openbill 0.1.4 → 0.1.5
Sign up to get free protection for your applications and to get access to all the features.
- data/.actionScriptProperties +26 -0
- data/.flexProperties +2 -0
- data/.gitignore +4 -0
- data/.loadpath +7 -0
- data/.project +24 -0
- data/CONTRIBUTORS +6 -0
- data/INSTALL +11 -0
- data/LICENSE +20 -20
- data/README +63 -63
- data/Rakefile +51 -0
- data/VERSION +1 -0
- data/app/controllers/application.rb +49 -0
- data/app/controllers/carts_controller.rb +226 -0
- data/app/controllers/products_controller.rb +19 -0
- data/app/controllers/sessions_controller.rb +39 -0
- data/app/controllers/settings_controller.rb +15 -0
- data/app/helpers/application_helper.rb +3 -0
- data/app/helpers/carts_helper.rb +5 -0
- data/app/helpers/products_helper.rb +2 -0
- data/app/helpers/sessions_helper.rb +2 -0
- data/app/helpers/settings_helper.rb +2 -0
- data/app/models/account.rb +16 -0
- data/app/models/billingcycle.rb +7 -0
- data/app/models/currency.rb +5 -0
- data/app/models/emailtemplate.rb +5 -0
- data/app/models/invoice.rb +13 -0
- data/app/models/invoicedetail.rb +8 -0
- data/app/models/option.rb +5 -0
- data/app/models/order.rb +7 -0
- data/app/models/orderdetail.rb +11 -0
- data/app/models/paymentgateway.rb +5 -0
- data/app/models/product.rb +10 -0
- data/app/models/registrar.rb +7 -0
- data/app/models/registrarlog.rb +6 -0
- data/app/models/role.rb +7 -0
- data/app/models/server.rb +5 -0
- data/app/models/serverlog.rb +6 -0
- data/app/models/setting.rb +6 -0
- data/app/models/tld.rb +9 -0
- data/app/models/transaction.rb +8 -0
- data/app/models/user.rb +68 -0
- data/app/models/user_mailer.rb +24 -0
- data/app/models/user_observer.rb +11 -0
- data/app/models/userfieldname.rb +8 -0
- data/app/models/userfieldvalue.rb +6 -0
- data/app/views/carts/_cart_details.html.erb +36 -0
- data/app/views/carts/_check_domain_availability.html.erb +7 -0
- data/app/views/carts/_loginbox.html.erb +33 -0
- data/app/views/carts/_new_domain_available.html.erb +14 -0
- data/app/views/carts/_new_domain_not_available.html.erb +10 -0
- data/app/views/carts/_orderinfobox.html.erb +1 -0
- data/app/views/carts/_product_details.html.erb +43 -0
- data/app/views/carts/_products_list.html.erb +22 -0
- data/app/views/carts/_signupbox.html.erb +51 -0
- data/app/views/carts/checkout.html.erb +22 -0
- data/app/views/carts/customer.html.erb +26 -0
- data/app/views/carts/order.html.erb +17 -0
- data/app/views/layouts/default.html.erb +43 -0
- data/app/views/user_mailer/activation.erb +3 -0
- data/app/views/user_mailer/signup_notification.erb +8 -0
- data/config/boot.rb +109 -0
- data/config/database.yml +20 -0
- data/config/environment.rb +76 -0
- data/config/environments/development.rb +17 -0
- data/config/environments/production.rb +24 -0
- data/config/environments/test.rb +22 -0
- data/config/initializers/inflections.rb +10 -0
- data/config/initializers/mime_types.rb +5 -0
- data/config/initializers/new_rails_defaults.rb +17 -0
- data/config/initializers/site_keys.rb +38 -0
- data/config/locales/en.yml +2 -0
- data/config/routes.rb +31 -0
- data/db/migrate/20090429095737_create_settings.rb +28 -0
- data/db/migrate/20090429102507_create_users.rb +25 -0
- data/db/migrate/20090429113405_create_accounts.rb +12 -0
- data/db/migrate/20090430091300_create_roles.rb +14 -0
- data/db/migrate/20090430103415_create_products.rb +24 -0
- data/db/migrate/20090509144706_create_sessions.rb +16 -0
- data/db/migrate/20090518070457_create_billingcycles.rb +15 -0
- data/db/migrate/20090518105551_create_orders.rb +13 -0
- data/db/migrate/20090518105611_create_invoices.rb +17 -0
- data/db/migrate/20090518105912_create_orderdetails.rb +24 -0
- data/db/migrate/20090518105931_create_invoicedetails.rb +14 -0
- data/db/migrate/20090519051441_create_servers.rb +14 -0
- data/db/migrate/20090519051509_create_registrars.rb +13 -0
- data/db/migrate/20090519051536_create_paymentgateways.rb +13 -0
- data/db/migrate/20090519052025_create_tlds.rb +15 -0
- data/db/migrate/20090519070149_create_transactions.rb +17 -0
- data/db/migrate/20090519070225_create_registrarlogs.rb +16 -0
- data/db/migrate/20090519070248_create_serverlogs.rb +16 -0
- data/db/migrate/20090519071741_create_emailtemplates.rb +18 -0
- data/db/migrate/20090519083539_create_currencies.rb +18 -0
- data/db/migrate/20090522102336_create_userfieldnames.rb +16 -0
- data/db/migrate/20090522102401_create_userfieldvalues.rb +14 -0
- data/db/migrate/20090526092119_create_options.rb +14 -0
- data/html-template/AC_OETags.js +292 -0
- data/html-template/history/history.css +6 -0
- data/html-template/history/history.js +662 -0
- data/html-template/history/historyFrame.html +29 -0
- data/html-template/index.template.html +121 -0
- data/html-template/playerProductInstall.swf +0 -0
- data/lib/authenticated_system.rb +189 -0
- data/lib/authenticated_test_helper.rb +11 -0
- data/lib/tasks/empty +0 -0
- data/openbill.gemspec +787 -0
- data/pkg/openbill-0.0.0.gem +0 -0
- data/pkg/openbill-0.1.3.gem +0 -0
- data/pkg/openbill-0.1.4.gem +0 -0
- data/public/404.html +30 -0
- data/public/422.html +30 -0
- data/public/500.html +33 -0
- data/public/AC_OETags.js +292 -0
- data/public/admin.html +121 -0
- data/public/admin.swf +0 -0
- data/public/assets/LoadingUndefinedSkin.swf +0 -0
- data/public/assets/UndefinedPersonalSkinLoad.swf +0 -0
- data/public/assets/blanc.png +0 -0
- data/public/assets/botones/Boton_dis.png +0 -0
- data/public/assets/botones/PopUpButton.png +0 -0
- data/public/assets/botones/PopUpButton1.png +0 -0
- data/public/assets/botones/PopUpButton2.png +0 -0
- data/public/assets/botones/PopUpButton_0.png +0 -0
- data/public/assets/botones/PopUpButton_1.png +0 -0
- data/public/assets/botones/PopUpButton_2.png +0 -0
- data/public/assets/botones/PopUpButton_dis.png +0 -0
- data/public/assets/botones/PopUpMenuButton.png +0 -0
- data/public/assets/botones/PopUpMenuButton1.png +0 -0
- data/public/assets/botones/PopUpMenuButton2.png +0 -0
- data/public/assets/botones/PopUpMenuButton_0.png +0 -0
- data/public/assets/botones/PopUpMenuButton_1.png +0 -0
- data/public/assets/botones/PopUpMenuButton_2.png +0 -0
- data/public/assets/botones/PopUpMenuButton_dis.png +0 -0
- data/public/assets/botones/Scroll_barra.png +0 -0
- data/public/assets/botones/Scroll_barra1.png +0 -0
- data/public/assets/botones/Scroll_barra2.png +0 -0
- data/public/assets/botones/Scroll_down.png +0 -0
- data/public/assets/botones/Scroll_down1.png +0 -0
- data/public/assets/botones/Scroll_fondo.png +0 -0
- data/public/assets/botones/Scroll_icon.png +0 -0
- data/public/assets/botones/Scroll_up.png +0 -0
- data/public/assets/botones/Scroll_up1.png +0 -0
- data/public/assets/botones/TabNavigator.png +0 -0
- data/public/assets/botones/TabNavigator1.png +0 -0
- data/public/assets/botones/TabNavigator2.png +0 -0
- data/public/assets/botones/TabNavigator3.png +0 -0
- data/public/assets/botones/Thumbs.db +0 -0
- data/public/assets/botones/accordion_backround.png +0 -0
- data/public/assets/botones/accordion_barra.png +0 -0
- data/public/assets/botones/accordion_barra1.png +0 -0
- data/public/assets/botones/accordion_barra2.png +0 -0
- data/public/assets/botones/accordion_barra3.png +0 -0
- data/public/assets/botones/adelante.png +0 -0
- data/public/assets/botones/adelante1.png +0 -0
- data/public/assets/botones/adelante2.png +0 -0
- data/public/assets/botones/adelante_dis.png +0 -0
- data/public/assets/botones/atras.png +0 -0
- data/public/assets/botones/atras1.png +0 -0
- data/public/assets/botones/atras2.png +0 -0
- data/public/assets/botones/atras_dis.png +0 -0
- data/public/assets/botones/barra.png +0 -0
- data/public/assets/botones/barra_dis.png +0 -0
- data/public/assets/botones/barra_v.png +0 -0
