solidify 0.0.1.alpha

data/app/views/solidify/themes/skeleton-theme/templates/search.liquid

@@ -0,0 +1,72 @@
+{% comment %}
+The search.liquid template is not a required template.
+That search.liquid template is included in the current theme to make it easier for you 
+to customize your /search page.
+Whether you are using your own template for the search page or not,
+the {{ content_for_header }} tag in theme.liquid will always output the following on the /search page:
+<link rel="stylesheet" href="//cdn.shopify.com/s/global/search.css" type="text/css" />
+So the /search page is always styled by a globally-hosted stylesheet called search.css.
+You may override and complement that CSS in your theme's stylesheet.
+We are using a div#searchresults below so that the styles defined in search.css get
+applied to the elements on this page; the 'searchresults' id is used in the CSS
+selectors inside search.css.
+{% endcomment %}
+
+<div id="searchresults">
+  
+  <div class="centered">
+    <form action="/search" method="get" class="search-form" role="search">
+      <input name="q" type="search" id="search-field" placeholder="Search store..." value="{{ search.terms | escape }}" />
+      <input type="submit" id="search-submit" value="Search" />
+    </form>
+  </div>
+  
+  {% comment %}
+  search.performed is false when accessing the /search page without a 'q' parameter set
+  in the URL. A shop-owner can link to the /search page from one of his link lists.
+  It is important to show a search form on that page if search.performed is false.
+  {% endcomment %}
+  
+  {% if search.performed %}
+    
+    {% paginate search.results by 10 %}
+    
+    {% comment %}
+    Common pitfall to avoid: search.results should never be accessed before the opening 
+    paginate tag. Move the opening and closing paginate tags to the very top and bottom of your
+    search.liquid template if you need to.
+    If you fail to do the above, the pagination of search results will be broken.
+    search.results_count is fine to access in or out of the paginate block.
+    {% endcomment %}
+  
+    {% if search.results_count == 0 %}  
+    <p class="centered">Your search for "{{ search.terms }}" did not yield any results.</p>              
+    {% else %}
+    <ol>
+      {% for item in search.results %}      
+      <li class="clearfix">
+        <h3>{{ item.title | link_to: item.url }}</h3>
+        {% if item.vendor %}
+        <div class="result-image">
+          <a href="{{ item.url }}" title="{{ item.title | escape }}">
+            {{ item | img_url: 'small' | img_tag: item.featured_image.alt }}
+          </a>
+        </div>
+        {% endif %}
+        <span>{{ item.content | strip_html | truncatewords: 40 | highlight: search.terms }}</span>        
+      </li>
+      {% endfor %}
+    </ol>
+    {% endif %}    
+    
+    {% if paginate.pages > 1 %}
+    <div id="pagination">
+      {{ paginate | default_pagination }}
+    </div>
+    {% endif %}
+    
+    {% endpaginate %}    
+    
+  {% endif %}  
+
+</div>

data/bin/rails

@@ -0,0 +1,12 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails 4 gems installed from the root of your application.
+
+ENGINE_ROOT = File.expand_path('../..', __FILE__)
+ENGINE_PATH = File.expand_path('../../lib/solidify/engine', __FILE__)
+
+# Set up gems listed in the Gemfile.
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
+require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
+
+require 'rails/all'
+require 'rails/engine/commands'

data/config/initializers/carrierwave.rb

@@ -0,0 +1,25 @@
+CarrierWave.configure do |config|
+  if Rails.env.production?
+    config.fog_provider = 'fog/aws'
+
+    config.fog_credentials = {
+      provider: 'AWS',
+      aws_access_key_id: ENV.fetch('AWS_ACCESS_KEY_ID'),
+      aws_secret_access_key: ENV.fetch('AWS_SECRET_ACCESS_KEY'),
+      region: ENV.fetch('AWS_S3_REGION')
+    }
+
+    config.fog_directory = ENV.fetch('AWS_S3_BUCKET_NAME')
+    config.fog_authenticated_url_expiration = 120
+    # config.fog_public     = true
+    # optional, defaults to {}
+    # config.fog_attributes = { 'Cache-Control' => "max-age=#{365.day.to_i}" }
+    config.storage = :fog
+  else
+    config.ignore_integrity_errors = false
+    config.ignore_processing_errors = false
+    config.ignore_download_errors = false
+    config.storage = :file
+    config.enable_processing = false if Rails.env.test? || Rails.env.cucumber?
+  end
+end

