request_refinery 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2c599438145bf3824bb157df27028e2d98bddd69
+  data.tar.gz: fc383596b104aaf01cac990f8e0c352000fadefb
+SHA512:
+  metadata.gz: 2fe4b3668b2d4389df0ed04419bbdc3a0f38c52b1b534acab11ebc05f59085015e39a4f260763ee0019aaa5cf103b76f78a86d2c0af92198e94c2c1c83576529
+  data.tar.gz: 513e0c8e2b24eff809cebe56e489c36e017ee73536a56b822dcd0e69f573352a2a206672f03328210e3b448d9524e2f4a146e00a40427ae7284e893356b8f622

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2014 YOURNAME
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,3 @@
+= RequestRefinery
+
+This project rocks and uses MIT-LICENSE.

data/Rakefile

@@ -0,0 +1,34 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'RequestRefinery'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../test/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task default: :test

data/app/assets/javascripts/request_refinery/application.js

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require_tree .

data/app/assets/javascripts/request_refinery/controller_filters.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/app/assets/javascripts/request_refinery/customers.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/app/assets/javascripts/request_refinery/permissions.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/app/assets/javascripts/request_refinery/roles.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/app/assets/stylesheets/request_refinery/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/app/assets/stylesheets/request_refinery/controller_filters.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/request_refinery/customers.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/request_refinery/permissions.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/request_refinery/roles.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/scaffold.css

@@ -0,0 +1,56 @@
+body { background-color: #fff; color: #333; }
+
+body, p, ol, ul, td {
+  font-family: verdana, arial, helvetica, sans-serif;
+  font-size:   13px;
+  line-height: 18px;
+}
+
+pre {
+  background-color: #eee;
+  padding: 10px;
+  font-size: 11px;
+}
+
+a { color: #000; }
+a:visited { color: #666; }
+a:hover { color: #fff; background-color:#000; }
+
+div.field, div.actions {
+  margin-bottom: 10px;
+}
+
+#notice {
+  color: green;
+}
+
+.field_with_errors {
+  padding: 2px;
+  background-color: red;
+  display: table;
+}
+
+#error_explanation {
+  width: 450px;
+  border: 2px solid red;
+  padding: 7px;
+  padding-bottom: 0;
+  margin-bottom: 20px;
+  background-color: #f0f0f0;
+}
+
+#error_explanation h2 {
+  text-align: left;
+  font-weight: bold;
+  padding: 5px 5px 5px 15px;
+  font-size: 12px;
+  margin: -7px;
+  margin-bottom: 0px;
+  background-color: #c00;
+  color: #fff;
+}
+
+#error_explanation ul li {
+  font-size: 12px;
+  list-style: square;
+}

data/app/controllers/request_refinery/application_controller.rb

@@ -0,0 +1,11 @@
+module RequestRefinery
+  class ApplicationController < ActionController::Base
+	before_action :authenticate_user!
+	before_action :enforce_request_permissions, except: [:unauthorized_request, :users]
+
+	helper_method :authorized_to?
+
+	include RequestRefinery::ControllerMethods
+
+  end
+end

data/app/controllers/request_refinery/controller_filters_controller.rb

@@ -0,0 +1,62 @@
+require_dependency "request_refinery/application_controller"
+
+module RequestRefinery
+  class ControllerFiltersController < ApplicationController
+    before_action :set_controller_filter, only: [:show, :edit, :update, :destroy]
+
+    # GET /controller_filters
+    def index
+      @controller_filters = ControllerFilter.all
+    end
+
+    # GET /controller_filters/1
+    def show
+    end
+
+    # GET /controller_filters/new
+    def new
+      @controller_filter = ControllerFilter.new
+    end
+
+    # GET /controller_filters/1/edit
+    def edit
+    end
+
+    # POST /controller_filters
+    def create
+      @controller_filter = ControllerFilter.new(controller_filter_params)
+
+      if @controller_filter.save
+        redirect_to @controller_filter, notice: 'Controller filter was successfully created.'
+      else
+        render :new
+      end
+    end
+
+    # PATCH/PUT /controller_filters/1
+    def update
+      if @controller_filter.update(controller_filter_params)
+        redirect_to @controller_filter, notice: 'Controller filter was successfully updated.'
+      else
+        render :edit
+      end
+    end
+
+    # DELETE /controller_filters/1
+    def destroy
+      @controller_filter.destroy
+      redirect_to controller_filters_url, notice: 'Controller filter was successfully destroyed.'
+    end
+
+    private
+      # Use callbacks to share common setup or constraints between actions.
+      def set_controller_filter
+        @controller_filter = ControllerFilter.find(params[:id])
+      end
+
+      # Only allow a trusted parameter "white list" through.
+      def controller_filter_params
+        params.require(:controller_filter).permit(:http_method, :controller, :action_name)
+      end
+  end
+end