- data/public/assets/botones/boton.jpg +0 -0
- data/public/assets/botones/boton.png +0 -0
- data/public/assets/botones/boton1.png +0 -0
- data/public/assets/botones/boton2.png +0 -0
- data/public/assets/botones/boton_classic.png +0 -0
- data/public/assets/botones/boton_classic1.png +0 -0
- data/public/assets/botones/boton_classic2.png +0 -0
- data/public/assets/botones/bullet.png +0 -0
- data/public/assets/botones/bullet1.png +0 -0
- data/public/assets/botones/bullet_V_dis.png +0 -0
- data/public/assets/botones/bullet_dis.png +0 -0
- data/public/assets/botones/bullet_v.png +0 -0
- data/public/assets/botones/bullet_v1.png +0 -0
- data/public/assets/botones/chekOff.png +0 -0
- data/public/assets/botones/chekOff1.png +0 -0
- data/public/assets/botones/chekOff2.png +0 -0
- data/public/assets/botones/chekOn.png +0 -0
- data/public/assets/botones/chekOn1.png +0 -0
- data/public/assets/botones/chekOn2.png +0 -0
- data/public/assets/botones/chek_dis.png +0 -0
- data/public/assets/botones/close.png +0 -0
- data/public/assets/botones/close1.png +0 -0
- data/public/assets/botones/close2.png +0 -0
- data/public/assets/botones/close_folder.png +0 -0
- data/public/assets/botones/colorPicker.png +0 -0
- data/public/assets/botones/colorPicker1.png +0 -0
- data/public/assets/botones/colorPicker2.png +0 -0
- data/public/assets/botones/colorPicker_blanco.png +0 -0
- data/public/assets/botones/colorPicker_blanco1.png +0 -0
- data/public/assets/botones/colorPicker_blanco2.png +0 -0
- data/public/assets/botones/colorPicker_dis.png +0 -0
- data/public/assets/botones/combo.png +0 -0
- data/public/assets/botones/combo1.png +0 -0
- data/public/assets/botones/combo2.png +0 -0
- data/public/assets/botones/combo_dis.png +0 -0
- data/public/assets/botones/dataIcon.png +0 -0
- data/public/assets/botones/dataIcon1.png +0 -0
- data/public/assets/botones/dataIcon2.png +0 -0
- data/public/assets/botones/dataIcon_dis.png +0 -0
- data/public/assets/botones/dataText.png +0 -0
- data/public/assets/botones/folder_close.png +0 -0
- data/public/assets/botones/folder_open.png +0 -0
- data/public/assets/botones/hoja.png +0 -0
- data/public/assets/botones/icon_down.png +0 -0
- data/public/assets/botones/icon_up.png +0 -0
- data/public/assets/botones/last_toggle.png +0 -0
- data/public/assets/botones/last_toggle1.png +0 -0
- data/public/assets/botones/last_toggle2.png +0 -0
- data/public/assets/botones/last_toggle3.png +0 -0
- data/public/assets/botones/numericStepper_Down.png +0 -0
- data/public/assets/botones/numericStepper_Down1.png +0 -0
- data/public/assets/botones/numericStepper_Down2.png +0 -0
- data/public/assets/botones/numericStepper_Down_dis.png +0 -0
- data/public/assets/botones/numericStepper_Text.png +0 -0
- data/public/assets/botones/numericStepper_Up.png +0 -0
- data/public/assets/botones/numericStepper_Up1.png +0 -0
- data/public/assets/botones/numericStepper_Up2.png +0 -0
- data/public/assets/botones/numericStepper_Up_dis.png +0 -0
- data/public/assets/botones/open_folder.png +0 -0
- data/public/assets/botones/prev_toggle.png +0 -0
- data/public/assets/botones/prev_toggle1.png +0 -0
- data/public/assets/botones/prev_toggle2.png +0 -0
- data/public/assets/botones/prev_toggle3.png +0 -0
- data/public/assets/botones/progress.png +0 -0
- data/public/assets/botones/progress_barra.png +0 -0
- data/public/assets/botones/progress_charning.png +0 -0
- data/public/assets/botones/progress_dis.png +0 -0
- data/public/assets/botones/radio.png +0 -0
- data/public/assets/botones/radio1.png +0 -0
- data/public/assets/botones/radio2.png +0 -0
- data/public/assets/botones/radio3.png +0 -0
- data/public/assets/botones/radio4.png +0 -0
- data/public/assets/botones/radio_dis.png +0 -0
- data/public/assets/botones/seleccionData.png +0 -0
- data/public/assets/botones/seleccionDataSelected.png +0 -0
- data/public/assets/botones/seleccionDataUp.png +0 -0
- data/public/assets/botones/textArea.png +0 -0
- data/public/assets/botones/textInput.png +0 -0
- data/public/assets/botones/textInput_error.png +0 -0
- data/public/assets/botones/textInput_no.png +0 -0
- data/public/assets/botones/toggle_medio.png +0 -0
- data/public/assets/botones/toggle_medio1.png +0 -0
- data/public/assets/botones/toggle_medio2.png +0 -0
- data/public/assets/botones/toggle_medio3.png +0 -0
- data/public/assets/botones/toolTip.png +0 -0
- data/public/assets/general/Fondo4.jpg +0 -0
- data/public/assets/general/Fondo5.jpg +0 -0
- data/public/assets/general/MenuItem.png +0 -0
- data/public/assets/general/MenuItem1.png +0 -0
- data/public/assets/general/Thumbs.db +0 -0
- data/public/assets/general/alert_fondo.png +0 -0
- data/public/assets/general/alert_fondo1.png +0 -0
- data/public/assets/general/alert_titulo.png +0 -0
- data/public/assets/general/alert_titulo1.png +0 -0
- data/public/assets/general/blanc.png +0 -0
- data/public/assets/general/fondo.jpg +0 -0
- data/public/assets/general/fondo1.jpg +0 -0
- data/public/assets/general/fondo2.jpg +0 -0
- data/public/assets/general/fondo3.jpg +0 -0
- data/public/assets/general/fondo_list.png +0 -0
- data/public/assets/general/menu.png +0 -0
- data/public/assets/general/panel.png +0 -0
- data/public/assets/general/separator.png +0 -0
- data/public/assets/general/titleWindow.png +0 -0
- data/public/assets/general/titleWindow1.png +0 -0
- data/public/assets/icons/Thumbs.db +0 -0
- data/public/assets/icons/ai.jpg +0 -0
- data/public/assets/icons/air.jpg +0 -0
- data/public/assets/icons/fl.jpg +0 -0
- data/public/assets/icons/fw.jpg +0 -0
- data/public/assets/icons/fx.jpg +0 -0
- data/public/assets/icons/ps.jpg +0 -0
- data/public/assets/scroll/Thumbs.db +0 -0
- data/public/assets/scroll/barra.png +0 -0
- data/public/assets/scroll/barra1.png +0 -0
- data/public/assets/scroll/barra2.png +0 -0
- data/public/assets/scroll/barra_1.png +0 -0
- data/public/assets/scroll/barra_2.png +0 -0
- data/public/assets/scroll/down.png +0 -0
- data/public/assets/scroll/down1.png +0 -0
- data/public/assets/scroll/down_1.png +0 -0
- data/public/assets/scroll/down_2.png +0 -0
- data/public/assets/scroll/fondo.png +0 -0
- data/public/assets/scroll/fondo_1.png +0 -0
- data/public/assets/scroll/fondo_2.png +0 -0
- data/public/assets/scroll/up.png +0 -0
- data/public/assets/scroll/up1.png +0 -0
- data/public/assets/scroll/up_1.png +0 -0
- data/public/assets/scroll/up_2.png +0 -0
- data/public/assets/xml/listData.xml +21 -0
- data/public/dispatch.cgi +10 -0
- data/public/dispatch.fcgi +24 -0
- data/public/dispatch.rb +10 -0
- data/public/favicon.ico +0 -0
- data/public/framework_3.0.0.477.swf +0 -0
- data/public/framework_3.0.0.477.swz +0 -0
- data/public/history/history.css +6 -0
- data/public/history/history.js +662 -0
- data/public/history/historyFrame.html +29 -0
- data/public/images/avatar.png +0 -0
- data/public/images/logo.png +0 -0
- data/public/images/rails.png +0 -0
- data/public/images/spinner.gif +0 -0
- data/public/index.html +1 -0
- data/public/javascripts/application.js +2 -0
- data/public/javascripts/controls.js +963 -0
- data/public/javascripts/dragdrop.js +973 -0
- data/public/javascripts/effects.js +1128 -0
- data/public/javascripts/jquery-1.3.min.js +19 -0
- data/public/javascripts/jquery.localscroll.js +104 -0
- data/public/javascripts/jquery.scrollTo.js +150 -0
- data/public/javascripts/prototype.js +4320 -0
- data/public/playerProductInstall.swf +0 -0
- data/public/robots.txt +5 -0
- data/public/stylesheets/base.css +336 -0
- data/public/stylesheets/darkroom.css +1374 -0
- data/public/stylesheets/darkroom.swf +0 -0
- data/public/stylesheets/default.css +1034 -0
- data/public/stylesheets/myriad.swf +0 -0
- data/public/stylesheets/scaffold.css +54 -0
- data/public/stylesheets/themes/bec/style.css +301 -0
