RubyGems - ucb_rails_security - Versions diffs - 2.0.7 - Mend

ucb_rails_security 2.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (60) hide show

data/generators/ucb_rails_security/templates/views/ucb_security/ldap_search/index.html.erb ADDED Viewed

@@ -0,0 +1,62 @@
+<h1>Ldap Search</h1>
+<br/>
+<div class="ucb_rails_security_form">
+    <% form_tag(ucb_security_ldap_search_path, :method => :get) do %>
+      <p>
+        <%= label('search_term', 'Search Term') %>
+        <%= select_tag('search_term', options_for_select(@select_options, @search_term)) %>
+      </p>
+      <p>
+        <%= label('search_value', 'Search Value') %>
+        <%= text_field_tag('search_value', params[:search_value], :size => 30) %>
+      </p>
+      <p>
+        <div class="button_widget">
+          <%= submit_tag("Search") %> |
+          <%= link_to('Clear', ucb_security_ldap_search_path()) %>
+        </div>
+      </p>
+    <% end %>
+</div>
+<br/>
+<% if @search_initiated && @ldap_people.empty? %>
+  <p class="empty_search_results">Your search did not match any people in the directory.</p>
+<% elsif !@ldap_people.empty? %>
+  <h2>LDAP Search Results</h2>
+  <p>Click on the person's LDAP UID to populate a form with their LDAP data</p>
+   <table class='horizontal max_width'>
+      <tr>
+         <th width="1%">LDAP UID</th>
+         <th>First</th>
+         <th>Last</th>
+         <th>Dept Code</th>
+         <th>Department</th>
+         <th>Phone</th>
+         <th>Email</th>
+      </tr>
+      <tbody class="highlight">
+      <% @ldap_people.each do |p| %>
+         <tr>
+           <td><%= link_to(p.uid, new_ucb_security_user_path(:ldap_uid => p.uid, :givenname => params[:givenname], :sn => params[:sn])) %></td>
+           <td><%=h p.first_name %></td>
+           <td><%=h p.last_name %></td>
+           <td><%=h p.dept_code %></td>
+           <td><%=h p.dept_name %></td>
+           <td><%=h p.phone %></td>
+           <td><%=h p.email %></td>
+        </tr>
+      <% end %>
+      </tbody>
+   </table>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/role_users/_new.html.erb ADDED Viewed

@@ -0,0 +1,11 @@
+<% if @unassociated_users.empty? %>
+  <p>There are no unassociated users</p>
+<% else %>
+  <% form_tag(role_users_path(:role_id => @role), :method => :put) do %>
+    <%= select_tag('role[user_ids][]', options_for_select(@unassociated_users), :multiple => 'true', :size => 13) %>
+    <% @role_users .each do |ru| %>
+      <%= hidden_field_tag('role[user_ids][]', ru.id ) %>
+    <% end %>
+    <%= submit_tag('Add') %>
+  <% end %>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/role_users/edit.html.erb ADDED Viewed

@@ -0,0 +1,37 @@
+<h1>Role: <i><%= h @role.name.capitalize %></i></h1>
+<% form_for([:ucb_security, @user, @role], :url => ucb_security_role_users_path(@role), :html => {:method => :put}) do %>
+  <table class="doubleSelectList">
+    <tr>
+      <td width="40%">
+        <label>Users without Role: <i><%= @role.name.capitalize %></i></label><br/>
+        <%= select_tag("", options_for_select(@unassociated_users),
+                       :id => 'users_wo_role', :multiple => true, :size => 10) %>
+      </td>
+      <td width="20%" class="buttons">
+        <label>Move Selected</label><br/>
+        <%= button_to_function(">", "DoubleSelectList.moveSelected('users_wo_role', 'users_w_role')") %><br/>
+        <%= button_to_function("<", "DoubleSelectList.moveSelected('users_w_role', 'users_wo_role')") %><br/>
+        <br/>
+        <label>Move All</label><br/>
+        <%= button_to_function(">>", "DoubleSelectList.moveAll('users_wo_role', 'users_w_role')") %><br/>
+        <%= button_to_function("<<", "DoubleSelectList.moveAll('users_w_role', 'users_wo_role')") %><br/>
+      </td>
+      <td width="40%">
+        <label>Users with Role: <i><%= @role.name.capitalize %></i></label><br/>
+        <%= select_tag("user_ids[]", options_for_select(@associated_users),
+                       :id => 'users_w_role', :multiple => true, :size => 10) %>
+      </td>
+    </tr>
+  </table>
+  <div class="button_widget">
+    <%= submit_tag("Update", :id => 'update_button') %> | <%= link_to("Done", ucb_security_role_path(@role)) %>
+  </div>
+<% end %>
+<%= javascript_tag("DoubleSelectList.initSubmitCallback('update_button', 'users_wo_role', 'users_w_role')") %>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/_users.html.erb ADDED Viewed

