thecore_auth_commons 2.3.1 → 2.3.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: da250c055d268a4ca3cc912c0d10b137ab09bc480f1e7a3de4cc173c73965d69
-  data.tar.gz: ad6dfcf05fd39807329a0610ed796153f3ecdb497e00a2c133f1b8d8c1799287
+  metadata.gz: d768f07a4453c22a5f054829d3876d9ffaa1631db6ded68c197f4d0d9dc0b23c
+  data.tar.gz: a9b67b83f90eaae2855f1bb23a684e88c04e3441db5ddd724909c0b5522325c5
 SHA512:
-  metadata.gz: 328c34d18d5a35df6132e73a932137ce73b39910587e46e150acd45ea63807451fb99f964f7bfc139aaf57192b43d5c8fdc601eb624623d90ee0e6ef58d6888d
-  data.tar.gz: 5c10b5c19d8126dcfa43b1f378a730be5f08146606382e72618fd54d72ddd2d5e4c64663ddb67ad58e13939c4401faf37315191a99190f2ab5aa30da705cb29a
+  metadata.gz: 1042358e70ec7f2ff8ab405636be208e6e701a7cede2879832302d1d1d8c30868d09ff8d684f65f7ea509870ac943bfd41ae7f2de26fcba143b4c4b7b0cf938f
+  data.tar.gz: 7fb3eabb340f5591a1b1d777d32b414eafb8772e8890a48362baf1f7ea01bfb6801ece5459ed4402a2b1a697e287cd74da4d576a03707b91e04f4046172ea49a

data/app/models/user.rb

@@ -10,7 +10,15 @@ class User < ApplicationRecord
   # devise :rememberable
   # devise :trackable
   # devise :validatable
-  # devise :timeoutable, timeout_in: 30.minutes 
+  # devise :timeoutable, timeout_in: 30.minutes
+          
+  before_validation on: :create do
+    # If the generated uuid is not already present, then create the user with the proposed uuid
+    # Otherwise, try to generate another one
+    begin
+        self.access_token = SecureRandom.uuid #urlsafe_base64(32)
+    end while ::User.exists?(access_token: self.access_token)
+  end
   # REFERENCES
   has_many :role_users, dependent: :destroy, inverse_of: :user
   has_many :roles, through: :role_users, inverse_of: :users
@@ -19,6 +27,7 @@ class User < ApplicationRecord
   validates :password, presence: true, on: :create
   validates :password_confirmation, presence: true, on: :create
   validate :check_password_and_confirmation_equal
+  validates :access_token, uniqueness: true
   validates_each :admin do |record, attr, value|
     # Don't want admin == false if the current user is the only admin
     record.errors.add(attr, I18n.t("validation.errors.cannot_unadmin_last_admin")) if record.admin_changed? && record.admin_was == true && User.where(admin: true).count == 1

data/db/migrate/20200518082821_create_permissions.rb

@@ -1,32 +1,31 @@
 class CreatePermissions < ActiveRecord::Migration[6.0]
   def change
-    @values = {
-      predicates: %i[can cannot],
-      actions: %i[manage create read update destroy],
-      targets: ApplicationRecord.subclasses.map {|d| d.to_s.underscore}.to_a.unshift(:all)
-    }
-
-    def create_and_fill table
-      create_table table do |t|
-        t.string :name
-        t.bigint :lock_version
+    # Predicates
+    create_table :predicates do |t|
+      t.string :name
+      t.bigint :lock_version
 
-        t.timestamps
-      end
-      add_index table, :name, unique: true
-      model = table.to_s.classify.constantize
-      model.reset_column_information
-      model.upsert_all @values[table].map { |p| {name: p, created_at: Time.now, updated_at: Time.now} }, unique_by: [:name]
+      t.timestamps
     end
-
-    # Predicates
-    create_and_fill :predicates
+    add_index :predicates, :name, unique: true
     