- data/public/stylesheets/themes/bec-green/style.css +290 -0
- data/public/stylesheets/themes/blue/style.css +280 -0
- data/public/stylesheets/themes/default/style.css +267 -0
- data/public/stylesheets/themes/djime-cerulean/style.css +298 -0
- data/public/stylesheets/themes/kathleene/style.css +272 -0
- data/public/stylesheets/themes/openbill/style.css +272 -0
- data/public/stylesheets/themes/orange/style.css +263 -0
- data/public/stylesheets/themes/reidb-greenish/style.css +301 -0
- data/rdoc/empty +0 -0
- data/rdoc/logo.max +0 -0
- data/rdoc/logo.png +0 -0
- data/script/about +4 -0
- data/script/console +3 -0
- data/script/dbconsole +3 -0
- data/script/destroy +3 -0
- data/script/generate +3 -0
- data/script/performance/benchmarker +3 -0
- data/script/performance/profiler +3 -0
- data/script/performance/request +3 -0
- data/script/plugin +3 -0
- data/script/process/inspector +3 -0
- data/script/process/reaper +3 -0
- data/script/process/spawner +3 -0
- data/script/runner +3 -0
- data/script/server +3 -0
- data/src/admin.mxml +62 -0
- data/src/assets/LoadingUndefinedSkin.swf +0 -0
- data/src/assets/UndefinedPersonalSkinLoad.swf +0 -0
- data/src/assets/blanc.png +0 -0
- data/src/assets/botones/Boton_dis.png +0 -0
- data/src/assets/botones/PopUpButton.png +0 -0
- data/src/assets/botones/PopUpButton1.png +0 -0
- data/src/assets/botones/PopUpButton2.png +0 -0
- data/src/assets/botones/PopUpButton_0.png +0 -0
- data/src/assets/botones/PopUpButton_1.png +0 -0
- data/src/assets/botones/PopUpButton_2.png +0 -0
- data/src/assets/botones/PopUpButton_dis.png +0 -0
- data/src/assets/botones/PopUpMenuButton.png +0 -0
- data/src/assets/botones/PopUpMenuButton1.png +0 -0
- data/src/assets/botones/PopUpMenuButton2.png +0 -0
- data/src/assets/botones/PopUpMenuButton_0.png +0 -0
- data/src/assets/botones/PopUpMenuButton_1.png +0 -0
- data/src/assets/botones/PopUpMenuButton_2.png +0 -0
- data/src/assets/botones/PopUpMenuButton_dis.png +0 -0
- data/src/assets/botones/Scroll_barra.png +0 -0
- data/src/assets/botones/Scroll_barra1.png +0 -0
- data/src/assets/botones/Scroll_barra2.png +0 -0
- data/src/assets/botones/Scroll_down.png +0 -0
- data/src/assets/botones/Scroll_down1.png +0 -0
- data/src/assets/botones/Scroll_fondo.png +0 -0
- data/src/assets/botones/Scroll_icon.png +0 -0
- data/src/assets/botones/Scroll_up.png +0 -0
- data/src/assets/botones/Scroll_up1.png +0 -0
- data/src/assets/botones/TabNavigator.png +0 -0
- data/src/assets/botones/TabNavigator1.png +0 -0
- data/src/assets/botones/TabNavigator2.png +0 -0
- data/src/assets/botones/TabNavigator3.png +0 -0
- data/src/assets/botones/Thumbs.db +0 -0
- data/src/assets/botones/accordion_backround.png +0 -0
- data/src/assets/botones/accordion_barra.png +0 -0
- data/src/assets/botones/accordion_barra1.png +0 -0
- data/src/assets/botones/accordion_barra2.png +0 -0
- data/src/assets/botones/accordion_barra3.png +0 -0
- data/src/assets/botones/adelante.png +0 -0
- data/src/assets/botones/adelante1.png +0 -0
- data/src/assets/botones/adelante2.png +0 -0
- data/src/assets/botones/adelante_dis.png +0 -0
- data/src/assets/botones/atras.png +0 -0
- data/src/assets/botones/atras1.png +0 -0
- data/src/assets/botones/atras2.png +0 -0
- data/src/assets/botones/atras_dis.png +0 -0
- data/src/assets/botones/barra.png +0 -0
- data/src/assets/botones/barra_dis.png +0 -0
- data/src/assets/botones/barra_v.png +0 -0
- data/src/assets/botones/boton.jpg +0 -0
- data/src/assets/botones/boton.png +0 -0
- data/src/assets/botones/boton1.png +0 -0
- data/src/assets/botones/boton2.png +0 -0
- data/src/assets/botones/boton_classic.png +0 -0
- data/src/assets/botones/boton_classic1.png +0 -0
- data/src/assets/botones/boton_classic2.png +0 -0
- data/src/assets/botones/bullet.png +0 -0
- data/src/assets/botones/bullet1.png +0 -0
- data/src/assets/botones/bullet_V_dis.png +0 -0
- data/src/assets/botones/bullet_dis.png +0 -0
- data/src/assets/botones/bullet_v.png +0 -0
- data/src/assets/botones/bullet_v1.png +0 -0
- data/src/assets/botones/chekOff.png +0 -0
- data/src/assets/botones/chekOff1.png +0 -0
- data/src/assets/botones/chekOff2.png +0 -0
- data/src/assets/botones/chekOn.png +0 -0
- data/src/assets/botones/chekOn1.png +0 -0
- data/src/assets/botones/chekOn2.png +0 -0
- data/src/assets/botones/chek_dis.png +0 -0
- data/src/assets/botones/close.png +0 -0
- data/src/assets/botones/close1.png +0 -0
- data/src/assets/botones/close2.png +0 -0
- data/src/assets/botones/close_folder.png +0 -0
- data/src/assets/botones/colorPicker.png +0 -0
- data/src/assets/botones/colorPicker1.png +0 -0
- data/src/assets/botones/colorPicker2.png +0 -0
- data/src/assets/botones/colorPicker_blanco.png +0 -0
- data/src/assets/botones/colorPicker_blanco1.png +0 -0
- data/src/assets/botones/colorPicker_blanco2.png +0 -0
- data/src/assets/botones/colorPicker_dis.png +0 -0
- data/src/assets/botones/combo.png +0 -0
- data/src/assets/botones/combo1.png +0 -0
- data/src/assets/botones/combo2.png +0 -0
- data/src/assets/botones/combo_dis.png +0 -0
- data/src/assets/botones/dataIcon.png +0 -0
- data/src/assets/botones/dataIcon1.png +0 -0
- data/src/assets/botones/dataIcon2.png +0 -0
- data/src/assets/botones/dataIcon_dis.png +0 -0
- data/src/assets/botones/dataText.png +0 -0
- data/src/assets/botones/folder_close.png +0 -0
- data/src/assets/botones/folder_open.png +0 -0
- data/src/assets/botones/hoja.png +0 -0
- data/src/assets/botones/icon_down.png +0 -0
- data/src/assets/botones/icon_up.png +0 -0
- data/src/assets/botones/last_toggle.png +0 -0
- data/src/assets/botones/last_toggle1.png +0 -0
- data/src/assets/botones/last_toggle2.png +0 -0
- data/src/assets/botones/last_toggle3.png +0 -0
- data/src/assets/botones/numericStepper_Down.png +0 -0
- data/src/assets/botones/numericStepper_Down1.png +0 -0
- data/src/assets/botones/numericStepper_Down2.png +0 -0
- data/src/assets/botones/numericStepper_Down_dis.png +0 -0
- data/src/assets/botones/numericStepper_Text.png +0 -0
- data/src/assets/botones/numericStepper_Up.png +0 -0
- data/src/assets/botones/numericStepper_Up1.png +0 -0
- data/src/assets/botones/numericStepper_Up2.png +0 -0
- data/src/assets/botones/numericStepper_Up_dis.png +0 -0
- data/src/assets/botones/open_folder.png +0 -0
- data/src/assets/botones/prev_toggle.png +0 -0
- data/src/assets/botones/prev_toggle1.png +0 -0
- data/src/assets/botones/prev_toggle2.png +0 -0
- data/src/assets/botones/prev_toggle3.png +0 -0
- data/src/assets/botones/progress.png +0 -0
- data/src/assets/botones/progress_barra.png +0 -0
- data/src/assets/botones/progress_charning.png +0 -0
- data/src/assets/botones/progress_dis.png +0 -0
- data/src/assets/botones/radio.png +0 -0
- data/src/assets/botones/radio1.png +0 -0
- data/src/assets/botones/radio2.png +0 -0
- data/src/assets/botones/radio3.png +0 -0
- data/src/assets/botones/radio4.png +0 -0
- data/src/assets/botones/radio_dis.png +0 -0
- data/src/assets/botones/seleccionData.png +0 -0
- data/src/assets/botones/seleccionDataSelected.png +0 -0
- data/src/assets/botones/seleccionDataUp.png +0 -0
- data/src/assets/botones/textArea.png +0 -0
- data/src/assets/botones/textInput.png +0 -0
- data/src/assets/botones/textInput_error.png +0 -0
- data/src/assets/botones/textInput_no.png +0 -0
- data/src/assets/botones/toggle_medio.png +0 -0
- data/src/assets/botones/toggle_medio1.png +0 -0
- data/src/assets/botones/toggle_medio2.png +0 -0
- data/src/assets/botones/toggle_medio3.png +0 -0
- data/src/assets/botones/toolTip.png +0 -0
- data/src/assets/general/Fondo4.jpg +0 -0
- data/src/assets/general/Fondo5.jpg +0 -0
- data/src/assets/general/MenuItem.png +0 -0
- data/src/assets/general/MenuItem1.png +0 -0
- data/src/assets/general/Thumbs.db +0 -0
- data/src/assets/general/alert_fondo.png +0 -0
