RubyGems - spontaneous - Versions diffs - 0.2.0.beta1 → 0.2.0.beta2 - Mend

spontaneous 0.2.0.beta1 → 0.2.0.beta2

Files changed (335) hide show

checksums.yaml +7 -0
data/.gitignore +24 -0
data/.locat +42 -0
data/.travis/gemfiles/Gemfile.empty +7 -0
data/.travis.yml +18 -0
data/Gemfile +12 -8
data/LICENSE +1 -1
data/Rakefile +15 -157
data/Readme.markdown +1 -1
data/application/css/core.css.scss +22 -146
data/application/css/definitions.css.scss +7 -3
data/application/css/dialogue.css.scss +26 -1
data/application/css/editing.css.scss +70 -28
data/application/css/font.css.scss +1 -1
data/application/css/popover.css.scss +2 -0
data/application/css/top.css.scss +231 -0
data/application/js/add_alias_dialogue.js +1 -1
data/application/js/add_home_dialogue.js +1 -1
data/application/js/ajax.js +61 -31
data/application/js/box.js +4 -4
data/application/js/conflicted_field_dialogue.js +1 -1
data/application/js/content.js +5 -5
data/application/js/dom.js +5 -0
data/application/js/edit_panel.js +1 -0
data/application/js/editing.js +1 -1
data/application/js/extensions.js +8 -0
data/application/js/field/boolean.js +31 -0
data/application/js/field/file.js +32 -4
data/application/js/field/image.js +24 -9
data/application/js/field/markdown.js +87 -59
data/application/js/field/select.js +1 -1
data/application/js/field/webvideo.js +6 -1
data/application/js/init.js +2 -2
data/application/js/jquery-selection-position.js +130 -0
data/application/js/location.js +4 -25
data/application/js/meta_view/user_admin.js +2 -2
data/application/js/metadata.js +2 -2
data/application/js/page_browser.js +1 -1
data/application/js/panel/root_menu.js +0 -1
data/application/js/popover.js +27 -12
data/application/js/popover_view.js +20 -4
data/application/js/preview.js +31 -16
data/application/js/progress.js +22 -21
data/application/js/publish.js +18 -7
data/application/js/sharded_upload.js +9 -6
data/application/js/spontaneous.js +3 -1
data/application/js/top_bar.js +264 -173
data/application/js/upload.js +12 -5
data/application/js/upload_manager.js +4 -3
data/application/js/user.js +1 -2
data/application/js/views/box_view.js +1 -1
data/application/js/views/page_view.js +16 -5
data/application/js/views/piece_view.js +5 -4
data/application/static/font/fontawesome-webfont-1c66a4738b40ef0f6b1abca0ba9a796d.ttf +0 -0
data/application/views/index.erb +6 -14
data/application/views/login.erb +6 -25
data/application/views/schema_modification_error.html.erb +3 -7
data/db/migrations/20130114120000_create_revision_tables.rb +2 -2
data/db/migrations/20130813111009_increase_path_length.rb +14 -0
data/gem-public_cert.pem +20 -0
data/lib/spontaneous/asset/app_compiler.rb +44 -0
data/lib/spontaneous/asset/environment.rb +225 -0
data/lib/spontaneous/asset.rb +2 -67
data/lib/spontaneous/box.rb +0 -1
data/lib/spontaneous/capistrano/deploy.rb +2 -2
data/lib/spontaneous/capistrano/sync.rb +1 -1
data/lib/spontaneous/cli/init.rb +36 -13
data/lib/spontaneous/cli/server.rb +0 -1
data/lib/spontaneous/cli/site.rb +2 -1
data/lib/spontaneous/cli.rb +3 -1
data/lib/spontaneous/collections/entry_set.rb +4 -12
data/lib/spontaneous/collections/hash_with_fallback.rb +20 -0
data/lib/spontaneous/collections/prototype_set.rb +6 -5
data/lib/spontaneous/crypt.rb +2 -2
data/lib/spontaneous/data_mapper/content_model/associations.rb +115 -63
data/lib/spontaneous/data_mapper.rb +1 -1
data/lib/spontaneous/errors.rb +6 -0
data/lib/spontaneous/extensions/object_space.rb +6 -0
data/lib/spontaneous/facet.rb +1 -0
data/lib/spontaneous/field/base.rb +86 -13
data/lib/spontaneous/field/boolean.rb +65 -0
data/lib/spontaneous/field/file.rb +17 -6
data/lib/spontaneous/field/html.rb +13 -0
data/lib/spontaneous/field/image/size.rb +76 -0
data/lib/spontaneous/field/image.rb +99 -414
data/lib/spontaneous/field/tags.rb +36 -0
data/lib/spontaneous/field/update.rb +1 -1
data/lib/spontaneous/field/webvideo/fallback.rb +41 -0
data/lib/spontaneous/field/webvideo/vimeo.rb +113 -0
data/lib/spontaneous/field/webvideo/vine.rb +94 -0
data/lib/spontaneous/field/webvideo/youtube.rb +133 -0
data/lib/spontaneous/field/webvideo.rb +100 -250
