenticates a user by their login name and unencrypted password.
-  # Returns the user or nil.
-  def self.authenticate(login, password)
-    u = find :first, :conditions => ['login = ?', login] # need to get the salt
-    u && u.authenticated?(password) ? u : nil
-  end
-  # Encrypts some data with the salt.
-  def self.encrypt(password, salt)
-    Digest::SHA1.hexdigest("--#{salt}--#{password}--")
-  end
-  # Encrypts the password with the user salt
-  def encrypt(password)
-    self.class.encrypt(password, salt)
-  end
-  def authenticated?(password)
-    crypted_password == encrypt(password)
-  end
-  def full_name
-    first_name + " " + last_name
-  end
-  # Profile information
-  def first_name
-    user_profile.first_name
-  end
-  def first_name=(string)
-    user_profile.first_name = string
-  end
-  def last_name
-    user_profile.last_name
-  end
-  def last_name=(string)
-    user_profile.last_name = string
-  end
-  def email
-    user_profile.email
-  end
-  def email=(string)
-    user_profile.email = string
-  end
-  def user_profile
-    self.profile || self.profile = Profile.new
-  end
-  protected
-  def encrypt_password
-    return if password.blank?
-    if new_record?
-      self.salt = Digest::SHA1.hexdigest("--#{Time.now.to_s}--#{login}--")
-    end
-    self.crypted_password = encrypt(password)
-  end
-  def save_profile
-    profile.save
-  end
-  def password_required?
-    (crypted_password.blank? || !password.blank?)
-  end
-end

data/rails_generators/lockdown/templates/app/models/user_group.rb DELETED Viewed

@@ -1,15 +0,0 @@
-class UserGroup < ActiveRecord::Base
-  has_and_belongs_to_many :permissions
-  has_and_belongs_to_many :users
-  validates_presence_of :name
-	def all_users
-		User.find_by_sql <<-SQL
-			select users.*
-			from users, user_groups_users
-			where users.id = user_groups_users.user_id
-			and user_groups_users.user_group_id = #{self.id}
-    SQL
-	end
-end

data/rails_generators/lockdown/templates/app/views/permissions/index.html.erb DELETED Viewed

@@ -1,16 +0,0 @@
-<h1>Listing Permissions</h1>
-<table>
-  <tr>
-    <th>Name</th>
-  </tr>
-<%% for permission in @permissions %>
-  <tr>
-    <td><%%=h permission.name %></td>
-    <td><%%= link_to 'Show', <%= namespace.blank? ? 'permission_path(permission)' : "#{namespace}_permission_path(permission)" %> %></td>
-  </tr>
-<%% end %>
-</table>
-<br />

data/rails_generators/lockdown/templates/app/views/permissions/show.html.erb DELETED Viewed

@@ -1,26 +0,0 @@
-<p>
-  <b>Name</b><br />
-  <%%= h @permission.name %>
-</p>
-<p>
-  <b>Access rights:</b><br />
-  <%%
-    Lockdown::System.access_rights_for_permission(@permission).each do |access_right|
-  %>
-    <%%= access_right %><br/>
-  <%%
-    end
-  %>
-</p>
-<p>
-  <b>Users with permission:</b><br />
-  <%%
-    @permission.all_users.each do |user|
-  %>
-      <%%= link_to_or_show(user.full_name, <%= namespace.blank? ? 'user' : "#{namespace}_user_path(user)" %>) %><br/>
-  <%%
-    end
-  %>
-</p>
-<%%= link_to 'Back', <%= namespace.blank? ? 'permissions_path' : "#{namespace}_permissions_path" %> %>

data/rails_generators/lockdown/templates/app/views/sessions/new.html.erb DELETED Viewed

@@ -1,12 +0,0 @@
-<%%= flash[:notice] if flash[:notice] %>
-<%%= flash[:error] if flash[:error] %>
-<%% form_tag sessions_path  do -%>
-	<p><label for="login">Login</label><br/>
-	<%%= text_field_tag 'login' %></p>
-	<p><label for="password">Password</label><br/>
-	<%%= password_field_tag 'password' %></p>
-	<p><%%= submit_tag 'Log in' %></p>
-<%% end -%>

data/rails_generators/lockdown/templates/app/views/user_groups/edit.html.erb DELETED Viewed

