locomotive_cms 2.5.5 → 2.5.6.rc1

data/config/routes.rb

@@ -109,17 +109,16 @@ Rails.application.routes.draw do
 
   # magic urls
   match '/_admin'               => 'locomotive/public/pages#show_toolbar'
-  match ':locale/_admin'        => 'locomotive/public/pages#show_toolbar', locale: /(#{Locomotive.config.site_locales.join('|')})/
-  match ':locale/*path/_admin'  => 'locomotive/public/pages#show_toolbar', locale: /(#{Locomotive.config.site_locales.join('|')})/
   match '*path/_admin'          => 'locomotive/public/pages#show_toolbar'
 
   match '/_edit'                => 'locomotive/public/pages#edit'
-  match ':locale/_edit'         => 'locomotive/public/pages#edit', page_path: 'index', locale: /(#{Locomotive.config.site_locales.join('|')})/
-  match ':locale/*path/_edit'   => 'locomotive/public/pages#edit', locale: /(#{Locomotive.config.site_locales.join('|')})/
   match '*path/_edit'           => 'locomotive/public/pages#edit'
 
+  constraints Locomotive::Routing::PostContentEntryConstraint.new do
+    root to:                    'locomotive/public/content_entries#create',     path: 'index'
+    match '*path'               => 'locomotive/public/content_entries#create'
+  end
+
   root to:                      'locomotive/public/pages#show'
-  match ':locale'               => 'locomotive/public/pages#show', page_path: 'index', locale: /(#{Locomotive.config.site_locales.join('|')})/
-  match ':locale/*path'         => 'locomotive/public/pages#show', locale: /(#{Locomotive.config.site_locales.join('|')})/
   match '*path'                 => 'locomotive/public/pages#show'
 end

data/features/api/authorization/theme_assets.feature

@@ -72,8 +72,8 @@ Feature: Theme Assets
     Then the JSON response should be an array
     And the JSON response should have 3 entries
     And the JSON should have the following:
-      | 2/local_path    | "new-javascript.js"           |
-      | 2/content_type  | "javascript"                  |
+      | 1/local_path    | "new-javascript.js"           |
+      | 1/content_type  | "javascript"                  |
 
   Scenario: Creating new theme asset as a Designer
     Given I have a "designer" API token
@@ -95,8 +95,8 @@ Feature: Theme Assets
     Then the JSON response should be an array
     And the JSON response should have 3 entries
     And the JSON should have the following:
-      | 2/local_path    | "new-javascript.js"           |
-      | 2/content_type  | "javascript"                  |
+      | 1/local_path    | "new-javascript.js"           |
+      | 1/content_type  | "javascript"                  |
 
   Scenario: Creating new theme asset as an Author
     Given I have an "author" API token

data/features/public/contact_form.feature

@@ -1,4 +1,4 @@
-Feature: Contact form
+Feature: Contact form [Old way]
   As a visitor
   In order to keep in touch with the site
   I want to be able to send them a message