- data/src/assets/general/alert_fondo1.png +0 -0
- data/src/assets/general/alert_titulo.png +0 -0
- data/src/assets/general/alert_titulo1.png +0 -0
- data/src/assets/general/blanc.png +0 -0
- data/src/assets/general/fondo.jpg +0 -0
- data/src/assets/general/fondo1.jpg +0 -0
- data/src/assets/general/fondo2.jpg +0 -0
- data/src/assets/general/fondo3.jpg +0 -0
- data/src/assets/general/fondo_list.png +0 -0
- data/src/assets/general/menu.png +0 -0
- data/src/assets/general/panel.png +0 -0
- data/src/assets/general/separator.png +0 -0
- data/src/assets/general/titleWindow.png +0 -0
- data/src/assets/general/titleWindow1.png +0 -0
- data/src/assets/icons/Thumbs.db +0 -0
- data/src/assets/icons/ai.jpg +0 -0
- data/src/assets/icons/air.jpg +0 -0
- data/src/assets/icons/fl.jpg +0 -0
- data/src/assets/icons/fw.jpg +0 -0
- data/src/assets/icons/fx.jpg +0 -0
- data/src/assets/icons/ps.jpg +0 -0
- data/src/assets/programmatic/BigThumbClass.as +14 -0
- data/src/assets/programmatic/CustomPreloader.as +79 -0
- data/src/assets/programmatic/MyDateField.as +22 -0
- data/src/assets/scroll/Thumbs.db +0 -0
- data/src/assets/scroll/barra.png +0 -0
- data/src/assets/scroll/barra1.png +0 -0
- data/src/assets/scroll/barra2.png +0 -0
- data/src/assets/scroll/barra_1.png +0 -0
- data/src/assets/scroll/barra_2.png +0 -0
- data/src/assets/scroll/down.png +0 -0
- data/src/assets/scroll/down1.png +0 -0
- data/src/assets/scroll/down_1.png +0 -0
- data/src/assets/scroll/down_2.png +0 -0
- data/src/assets/scroll/fondo.png +0 -0
- data/src/assets/scroll/fondo_1.png +0 -0
- data/src/assets/scroll/fondo_2.png +0 -0
- data/src/assets/scroll/up.png +0 -0
- data/src/assets/scroll/up1.png +0 -0
- data/src/assets/scroll/up_1.png +0 -0
- data/src/assets/scroll/up_2.png +0 -0
- data/src/assets/xml/listData.xml +21 -0
- data/src/images/logo.png +0 -0
- data/src/libs/Cairngorm.swc +0 -0
- data/src/libs/flexlib.swc +0 -0
- data/src/org/rsos/openbill/business/RailsDelegate.as +109 -0
- data/src/org/rsos/openbill/business/Services.mxml +15 -0
- data/src/org/rsos/openbill/command/FpCommand.as +44 -0
- data/src/org/rsos/openbill/command/LoginCommand.as +52 -0
- data/src/org/rsos/openbill/command/LogoutCommand.as +43 -0
- data/src/org/rsos/openbill/command/ProductCommand.as +49 -0
- data/src/org/rsos/openbill/command/SettingCommand.as +39 -0
- data/src/org/rsos/openbill/control/OpenbillController.as +25 -0
- data/src/org/rsos/openbill/event/FpEvent.as +29 -0
- data/src/org/rsos/openbill/event/LoginEvent.as +29 -0
- data/src/org/rsos/openbill/event/LogoutEvent.as +26 -0
- data/src/org/rsos/openbill/event/ProductEvent.as +29 -0
- data/src/org/rsos/openbill/event/SettingEvent.as +29 -0
- data/src/org/rsos/openbill/model/OpenbillModelLocator.as +188 -0
- data/src/org/rsos/openbill/util/ValueObjectUtil.as +19 -0
- data/src/org/rsos/openbill/view/Content.mxml +4 -0
- data/src/org/rsos/openbill/view/Footer.mxml +25 -0
- data/src/org/rsos/openbill/view/Header.mxml +31 -0
- data/src/org/rsos/openbill/view/Product.mxml +82 -0
- data/src/org/rsos/openbill/view/Setting.mxml +111 -0
- data/src/org/rsos/openbill/view/SignIn.mxml +67 -0
- data/src/org/rsos/openbill/vo/AccountVO.as +13 -0
- data/src/org/rsos/openbill/vo/CurrencyVO.as +18 -0
- data/src/org/rsos/openbill/vo/ProductVO.as +17 -0
- data/src/org/rsos/openbill/vo/RoleVO.as +14 -0
- data/src/org/rsos/openbill/vo/SettingVO.as +29 -0
- data/src/org/rsos/openbill/vo/UserVO.as +18 -0
- data/src/stylesheets/darkroom.css +1374 -0
- data/src/stylesheets/darkroom.swf +0 -0
- data/src/stylesheets/default.css +1034 -0
- data/src/stylesheets/myriad.swf +0 -0
- data/test/fixtures/accounts.yml +3 -0
- data/test/fixtures/billingcycles.yml +41 -0
- data/test/fixtures/currencies.yml +11 -0
- data/test/fixtures/emailtemplates.yml +8 -0
- data/test/fixtures/invoicedetails.yml +0 -0
- data/test/fixtures/invoices.yml +0 -0
- data/test/fixtures/options.yml +0 -0
- data/test/fixtures/orderdetails.yml +0 -0
- data/test/fixtures/orders.yml +0 -0
- data/test/fixtures/paymentgateways.yml +0 -0
- data/test/fixtures/products.yml +40 -0
- data/test/fixtures/registrarlogs.yml +0 -0
- data/test/fixtures/registrars.yml +4 -0
- data/test/fixtures/roles.yml +19 -0
- data/test/fixtures/serverlogs.yml +0 -0
- data/test/fixtures/servers.yml +0 -0
- data/test/fixtures/settings.yml +7 -0
- data/test/fixtures/tlds.yml +17 -0
- data/test/fixtures/transactions.yml +0 -0
- data/test/fixtures/userfieldnames.yml +9 -0
- data/test/fixtures/userfieldvalues.yml +11 -0
- data/test/fixtures/users.yml +28 -0
- data/test/functional/products_controller_test.rb +8 -8
- data/test/functional/sessions_controller_test.rb +8 -8
- data/test/functional/settings_controller_test.rb +8 -8
- data/test/integration/empty +0 -0
- data/test/unit/user_mailer_test.rb +7 -7
- data/test/unit/user_test.rb +7 -7
- data/vendor/generators/cairngorm/USAGE +7 -0
- data/vendor/generators/cairngorm/cairngorm_generator.rb +23 -0
- data/vendor/generators/cairngorm/templates/Controller_template.as +20 -0
- data/vendor/generators/cairngorm/templates/ModelLocator_template.as +29 -0
- data/vendor/generators/cairngorm/templates/Services_template.mxml +8 -0
- data/vendor/generators/cairngorm/templates/ValueObjectUtil_template.as +19 -0
- data/vendor/generators/cairngorm/templates/main_template.mxml +27 -0
- data/vendor/generators/command/USAGE +10 -0
- data/vendor/generators/command/command_generator.rb +8 -0
- data/vendor/generators/command/templates/command_template.as +39 -0
- data/vendor/generators/command/templates/event_template.as +26 -0
- data/vendor/generators/delegate/USAGE +8 -0
- data/vendor/generators/delegate/delegate_generator.rb +7 -0
- data/vendor/generators/delegate/templates/delegate_template.as +26 -0
- data/vendor/generators/event/USAGE +8 -0
- data/vendor/generators/event/event_generator.rb +7 -0
- data/vendor/generators/event/templates/event_template.as +26 -0
- data/vendor/generators/vo/USAGE +9 -0
- data/vendor/generators/vo/templates/vo_template.as +18 -0
- data/vendor/generators/vo/vo_generator.rb +7 -0
- data/vendor/generators/worbservice/USAGE +8 -0
- data/vendor/generators/worbservice/templates/service.rb +11 -0
- data/vendor/generators/worbservice/worbservice_generator.rb +7 -0
- data/vendor/plugins/enum-column/init.rb +9 -0
- data/vendor/plugins/enum-column/lib/enum/active_record_helper.rb +107 -0
- data/vendor/plugins/enum-column/lib/enum/enum_adapter.rb +76 -0
- data/vendor/plugins/enum-column/lib/enum/mysql_adapter.rb +33 -0
- data/vendor/plugins/enum-column/lib/enum/postgresql_adapter.rb +64 -0
- data/vendor/plugins/enum-column/lib/enum/quoting.rb +17 -0
- data/vendor/plugins/enum-column/lib/enum/schema_definitions.rb +12 -0
- data/vendor/plugins/enum-column/lib/enum/schema_statements.rb +32 -0
- data/vendor/plugins/enum-column/lib/enum/sqlite3_adapter.rb +52 -0
- data/vendor/plugins/enum-column/lib/enum/validations.rb +40 -0
- data/vendor/plugins/enum-column/readme.html +125 -0
- data/vendor/plugins/enum-column/test/db/schema.rb +28 -0
- data/vendor/plugins/enum-column/test/enum_mysql_test.rb +220 -0
- data/vendor/plugins/enum-column/test/fixtures/db_definitions/mysql.drop.sql +32 -0
- data/vendor/plugins/enum-column/test/fixtures/db_definitions/mysql.sql +244 -0
- data/vendor/plugins/enum-column/test/fixtures/enumeration.rb +20 -0
- data/vendor/plugins/enum-column/test/test_helper.rb +18 -0
- data/vendor/plugins/restful-authentication/.gitignore +21 -0
- data/vendor/plugins/restful-authentication/CHANGELOG +68 -0
- data/vendor/plugins/restful-authentication/LICENSE +20 -0
- data/vendor/plugins/restful-authentication/README.textile +224 -0
- data/vendor/plugins/restful-authentication/Rakefile +32 -0
