unsakini 0.0.0

data/app/controllers/concerns/serializer_controller_concern.rb

@@ -0,0 +1,11 @@
+module SerializerControllerConcern
+
+  extend ActiveSupport::Concern
+
+  included do
+    include ::ActionController::Serialization
+    # respond_to :json
+  end
+
+
+end

data/app/controllers/user_token_controller.rb

@@ -0,0 +1,2 @@
+class UserTokenController < Knock::AuthTokenController
+end

data/app/controllers/web_base_controller.rb

@@ -0,0 +1,11 @@
+# Base controller for web pages
+
+class WebBaseController < ActionController::Base
+  include ActionController::ImplicitRender
+  include ActionView::Layouts
+
+  # Renders the angular index view when request url is /app/* to enable html5 pushState capability of angularjs
+  def app
+    render file: "#{Rails.root}/public/app/index.html", layout: false
+  end
+end

data/app/models/application_record.rb

@@ -0,0 +1,5 @@
+# Base application model
+
+class ApplicationRecord < ActiveRecord::Base
+  self.abstract_class = true
+end

data/app/models/board.rb

@@ -0,0 +1,14 @@
+#Board model
+
+class Board < ApplicationRecord
+  include EncryptableModelConcern
+  encryptable_attributes :name
+
+  validates :name, presence: true
+
+  has_many :users, through: :user_boards
+
+  has_many :user_boards, :dependent => :delete_all
+  has_many :posts, :dependent => :destroy
+
+end

data/app/models/comment.rb

@@ -0,0 +1,9 @@
+#Comment model
+class Comment < ApplicationRecord
+  include EncryptableModelConcern
+  encryptable_attributes :content
+  validates :content, presence: true
+
+  belongs_to :post
+  belongs_to :user
+end

data/app/models/concerns/encryptable_model_concern.rb

@@ -0,0 +1,96 @@
+require 'openssl'
+require 'base64'
+
+# Responsible for encryption and decryption of certain model attributes
+
+module EncryptableModelConcern
+  extend ActiveSupport::Concern
+
+  included do
+    before_save :encrypt_encryptable_attributes
+    after_save :decrypt_encryptable_attributes
+    after_find :decrypt_encryptable_attributes
+  end
+
+  module ClassMethods
+    # Sets the `encryptable_attributes` class instance variable in the model.
+    #
+    # Encryptable attributes are encrypted before saving using `before_save` hook and decrypted using `after_save` and `after_find` hooks.
+    #
+    # Example:
+    # ```
+    #   class Board < BaseModel
+    #     encryptable_attributes :name, :title, :content
+    #   end
+    # ```
+    # @param attrs [Symbol] model attributes
+    #
+    def encryptable_attributes(*attrs)
+      @encryptable_attributes = attrs
+    end
+
+  end
+
+  # Returns the model's `encryptable_attributes` class instance variable.
+  #
+  def encryptable_attributes
+    self.class.instance_variable_get(:@encryptable_attributes) || []
+  end
+
+  private
+  # Encryptes the model's encryptable attributes before saving using Rails' `before_save` hook.
+  #
+  # **Note: Be careful in calling this method manually as it can corrupt the data.**
+  def encrypt_encryptable_attributes
+    encryptable_attributes.each do |k|
+      self[k] = encrypt(self[k])
+    end
+  end
+
+  # Decrypts the model's encryptable attributes using Rails' `after_save` and `after_find` hooks.
+  #
+  # **Note: Be careful in calling this method manually as it can corrupt the data.**
+  def decrypt_encryptable_attributes
+    encryptable_attributes.each do |k|
+      self[k] = decrypt(self[k])
+    end
+  end
+
+  # Determins if the value being encrypted/decryped is empty.
+  def is_empty_val(value)
+    !value or value.nil? or value == ""
+  end
+
+  # Returns the cipher algorithm used
+  def cipher
+    OpenSSL::Cipher::Cipher.new('aes-256-cbc')
+  end
+
+  # Returns the encryption key from the `unsakini_crypto_key` config
+  def cipher_key
+    begin
+      Rails.configuration.unsakini_crypto_key
+    rescue Exception => e
+      raise 'Encryption key is not set! Please run `rails g unsakini:config` before you proceed.'
+    end
+  end
+
+  # Encrypts model attribute value
+  def encrypt(value)
+    return value if is_empty_val(value)
+    c = cipher.encrypt
+    c.key = Digest::SHA256.digest(cipher_key)
+    c.iv = iv = c.random_iv
+    Base64.encode64(iv) + Base64.encode64(c.update(value.to_s) + c.final)
+  end
+
+  # Decrypts model attribute value
+  def decrypt(value)
+    return value if is_empty_val(value)
+    c = cipher.decrypt
+    c.key = Digest::SHA256.digest(cipher_key)
+    c.iv = Base64.decode64 value.slice!(0,25)
+    c.update(Base64.decode64(value.to_s)) + c.final
+  end
+
+end

