lucy_cms 0.0.1

data/app/models/cms_snippet.rb

@@ -0,0 +1,70 @@
+class CmsSnippet < ActiveRecord::Base
+  
+  # -- Relationships --------------------------------------------------------
+  belongs_to :cms_site
+  belongs_to :cms_user
+
+  # -- Callbacks ------------------------------------------------------------
+  after_save    :clear_cached_page_content
+  after_destroy :clear_cached_page_content
+  
+  # -- Validations ----------------------------------------------------------
+  validates :cms_site_id,
+    :presence   => true
+  validates :label,
+    :presence   => true
+  validates :slug,
+    :presence   => true,
+    :uniqueness => { :scope => :cms_site_id },
+    :format     => { :with => /^\w[a-z0-9_-]*$/i }
+    
+  # -- Class Methods --------------------------------------------------------
+  def self.content_for(slug)
+    (s = find_by_slug(slug)) ? s.content : ''
+  end
+  
+  def self.initialize_or_find(cms_page, slug)
+    load_for_slug(cms_page.cms_site, slug) || new(:slug => slug)
+  end
+  
+  # Attempting to initialize snippet object from yaml file that is found in config.seed_data_path
+  def self.load_from_file(site, name)
+    return nil if LucyCMS.config.seed_data_path.blank?
+    file_path = "#{LucyCMS.config.seed_data_path}/#{site.hostname}/snippets/#{name}.yml"
+    return nil unless File.exists?(file_path)
+    attributes = YAML.load_file(file_path).symbolize_keys!
+    new(attributes)
+  rescue
+    raise "Failed to load from #{file_path}"
+  end
+  
+  # Wrapper around load_from_file and find_by_slug
+  # returns layout object if loaded / found
+  def self.load_for_slug!(site, slug)
+    if LucyCMS.configuration.seed_data_path
+      load_from_file(site, slug)
+    else
+      # FIX: This a bit odd... Snippet is used as a tag, so sometimes there's no site scope
+      # being passed. So we're enforcing this only if it's found. Need to review.
+      conditions = site ? {:conditions => {:cms_site_id => site.id}} : {}
+      find_by_slug(slug, conditions)
+    end || raise(ActiveRecord::RecordNotFound, "CmsSnippet with slug: #{slug} cannot be found")
+  end
+  
+  # Non-blowing-up version of the method above
+  def self.load_for_slug(site, slug)
+    load_for_slug!(site, slug) 
+  rescue ActiveRecord::RecordNotFound
+    nil
+  end
+  
+protected
+  
+  # Note: This might be slow. We have no idea where the snippet is used, so
+  # gotta reload every single page. Kinda sucks, but might be ok unless there
+  # are hundreds of pages.
+  def clear_cached_page_content
+    CmsPage.all.each{ |page| page.save! }
+  end
+  
+end

data/app/models/cms_upload.rb

@@ -0,0 +1,19 @@
+class CmsUpload < ActiveRecord::Base
+
+Paperclip::Attachment.interpolations[:cms_upload_dir_label] = proc do |attachment, style|
+  attachment.instance.cms_upload_dir_label
+end
+# -- AR Extensions --------------------------------------------------------
+  has_attached_file :file,
+                    :url => '/common/:cms_upload_dir_label/:basename.:extension',
+                    :path => Rails.public_path + "/common/:cms_upload_dir_label/:basename.:extension"
+  
+  # -- Relationships --------------------------------------------------------
+  belongs_to :cms_upload_dir
+  belongs_to :cms_user
+  
+  # -- Validations ----------------------------------------------------------
+  validates :cms_upload_dir_id, :presence => true
+  validates_attachment_presence :file
+  
+end

data/app/models/cms_upload_dir.rb

@@ -0,0 +1,11 @@
+class CmsUploadDir < ActiveRecord::Base
+  belongs_to :cms_site
+  belongs_to :cms_user
+  has_many :cms_uploads,  :dependent => :destroy
+
+  validates :label,
+    :presence   => true,
+    :uniqueness => true,
+    :format     => { :with => /^[^\<\>\/\*\\\? ]*$/ }
+
+end

