ucb_rails_security 2.0.7

data/generators/ucb_rails_security/templates/views/ucb_security/ldap_search/index.html.erb

@@ -0,0 +1,62 @@
+<h1>Ldap Search</h1>
+
+<br/>
+
+<div class="ucb_rails_security_form">
+    <% form_tag(ucb_security_ldap_search_path, :method => :get) do %>
+      <p>
+        <%= label('search_term', 'Search Term') %>
+        <%= select_tag('search_term', options_for_select(@select_options, @search_term)) %>
+      </p>
+
+      <p>
+        <%= label('search_value', 'Search Value') %>
+        <%= text_field_tag('search_value', params[:search_value], :size => 30) %>
+      </p>
+   
+      <p>
+        <div class="button_widget">
+          <%= submit_tag("Search") %> | 
+          <%= link_to('Clear', ucb_security_ldap_search_path()) %>
+        </div>
+      </p>
+    <% end %>
+</div>
+
+<br/>
+
+<% if @search_initiated && @ldap_people.empty? %>
+
+  <p class="empty_search_results">Your search did not match any people in the directory.</p>
+
+<% elsif !@ldap_people.empty? %>
+
+  <h2>LDAP Search Results</h2>
+  <p>Click on the person's LDAP UID to populate a form with their LDAP data</p>
+
+   <table class='horizontal max_width'>
+      <tr>
+         <th width="1%">LDAP UID</th>
+         <th>First</th>
+         <th>Last</th>
+         <th>Dept Code</th>
+         <th>Department</th>
+         <th>Phone</th>
+         <th>Email</th>
+      </tr>
+      <tbody class="highlight">
+      <% @ldap_people.each do |p| %>
+         <tr>
+           <td><%= link_to(p.uid, new_ucb_security_user_path(:ldap_uid => p.uid, :givenname => params[:givenname], :sn => params[:sn])) %></td>
+           <td><%=h p.first_name %></td>
+           <td><%=h p.last_name %></td>
+           <td><%=h p.dept_code %></td>
+           <td><%=h p.dept_name %></td>
+           <td><%=h p.phone %></td>
+           <td><%=h p.email %></td>
+        </tr>
+      <% end %>
+      </tbody>
+   </table>
+
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/role_users/_new.html.erb

@@ -0,0 +1,11 @@
+<% if @unassociated_users.empty? %>
+  <p>There are no unassociated users</p>
+<% else %>
+  <% form_tag(role_users_path(:role_id => @role), :method => :put) do %>
+    <%= select_tag('role[user_ids][]', options_for_select(@unassociated_users), :multiple => 'true', :size => 13) %>
+    <% @role_users .each do |ru| %>
+      <%= hidden_field_tag('role[user_ids][]', ru.id ) %>
+    <% end %>
+    <%= submit_tag('Add') %>
+  <% end %>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/role_users/edit.html.erb

@@ -0,0 +1,37 @@
+<h1>Role: <i><%= h @role.name.capitalize %></i></h1>
+
+
+<% form_for([:ucb_security, @user, @role], :url => ucb_security_role_users_path(@role), :html => {:method => :put}) do %>
+  <table class="doubleSelectList">
+    <tr>
+      <td width="40%">
+        <label>Users without Role: <i><%= @role.name.capitalize %></i></label><br/>
+        <%= select_tag("", options_for_select(@unassociated_users), 
+                       :id => 'users_wo_role', :multiple => true, :size => 10) %>
+      </td>
+      <td width="20%" class="buttons">
+        <label>Move Selected</label><br/>
+        <%= button_to_function(">", "DoubleSelectList.moveSelected('users_wo_role', 'users_w_role')") %><br/>
+        <%= button_to_function("<", "DoubleSelectList.moveSelected('users_w_role', 'users_wo_role')") %><br/>
+        <br/>
+  
+        <label>Move All</label><br/>
+        <%= button_to_function(">>", "DoubleSelectList.moveAll('users_wo_role', 'users_w_role')") %><br/>
+        <%= button_to_function("<<", "DoubleSelectList.moveAll('users_w_role', 'users_wo_role')") %><br/>
+      </td>
+      <td width="40%">
+        <label>Users with Role: <i><%= @role.name.capitalize %></i></label><br/>
+        <%= select_tag("user_ids[]", options_for_select(@associated_users), 
+                       :id => 'users_w_role', :multiple => true, :size => 10) %>
+      </td>
+    </tr>
+  </table>
+  
+  <div class="button_widget">
+    <%= submit_tag("Update", :id => 'update_button') %> | <%= link_to("Done", ucb_security_role_path(@role)) %>
+  </div>
+<% end %>
+
+<%= javascript_tag("DoubleSelectList.initSubmitCallback('update_button', 'users_wo_role', 'users_w_role')") %>
+
+