@@ -1,33 +0,0 @@
-<h1>Editing User Group</h1>
-<%% form_for(<%= namespace.blank? ? '@user_group' : "[:#{namespace}, @user_group]"  %>) do |f| %>
-  <%%= f.error_messages %>
-  <p>
-    <b>Name</b><br />
-    <%%= f.text_field :name %>
-  </p>
-  <p>
-    <b>Permissions</b><br />
-    <ul style="list-style: none;">
-      <%%
-        @all_permissions.each_with_index do |perm,i|
-          input_id = "perm_#{perm.id}"
-          checked = (@user_group.permission_ids.include?(perm.id) ? "checked" : "")
-      %>
-          <li id="li_<%%= input_id %>">
-            <label for="<%%= input_id %>">
-            <input id="<%%= input_id %>" name="<%%= input_id %>" type="checkbox" <%%= checked %>/>&nbsp;&nbsp;<%%= perm.name %>
-            </label>
-          </li>
-      <%%
-        end
-      %>
-    </ul>
-  </p>
-  <p> <%%= f.submit "Update" %> </p>
-<%% end %>
-<%%= link_to 'Show', <%= namespace.blank? ? '@user_group' : "#{namespace}_user_group_path(@user_group)" %> %> |
-<%%= link_to 'Back', <%= namespace.blank? ? 'user_groups_path' : "#{namespace}_user_groups_path" %> %>

data/rails_generators/lockdown/templates/app/views/user_groups/index.html.erb DELETED Viewed

@@ -1,20 +0,0 @@
-<h1>Listing User Groups</h1>
-<table>
-  <tr>
-    <th>Name</th>
-  </tr>
-<%% for user_group in @user_groups %>
-  <tr>
-    <td><%%=h user_group.name %></td>
-    <td><%%= link_to 'Show', <%= namespace.blank? ? "user_group_path(user_group)" : "#{namespace}_user_group_path(user_group)" %> %></td>
-    <td><%%= link_to('Edit', <%= namespace.blank? ? "edit_user_group_path(user_group)" : "edit_#{namespace}_user_group_path(user_group)" %>) unless Lockdown::System.has_user_group?(user_group) %></td>
-    <td><%%= link_to('Destroy',<%= namespace.blank? ? "user_group_path(user_group)" : "#{namespace}_user_group_path(user_group)" %>, :confirm => 'Are you sure?', :method => :delete) unless Lockdown::System.has_user_group?(user_group) %></td>
-  </tr>
-<%% end %>
-</table>
-<br />
-<%%= link_to 'New User Group', <%= namespace.blank? ? "new_user_group_path" : "new_#{namespace}_user_group_path" %> %>

data/rails_generators/lockdown/templates/app/views/user_groups/new.html.erb DELETED Viewed

@@ -1,31 +0,0 @@
-<h1>New User Group</h1>
-<%% form_for(<%= namespace.blank? ? '@user_group' : "[:#{namespace}, @user_group]"  %>) do |f| %>
-  <%%= f.error_messages %>
-  <p>
-    <b>Name</b><br />
-    <%%= f.text_field :name %>
-  </p>
-  <p>
-    <b>Permissions</b><br />
-    <ul style="list-style: none;">
-      <%%
-        @all_permissions.each_with_index do |perm,i|
-          input_id = "perm_#{perm.id}"
-          checked = (@user_group.permission_ids.include?(perm.id) ? "checked" : "")
-      %>
-          <li id="li_<%%= input_id %>">
-            <label for="<%%= input_id %>">
-              <input id="<%%= input_id %>" name="<%%= input_id %>" type="checkbox" <%%= checked %>/>&nbsp;&nbsp;<%%= perm.name %>
-            </label>
-          </li>
-      <%%
-        end
-      %>
-    </ul>
-  </p>
-  <p> <%%= f.submit "Create" %> </p>
-<%% end %>
-<%%= link_to 'Back', <%= namespace.blank? ? 'user_groups_path' : "#{namespace}_user_groups_path" %> %>

data/rails_generators/lockdown/templates/app/views/user_groups/show.html.erb DELETED Viewed