     # Actions
-    create_and_fill :actions
+    create_table :actions do |t|
+      t.string :name
+      t.bigint :lock_version
+
+      t.timestamps
+    end
+    add_index :actions, :name, unique: true
     
     # Targets
-    create_and_fill :targets
+    create_table :targets do |t|
+      t.string :name
+      t.bigint :lock_version
+
+      t.timestamps
+    end
+    add_index :targets, :name, unique: true
 
     create_table :permissions do |t|
       t.references :predicate, null: false, foreign_key: true

data/db/migrate/20210415154152_add_access_token_to_user.rb

@@ -0,0 +1,5 @@
+class AddAccessTokenToUser < ActiveRecord::Migration[6.0]
+  def change
+    add_column :users, :access_token, :uuid
+  end
+end

data/db/seeds.rb

@@ -0,0 +1,27 @@
+puts "Loading ThecoreAuthCommons seeds"
+email = ENV["ADMIN_EMAIL"].presence || "admin@example.com"
+psswd = ENV["ADMIN_PASSWORD"].presence || "changeme"
+
+unless User.where(admin: true).exists?
+    u = User.find_or_initialize_by(email: email)
+    u.username = "Administrator"
+    u.password = u.password_confirmation = psswd
+    u.admin = true
+    u.save(validate: false)
+end
+
+@values = {
+    predicates: %i[can cannot],
+    actions: %i[manage create read update destroy],
+    targets: ApplicationRecord.subclasses.map {|d| d.to_s.underscore}.to_a.unshift(:all)
+}
+
+def fill table
+    model = table.to_s.classify.constantize
+    model.reset_column_information
+    model.upsert_all @values[table].map { |p| {name: p, created_at: Time.now, updated_at: Time.now} }, unique_by: [:name]
+end
+
+fill :predicates
+fill :actions
+fill :targets

data/lib/tasks/thecore_auth_commons_tasks.rake

@@ -2,3 +2,13 @@
 # task :thecore_auth_commons do
 #   # Task goes here
 # end
+namespace :thecore do
+    namespace :db do
+        desc "Load seeds from thecore engines seed files, it also runs rails db:seed as last action"
+        task seed: :environment do
+            Thecore::Base.thecore_engines.each { |engine| engine.send :load_seed }
+            Rake::Task["db:seed"].reenable
+            Rake::Task["db:seed"].invoke
+        end
+    end
+end

data/lib/thecore_auth_commons.rb

@@ -1,6 +1,7 @@
 require 'devise'
 require 'cancancan'
 require 'kaminari'
+require 'activerecord-nulldb-adapter'
 require 'abilities/thecore_auth_commons'
 
 require "thecore_auth_commons/engine"
@@ -8,3 +9,12 @@ require "thecore_auth_commons/engine"
 module ThecoreAuthCommons
   # Your code goes here...
 end
+
+module Thecore
+  class Base
+    @@thecore_engines = []
+    def self.thecore_engines
+      @@thecore_engines
+    end
+  end
+end

data/lib/thecore_auth_commons/engine.rb

@@ -1,6 +1,11 @@
 module ThecoreAuthCommons
   class Engine < ::Rails::Engine
+    # https://stackoverflow.com/questions/12161376/rails-3-2-adding-seed-tasks-from-a-mountable-engine
+
     initializer 'thecore_auth_commons.add_to_migrations' do |app|
+      # Adds the list of Thecore Engines, so to manage seeds loading, i.e.:
+      # Thecore::Base.thecore_engines.each { |engine| engine.load_seed }
+      Thecore::Base.thecore_engines << self.class
       unless app.root.to_s.match root.to_s
         # APPEND TO MAIN APP MIGRATIONS FROM THIS GEM
         config.paths['db/migrate'].expanded.each do |expanded_path|