- data/vendor/plugins/restful-authentication/TODO +15 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/USAGE +1 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/authenticated_generator.rb +478 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/lib/insert_routes.rb +54 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/_model_partial.html.erb +8 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/activation.erb +3 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/authenticated_system.rb +189 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/authenticated_test_helper.rb +22 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/controller.rb +43 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/accounts.feature +109 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/sessions.feature +134 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/ra_env.rb +9 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/ra_navigation_steps.rb +48 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/ra_resource_steps.rb +178 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/ra_response_steps.rb +169 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/rest_auth_features_helper.rb +81 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/features/step_definitions/user_steps.rb +131 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/helper.rb +2 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/login.html.erb +16 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/mailer.rb +25 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/migration.rb +26 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/model.rb +83 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/model_controller.rb +85 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/model_helper.rb +93 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/model_helper_spec.rb +158 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/observer.rb +11 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/signup.html.erb +19 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/signup_notification.erb +8 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/site_keys.rb +38 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/controllers/access_control_spec.rb +90 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/controllers/authenticated_system_spec.rb +102 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/controllers/sessions_controller_spec.rb +139 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/controllers/users_controller_spec.rb +198 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/fixtures/users.yml +60 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/helpers/users_helper_spec.rb +141 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/spec/models/user_spec.rb +290 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/test/functional_test.rb +82 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/test/mailer_test.rb +31 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/test/model_functional_test.rb +93 -0
- data/vendor/plugins/restful-authentication/generators/authenticated/templates/test/unit_test.rb +164 -0
- data/vendor/plugins/restful-authentication/init.rb +1 -0
- data/vendor/plugins/restful-authentication/lib/authentication/by_cookie_token.rb +82 -0
- data/vendor/plugins/restful-authentication/lib/authentication/by_password.rb +64 -0
- data/vendor/plugins/restful-authentication/lib/authentication.rb +40 -0
- data/vendor/plugins/restful-authentication/lib/authorization/aasm_roles.rb +63 -0
- data/vendor/plugins/restful-authentication/lib/authorization/stateful_roles.rb +62 -0
- data/vendor/plugins/restful-authentication/lib/authorization.rb +14 -0
- data/vendor/plugins/restful-authentication/lib/trustification/email_validation.rb +20 -0
- data/vendor/plugins/restful-authentication/lib/trustification.rb +14 -0
- data/vendor/plugins/restful-authentication/notes/AccessControl.txt +2 -0
- data/vendor/plugins/restful-authentication/notes/Authentication.txt +5 -0
- data/vendor/plugins/restful-authentication/notes/Authorization.txt +154 -0
- data/vendor/plugins/restful-authentication/notes/RailsPlugins.txt +78 -0
- data/vendor/plugins/restful-authentication/notes/SecurityFramework.graffle +0 -0
- data/vendor/plugins/restful-authentication/notes/SecurityFramework.png +0 -0
- data/vendor/plugins/restful-authentication/notes/SecurityPatterns.txt +163 -0
- data/vendor/plugins/restful-authentication/notes/Tradeoffs.txt +126 -0
- data/vendor/plugins/restful-authentication/notes/Trustification.txt +49 -0
- data/vendor/plugins/restful-authentication/rails/init.rb +3 -0
- data/vendor/plugins/restful-authentication/restful-authentication.gemspec +33 -0
- data/vendor/plugins/restful-authentication/tasks/auth.rake +33 -0
- data/vendor/plugins/ruby-enom/README.markdown +37 -0
- data/vendor/plugins/ruby-enom/ruby-enom.rb +198 -0
- metadata +729 -8
@@ -0,0 +1,82 @@
|
|
1
|
+
# -*- coding: utf-8 -*-
|
2
|
+
module Authentication
|
3
|
+
module ByCookieToken
|
4
|
+
# Stuff directives into including module
|
5
|
+
def self.included(recipient)
|
6
|
+
recipient.extend(ModelClassMethods)
|
7
|
+
recipient.class_eval do
|
8
|
+
include ModelInstanceMethods
|
9
|
+
end
|
10
|
+
end
|
11
|
+
|
12
|
+
#
|
13
|
+
# Class Methods
|
14
|
+
#
|
15
|
+
module ModelClassMethods
|
16
|
+
end # class methods
|
17
|
+
|
18
|
+
#
|
19
|
+
# Instance Methods
|
20
|
+
#
|
21
|
+
module ModelInstanceMethods
|
22
|
+
def remember_token?
|
23
|
+
(!remember_token.blank?) &&
|
24
|
+
remember_token_expires_at && (Time.now.utc < remember_token_expires_at.utc)
|
25
|
+
end
|
26
|
+
|
27
|
+
# These create and unset the fields required for remembering users between browser closes
|
28
|
+
def remember_me
|
29
|
+
remember_me_for 2.weeks
|
30
|
+
end
|
31
|
+
|
32
|
+
def remember_me_for(time)
|
33
|
+
remember_me_until time.from_now.utc
|
34
|
+
end
|
35
|
+
|
36
|
+
def remember_me_until(time)
|
37
|
+
self.remember_token_expires_at = time
|
38
|
+
self.remember_token = self.class.make_token
|
39
|
+
save(false)
|
40
|
+
end
|
41
|
+
|
42
|
+
# refresh token (keeping same expires_at) if it exists
|
43
|
+
def refresh_token
|
44
|
+
if remember_token?
|
45
|
+
self.remember_token = self.class.make_token
|
46
|
+
save(false)
|
47
|
+
end
|
48
|
+
end
|
49
|
+
|
50
|
+
#
|
51
|
+
# Deletes the server-side record of the authentication token. The
|
52
|
+
# client-side (browser cookie) and server-side (this remember_token) must
|
53
|
+
# always be deleted together.
|
54
|
+
#
|
55
|
+
def forget_me
|
56
|
+
self.remember_token_expires_at = nil
|
57
|
+
self.remember_token = nil
|
58
|
+
save(false)
|
59
|
+
end
|
60
|
+
end # instance methods
|
61
|
+
end
|
62
|
+
|
63
|
+
module ByCookieTokenController
|
64
|
+
# Stuff directives into including module
|
65
|
+
def self.included( recipient )
|
66
|
+
recipient.extend( ControllerClassMethods )
|
67
|
+
recipient.class_eval do
|
68
|
+
include ControllerInstanceMethods
|
69
|
+
end
|
70
|
+
end
|
71
|
+
|
72
|
+
#
|
73
|
+
# Class Methods
|
74
|
+
#
|
75
|
+
module ControllerClassMethods
|
76
|
+
end # class methods
|
77
|
+
|
78
|
+
module ControllerInstanceMethods
|
79
|
+
end # instance methods
|
80
|
+
end
|
81
|
+
end
|
82
|
+
|
@@ -0,0 +1,64 @@
|
|
1
|
+
module Authentication
|
2
|
+
module ByPassword
|
3
|
+
# Stuff directives into including module
|
4
|
+
def self.included(recipient)
|
5
|
+
recipient.extend(ModelClassMethods)
|
6
|
+
recipient.class_eval do
|
7
|
+
include ModelInstanceMethods
|
8
|
+
|
9
|
+
# Virtual attribute for the unencrypted password
|
10
|
+
attr_accessor :password
|
11
|
+
validates_presence_of :password, :if => :password_required?
