radiant-users-extension 0.0.5 → 2.1.0.beta

data/app/views/passwords/new.html.haml

@@ -0,0 +1,14 @@
+#single_form
+  
+  %h1= t('devise.passwords.link')
+    
+  - form_for(resource_name, resource, :url => password_path(resource_name), :html => { :method => :post }) do |f|
+    %p
+      = f.label :email, t('email')
+      = f.text_field :email, :class => 'textbox', :maxlength => 40, :size => 40, :type => "email"
+    
+    %p.buttons
+      = f.submit t('devise.passwords.button')
+      = render "shared/links"
+      
+= render "shared/version"

data/app/views/registrations/edit.html.haml

@@ -0,0 +1,32 @@
+#single_form
+  
+  %h1
+    #{t('edit')} #{resource_name.to_s.humanize}
+  
+  %h2
+    #{link_to "Cancel my account", registration_path(resource_name), :confirm => "Are you sure?", :method => :delete}
+    
+  - form_for(resource_name, resource, :url => registration_path(resource_name), :html => { :method => :put }) do |f|
+    %p
+      = f.label :name, t('name')
+      = f.text_field :name, :class => 'textbox', :maxlength => 40, :size => 40
+    
+    %p
+      = f.label :email, t('email')
+      = f.text_field :email, :class => 'textbox', :maxlength => 40, :size => 40, :type => "email"
+    
+    %p
+      %em (leave blank if you don't want to change it)
+      = f.label :password, t('password')
+      = f.password_field :password, :class => 'textbox', :maxlength => 40, :size => 40
+      
+    %p
+      %em (We need this to save changes)
+      = f.label :current_password, t('current_password')
+      = f.password_field :current_password, :class => 'textbox', :maxlength => 40, :size => 40
+    
+    %p.buttons
+      = f.submit t('buttons.save_and_continue')
+      = render "shared/links"
+      
+= render "shared/version"

data/app/views/registrations/new.html.haml

@@ -0,0 +1,30 @@
+#single_form
+  
+  %h1= t('devise.registrations.link')
+    
+  - form_for(resource_name, resource, :url => registration_path(resource_name)) do |f|
+    %p
+      = f.label :name, t('name')
+      = f.text_field :name, :class => 'textbox', :maxlength => 40, :size => 40
+    
+    %p
+      = f.label :username, t('username')
+      = f.text_field :username, :class => 'textbox', :maxlength => 40, :size => 40
+  
+    %p
+      = f.label :email, t('email')
+      = f.text_field :email, :class => 'textbox', :maxlength => 40, :size => 40, :type => "email"
+    
+    %p
+      = f.label :password, t('password')
+      = f.password_field :password, :class => 'textbox', :maxlength => 40, :size => 40
+      
+    %p
+      = f.label :password_confirmation, t('password_confirmation')
+      = f.password_field :password_confirmation, :class => 'textbox', :maxlength => 40, :size => 40
+    
+    %p.buttons
+      = f.submit t('devise.registrations.link')
+      = render "shared/links"
+      
+= render "shared/version"

data/app/views/sessions/new.html.haml

@@ -0,0 +1,27 @@
+#single_form
+  
+  %h1
+    = t('devise.sessions.link')  
+  
+  - if devise_mapping.registerable?
+    %h2
+      (or 
+      %span<>= link_to(t('devise.registrations.link'), new_registration_path(resource_name))
+      )
+    
+  - form_for(resource_name, resource, :url => session_path(resource_name)) do |f|
+    %p
+      = f.label :login, t('username_or_email')
+      = f.text_field :login, :class => 'textbox', :maxlength => 40, :size => 40
+    %p
+      = f.label :password, t('password')
+      = f.password_field :password, :class => 'textbox password', :maxlength => 40, :size => 40
+    - if devise_mapping.rememberable?
+      %p.remember_me
+        = f.check_box :remember_me, :class => 'checkbox', :checked => 'false', :value => 1
+        = f.label :remember_me, t('remember_me_in_this_browser'), :class => "checkbox"
+    %p.buttons
+      = f.submit t('login')
+      = render "shared/links"
+
+= render "shared/version"

