tentd-admin 0.0.1

data/lib/tentd-admin/app.rb

@@ -0,0 +1,242 @@
+require 'bundler/setup'
+require 'sinatra/base'
+require 'sprockets'
+require 'hashie'
+require 'tentd'
+require 'tent-client'
+require 'rack/csrf'
+require 'slim'
+require 'coffee_script'
+require 'sass'
+require 'oj'
+
+module TentD
+  class Admin < Sinatra::Base
+    require 'tentd-admin/sprockets/environment'
+
+    configure do
+      set :asset_manifest, Oj.load(File.read(ENV['ADMIN_ASSET_MANIFEST'])) if ENV['ADMIN_ASSET_MANIFEST']
+      set :cdn_url, ENV['ADMIN_CDN_URL']
+
+      set :method_override, true
+    end
+
+    use Rack::Csrf
+
+    include SprocketsEnvironment
+
+    helpers do
+      def path_prefix
+        env['SCRIPT_NAME']
+      end
+
+      def asset_path(path)
+        path = asset_manifest_path(path) || assets.find_asset(path).digest_path
+        if settings.cdn_url?
+          "#{settings.cdn_url}/assets/#{path}"
+        else
+          full_path("/assets/#{path}")
+        end
+      end
+
+      def asset_manifest_path(asset)
+        if settings.respond_to?(:asset_manifest?) && settings.asset_manifest?
+          settings.asset_manifest['files'].detect { |k,v| v['logical_path'] == asset }[0]
+        end
+      end
+
+      def full_path(path)
+        "#{path_prefix}/#{path}".gsub(%r{//}, '/')
+      end
+
+      def csrf_tag
+        Rack::Csrf.tag(env)
+      end
+
+      def method_override(method)
+        "<input type='hidden' name='_method' value='#{method}' />"
+      end
+
+      def scope_name(scope)
+        {
+          :read_posts        => "Read Posts",
+          :write_posts       => "Write Posts",
+          :import_posts      => "Import Posts",
+          :read_profile      => "Read Profile",
+          :write_profile     => "Write Profile",
+          :read_followers    => "Read Followers",
+          :write_followers   => "Write Followers",
+          :read_followings   => "Read Followings",
+          :write_followings  => "Write Followings",
+          :read_groups       => "Read Groups",
+          :write_groups      => "Write Groups",
+          :read_permissions  => "Read Permissions",
+          :write_permissions => "Write Permissions",
+          :read_apps         => "Read Apps",
+          :write_apps        => "Write Apps",
+          :follow_ui         => "Follow UI",
+          :read_secrets      => "Read Secrets",
+          :write_secrets     => "Write Secrets"
+        }[scope.to_sym]
+      end
+
+      def nav_active_class(path)
+        env['PATH_INFO'] == path ? 'active' : ''
+      end
+
+      def server_url
+        env['rack.url_scheme'] + "://" + env['HTTP_HOST']
+      end
+
+      def tent_client
+        env['tent.client']
+      end
+
+      def current_user
+        return unless defined?(TentD)
+        current = TentD::Model::User.current
+        current if session[:current_user_id] == current.id
+      end
+
+      def authenticate!
+        halt 403 unless current_user
+      end
+    end
+
+    if ENV['RACK_ENV'] != 'production' || ENV['SERVE_ASSETS']
+      get '/assets/*' do
+        new_env = env.clone
+        new_env["PATH_INFO"].gsub!("/assets", "")
+        assets.call(new_env)
+      end
+    end
+
+    get '/' do
+      authenticate!
+      @profile = tent_client.profile.get.body
+      @profile['https://tent.io/types/info/basic/v0.1.0'] ||= {
+        'public' => true,
+        'name' => '',
+        'avatar_url' => '',
+        'birthdate' => '',
+        'location' => '',
+        'gender' => '',
+        'bio' => ''
+      }
+
+      @apps = tent_client.app.list.body
+      @apps.kind_of?(Array) ? @apps.map! { |a| Hashie::Mash.new(a) } : @apps = []
+      @apps = @apps.sort_by { |a| -a.authorizations.size }
+
+      slim :dashboard
+    end
+
+    get '/signout' do
+      session.clear
+      redirect full_path('/')
+    end
+
+    put '/profile' do
+      authenticate!
+      params.each_pair do |key, val|
+        next unless key =~ %r{tent.io/types/info}
+        tent_client.profile.update(key, val)
+      end
+
+      redirect full_path('/')
+    end
+
+    delete '/apps/:app_id' do
+      authenticate!
+      tent_client.app.delete(params[:app_id])
+      redirect full_path('/')
+    end
+
+    delete '/apps/:app_id/authorizations/:app_auth_id' do
+      authenticate!
+      tent_client.app.authorization.delete(params[:app_id], params[:app_auth_id])
+      redirect full_path('/')
+    end
+
+    get '/oauth/confirm' do
+      authenticate!
+      @app_params = %w{ client_id redirect_uri state scope tent_profile_info_types tent_post_types tent_notification_url }.inject({}) { |memo, k|
+        memo[k] = params[k] if params.has_key?(k)
+        memo
+      }
+      session[:current_app_params] = @app_params
+      @app_params = Hashie::Mash.new(@app_params)
+
+      @app = session[:current_app] = tent_client.app.get(@app_params.client_id).body
+      @app = @app.kind_of?(Hash) ? Hashie::Mash.new(@app) : @app
+
+      @app ||= "Invalid client_id"
+
+      redirect_uri = URI(@app_params.redirect_uri.to_s)
+      redirect_uri.query ||= ""
+      if @app.kind_of?(String)
+        redirect_uri.query += "error=#{URI.encode(@app)}"
+        redirect redirect_uri.to_s
+        return
+      end
+
+      unless @app.redirect_uris.to_a.include?(@app_params.redirect_uri)
+        redirect_uri.query += 'error=invalid_redirect_uri'
+        redirect redirect_uri.to_s
+        return
+      end
+
+      # TODO: allow updating tent_profile_info_types, tent_post_types, scopes
+      #       (user must confirm adding anything)
+
+      if @app.authorizations.any?
+        authorization = @app.authorizations.first
+
+        unless authorization.notification_url == @app_params.tent_notification_url
+          tent_client.app.authorization.update(@app.id, authorization.id, :notification_url => @app_params.notification_url)
+        end
+
+        redirect_uri.query +="&code=#{authorization.token_code}"
+        redirect_uri.query += "&state=#{@app_params.state}" if @app_params.has_key?(:state)
+        redirect redirect_uri.to_s
+        return
+      end
+
+      slim :auth_confirm
+    end
+
+    post '/oauth/confirm' do
+      authenticate!
+      @app = Hashie::Mash.new(session.delete(:current_app))
+      @app_params = Hashie::Mash.new(session.delete(:current_app_params))
+
+      redirect_uri = URI(@app_params.redirect_uri.to_s)
+      redirect_uri.query ||= ""
+
+      if params[:commit] == 'Abort'
+        redirect_uri.query += "error=user_abort"
+        redirect redirect_uri.to_s
+        return
+      end
+
+      data = {
+        :scopes => (@app.scopes || {}).inject([]) { |memo, (k,v)|
+          params[k] == 'on' ? memo << k : nil
+          memo
+        },
+        :profile_info_types => @app_params.tent_profile_info_types.to_s.split(',').select { |type|
+          params[type] == 'on'
+        },
+        :post_types => @app_params.tent_post_types.to_s.split(',').select { |type|
+          params[type] == 'on'
+        },
+        :notification_url => @app_params.tent_notification_url
+      }
+      authorization = Hashie::Mash.new(tent_client.app.authorization.create(@app.id, data).body)
+
+      redirect_uri.query +="&code=#{authorization.token_code}"
+      redirect_uri.query += "&state=#{@app_params.state}" if @app_params.has_key?(:state)
+      redirect redirect_uri.to_s
+    end
+  end
+end