data/generators/ucb_rails_security/templates/views/ucb_security/roles/_users.html.erb

@@ -0,0 +1,14 @@
+
+<% if @role.users.size > 0 %>
+<ul>
+<% @role.users.each do |user| %>
+  <li><%= link_to(user.display_name, ucb_security_user_url(user), :id => "user_#{user.id}") %></li>
+<% end %>
+</ul>
+<% else %>
+  <p>No uses are associated with this role</p>
+<% end %>
+
+<div class="button_widget">
+    <%= button_to("Edit", edit_ucb_security_role_users_url(@role), :method => :get) %>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/edit.html.erb

@@ -0,0 +1,19 @@
+<h1>Edit Role</h1>
+
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>Role Details</legend>
+  <% form_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+
+    <%= f.text_field('Name:', :name, :required => true) %>
+    <%= f.text_area('Description:', :description, {}, {:rows => 6}) %>  
+
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Update") %> | 
+        <%= link_to("Done", ucb_security_role_path(@role)) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/index.html.erb

@@ -0,0 +1,34 @@
+<h1>Listing Roles</h1>
+
+<div class="new_record_widget">
+  <%= link_to('New Role', new_ucb_security_role_path()) %>
+</div>
+
+
+<table class="horizontal mid_width">
+  <tr>
+    <th colspan="3" width="1%"></th>
+    <th>Name</th>
+    <th>Description</th>
+  </tr>
+
+<% for role in @roles %>
+  <tbody class="highlight">
+  <tr>
+    <td><%= link_to('View', ucb_security_role_path(role)) %></td>
+    <td><%= link_to('Edit', edit_ucb_security_role_path(role)) %></td>
+    <td><%= link_to('Delete', ucb_security_role_path(role), :confirm => 'Are you sure?', :method => :delete) %></td>
+    <td><%=h role.name %></td>
+    <td><%=h role.description %></td>
+  </tr>
+  </tbody>
+<% end %>
+</table>
+
+<br />
+
+<% if @roles.size > 15 %>
+    <div class="new_record_widget">
+      <%= link_to('New Role', new_ucb_security_role_path()) %>
+    </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/new.html.erb

@@ -0,0 +1,19 @@
+<h1>New Role</h1>
+
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>Role Details</legend>
+  <% form_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+
+    <%= f.text_field('Name:', :name, :required => true) %>
+    <%= f.text_area('Description:', :description, {}, {:rows => 6}) %>  
+
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Create") %> | 
+        <%= link_to("Back", ucb_security_roles_path) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/show.html.erb

@@ -0,0 +1,27 @@
+<h1>View Role</h1>
+
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>Role Details</legend>
+    <% fields_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+      <%= f.text_field('Name:', :name, {:required => true}, {:readonly => true}) %>
+      <%= f.text_area('Description:', :description, {}, {:readonly => true, :rows => 6}) %>  
+  
+      <p>
+        <div class="button_widget">
+          <%= button_to("Edit", edit_ucb_security_role_path(@role), :method => :get) %> | 
+          <%= link_to("List Roles", ucb_security_roles_path()) %>
+        </div>
+      </p>
+    <% end %>
+  </fieldset>
+</div>
+
+<br/>
+
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>Role Users</legend>
+    <%= render(:partial => 'users') %>
+  </fielset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/user_roles/edit.html.erb