data/app/models/cms_user.rb

@@ -0,0 +1,93 @@
+class CmsUser < ActiveRecord::Base
+
+  validates :login,
+    :presence   => true,
+    :uniqueness => true
+
+  validates :first_name,
+    :presence   => true
+
+  validates :last_name,
+    :presence   => true
+
+  @cms_site = CmsSite.first
+  
+  unless @cms_site.nil?
+  if @cms_site.authentication != 'LDAP'
+    attr_accessor :password_confirmation
+    validates_confirmation_of :password
+
+    validates :password,
+      :presence => true,
+      :on       =>  :create
+
+    # 'password' is a virtual attribute
+    def password
+      @password
+    end
+
+    def password=(pwd)
+      @password = pwd
+      return if pwd.blank?
+      create_new_salt
+      self.hashed_password = CmsUser.encrypted_password(self.password, self.salt)
+    end
+  end
+  end
+ 
+  def full_name
+    [first_name, last_name].join(' ')
+  end
+
+  def self.authenticate(login, password)
+
+    if @cms_site.authentication == 'LDAP'
+      username = login
+
+      if (password.empty?) then
+        return nil
+      end
+
+      ldap = Net::LDAP.new(:host => @cms_site.ldap_hostname, :base => @cms_site.ldap_base_DN)
+      filter = Net::LDAP::Filter.eq(@cms_site.ldap_uid, login)
+      ldap.search(:filter => filter) {|entry| login = entry.dn}
+      ldap.auth(login, password)
+
+      if ldap.bind
+        user = CmsUser.find_by_login_and_disabled(username, false) # need to check if user is in the database and not disabled
+        if (user)
+          return user
+        else
+          #user is in LDAP but not in local database
+          return nil
+        end
+      else
+        #authentication failed
+        return nil
+      end
+    else
+      user= self.find_by_login(login)
+      if user
+        expected_password = encrypted_password(password, user.salt)
+        if user.hashed_password != expected_password
+          user = nil
+        end
+      end
+      user
+    end
+
+rescue Net::LDAP::LdapError
+  end
+ 
+  private
+
+  def create_new_salt
+    self.salt = self.object_id.to_s + rand.to_s
+  end
+
+  def self.encrypted_password(password,salt)
+    string_to_hash = password + "LucyCMS" + salt
+    Digest::SHA1.hexdigest(string_to_hash)
+  end
+
+end

data/app/views/cms_admin/layouts/_form.html.erb

@@ -0,0 +1,10 @@
+<%= form.hidden_field :cms_user_id, :value => @cms_current_user.id %>
+<%= form.text_field :label, :label => 'Layout Name', :id => (@cms_layout.new_record?? 'slugify' : nil)%>
+<%= form.text_field :slug, :id => 'slug' %>
+<% if (options = CmsLayout.options_for_select(@cms_site, @cms_layout)).present? %>
+  <%= form.select :parent_id, [['---- Select Parent Layout ----', nil]] + options %>
+<% end %>
+
+<%= form.text_area :content, :class => 'code' %>
+<%= form.text_area :css, :class => 'code_css' %>
+<%= form.text_area :js, :class => 'code_js' %>

data/app/views/cms_admin/layouts/_index_branch.html.erb

@@ -0,0 +1,24 @@
+<% cms_layout ||= index_branch %>
+
+<li id='cms_layout_<%= cms_layout.id %>'>
+  <div class='item'>
+    <div class='icon'></div>
+    <div class='action_links'>
+      <%= link_to 'Add Child Layout', new_cms_admin_layout_path(:parent_id => cms_layout.id) %>
+      <%= link_to 'Edit', edit_cms_admin_layout_path(cms_layout) %>
+      <%= link_to 'Delete', cms_admin_layout_path(cms_layout), :method => :delete, :confirm => 'Are you sure?' %>
+    </div>
+    <div class='label'>
+      <%= link_to cms_layout.label, edit_cms_admin_layout_path(cms_layout) %>
+      <div class='sublabel'>
+        <%= link_to cms_layout.slug, edit_cms_admin_layout_path(cms_layout) %><br>
+        <div style='float:right'>Last updated by: <%=cms_layout.cms_user.full_name%> on <%=cms_layout.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+      </div>
+    </div>
+  </div>
+  <% if cms_layout.children.present? %>
+    <ul>
+      <%= render :partial => 'index_branch', :collection => cms_layout.children %>
+    </ul>
+  <% end %>
+</li>

