RubyGems - ruby_cms - Versions diffs - 0.1.1 → 0.1.3 - Mend

ruby_cms 0.1.1 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (60) hide show

data/lib/ruby_cms/engine.rb CHANGED Viewed

@@ -98,6 +98,14 @@ module RubyCms
       RubyCms::Settings.import_initializer_values!
     end
+    # After host initializers (e.g. register_permission_keys), ensure Permission rows exist
+    # so can?(:manage_backups) and other keys do not fail on Permission.exists? checks.
+    initializer "ruby_cms.ensure_permission_rows", after: :load_config_initializers do
+      RubyCms::Permission.ensure_defaults!
+    rescue StandardError => e
+      Rails.logger.warn("[RubyCMS] Permission.ensure_defaults! skipped: #{e.message}")
+    end
     def self.register_main_nav_items
       RubyCms.nav_register(
         key: :dashboard,
@@ -105,6 +113,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_root_path),
         icon: dashboard_icon_path,
         section: RubyCms::NAV_SECTION_MAIN,
+        permission: :manage_admin,
         order: 1
       )
       RubyCms.nav_register(
@@ -113,6 +122,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_visual_editor_path),
         icon: visual_editor_icon_path,
         section: RubyCms::NAV_SECTION_MAIN,
+        permission: :manage_content_blocks,
         order: 2
       )
       RubyCms.nav_register(
@@ -121,6 +131,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_content_blocks_path),
         icon: content_blocks_icon_path,
         section: RubyCms::NAV_SECTION_MAIN,
+        permission: :manage_content_blocks,
         order: 3
       )
     end
@@ -163,6 +174,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_permissions_path),
         section: RubyCms::NAV_SECTION_BOTTOM,
         icon: permissions_icon_path,
+        permission: :manage_permissions,
         order: 2
       )
       RubyCms.nav_register(
@@ -171,6 +183,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_visitor_errors_path),
         section: RubyCms::NAV_SECTION_BOTTOM,
         icon: visitor_errors_icon_path,
+        permission: :manage_visitor_errors,
         order: 3
       )
       RubyCms.nav_register(
@@ -179,6 +192,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_users_path),
         section: RubyCms::NAV_SECTION_BOTTOM,
         icon: users_icon_path,
+        permission: :manage_permissions,
         order: 4
       )
       RubyCms.nav_register(
@@ -187,6 +201,7 @@ module RubyCms
         path: lambda(&:ruby_cms_admin_settings_path),
         section: RubyCms::NAV_SECTION_BOTTOM,
         icon: settings_icon_path,
+        permission: :manage_admin,
         order: 5
       )
     end
@@ -358,13 +373,7 @@ module RubyCms
     def self.grant_admin_permissions_to_admin_users
       return unless defined?(::User) && User.column_names.include?("admin")
-      permission_keys = %w[
-        manage_admin
-        manage_permissions
-        manage_content_blocks
-        manage_visitor_errors
-        manage_analytics
-      ]
+      permission_keys = RubyCms::Permission.all_keys
       permissions = RubyCms::Permission.where(key: permission_keys).index_by(&:key)
       User.where(admin: true).find_each do |u|
         permission_keys.each do |key|
@@ -416,11 +425,10 @@ module RubyCms
     def self.grant_manage_admin_permission(user, email)
       RubyCms::Permission.ensure_defaults!
-      %w[
-        manage_admin manage_permissions manage_content_blocks manage_visitor_errors
-        manage_analytics
-      ].each do |key|
-        perm = RubyCms::Permission.find_by!(key:)
+      RubyCms::Permission.all_keys.each do |key|
+        perm = RubyCms::Permission.find_by(key:)
+        next unless perm
         RubyCms::UserPermission.find_or_create_by!(user: user, permission: perm)
       end
       puts "Granted full admin permissions to #{email}" # rubocop:disable Rails/Output

data/lib/ruby_cms/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module RubyCms
-  VERSION = "0.1.1"
+  VERSION = "0.1.3"
 end

data/lib/ruby_cms.rb CHANGED Viewed

@@ -15,6 +15,30 @@ module RubyCms
   mattr_accessor :nav_registry
   self.nav_registry = []
+  # Permission configuration (available at boot, before models load)
+  DEFAULT_PERMISSION_KEYS = %w[
+    manage_admin
+    manage_permissions
+    manage_content_blocks
+    manage_visitor_errors
+    manage_analytics
+  ].freeze
+  mattr_accessor :extra_permission_keys, default: []
+  mattr_accessor :permission_templates, default: {}
+  def self.register_permission_keys(*keys)
+    self.extra_permission_keys = (extra_permission_keys + keys.flatten.map(&:to_s)).uniq
+  end
+  def self.register_permission_template(name, label:, keys:, description: nil)
+    permission_templates[name.to_sym] = {
+      label: label,
+      keys: keys.map(&:to_s),
+      description: description
+    }
+  end
   # Navigation section keys. Order in sidebar: main, then Settings (bottom).
   # User can add items to either via nav_register with section: NAV_SECTION_MAIN (order 10+)
   # or section: NAV_SECTION_BOTTOM (order 10+).

