thecore 1.3.20

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2cd52dac896d7a464ed6311a27c66f298dac2fac
+  data.tar.gz: 749149993625e1370d43c359469b4dfbfad1ab68
+SHA512:
+  metadata.gz: 8ba5ab09e8614d9f6d075e60bdf8d72ecadadb06e70b44819a8a515967ca1eb5131abe38b518645d1e13193e9b7488255425715848cd2cdea155f7782f3ca5d0
+  data.tar.gz: d678cca087627de83e0ac9792b49e69995be31fce2be23663ef109ac51f4184a9fa4b55afbc15b7f66be6d22bfb90588e5c244cbd6697ec3ba6762982d4f80de

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2016 Gabriele Tassoni
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/Rakefile

@@ -0,0 +1,37 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'Thecore'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../test/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+
+load 'rails/tasks/statistics.rake'
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task default: :test

data/app/controllers/application_controller.rb

@@ -0,0 +1,2 @@
+class ApplicationController < ActionController::Base
+end

data/app/controllers/pages_controller.rb

@@ -0,0 +1,37 @@
+class PagesController < ApplicationController
+  before_action :authenticate_user!, only: [
+    :inside, :contact
+  ]
+  #authorize_resource :class => false
+
+  def home
+  end
+
+  def inside
+  end
+
+
+  def email
+    @name = params[:name]
+    @email = params[:email]
+    @message = params[:message]
+
+    if @name.blank?
+      flash[:alert] = "Please enter your name before sending your message. Thank you."
+      render :contact
+    elsif @email.blank? || @email.scan(/\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i).size < 1
+      flash[:alert] = "You must provide a valid email address before sending your message. Thank you."
+      render :contact
+    elsif @message.blank? || @message.length < 10
+      flash[:alert] = "Your message is empty. Requires at least 10 characters. Nothing to send."
+      render :contact
+    elsif @message.scan(/<a href=/).size > 0 || @message.scan(/\[url=/).size > 0 || @message.scan(/\[link=/).size > 0 || @message.scan(/http:\/\//).size > 0
+      flash[:alert] = "You can't send links. Thank you for your understanding."
+      render :contact
+    else
+      ContactMailer.contact_message(@name,@email,@message).deliver_now
+      redirect_to root_path, notice: "Your message was sent. Thank you."
+    end
+  end
+
+end

data/app/jobs/application_job.rb

@@ -0,0 +1,2 @@
+class ApplicationJob < ActiveJob::Base
+end

data/app/models/ability.rb

@@ -0,0 +1,48 @@
+class Ability
+  include CanCan::Ability
+
+  include TheCoreAbilities
+
+  def initialize(user)
+    # Define abilities for the passed in user here. For example:
+    #
+    #   user ||= User.new # guest user (not logged in)
+    #   if user.admin?
+    #     can :manage, :all
+    #   else
+    #     can :read, :all
+    #   end
+    #
+    # The first argument to `can` is the action you are giving the user
+    # permission to do.
+    # If you pass :manage it will apply to every action. Other common actions
+    # here are :read, :create, :update and :destroy.
+    #
+    # The second argument is the resource the user can perform the action on.
+    # If you pass :all it will apply to every resource. Otherwise pass a Ruby
+    # class of the resource.
+    #
+    # The third argument is an optional hash of conditions to further filter the
+    # objects.
+    # For example, here the user can only update published articles.
+    #
+    #   can :update, Article, :published => true
+    #
+    # See the wiki for details:
+    # https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities
+
+    # TODO: Spiegare meglio Taris
+    # Modo per poter caricare diversi file ability presenti in diversi engine
+    # bisogna creare nella cartella config/initializers dell'engine un file che
+    # faccia il module_eval di TheCore::Abilities, aggiungendo un metodo
+    # che accetta user come parametro e con dentro la definizione delle ability
+    # include TheCore::Abilities
+    TheCoreAbilities.instance_methods(false).each do |a|
+      # method(a).call(user)
+      # eval("#{a} #{user}")
+      Rails.logger.debug "LOADING ABILITIES FROM: #{a}"
+      send(a, user)
+    end
+    # core_abilities user
+  end
+end