data/lib/tentd-admin/set_entity.rb

@@ -0,0 +1,10 @@
+class SetEntity
+  def initialize(app)
+    @app = app
+  end
+
+  def call(env)
+    env['tent.entity'] = (env['HTTP_X_FORWARDED_PROTO'] || env['rack.url_scheme']) + '://' + env['HTTP_HOST']
+    @app.call(env)
+  end
+end

data/lib/tentd-admin/setup_tent.rb

@@ -0,0 +1,54 @@
+class SetupTent
+  def initialize(app)
+    @app = app
+  end
+
+  def call(env)
+    TentD::Model::User.current = user = TentD::Model::User.first_or_create
+    env['rack.session']['current_user_id'] = user.id
+    set_client(env)
+    create_core_profile(env)
+    @app.call(env)
+  end
+
+  private
+
+  def set_client(env)
+    app = TentD::Model::App.first(:url => 'http://tent-admin') || create_app(env)
+    auth = app.authorizations.first
+    env['tent.app'] = app
+    env['tent.app_auth'] = auth
+    env['tent.client'] = TentClient.new(server_url(env), auth.auth_details)
+  end
+
+  def create_app(env)
+    app = TentD::Model::App.create(
+      :name => "Tent Admin",
+      :description => "Tent Admin App",
+      :url => 'http://tent-admin'
+    )
+    app.authorizations.create(
+      :scopes => %w(read_posts write_posts import_posts read_profile write_profile read_followers write_followers read_followings write_followings read_groups write_groups read_permissions write_permissions read_apps write_apps follow_ui read_secrets write_secrets),
+      :profile_info_types => ['all'],
+      :post_types => ['all'],
+      :follow_url => "#{server_url(env)}/admin/followings"
+    )
+    app
+  end
+
+  def create_core_profile(env)
+    TentD::Model::ProfileInfo.first_or_create({ :type_base => 'https://tent.io/types/info/core' },
+      :content => {
+        :entity => server_url(env),
+        :licenses => [],
+        :servers => [server_url(env)]
+      },
+      :type_version => '0.1.0',
+      :public => true
+    )
+  end
+
+  def server_url(env)
+    (env['HTTP_X_FORWARDED_PROTO'] || env['rack.url_scheme']) + '://' + env['HTTP_HOST']
+  end
+end