data/lib/spontaneous/field.rb +1 -1
data/lib/spontaneous/generators/site/Gemfile.tt +5 -14
data/lib/spontaneous/generators/site/assets/README.md +20 -0
data/lib/spontaneous/generators/site/assets/css/site.scss +8 -0
data/lib/spontaneous/generators/site/assets/js/site.js +6 -0
data/lib/spontaneous/generators/site/config/deploy.rb.tt +9 -0
data/lib/spontaneous/generators/site/config/user_levels.yml +14 -3
data/lib/spontaneous/generators/site/public/README.md +12 -0
data/lib/spontaneous/generators/site/templates/layouts/standard.html.cut.tt +2 -2
data/lib/spontaneous/generators/site.rb +77 -35
data/lib/spontaneous/layout.rb +6 -7
data/lib/spontaneous/loader.rb +21 -13
data/lib/spontaneous/media/file.rb +22 -9
data/lib/spontaneous/media/image/attributes.rb +33 -0
data/lib/spontaneous/media/image/format/gif.rb +4 -0
data/lib/spontaneous/media/image/format/jpg.rb +17 -0
data/lib/spontaneous/media/image/format/png.rb +4 -0
data/lib/spontaneous/media/image/format/webp.rb +26 -0
data/lib/spontaneous/media/image/format.rb +79 -0
data/lib/spontaneous/media/image/optimizer.rb +69 -0
data/lib/spontaneous/media/image/processor.rb +17 -0
data/lib/spontaneous/media/image/renderable.rb +52 -0
data/lib/spontaneous/media/image/skeptick.rb +70 -0
data/lib/spontaneous/media/image.rb +50 -0
data/lib/spontaneous/media/temp_file.rb +4 -0
data/lib/spontaneous/media.rb +1 -0
data/lib/spontaneous/model/core/aliases.rb +14 -8
data/lib/spontaneous/model/core/boxes.rb +5 -2
data/lib/spontaneous/model/core/entries.rb +4 -0
data/lib/spontaneous/model/core/entry.rb +1 -0
data/lib/spontaneous/model/core/fields.rb +5 -2
data/lib/spontaneous/model/core/locks.rb +16 -0
data/lib/spontaneous/model/core/media.rb +1 -15
data/lib/spontaneous/model/core.rb +31 -1
data/lib/spontaneous/model/page/controllers.rb +2 -2
data/lib/spontaneous/model/page/formats.rb +1 -4
data/lib/spontaneous/model/page/layouts.rb +6 -2
data/lib/spontaneous/model/page/locks.rb +8 -2
data/lib/spontaneous/model/page/page_tree.rb +2 -2
data/lib/spontaneous/model/page/paths.rb +74 -9
data/lib/spontaneous/model/page.rb +11 -3
data/lib/spontaneous/model.rb +6 -6
data/lib/spontaneous/output/context/render_cache.rb +23 -0
data/lib/spontaneous/output/context.rb +56 -30
data/lib/spontaneous/output/helpers/script_helper.rb +9 -53
data/lib/spontaneous/output/helpers/stylesheet_helper.rb +8 -40
data/lib/spontaneous/output/template/renderer.rb +17 -5
data/lib/spontaneous/output.rb +0 -1
data/lib/spontaneous/paths.rb +6 -2
data/lib/spontaneous/permissions/access_key.rb +18 -0
data/lib/spontaneous/permissions/user.rb +1 -1
data/lib/spontaneous/permissions.rb +4 -1
data/lib/spontaneous/plugins/application/state.rb +19 -12
data/lib/spontaneous/prototypes/field_prototype.rb +14 -8
data/lib/spontaneous/published_revision.rb +7 -0
data/lib/spontaneous/publishing/immediate.rb +43 -34
data/lib/spontaneous/publishing/revision.rb +9 -6
data/lib/spontaneous/rack/asset_server.rb +20 -0
data/lib/spontaneous/rack/back/alias.rb +46 -0
data/lib/spontaneous/rack/back/application_assets.rb +28 -0
data/lib/spontaneous/rack/back/base.rb +34 -0
data/lib/spontaneous/rack/back/changes.rb +19 -0
data/lib/spontaneous/rack/back/content.rb +54 -0
data/lib/spontaneous/rack/back/events.rb +38 -0
data/lib/spontaneous/rack/back/field.rb +37 -0
data/lib/spontaneous/rack/back/file.rb +118 -0
data/lib/spontaneous/rack/back/helpers.rb +71 -0
data/lib/spontaneous/rack/back/index.rb +16 -0
data/lib/spontaneous/rack/back/login.rb +47 -0
data/lib/spontaneous/rack/back/map.rb +24 -0
data/lib/spontaneous/rack/back/page.rb +46 -0
data/lib/spontaneous/rack/back/preview.rb +43 -0
data/lib/spontaneous/rack/back/schema.rb +30 -0
data/lib/spontaneous/rack/back/site.rb +25 -0
data/lib/spontaneous/rack/back/site_assets.rb +13 -0
data/lib/spontaneous/rack/back/unsupported_browser.rb +7 -0
data/lib/spontaneous/rack/{user_admin.rb → back/user_admin.rb} +2 -5
data/lib/spontaneous/rack/back.rb +85 -764
data/lib/spontaneous/rack/cacheable_file.rb +3 -3
data/lib/spontaneous/rack/front.rb +16 -9
data/lib/spontaneous/rack/middleware/authenticate.rb +65 -0