data/app/controllers/request_refinery/customers_controller.rb

@@ -0,0 +1,62 @@
+require_dependency "request_refinery/application_controller"
+
+module RequestRefinery
+  class CustomersController < ApplicationController
+    before_action :set_customer, only: [:show, :edit, :update, :destroy]
+
+    # GET /customers
+    def index
+      @customers = Customer.all
+    end
+
+    # GET /customers/1
+    def show
+    end
+
+    # GET /customers/new
+    def new
+      @customer = Customer.new
+    end
+
+    # GET /customers/1/edit
+    def edit
+    end
+
+    # POST /customers
+    def create
+      @customer = Customer.new(customer_params)
+
+      if @customer.save
+        redirect_to @customer, notice: 'Customer was successfully created.'
+      else
+        render :new
+      end
+    end
+
+    # PATCH/PUT /customers/1
+    def update
+      if @customer.update(customer_params)
+        redirect_to @customer, notice: 'Customer was successfully updated.'
+      else
+        render :edit
+      end
+    end
+
+    # DELETE /customers/1
+    def destroy
+      @customer.destroy
+      redirect_to customers_url, notice: 'Customer was successfully destroyed.'
+    end
+
+    private
+      # Use callbacks to share common setup or constraints between actions.
+      def set_customer
+        @customer = Customer.find(params[:id])
+      end
+
+      # Only allow a trusted parameter "white list" through.
+      def customer_params
+        params.require(:customer).permit(:cust_id, :prefix, :folder_name, :error_email_recipients)
+      end
+  end
+end

data/app/controllers/request_refinery/permissions_controller.rb

@@ -0,0 +1,62 @@
+require_dependency "request_refinery/application_controller"
+
+module RequestRefinery
+  class PermissionsController < ApplicationController
+    before_action :set_permission, only: [:show, :edit, :update, :destroy]
+
+    # GET /permissions
+    def index
+      @permissions = Permission.all
+    end
+
+    # GET /permissions/1
+    def show
+    end
+
+    # GET /permissions/new
+    def new
+      @permission = Permission.new
+    end
+
+    # GET /permissions/1/edit
+    def edit
+    end
+
+    # POST /permissions
+    def create
+      @permission = Permission.new(permission_params)
+
+      if @permission.save
+        redirect_to @permission, notice: 'Permission was successfully created.'
+      else
+        render :new
+      end
+    end
+
+    # PATCH/PUT /permissions/1
+    def update
+      if @permission.update(permission_params)
+        redirect_to @permission, notice: 'Permission was successfully updated.'
+      else
+        render :edit
+      end
+    end
+
+    # DELETE /permissions/1
+    def destroy
+      @permission.destroy
+      redirect_to permissions_url, notice: 'Permission was successfully destroyed.'
+    end
+
+    private
+      # Use callbacks to share common setup or constraints between actions.
+      def set_permission
+        @permission = Permission.find(params[:id])
+      end
+
+      # Only allow a trusted parameter "white list" through.
+      def permission_params
+        params.require(:permission).permit(:name)
+      end
+  end
+end