data/config/initializers/devise.rb

@@ -0,0 +1,286 @@
+# Use this hook to configure devise mailer, warden hooks and so forth.
+# Many of these configuration options can be set straight in your model.
+Devise.setup do |config|
+  # The secret key used by Devise. Devise uses this key to generate
+  # random tokens. Changing this key will render invalid all existing
+  # confirmation, reset password and unlock tokens in the database.
+  # Devise will use the `secret_key_base` as its `secret_key`
+  # by default. You can change it below and use your own secret key.
+  # config.secret_key = 'e1d145f4dc893bf3d9b11ce44a851d232100bfdbbda64'
+
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in Devise::Mailer,
+  # note that it will be overwritten if you use your own mailer class
+  # with default "from" parameter.
+  config.mailer_sender = 'change-me-at-config-initializers-devise@example.com'
+
+  # Configure the class responsible to send e-mails.
+  # config.mailer = 'Devise::Mailer'
+
+  # Configure the parent class responsible to send e-mails.
+  # config.parent_mailer = 'ActionMailer::Base'
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require 'devise/orm/active_record'
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating a user. The default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating a user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before
+  # filter.
+  # You can also supply a hash where the value is a boolean determining whether
+  # or not authentication should be aborted when the value is not present.
+  # config.authentication_keys = [:email]
+
+  # Configure parameters from the request object used for authentication. Each
+  # entry given should be a request method and it will automatically be passed
+  # to the find_for_authentication method and considered in your model lookup.
+  # For instance, if you set :request_keys to [:subdomain], :subdomain will be
+  # used on authentication. The same considerations mentioned for
+  # authentication_keys also apply to request_keys.
+  # config.request_keys = []
+
+  # Configure which authentication keys should be case-insensitive.
+  # These keys will be downcased upon creating or modifying a user and when used
+  # to authenticate or find a user. Default is :email.
+  config.case_insensitive_keys = [:email]
+
+  # Configure which authentication keys should have whitespace stripped.
+  # These keys will have whitespace before and after removed upon creating or
+  # modifying a user and when used to authenticate or find a user.
+  # Default is :email.
+  config.strip_whitespace_keys = [:email]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # It can be set to an array that will enable params authentication only for
+  # the given strategies, for example,
+  # `config.params_authenticatable = [:database]` will enable it only for
+  # database (email + password) authentication.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Auth is enabled. False by default.
+  # It can be set to an array that will enable http authentication only for the
+  # given strategies, for example, `config.http_authenticatable = [:database]`
+  # will enable it only for database authentication. The supported strategies
+  # are:
+  # :database      = basic authentication with authentication key + password
+  # config.http_authenticatable = false
+
+  # If 401 status code should be returned for AJAX requests. True by default.
+  # config.http_authenticatable_on_xhr = true
+
+  # The realm used in Http Basic Authentication. 'Application' by default.
+  # config.http_authentication_realm = 'Application'
+
+  # It will change confirmation, password recovery and other workflows
+  # to behave the same regardless if the e-mail provided was right or wrong.
+  # Does not affect registerable.
+  # config.paranoid = true
+
+  # By default Devise will store the user in session. You can skip storage for
+  # particular strategies by setting this option.
+  # Notice that if you are skipping storage for all authentication paths, you
+  # may want to disable generating routes to Devise's sessions controller by
+  # passing skip: :sessions to `devise_for` in your config/routes.rb
+  config.skip_session_storage = [:http_auth]
+
+  # By default, Devise cleans up the CSRF token on authentication to
+  # avoid CSRF token fixation attacks. This means that, when using AJAX
+  # requests for sign in and sign up, you need to get a new CSRF token
+  # from the server. You can disable this option at your own risk.
+  # config.clean_up_csrf_token_on_authentication = true
+
+  # When false, Devise will not attempt to reload routes on eager load.
+  # This can reduce the time taken to boot the app but if your application
+  # requires the Devise mappings to be loaded during boot time the application
+  # won't boot properly.
+  # config.reload_routes = true
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 11. If
+  # using other algorithms, it sets how many times you want the password to be
+  # hashed.
+  #
+  # Limiting the stretches to just one in testing will increase the performance
+  # of your test suite dramatically. However, it is STRONGLY RECOMMENDED to not
+  # use a value less than 10 in other environments. Note that, for bcrypt (the
+  # default algorithm), the cost increases exponentially with the number of
+  # stretches (e.g. a value of 20 is already extremely slow: approx. 60 seconds
+  # for 1 calculation).
+  config.stretches = Rails.env.test? ? 1 : 11
+
+  # Set up a pepper to generate the hashed password.
+  # config.pepper = '483b5f2f860293409d8a78d8e161cdd09ee5138f536aa11'
+
+  # Send a notification email when the user's password is changed