data/app/views/cms_admin/layouts/edit.html.erb

@@ -0,0 +1,6 @@
+<h1> Editing Layout </h1>
+
+<%= cms_form_for @cms_layout, :url => {:action => :update} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Update Layout' %>
+<% end %>

data/app/views/cms_admin/layouts/index.html.erb

@@ -0,0 +1,6 @@
+<%= link_to span_tag('Create New Layout'), new_cms_admin_layout_path, :class => 'big button' %>
+<h1>Layouts</h1>
+
+<ul class='list'>
+  <%= render :partial => 'index_branch', :collection => @cms_layouts %>
+</ul>

data/app/views/cms_admin/layouts/new.html.erb

@@ -0,0 +1,6 @@
+<h1> New Layout </h1>
+
+<%= cms_form_for @cms_layout, :url => {:action => :create} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Create Layout' %>
+<% end %>

data/app/views/cms_admin/pages/_form.html.erb

@@ -0,0 +1,37 @@
+<% content_for :right_column do %>
+  <div id='page_save' class='box'>
+    <label>
+      <input type='checkbox'/>
+      Published
+    </label>
+    <a class='big button' href='#'></a>
+  </div>
+<% end %>
+
+<%= form.hidden_field :cms_user_id, :value => @cms_current_user.id %>
+<%= form.text_field :label, :id => (@cms_page.new_record?? 'slugify' : nil) %>
+
+<div class='page_form_extras'>
+  <% unless @cms_site.cms_pages.count == 0 || @cms_site.cms_pages.root == @cms_page%>
+    <%= form.text_field :slug, :id => 'slug' %>
+  <% end %>
+  <% if (options = CmsLayout.options_for_select(@cms_site)).present? %>
+    <%= form.select :cms_layout_id, options, {}, 'data-page-id' => @cms_page.id.to_i, :label => 'Layout' %>
+  <% end %>
+  <% if (options = CmsPage.options_for_select(@cms_site, @cms_page)).present? %>
+    <%= form.select :parent_id, options %>
+  <% end %>
+  <% if (options = CmsPage.options_for_select(@cms_site, @cms_page, nil, 0, false)).present? %>
+    <%= form.select :target_page_id, options, :include_blank => true, :label => 'Redirect To Page' %>
+  <% end %>
+  <%= cms_hook :page_form, :object => form %>
+</div>
+
+<%= render :partial => 'form_blocks' %>
+
+<%= form.simple_field nil, nil, :class => 'submit_element' do %>
+  <%= form.check_box :is_published, :disable_builder => true %>
+  <%= form.label_for :is_published, :label => 'Published' %>
+  <%= form.submit @cms_page.new_record?? 'Create Page' : 'Update Page', :disable_builder => true %>
+  <%= form.submit 'Preview', :name => 'preview', :id => 'cms_page_preview', :disable_builder => true %>
+<% end %>

data/app/views/cms_admin/pages/_form_blocks.html.erb

@@ -0,0 +1,7 @@
+<div id='form_blocks'>
+  <%= fields_for :cms_blocks, :builder => LucyCMS::FormBuilder do |cms_blocks| %>
+    <% @cms_page.cms_tags(true).each do |tag| %>
+      <%= cms_blocks.send(tag.class.name.underscore.downcase.idify, tag)%>
+    <% end %>
+  <% end %>
+</div>