data/lib/spontaneous/rack/middleware/csrf.rb +66 -0
data/lib/spontaneous/rack/middleware/reloader.rb +52 -0
data/lib/spontaneous/rack/middleware/scope.rb +60 -0
data/lib/spontaneous/rack/middleware.rb +6 -0
data/lib/spontaneous/rack/page_controller.rb +18 -5
data/lib/spontaneous/rack/public.rb +17 -11
data/lib/spontaneous/rack.rb +34 -24
data/lib/spontaneous/revision.rb +29 -2
data/lib/spontaneous/schema/uid.rb +4 -3
data/lib/spontaneous/schema/uid_map.rb +5 -24
data/lib/spontaneous/schema.rb +1 -0
data/lib/spontaneous/search/database.rb +8 -0
data/lib/spontaneous/search/field.rb +1 -1
data/lib/spontaneous/search/index.rb +3 -5
data/lib/spontaneous/server.rb +1 -1
data/lib/spontaneous/simultaneous.rb +1 -1
data/lib/spontaneous/site/features.rb +4 -5
data/lib/spontaneous/site/helpers.rb +22 -5
data/lib/spontaneous/site/instance.rb +2 -2
data/lib/spontaneous/site/selectors.rb +22 -3
data/lib/spontaneous/storage/cloud.rb +13 -9
data/lib/spontaneous/storage/local.rb +11 -6
data/lib/spontaneous/style.rb +40 -23
data/lib/spontaneous/utils/database/mysql_dumper.rb +1 -1
data/lib/spontaneous/utils/smush_it.rb +1 -1
data/lib/spontaneous/version.rb +1 -1
data/lib/spontaneous.rb +35 -33
data/spontaneous.gemspec +53 -787
data/test/experimental/test_crypt.rb +56 -56
data/test/experimental/test_features.rb +16 -27
data/test/fixtures/assets/public1/css/data.css.scss +3 -0
data/test/fixtures/assets/public1/css/image1.css.scss +4 -0
data/test/fixtures/assets/public1/css/import.css.scss +1 -0
data/test/fixtures/assets/public1/css/urlhash.css.scss +3 -0
data/test/fixtures/assets/public1/js/a.js +1 -1
data/test/fixtures/assets/public1/js/all.js +4 -0
data/test/fixtures/assets/public1/js/{m.coffee → m.js.coffee} +1 -0
data/test/fixtures/assets/public1/x.js +1 -0
data/test/fixtures/assets/public2/css/all.css +4 -0
data/test/fixtures/assets/public2/css/missing.css.scss +3 -0
data/test/fixtures/assets/public2/i/y.png +0 -0
data/test/fixtures/assets/public2/js/b.js +1 -1
data/test/fixtures/assets/public2/js/c.js +1 -1
data/test/fixtures/images/size.extended.webp +0 -0
data/test/fixtures/images/size.lossless.webp +0 -0
data/test/fixtures/images/size.lossy.webp +0 -0
data/test/fixtures/schema/before.yml +4 -4
data/test/fixtures/schema/schema.yml +1 -1
data/test/fixtures/templates/aliases/aaa.html.cut +0 -0
data/test/fixtures/templates/extended/partial_with_renderer.html.cut +1 -0
data/test/fixtures/templates/extended/with_includes_and_renderer.html.cut +2 -0
data/test/functional/test_application.rb +108 -106
data/test/functional/test_back.rb +924 -930
data/test/functional/test_front.rb +285 -238
data/test/functional/test_user_manager.rb +75 -100
data/test/integration/test_installation.rb +1 -1
data/test/support/matchers.rb +12 -0
data/test/support/minitest.rb +121 -0
data/test/support/rack.rb +45 -0
data/test/support/test_start_finish.rb +103 -0
data/test/test_helper.rb +21 -68
data/test/test_integration_helper.rb +1 -3
data/test/unit/test_alias.rb +432 -408
data/test/unit/test_asset_bundler.rb +58 -58
data/test/unit/test_assets.rb +485 -155
data/test/unit/test_async.rb +16 -37
data/test/unit/test_authentication.rb +425 -457
data/test/unit/test_boxes.rb +191 -191
data/test/unit/test_changesets.rb +244 -254
data/test/unit/test_config.rb +128 -142
data/test/unit/test_content.rb +313 -359
data/test/unit/test_content_inheritance.rb +29 -30
data/test/unit/test_datamapper.rb +1205 -1080
data/test/unit/test_datamapper_content.rb +49 -51
data/test/unit/test_extensions.rb +23 -23
data/test/unit/test_fields.rb +1488 -1180
data/test/unit/test_formats.rb +158 -158
data/test/unit/test_generators.rb +98 -40
data/test/unit/test_helpers.rb +73 -76
data/test/unit/test_image_size.rb +53 -22
data/test/unit/test_images.rb +164 -165
data/test/unit/test_layouts.rb +133 -122
data/test/unit/test_logger.rb +14 -17
data/test/unit/test_media.rb +69 -84
data/test/unit/test_modifications.rb +513 -525
data/test/unit/test_page.rb +462 -361
data/test/unit/test_permissions.rb +379 -364
data/test/unit/test_piece.rb +67 -75
data/test/unit/test_plugins.rb +82 -89
data/test/unit/test_prototype_set.rb +215 -216