@@ -0,0 +1,14 @@
+<% if @role.users.size > 0 %>
+<ul>
+<% @role.users.each do |user| %>
+  <li><%= link_to(user.display_name, ucb_security_user_url(user), :id => "user_#{user.id}") %></li>
+<% end %>
+</ul>
+<% else %>
+  <p>No uses are associated with this role</p>
+<% end %>
+<div class="button_widget">
+    <%= button_to("Edit", edit_ucb_security_role_users_url(@role), :method => :get) %>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/edit.html.erb ADDED Viewed

@@ -0,0 +1,19 @@
+<h1>Edit Role</h1>
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>Role Details</legend>
+  <% form_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+    <%= f.text_field('Name:', :name, :required => true) %>
+    <%= f.text_area('Description:', :description, {}, {:rows => 6}) %>
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Update") %> |
+        <%= link_to("Done", ucb_security_role_path(@role)) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/index.html.erb ADDED Viewed

@@ -0,0 +1,34 @@
+<h1>Listing Roles</h1>
+<div class="new_record_widget">
+  <%= link_to('New Role', new_ucb_security_role_path()) %>
+</div>
+<table class="horizontal mid_width">
+  <tr>
+    <th colspan="3" width="1%"></th>
+    <th>Name</th>
+    <th>Description</th>
+  </tr>
+<% for role in @roles %>
+  <tbody class="highlight">
+  <tr>
+    <td><%= link_to('View', ucb_security_role_path(role)) %></td>
+    <td><%= link_to('Edit', edit_ucb_security_role_path(role)) %></td>
+    <td><%= link_to('Delete', ucb_security_role_path(role), :confirm => 'Are you sure?', :method => :delete) %></td>
+    <td><%=h role.name %></td>
+    <td><%=h role.description %></td>
+  </tr>
+  </tbody>
+<% end %>
+</table>
+<br />
+<% if @roles.size > 15 %>
+    <div class="new_record_widget">
+      <%= link_to('New Role', new_ucb_security_role_path()) %>
+    </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/new.html.erb ADDED Viewed

@@ -0,0 +1,19 @@
+<h1>New Role</h1>
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>Role Details</legend>
+  <% form_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+    <%= f.text_field('Name:', :name, :required => true) %>
+    <%= f.text_area('Description:', :description, {}, {:rows => 6}) %>
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Create") %> |
+        <%= link_to("Back", ucb_security_roles_path) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/roles/show.html.erb ADDED Viewed

@@ -0,0 +1,27 @@
+<h1>View Role</h1>
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>Role Details</legend>
+    <% fields_for([:ucb_security, @role], :builder => UcbSecurity::Builder) do |f| %>
+      <%= f.text_field('Name:', :name, {:required => true}, {:readonly => true}) %>
+      <%= f.text_area('Description:', :description, {}, {:readonly => true, :rows => 6}) %>
+      <p>
+        <div class="button_widget">
+          <%= button_to("Edit", edit_ucb_security_role_path(@role), :method => :get) %> |
+          <%= link_to("List Roles", ucb_security_roles_path()) %>
+        </div>
+      </p>
+    <% end %>
+  </fieldset>
+</div>
+<br/>
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>Role Users</legend>
+    <%= render(:partial => 'users') %>
+  </fielset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/user_roles/edit.html.erb ADDED Viewed