data/app/views/shared/_links.html.haml

@@ -0,0 +1,42 @@
+- unless user_signed_in?
+  %span.links
+    - if controller_name != 'sessions'
+      = link_to t('devise.sessions.link'), new_session_path(resource_name)
+    - if devise_mapping.recoverable? && controller_name != 'passwords'  && controller_name != 'registrations'
+      = link_to t('devise.passwords.link'), new_password_path(resource_name)
+    - if devise_mapping.confirmable? && controller_name != 'confirmations'
+      = link_to t('devise.confirmations.link'), new_confirmation_path(resource_name)
+    - if devise_mapping.lockable? && resource_class.unlock_strategy_enabled?(:email) && controller_name != 'unlocks'
+      = link_to t('devise.unlocks.link'), new_unlock_path(resource_name)
+  
+%style{:type=>"text/css"}
+  :sass
+    #content
+    
+      #single_form 
+        padding-bottom: 10px !important
+          
+        h2
+          position: absolute
+          top: 20px
+          right: 25px
+          font-size: 0.8em
+      
+        em
+          float: right
+      
+        p.buttons
+          padding-top: 10px
+        
+          .links 
+            position: absolute
+            dispaly: block
+            bottom: 20px
+            right: 25px
+            overflow: hidden
+        
+            a
+              float: right
+              clear: right
+              color: #000
+              font-size: 0.75em

data/app/views/shared/_version.html.haml

@@ -0,0 +1,5 @@
+%p.version
+  = t('powered_by')
+  %a{ :href => "http://radiantcms.org" } Radiant CMS
+  = t('version')   
+  = Radiant.loaded_via_gem? ? "#{Radiant::Version} (gem)." : "#{Radiant::Version}."

data/app/views/unlocks/new.html.haml

@@ -0,0 +1,9 @@
+%h2 Resend unlock instructions
+= form_for(resource, :as => resource_name, :url => unlock_path(resource_name), :html => { :method => :post }) do |f|
+  = devise_error_messages!
+  %p
+    = f.label :email
+    %br/
+    = f.email_field :email
+  %p= f.submit "Resend unlock instructions"
+= render :partial => "devise/shared/links"

data/config/initializers/devise.rb

@@ -0,0 +1,12 @@
+Devise.setup do |config|
+  
+  config.mailer_sender       = "please-change-me@config-initializers-devise.com"
+  config.use_default_scope   = true
+  config.default_scope       = :user
+  config.scoped_views        = true
+    
+  config.encryptor           = :radiant
+  
+  config.authentication_keys = [:login]
+  
+end

data/config/initializers/radiant_config.rb

@@ -0,0 +1,3 @@
+Radiant.config do |config|
+  # config.define "setting.name", :default => 'value', :select_from => ['foo', 'bar']
+end

data/config/initializers/radiant_devise_encryptor.rb

@@ -0,0 +1,10 @@
+module Devise
+  module Encryptors
+    class Radiant < Base
+      def self.digest(password, stretches, salt, pepper)
+        str = [password, salt].flatten.compact.join
+        Digest::SHA1.hexdigest("--#{salt}--#{password}--")
+      end
+    end
+  end
+end

data/config/locales/devise.en.yml

@@ -0,0 +1,35 @@
+en:
+  devise:
+    sessions:
+      link: 'Login'
+      signed_in: 'Logged in successfully.'
+      signed_out: 'Logged out successfully.'
+      unauthenticated: 'You need to log in or sign up before continuing.'
+      unconfirmed: 'You have to confirm your account before continuing.'
+      locked: 'Your account is locked.'
+      invalid: 'Invalid email or password.'
+      invalid_token: 'Invalid authentication token.'
+      timeout: 'Your session expired, please sign in again to continue.'
+      inactive: 'Your account was not activated yet.'
+    passwords:
+      link: 'Forgot password?'
+      button: 'Send reset instructions'
+      send_instructions: 'You will receive an email with instructions about how to reset your password in a few minutes.'
+      updated: 'Your password was changed successfully. You are now signed in.'
+    confirmations:
+      link: "Didn't receive confirmation instructions?"
+      send_instructions: 'You will receive an email with instructions about how to confirm your account in a few minutes.'
+      confirmed: 'Your account was successfully confirmed. You are now signed in.'
+    registrations:
+      link: 'Sign up'
+      signed_up: 'You have signed up successfully.'
+      updated: 'You updated your account successfully.'
+      destroyed: 'Bye! Your account was successfully cancelled. We hope to see you again soon.'
+    unlocks:
+      link: "Didn't receive unlock instructions?"
+      send_instructions: 'You will receive an email with instructions about how to unlock your account in a few minutes.'
+      unlocked: 'Your account was successfully unlocked. You are now signed in.'
+    mailer:
+      confirmation_instructions: 'Confirmation instructions'
+      reset_password_instructions: 'Reset password instructions'
+      unlock_instructions: 'Unlock Instructions'

data/config/locales/en.yml

@@ -0,0 +1,8 @@
+---
+en:
+  users: Users
+  email: 'E-mail Address'
+  new_password: 'New Password'
+  current_password: 'Current Password'
+  role: Role
+  roles: Roles