data/app/views/cms_admin/pages/_index_branch.html.erb

@@ -0,0 +1,40 @@
+<% 
+  cms_page    ||= index_branch 
+  has_children  = cms_page.children.present?
+  has_siblings  = cms_page.siblings.present?
+  branch_open   = (session[:cms_page_tree] || []).member?(cms_page.id.to_s) || cms_page.root?
+%>
+
+<li id='<%= dom_id(cms_page) %>'>
+  <div class='item'>
+    <div class='toggle <%= 'open' if branch_open %>'>
+      <%= 
+        if has_children && !cms_page.root?
+          link_to span_tag('toggle'), toggle_branch_cms_admin_page_path(cms_page), :remote => true
+        end
+      %>
+    </div>
+    <div class='icon'>
+      <% if has_siblings %>
+        <div class='dragger'><span>drag</span></div>
+      <% end %>
+    </div>
+    <div class='action_links'>
+      <%= link_to 'Add Child Page', new_cms_admin_page_path(:parent_id => cms_page.id) %>
+      <%= link_to 'Edit', edit_cms_admin_page_path(cms_page) %>
+      <%= link_to 'Delete', cms_admin_page_path(cms_page), :method => :delete, :confirm => 'Are you sure?' %>
+    </div>
+    <div class='label'>
+      <%= link_to cms_page.label, edit_cms_admin_page_path(cms_page) %>
+      <div class='sublabel'>
+        <%= link_to cms_page.url, cms_page.full_path, :target => '_blank' %><br>
+        <div style='float:right'>Last updated by: <%=cms_page.cms_user.full_name%> on <%=cms_page.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+      </div>
+    </div>
+  </div>
+  <% if has_children && branch_open %>
+    <ul>
+      <%= render :partial => 'index_branch', :collection => cms_page.children %>
+    </ul>
+  <% end %>
+</li>

data/app/views/cms_admin/pages/edit.html.erb

@@ -0,0 +1,5 @@
+<h1> Editing Page </h1>
+
+<%= cms_form_for @cms_page, :url => {:action => :update} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+<% end %>

data/app/views/cms_admin/pages/form_blocks.js.erb

@@ -0,0 +1,2 @@
+$('#form_blocks').replaceWith('<%= escape_javascript(render(:partial => "form_blocks")) %>');
+$.CMS.enable_codemirror();

data/app/views/cms_admin/pages/index.html.erb

@@ -0,0 +1,6 @@
+<%= link_to span_tag('Create New Page'), new_cms_admin_page_path, :class => 'big button' %>
+<h1>Pages</h1>
+
+<ul class='list sortable'>
+  <%= render :partial => 'index_branch', :collection => @cms_pages %>
+</ul>

data/app/views/cms_admin/pages/new.html.erb

@@ -0,0 +1,5 @@
+<h1> New Page </h1>
+
+<%= cms_form_for @cms_page, :url => {:action => :create} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+<% end %>

data/app/views/cms_admin/pages/toggle_branch.js.erb

@@ -0,0 +1,11 @@
+var li = $('li#cms_page_<%=@cms_page.id%>');
+li.find('.item .toggle').first().toggleClass('open');
+
+<% if session[:cms_page_tree].member?(@cms_page.id.to_s) %>
+  if(!li.find('ul')[0]) {
+    li.append('<ul><%= escape_javascript(render :partial => "index_branch", :collection => @cms_page.children) %></ul>');
+    $.CMS.enable_sortable_list();
+  }
+<% else %>
+  li.find('ul').remove();
+<% end %>

data/app/views/cms_admin/sessions/new.html.erb

@@ -0,0 +1,12 @@
+<h1>Please Log in</h1>
+<%= form_tag cms_admin_session_path do %>
+      <div class='form_element text_field_element '>
+        <div class='label'><label for="cms_user_name">Username</label></div>
+        <div class='value'><input id="login" name="login" size="30" type="text" /></div>
+      </div>
+      <div class='form_element password_field_element '>
+        <div class='label'><label for="cms_user_name">Password</label></div>
+        <div class='value'><input id="password" name="password" size="30" type="password" /></div>
+      </div>
+  <div><%= submit_tag 'Login' %></div>
+<% end %>