@@ -0,0 +1,17 @@
+<h1>Roles for: <%= h @user.full_name %></h1>
+<% form_for([:ucb_security, @user], :url => ucb_security_user_roles_path(@user), :html => {:method => :put}) do %>
+  <ul style="display: inline; list-style-type: none;">
+  <% @roles.each do |role| %>
+      <li><%= check_box_tag('user[role_ids][]', role.id, @user.roles.include?(role)) %>
+      <%= role.name %></li>
+  <% end %>
+  </ul>
+  <br/><br/>
+  <div class="record_widget">
+    <%= submit_tag("Update") %> |
+    <%= link_to("Done", ucb_security_user_path(@user)) %>
+  </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/users/edit.html.erb ADDED Viewed

@@ -0,0 +1,23 @@
+<h1>Edit user</h1>
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Details</legend>
+  <% form_for([:ucb_security, @user], :builder => UcbSecurity::Builder) do |f| %>
+    <%= f.text_field('LDAP Uid:', :ldap_uid, :required => true) %>
+    <%= f.text_field('First Name:', :first_name, :required => true) %>
+    <%= f.text_field('Last Name:', :last_name, :required => true) %>
+    <%= f.text_field('Email:', :email) %>
+    <%= f.text_field('Phone:', :phone) %>
+    <%= f.text_field('Department:', :department) %>
+    <p>
+      <div class="button_widget">
+        <%= f.submit("Update") %> |
+        <%= link_to("Done", ucb_security_user_path(@user)) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/users/index.html.erb ADDED Viewed

@@ -0,0 +1,43 @@
+<h1>Listing Users</h1>
+<div class="new_record_widget">
+  <%= link_to('New User', new_ucb_security_user_path()) %>
+</div>
+<table class="horizontal max_width">
+  <tr>
+    <th colspan="3" width="1%"></th>
+    <th>Ldap uid</th>
+    <th>First name</th>
+    <th>Last name</th>
+    <th>Email</th>
+    <th>Phone</th>
+    <th>Department</th>
+  </tr>
+<% for user in @users %>
+  <tbody class="highlight">
+  <tr>
+    <td><%= link_to('View', ucb_security_user_path(user)) %></td>
+    <td><%= link_to('Edit', edit_ucb_security_user_path(user)) %></td>
+    <td><%= link_to('Delete', ucb_security_user_path(user), :confirm => 'Are you sure?', :method => :delete) %></td>
+    <td><%=h user.ldap_uid %></td>
+    <td><%=h user.first_name %></td>
+    <td><%=h user.last_name %></td>
+    <td><%=h user.email %></td>
+    <td><%=h user.phone %></td>
+    <td><%=h user.department %></td>
+  </tr>
+  </tbody>
+<% end %>
+</table>
+<br />
+<% if @users.size > 15 %>
+    <div class="new_record_widget">
+      <%= link_to('New User', new_ucb_security_user_path()) %>
+    </div>
+<% end %>

data/generators/ucb_rails_security/templates/views/ucb_security/users/new.html.erb ADDED Viewed

@@ -0,0 +1,29 @@
+<h1>New User</h1>
+<p>
+  <%= link_to("Search Ldap for New User", ucb_security_ldap_search_url()) %>
+</p>
+<div class="ucb_rails_security_form">
+  <fieldset>
+    <legend>User Details</legend>
+    <% form_for([:ucb_security, @user], :builder => UcbSecurity::Builder) do |f| %>
+      <%= f.text_field('LDAP Uid:', :ldap_uid, :required => true) %>
+      <%= f.text_field('First Name:', :first_name, :required => true) %>
+      <%= f.text_field('Last Name:', :last_name, :required => true) %>
+      <%= f.text_field('Email:', :email) %>
+      <%= f.text_field('Phone:', :phone) %>
+      <%= f.text_field('Department:', :department) %>
+      <p>
+        <div class="button_widget">
+          <%= f.submit("Create") %> |
+          <%= link_to("Back", ucb_security_users_path) %>
+        </div>
+      </p>
+    <% end %>
+  </fieldset>
+</div>

data/generators/ucb_rails_security/templates/views/ucb_security/users/show.html.erb ADDED Viewed