+  # config.send_password_change_notification = false
+
+  # ==> Configuration for :confirmable
+  # A period that the user is allowed to access the website even without
+  # confirming their account. For instance, if set to 2.days, the user will be
+  # able to access the website for two days without confirming their account,
+  # access will be blocked just in the third day. Default is 0.days, meaning
+  # the user cannot access the website without confirming their account.
+  # config.allow_unconfirmed_access_for = 2.days
+
+  # A period that the user is allowed to confirm their account before their
+  # token becomes invalid. For example, if set to 3.days, the user can confirm
+  # their account within 3 days after the mail was sent, but on the fourth day
+  # their account can't be confirmed with the token any more.
+  # Default is nil, meaning there is no restriction on how long a user can take
+  # before confirming their account.
+  # config.confirm_within = 3.days
+
+  # If true, requires any email changes to be confirmed (exactly the same way as
+  # initial account confirmation) to be applied. Requires additional
+  # unconfirmed_email db field (see migrations). Until confirmed, new email is
+  # stored in unconfirmed_email column, and copied to email column on successful
+  # confirmation.
+  config.reconfirmable = true
+
+  # Defines which key will be used when confirming an account
+  # config.confirmation_keys = [:email]
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # Invalidates all the remember me tokens when the user signs out.
+  config.expire_all_remember_me_on_sign_out = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # Options to be passed to the created cookie. For instance, you can set
+  # secure: true in order to force SSL only cookies.
+  # config.rememberable_options = {}
+
+  # ==> Configuration for :validatable
+  # Range for password length.
+  config.password_length = 6..128
+
+  # Email regex used to validate email formats. It simply asserts that
+  # one (and only one) @ exists in the given string. This is mainly
+  # to give user feedback and not to assert the e-mail validity.
+  config.email_regexp = /\A[^@\s]+@[^@\s]+\z/
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again. Default is 30 minutes.
+  # config.timeout_in = 30.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which key will be used when locking and unlocking an account
+  # config.unlock_keys = [:email]
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # Warn on the last attempt before the account is locked.
+  # config.last_attempt_warning = true
+
+  # ==> Configuration for :recoverable
+  #
+  # Defines which key will be used when recovering the password for an account
+  # config.reset_password_keys = [:email]
+
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 6.hours
+
+  # When set to false, does not sign a user in automatically after their
+  # password is reset. Defaults to true, so a user is signed in automatically
+  # after a reset.
+  # config.sign_in_after_reset_password = true
+
+  # ==> Configuration for :encryptable
+  # Allow you to use another hashing or encryption algorithm besides bcrypt
+  # (default). You can use :sha1, :sha512 or algorithms from others
+  # authentication tools as :clearance_sha1, :authlogic_sha512 (then you should
+  # set stretches above to 20 for default behavior) and
+  # :restful_authentication_sha1 (then you should set stretches to 10, and copy
+  # REST_AUTH_SITE_KEY to pepper).
+  #
+  # Require the `devise-encryptable` gem when using anything other than bcrypt
+  # config.encryptor = :sha512
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering "sessions/new", it will first check
+  # for "users/sessions/new". It's turned off by default because it's slower if
+  # you are using only default views.
+  # config.scoped_views = false
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes (usually :user).
+  # config.default_scope = :user
+
+  # Set this configuration to false if you want /users/sign_out to sign out
+  # only the current scope. By default, Devise signs out all scopes.
+  # config.sign_out_all_scopes = true
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  #
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists.
+  #
+  # The "*/*" below is required to match Internet Explorer requests.
+  # config.navigational_formats = ['*/*', :html]
+
+  # The default HTTP method used to sign out a resource. Default is :delete.
+  config.sign_out_via = :delete
+
+  # ==> OmniAuth
+  # Add a new OmniAuth provider. Check the wiki for more information on setting
+  # up on your models and hooks.
+  # config.omniauth :github, 'APP_ID', 'APP_SECRET', scope: 'user,public_repo'
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not supported by Devise, or
+  # change the failure app, you can configure them inside the config.warden
+  # block.
+  #
+  # config.warden do |manager|
+  #   manager.intercept_401 = false
+  #   manager.default_strategies(scope: :user).unshift :some_external_strategy
+  # end
+
+  # ==> Mountable engine configurations
+  # When using Devise inside an engine, let's call it `MyEngine`, and this
+  # engine is mountable, there are some extra configurations to be taken into
+  # account.
+  # The following options are available, assuming the engine is mounted as:
+  #
+  #     mount MyEngine, at: '/my_engine'
+  #
+  # The router that invoked `devise_for`, in the example above, would be:
+  # config.router_name = :my_engine
+  #
+  # When using OmniAuth, Devise cannot automatically set OmniAuth path,
+  # so you need to do it manually. For the users scope, it would be:
+  # config.omniauth_path_prefix = '/my_engine/users/auth'
+end