data/features/public/new_contact_form.feature

@@ -0,0 +1,95 @@
+Feature: Contact form [New way]
+  As a visitor
+  In order to keep in touch with the site
+  I want to be able to send them a message
+
+  Background:
+    Given I enable the CSRF protection for public submission requests
+    Given I have the site: "test site" set up
+    And I have a custom model named "Messages" with
+      | label       | type      | required    |
+      | Email       | string    | true        |
+      | Message     | text      | true        |
+      | Category    | select    | true        |
+    And I have "Design, Code, Business" as "Category" values of the "Messages" model
+    And I enable the public submission of the "Messages" model
+    And a page named "contact" with the template:
+      """
+      <html>
+        <head></head>
+        <body>
+          {% if message %}Thanks {{ message.email }}{% endif %}
+          {% model_form "messages" %}
+            <label for="email">E-Mail Address</label>
+            <input type="text" id="email" name="content[email]" />
+            {% if message.errors.email %}Email is required{% endif %}
+            <label for="category">Category</label>
+            <select id="category" name="content[category]">
+              <option value=""></option>
+              {% for name in contents.messages.category_options %}
+              <option value="{{ name }}">{{ name }}</option>
+              {% endfor %}
+            </select>
+            <label for="message">Message</label>
+            <textarea name="content[message]" id="message"></textarea>
+            <input name="submit" type="submit" id="submit" value="Submit" />
+          {% endmodel_form %}
+        </body>
+      </html>
+      """
+    And a page named "contact_with_redirection" with the template:
+      """
+      <html>
+        <head></head>
+        <body>
+          {% model_form "messages", success: "/success" %}
+            <label for="email">E-Mail Address</label>
+            <input type="text" id="email" name="content[email]" />
+            {% if message.errors.email %}Email is required{% endif %}
+            <label for="category">Category</label>
+            <select id="category" name="content[category]">
+              <option value=""></option>
+              {% for name in contents.messages.category_options %}
+              <option value="{{ name }}">{{ name }}</option>
+              {% endfor %}
+            </select>
+            <label for="message">Message</label>
+            <textarea name="content[message]" id="message"></textarea>
+            <input name="submit" type="submit" id="submit" value="Submit" />
+          {% endmodel_form %}
+        </body>
+      </html>
+      """
+    And a page named "success" with the template:
+      """
+      Thanks {{ message.email }}!
+      """
+
+  Scenario: Use the url of the current page for the contact form
+    When I view the rendered page at "/contact"
+    Then the rendered output should look like:
+      """
+      <form method="POST" enctype="multipart/form-data">
+      """
+
+  Scenario: Sending a message with success
+    When I view the rendered page at "/contact"
+    And I fill in "E-Mail Address" with "did@locomotivecms.com"
+    And I fill in "Message" with "LocomotiveCMS rocks"
+    And I select "Code" from "Category"
+    And I press "Submit"
+    Then I should see "Thanks did@locomotivecms.com"
+
+  Scenario: Display errors
+    When I view the rendered page at "/contact"
+    And I fill in "Message" with "LocomotiveCMS rocks"
+    And I press "Submit"
+    Then I should see "Email is required"
+
+  Scenario: Redirection after success
+    When I view the rendered page at "/contact_with_redirection"
+    And I fill in "E-Mail Address" with "estelle@locomotivecms.com"
+    And I fill in "Message" with "LocomotiveCMS rocks"
+    And I select "Code" from "Category"
+    And I press "Submit"
+    Then I should see "Thanks estelle@locomotivecms.com!"

data/features/public/pages.feature

@@ -14,7 +14,7 @@ Scenario: List all of them
   When I view the rendered page at "/all"
   Then the rendered output should look like:
     """
-    Home page, All, Page not found,
+    Home page, Page not found, All,
     """
 
 Scenario: Scoped listing
@@ -91,7 +91,7 @@ Scenario: link_to templatized page
   """
   Here is the title: "Hello world"
   """
-    
+
 Scenario: Default locale fallback
   Given the site "test site" has locales "en, es"
   And a page named "only-english" with the template:

data/features/step_definitions/relationships_steps.rb

@@ -1,67 +1,67 @@
 Given %r{^I have an? "([^"]*)" model which has many "([^"]*)"$} do |parent_model, child_model|
-  @parent_model = FactoryGirl.build(:content_type, :site => @site, :name => parent_model).tap do |ct|
-    ct.entries_custom_fields.build :label => 'Body', :type => 'string', :required => false
+  @parent_model = FactoryGirl.build(:content_type, site: @site, name: parent_model).tap do |ct|
+    ct.entries_custom_fields.build label: 'Body', type: 'string', required: false
     ct.save!
   end
-  @child_model = FactoryGirl.build(:content_type, :site => @site, :name => child_model).tap do |ct|
-    ct.entries_custom_fields.build :label => 'Body', :type => 'string', :required => false
-    ct.entries_custom_fields.build :label => parent_model.singularize.downcase, :type => 'belongs_to', :required => false, :class_name => @parent_model.entries_class_name
+  @child_model = FactoryGirl.build(:content_type, site: @site, name: child_model).tap do |ct|
+    ct.entries_custom_fields.build label: 'Body', type: 'string', required: false
+    ct.entries_custom_fields.build label: parent_model.singularize.downcase, type: 'belongs_to', required: false, class_name: @parent_model.entries_class_name
     ct.save!
   end
 