data/app/controllers/request_refinery/roles_controller.rb

@@ -0,0 +1,62 @@
+require_dependency "request_refinery/application_controller"
+
+module RequestRefinery
+  class RolesController < ApplicationController
+    before_action :set_role, only: [:show, :edit, :update, :destroy]
+
+    # GET /roles
+    def index
+      @roles = Role.all
+    end
+
+    # GET /roles/1
+    def show
+    end
+
+    # GET /roles/new
+    def new
+      @role = Role.new
+    end
+
+    # GET /roles/1/edit
+    def edit
+    end
+
+    # POST /roles
+    def create
+      @role = Role.new(role_params)
+
+      if @role.save
+        redirect_to @role, notice: 'Role was successfully created.'
+      else
+        render :new
+      end
+    end
+
+    # PATCH/PUT /roles/1
+    def update
+      if @role.update(role_params)
+        redirect_to @role, notice: 'Role was successfully updated.'
+      else
+        render :edit
+      end
+    end
+
+    # DELETE /roles/1
+    def destroy
+      @role.destroy
+      redirect_to roles_url, notice: 'Role was successfully destroyed.'
+    end
+
+    private
+      # Use callbacks to share common setup or constraints between actions.
+      def set_role
+        @role = Role.find(params[:id])
+      end
+
+      # Only allow a trusted parameter "white list" through.
+      def role_params
+        params.require(:role).permit(:role_group, :permissions, :restrictions)
+      end
+  end
+end

data/app/helpers/request_refinery/application_helper.rb

@@ -0,0 +1,4 @@
+module RequestRefinery
+  module ApplicationHelper
+  end
+end

data/app/helpers/request_refinery/controller_filters_helper.rb

@@ -0,0 +1,4 @@
+module RequestRefinery
+  module ControllerFiltersHelper
+  end
+end

data/app/helpers/request_refinery/customers_helper.rb

@@ -0,0 +1,4 @@
+module RequestRefinery
+  module CustomersHelper
+  end
+end

data/app/helpers/request_refinery/permissions_helper.rb

@@ -0,0 +1,4 @@
+module RequestRefinery
+  module PermissionsHelper
+  end
+end

data/app/helpers/request_refinery/roles_helper.rb

@@ -0,0 +1,4 @@
+module RequestRefinery
+  module RolesHelper
+  end
+end

data/app/models/request_refinery/controller_filter.rb

@@ -0,0 +1,5 @@
+module RequestRefinery
+  class ControllerFilter < ActiveRecord::Base
+  	has_and_belongs_to_many :permissions
+  end
+end

data/app/models/request_refinery/customer.rb

@@ -0,0 +1,5 @@
+module RequestRefinery
+	class Customer < ActiveRecord::Base
+		has_and_belongs_to_many :users
+	end
+end

data/app/models/request_refinery/permission.rb

@@ -0,0 +1,11 @@
+module RequestRefinery
+	class Permission < ActiveRecord::Base
+		has_and_belongs_to_many :roles
+		has_and_belongs_to_many :users
+		has_and_belongs_to_many :inverse_roles, :class_name => "Role", :join_table => "request_refinery_restrictions_inverse_roles"
+		has_and_belongs_to_many :inverse_users, :class_name => "User", :join_table => "request_refinery_inverse_users_restrictions"
+		has_and_belongs_to_many :controller_filters
+
+		validates :name, presence: true, uniqueness: true
+	end
+end

data/app/models/request_refinery/role.rb

@@ -0,0 +1,9 @@
+module RequestRefinery
+	class Role < ActiveRecord::Base
+		has_and_belongs_to_many :permissions
+		has_and_belongs_to_many :users
+		has_and_belongs_to_many :restrictions, :class_name => "Permission", :join_table => "request_refinery_restrictions_inverse_roles"
+
+		validates :group, presence: true, uniqueness: true
+	end
+end