data/app/models/user.rb

@@ -0,0 +1,158 @@
+class User < ApplicationRecord
+  include RailsAdmin
+  # # include default devise modules. Others available are:
+  # :confirmable, :lockable, :timeoutable and :omniauthable
+  devise :database_authenticatable, :recoverable, :rememberable, :trackable, :validatable #, :confirmable
+
+  before_create :generate_authentication_token
+
+  paginates_per 50
+
+  # Validations
+  # :username
+  validates :username, uniqueness: { case_sensitive: false }
+  validates_format_of :username, with: /\A[a-zA-Z0-9]*\z/, on: :create, message: "can only contain letters and digits"
+  validates :username, length: { in: 4..15 }
+  # :email
+  validates :email, uniqueness: { case_sensitive: false }
+  validates_format_of :email, with: /\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i
+
+  validates :username, presence: true
+  validates :email, presence: true
+
+  validates :password, presence: true, on: :create
+  validates :password_confirmation, presence: true, on: :create
+
+  def self.paged(page_number)
+    order(admin: :desc, username: :asc).page page_number
+  end
+
+  def self.search_and_order(search, page_number)
+    if search
+      where("username LIKE ?", "%#{search.downcase}%").order(
+      admin: :desc, username: :asc
+      ).page page_number
+    else
+      order(admin: :desc, username: :asc).page page_number
+    end
+  end
+
+  def self.last_signups(count)
+    order(created_at: :desc).limit(count).select("id","username","slug","created_at")
+  end
+
+  def self.last_signins(count)
+    order(last_sign_in_at:
+    :desc).limit(count).select("id","username","slug","last_sign_in_at")
+  end
+
+  def self.users_count
+    where("admin = ? AND locked = ?",false,false).count
+  end
+
+  def title
+    username
+  end
+
+  serialize :roles, Array
+  def roles_enum
+    # Do not EDIT below this line
+    ROLES.each_with_index.map {|a,i| [I18n.t("roles.#{a.to_sym}"), (i+1).to_s]}
+  end
+  def has_role? role
+    # example called from cancan's app/models/ability.rb
+    # if user.has_role? :admin
+
+    # for roles array stored in db... take each value, see if it matches the second column in the roles_enum array, if so, retu the 1st col of the enum as a uprcase,space_to_underscore,symbol .
+    chosen_roles = self.roles.map { |r| r.blank? ? nil : ROLES[r.to_i - 1] }
+    chosen_roles.compact.include? role
+  end
+
+  RailsAdmin.config do |config|
+    config.model self.name.underscore.capitalize.constantize do
+    # rails_admin do
+      navigation_label I18n.t("admin.settings.label")
+      navigation_icon 'fa fa-user-circle-o'
+      desc I18n.t("activerecord.descriptions.user")
+
+      weight 1000
+      # Field present Everywhere
+      field :email do
+        required true
+      end
+      field :username do
+        required true
+      end
+      field :code
+      field :admin do
+        visible do
+          bindings[:view].current_user.admin? && bindings[:view].current_user.id != bindings[:object].id
+        end
+      end
+      field :locked do
+        visible do
+          bindings[:view].current_user.admin? && bindings[:view].current_user.id != bindings[:object].id
+        end
+      end
+      field :third_party do
+        visible do
+          bindings[:view].current_user.admin? && bindings[:view].current_user.id != bindings[:object].id
+        end
+      end
+      field :roles, :enum do
+        visible !ROLES.blank?
+        pretty_value do # used in list view columns and show views, defaults to formatted_value for non-association fields
+          value.map { |v| bindings[:object].roles_enum.rassoc(v)[0] rescue nil }.compact.join ", "
+        end
+        export_value do
+          value.map { |v| bindings[:object].roles_enum.rassoc(v)[0] rescue nil }.compact.join ", " # used in exports, where no html/data is allowed
+        end
+        queryable false
+      end
+      # include UserRailsAdminConcern
+
+      # Fields only in lists and forms
+      list do
+        field :created_at
+        configure :email do
+          visible false
+        end
+
+        # include UserRailsAdminListConcern
+      end
+
+      create do
+        field :password do
+          required true
+        end
+        field :password_confirmation do
+          required true
+        end
+
+        # include UserRailsAdminCreateConcern
+      end
+
+      edit do
+        field :password do
+          required false
+        end
+        field :password_confirmation do
+          required false
+        end
+
+        # include UserRailsAdminEditConcern
+      end
+    end
+  end
+
+  #has_paper_trail
+
+  private
+
+  def generate_authentication_token
+    loop do
+      self.authentication_token = SecureRandom.base64(64)
+      break unless User.find_by(authentication_token: authentication_token)
+    end
+  end
+end

