tournament 3.0.0 → 3.0.1

data/History.txt

@@ -1,3 +1,8 @@
+== 3.0.1 / 2009-03-10
+* Fix bug with relative_url_root in pool initializer.
+* git housekeeping, add .gitignore
+* Configure bones to ignore more files during gem package
+
 == 3.0.0 / 2009-03-06
 * NCAA 2010 Tournament initial release.
 

data/Rakefile

@@ -20,12 +20,14 @@ Bones {
   email 'doug+rubyforge@dseifert.net'
   url 'http://www.dseifert.net/code/tournament'
   rubyforge.name 'tournament'
+  readme_file 'README.rdoc'
+  ignore_file '.gitignore'
   version Tournament::VERSION
   group_id = 5863
 
 #spec.opts << '--color'
 
-  exclude %w(tmp$ bak$ ~$ CVS \.svn ^pkg ^doc bin/fake bin/gui_v2.rb ^tags$)
+  exclude %w(tmp$ bak$ ~$ CVS \.svn \.git swp$ ^pkg ^doc bin/fake bin/gui_v2.rb ^tags$ ^webgui/log/.*\.log)
 
   rdoc.opts ["--line-numbers", "--force-update", "-W", "http://tournament.rubyforge.org/svn/trunk/%s"]
   rdoc.exclude [

data/lib/tournament.rb

@@ -7,7 +7,7 @@ unless defined? Tournament
 module Tournament
 
   # :stopdoc:
-  VERSION = '3.0.0'
+  VERSION = '3.0.1'
   LIBPATH = ::File.expand_path(::File.dirname(__FILE__)) + ::File::SEPARATOR
   PATH = ::File.dirname(LIBPATH) + ::File::SEPARATOR
   # :startdoc:

data/webgui/config/environments/development.rb

@@ -0,0 +1,29 @@
+# Settings specified here will take precedence over those in config/environment.rb
+
+# In the development environment your application's code is reloaded on
+# every request.  This slows down response time but is perfect for development
+# since you don't have to restart the webserver when you make code changes.
+config.cache_classes = false
+
+# Log error messages when you accidentally call methods on nil.
+config.whiny_nils = true
+
+# Show full error reports and disable caching
+config.action_controller.consider_all_requests_local = true
+config.action_view.debug_rjs                         = true
+config.action_controller.perform_caching             = false
+
+# Don't care if the mailer can't send
+config.action_mailer.raise_delivery_errors = true
+# Include your app's configuration here:
+ActionMailer::Base.smtp_settings = {
+  :address  => "smtp.comcast.net",
+  :port  => 25, 
+  :domain  => "comcast.net",
+  :user_name  => 'doug.seifert@comcast.net',
+  :password  => "ccSBBatl1",
+  :authentication  => :login
+} 
+
+ADMIN_EMAIL='doug+ncaa@dseifert.net'
+PRINCE_PATH='/home/doug/tools/prince/bin/prince'

data/webgui/config/initializers/pool.rb

@@ -16,6 +16,9 @@ ADMIN_EMAIL = 'admin' unless defined?(ADMIN_EMAIL)
 RELATIVE_URL_ROOT = nil
 
 if RELATIVE_URL_ROOT
+  # Need to do this two ways in Rails 2.3.5?
+  config = Rails::Configuration.new
+  config.action_controller.relative_url_root = RELATIVE_URL_ROOT
   ActionController::Base.relative_url_root = RELATIVE_URL_ROOT
 end
 