   @parent_model.entries_custom_fields.build({
-    :label          => child_model,
-    :type           => 'has_many',
-    :class_name     => @child_model.entries_class_name,
-    :inverse_of     => parent_model.singularize.downcase
+    label:          child_model,
+    type:           'has_many',
+    class_name:     @child_model.entries_class_name,
+    inverse_of:     parent_model.singularize.downcase
   })
 
   @parent_model.save
 end
 
 Given %r{^I set up a has_many relationship between "([^"]*)" and "([^"]*)"$} do |source_name, target_name|
-  source_model = @site.content_types.where(:name => source_name).first
-  target_model = @site.content_types.where(:name => target_name).first
+  source_model = @site.content_types.where(name: source_name).first
+  target_model = @site.content_types.where(name: target_name).first
 
   source_model.entries_custom_fields.build({
-    :label          => target_name,
-    :type           => 'has_many',
-    :class_name     => target_model.entries_class_name,
-    :inverse_of     => source_name.singularize.downcase
+    label:          target_name,
+    type:           'has_many',
+    class_name:     target_model.entries_class_name,
+    inverse_of:     source_name.singularize.downcase
   })
 
   source_model.save
 end
 
 Given %r{^I set up a many_to_many relationship between "([^"]*)" and "([^"]*)"$} do |first_name, last_name|
-  first_model = @site.content_types.where(:name => first_name).first
-  last_model  = @site.content_types.where(:name => last_name).first
+  first_model = @site.content_types.where(name: first_name).first
+  last_model  = @site.content_types.where(name: last_name).first
 
   first_model.entries_custom_fields.build({
-    :label          => last_name,
-    :type           => 'many_to_many',
-    :class_name     => last_model.entries_class_name,
-    :inverse_of     => first_name.pluralize.downcase
+    label:          last_name,
+    type:           'many_to_many',
+    class_name:     last_model.entries_class_name,
+    inverse_of:     first_name.pluralize.downcase
   })
 
   first_model.save
 
   last_model.entries_custom_fields.build({
-    :label          => first_name,
-    :type           => 'many_to_many',
-    :class_name     => first_model.entries_class_name,
-    :inverse_of     => last_name.pluralize.downcase
+    label:          first_name,
+    type:           'many_to_many',
+    class_name:     first_model.entries_class_name,
+    inverse_of:     last_name.pluralize.downcase
   })
 
   last_model.save
 end
 
 Given %r{^I attach the "([^"]*)" ([\S]*) to the "([^"]*)" ([\S]*)$} do |target_name, target_model_name, souce_name, source_model_name|
-  target_model  = @site.content_types.where(:name => target_model_name.pluralize.capitalize).first
-  source_model  = @site.content_types.where(:name => source_model_name.pluralize.capitalize).first
+  target_model  = @site.content_types.where(name: target_model_name.pluralize.capitalize).first
+  source_model  = @site.content_types.where(name: source_model_name.pluralize.capitalize).first
 
-  target_entry = target_model.entries.where(:_slug => target_name.permalink).first
-  source_entry = source_model.entries.where(:_slug => souce_name.permalink).first
+  target_entry = target_model.entries.where(_slug: target_name.permalink).first
+  source_entry = source_model.entries.where(_slug: souce_name.permalink).first
 
   source_entry.send(target_model_name.pluralize.downcase.parameterize('_').to_sym).push(target_entry)
 end
@@ -71,10 +71,11 @@ Then /^I should be able to view a paginated list of a has many association$/ do
   step %{I have an "Articles" model which has many "Comments"}
 