data/config/routes.rb

@@ -1,8 +1,13 @@
 ActionController::Routing::Routes.draw do |map|
-
-  map.with_options(:controller => 'admin/welcome') do |welcome|
-    welcome.login   'login',    :action => 'login'
-    welcome.logout  'logout',   :action => 'logout'
-  end
-    
+  
+  map.devise_for                :users,         :path_names => { :sign_in => 'login', :sign_out => 'logout' }
+  map.new_user_session          'login',        :controller => 'sessions',      :action => 'new',     :conditions => { :method => :get  }
+  map.old_user_session          'admin/login',  :controller => 'sessions',      :action => 'new',     :conditions => { :method => :get  }
+  map.user_session              'login',        :controller => 'sessions',      :action => 'create',  :conditions => { :method => :post }
+  map.destroy_user_session      'logout',       :controller => 'sessions',      :action => 'destroy', :conditions => { :method => :get  }
+  map.old_destroy_user_session  'admin/logout', :controller => 'sessions',      :action => 'destroy', :conditions => { :method => :get  }
+  
+  map.user_root_path            'users/root',   :controller => 'admin/welcome', :action => 'index'
+  # This can redirect to anything by overiding ApplicationController#default_admin_path
+  
 end

data/db/migrate/20110105024337_change_users_to_devise.rb

@@ -0,0 +1,94 @@
+# create_table "users", :force => true do |t|
+#   t.string   "name",          :limit => 100
+#   t.string   "email"
+#   t.string   "login",         :limit => 40,  :default => "",    :null => false
+#   t.string   "password",      :limit => 40
+#   t.datetime "created_at"
+#   t.datetime "updated_at"
+#   t.integer  "created_by_id"
+#   t.integer  "updated_by_id"
+#   t.boolean  "admin",                        :default => false, :null => false
+#   t.boolean  "designer",                     :default => false, :null => false
+#   t.text     "notes"
+#   t.integer  "lock_version",                 :default => 0
+#   t.string   "salt"
+#   t.string   "session_token"
+#   t.string   "locale"
+# end
+
+# devise :database_authenticatable, :confirmable, :recoverable, :rememberable, :token_authenticatable
+
+class ChangeUsersToDevise < ActiveRecord::Migration
+  def self.up
+    add_column :users, :encrypted_password,   :string, :null => false, :default => "", :limit => 128
+    add_column :users, :password_salt,        :string, :null => false, :default => ""
+    add_column :users, :username,             :string, :null => false, :default => "", :limit => 40
+    
+    add_column :users, :confirmation_token,   :string
+    add_column :users, :confirmed_at,         :date_time
+    add_column :users, :confirmation_sent_at, :date_time
+    
+    add_column :users, :reset_password_token, :string
+    
+    add_column :users, :remember_token,       :string
+    add_column :users, :remember_created_at,  :date_time
+    
+    add_column :users, :authentication_token, :string
+    
+    User.reset_column_information
+    puts "\n-- Migrating Users \n\n"
+    User.find_each do |user|
+      user[:username]           = user[:login]
+      user[:encrypted_password] = user[:password]
+      user[:password_salt]      = user[:salt]
+      
+      if user[:email].present?
+        user[:email]  = user[:email]
+      else
+        puts "    WARNING: `#{user[:username]}` will need to set a real email address"
+        user[:email]  = 'set@email.com'
+      end
+      
+      user.confirm!
+      user.save!
+    end
+    puts "\n\n"
+    
+    remove_column :users, :login
+    remove_column :users, :password
+    remove_column :users, :salt
+    
+  end
+  
+  def self.down
+    
+    add_column :users, :login,    :string, :limit => 40, :null => false, :default => ""
+    add_column :users, :password, :string, :limit => 40
+    add_column :users, :salt,     :string
+    
+    User.reset_column_information
+    User.find_each do |user|
+      user[:login]    = user[:username]
+      user[:password] = user[:encrypted_password]
+      user[:salt]     = user[:password_salt]
+      
+      user.save!
+    end
+    
+    remove_column :users, :encrypted_password
+    remove_column :users, :password_salt
+    remove_column :users, :username
+    
+    remove_column :users, :confirmation_token
+    remove_column :users, :confirmed_at
+    remove_column :users, :confirmation_sent_at
+    
+    remove_column :users, :reset_password_token
+    
+    remove_column :users, :remember_token
+    remove_column :users, :remember_created_at
+    
+    remove_column :users, :authentication_token
+    
+  end
+end