data/test/unit/test_prototypes.rb +114 -124
data/test/unit/test_publishing.rb +252 -289
data/test/unit/test_render.rb +167 -115
data/test/unit/test_revisions.rb +436 -444
data/test/unit/test_schema.rb +339 -309
data/test/unit/test_search.rb +577 -574
data/test/unit/test_serialisation.rb +136 -147
data/test/unit/test_site.rb +252 -227
data/test/unit/test_skeptick.rb +130 -0
data/test/unit/test_storage.rb +46 -40
data/test/unit/test_structure.rb +57 -66
data/test/unit/test_styles.rb +104 -104
data/test/unit/test_templates.rb +72 -57
data/test/unit/test_type_hierarchy.rb +15 -16
data/test/unit/test_visibility.rb +239 -257
metadata +455 -326
data/application/js/vendor/JS.Class-2.1.5/CHANGELOG +0 -283
data/application/js/vendor/JS.Class-2.1.5/MIT-LICENSE +0 -30
data/application/js/vendor/JS.Class-2.1.5/README +0 -30
data/application/js/vendor/JS.Class-2.1.5/min/command.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/comparable.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/constant_scope.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/decorator.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/enumerable.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/forwardable.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/hash.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/linked_list.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/loader.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/method_chain.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/observable.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/package.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/proxy.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/ruby.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/set.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/stack_trace.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/state.js +0 -1
data/application/js/vendor/JS.Class-2.1.5/min/stdlib.js +0 -16
data/application/js/vendor/jquery-1.6.2.min.js +0 -18
data/application/js/vendor/jquery-ui-1.8.16.custom.min.js +0 -791
data/application/js/vendor/jquery-ui-1.8.9.custom.min.js +0 -415
data/application/static/font/fontawesome-webfont-5c5c21100a346972a82c34c5e96ffcfe.ttf +0 -0
data/application/static/select-arrow-6e7dd3745b00e934b0d7a3250c46558b.png +0 -0
data/bin/limit-upload +0 -5
data/bin/unlimit-upload +0 -3
data/lib/spontaneous/asset/file.rb +0 -25
data/lib/spontaneous/asset/source.rb +0 -28
data/lib/spontaneous/image_size.rb +0 -123
data/lib/spontaneous/output/assets/compression.rb +0 -58
data/lib/spontaneous/output/assets.rb +0 -32
data/lib/spontaneous/rack/around_back.rb +0 -20
data/lib/spontaneous/rack/around_front.rb +0 -27
data/lib/spontaneous/rack/around_preview.rb +0 -22
data/lib/spontaneous/rack/assets.rb +0 -126
data/lib/spontaneous/rack/authentication.rb +0 -20
data/lib/spontaneous/rack/cookie_authentication.rb +0 -38
data/lib/spontaneous/rack/helpers.rb +0 -52
data/lib/spontaneous/rack/http.rb +0 -18
data/lib/spontaneous/rack/media.rb +0 -30
data/lib/spontaneous/rack/query_authentication.rb +0 -35
data/lib/spontaneous/rack/reloader.rb +0 -45
data/lib/spontaneous/rack/user_helpers.rb +0 -28
/data/{README → application/js/field/markdown/text_command.js} +0 -0
/data/application/js/vendor/{JS.Class-2.1.5/min/core.js → js.class-2.1.5.min.js} +0 -0
/data/test/fixtures/assets/public1/css/{a.scss → a.css.scss} +0 -0
/data/{lib/spontaneous/generators/site/public/css/site.scss → test/fixtures/assets/public1/x.css} +0 -0
/data/{lib/spontaneous/generators/site/public/js/.empty_directory → test/fixtures/assets/public1/x.png} +0 -0
/data/test/fixtures/assets/public2/css/{b.scss → b.css.scss} +0 -0
/data/test/fixtures/assets/public2/js/{n.coffee → n.js.coffee} +0 -0
/data/test/fixtures/back/{public → assets}/css/sass_include.scss +0 -0
/data/test/fixtures/back/{public → assets}/css/sass_template.scss +0 -0
/data/test/fixtures/back/{public → assets}/js/coffeescript.coffee +0 -0
/data/{lib/spontaneous/generators/site/public/js/site.js → test/fixtures/templates/aliases/aa_alias.html.cut} +0 -0