data/app/uploaders/attachment_uploader.rb

@@ -0,0 +1,27 @@
+# class ImageUploader < CarrierWave::Uploader::Base
+#   include CarrierWave::MiniMagick
+#
+#   storage :file
+#
+#   def store_dir
+#     "uploads/#{model.class.to_s.underscore}/#{mounted_as}/#{model.id}"
+#   end
+#
+#   #version :example, if: :is_example? do
+#     #process :resize_to_fill => [200, 150]
+#   #end
+#
+#   def extension_white_list
+#     %w(jpg jpeg gif png)
+#   end
+#
+#   def content_type_whitelist
+#     /image\//
+#   end
+#
+#   protected
+#   #def is_example?(picture)
+#   #  model.kind_of?(ExampleModel)
+#   #end
+# end
+

data/app/uploaders/image_uploader.rb

@@ -0,0 +1,27 @@
+# class ImageUploader < CarrierWave::Uploader::Base
+#   include CarrierWave::MiniMagick
+#
+#   storage :file
+#
+#   def store_dir
+#     "uploads/#{model.class.to_s.underscore}/#{mounted_as}/#{model.id}"
+#   end
+#
+#   #version :example, if: :is_example? do
+#     #process :resize_to_fill => [200, 150]
+#   #end
+#
+#   def extension_white_list
+#     %w(jpg jpeg gif png)
+#   end
+#
+#   def content_type_whitelist
+#     /image\//
+#   end
+#
+#   protected
+#   #def is_example?(picture)
+#   #  model.kind_of?(ExampleModel)
+#   #end
+# end
+

data/config/initializers/rails_admin.rb

@@ -0,0 +1,42 @@
+require 'rails_admin'
+
+require "thecore_actions"
+
+include TheCoreActions
+
+RailsAdmin.config do |config|
+  # config.main_app_name = Proc.new { |controller|
+  #  [(Settings.app_name rescue (ENV["APP_NAME"] || "TheCore App")), "#{controller.params[:action].try(:titleize)} (#{Time.zone.now.to_s(:time)})"]
+  # }
+  ### Popular gems integration
+
+  ## == Devise ==
+  config.authenticate_with do
+    warden.authenticate! scope: :user
+  end
+  config.current_user_method(&:current_user)
+
+  ## == Cancan ==
+  config.authorize_with :cancan
+
+  ## == PaperTrail ==
+  # config.audit_with :paper_trail, 'User', 'PaperTrail::Version' # PaperTrail >= 3.0.0
+
+  ### More at https://github.com/sferik/rails_admin/wiki/Base-configuration
+  config.label_methods.unshift(:display_name)
+
+  config.actions do
+    # show_in_app
+    dashboard # mandatory
+    index # mandatory
+    new
+    export
+    bulk_delete
+    show
+    edit
+    delete
+    toggle
+  end
+end
+
+# require "thecore_rails_admin_main_controller_concern"