data/webgui/config/initializers/site_keys.rb

@@ -0,0 +1,38 @@
+
+# A Site key gives additional protection against a dictionary attack if your
+# DB is ever compromised.  With no site key, we store
+#   DB_password = hash(user_password, DB_user_salt)
+# If your database were to be compromised you'd be vulnerable to a dictionary
+# attack on all your stupid users' passwords.  With a site key, we store
+#   DB_password = hash(user_password, DB_user_salt, Code_site_key)
+# That means an attacker needs access to both your site's code *and* its
+# database to mount an "offline dictionary attack.":http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/web-authentication.html
+# 
+# It's probably of minor importance, but recommended by best practices: 'defense
+# in depth'.  Needless to say, if you upload this to github or the youtubes or
+# otherwise place it in public view you'll kinda defeat the point.  Your users'
+# passwords are still secure, and the world won't end, but defense_in_depth -= 1.
+# 
+# Please note: if you change this, all the passwords will be invalidated, so DO
+# keep it someplace secure.  Use the random value given or type in the lyrics to
+# your favorite Jay-Z song or something; any moderately long, unpredictable text.
+REST_AUTH_SITE_KEY         = '0a511dde9d611b9f530e799fb730793a2779906a'
+  
+# Repeated applications of the hash make brute force (even with a compromised
+# database and site key) harder, and scale with Moore's law.
+#
+#   bq. "To squeeze the most security out of a limited-entropy password or
+#   passphrase, we can use two techniques [salting and stretching]... that are
+#   so simple and obvious that they should be used in every password system.
+#   There is really no excuse not to use them." http://tinyurl.com/37lb73
+#   Practical Security (Ferguson & Scheier) p350
+# 
+# A modest 10 foldings (the default here) adds 3ms.  This makes brute forcing 10
+# times harder, while reducing an app that otherwise serves 100 reqs/s to 78 signin
+# reqs/s, an app that does 10reqs/s to 9.7 reqs/s
+# 
+# More:
+# * http://www.owasp.org/index.php/Hashing_Java
+# * "An Illustrated Guide to Cryptographic Hashes":http://www.unixwiz.net/techtips/iguide-crypto-hashes.html
+
+REST_AUTH_DIGEST_STRETCHES = 10

metadata

@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
   segments: 
   - 3
   - 0
-  - 0
-  version: 3.0.0
+  - 1
+  version: 3.0.1
 platform: ruby
 authors: 
 - Douglas A. Seifert
@@ -14,7 +14,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-03-06 00:00:00 -08:00
+date: 2010-03-10 00:00:00 -08:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -86,14 +86,13 @@ extensions: []
 
 extra_rdoc_files: 
 - History.txt
-- README.txt
+- README.rdoc
 - bin/benchmark_pool
 - bin/picker
 - bin/pool
 files: 
-- .bnsignore
 - History.txt
-- README.txt
+- README.rdoc
 - Rakefile
 - bin/benchmark_pool
 - bin/gui.rb
@@ -169,6 +168,7 @@ files:
 - webgui/config/boot.rb
 - webgui/config/database.yml
 - webgui/config/environment.rb
+- webgui/config/environments/development.rb
 - webgui/config/environments/production.rb
 - webgui/config/environments/test.rb
 - webgui/config/initializers/inflections.rb
@@ -176,6 +176,7 @@ files:
 - webgui/config/initializers/new_rails_defaults.rb
 - webgui/config/initializers/ordinal.rb
 - webgui/config/initializers/pool.rb
+- webgui/config/initializers/site_keys.rb
 - webgui/config/locales/en.yml
 - webgui/config/routes.rb
 - webgui/db/migrate/20090216015836_create_entries.rb
@@ -199,7 +200,6 @@ files:
 - webgui/db/migrate/20090301090511_create_regions.rb
 - webgui/db/migrate/20090316023841_change_illinois_short_name.rb
 - webgui/db/migrate/teams.txt
-- webgui/db/schema.rb
 - webgui/doc/README_FOR_APP
 - webgui/lib/authenticated_system.rb
 - webgui/lib/authenticated_test_helper.rb
@@ -286,7 +286,6 @@ files:
 - webgui/vendor/plugins/enumerations_mixin/lib/active_record/aggregations/has_enumerated.rb
 - webgui/vendor/plugins/enumerations_mixin/lib/active_record/virtual_enumerations.rb
 - webgui/vendor/plugins/enumerations_mixin/virtual_enumerations_sample.rb
-- webgui/vendor/plugins/restful_authentication/.gitignore
 - webgui/vendor/plugins/restful_authentication/CHANGELOG
 - webgui/vendor/plugins/restful_authentication/README.textile
 - webgui/vendor/plugins/restful_authentication/Rakefile
@@ -363,7 +362,7 @@ rdoc_options:
 - -W
 - http://tournament.rubyforge.org/svn/trunk/%s
 - --main
-- README.txt
+- README.rdoc
 require_paths: 
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement 