data/lib/spontaneous/rack/asset_server.rb ADDED Viewed

@@ -0,0 +1,20 @@
+module Spontaneous::Rack
+  # Sprockets (2.9.0) doesn't include charset information in the content-type
+  # header. This wrapper class proxies all requests to a Sprockets enviroment
+  # and adds in a charset setting to the content-type header of all responses
+  class AssetServer
+    def initialize(environment, charset = "UTF-8")
+      @environment, @charset = environment, charset
+    end
+    def call(env)
+      force_encoding(*@environment.call(env))
+    end
+    def force_encoding(status, headers, body)
+      content_type = headers["Content-Type"]
+      headers.update("Content-Type" => "#{content_type}; charset=#{@charset}")
+      [status, headers, body]
+    end
+  end
+end

data/lib/spontaneous/rack/back/alias.rb ADDED Viewed

@@ -0,0 +1,46 @@
+module Spontaneous::Rack::Back
+  class Alias < Base
+    get '/:schema_id/:id/:box_id' do
+      klass = content_model.schema.to_class(params[:schema_id])
+      if klass.alias?
+        content_for_request do |content, box|
+          options = {}
+          if (query = params[:query])
+            options[:search] = Regexp.new(query, Regexp::IGNORECASE)
+          end
+          targets = klass.targets(content, box, options).map { |t|
+            { :id => t.id,
+              :title => t.alias_title,
+              :icon => t.exported_alias_icon }
+          }
+          json({
+            :pages => 1,
+            :total => targets.length,
+            :page => 1,
+            :targets => targets
+          })
+        end
+      end
+    end
+    post '/:id/:box_id' do
+      content_for_request(true) do |content, box|
+        type = content_model.schema.to_class(params[:alias_id])
+        position = (params[:position] || 0).to_i
+        if box.writable?(user, type)
+          instance = type.for_target(params[:target_id])
+          if instance
+            box.insert(position, instance)
+            content.save
+            json({
+              :position => position,
+              :entry => instance.entry.export(user)
+            })
+          end
+        else
+          forbidden!
+        end
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/application_assets.rb ADDED Viewed

@@ -0,0 +1,28 @@
+require 'sprockets'
+module Spontaneous::Rack::Back
+  class ApplicationAssets < Base
+    def initialize(app, charset = "UTF-8")
+      css, js = %w(css js).map { |d| build_asset_handler(d, charset) }
+      assets = Spontaneous::Rack::CacheableFile.new(Spontaneous.root / "public/@spontaneous/assets")
+      @app = ::Rack::Builder.app do
+        use Spontaneous::Rack::Static, :root => Spontaneous.application_dir, :urls => %W(/static)
+        map("/assets") { run assets }
+        map("/css")    { run css }
+        map("/js")     { run js }
+        run app
+      end
+    end
+    def call(env)
+      @app.call(env)
+    end
+    def build_asset_handler(dir, charset)
+      environment = ::Sprockets::Environment.new(Spontaneous.application_dir ) do |env|
+        env.append_path("#{dir}")
+      end
+      Spontaneous::Rack::AssetServer.new(environment, charset)
+    end
+  end
+end

data/lib/spontaneous/rack/back/base.rb ADDED Viewed

@@ -0,0 +1,34 @@
+module Spontaneous::Rack
+  module Back
+    class Base < ServerBase
+      helpers  Helpers
+      set :views, Proc.new { Spontaneous.application_dir + '/views' }
+      def content_model
+        Spontaneous::Content
+      end
+      def update_fields(model, field_data)
+        return unless field_data
+        Spontaneous::Field.update_asynchronously(model, field_data, user)
+        json(model)
+      end
+      def content_for_request(lock = false)
+        content_model.db.transaction do
+          dataset = lock ? content_model.for_update : content_model
+          content = dataset.get(params[:id])
+          halt 404 if content.nil?
+          content.current_editor = user
+          if box_id = content_model.schema.uids[params[:box_id]]
+            box = content.boxes.detect { |b| b.schema_id == box_id }
+            yield(content, box)
+          else
+            yield(content)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/changes.rb ADDED Viewed

@@ -0,0 +1,19 @@
+module Spontaneous::Rack::Back
+  class Changes < Base
+    before do
+      forbidden! unless user.level.can_publish?
+    end
+    get '/?' do
+      json(Spontaneous::Change)
+    end
+    post '/?' do
+      ids = params[:page_ids]
+      halt 400 if ids.blank? || ids.empty?
+      pages = ids.map(&:to_i)
+      Spontaneous::Site.publish_pages(pages)
+      json({})
+    end
+  end
+end