data/app/views/cms_admin/sites/_form.html.erb

@@ -0,0 +1,16 @@
+<%= form.hidden_field :version,  :value => LucyCMS.config.version %>
+<%= form.text_field :label, :label => 'Title'%>
+<%= form.text_field :hostname, :label => 'Hostname<br>(www.example.com)' %>
+<div class='form_element radio_button_element '>
+  <div class='site_label'><label for="cms_site_authentication">Authentication</label></div>
+  <div class='site_value'>
+     <input id="cms_site_authentication_internal_database" name="cms_site[authentication]" type="radio" value="Internal" <%if @cms_site.authentication != 'ldap'%>checked<%end%> onclick="$('#ldap_fields').hide();" > Internal Database
+     &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+     <input id="auth_ldap" name="cms_site[authentication]" type="radio" value="LDAP" <%if @cms_site.authentication == 'LDAP'%>checked<%end%> onclick="$('#ldap_fields').show();"> LDAP
+  </div>        
+</div>
+<div id = "ldap_fields" <%if @cms_site.authentication != 'LDAP'%> style = "display:none;"<%end%>>        
+  <%= form.text_field :ldap_hostname, :label => 'LDAP Hostname<br>(ldap.example.com)' %>
+  <%= form.text_field :ldap_base_DN, :label => 'LDAP Base DN<br>(dc=example,dc=com)' %>
+  <%= form.text_field :ldap_uid, :label => 'LDAP User Id Attribute<br>(uid)' %>
+</div>

data/app/views/cms_admin/sites/edit.html.erb

@@ -0,0 +1,6 @@
+<h1> Edit Site </h1>
+
+<%= cms_site_form_for @cms_site, :url => {:action => :update} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Update Site' %>
+<% end %>

data/app/views/cms_admin/sites/new.html.erb

@@ -0,0 +1,6 @@
+<h1> Setup Site </h1>
+
+<%= cms_site_form_for @cms_site, :url => {:action => :create} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Setup Site' %>
+<% end %>

data/app/views/cms_admin/sites/setup.html.erb

@@ -0,0 +1,16 @@
+<h1>Setup</h1>
+<table border = 0 cellspacing=0 cellpadding=0>
+  <tr><td><b>Title:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.label %></td></tr>
+  <tr><td>&nbsp;</td></tr>
+  <tr><td><b>Hostname:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.hostname %></td></tr>
+  <tr><td>&nbsp;</td></tr>
+  <tr><td><b>Authentication:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.authentication %></td></tr>
+  <tr><td>&nbsp;</td></tr>
+  <% if @cms_site.authentication == 'LDAP' %>
+    <tr><td><b>LDAP Hostname:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.ldap_hostname %></td></tr>
+    <tr><td>&nbsp;</td></tr>
+    <tr><td><b>LDAP Base DN:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.ldap_base_DN %></td></tr>
+    <tr><td>&nbsp;</td></tr>
+    <tr><td><b>LDAP User ID Attibute:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</b></td><td><%= @cms_site.ldap_uid %></td></tr>
+  <% end %>
+</table>

data/app/views/cms_admin/snippets/_form.html.erb

@@ -0,0 +1,4 @@
+<%= form.hidden_field :cms_user_id, :value => @cms_current_user.id %>
+<%= form.text_field :label, :id => (@cms_snippet.new_record?? 'slugify' : nil) %>
+<%= form.text_field :slug, :id => 'slug' %>
+<%= form.text_area :content, :class => 'code' %>

data/app/views/cms_admin/snippets/edit.html.erb

@@ -0,0 +1,6 @@
+<h1> Editing Snippet </h1>
+
+<%= cms_form_for @cms_snippet, :url => {:action => :update} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Update Snippet' %>
+<% end %>