@@ -1,29 +0,0 @@
-<p>
-  <b>Name</b><br />
-  <%%= h @user_group.name %>
-</p>
-<p>
-  <b>Permissions</b><br />
-  <%%
-    @user_group.permissions.each do |perm|
-  %>
-      <%%= perm.name %><br/>
-  <%%
-    end
-  %>
-</p>
-<p>
-	<b>Users in user group:</b><br />
-	<%%
-	  @user_group.all_users.each do |user|
-	%>
-	    <%%= link_to_or_show(user.full_name, <%= namespace.blank? ? 'user' : "#{namespace}_user_path(user)" %>) %><br/>
-	<%%
-    end
-	%>
-</p>
-<%% unless Lockdown::System.has_user_group?(@user_group) %>
-  <%%= link_to 'Edit', <%= namespace.blank? ? 'edit_user_group_path(@user_group)' : "edit_#{namespace}_user_group_path(@user_group)" %> %> |
-<%% end %>
-<%%= link_to 'Back', <%= namespace.blank? ? 'user_groups_path' : "#{namespace}_user_groups_path" %> %>

data/rails_generators/lockdown/templates/app/views/users/edit.html.erb DELETED Viewed

@@ -1,51 +0,0 @@
-<h1>Editing User</h1>
-<%% form_for(<%= namespace.blank? ? "@user" : "[:#{namespace}, @user]" %>) do |f| %>
-  <%%= f.error_messages %>
-  <p>
-    <b>First name</b><br />
-    <%%= f.text_field :first_name %>
-  </p>
-  <p>
-    <b>Last name</b><br />
-    <%%= f.text_field :last_name %>
-  </p>
-  <p>
-    <b>Email</b><br />
-    <%%= f.text_field :email %>
-  </p>
-  <p>
-  	<b>Login</b><br />
-    <%%= f.text_field :login %>
-  </p>
-  <p>
-    <b>Password</b><br />
-    <%%= f.password_field :password %>
-  </p>
-  <p>
-    <b>Password confirmation</b><br />
-    <%%= f.password_field :password_confirmation %>
-  </p>
-  <p>
-    <b>User Groups</b><br />
-    <ul style="list-style: none;">
-      <%%
-        @user_groups_for_user.each_with_index do |ug,i|
-          input_id = "ug_#{ug.id}"
-          checked = (@user.user_group_ids.include?(ug.id) ? "checked" : "")
-      %>
-          <li id="li_<%%= input_id %>">
-            <label for="<%%= input_id %>">
-            <input id="<%%= input_id %>" name="<%%= input_id %>" type="checkbox" <%%= checked %>/>&nbsp;&nbsp;<%%= ug.name %>
-            </label>
-          </li>
-      <%%
-        end
-      %>
-    </ul>
-  </p>
-  <p> <%%= f.submit "Update" %> </p>
-<%% end %>
-<%%= link_to 'Show', <%= namespace.blank? ? "user_path(@user)" : "#{namespace}_user_path(@user)" %> %> |
-<%%= link_to 'Back', <%= namespace.blank? ? "users_path" : "#{namespace}_users_path" %> %>

data/rails_generators/lockdown/templates/app/views/users/index.html.erb DELETED Viewed