data/lib/spontaneous/rack/back/content.rb ADDED Viewed

@@ -0,0 +1,54 @@
+module Spontaneous::Rack::Back
+  class Content < Base
+    put '/:id/?:box_id?' do
+      content_for_request(true) do |content, box|
+        target = content
+        if box
+          forbidden! unless box.writable?(user)
+          target = box
+        end
+        update_fields(target, params[:field])
+      end
+    end
+    post '/:id/:box_id/:type_name' do
+      content_for_request(true) do |content, box|
+        position = (params[:position] || 0).to_i
+        type = content_model.schema.to_class(params[:type_name])#.constantize
+        forbidden! unless box.writable?(user, type)
+        instance = type.new(:created_by => user)
+        box.insert(position, instance)
+        content.save
+        json({
+          :position => position,
+          :entry => instance.entry.export(user)
+        })
+      end
+    end
+    delete '/:id' do
+      content_for_request(true) do |content|
+        forbidden! unless content.box.writable?(user)
+        content.destroy
+        json({})
+      end
+    end
+    patch '/:id/toggle' do
+      content_for_request(true) do |content|
+        forbidden! unless content.box && content.box.writable?(user)
+        content.toggle_visibility!
+        json({:id => content.id, :hidden => (content.hidden? ? true : false) })
+      end
+    end
+    patch '/:id/position/:position' do
+      content_for_request(true) do |content|
+        forbidden! unless content.box.writable?(user)
+        content.update_position(params[:position].to_i)
+        json( {:message => 'OK'} )
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/events.rb ADDED Viewed

@@ -0,0 +1,38 @@
+require 'spontaneous/simultaneous'
+module Spontaneous::Rack::Back
+  class Events < Base
+    def self.messenger
+      @messenger ||= build_messenger
+    end
+    def self.build_messenger
+      messenger = ::Spontaneous::Rack::EventSource.new
+      # Find a way to move this into a more de-centralised place
+      # at some point we are going to want to have some configurable, extendable
+      # list of event handlers
+      begin
+        ::Simultaneous.on_event("publish_progress") { |event|
+          messenger.deliver_event(event)
+        }
+        ::Simultaneous.on_event("page_lock_status") { |event|
+          messenger.deliver_event(event)
+        }
+      rescue => e
+        logger.error "Error while connecting to Simultaneous server"
+        logger.error e.inspect
+      end
+      messenger
+    end
+    get '/?', :provides => 'text/event-stream' do
+      headers 'X-Accel-Buffering' =>  'no'
+      stream(:keep_open) do |out|
+        messenger = self.class.messenger
+        out.errback  { messenger.delete(out) }
+        out.callback { messenger.delete(out) }
+        messenger << out
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/field.rb ADDED Viewed

@@ -0,0 +1,37 @@
+module Spontaneous::Rack::Back
+  class Field < Base
+    # Should be a GET as it changes no state but the request can need a lot
+    # of data which is best done outside of the query string
+    post '/conflicts/:id/?:box_id?' do
+      content_for_request(true) do |content, box|
+        generate_conflict_list(box || content)
+      end
+    end
+    get '/options/:field_sid/:id/?:box_id?' do
+      content_for_request do |content, box|
+        field = (box || content).fields.sid(params[:field_sid])
+        json(field.option_list)
+      end
+    end
+    def generate_conflict_list(content)
+      field_versions = params[:fields]
+      conflicts = []
+      field_versions.each do |schema_id, version|
+        field = content.fields.sid(schema_id)
+        if field.matches_version?(version.to_i)
+          conflicts << field
+        end
+      end
+      if conflicts.empty?
+        200
+      else
+        errors = conflicts.map  do |field|
+          [field.schema_id.to_s, [field.version, field.conflicted_value]]
+        end
+        [409, json(Hash[errors])]
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/file.rb ADDED Viewed