data/app/models/request_refinery/user.rb

@@ -0,0 +1,51 @@
+module RequestRefinery
+	require 'devise'
+	require_relative "../../../config/initializers/devise.rb"
+
+	class User < ActiveRecord::Base
+		# Include default devise modules. Others available are:
+		# :confirmable, :lockable, :timeoutable and :omniauthable
+		devise :database_authenticatable, :registerable, :recoverable, :rememberable, :trackable, :validatable
+
+		before_create :initialize_username
+		before_save	:initialize_username
+
+		has_and_belongs_to_many :permissions
+		has_and_belongs_to_many :restrictions, :class_name => "Permission", :join_table => "request_refinery_inverse_users_restrictions"
+		has_and_belongs_to_many :roles
+		has_and_belongs_to_many :customers
+
+		validates :email, presence: true, uniqueness: true
+		validates :password, presence: true
+
+		def initialize_username
+			self.username = self.email if self.username.blank? or User.where(username:self.username).count > 0
+		end
+
+		def permissions
+			# get permissions from Permissions and Roles, account for the :all permission
+			p = super
+			self.roles.each{|x| p += x.permissions}	# parse permissions from the user's roles
+			p_a = p.to_a
+			(p_a = Permission.all.to_a) if p.any? {|x| x.name == "all"}	# if they have the all permissions, give them all permissions
+
+			# get restrictions
+			r = self.restrictions
+			r_a = r.to_a
+
+			# remove restrictions from the permissions
+			p_s = Set.new(p_a) - Set.new(r_a)
+
+			return p_s.to_a
+		end
+
+		def permission_syms
+			self.permissions.collect{|x| x.name.to_sym}
+		end
+
+		def permission_strings
+			self.permissions.collect{|x| x.name}
+		end
+
+	end
+end

data/app/views/layouts/request_refinery/application.html.erb

@@ -0,0 +1,15 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>RequestRefinery</title>
+  <%= stylesheet_link_tag    "request_refinery/application", media: "all" %>
+  <%= javascript_include_tag "request_refinery/application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+	<p class="notice"><%= notice %></p>
+	<p class="alert"><%= alert %></p>
+	<%= yield %>
+
+</body>
+</html>

data/app/views/request_refinery/controller_filters/_form.html.erb

@@ -0,0 +1,29 @@
+<%= form_for(@controller_filter) do |f| %>
+  <% if @controller_filter.errors.any? %>
+    <div id="error_explanation">
+      <h2><%= pluralize(@controller_filter.errors.count, "error") %> prohibited this controller_filter from being saved:</h2>
+
+      <ul>
+      <% @controller_filter.errors.full_messages.each do |message| %>
+        <li><%= message %></li>
+      <% end %>
+      </ul>
+    </div>
+  <% end %>
+
+  <div class="field">
+    <%= f.label :http_method %><br>
+    <%= f.text_field :http_method %>
+  </div>
+  <div class="field">
+    <%= f.label :controller %><br>
+    <%= f.text_field :controller %>
+  </div>
+  <div class="field">
+    <%= f.label :action_name %><br>
+    <%= f.text_field :action_name %>
+  </div>
+  <div class="actions">
+    <%= f.submit %>
+  </div>
+<% end %>

data/app/views/request_refinery/controller_filters/edit.html.erb

@@ -0,0 +1,6 @@
+<h1>Editing controller_filter</h1>
+
+<%= render 'form' %>
+
+<%= link_to 'Show', @controller_filter %> |
+<%= link_to 'Back', controller_filters_path %>

data/app/views/request_refinery/controller_filters/index.html.erb

@@ -0,0 +1,29 @@
+<h1>Listing controller_filters</h1>
+
+<table>
+  <thead>
+    <tr>
+      <th>Http method</th>
+      <th>Controller</th>
+      <th>Action name</th>
+      <th colspan="3"></th>
+    </tr>
+  </thead>
+
+  <tbody>
+    <% @controller_filters.each do |controller_filter| %>
+      <tr>
+        <td><%= controller_filter.http_method %></td>
+        <td><%= controller_filter.controller %></td>
+        <td><%= controller_filter.action_name %></td>
+        <td><%= link_to 'Show', controller_filter %></td>
+        <td><%= link_to 'Edit', edit_controller_filter_path(controller_filter) %></td>
+        <td><%= link_to 'Destroy', controller_filter, method: :delete, data: { confirm: 'Are you sure?' } %></td>
+      </tr>
+    <% end %>
+  </tbody>
+</table>
+
+<br>
+
+<%= link_to 'New Controller filter', new_controller_filter_path %>

data/app/views/request_refinery/controller_filters/new.html.erb

@@ -0,0 +1,5 @@
+<h1>New controller_filter</h1>
+
+<%= render 'form' %>
+
+<%= link_to 'Back', controller_filters_path %>