data/lib/tasks/admin.rake ADDED Viewed

@@ -0,0 +1,120 @@
+# frozen_string_literal: true
+namespace :admin do
+  def ruby_cms_user_class
+    Object.const_get(Rails.application.config.ruby_cms.user_class_name.presence ||
+                        "User")
+  end
+  def ruby_cms_email_attr(user_class)
+    user_class.column_names.include?("email_address") ? :email_address : :email
+  end
+  def ruby_cms_find_user_by_email(email)
+    user_class = ruby_cms_user_class
+    email_attr = ruby_cms_email_attr(user_class)
+    user_class.find_by(email_attr => email)
+  end
+  def ruby_cms_make_user_full_admin!(user)
+    # Prefer host app's make_admin! if it exists.
+    if user.respond_to?(:make_admin!) && user.respond_to?(:admin?) && !user.admin?
+      user.make_admin!
+    elsif user.class.column_names.include?("admin")
+      # Fallback if admin? / make_admin! aren't provided by host app.
+      user.update!(admin: true) unless user.respond_to?(:admin?) && user.admin?
+    end
+  end
+  def ruby_cms_grant_all_permissions_to!(user, email:)
+    RubyCms::Permission.ensure_defaults!
+    RubyCms::UserPermission.where(user:).destroy_all
+    RubyCms::Engine.grant_manage_admin_permission(user, email)
+  end
+  desc "Make a user a full admin with all permissions (no templates). Usage: rails admin:make_admin email=user@example.com"
+  task make_admin: :environment do
+    email = ENV["email"] || ENV.fetch("EMAIL", nil)
+    abort "Usage: rails admin:make_admin email=user@example.com" if email.blank?
+    user = ruby_cms_find_user_by_email(email)
+    abort "User not found: #{email}" unless user
+    ruby_cms_make_user_full_admin!(user)
+    ruby_cms_grant_all_permissions_to!(user, email:)
+    keys = RubyCms::UserPermission.where(user:)
+                                  .joins(:permission)
+                                  .pluck("permissions.key")
+                                  .sort
+                                  .uniq
+    puts "#{email} is now admin with #{keys.size} permission(s):"
+    keys.each {|k| puts "  - #{k}" }
+  end
+  desc "List all users with their admin status and permission keys"
+  task list_users: :environment do
+    user_class = ruby_cms_user_class
+    email_attr = ruby_cms_email_attr(user_class)
+    users = user_class.order(email_attr)
+    if users.none?
+      puts "No users found."
+      next
+    end
+    users.each do |user|
+      keys = RubyCms::UserPermission.where(user:)
+                                    .joins(:permission)
+                                    .pluck("permissions.key")
+                                    .sort
+      admin_flag = user.respond_to?(:admin?) ? user.admin? : false
+      puts "#{user.public_send(email_attr)} admin=#{admin_flag} keys=#{keys.join(', ')}"
+    end
+  end
+  desc "Seed all permission keys into the database (no templates)."
+  task seed_permissions: :environment do
+    RubyCms::Permission.ensure_defaults!
+    RubyCms::Settings.ensure_defaults! if defined?(RubyCms::Settings)
+    RubyCms::Settings.import_initializer_values! if defined?(RubyCms::Settings)
+    puts "Permissions: #{RubyCms::Permission.pluck(:key).sort.join(', ')}"
+  end
+  desc "Delete admin user. Usage: rails admin:delete email=user@example.com"
+  task delete: :environment do
+    email = ENV["email"] || ENV.fetch("EMAIL", nil)
+    abort "Usage: rails admin:delete email=user@example.com" if email.blank?
+    user = ruby_cms_find_user_by_email(email)
+    abort "User not found: #{email}" unless user
+    print "Delete #{email}? (yes/no): "
+    abort "Cancelled." unless $stdin.gets.to_s.strip.downcase == "yes"
+    user.destroy!
+    puts "Deleted #{email}"
+  end
+  desc "Log out all users (delete all sessions)"
+  task logout_all: :environment do
+    abort "Session constant not found in host app. Ensure your auth generator created Session." unless defined?(Session)
+    count = Session.count
+    if count.zero?
+      puts "No active sessions."
+      next
+    end
+    print "Log out all #{count} session(s)? (yes/no): "
+    abort "Cancelled." unless $stdin.gets.to_s.strip.downcase == "yes"
+    Session.destroy_all
+    puts "Logged out #{count} session(s)"
+  end
+end