@@ -0,0 +1,17 @@
+<h1>Roles for: <%= h @user.full_name %></h1>
+
+<% form_for([:ucb_security, @user], :url => ucb_security_user_roles_path(@user), :html => {:method => :put}) do %>
+  <ul style="display: inline; list-style-type: none;">
+  <% @roles.each do |role| %>
+      <li><%= check_box_tag('user[role_ids][]', role.id, @user.roles.include?(role)) %>
+      <%= role.name %></li>
+  <% end %>
+  </ul>
+
+  <br/><br/>
+
+  <div class="record_widget">
+    <%= submit_tag("Update") %> |
+    <%= link_to("Done", ucb_security_user_path(@user)) %>
+  </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/users/edit.html.erb

@@ -0,0 +1,23 @@
+<h1>Edit user</h1>
+
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Details</legend>
+  <% form_for([:ucb_security, @user], :builder => UcbSecurity::Builder) do |f| %>
+
+    <%= f.text_field('LDAP Uid:', :ldap_uid, :required => true) %>
+    <%= f.text_field('First Name:', :first_name, :required => true) %>  
+    <%= f.text_field('Last Name:', :last_name, :required => true) %>
+    <%= f.text_field('Email:', :email) %>
+    <%= f.text_field('Phone:', :phone) %>
+    <%= f.text_field('Department:', :department) %>
+
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Update") %> | 
+        <%= link_to("Done", ucb_security_user_path(@user)) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/users/index.html.erb

@@ -0,0 +1,43 @@
+<h1>Listing Users</h1>
+
+
+<div class="new_record_widget">
+  <%= link_to('New User', new_ucb_security_user_path()) %>
+</div>
+
+
+<table class="horizontal max_width">
+  <tr>
+    <th colspan="3" width="1%"></th>
+    <th>Ldap uid</th>
+    <th>First name</th>
+    <th>Last name</th>
+    <th>Email</th>
+    <th>Phone</th>
+    <th>Department</th>
+  </tr>
+
+<% for user in @users %>
+  <tbody class="highlight">
+  <tr>
+    <td><%= link_to('View', ucb_security_user_path(user)) %></td>
+    <td><%= link_to('Edit', edit_ucb_security_user_path(user)) %></td>
+    <td><%= link_to('Delete', ucb_security_user_path(user), :confirm => 'Are you sure?', :method => :delete) %></td>
+    <td><%=h user.ldap_uid %></td>
+    <td><%=h user.first_name %></td>
+    <td><%=h user.last_name %></td>
+    <td><%=h user.email %></td>
+    <td><%=h user.phone %></td>
+    <td><%=h user.department %></td>
+  </tr>
+  </tbody>
+<% end %>
+</table>
+
+<br />
+
+<% if @users.size > 15 %>
+    <div class="new_record_widget">
+      <%= link_to('New User', new_ucb_security_user_path()) %>
+    </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/users/new.html.erb

@@ -0,0 +1,29 @@
+<h1>New User</h1>
+
+<p>
+  <%= link_to("Search Ldap for New User", ucb_security_ldap_search_url()) %>
+</p>
+
+
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>User Details</legend>
+    <% form_for([:ucb_security, @user], :builder => UcbSecurity::Builder) do |f| %>
+  
+      <%= f.text_field('LDAP Uid:', :ldap_uid, :required => true) %>
+      <%= f.text_field('First Name:', :first_name, :required => true) %>  
+      <%= f.text_field('Last Name:', :last_name, :required => true) %>
+      <%= f.text_field('Email:', :email) %>
+      <%= f.text_field('Phone:', :phone) %>
+      <%= f.text_field('Department:', :department) %>
+  
+      <p>
+        <div class="button_widget">
+          <%= f.submit("Create") %> | 
+          <%= link_to("Back", ucb_security_users_path) %>
+        </div>
+      </p>
+    <% end %>
+  </fieldset>
+</div>
+  

data/generators/ucb_rails_security/templates/views/ucb_security/users/show.html.erb