data/config/initializers/form_tag.rb

@@ -0,0 +1,43 @@
+class FormTag < Liquid::Block
+  SYNTAX = /(#{Liquid::QuotedFragment})?/
+
+  def initialize(tag_name, markup, context)
+    super
+
+    if markup =~ SYNTAX
+      @form_name = Regexp.last_match(1).delete('\'')
+    else
+      raise SyntaxError,
+            "Syntax Error in tag '#{tag_name}' - " \
+            "Valid syntax: #{tag_name} '[form_name]'"
+    end
+  end
+
+  # rubocop:disable Lint/EmptyWhen,Metrics/CyclomaticComplexity
+  # rubocop:disable Metrics/MethodLength
+  def render(context)
+    view = context.registers[:view]
+    case @form_name
+    when 'activate_customer_password'
+      # {% form 'activate_customer_password' %}
+    when 'create_customer'
+      view.form_for(:customer, url: view.new_customer_registration_path) do |_f|
+        safe_join[super]
+      end
+    when 'customer_address'
+      # {% form 'customer_address', customer.new_address %}
+      # {% form 'customer_address', address %}
+    when 'customer_login'
+      view.form_for(:customer, url: view.new_customer_session_path) do |_f|
+        safe_join[super]
+      end
+    when 'guest_login'
+    when 'new_comment'
+      # {% form "new_comment", article %}
+    when 'recover_customer_password'
+    when 'reset_customer_password'
+    end
+  end
+end
+
+Liquid::Template.register_tag('form', FormTag)