data/config/initializers/rails_application_config.rb

@@ -0,0 +1,28 @@
+Rails.application.configure do
+  config.assets.precompile += %w( favicon.ico )
+  config.assets.precompile += %w( apple-touch-icon.png )
+  config.assets.precompile += %w( favicon-32x32.png )
+  config.assets.precompile += %w( favicon-16x16.png )
+  config.assets.precompile += %w( safari-pinned-tab.svg )
+  config.assets.precompile += %w( mstile-150x150.svg )
+  config.assets.precompile += %w( android-chrome-192x192.png )
+  config.assets.precompile += %w( android-chrome-512x512.png )
+  config.assets.precompile += %w( logo.png )
+  config.assets.precompile += %w( up-arrow.png )
+  # mstile-150x150
+  config.assets.precompile += %w( thecore.js )
+  config.assets.precompile += %w( thecore.css )
+  # config.assets.precompile += %w( app_logo.png )
+  # config.assets.precompile += %w( main_app_logo.png )
+  config.assets.precompile += %w( ie.js )
+  config.assets.precompile += %w( manifest.json )
+  config.assets.precompile += %w( browserconfig.xml )
+
+  config.filter_parameters += [:password]
+
+  config.active_record.raise_in_transactional_callbacks = true
+
+  config.serviceworker.routes.draw do
+    match "/manifest.json"
+  end
+end

data/config/initializers/thecore_concern.rb

@@ -0,0 +1,113 @@
+require 'active_support/concern'
+
+module ThecoreConcern
+  extend ActiveSupport::Concern
+
+  included do
+    # Prevent CSRF attacks by raising an exception.
+    # For APIs, you may want to use :null_session instead.
+    layout 'thecore'
+    protect_from_forgery with: :exception, prepend: true
+    rescue_from CanCan::AccessDenied do |exception|
+      redirect_to main_app.root_url, :alert => exception.message
+    end
+    include HttpAcceptLanguage::AutoLocale
+    Rails.logger.debug "Selected Locale: #{I18n.locale}"
+    before_action :configure_permitted_parameters, if: :devise_controller?
+    before_action :reject_locked!, if: :devise_controller?
+
+    helper_method :reject_locked!
+    helper_method :require_admin!
+    helper_method :line_break
+    helper_method :title
+    helper_method :bootstrap_class_for
+
+    # Redirects on successful sign in
+    def after_sign_in_path_for resource
+      Rails.logger.debug("SUCCESFULL SIGNIN, USER IS ADMIN? #{current_user.admin?}")
+      #if current_user.admin?
+      # GETTING JUST THE ROOT ACTIONS I (CURRENT_USER) CAN MANAGE
+      root_actions = RailsAdmin::Config::Actions.all(:root).select {|action| can? action.action_name, :all }
+      # Rails.logger.debug "ROOT ACTIONS: #{root_actions.inspect}"
+      # GETTING THE FIRST ACTION I CAN MANAGE
+      action = root_actions.collect(&:action_name).first
+      # Rails.logger.debug "FIRST ACTION: #{action}"
+      # REDIRECT TO THAT ACTION
+      rails_admin.send("#{action}_path").sub("#{ENV['RAILS_RELATIVE_URL_ROOT']}#{ENV['RAILS_RELATIVE_URL_ROOT']}", "#{ENV['RAILS_RELATIVE_URL_ROOT']}")
+      #rails_admin.dashboard_path.sub("#{ENV['RAILS_RELATIVE_URL_ROOT']}#{ENV['RAILS_RELATIVE_URL_ROOT']}", "#{ENV['RAILS_RELATIVE_URL_ROOT']}")
+      #elsif current_user.has_role? :workers
+      #  rails_admin.new_path('timetable').sub("#{ENV['RAILS_RELATIVE_URL_ROOT']}#{ENV['RAILS_RELATIVE_URL_ROOT']}", "#{ENV['RAILS_RELATIVE_URL_ROOT']}")
+      #else
+      #  inside_path
+      #end
+    end
+  end
+
+  def title value = "Thecore"
+    @title = value
+  end
+
+  def bootstrap_class_for flash_type
+    case flash_type
+    when 'success'
+      'alert-success'
+    when 'error'
+      'alert-danger'
+    when 'alert'
+      'alert-warning'
+    when 'notice'
+      'alert-info'
+    else
+      flash_type.to_s
+    end
+  end
+
+  def line_break s
+    s.gsub("\n", "<br/>")
+  end
+  # Devise permitted params
+  def configure_permitted_parameters
+    devise_parameter_sanitizer.permit(:sign_in) { |u| u.permit(
+      :username,
+      :password,
+      :password_confirmation,
+      :remember_me)
+    }
+    devise_parameter_sanitizer.permit(:sign_up) { |u| u.permit(
+      :username,
+      :password,
+      :password_confirmation)
+    }
+    devise_parameter_sanitizer.permit(:account_update) { |u| u.permit(
+      :username,
+      :password,
+      :password_confirmation,
+      :current_password
+      )
+    }
+  end
+
+  # Auto-sign out locked users
+  def reject_locked!
+    if current_user && current_user.locked?
+      sign_out current_user
+      user_session = nil
+      current_user = nil
+      flash[:alert] = "Your account is locked."
+      flash[:notice] = nil
+      redirect_to root_url
+    end
+  end
+
+  # Only permits admin users
+  def require_admin!
+    authenticate_user!
+
+    if current_user && !current_user.admin?
+      redirect_to inside_path
+    end
+  end
+end
+
+# include the extension
+ActionController::Base.send(:include, ThecoreConcern)