@@ -0,0 +1,43 @@
+<h1>View User</h1>
+
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Details</legend>
+  <% fields_for(@user, :builder => UcbSecurity::Builder) do |f| %>
+    <%= f.text_field('LDAP Uid:', :ldap_uid, {:required => true}, {:readonly => true}) %>
+    <%= f.text_field('First Name:', :first_name, {:required => true}, {:readonly => true}) %>  
+    <%= f.text_field('Last Name:', :last_name, {:required => true}, {:readonly => true}) %>
+    <%= f.text_field('Email:', :email, {}, {:readonly => true}) %>
+    <%= f.text_field('Phone:', :phone, {}, {:readonly => true}) %>
+    <%= f.text_field('Department:', :department, {}, {:readonly => true}) %>
+
+    <p>
+      <div class="button_widget">
+        <%= button_to("Edit", edit_ucb_security_user_path(@user), :method => :get) %> | 
+        <%= link_to("List Users", ucb_security_users_path()) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>
+
+<br/>
+
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Roles</legend>
+    <% if @user.roles.empty? %>
+      <p>This user has no roles</p>
+    <% else %>
+    <ul>
+      <% @user.roles.each do |r| %>
+        <li><%= link_to(r.name, ucb_security_role_path(r)) %></li>
+      <% end %>
+    </ul>
+  <% end %>
+
+  <div class="button_widget">
+    <%= button_to("Edit", edit_ucb_security_user_roles_path(@user), :method => :get) %>
+  </div>
+</fieldset>
+</div>