data/lib/tentd-admin/sprockets/environment.rb

@@ -0,0 +1,23 @@
+require 'tentd-admin/sprockets/helpers'
+
+module TentD
+  class Admin
+    module SprocketsEnvironment
+      def assets
+        return @assets if defined?(@assets)
+        @assets = Sprockets::Environment.new do |env|
+          env.logger = Logger.new(STDOUT)
+          env.context_class.class_eval do
+            include SprocketsHelpers
+          end
+        end
+
+        paths = %w{ javascripts stylesheets images }
+        paths.each do |path|
+          @assets.append_path((File.join(File.expand_path('../../../../', __FILE__), "assets/#{path}")))
+        end
+        @assets
+      end
+    end
+  end
+end

data/lib/tentd-admin/sprockets/helpers.rb

@@ -0,0 +1,5 @@
+module SprocketsHelpers
+  def asset_path(source, options = {})
+    "./#{environment.find_asset(source).digest_path}"
+  end
+end

data/lib/tentd-admin/version.rb

@@ -0,0 +1,5 @@
+module Tentd
+  class Admin
+    VERSION = "0.0.1"
+  end
+end

data/lib/tentd-admin/views/_profile_type_fields.slim

@@ -0,0 +1,20 @@
+- input_name = "#{type}[#{name}]"
+- if value.kind_of? Array
+  - input_name << '[]'
+  label.control-label for=input_name = name
+  .controls
+    select.input.input-xxlarge name=input_name multiple=true
+      - value.each do |option|
+        option value=option selected=true = option
+- elsif value.kind_of?(Hash)
+  - value.each_pair do |name, value|
+    .control-group.span8
+      legend = name
+      == slim :_profile_type_fields, :locals => { :type => type, :name => name, :value => value }
+- elsif value.kind_of?(TrueClass) || value.kind_of?(FalseClass)
+  label.checkbox
+    input type='checkbox' name=input_name value='true' checked=value = name
+- else
+  label.control-label for=input_name = name
+  .controls
+    input.input.input-xxlarge type='text' name=input_name value=value

data/lib/tentd-admin/views/_profile_type_section.slim

@@ -0,0 +1,4 @@
+.control-group
+  legend = type
+  - data.each_pair do |name, value|
+    == slim :_profile_type_fields, :locals => { :type => type, :name => name, :value => value }

data/lib/tentd-admin/views/apps.slim

@@ -0,0 +1,39 @@
+h2.page-header Authorized Apps
+
+ul.unstyled
+  - @apps.each do |app|
+    li.app
+      .row
+        .span4
+          h3
+            a href=app.url = app.name
+        .span6
+          ul.unstyled
+            - app.authorizations.each do |auth|
+              li.authorization
+                .row
+                  .span4
+                    h4.page-header Scopes
+                    = auth.scopes.map { |s| scope_name(s) }.join(', ')
+
+                    h4.page-header Post Types
+                    ul
+                      - auth.post_types.each do |post_type|
+                        li = post_type
+
+                    h4.page-header Profile Info Types
+                    ul
+                      - auth.profile_info_types.each do |info_type|
+                        li = info_type
+
+                  .span2
+                    form.remove-app action=full_path("/apps/#{app.id}/authorizations/#{auth.id}") method="POST"
+                      == method_override("DELETE")
+                      == csrf_tag
+                      input.btn.btn-danger type='submit' value="Revoke Authorization" confirm="Revoke #{app.name} Authorization?"
+        .span2
+          form.remove-app action=full_path("/apps/#{app.id}") method="POST"
+            == method_override("DELETE")
+            == csrf_tag
+            input.btn.btn-danger type='submit' value="Remove App" confirm="Delete #{app.name}?"
+      hr/

data/lib/tentd-admin/views/auth_confirm.slim

@@ -0,0 +1,34 @@
+h2 Authorize #{ @app.name }
+
+form.form-horizontal action=full_path("oauth/confirm") method="POST"
+  == csrf_tag
+
+  .row
+    .span6
+      legend Scopes
+      - (@app.scopes || {}).each_pair do |scope, description|
+        .control-group
+          .controls
+            label.control-label
+              input.pull-left name=scope type='checkbox' checked=true = ' ' + scope_name(scope)
+              blockquote = description
+
+    .span6
+      legend Post Types
+      - @app_params.tent_post_types.to_s.split(',').each do |type|
+        .control-group
+          .controls
+            label.control-label
+              input.pull-left name=type type='checkbox' checked=true = ' ' + type
+
+      legend Profile Info Types
+      - @app_params.tent_profile_info_types.to_s.split(',').each do |type|
+        .control-group
+          .controls
+            label.control-label
+              input.pull-left name=type type='checkbox' checked=true = ' ' + type
+
+    .span12
+      .form-actions
+        input.btn.btn-success type='submit' name='commit' value='Grant Access'
+        input.btn.btn-danger.pull-right type='submit' name='commit' value='Abort'