data/db/migrate/20110105150917_add_class_name_field.rb

@@ -0,0 +1,9 @@
+class AddClassNameField < ActiveRecord::Migration
+  def self.up
+    add_column :users, :class_name, :string, :allow_blank => true
+  end
+
+  def self.down
+    remove_column :users, :class_name
+  end
+end

data/db/migrate/20110107032850_move_permissions_to_class.rb

@@ -0,0 +1,30 @@
+class User < ActiveRecord::Base; end
+
+class MovePermissionsToClass < ActiveRecord::Migration
+  def self.up
+    
+    begin
+      User.find_each do |u|
+        class_name = "User"
+        class_name = "Designer"      if u.designer == true
+        class_name = "Administrator" if u.admin == true
+      
+        u.update_attribute(:class_name, class_name)
+      end
+    rescue
+      # You probably didn't need this then
+    end
+    
+    remove_column :users, :admin
+    remove_column :users, :designer
+  end
+
+  def self.down
+    create_column :users, :admin,    :boolean
+    create_column :users, :designer, :boolean
+    User.find_each do |u|
+      u.designer = true if u.has_role?(:designer)
+      u.admin = true    if u.has_role?(:admin)
+    end
+  end
+end

data/db/migrate/20110118103247_change_admin_to_administrator.rb

@@ -0,0 +1,18 @@
+class User < ActiveRecord::Base; end
+
+class ChangeAdminToAdministrator < ActiveRecord::Migration
+  def self.up
+    
+    begin
+      User.find_each do |user|
+        user.update_attribute(:class_name, 'Administrator') if user.class_name == 'Admin'
+      end
+    rescue
+      # You probably didn't need this then
+    end
+  end
+
+  def self.down
+    raise ActiveRecord::IrreversibleMigration
+  end
+end

data/features/support/env.rb

@@ -12,5 +12,5 @@ Cucumber::Rails::World.class_eval do
   Dataset::Resolver.default = Dataset::DirectoryResolver.new("#{RADIANT_ROOT}/spec/datasets", File.dirname(__FILE__) + '/../../spec/datasets', File.dirname(__FILE__) + '/../datasets')
   self.datasets_database_dump_path = "#{Rails.root}/tmp/dataset"
   
-  # dataset :login_candy
+  # dataset :users
 end

data/lib/login_system.rb

@@ -0,0 +1,81 @@
+module LoginSystem
+  
+  def self.included(base)
+    base.extend ClassMethods
+    base.class_eval do
+      prepend_before_filter :authenticate_user
+    end
+  end
+  
+  def authenticate_user
+    authenticate_user!
+  end
+  
+  def authenticate_user_with_authorize
+    if authenticate_user_without_authorize
+      action = action_name.to_s.intern
+      if user_has_access_to_action?(action)
+        true
+      else
+        permissions   = self.class.controller_permissions[action]
+        flash[:error] = permissions[:denied_message] || 'You must have moderator privileges to perform this action.'
+        respond_to do |format|
+          format.html { redirect_to(default_admin_path) }
+          format.any(:xml, :json) { head :forbidden }
+        end
+        false
+      end
+    else
+      redirect_to after_sign_out_path_for(current_user)
+      false
+    end
+  end
+  alias_method_chain :authenticate_user, :authorize
+  
+  def user_has_access_to_action?(action)
+    result = self.class.user_has_access_to_action?(current_user, action, self)
+  end
+  
+  module ClassMethods
+    def no_login_required
+      # skip_before_filter :authenticate_user
+      # Not working in some systems
+    end
+    
+    def only_allow_access_to(*args)
+      options = {}
+      options = args.pop.dup if args.last.kind_of?(Hash)
+      options.symbolize_keys!
+      actions = args.map { |a| a.to_s.intern }
+      actions.each do |action|
+        controller_permissions[action] = options
+      end
+    end
+    
+    def controller_permissions
+      @controller_permissions ||= Hash.new { |h,k| h[k.to_s.intern] = Hash.new }
+    end
+    
+    def user_has_access_to_action?(user, action, instance=new)
+      result = false
+      
+      permissions = controller_permissions[action.to_s.intern]
+      case
+      when permissions[:when].present?
+        allowed_roles = [permissions[:when]].flatten
+        
+        # We no longer have an admin role, if it's in there replace it with administrator
+        allowed_roles.map! { |role| role == :admin ? :administrator : role }
+        
+        result = allowed_roles.include? user.class_name.downcase.to_sym
+      when permissions[:if].present?
+        result = instance.send(permissions[:if])
+      else
+        result = [:administrator,:designer,:user].include? user.class_name.downcase.to_sym
+      end
+      
+      return result
+    end
+  end
+  
+end