tournament 3.0.0 → 3.0.1
Sign up to get free protection for your applications and to get access to all the features.
- data/History.txt +5 -0
- data/{README.txt → README.rdoc} +0 -0
- data/Rakefile +3 -1
- data/lib/tournament.rb +1 -1
- data/webgui/config/environments/development.rb +29 -0
- data/webgui/config/initializers/pool.rb +3 -0
- data/webgui/config/initializers/site_keys.rb +38 -0
- metadata +8 -9
- data/.bnsignore +0 -10
- data/webgui/db/schema.rb +0 -91
- data/webgui/vendor/plugins/restful_authentication/.gitignore +0 -21
data/History.txt
CHANGED
data/{README.txt → README.rdoc}
RENAMED
File without changes
|
data/Rakefile
CHANGED
@@ -20,12 +20,14 @@ Bones {
|
|
20
20
|
email 'doug+rubyforge@dseifert.net'
|
21
21
|
url 'http://www.dseifert.net/code/tournament'
|
22
22
|
rubyforge.name 'tournament'
|
23
|
+
readme_file 'README.rdoc'
|
24
|
+
ignore_file '.gitignore'
|
23
25
|
version Tournament::VERSION
|
24
26
|
group_id = 5863
|
25
27
|
|
26
28
|
#spec.opts << '--color'
|
27
29
|
|
28
|
-
exclude %w(tmp$ bak$ ~$ CVS \.svn ^pkg ^doc bin/fake bin/gui_v2.rb ^tags$)
|
30
|
+
exclude %w(tmp$ bak$ ~$ CVS \.svn \.git swp$ ^pkg ^doc bin/fake bin/gui_v2.rb ^tags$ ^webgui/log/.*\.log)
|
29
31
|
|
30
32
|
rdoc.opts ["--line-numbers", "--force-update", "-W", "http://tournament.rubyforge.org/svn/trunk/%s"]
|
31
33
|
rdoc.exclude [
|
data/lib/tournament.rb
CHANGED
@@ -0,0 +1,29 @@
|
|
1
|
+
# Settings specified here will take precedence over those in config/environment.rb
|
2
|
+
|
3
|
+
# In the development environment your application's code is reloaded on
|
4
|
+
# every request. This slows down response time but is perfect for development
|
5
|
+
# since you don't have to restart the webserver when you make code changes.
|
6
|
+
config.cache_classes = false
|
7
|
+
|
8
|
+
# Log error messages when you accidentally call methods on nil.
|
9
|
+
config.whiny_nils = true
|
10
|
+
|
11
|
+
# Show full error reports and disable caching
|
12
|
+
config.action_controller.consider_all_requests_local = true
|
13
|
+
config.action_view.debug_rjs = true
|
14
|
+
config.action_controller.perform_caching = false
|
15
|
+
|
16
|
+
# Don't care if the mailer can't send
|
17
|
+
config.action_mailer.raise_delivery_errors = true
|
18
|
+
# Include your app's configuration here:
|
19
|
+
ActionMailer::Base.smtp_settings = {
|
20
|
+
:address => "smtp.comcast.net",
|
21
|
+
:port => 25,
|
22
|
+
:domain => "comcast.net",
|
23
|
+
:user_name => 'doug.seifert@comcast.net',
|
24
|
+
:password => "ccSBBatl1",
|
25
|
+
:authentication => :login
|
26
|
+
}
|
27
|
+
|
28
|
+
ADMIN_EMAIL='doug+ncaa@dseifert.net'
|
29
|
+
PRINCE_PATH='/home/doug/tools/prince/bin/prince'
|
@@ -16,6 +16,9 @@ ADMIN_EMAIL = 'admin' unless defined?(ADMIN_EMAIL)