data/app/views/cms_admin/snippets/index.html.erb

@@ -0,0 +1,23 @@
+<%= link_to span_tag('Create New Snippet'), new_cms_admin_snippet_path, :class => 'big button' %>
+<h1>Snippets</h1>
+
+<ul class='list'>
+  <% @cms_snippets.each do |cms_snippet| %>
+    <li id='cms_snippet_<%= cms_snippet.id %>'>
+      <div class='item'>
+        <div class='icon'></div>
+        <div class='action_links'>
+          <%= link_to 'Edit', edit_cms_admin_snippet_path(cms_snippet) %>
+          <%= link_to 'Delete', cms_admin_snippet_path(cms_snippet), :method => :delete, :confirm => 'Are you sure?' %>
+        </div>
+        <div class='label'>
+          <%= link_to cms_snippet.label, edit_cms_admin_snippet_path(cms_snippet) %>
+          <div class='sublabel'>
+            <%= link_to cms_snippet.slug, edit_cms_admin_snippet_path(cms_snippet) %><br>
+            <div style='float:right'>Last updated by: <%=cms_snippet.cms_user.full_name%> on <%=cms_snippet.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+          </div>
+        </div>
+      </div>
+    </li>
+  <% end %>
+</ul>

data/app/views/cms_admin/snippets/new.html.erb

@@ -0,0 +1,6 @@
+<h1> New Snippet </h1>
+
+<%= cms_form_for @cms_snippet, :url => {:action => :create} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Create Snippet' %>
+<% end %>

data/app/views/cms_admin/upload_dirs/_file.html.erb

@@ -0,0 +1,15 @@
+<li id='<%= dom_id(file) %>'>
+  <div class='item'>
+    <div class='icon'></div>
+    <div class='action_links'>
+      <%= link_to 'Delete', uploads_destroy_cms_admin_upload_dir_path(file), :method => :delete, :remote => true, :confirm => 'Are you sure?' %>
+    </div>
+    <div class='label'>
+      <%= link_to file.file_file_name, file.file.url, :target => '_blank', :class => 'filename' %>
+      <div class='sublabel'>
+        <br>
+        <div style='float:right'>Last updated by: <%=file.cms_user.full_name %> on <%=file.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+      </div>
+    </div>
+  </div>
+</div>

data/app/views/cms_admin/upload_dirs/_form.html.erb

@@ -0,0 +1,2 @@
+<%= form.hidden_field :cms_user_id, :value => @cms_current_user.id %>
+<%= form.text_field :label, :label => 'Directory Name' %>

data/app/views/cms_admin/upload_dirs/conflict.html.erb

@@ -0,0 +1,12 @@
+<h1>Houston we have a problem</h1>
+
+<%= LucyCMS.config.cms_title %> uses a directory named <b><%= LucyCMS.config.cms_upload_directory %></b> to put all uploaded content in.  This directory is located in <b><%=Rails.public_path%></b>.<br>
+<br>
+Unfortunatly there is already a file named <b><%= LucyCMS.config.cms_upload_directory %></b> in this directory.<br>
+<br>
+This problem can be fixed in two ways:<br>
+<br>
+1. Delete or rename this file.<br>
+2. Edit the setting <i>config.cms_upload_directory</i> in the <b>LucyCMS.rb</b> file located in the <b>config/initializers/</b> directory to use a directory name that is not already in use.<br>
+<br>
+Sorry for the inconvenience

data/app/views/cms_admin/upload_dirs/index.html.erb

@@ -0,0 +1,23 @@
+<%= link_to span_tag('Create New Directory'), new_cms_admin_upload_dir_path, :class => 'big button' %>
+<h1>Upload Directories</h1>
+<b>Base Directory: /<%=LucyCMS.config.cms_upload_directory%></b><br>
+<br>
+<ul class='list'>
+  <% @cms_upload_dirs.each do |cms_upload_dir| %>
+    <li id='cms_upload_dir_<%= cms_upload_dir.id %>'>
+      <div class='item'>
+        <div class='icon'></div>
+        <div class='action_links'>
+          <%= link_to 'Delete', cms_admin_upload_dir_path(cms_upload_dir), :method => :delete, :confirm => 'Are you sure?' %>
+        </div>
+        <div class='label'>
+          <%= link_to cms_upload_dir.label, cms_admin_upload_dir_path(cms_upload_dir) %>
+          <div class='sublabel'>
+            <br>
+            <div style='float:right'>Created by: <%=cms_upload_dir.cms_user.full_name%> on <%=cms_upload_dir.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+          </div>
+        </div>
+      </div>
+    </li>
+  <% end %>
+</ul>