data/config/initializers/liquid.rb

@@ -0,0 +1,213 @@
+# Liquid::Template.error_mode = :strict
+
+module Liquid
+  class LocalFileSystem
+    # rubocop:disable all
+    def full_path(template_path)
+      full_path = if template_path.include?('/'.freeze)
+        File.join(root, File.dirname(template_path), @pattern % File.basename(template_path))
+      else
+        File.join(root, @pattern % template_path)
+      end
+
+      raise FileSystemError, "Illegal template path '#{File.expand_path(full_path)}'" unless File.expand_path(full_path).start_with?(File.expand_path(root))
+
+      full_path
+    end
+    # rubocop:enable all
+  end
+
+  class VariableLookup
+    PERMITTED_NILLABLE = %w(collections linklists pages settings).freeze
+
+    # rubocop:disable all
+    def evaluate(context)
+      name = context.evaluate(@name)
+      object = context.find_variable(name)
+
+      @lookups.each_index do |i|
+        key = context.evaluate(@lookups[i])
+
+        # If object is a hash- or array-like object we look for the
+        # presence of the key and if its available we return it
+        if object.respond_to?(:[]) &&
+            ((object.respond_to?(:key?) && object.key?(key)) ||
+             (object.respond_to?(:fetch) && key.is_a?(Integer)))
+
+          # if its a proc we will replace the entry with the proc
+          res = context.lookup_and_evaluate(object, key)
+          object = res.to_liquid
+
+          # Some special cases. If the part wasn't in square brackets and
+          # no key with the same name was found we interpret following calls
+          # as commands and call them on the current object
+        elsif @command_flags & (1 << i) != 0 && object.respond_to?(key)
+          object = object.send(key).to_liquid
+
+          # No key was present with the desired value and it wasn't one of the directly supported
+          # keywords either. The only thing we got left is to return nil or
+          # raise an exception if `strict_variables` option is set to true
+        else
+    # rubocop:enable all
+          if !context.strict_variables || PERMITTED_NILLABLE.include?(name)
+            return nil
+          end
+
+          variable_name = if @lookups.blank?
+                            "#{name}.#{key}"
+                          else
+                            "#{name}.#{@lookups.join('.')}"
+                          end
+          raise Liquid::UndefinedVariable, "undefined variable #{variable_name}"
+        end
+
+        # If we are dealing with a drop here we have to
+        object.context = context if object.respond_to?(:context=)
+      end
+
+      object
+    end
+  end
+
+  module StandardFilters
+    require 'cgi'
+    def escape(input)
+      CGI.escapeHTML(input.to_s).untaint unless input.nil?
+    end
+  end
+end
+
+module Liquid
+  module Rails
+    class Drop
+      # rubocop:disable all
+      def liquid_method_missing(method)
+        if method.blank?
+          # This prevents for the case like this: collections[nil]
+          # {% assign product_vendor_handle = product.vendor | handle %}
+          # {% assign collection_handle = collections[product_vendor_handle].handle %}
+          ::Solidify::NilDrop.new(nil)
+        else
+          return nil unless @context && @context.strict_variables
+          raise Liquid::UndefinedDropMethod, "undefined method #{method} for #{self.class}"
+        end
+      end
+      # rubocop:enable all
+
+      def to_s
+        self.class.name.demodulize
+      end
+    end
+
+    class FileSystem < ::Liquid::LocalFileSystem
+      def read_template_file(template_path, context)
+        @pattern = @pattern.gsub(/^_/, '')
+        theme = context.registers[:theme]
+        template_path = "themes/#{theme.id}/snippets/#{template_path}"
+
+        super
+      end
+    end
+
+    class TemplateHandler
+      # rubocop:disable all
+      def render(template, local_assigns = {})
+        @view.controller.headers['Content-Type'] ||= 'text/html; charset=utf-8'
+
+        assigns = if @controller.respond_to?(:liquid_assigns, true)
+          @controller.send(:liquid_assigns)
+        else
+          @view.assigns
+        end
+        assigns['content_for_layout'] = @view.content_for(:layout) if @view.content_for?(:layout)
+        assigns.merge!(local_assigns.stringify_keys)
+
+        liquid = Liquid::Template.parse(template)
+        # rubocop:enable all
+        render_method = :render
+        rendered_template = liquid.public_send(
+          render_method,
+          assigns,
+          filters: filters,
+          # strict_variables: true,
+          # strict_filters: true,
+          registers: {
+            view: @view, controller: @controller, helper: @helper,
+            theme: @view.assigns['theme']
+          }
+        )
+
+        if liquid.errors.present?
+          if ::Rails.env.development? || ::Rails.env.test?
+            errors_text = liquid.errors.map(&:to_s).join("\n")
+            ::Rails.logger.error(errors_text)
+          end
+
+          raise liquid.errors.first
+        end
+
+        rendered_template
+      end
+    end
+
+    # rubocop:disable all
+    class PaginateTag < ::Liquid::Block
+      def render(context)
+        @context = context
+
+        context.stack do
+          collection = @context[@collection_name].presence || @context.environments[0][@collection_name]
+
+          if collection.present?
+            if collection.is_a? Array
+              paginated_collection = Kaminari.paginate_array(collection.to_a).page(current_page).per(@page_size)
+            elsif collection.respond_to?(:page)
+              paginated_collection = collection.page(current_page).per(@page_size)
+            end
+
+            page_count = paginated_collection.total_pages
+            pagination = {}
+            pagination['collection']      = paginated_collection
+            pagination['current_offset']  = (current_page - 1) * @page_size
+            pagination['current_page']    = current_page
+            pagination['page_size']       = @page_size
+            pagination['pages']           = page_count
+            pagination['items']           = paginated_collection.total_count
+            pagination['previous']        = link('&laquo; Previous'.html_safe, current_page - 1) unless 1 >= current_page
+            pagination['next']            = link('Next &raquo;'.html_safe, current_page + 1)     unless page_count < current_page + 1
+            pagination['parts']           = []
+
+            hellip_break = false
+            if page_count > 1
+              1.upto(page_count) do |page|
+                if current_page == page
+                  pagination['parts'] << no_link(page)
+                elsif page == 1
+                  pagination['parts'] << link(page, page)
+                elsif page == page_count - 1
+                  pagination['parts'] << link(page, page)
+                elsif (page <= current_page - window_size) || (page >= current_page + window_size)
+                  next if hellip_break
+                  pagination['parts'] << no_link('&hellip;')
+                  hellip_break = true
+                  next
+                else
+                  pagination['parts'] << link(page, page)
+                end
+
+                hellip_break = false
+              end
+            end
+          else
+            pagination = {}
+            pagination['pages'] = 1
+          end
+
+          context['paginate'] = pagination
+          super
+        end
+      end
+    end
+    # rubocop:enable all
+  end
+end