data/.bnsignore

@@ -1,10 +0,0 @@
-*.log
-.svn
-webgui/config/environments/development.rb
-webgui/config/initializers/site_keys.rb
-webgui/db/*.sql
-webgui/db/*.yml
-webgui/db/*.sqlite3
-.*.swp
-*.archive
-tasks/*

data/webgui/db/schema.rb

@@ -1,91 +0,0 @@
-# This file is auto-generated from the current state of the database. Instead of editing this file, 
-# please use the migrations feature of Active Record to incrementally modify your database, and
-# then regenerate this schema definition.
-#
-# Note that this schema.rb definition is the authoritative source for your database schema. If you need
-# to create the application database on another system, you should be using db:schema:load, not running
-# all the migrations from scratch. The latter is a flawed and unsustainable approach (the more migrations
-# you'll amass, the slower it'll run and the greater likelihood for issues).
-#
-# It's strongly recommended to check this file into your version control system.
-
-ActiveRecord::Schema.define(:version => 20090316023841) do
-
-  create_table "entries", :force => true do |t|
-    t.string   "name",       :limit => 64,                    :null => false
-    t.binary   "data"
-    t.datetime "created_at"
-    t.datetime "updated_at"
-    t.integer  "tie_break"
-    t.integer  "user_id",                  :default => 1,     :null => false
-    t.integer  "pool_id"
-    t.boolean  "completed",                :default => false, :null => false
-  end
-
-  add_index "entries", ["pool_id"], :name => "index_entries_on_pool_id"
-  add_index "entries", ["user_id"], :name => "index_entries_on_user_id"
-
-  create_table "pools", :force => true do |t|
-    t.string   "name",                          :null => false
-    t.binary   "data"
-    t.boolean  "started",    :default => false, :null => false
-    t.datetime "starts_at"
-    t.datetime "created_at"
-    t.datetime "updated_at"
-    t.integer  "user_id"
-    t.boolean  "active",     :default => false, :null => false
-  end
-
-  create_table "regions", :force => true do |t|
-    t.integer  "pool_id"
-    t.string   "name"
-    t.integer  "position"
-    t.datetime "created_at"
-    t.datetime "updated_at"
-  end
-
-  create_table "roles", :force => true do |t|
-    t.string   "name",       :limit => 32
-    t.datetime "created_at"
-    t.datetime "updated_at"
-    t.integer  "position",                 :default => 0, :null => false
-  end
-
-  create_table "roles_users", :id => false, :force => true do |t|
-    t.integer "role_id"
-    t.integer "user_id"
-  end
-
-  create_table "seedings", :force => true do |t|
-    t.integer  "pool_id"
-    t.integer  "team_id"
-    t.string   "region"
-    t.integer  "seed"
-    t.datetime "created_at"
-    t.datetime "updated_at"
-  end
-
-  create_table "teams", :force => true do |t|
-    t.string   "name"
-    t.string   "short_name"
-    t.datetime "created_at"
-    t.datetime "updated_at"
-  end
-
-  create_table "users", :force => true do |t|
-    t.string   "login",                     :limit => 40
-    t.string   "name",                      :limit => 100, :default => ""
-    t.string   "email",                     :limit => 100
-    t.string   "crypted_password",          :limit => 40
-    t.string   "salt",                      :limit => 40
-    t.datetime "created_at"
-    t.datetime "updated_at"
-    t.string   "remember_token",            :limit => 40
-    t.datetime "remember_token_expires_at"
-    t.string   "activation_code",           :limit => 40
-    t.datetime "activated_at"
-  end
-
-  add_index "users", ["login"], :name => "index_users_on_login", :unique => true
-
-end

data/webgui/vendor/plugins/restful_authentication/.gitignore

@@ -1,21 +0,0 @@
-pkg
-Icon?
-.DS_Store
-TAGS
-REVISION
-*.tmproj
-.settings
-.project
-.tasks-cache
-.svn
-/log/*.log
-/tmp/**/*
-/config/database.yml
-actionmailer_config_DONOTVERSION.rb
-*DONOTVERSION*
-/vendor/src/**/*
-/db/*.sqlite*
-/public/ac/*
-/coverage
-/doc/app
-/doc/plugins