data/generators/ucb_rails_security/ucb_rails_security_generator.rb

@@ -0,0 +1,191 @@
+class UcbRailsSecurityGenerator < Rails::Generator::Base
+  NAMESPACE = 'ucb_security'
+  TARGET_NAMESPACE = 'ucb_security'
+  
+  def initialize(runtime_args, runtime_options = {})
+    super
+  end
+
+  def manifest
+    record do |m|
+      template_dir = File.join(File.expand_path(File.dirname(__FILE__)), "templates")
+      
+      ###############
+      # Models
+      #
+      Dir["#{template_dir}/models/*"].each do |name|
+        name = File.basename(name)
+        m.file "models/#{name}", "app/models/#{name}"
+      end
+      #####
+      
+      
+      ###############
+      # Controllers
+      #
+      m.directory "app/controllers/#{TARGET_NAMESPACE}/"
+      Dir["#{template_dir}/controllers/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "controllers/#{NAMESPACE}/#{name}", "app/controllers/#{TARGET_NAMESPACE}/#{name}"
+      end
+      
+      # Helpers
+      m.directory "app/helpers/#{TARGET_NAMESPACE}"
+      Dir["#{template_dir}/helpers/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "helpers/#{NAMESPACE}/#{name}", "app/helpers/#{TARGET_NAMESPACE}/#{name}"
+      end
+      #####
+      
+      
+      ################
+      # Views
+      #
+      m.directory "app/views/#{TARGET_NAMESPACE}/"
+      m.directory "app/views/#{TARGET_NAMESPACE}/roles/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/roles/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/roles/#{name}", "app/views/#{TARGET_NAMESPACE}/roles/#{name}"
+      end
+      
+      m.directory "app/views/#{TARGET_NAMESPACE}/users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/users/#{name}", "app/views/#{TARGET_NAMESPACE}/users/#{name}"
+      end
+      
+      m.directory "app/views/#{TARGET_NAMESPACE}/user_roles/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/user_roles/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/user_roles/#{name}", "app/views/#{TARGET_NAMESPACE}/user_roles/#{name}"
+      end
+      
+      m.directory "app/views/#{TARGET_NAMESPACE}/role_users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/role_users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/role_users/#{name}", "app/views/#{TARGET_NAMESPACE}/role_users/#{name}"
+      end
+      
+      m.directory "app/views/#{TARGET_NAMESPACE}/role_users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/role_users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/role_users/#{name}", "app/views/#{TARGET_NAMESPACE}/role_users/#{name}"
+      end
+      
+      m.directory "app/views/#{TARGET_NAMESPACE}/ldap_search/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/ldap_search/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/ldap_search/#{name}", "app/views/#{TARGET_NAMESPACE}/ldap_search/#{name}"
+      end
+      #####
+      
+      
+      ###############
+      # Layouts
+      #
+      m.directory "app/views/layouts/#{TARGET_NAMESPACE}"
+      Dir["#{template_dir}/views/layouts/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/layouts/#{NAMESPACE}/#{name}", "app/views/layouts/#{TARGET_NAMESPACE}/#{name}"
+      end
+      #####
+      
+      
+      ###############
+      # Stylesheets
+      #
+      m.file "stylesheets/#{NAMESPACE}.css", "public/stylesheets/#{TARGET_NAMESPACE}.css"
+      #####
+      
+      
+      ###############
+      # Javascripts
+      #
+      m.file "javascripts/ucb_security.js", "public/javascripts/ucb_security.js"
+      #####
+      
+
+      ###############
+      # Initializers
+      #
+      m.directory "config"
+      m.directory "config/initializers"
+      m.file "initializers/ucb_security_config.rb", "config/initializers/ucb_security_config.rb"
+      #####
+
+      
+      ###############
+      # Migrations
+      #
+      m.directory "db/migrate"
+      m.file "db/migrate/xxx_create_ucb_rails_security_tables.rb", "db/migrate/#{next_migration}_create_ucb_rails_security_tables.rb"
+      #####
+      
+      
+      ###############
+      # Routes
+      #
+      write_named_routes_to_route_file
+      #####
+    end
+  end
+  
+  private
+    def pad_zeros(str, num_of_zeros)
+      if str.length == num_of_zeros
+        return str
+      else
+        pad_zeros("0".concat(str), num_of_zeros)
+      end
+    end
+    
+    def latest_migration
+      num = 0
+      unless migrations.empty?
+        migrations.last =~ /^([0-9]+)_/
+        num = $1
+      end
+      raise(Exception, "Unable to determine latest migration: #{migrations.last}") unless num
+      num.to_i
+    end
+    
+    def next_migration
+      pad_zeros((latest_migration + 1).to_s, 3)
+    end
+    
+    def migrations
+      Dir["#{RAILS_ROOT}/db/migrate/*"].map { |f| File.basename(f) }
+    end
+  
+    def write_named_routes_to_route_file
+      ucb_security_routes = <<-ROUTE
+      map.ucb_security '/ucb_security', :controller => 'ucb_security/users'
+      map.logout '/logout', :controller => 'ucb_security/base', :action => 'logout'
+      map.not_authorized '/not_authorized', :controller => 'ucb_security/base', :action => 'not_authorized'
+
+      map.namespace(:ucb_security) do |ucb_security|
+        ucb_security.resources :roles do |roles|
+          roles.resource :users, :controller => 'role_users'
+        end
+
+        ucb_security.resources :users do |users|
+          users.resource :roles, :controller => 'user_roles'
+        end
+      end
+
+      map.ucb_security_ldap_search '/ucb_security/ldap_search', 
+        :controller => 'ucb_security/ldap_search', :action => 'index'
+      ROUTE
+      
+      sentinel = 'ActionController::Routing::Routes.draw do |map|'
+      gsub_file 'config/routes.rb', /(#{Regexp.escape(sentinel)})/mi do |match|
+          "#{match}\n  # START ucb_rails_security routes: \n  #{ucb_security_routes}\n # END ucb_rails_security routes:\n"
+      end   
+    end
+  
+    def gsub_file(relative_destination, regexp, *args, &block)
+      path = destination_path(relative_destination)
+      content = File.read(path).gsub(regexp, *args, &block)
+      File.open(path, 'wb') { |file| file.write(content) }
+    end
+end

data/init.rb

@@ -0,0 +1,9 @@
+# Include hook code here
+require 'ucb_rails_security'
+require 'ucb_rails_security_casauthentication'
+require 'ucb_rs_controller_methods'
+require 'helpers/rspec_helpers'
+require 'ucb_rails_security_logger'
+
+UCB::Rails::Security.logger = UCB::Rails::Security::Logger.new("#{RAILS_ROOT}/log/ucb_security_#{RAILS_ENV}.log")
+UCB::Rails::Security.logger.formatter = UCB::Rails::Security::Logger::Formatter.new