   # Create contents
-  article = @parent_model.entries.create!(:slug => 'parent', :body => 'Parent')
-  @child_model.entries.create!(:slug => 'one', :body => 'One', :article => article)
-  @child_model.entries.create!(:slug => 'two', :body => 'Two', :article => article)
-  @child_model.entries.create!(:slug => 'three', :body => 'Three', :article => article)
+  article = @parent_model.entries.create!(slug: 'parent', body: 'Parent')
+  @child_model.entries.create!(slug: 'one', body: 'One', article: article)
+  @child_model.entries.create!(slug: 'two', body: 'Two', article: article)
+  @child_model.entries.create!(slug: 'three', body: 'Three', article: article)
+  @child_model.entries.create!(slug: 'four', body: 'Four', article: article, _visible: false)
 
   # Create a page
   raw_template = %{
@@ -90,7 +91,7 @@ Then /^I should be able to view a paginated list of a has many association$/ do
   }
 
   # Create a page
-  FactoryGirl.create(:page, :site => @site, :slug => 'hello', :parent => @site.pages.root.first, :raw_template => raw_template)
+  FactoryGirl.create(:page, site: @site, slug: 'hello', parent: @site.pages.root.first, raw_template: raw_template)
 
   # The page should have the first two comments
   visit '/hello'
@@ -98,10 +99,12 @@ Then /^I should be able to view a paginated list of a has many association$/ do
   page.should have_content 'One'
   page.should have_content 'Two'
   page.should_not have_content 'Three'
+  page.should_not have_content 'Four'
 
   # The second page should have the last comment
   click_link '2'
   page.should_not have_content 'One'
   page.should_not have_content 'Two'
   page.should     have_content 'Three'
+  page.should_not have_content 'Four'
 end

data/lib/generators/locomotive/install/install_generator.rb

@@ -12,6 +12,8 @@ module Locomotive
 
       template 'carrierwave.rb', 'config/initializers/carrierwave.rb'
 
+      template 'devise.rb', 'config/initializers/devise.rb'
+
       template 'dragonfly.rb', 'config/initializers/dragonfly.rb'
 
       template 'mongoid.yml', 'config/mongoid.yml'

data/lib/generators/locomotive/install/templates/README

@@ -4,11 +4,12 @@ The Locomotive Engine has been correctly installed in your Rails application.
 
   1. Edit the main config files:
 
-    - config/initializers/locomotive.rb
     - config/initializers/carrierwave.rb
+    - config/initializers/devise.rb
     - config/initializers/dragonfly.rb
-    - config/mongoid.yml
+    - config/initializers/locomotive.rb
     - config/devise.yml
+    - config/mongoid.yml
     - config/routes.rb
 