@@ -0,0 +1,118 @@
+module Spontaneous::Rack::Back
+  module File
+    class Simple < Base
+      put '/:id/?:box_id?' do
+        content_for_request(true) do |content, box|
+          target = box || content
+          file = params[:file]
+          field = target.fields.sid(params['field'])
+          forbidden! unless target.field_writable?(user, field.name)
+          # version = params[:version].to_i
+          # if version == field.version
+          Spontaneous::Field.set_asynchronously(field, file, user)
+          json(field.export(user))
+          # else
+          #   errors = [[field.schema_id.to_s, [field.version, field.conflicted_value]]]
+          #   [409, json(Hash[errors])]
+          # end
+        end
+      end
+      post '/:id/:box_id' do
+        content_for_request(true) do |content, box|
+          file = params['file']
+          type = box.type_for_mime_type(file[:type])
+          if type
+            forbidden! unless box.writable?(user, type)
+            position = 0
+            instance = type.new
+            box.insert(position, instance)
+            field = instance.field_for_mime_type(file[:type])
+            Spontaneous::Field.set_asynchronously(field, file, user)
+            content.save
+            json({
+              :position => position,
+              :entry => instance.entry.export(user)
+            })
+          end
+        end
+      end
+    end
+    class Sharded < Base
+      get '/:sha1' do
+        shard = Spontaneous.shard_path(params[:sha1])
+        if ::File.file?(shard)
+          # touch the shard file so that clean up routines can delete unmodified files
+          # without affecting any uploads in progresss
+          FileUtils.touch(shard)
+          200
+        else
+          404
+        end
+      end
+      post '/:sha1' do
+        file = params[:file]
+        uploaded_hash = Spontaneous::Media.digest(file[:tempfile].path)
+        if uploaded_hash == params[:sha1] # rand(10000) % 2 == 0 # use to test shard re-uploading
+          shard_path = Spontaneous.shard_path(params[:sha1])
+          FileUtils.mv(file[:tempfile].path, shard_path)
+          200
+        else
+          ::Rack::Utils.status_code(:conflict) #409
+        end
+      end
+      put '/:id/?:box_id?' do
+        content_for_request(true) do |content, box|
+          target = box || content
+          replace_with_shard(target, content.id)
+        end
+      end
+      def replace_with_shard(target, target_id)
+        field = target.fields.sid(params[:field])
+        forbidden! unless target.field_writable?(user, field.name)
+        # version = params[:version].to_i
+        # if version == field.version
+        Spontaneous::Media.combine_shards(params[:shards]) do |combined|
+          Spontaneous::Field.set_asynchronously(field, {
+            :filename => params[:filename],
+            :tempfile => combined
+          }, user)
+        end
+        json(field.export(user))
+      end
+      # TODO: remove duplication here
+      post '/:id/:box_id' do
+        content_for_request(true) do |content, box|
+          type = box.type_for_mime_type(params[:mime_type])
+          if type
+            forbidden! unless box.writable?(user, type)
+            position = 0
+            instance = type.new
+            box.insert(position, instance)
+            field = instance.field_for_mime_type(params[:mime_type])
+            Spontaneous::Media.combine_shards(params[:shards]) do |combined|
+              Spontaneous::Field.set_asynchronously(field, {
+                :filename => params[:filename],
+                :tempfile => combined
+              }, user)
+              content.save
+              # field.value = {
+              #   :filename => params[:filename],
+              #   :tempfile => combined
+              # }
+            end
+            json({
+              :position => position,
+              :entry => instance.entry.export(user)
+            })
+          end
+        end
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/helpers.rb ADDED Viewed

@@ -0,0 +1,71 @@
+module Spontaneous::Rack::Back
+  module TemplateHelpers
+    include Spontaneous::Rack::Constants
+    def application_assets
+      @application_assets_compiler ||= Spontaneous::Asset::AppCompiler.new(Spontaneous.gem_dir, Spontaneous.root)
+    end
+    def style_url(style)
+      asset_url(style, "css")
+    end
+    def script_url(script)
+      asset_url(script, "js")
+    end
+    def asset_url(file, type)
+      file = "#{file}.#{type}" unless file =~ /\.#{type}$/
+      if (compiled_asset = application_assets.manifest.assets[file])
+        return "#{NAMESPACE}/assets/#{compiled_asset}"
+      end
+      # TODO: use the sprockets environment to append a modification time to the non-compiled URL
+      "#{NAMESPACE}/#{type}/#{file}"
+    end
+    def script_list(scripts)
+      scripts.map do |script|
+        script = "#{script}.js" unless script =~ /\.js$/
+        src = script_url(script)
+        size = 0
+        if (asset = application_assets.manifest.files[::File.basename(src)])
+          size = asset["size"]
+        else
+          src = "#{NAMESPACE}/js/#{script}"
+          path = Spontaneous.application_dir("/js/#{script}")
+          size = ::File.size(path)
+        end
+        [src, size]
+      end.to_json
+    end
+  end
+  module Helpers
+    include Spontaneous::Rack::Constants
+    def json(response)
+      content_type 'application/json', :charset => 'utf-8'
+      response.serialise_http(user)
+    end
+    def forbidden!
+      halt 403#, "You do not have the necessary permissions to update the '#{name}' field"
+    end
+    def api_key
+      request.cookies[AUTH_COOKIE]
+    end
+    def user
+      env[ACTIVE_USER]
+    end
+    def show_login_page(locals = {})
+      halt(401, erb(:login, :views => Spontaneous.application_dir('/views'), :locals => locals))
+    end
+  end
+end

data/lib/spontaneous/rack/back/index.rb ADDED Viewed

@@ -0,0 +1,16 @@
+module Spontaneous::Rack::Back
+  class Index < Base
+    include TemplateHelpers
+    # Matches either:
+    #   /@spontaneous
+    #   /@spontaneous/
+    #   /@spontaneous/xxx/edit
+    #   /@spontaneous/xxx/preview
+    #
+    # where xxx is a numeric id
+    get %r{\A(/?|/(\d+/?.*)?)\z} do
+      erb :index
+    end
+  end
+end

data/lib/spontaneous/rack/back/login.rb ADDED Viewed

@@ -0,0 +1,47 @@
+module Spontaneous::Rack::Back
+  class Login < Base
+    include TemplateHelpers
+    def set_authentication_cookie(key)
+      response.set_cookie(AUTH_COOKIE, {
+        :value => key.key_id,
+        :path => '/',
+        :secure => request.ssl?,
+        :httponly => true,
+        :expires => (Time.now + SESSION_LIFETIME)
+      })
+    end
+    def unset_authentication_cookie
+      response.delete_cookie(AUTH_COOKIE, {
+        :path => '/',
+        :secure => request.ssl?,
+        :httponly => true
+      })
+    end
+    post "/login" do
+      login = params[:user][:login]
+      password = params[:user][:password]
+      origin = "#{NAMESPACE}#{params[:origin]}"
+      if key = Spontaneous::Permissions::User.authenticate(login, password, env["REMOTE_ADDR"])
+        set_authentication_cookie(key)
+        if request.xhr?
+          json({
+            :key => key.key_id,
+            :redirect => origin
+          })
+        else
+          redirect origin, 302
+        end
+      else
+        show_login_page( :login => login, :failed => true )
+      end
+    end
+    delete "/logout" do
+      unset_authentication_cookie
+      401
+    end
+  end
+end