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: thecore_auth_commons
 version: !ruby/object:Gem::Version
-  version: 2.3.1
+  version: 2.3.6
 platform: ruby
 authors:
 - Gabriele Tassoni
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-03-04 00:00:00.000000000 Z
+date: 2021-06-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -16,20 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 6.0.2
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 6.0.2.1
+        version: '6.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 6.0.2
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 6.0.2.1
+        version: '6.0'
 - !ruby/object:Gem::Dependency
   name: devise
   requirement: !ruby/object:Gem::Requirement
@@ -72,6 +66,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: activerecord-nulldb-adapter
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
 - !ruby/object:Gem::Dependency
   name: sqlite3
   requirement: !ruby/object:Gem::Requirement
@@ -114,13 +122,14 @@ files:
 - config/routes.rb
 - db/migrate/20200306143408_create_users.rb
 - db/migrate/20200306151046_add_admin_field_to_user.rb
-- db/migrate/20200306151541_add_first_admin_user.rb
 - db/migrate/20200306152740_create_roles.rb
 - db/migrate/20200306152816_create_role_users.rb
 - db/migrate/20200306153125_add_lock_version_to_user.rb
 - db/migrate/20200306153136_add_lock_version_to_role.rb
 - db/migrate/20200516215346_add_locked_to_user.rb
 - db/migrate/20200518082821_create_permissions.rb
+- db/migrate/20210415154152_add_access_token_to_user.rb
+- db/seeds.rb
 - lib/abilities/thecore_auth_commons.rb
 - lib/tasks/thecore_auth_commons_tasks.rake
 - lib/thecore_auth_commons.rb
@@ -147,7 +156,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.0.3.1
 signing_key: 
 specification_version: 4
 summary: Common Auth methods and models to be used in thecore components.

data/db/migrate/20200306151541_add_first_admin_user.rb

@@ -1,60 +0,0 @@
-class AddFirstAdminUser < ActiveRecord::Migration[6.0]
-  class User < ApplicationRecord
-    # Include default devise modules. Others available are:
-    # :confirmable, :lockable, :timeoutable, :trackable and :omniauthable
-    devise :database_authenticatable, :trackable, :validatable
-    # TODO: If it works, these must be added to another gem one which deal 
-    # more with sessions
-    # devise :database_authenticatable
-    # devise :rememberable
-    # devise :trackable
-    # devise :validatable
-    # devise :timeoutable, timeout_in: 30.minutes 
-    # REFERENCES
-    has_many :role_users, dependent: :destroy, inverse_of: :user
-    has_many :roles, through: :role_users, inverse_of: :users
-    # VALIDATIONS
-    validates :email, uniqueness: { case_sensitive: false }, presence: true, format: { with: /\A([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})\Z/i }
-    validates :password, presence: true, on: :create
-    validates :password_confirmation, presence: true, on: :create
-    validate :check_password_and_confirmation_equal
-    validates_each :admin do |record, attr, value|
-      # Don't want admin == false if the current user is the only admin
-      record.errors.add(attr, I18n.t("validation.errors.cannot_unadmin_last_admin")) if record.admin_changed? && record.admin_was == true && User.where(admin: true).count == 1
-    end
-  
-    def display_name
-      email
-    end
-  
-    def has_role? role
-      roles.include? role
-    end
-  
-    protected
-  
-    def check_password_and_confirmation_equal
-      errors.add(:password, I18n.t("validation.errors.password_and_confirm_must_be_the_same")) unless password == password_confirmation
-    end
-  end
-
-  def up
-    email = "admin@example.com"
-    User.reset_column_information
-    u=User.find_or_initialize_by(email: email)
-    psswd = SecureRandom.hex(5)
-    u.password = psswd
-    u.password_confirmation = psswd
-    u.admin = true
-    u.save(validate: false)
-    puts "\nPlease find generated initial admin password in .passwords file."
-    File.open('.passwords', 'w') do |f|
-      f.write(psswd)
-    end
-  end
-
-  def down
-    email = "admin@example.com"
-    User.find_by(email: email).destroy
-  end
-end