|
12
|
+
validates_presence_of :password_confirmation, :if => :password_required?
|
13
|
+
validates_confirmation_of :password, :if => :password_required?
|
14
|
+
validates_length_of :password, :within => 6..40, :if => :password_required?
|
15
|
+
before_save :encrypt_password
|
16
|
+
end
|
17
|
+
end # #included directives
|
18
|
+
|
19
|
+
#
|
20
|
+
# Class Methods
|
21
|
+
#
|
22
|
+
module ModelClassMethods
|
23
|
+
# This provides a modest increased defense against a dictionary attack if
|
24
|
+
# your db were ever compromised, but will invalidate existing passwords.
|
25
|
+
# See the README and the file config/initializers/site_keys.rb
|
26
|
+
#
|
27
|
+
# It may not be obvious, but if you set REST_AUTH_SITE_KEY to nil and
|
28
|
+
# REST_AUTH_DIGEST_STRETCHES to 1 you'll have backwards compatibility with
|
29
|
+
# older versions of restful-authentication.
|
30
|
+
def password_digest(password, salt)
|
31
|
+
digest = REST_AUTH_SITE_KEY
|
32
|
+
REST_AUTH_DIGEST_STRETCHES.times do
|
33
|
+
digest = secure_digest(digest, salt, password, REST_AUTH_SITE_KEY)
|
34
|
+
end
|
35
|
+
digest
|
36
|
+
end
|
37
|
+
end # class methods
|
38
|
+
|
39
|
+
#
|
40
|
+
# Instance Methods
|
41
|
+
#
|
42
|
+
module ModelInstanceMethods
|
43
|
+
|
44
|
+
# Encrypts the password with the user salt
|
45
|
+
def encrypt(password)
|
46
|
+
self.class.password_digest(password, salt)
|
47
|
+
end
|
48
|
+
|
49
|
+
def authenticated?(password)
|
50
|
+
crypted_password == encrypt(password)
|
51
|
+
end
|
52
|
+
|
53
|
+
# before filter
|
54
|
+
def encrypt_password
|
55
|
+
return if password.blank?
|
56
|
+
self.salt = self.class.make_token if new_record?
|
57
|
+
self.crypted_password = encrypt(password)
|
58
|
+
end
|
59
|
+
def password_required?
|
60
|
+
crypted_password.blank? || !password.blank?
|
61
|
+
end
|
62
|
+
end # instance methods
|
63
|
+
end
|
64
|
+
end
|
@@ -0,0 +1,40 @@
|
|
1
|
+
module Authentication
|
2
|
+
mattr_accessor :login_regex, :bad_login_message,
|
3
|
+
:name_regex, :bad_name_message,
|
4
|
+
:email_name_regex, :domain_head_regex, :domain_tld_regex, :email_regex, :bad_email_message
|
5
|
+
|
6
|
+
self.login_regex = /\A\w[\w\.\-_@]+\z/ # ASCII, strict
|
7
|
+
# self.login_regex = /\A[[:alnum:]][[:alnum:]\.\-_@]+\z/ # Unicode, strict
|
8
|
+
# self.login_regex = /\A[^[:cntrl:]\\<>\/&]*\z/ # Unicode, permissive
|
9
|
+
|
10
|
+
self.bad_login_message = "use only letters, numbers, and .-_@ please.".freeze
|
11
|
+
|
12
|
+
self.name_regex = /\A[^[:cntrl:]\\<>\/&]*\z/ # Unicode, permissive
|
13
|
+
self.bad_name_message = "avoid non-printing characters and \\><&/ please.".freeze
|
14
|
+
|
15
|
+
self.email_name_regex = '[\w\.%\+\-]+'.freeze
|
16
|
+
self.domain_head_regex = '(?:[A-Z0-9\-]+\.)+'.freeze
|
17
|
+
self.domain_tld_regex = '(?:[A-Z]{2}|com|org|net|edu|gov|mil|biz|info|mobi|name|aero|jobs|museum)'.freeze
|
18
|
+
self.email_regex = /\A#{email_name_regex}@#{domain_head_regex}#{domain_tld_regex}\z/i
|
19
|
+
self.bad_email_message = "should look like an email address.".freeze
|
20
|
+
|
21
|
+
def self.included(recipient)
|
22
|
+
recipient.extend(ModelClassMethods)
|
23
|
+
recipient.class_eval do
|
24
|
+
include ModelInstanceMethods
|
25
|
+
end
|
26
|
+
end
|
27
|
+
|
28
|
+
module ModelClassMethods
|
29
|
+
def secure_digest(*args)
|
30
|
+
Digest::SHA1.hexdigest(args.flatten.join('--'))
|
31
|
+
end
|
32
|
+
|
33
|
+
def make_token
|
34
|
+
secure_digest(Time.now, (1..10).map{ rand.to_s })
|
35
|
+
end
|
36
|
+
end # class methods
|
37
|
+
|
38
|
+
module ModelInstanceMethods
|
39
|
+
end # instance methods
|
40
|
+
end
|
@@ -0,0 +1,63 @@
|
|
1
|
+
module Authorization
|
2
|
+
module AasmRoles
|
3
|
+
unless Object.constants.include? "STATEFUL_ROLES_CONSTANTS_DEFINED"
|
4
|
+
STATEFUL_ROLES_CONSTANTS_DEFINED = true # sorry for the C idiom
|
5
|
+
end
|
6
|
+
|
7
|
+
def self.included( recipient )
|
8
|
+
recipient.extend( StatefulRolesClassMethods )
|
9
|
+
recipient.class_eval do
|
10
|
+
include StatefulRolesInstanceMethods
|
11
|
+
include AASM
|
12
|
+
aasm_column :state
|
13
|
+
aasm_initial_state :initial => :pending
|
14
|
+
aasm_state :passive
|
15
|
+
aasm_state :pending, :enter => :make_activation_code
|
16
|
+
aasm_state :active, :enter => :do_activate
|
17
|
+
aasm_state :suspended
|
18
|
+
aasm_state :deleted, :enter => :do_delete
|
19
|
+
|
20
|
+
aasm_event :register do
|
21
|
+
transitions :from => :passive, :to => :pending, :guard => Proc.new {|u| !(u.crypted_password.blank? && u.password.blank?) }
|
22
|
+
end
|
23
|
+
|
24
|
+
aasm_event :activate do
|
25
|
+
transitions :from => :pending, :to => :active
|
26
|
+
end
|
27
|
+
|
28
|
+
aasm_event :suspend do
|
29
|
+
transitions :from => [:passive, :pending, :active], :to => :suspended
|
30
|
+
end
|
31
|
+
|
32
|
+
aasm_event :delete do
|
33
|
+
transitions :from => [:passive, :pending, :active, :suspended], :to => :deleted
|
34
|
+
end
|
35
|
+
|
36
|
+
aasm_event :unsuspend do
|
37
|
+
transitions :from => :suspended, :to => :active, :guard => Proc.new {|u| !u.activated_at.blank? }
|
38
|
+
transitions :from => :suspended, :to => :pending, :guard => Proc.new {|u| !u.activation_code.blank? }
|
39
|
+
transitions :from => :suspended, :to => :passive
|
40
|
+
end
|
41
|
+
end
|
42
|
+
end
|
43
|
+
|
44
|
+
module StatefulRolesClassMethods
|
45
|
+
end # class methods
|
46
|
+
|
47
|
+
module StatefulRolesInstanceMethods
|
48
|
+
# Returns true if the user has just been activated.
|
49
|
+
def recently_activated?