|
|
16
16
|
RELATIVE_URL_ROOT = nil
|
17
17
|
|
18
18
|
if RELATIVE_URL_ROOT
|
19
|
+
# Need to do this two ways in Rails 2.3.5?
|
20
|
+
config = Rails::Configuration.new
|
21
|
+
config.action_controller.relative_url_root = RELATIVE_URL_ROOT
|
19
22
|
ActionController::Base.relative_url_root = RELATIVE_URL_ROOT
|
20
23
|
end
|
21
24
|
|
@@ -0,0 +1,38 @@
|
|
1
|
+
|
2
|
+
# A Site key gives additional protection against a dictionary attack if your
|
3
|
+
# DB is ever compromised. With no site key, we store
|
4
|
+
# DB_password = hash(user_password, DB_user_salt)
|
5
|
+
# If your database were to be compromised you'd be vulnerable to a dictionary
|
6
|
+
# attack on all your stupid users' passwords. With a site key, we store
|
7
|
+
# DB_password = hash(user_password, DB_user_salt, Code_site_key)
|
8
|
+
# That means an attacker needs access to both your site's code *and* its
|
9
|
+
# database to mount an "offline dictionary attack.":http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/web-authentication.html
|
10
|
+
#
|
11
|
+
# It's probably of minor importance, but recommended by best practices: 'defense
|
12
|
+
# in depth'. Needless to say, if you upload this to github or the youtubes or
|
13
|
+
# otherwise place it in public view you'll kinda defeat the point. Your users'
|
14
|
+
# passwords are still secure, and the world won't end, but defense_in_depth -= 1.
|
15
|
+
#
|
16
|
+
# Please note: if you change this, all the passwords will be invalidated, so DO
|
17
|
+
# keep it someplace secure. Use the random value given or type in the lyrics to
|
18
|
+
# your favorite Jay-Z song or something; any moderately long, unpredictable text.
|
19
|
+
REST_AUTH_SITE_KEY = '0a511dde9d611b9f530e799fb730793a2779906a'
|
20
|
+
|
21
|
+
# Repeated applications of the hash make brute force (even with a compromised
|
22
|
+
# database and site key) harder, and scale with Moore's law.
|
23
|
+
#
|
24
|
+
# bq. "To squeeze the most security out of a limited-entropy password or
|
25
|
+
# passphrase, we can use two techniques [salting and stretching]... that are
|
26
|
+
# so simple and obvious that they should be used in every password system.
|
27
|
+
# There is really no excuse not to use them." http://tinyurl.com/37lb73
|
28
|
+
# Practical Security (Ferguson & Scheier) p350
|
29
|
+
#
|
30
|
+
# A modest 10 foldings (the default here) adds 3ms. This makes brute forcing 10
|
31
|
+
# times harder, while reducing an app that otherwise serves 100 reqs/s to 78 signin
|
32
|
+
# reqs/s, an app that does 10reqs/s to 9.7 reqs/s
|
33
|
+
#
|
34
|
+
# More:
|
35
|
+
# * http://www.owasp.org/index.php/Hashing_Java
|
36
|
+
# * "An Illustrated Guide to Cryptographic Hashes":http://www.unixwiz.net/techtips/iguide-crypto-hashes.html
|
37
|
+
|
38
|
+
REST_AUTH_DIGEST_STRETCHES = 10
|
metadata
CHANGED
@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
|
|
5
5
|
segments:
|
6
6
|
- 3
|
7
7
|
- 0
|
8
|
-
-
|
9
|
-
version: 3.0.
|
8
|
+
- 1
|
9
|
+
version: 3.0.1
|
10
10
|
platform: ruby
|
11
11
|
authors:
|
12
12
|
- Douglas A. Seifert
|
@@ -14,7 +14,7 @@ autorequire:
|
|
14
14
|
bindir: bin
|
15
15
|
cert_chain: []
|
16
16
|
|
17
|
-
date: 2010-03-
|
17
|
+
date: 2010-03-10 00:00:00 -08:00
|
18
18
|
default_executable:
|
19
19
|
dependencies:
|
20
20
|
- !ruby/object:Gem::Dependency
|
@@ -86,14 +86,13 @@ extensions: []
|
|
86
86
|
|
87
87
|
extra_rdoc_files:
|
88
88
|
- History.txt
|
89
|
-
- README.
|
89
|
+
- README.rdoc
|
90
90
|
- bin/benchmark_pool
|
91
91
|
- bin/picker
|
92
92
|
- bin/pool
|
93
93
|
files:
|
94
|
-
- .bnsignore
|
95
94
|
- History.txt
|
96
|
-
- README.