data/config/locales/en.activerecord.yml

@@ -0,0 +1,6 @@
+en:
+  activerecord:
+    models:
+      user:
+        one: User
+        other: Users Database

data/config/locales/en.contact_mailer.custom.yml

@@ -0,0 +1,5 @@
+it:
+  contact_mailer:
+    message:
+      domain: "Domain:  %{domain}"
+      from: "From: %{name} - %{email}"

data/config/locales/en.devise.custom.yml

@@ -0,0 +1,15 @@
+en:
+  devise:
+    mailer:
+      password_changed_instructions:
+        greeting: Welcome %{recipient}!
+        instruction: We sent you this email to inform about password change.
+        instruction_2: If you didn't changed password, we ask you to contact our customer service, please.
+    shared:
+      links:
+        sign_out: Log out
+      descriptions:
+        current_password_needed: (we need your current password to confirm your changes)
+        leave_blank: (leave blank if you don't want to change it)
+    validations:
+      minimum_length: "%{length} characters minimum"

data/config/locales/en.rails_admin.yml

@@ -0,0 +1,34 @@
+en:
+  admin:
+    misc:
+      scopes: Fast Filters
+    scopes:
+      all: All
+      order_by_name: Order By Name
+      order_by_insert_date: Order By Date
+      starts_with_a: Starts with A
+      starts_with_b: Starts with B
+      starts_with_c: Starts with C
+      starts_with_d: Starts with D
+      starts_with_e: Starts with E
+      starts_with_f: Starts with F
+      starts_with_g: Starts with G
+      starts_with_h: Starts with H
+      starts_with_i: Starts with I
+      starts_with_j: Starts with J
+      starts_with_k: Starts with K
+      starts_with_l: Starts with L
+      starts_with_m: Starts with M
+      starts_with_n: Starts with N
+      starts_with_o: Starts with O
+      starts_with_p: Starts with P
+      starts_with_q: Starts with Q
+      starts_with_r: Starts with R
+      starts_with_s: Starts with S
+      starts_with_t: Starts with T
+      starts_with_u: Starts with U
+      starts_with_v: Starts with V
+      starts_with_w: Starts with W
+      starts_with_x: Starts with X
+      starts_with_y: Starts with Y
+      starts_with_z: Starts with Z

data/config/locales/en.rollincode.yml

@@ -0,0 +1,5 @@
+en:
+  admin:
+    rollincode:
+      number: "Number"
+      show: "Show"

data/config/locales/en.simple_form.yml

@@ -0,0 +1,31 @@
+en:
+  simple_form:
+    "yes": 'Yes'
+    "no": 'No'
+    required:
+      # text: 'required'
+      # mark: '*'
+      # You can uncomment the line below if you need to overwrite the whole required html.
+      # When using html, text and mark won't be used.
+      html: '*'
+    error_notification:
+      default_message: "Please review the problems below:"
+    # Examples
+    # labels:
+    #   defaults:
+    #     password: 'Password'
+    #   user:
+    #     new:
+    #       email: 'E-mail to sign in.'
+    #     edit:
+    #       email: 'E-mail.'
+    # hints:
+    #   defaults:
+    #     username: 'User name to sign in.'
+    #     password: 'No special characters, please.'
+    # include_blanks:
+    #   defaults:
+    #     age: 'Rather not say'
+    # prompts:
+    #   defaults:
+    #     age: 'Select your age'