|
50
|
+
@activated
|
51
|
+
end
|
52
|
+
def do_delete
|
53
|
+
self.deleted_at = Time.now.utc
|
54
|
+
end
|
55
|
+
|
56
|
+
def do_activate
|
57
|
+
@activated = true
|
58
|
+
self.activated_at = Time.now.utc
|
59
|
+
self.deleted_at = self.activation_code = nil
|
60
|
+
end
|
61
|
+
end # instance methods
|
62
|
+
end
|
63
|
+
end
|
@@ -0,0 +1,62 @@
|
|
1
|
+
module Authorization
|
2
|
+
module StatefulRoles
|
3
|
+
unless Object.constants.include? "STATEFUL_ROLES_CONSTANTS_DEFINED"
|
4
|
+
STATEFUL_ROLES_CONSTANTS_DEFINED = true # sorry for the C idiom
|
5
|
+
end
|
6
|
+
|
7
|
+
def self.included( recipient )
|
8
|
+
recipient.extend( StatefulRolesClassMethods )
|
9
|
+
recipient.class_eval do
|
10
|
+
include StatefulRolesInstanceMethods
|
11
|
+
|
12
|
+
acts_as_state_machine :initial => :pending
|
13
|
+
state :passive
|
14
|
+
state :pending, :enter => :make_activation_code
|
15
|
+
state :active, :enter => :do_activate
|
16
|
+
state :suspended
|
17
|
+
state :deleted, :enter => :do_delete
|
18
|
+
|
19
|
+
event :register do
|
20
|
+
transitions :from => :passive, :to => :pending, :guard => Proc.new {|u| !(u.crypted_password.blank? && u.password.blank?) }
|
21
|
+
end
|
22
|
+
|
23
|
+
event :activate do
|
24
|
+
transitions :from => :pending, :to => :active
|
25
|
+
end
|
26
|
+
|
27
|
+
event :suspend do
|
28
|
+
transitions :from => [:passive, :pending, :active], :to => :suspended
|
29
|
+
end
|
30
|
+
|
31
|
+
event :delete do
|
32
|
+
transitions :from => [:passive, :pending, :active, :suspended], :to => :deleted
|
33
|
+
end
|
34
|
+
|
35
|
+
event :unsuspend do
|
36
|
+
transitions :from => :suspended, :to => :active, :guard => Proc.new {|u| !u.activated_at.blank? }
|
37
|
+
transitions :from => :suspended, :to => :pending, :guard => Proc.new {|u| !u.activation_code.blank? }
|
38
|
+
transitions :from => :suspended, :to => :passive
|
39
|
+
end
|
40
|
+
end
|
41
|
+
end
|
42
|
+
|
43
|
+
module StatefulRolesClassMethods
|
44
|
+
end # class methods
|
45
|
+
|
46
|
+
module StatefulRolesInstanceMethods
|
47
|
+
# Returns true if the user has just been activated.
|
48
|
+
def recently_activated?
|
49
|
+
@activated
|
50
|
+
end
|
51
|
+
def do_delete
|
52
|
+
self.deleted_at = Time.now.utc
|
53
|
+
end
|
54
|
+
|
55
|
+
def do_activate
|
56
|
+
@activated = true
|
57
|
+
self.activated_at = Time.now.utc
|
58
|
+
self.deleted_at = self.activation_code = nil
|
59
|
+
end
|
60
|
+
end # instance methods
|
61
|
+
end
|
62
|
+
end
|
@@ -0,0 +1,14 @@
|
|
1
|
+
module Authorization
|
2
|
+
def self.included(recipient)
|
3
|
+
recipient.extend(ModelClassMethods)
|
4
|
+
recipient.class_eval do
|
5
|
+
include ModelInstanceMethods
|
6
|
+
end
|
7
|
+
end
|
8
|
+
|
9
|
+
module ModelClassMethods
|
10
|
+
end # class methods
|
11
|
+
|
12
|
+
module ModelInstanceMethods
|
13
|
+
end # instance methods
|
14
|
+
end
|
@@ -0,0 +1,20 @@
|
|
1
|
+
module Trustification
|
2
|
+
module EmailValidation
|
3
|
+
unless Object.constants.include? "CONSTANTS_DEFINED"
|
4
|
+
CONSTANTS_DEFINED = true # sorry for the C idiom
|
5
|
+
end
|
6
|
+
|
7
|
+
def self.included(recipient)
|
8
|
+
recipient.extend(ClassMethods)
|
9
|
+
recipient.class_eval do
|
10
|
+
include InstanceMethods
|
11
|
+
end
|
12
|
+
end
|
13
|
+
|
14
|
+
module ClassMethods
|
15
|
+
end # class methods
|
16
|
+
|
17
|
+
module InstanceMethods
|
18
|
+
end # instance methods
|
19
|
+
end
|
20
|
+
end
|
@@ -0,0 +1,14 @@
|
|
1
|
+
module Trustification
|
2
|
+
def self.included(recipient)
|
3
|
+
recipient.extend(ModelClassMethods)
|
4
|
+
recipient.class_eval do
|
5
|
+
include ModelInstanceMethods
|
6
|
+
end
|
7
|
+
end
|
8
|
+
|
9
|
+
module ModelClassMethods
|
10
|
+
end # class methods
|
11
|
+
|
12
|
+
module ModelInstanceMethods
|
13
|
+
end # instance methods
|
14
|
+
end
|
@@ -0,0 +1,5 @@
|
|
1
|
+
Guides to best practices:
|
2
|
+
* "The OWASP Guide to Building Secure Web Applications":http://www.owasp.org/index.php/Category:OWASP_Guide_Project
|
3
|
+
** specifically, of course, the chapter on Authentication.
|
4
|
+
* "Secure Programming for Linux and Unix HOWTO":http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/web-authentication.html
|
5
|
+
* "Authentication and Identification,":http://www.downes.ca/post/12 by Stephen Downes **Highly Recommended**
|
@@ -0,0 +1,154 @@
|
|
1
|
+
h2. Authorization
|
2
|
+
|
3
|
+
"Best Practices for Authorization":http://www.owasp.org/index.php/Guide_to_Authorization
|
4
|
+
# auth system should deny by default
|
5
|
+
# Principle of least privilege (fine-grain)
|
6
|
+
# each non-anonymous entry point have an access control check
|
7
|
+
# authorization check at or near the beginning of code implementing sensitive activities
|
8
|
+
# Ensure that Model code checks to ensure that the requesting user should have access to the protected resource.
|
9
|
+
# Reauthorization for high value activities or after idle out
|
10
|
+
# If custom code is required to perform authorization functions, consider
|
11
|
+
fail-safe authentication and exception handling – ensure that if an exception
|
12
|
+
is thrown, the user is logged out or at least prevented from accessing the
|
13
|
+
protected resource or function.
|
14
|
+
# Well written applications centralize access control routines, so if any bugs
|
15
|
+
are found, they can be fixed once and the results apply throughout the
|
16
|
+
application immediately.
|
17
|
+
|
18
|
+
h2. Authorization in a trust context
|
19
|
+
|
20
|
+
* [http://en.wikipedia.org/wiki/Authorization]
|
21
|
+
* remember: goal is **prediction** not **control**
|
22
|
+
|
23
|
+
h2. Patterns for Policy definition / Authorization / access control
|
24
|
+
|
25
|
+
*Reference Monitor (SecPatt p256)
|
26
|
+
** Set of authorization rules
|
27
|
+
** Actor, Action, Resource => Monitor+(rules) => ctrlr
|
28
|
+
* Role based:
|
29
|
+
subj, role, right. action, resource
|
30
|
+
RBAC, access is controlled at the system level, outside of the user's control
|
31
|
+
* Filter based
|
32
|
+
User x Controller x Action x Params --
|
33
|
+
* Object based
|
34
|
+
model security delegation
|
35
|
+
* Access Control Matrix http://en.wikipedia.org/wiki/Access_Control_Matrix
|
36
|
+
* CommandProcessor pattern (DSL approach)
|
37
|
+
* DENY FROM ... / ALLOW FROM ... approach
|
38
|
+
* Capability based control: bundle together the designation of an object and the permission to access that object
|
39
|
+
ie. I can name it if and only if I am allowed to get at it.
|
40
|
+
|
41
|
+
h2. Notes from "Security patterns":http://www.amazon.com/Security-Patterns-Integrating-Engineering-Software/dp/0470858842
|
42
|
+
by M Schumacher ("website for book":http://www.securitypatterns.org/)
|
43
|
+
|
44
|
+
Reference Monitor (SecPatt p256)
|
45
|
+
* Set of authorization rules
|
46
|
+
* Actor, Action, Resource => Monitor+(rules) => ctrlr
|
47
|
+
|
48
|
+
= Full access with Errors (SecPatt p305)
|
49
|
+
|
50
|
+
* Users should not be able to view data or perform operations for which they
|
51
|
+
have no permissions.
|
52
|
+
* Hiding an available and accessible function is inappropriate, because users
|
53
|
+
must be able to see what they can do.
|
54
|
+
* The visual appeal and usability of a graphical user interface (GUI) can be de-
|
55
|
+
graded by varying layouts depending on the (current) access rights of a
|
56
|
+
user. For example, blank space might appear for some users where others see
|
57
|
+
options they can access, or sequence and number of menu items might differ,
|
58
|
+
depending on the current user’s rights, and thus ‘blind’ operation of the menu
|
59
|
+
by an expe- rienced user is no longer possible.
|
60
|
+
* Showing currently unavailable functions can tease users to into upgrading
|
61
|
+
their access rights, for example by paying for the access or buying a license
|
62
|
+
after us- ing a demo version.
|
63
|
+
* Trial and error are ineffective means of learning which functions are
|
64
|
+
accessible. Invoking an operation only to learn that it doesn’t work with
|
65
|
+
your access rights is confusing.