@@ -1,22 +0,0 @@
-<h1>Listing Users</h1>
-<table>
-  <tr>
-    <th>Login</th>
-    <th>Name</th>
-  </tr>
-<%% @users.each do |user| %>
-  <tr>
-    <td><%%=h user.login %></td>
-    <td><%%=h user.full_name %></td>
-    <td><%%= link_to 'Show', <%= namespace.blank? ? "user_path(user)" : "#{namespace}_user_path(user)" %> %></td>
-    <td><%%= link_to 'Edit', <%= namespace.blank? ? "edit_user_path(user)" : "edit_#{namespace}_user_path(user)" %> %></td>
-    <td><%%= link_to 'Destroy', <%= namespace.blank? ? "user_path(user)" : "#{namespace}_user_path(user)" %>, :confirm => 'Are you sure?', :method => :delete %></td>
-  </tr>
-<%% end %>
-</table>
-<br />
-<%%= link_to 'New User', <%= namespace.blank? ? "new_user_path" : "new_#{namespace}_user_path" %> %>

data/rails_generators/lockdown/templates/app/views/users/new.html.erb DELETED Viewed

@@ -1,50 +0,0 @@
-<h1>New User</h1>
-<%% form_for(<%= namespace.blank? ? "@user" : "[:#{namespace}, @user]" %>) do |f| %>
-  <%%= f.error_messages %>
-  <p>
-    <b>First name</b><br />
-    <%%= f.text_field :first_name %>
-  </p>
-  <p>
-    <b>Last name</b><br />
-    <%%= f.text_field :last_name %>
-  </p>
-  <p>
-    <b>Email</b><br />
-    <%%= f.text_field :email %>
-  </p>
-  <p>
-  	<b>Login</b><br />
-    <%%= f.text_field :login %>
-  </p>
-  <p>
-    <b>Password</b><br />
-    <%%= f.password_field :password %>
-  </p>
-  <p>
-    <b>Password confirmation</b><br />
-    <%%= f.password_field :password_confirmation %>
-  </p>
-  <p>
-    <b>User Groups</b><br />
-    <ul style="list-style: none;">
-      <%%
-        @user_groups_for_user.each_with_index do |ug,i|
-          input_id = "ug_#{ug.id}"
-          checked = (@user.user_group_ids.include?(ug.id) ? "checked" : "")
-      %>
-          <li id="li_<%%= input_id %>">
-            <label for="<%%= input_id %>">
-            <input id="<%%= input_id %>" name="<%%= input_id %>" type="checkbox" <%%= checked %>/>&nbsp;&nbsp;<%%= ug.name %>
-            </label>
-          </li>
-      <%%
-        end
-      %>
-    </ul>
-  </p>
-  <p> <%%= f.submit "Create" %> </p>
-<%% end %>
-<%%= link_to 'Back', <%= namespace.blank? ? "users_path" : "#{namespace}_users_path" %> %>

data/rails_generators/lockdown/templates/app/views/users/show.html.erb DELETED Viewed

@@ -1,33 +0,0 @@
-<h1>Showing User</h1>
-<p>
-  <b>First name</b><br />
-  <%%= h @user.first_name %>
-</p>
-<p>
-  <b>Last name</b><br />
-  <%%= h @user.last_name %>
-</p>
-<p>
-  <b>Email</b><br />
-  <%%= h @user.email %>
-</p>
-<p>
-	<b><span>L</span>ogin</b><br />
-  <%%= h @user.login %>
-</p>
-<p>
-  <b>User Groups</b><br />
-  <ul style="list-style: none;">
-    <%%
-      @user.user_groups.each do |ug|
-    %>
-       <%%= h ug.name %> <br/>
-    <%%
-      end
-    %>
-  </ul>
-</p>
-<%%= link_to 'Edit', <%= namespace.blank? ? "edit_user_path(@user)" : "edit_#{namespace}_user_path(@user)" %> %> |
-<%%= link_to 'Back', <%= namespace.blank? ? "users_path" : "#{namespace}_users_path" %> %>

data/rails_generators/lockdown/templates/config/initializers/lockit.rb DELETED Viewed

	@@ -1 +0,0 @@
1	- require 'lockdown'

data/rails_generators/lockdown/templates/db/migrate/create_admin_user.rb DELETED Viewed