|
95
|
+
- README.rdoc
|
97
96
|
- Rakefile
|
98
97
|
- bin/benchmark_pool
|
99
98
|
- bin/gui.rb
|
@@ -169,6 +168,7 @@ files:
|
|
169
168
|
- webgui/config/boot.rb
|
170
169
|
- webgui/config/database.yml
|
171
170
|
- webgui/config/environment.rb
|
171
|
+
- webgui/config/environments/development.rb
|
172
172
|
- webgui/config/environments/production.rb
|
173
173
|
- webgui/config/environments/test.rb
|
174
174
|
- webgui/config/initializers/inflections.rb
|
@@ -176,6 +176,7 @@ files:
|
|
176
176
|
- webgui/config/initializers/new_rails_defaults.rb
|
177
177
|
- webgui/config/initializers/ordinal.rb
|
178
178
|
- webgui/config/initializers/pool.rb
|
179
|
+
- webgui/config/initializers/site_keys.rb
|
179
180
|
- webgui/config/locales/en.yml
|
180
181
|
- webgui/config/routes.rb
|
181
182
|
- webgui/db/migrate/20090216015836_create_entries.rb
|
@@ -199,7 +200,6 @@ files:
|
|
199
200
|
- webgui/db/migrate/20090301090511_create_regions.rb
|
200
201
|
- webgui/db/migrate/20090316023841_change_illinois_short_name.rb
|
201
202
|
- webgui/db/migrate/teams.txt
|
202
|
-
- webgui/db/schema.rb
|
203
203
|
- webgui/doc/README_FOR_APP
|
204
204
|
- webgui/lib/authenticated_system.rb
|
205
205
|
- webgui/lib/authenticated_test_helper.rb
|
@@ -286,7 +286,6 @@ files:
|
|
286
286
|
- webgui/vendor/plugins/enumerations_mixin/lib/active_record/aggregations/has_enumerated.rb
|
287
287
|
- webgui/vendor/plugins/enumerations_mixin/lib/active_record/virtual_enumerations.rb
|
288
288
|
- webgui/vendor/plugins/enumerations_mixin/virtual_enumerations_sample.rb
|
289
|
-
- webgui/vendor/plugins/restful_authentication/.gitignore
|
290
289
|
- webgui/vendor/plugins/restful_authentication/CHANGELOG
|
291
290
|
- webgui/vendor/plugins/restful_authentication/README.textile
|
292
291
|
- webgui/vendor/plugins/restful_authentication/Rakefile
|
@@ -363,7 +362,7 @@ rdoc_options:
|
|
363
362
|
- -W
|
364
363
|
- http://tournament.rubyforge.org/svn/trunk/%s
|
365
364
|
- --main
|
366
|
-
- README.
|
365
|
+
- README.rdoc
|
367
366
|
require_paths:
|
368
367
|
- lib
|
369
368
|
required_ruby_version: !ruby/object:Gem::Requirement
|
data/.bnsignore
DELETED
data/webgui/db/schema.rb
DELETED
@@ -1,91 +0,0 @@
|
|
1
|
-
# This file is auto-generated from the current state of the database. Instead of editing this file,
|
2
|
-
# please use the migrations feature of Active Record to incrementally modify your database, and
|
3
|
-
# then regenerate this schema definition.
|
4
|
-
#
|
5
|
-
# Note that this schema.rb definition is the authoritative source for your database schema. If you need
|
6
|
-
# to create the application database on another system, you should be using db:schema:load, not running
|
7
|
-
# all the migrations from scratch. The latter is a flawed and unsustainable approach (the more migrations
|
8
|
-
# you'll amass, the slower it'll run and the greater likelihood for issues).
|
9
|
-
#
|
10
|
-
# It's strongly recommended to check this file into your version control system.
|
11
|
-
|
12
|
-
ActiveRecord::Schema.define(:version => 20090316023841) do
|
13
|
-
|
14
|
-
create_table "entries", :force => true do |t|
|
15
|
-
t.string "name", :limit => 64, :null => false
|
16
|
-
t.binary "data"
|
17
|
-
t.datetime "created_at"
|
18
|
-
t.datetime "updated_at"
|
19
|
-
t.integer "tie_break"
|
20
|
-
t.integer "user_id", :default => 1, :null => false
|
21
|
-
t.integer "pool_id"
|
22
|
-
t.boolean "completed", :default => false, :null => false
|
23
|
-
end
|
24
|
-
|
25
|
-
add_index "entries", ["pool_id"], :name => "index_entries_on_pool_id"
|
26
|
-
add_index "entries", ["user_id"], :name => "index_entries_on_user_id"
|
27
|
-
|
28
|
-
create_table "pools", :force => true do |t|
|
29
|
-
t.string "name", :null => false
|
30
|
-
t.binary "data"
|
31
|
-
t.boolean "started", :default => false, :null => false
|
32
|
-
t.datetime "starts_at"
|
33
|
-
t.datetime "created_at"
|
34
|
-
t.datetime "updated_at"
|
35
|
-
t.integer "user_id"
|
36
|
-
t.boolean "active", :default => false, :null => false
|
37
|
-
end
|
38
|
-
|
39
|
-
create_table "regions", :force => true do |t|
|
40
|
-
t.integer "pool_id"
|
41
|
-
t.string "name"
|
42
|
-
t.integer "position"
|
43
|
-
t.datetime "created_at"
|
44
|
-
t.datetime "updated_at"
|
45
|
-
end
|
46
|
-
|
47
|
-
create_table "roles", :force => true do |t|
|
48
|
-
t.string "name", :limit => 32
|
49
|
-
t.datetime "created_at"
|
50
|
-
t.datetime "updated_at"
|
51
|
-
t.integer "position", :default => 0, :null => false
|
52
|
-
end
|
53
|
-
|
54
|
-
create_table "roles_users", :id => false, :force => true do |t|
|
55
|
-
t.integer "role_id"
|
56
|
-
t.integer "user_id"
|
57
|
-
end
|
58
|
-
|
59
|
-
create_table "seedings", :force => true do |t|
|
60
|
-
t.integer "pool_id"
|
61
|
-
t.integer "team_id"
|
62
|
-
t.string "region"
|
63
|
-
t.integer "seed"
|
64
|
-
t.datetime "created_at"
|
65
|
-
t.datetime "updated_at"
|
66
|
-
end
|
67
|
-
|
68
|
-
create_table "teams", :force => true do |t|
|
69
|
-
t.string "name"
|
70
|
-
t.string "short_name"
|
71
|
-
t.datetime "created_at"
|
72
|
-
t.datetime "updated_at"
|
73
|
-
end
|
74
|
-
|
75
|
-
create_table "users", :force => true do |t|
|
76
|
-
t.string "login", :limit => 40
|
77
|
-
t.string "name", :limit => 100, :default => ""
|
78
|
-
t.string "email", :limit => 100
|
79
|
-
t.string "crypted_password", :limit => 40
|
80
|
-
t.string "salt", :limit => 40
|
81
|
-
t.datetime "created_at"
|
82
|
-
t.datetime "updated_at"
|
83
|
-
t.string "remember_token", :limit => 40
|
84
|
-
t.datetime "remember_token_expires_at"
|
85
|
-
t.string "activation_code", :limit => 40
|
86
|
-
t.datetime "activated_at"
|
87
|
-
end
|
88
|
-
|
89
|
-
add_index "users", ["login"], :name => "index_users_on_login", :unique => true
|
90
|
-
|
91
|
-
end
|
@@ -1,21 +0,0 @@
|
|
1
|
-
pkg
|
2
|
-
Icon?
|
3
|
-
.DS_Store
|
4
|
-
TAGS
|
5
|
-
REVISION
|
6
|
-
*.tmproj
|
7
|
-
.settings
|
8
|
-
.project
|
9
|
-
.tasks-cache
|
10
|
-
.svn
|
11
|
-
/log/*.log
|
12
|
-
/tmp/**/*
|
13
|
-
/config/database.yml
|
14
|
-
actionmailer_config_DONOTVERSION.rb
|
15
|
-
*DONOTVERSION*
|
16
|
-
/vendor/src/**/*
|
17
|
-
/db/*.sqlite*
|
18
|
-
/public/ac/*
|
19
|
-
/coverage
|
20
|
-
/doc/app
|
21
|
-
/doc/plugins
|