|
66
|
+
* The privilege grouping of the typical user community might not be known at the
|
67
|
+
design time of the GUI, and it might change over time, for example through
|
68
|
+
organizational or business process changes, so that providing a few special
|
69
|
+
modes of the GUI depending on the corresponding user roles is inappropriate.
|
70
|
+
* Checking whether a function is allowed by a user is most efficient, robust and
|
71
|
+
secure, if done by the function itself—at least the code performing the checks
|
72
|
+
is then closely related to the code performing the subsequent operation
|
73
|
+
afterwards.
|
74
|
+
|
75
|
+
h2. Outcomes / Obligations
|
76
|
+
|
77
|
+
-- forbid
|
78
|
+
-- ask for trust escalation (eg log in, prove_as_human, validate_email, are_you_sure, send_me_ten_cents)
|
79
|
+
-- drag ass
|
80
|
+
-- permit
|
81
|
+
|
82
|
+
-- reinterpret past actions based on future evolution of trust
|
83
|
+
-- prioritize changesets based on trust.
|
84
|
+
|
85
|
+
|
86
|
+
h2. Notes from "Core Security Patterns":http://www.coresecuritypatterns.com/patterns.htm website
|
87
|
+
|
88
|
+
# Authentication Enforcer who the hell are you
|
89
|
+
# Intercepting Validator Is your request well-formed
|
90
|
+
# Authorization Enforcer Are you allowed to do that
|
91
|
+
# Secure Logger Know what's happening/happened
|
92
|
+
#
|
93
|
+
|
94
|
+
h2. notes from "XACML":http://www.nsitonline.in/hemant/stuff/xacml/XACML%20Tutorial%20with%20a%20Use%20Case%20Scenario%20for%20Academic%20Institutions.htm
|
95
|
+
|
96
|
+
PolicySets [Policy Combining Algorithm]
|
97
|
+
Policy [Rule Combining Algorithm] (defines access to particular resources.)
|
98
|
+
# Target
|
99
|
+
## Subject Attributes
|
100
|
+
## Resource Attributes
|
101
|
+
## Action Attributes
|
102
|
+
## Environment Attributes
|
103
|
+
# Rule [Effect] Identify various conditions or cases under which a policy may become applicable
|
104
|
+
## Subject Attributes user who has made an access request
|
105
|
+
## Resource Attributes object to which access is requested
|
106
|
+
## Action Attributes action the subject wants to take on the resource
|
107
|
+
## Environment Attributes request environment (time of day, ip, etc)
|
108
|
+
## Conditions
|
109
|
+
# Obligations
|
110
|
+
|
111
|
+
Roles -- student, janitor, dean, stranger, ...
|
112
|
+
Branches -- Departments, etc.
|
113
|
+
|
114
|
+
* Examine applicable rules until you get an outcome, failure or passes thru (in which case rejected)
|
115
|
+
* Rule combining Algorithms
|
116
|
+
|
117
|
+
* Obligations -- things to do once requests have been denied or permitted
|
118
|
+
|
119
|
+
Reference Monitor (SecPatt p256)
|
120
|
+
* Set of authorization rules
|
121
|
+
* Actor, Action, Resource --> Monitor+(rules) --> ctrlr
|
122
|
+
|
123
|
+
#
|
124
|
+
# ask for permissions on arbitrary (subject, action, resource)
|
125
|
+
* roles
|
126
|
+
# get filtered object based on action (:public_info, :admin_info, etc.)
|
127
|
+
# attach a rule to a (subject|role, action, resource) triple
|
128
|
+
"subject should have role R"
|
129
|
+
"subject should have role R on resource X"
|
130
|
+
"should meet the
|
131
|
+
|
132
|
+
* Role supervisor:
|
133
|
+
* adds, defines, removes roles. no policy -- just attaches roles to users
|
134
|
+
|
135
|
+
* Policy
|
136
|
+
answers "can Actor do Action to Resource"
|
137
|
+
* Rules
|
138
|
+
* Rule resolution
|
139
|
+
* outcome, obligations.
|
140
|
+
policy definitions can come from many places, go to policy mgr.
|
141
|
+
* Hall monitor
|
142
|
+
enforces policy (before filters)
|
143
|
+
* Policy observers
|
144
|
+
handle policy obligations
|
145
|
+
|
146
|
+
* Athentication -- identification, really: securely attach visitor to identity
|
147
|
+
* Validation -- qualify trust
|
148
|
+
* Access control -- define policy
|
149
|
+
** Roles
|
150
|
+
** Acc. matrix
|
151
|
+
* Authorization -- enforce policy (reference monitor ; filter chain)
|
152
|
+
* Obligations
|
153
|
+
** Audit -- (observer)
|
154
|
+
|
@@ -0,0 +1,78 @@
|
|
1
|
+
h1. Rails Authentication, Authorization and Access Control plugins
|
2
|
+
|
3
|
+
h2. Authentication plugins
|
4
|
+
|
5
|
+
* http://github.com/technoweenie/restful-authentication/tree/master -- the accepted standard for authentication
|
6
|
+
* http://github.com/mrflip/restful-authentication/tree/master -- my fork of restful_authentication with more modularity, more specs and a few security tweaks
|
7
|
+
* http://github.com/josh/open_id_authentication/tree/master -- OpenID authentication
|
8
|
+
|
9
|
+
h2. Authorization plugins
|
10
|
+
|
11
|
+
From
|
12
|
+
* http://agilewebdevelopment.com/plugins/tag/security
|
13
|
+
* http://www.vaporbase.com/postings/Authorization_in_Rails
|
14
|
+
|
15
|
+
* http://github.com/jbarket/restful-authorization/tree/master
|
16
|
+
|
17
|
+
* http://agilewebdevelopment.com/plugins/rolerequirement
|
18
|
+
http://code.google.com/p/rolerequirement/
|
19
|
+
http://rolerequirement.googlecode.com/svn/tags/role_requirement/
|
20
|
+
9 votes
|
21
|
+
|
22
|
+
* http://github.com/ezmobius/acl_system2/
|
23
|
+
http://agilewebdevelopment.com/plugins/acl_system
|
24
|
+
http://opensvn.csie.org/ezra/rails/plugins/dev/acl_system2/
|
25
|
+
last touched 2006
|
26
|
+
57 votes on AWD
|
27
|
+
* also: http://agilewebdevelopment.com/plugins/acl_system2_ownership
|
28
|
+
|
29
|
+
bq. access_control [:new, :create, :update, :edit] => '(admin | user |
|
30
|
+
moderator)', :delete => 'admin'
|
31
|
+
<% restrict_to "(admin | moderator) & !blacklist" do %>
|
32
|
+
<%= link_to "Admin & Moderator only link", :action =>'foo' %>
|
33
|
+
<% end %>
|
34
|
+
|
35
|
+
* Authorization Recipe (from Rails Recipes #32)
|
36
|
+
http://www.vaporbase.com/postings/Authorization_in_Rails
|
37
|
+
http://opensvn.csie.org/mabs29/plugins/simple_access_control
|
38
|
+
|
39
|
+
* Active ACL
|
40
|
+
http://phpgacl.sourceforge.net/demo/phpgacl/docs/manual.html
|
41
|
+
(Access-matrix driven)
|
42
|
+
|
43
|
+
* http://github.com/aiwilliams/access_controlled_system
|
44
|
+
|
45
|
+
* http://agilewebdevelopment.com/plugins/access
|
46
|
+
|
47
|
+
* http://robzon.aenima.pl/2007/12/base-auth-is-out.html
|
48
|
+
http://agilewebdevelopment.com/plugins/base_auth
|
49
|
+
http://base-auth.googlecode.com/svn/trunk/
|
50
|
+
40 votes
|
51
|
+
|
52
|
+
* http://agilewebdevelopment.com/plugins/authorization
|
53
|
+
http://www.writertopia.com/developers/authorization
|
54
|
+
http://github.com/DocSavage/rails-authorization-plugin/tree/master
|
55
|
+
Opaque policy descriptions
|
56
|
+
19 votes
|
57
|
+
|
58
|
+
* http://github.com/shuber/access_control_list/
|
59
|
+
Not much there yet
|
60
|
+
|
61
|
+
* https://opensvn.csie.org/traccgi/tobionrails
|
62
|
+
http://agilewebdevelopment.com/plugins/access_control
|
63
|
+
http://opensvn.csie.org/tobionrails/plugins/access_control
|
64
|
+
last touched 1 year ago
|
65
|
+
|
66
|
+
* http://github.com/mdarby/restful_acl/
|
67
|
+
-- google code too --
|
68
|
+
Just does REST? More of an app than a plugin.
|
69
|
+
|
70
|
+
* http://github.com/stonean/lockdown/tree/master
|
71
|
+
http://lockdown.rubyforge.org
|
72
|
+
http://groups.google.com/group/stonean_lockdown?hl=en
|
73
|
+
"Lockdown stores an array of access rights in the session"
|
74
|
+
|
75
|
+
h2. Trust / Validation etc. plugins
|
76
|
+
|
77
|
+
|
78
|
+
* http://agilewebdevelopment.com/plugins/recaptcha
|
Binary file
|