@@ -1,17 +0,0 @@
-class CreateAdminUser < ActiveRecord::Migration
-  def self.up
-		# TODO: Change the password
-    u = User.create(:password => "password",
-                    :password_confirmation => "password",
-                    :first_name => "Administrator",
-                    :last_name => "User",
-                    :email => "administrator@a.com",
-                    :login => "admin")
-		Lockdown::System.make_user_administrator(u)
-  end
-  def self.down
-    #Nothing to see here...
-	end
-end

data/rails_generators/lockdown/templates/db/migrate/create_permissions.rb DELETED Viewed

@@ -1,19 +0,0 @@
-class CreatePermissions < ActiveRecord::Migration
-  def self.up
-    create_table :permissions do |t|
-      t.string :name
-      t.timestamps
-    end
-		create_table :permissions_user_groups, :id => false do |t|
-      t.integer :permission_id
-      t.integer :user_group_id
-    end
-  end
-  def self.down
-		drop_table :permissions_user_groups
-    drop_table :permissions
-  end
-end

data/rails_generators/lockdown/templates/db/migrate/create_profiles.rb DELETED Viewed

@@ -1,26 +0,0 @@
-class CreateProfiles < ActiveRecord::Migration
-  def self.up
-    create_table :profiles do |t|
-      t.string :first_name
-      t.string :last_name
-      t.string :email
-      t.integer :updated_by
-      t.boolean :is_disabled
-      t.timestamps
-    end
-		# The System profile is used as the updated_by reference when records
-    # are created programatically and the responsible user cannot be determined
-    # or is simply not available.
-		# TODO: Change email address
-		Profile.create(:first_name => "System",
-										:last_name => "User",
-										:email => "system@a.com")
-  end
-  def self.down
-    drop_table :profiles
-  end
-end

data/rails_generators/lockdown/templates/db/migrate/create_user_groups.rb DELETED Viewed

@@ -1,19 +0,0 @@
-class CreateUserGroups < ActiveRecord::Migration
-  def self.up
-    create_table :user_groups do |t|
-      t.string :name
-      t.timestamps
-    end
-    create_table :user_groups_users, :id => false do |t|
-      t.integer :user_group_id
-      t.integer :user_id
-    end
-  end
-  def self.down
-		drop_table :user_groups_users
-    drop_table :user_groups
-  end
-end

data/rails_generators/lockdown/templates/db/migrate/create_users.rb DELETED Viewed

@@ -1,17 +0,0 @@
-class CreateUsers < ActiveRecord::Migration
-  def self.up
-    create_table :users do |t|
-      t.string :login
-      t.string :crypted_password
-      t.string :salt
-      t.integer :profile_id
-      t.integer :updated_by
-      t.timestamps
-    end
-  end
-  def self.down
-    drop_table :users
-  end
-end

data/rails_generators/lockdown/templates/lib/lockdown/README DELETED Viewed

@@ -1,42 +0,0 @@
-#
-#                           !!!!IMPORTANT!!!!
-#
-#*** MUST define a current_user method that will return the current user object
-#
-#*** MUST add call to add_lockdown_session_values to your login method
-#
-#*** MAY NEED to add call to reset_lockdown_session to your logout method.
-# ** Not needed if your authentication system resets the session
-#
-# Definitely need to use the user_group and permission models.  The lockdown
-# generator will provide those for you.  Just add the following to your user
-# model:
-#   has_and_belongs_to_many :user_groups
-#
-# That's it!
-#
-#
-#                       ~~~~Method Descriptions~~~~
-# The Lockdown gem defines these session methods:
-#
-# current_user_id: returns the id of the current_user
-#
-# logged_in? : returns true if current_user_id > 0
-#
-# current_user_is_admin?: returns true if user is assigned
-# administrator rights.
-#
-# reset_lockdown_session: This will nil the following session values:
-#   current_user_id
-#   access_rights
-#   expiry_time
-#
-# current_user_access_in_group?(grp):  grp is a symbol referencing a
-# Lockdown::UserGroups method such as :registered_users
-# Will return true if the session[:access_rights] contain at
-# least one match to the access_right list associated to the group
-#
-# If you want access to any of these methods in your view, just add them
-# as helpers in your controller (application controller for global use).
-#