   2. Launch the server

data/lib/generators/locomotive/install/templates/devise.rb

@@ -0,0 +1,175 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  config.secret_key = "d9eb5171c59a4c817f68b0de27b8c1e340c2341b52cdbc60d3083d4e8958532" \
+                      "18dcc5f589cafde048faec956b61f864b9b5513ff9ce29bf9e5d58b0f234f8e3b"
+
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in Devise::Mailer,
+  # note that it will be overwritten if you use your own mailer class with default "from" parameter.
+  config.mailer_sender = "please-change-me@config-initializers-devise.com"
+
+
+  # config.parent_controller = "ApplicationWithFakeEngine"
+  # Configure the class responsible to send e-mails.
+  # config.mailer = "Devise::Mailer"
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require "devise/orm/mongoid"
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating a user. By default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating a user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # You can also supply hash where the value is a boolean expliciting if authentication
+  # should be aborted or not if the value is not present. By default is empty.
+  # config.authentication_keys = [ :email ]
+
+  # Configure parameters from the request object used for authentication. Each entry
+  # given should be a request method and it will automatically be passed to
+  # find_for_authentication method and considered in your model lookup. For instance,
+  # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
+  # The same considerations mentioned for authentication_keys also apply to request_keys.
+  # config.request_keys = []
+
+  # Configure which authentication keys should be case-insensitive.
+  # These keys will be downcased upon creating or modifying a user and when used
+  # to authenticate or find a user. Default is :email.
+  config.case_insensitive_keys = [ :email ]
+
+  # Configure which authentication keys should have whitespace stripped.
+  # These keys will have whitespace before and after removed upon creating or
+  # modifying a user and when used to authenticate or find a user. Default is :email.
+  config.strip_whitespace_keys = [ :email ]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Basic Auth is enabled. False by default.
+  config.http_authenticatable = true
+
+  # If http headers should be returned for AJAX requests. True by default.
+  # config.http_authenticatable_on_xhr = true
+
+  # The realm used in Http Basic Authentication. "Application" by default.
+  # config.http_authentication_realm = "Application"
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+  # using other encryptors, it sets how many times you want the password re-encrypted.
+  config.stretches = Rails.env.test? ? 1 : 10
+
+  # ==> Configuration for :confirmable
+  # The time you want to give your user to confirm their account. During this time
+  # they will be able to access your application without confirming. Default is nil.
+  # When allow_unconfirmed_access_for is zero, the user won't be able to sign in without confirming.
+  # You can use this to let your user access some features of your application
+  # without confirming the account, but blocking it after a certain period
+  # (ie 2 days).
+  # config.allow_unconfirmed_access_for = 2.days
+
+  # Defines which key will be used when confirming an account
+  # config.confirmation_keys = [ :email ]
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # If true, a valid remember token can be re-used between multiple browsers.
+  # config.remember_across_browsers = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # ==> Configuration for :validatable
+  # Range for password length. Default is 8..128.
+  # config.password_length = 8..128
+
+  # Regex to use to validate the email address
+  # config.email_regexp = /^([\w\.%\+\-]+)@([\w\-]+\.)+([\w]{2,})$/i
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again. Default is 30 minutes.
+  # config.timeout_in = 30.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which key will be used when locking and unlocking an account
+  # config.unlock_keys = [ :email ]
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # ==> Configuration for :recoverable
+  #
+  # Defines which key will be used when recovering the password for an account
+  # config.reset_password_keys = [ :email ]
+
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 2.hours
+
+  # Setup a pepper to generate the encrypted password.
+  config.pepper = "d142367154e5beacca404b1a6a4f8bc52c6fdcfa3ccc3cf8eb49f3458a688ee6ac3b9fae488432a3bfca863b8a90008368a9f3a3dfbe5a962e64b6ab8f3a3a1a"
+
+  # ==> Configuration for :token_authenticatable
+  # Defines name of the authentication token params key
+  # config.token_authentication_key = :auth_token
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering "sessions/new", it will first check for
+  # "users/sessions/new". It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = false
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes (usually :user).
+  # config.default_scope = :user
+
+  # Configure sign_out behavior.
+  # Sign_out action can be scoped (i.e. /users/sign_out affects only :user scope).
+  # The default is true, which means any logout action will sign out all active scopes.
+  # config.sign_out_all_scopes = true
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists. Default is [:html]
+  # config.navigational_formats = [:html, :iphone]
+
+  # The default HTTP method used to sign out a resource. Default is :get.
+  # config.sign_out_via = :get
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not supported by Devise, or
+  # change the failure app, you can configure them inside the config.warden block.
+  #
+  # config.warden do |manager|
+  #   manager.failure_app = AnotherApp
+  #   manager.default_strategies(scope: :user).unshift :some_external_strategy
+  # end
+end