data/lib/spontaneous/rack/back/map.rb ADDED Viewed

@@ -0,0 +1,24 @@
+module Spontaneous::Rack::Back
+  class Map < Base
+    get '/?:id?' do
+      last_modified(Spontaneous::Site.modified_at)
+      map = Spontaneous::Site.map(params[:id])
+      if map
+        json(map)
+      else
+        404
+      end
+    end
+    get '/path*' do
+      last_modified(Spontaneous::Site.modified_at)
+      if content_model::Page.count == 0
+        406
+      else
+        path = params[:splat].first
+        page = Spontaneous::Site[path]
+        json Spontaneous::Site.map(page.id)
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/page.rb ADDED Viewed

@@ -0,0 +1,46 @@
+module Spontaneous::Rack::Back
+  class Page < Base
+    get '/:id' do
+      content_for_request { |content| json(content)}
+    end
+    put '/:id/slug' do
+      content_for_request(true) do |content|
+        if params[:slug].nil? or params[:slug].empty?
+          406 # Not Acceptable
+        else
+          content.slug = params[:slug]
+          if content.siblings.detect { |s| s.slug == content.slug }
+            409 # Conflict
+          else
+            content.save
+            json({:path => content.path, :slug => content.slug })
+          end
+        end
+      end
+    end
+    get '/:id/slug/unavailable' do
+      content_for_request do |content|
+        json(content.siblings.map { |c| c.slug })
+      end
+    end
+    put '/:id/slug/sync' do
+      content_for_request do |page|
+        page.sync_slug_to_title
+        page.save
+        json({:path => page.path, :slug => page.slug })
+      end
+    end
+    put '/:id/uid' do
+      forbidden! unless user.developer?
+      content_for_request(true) do |content|
+        content.uid = params[:uid]
+        content.save
+        json({:uid => content.uid })
+      end
+    end
+  end
+end

data/lib/spontaneous/rack/back/preview.rb ADDED Viewed

@@ -0,0 +1,43 @@
+module Spontaneous::Rack::Back
+  class Preview < Base
+    include Spontaneous::Rack::Public
+    # In preview mode we want to find pages even if they're
+    # invisible.
+    def find_page_by_path(path)
+      Spontaneous::Content.scope do
+        Spontaneous::Site.by_path(path)
+      end
+    end
+    # Redirect to the edit UI if a preview page is being accessed directly
+    def ensure_edit_preview(path)
+      referer = env['HTTP_REFERER']
+      return true if Spontaneous.development? || referer || params.key?('preview')
+      home = find_page_by_path(path)
+      redirect "#{NAMESPACE}/#{home.id}/preview"
+      false
+    end
+    # Forward all GETs to the page resolution method
+    get '*' do
+      path = params[:splat][0]
+      ensure_edit_preview(path) && render_path(path)
+    end
+    # Forward all POSTs to the page resolution method
+    post '*' do
+      render_path(params[:splat][0])
+    end
+    # Override the S::Rack::Public method to add in some cache-busting headers
+    def render_page(page, format = :html, local_params = {})
+      now = Time.now.to_formatted_s(:rfc822)
+      response.headers[HTTP_EXPIRES] = now
+      response.headers[HTTP_LAST_MODIFIED] = now
+      response.headers[HTTP_CACHE_CONTROL] = HTTP_NO_CACHE
+      super
+    end
+  end # Preview
+end

data/lib/spontaneous/rack/back/schema.rb ADDED Viewed

@@ -0,0 +1,30 @@
+module Spontaneous::Rack::Back
+  class Schema < Base
+    # Use the CSRF verification step separately from the main app
+    # because it conflicts with the Index application:
+    # The index application needs to load without CSRF validation
+    # and the Schema app needs CSRF validation
+    # but the Schema app has be before Index in the stack
+    use Spontaneous::Rack::Middleware::CSRF::Verification
+    def schema
+      Spontaneous.schema
+    end
+    post "/delete" do
+      begin
+        schema.apply_fix(:delete, params[:uid])
+      rescue Spot::SchemaModificationError # ignore remaining errors - they will be fixed later
+      end
+      redirect(params[:origin])
+    end
+    post "/rename" do
+      begin
+        schema.apply_fix(:rename, params[:uid], params[:ref])
+      rescue Spot::SchemaModificationError => e # ignore remaining errors - they will be fixed later
+      end
+      redirect(params[:origin])
+    end
+  end
+end