@@ -0,0 +1,43 @@
+<h1>View User</h1>
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Details</legend>
+  <% fields_for(@user, :builder => UcbSecurity::Builder) do |f| %>
+    <%= f.text_field('LDAP Uid:', :ldap_uid, {:required => true}, {:readonly => true}) %>
+    <%= f.text_field('First Name:', :first_name, {:required => true}, {:readonly => true}) %>
+    <%= f.text_field('Last Name:', :last_name, {:required => true}, {:readonly => true}) %>
+    <%= f.text_field('Email:', :email, {}, {:readonly => true}) %>
+    <%= f.text_field('Phone:', :phone, {}, {:readonly => true}) %>
+    <%= f.text_field('Department:', :department, {}, {:readonly => true}) %>
+    <p>
+      <div class="button_widget">
+        <%= button_to("Edit", edit_ucb_security_user_path(@user), :method => :get) %> |
+        <%= link_to("List Users", ucb_security_users_path()) %>
+      </div>
+    </p>
+  <% end %>
+</fieldset>
+</div>
+<br/>
+<div class="ucb_rails_security_form">
+<fieldset>
+  <legend>User Roles</legend>
+    <% if @user.roles.empty? %>
+      <p>This user has no roles</p>
+    <% else %>
+    <ul>
+      <% @user.roles.each do |r| %>
+        <li><%= link_to(r.name, ucb_security_role_path(r)) %></li>
+      <% end %>
+    </ul>
+  <% end %>
+  <div class="button_widget">
+    <%= button_to("Edit", edit_ucb_security_user_roles_path(@user), :method => :get) %>
+  </div>
+</fieldset>
+</div>