data/app/views/cms_admin/upload_dirs/new.html.erb

@@ -0,0 +1,6 @@
+<h1> New Directory </h1>
+
+<%= cms_form_for @cms_upload_dir, :url => {:action => :create} do |form| %>
+  <%= render :partial => 'form', :object => form %>
+  <%= form.submit 'Create Directory' %>
+<% end %>

data/app/views/cms_admin/upload_dirs/show.html.erb

@@ -0,0 +1,26 @@
+<div id='file_uploads' class='box'>
+  <div class='actions'>
+    <a id='uploader_button' href='#' class='big button'>Upload Files</a>
+  </div>
+</div>
+<h1>Directory: /<%=LucyCMS.config.cms_upload_directory%>/<%=@cms_upload_dir.label%></h1>
+
+<ul class='list' id = 'uploaded_files'>
+  <% @cms_uploads.each do |cms_upload| %>
+    <li id='cms_upload_<%= cms_upload.id %>'>
+      <div class='item'> 
+        <div class='icon'></div>
+        <div class='action_links'>
+          <%= link_to 'Delete', uploads_destroy_cms_admin_upload_dir_path(cms_upload), :method => :delete, :remote => true, :confirm => 'Are you sure?' %>
+        </div>
+        <div class='label'>
+          <%= link_to cms_upload.file_file_name, cms_upload.file.url, :target => '_blank', :class => 'filename' %>
+          <div class='sublabel'>
+            <br>
+            <div style='float:right'>Last updated by: <%=cms_upload.cms_user.full_name %> on <%=cms_upload.updated_at.strftime("%m/%d/%Y at %I:%M %p %Z") %></div>
+          </div>
+        </div>
+      </div>
+    </li>
+  <% end %>
+</ul>

data/app/views/cms_admin/upload_dirs/uploads_destroy.js.erb

@@ -0,0 +1,3 @@
+$("#<%= dom_id(@cms_upload) %>").fadeOut('slow', function(){
+  $(this).remove()
+})

data/app/views/cms_admin/users/_form.html.erb

@@ -0,0 +1,9 @@
+<%= form.text_field :login%>
+<%= form.text_field :first_name%>
+<%= form.text_field :last_name%>
+<% unless @cms_site.authentication == 'LDAP' %>
+  <%= form.password_field :password %>
+  <%= form.password_field :password_confirmation %>
+<% end %>
+<%= form.check_box :admin%>
+<%= form.check_box :disabled%>

data/app/views/cms_admin/users/_index_branch.html.erb

@@ -0,0 +1,16 @@
+<% cms_user ||= index_branch %>
+
+<li id='cms_user_<%= cms_user.id %>'>
+  <div class='item'>
+    <div class='icon'></div>
+    <div class='action_links'>
+      <%= link_to 'Edit', edit_cms_admin_user_path(cms_user) %>
+    </div>
+    <div class='label'>
+      <%= link_to cms_user.last_name + ', ' + cms_user.first_name, edit_cms_admin_user_path(cms_user) %>
+      <div class='sublabel'>
+        <%= cms_user.login %>
+      </div>
+    </div>
+  </div>
+</li>

data/app/views/cms_admin/users/change_password.html.erb

@@ -0,0 +1,14 @@
+<h1> Change Password</h1>
+<%= cms_form_for @cms_user, :url => {:action => :update_password} do |form| %>
+  <div class='form_element' >    
+    <div class='label'>
+      Login
+    </div>
+    <div class='value'>
+     <b><%= @cms_user.login %></b>
+    </div>
+  </div>
+  <%= form.password_field :password %>
+  <%= form.password_field :password_confirmation, :label => 'Repeat Password' %>
+  <%= form.submit 'Update Password' %>
+<% end %>