data/generators/ucb_rails_security/ucb_rails_security_generator.rb ADDED Viewed

@@ -0,0 +1,191 @@
+class UcbRailsSecurityGenerator < Rails::Generator::Base
+  NAMESPACE = 'ucb_security'
+  TARGET_NAMESPACE = 'ucb_security'
+  def initialize(runtime_args, runtime_options = {})
+    super
+  end
+  def manifest
+    record do |m|
+      template_dir = File.join(File.expand_path(File.dirname(__FILE__)), "templates")
+      ###############
+      # Models
+      #
+      Dir["#{template_dir}/models/*"].each do |name|
+        name = File.basename(name)
+        m.file "models/#{name}", "app/models/#{name}"
+      end
+      #####
+      ###############
+      # Controllers
+      #
+      m.directory "app/controllers/#{TARGET_NAMESPACE}/"
+      Dir["#{template_dir}/controllers/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "controllers/#{NAMESPACE}/#{name}", "app/controllers/#{TARGET_NAMESPACE}/#{name}"
+      end
+      # Helpers
+      m.directory "app/helpers/#{TARGET_NAMESPACE}"
+      Dir["#{template_dir}/helpers/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "helpers/#{NAMESPACE}/#{name}", "app/helpers/#{TARGET_NAMESPACE}/#{name}"
+      end
+      #####
+      ################
+      # Views
+      #
+      m.directory "app/views/#{TARGET_NAMESPACE}/"
+      m.directory "app/views/#{TARGET_NAMESPACE}/roles/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/roles/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/roles/#{name}", "app/views/#{TARGET_NAMESPACE}/roles/#{name}"
+      end
+      m.directory "app/views/#{TARGET_NAMESPACE}/users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/users/#{name}", "app/views/#{TARGET_NAMESPACE}/users/#{name}"
+      end
+      m.directory "app/views/#{TARGET_NAMESPACE}/user_roles/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/user_roles/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/user_roles/#{name}", "app/views/#{TARGET_NAMESPACE}/user_roles/#{name}"
+      end
+      m.directory "app/views/#{TARGET_NAMESPACE}/role_users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/role_users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/role_users/#{name}", "app/views/#{TARGET_NAMESPACE}/role_users/#{name}"
+      end
+      m.directory "app/views/#{TARGET_NAMESPACE}/role_users/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/role_users/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/role_users/#{name}", "app/views/#{TARGET_NAMESPACE}/role_users/#{name}"
+      end
+      m.directory "app/views/#{TARGET_NAMESPACE}/ldap_search/"
+      Dir["#{template_dir}/views/#{NAMESPACE}/ldap_search/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/#{NAMESPACE}/ldap_search/#{name}", "app/views/#{TARGET_NAMESPACE}/ldap_search/#{name}"
+      end
+      #####
+      ###############
+      # Layouts
+      #
+      m.directory "app/views/layouts/#{TARGET_NAMESPACE}"
+      Dir["#{template_dir}/views/layouts/#{NAMESPACE}/*"].each do |name|
+        name = File.basename(name)
+        m.file "views/layouts/#{NAMESPACE}/#{name}", "app/views/layouts/#{TARGET_NAMESPACE}/#{name}"
+      end
+      #####
+      ###############
+      # Stylesheets
+      #
+      m.file "stylesheets/#{NAMESPACE}.css", "public/stylesheets/#{TARGET_NAMESPACE}.css"
+      #####
+      ###############
+      # Javascripts
+      #
+      m.file "javascripts/ucb_security.js", "public/javascripts/ucb_security.js"
+      #####
+      ###############
+      # Initializers
+      #
+      m.directory "config"
+      m.directory "config/initializers"
+      m.file "initializers/ucb_security_config.rb", "config/initializers/ucb_security_config.rb"
+      #####
+      ###############
+      # Migrations
+      #
+      m.directory "db/migrate"
+      m.file "db/migrate/xxx_create_ucb_rails_security_tables.rb", "db/migrate/#{next_migration}_create_ucb_rails_security_tables.rb"
+      #####
+      ###############
+      # Routes
+      #
+      write_named_routes_to_route_file
+      #####
+    end
+  end
+  private
+    def pad_zeros(str, num_of_zeros)
+      if str.length == num_of_zeros
+        return str
+      else
+        pad_zeros("0".concat(str), num_of_zeros)
+      end
+    end
+    def latest_migration
+      num = 0
+      unless migrations.empty?
+        migrations.last =~ /^([0-9]+)_/
+        num = $1
+      end
+      raise(Exception, "Unable to determine latest migration: #{migrations.last}") unless num
+      num.to_i
+    end
+    def next_migration
+      pad_zeros((latest_migration + 1).to_s, 3)
+    end
+    def migrations
+      Dir["#{RAILS_ROOT}/db/migrate/*"].map { |f| File.basename(f) }
+    end
+    def write_named_routes_to_route_file
+      ucb_security_routes = <<-ROUTE
+      map.ucb_security '/ucb_security', :controller => 'ucb_security/users'
+      map.logout '/logout', :controller => 'ucb_security/base', :action => 'logout'
+      map.not_authorized '/not_authorized', :controller => 'ucb_security/base', :action => 'not_authorized'
+      map.namespace(:ucb_security) do |ucb_security|
+        ucb_security.resources :roles do |roles|
+          roles.resource :users, :controller => 'role_users'
+        end
+        ucb_security.resources :users do |users|
+          users.resource :roles, :controller => 'user_roles'
+        end
+      end
+      map.ucb_security_ldap_search '/ucb_security/ldap_search',
+        :controller => 'ucb_security/ldap_search', :action => 'index'
+      ROUTE
+      sentinel = 'ActionController::Routing::Routes.draw do |map|'
+      gsub_file 'config/routes.rb', /(#{Regexp.escape(sentinel)})/mi do |match|
+          "#{match}\n  # START ucb_rails_security routes: \n  #{ucb_security_routes}\n # END ucb_rails_security routes:\n"
+      end
+    end
+    def gsub_file(relative_destination, regexp, *args, &block)
+      path = destination_path(relative_destination)
+      content = File.read(path).gsub(regexp, *args, &block)
+      File.open(path, 'wb') { |file| file.write(content) }
+    end
+end

data/init.rb ADDED Viewed

@@ -0,0 +1,9 @@
+# Include hook code here
+require 'ucb_rails_security'
+require 'ucb_rails_security_casauthentication'
+require 'ucb_rs_controller_methods'
+require 'helpers/rspec_helpers'
+require 'ucb_rails_security_logger'
+UCB::Rails::Security.logger = UCB::Rails::Security::Logger.new("#{RAILS_ROOT}/log/ucb_security_#{RAILS_ENV}.log")
+UCB::Rails::Security.logger.formatter = UCB::Rails::Security::Logger::Formatter.new