data/app/models/post.rb

@@ -0,0 +1,12 @@
+#Post model
+
+class Post < ApplicationRecord
+  include EncryptableModelConcern
+  encryptable_attributes :title, :content
+  validates :title, presence: true
+  validates :content, presence: true
+
+  belongs_to :user
+  belongs_to :board
+  has_many :comments, :dependent => :delete_all
+end

data/app/models/user.rb

@@ -0,0 +1,6 @@
+class User < ApplicationRecord
+  has_secure_password
+  has_many :user_boards
+  has_many :boards, through: :user_boards
+
+end

data/app/models/user_board.rb

@@ -0,0 +1,71 @@
+# UserBoard model, links the user and it's boards
+
+class UserBoard < ApplicationRecord
+  include EncryptableModelConcern
+  encryptable_attributes :encrypted_password
+
+  validates :encrypted_password, :presence => true, if: :is_admin
+
+  before_validation :validate_before_create, on: :create
+  before_validation :validate_before_update, on: :update
+
+  belongs_to :user
+  belongs_to :board
+
+  def name=(str)
+    @name = str
+  end
+
+  def name
+    if !@name.nil?
+      @name
+    else
+      self.board.name
+    end
+  end
+
+  def share(user_ids, new_key)
+    ActiveRecord::Base.transaction do
+      user_ids.each do |usr_id|
+        UserBoard.new({
+                        user_id: usr_id,
+                        board_id: self.board_id,
+                        encrypted_password: nil,
+                        is_admin: false
+        })
+        .save!
+      end
+      self.encrypted_password = new_key
+      self.save!
+    end
+    true
+
+  rescue
+    self.errors[:base] << "Unable to share the this board"
+    false
+  end
+
+  private
+
+  def reset_user_boards_encrypted_password
+    UserBoard.where("board_id = ? AND user_id != ?", self.board_id, self.user_id).update_all(encrypted_password: nil)
+  end
+
+  def validate_before_create
+    if self.board.nil?
+      b = Board.new(name: @name)
+      if b.save
+        self.board_id = b.id
+      else
+        self.errors[:base] << "Board name is invalid"
+      end
+    end
+  end
+
+  def validate_before_update
+    self.board.name = @name if !@name.blank?
+    reset_user_boards_encrypted_password if self.encrypted_password_changed?
+    self.errors[:base] << "Board name is invalid" if !self.board.save
+  end
+
+end

data/app/serializers/board_serializer.rb

@@ -0,0 +1,5 @@
+class BoardSerializer < ActiveModel::Serializer
+
+  attributes :id, :name, :created_at, :updated_at
+
+end

data/app/serializers/comment_serializer.rb

@@ -0,0 +1,10 @@
+# Serializes the {Comment} model instance to json.
+# Read more about active model serializers - https://github.com/rails-api/active_model_serializers
+
+class CommentSerializer < ActiveModel::Serializer
+
+  attributes :id, :content, :created_at, :updated_at
+
+  belongs_to :user
+
+end

data/app/serializers/post_serializer.rb

@@ -0,0 +1,23 @@
+# Serializes the `Post` model instance to json.
+# Read more about active model serializers - https://github.com/rails-api/active_model_serializers
+
+class PostSerializer < ActiveModel::Serializer
+
+  attributes :id, :title, :content, :created_at, :updated_at
+
+  belongs_to :user
+
+  belongs_to :board do |serializer|
+    user_board = object.board.user_boards.where(user_id: object.user_id).first
+
+    {
+      "id" => object.board.id,
+      "name" => object.board.name,
+      "is_admin" => user_board.is_admin,
+      "encrypted_password" => user_board.encrypted_password,
+      "created_at" => object.board.created_at,
+      "updated_at" => object.board.updated_at
+    }
+  end
+
+end

data/app/serializers/user_board_serializer.rb

@@ -0,0 +1,10 @@
+# Serializes the `UserBoard` model instance to json.
+# Read more about active model serializers - https://github.com/rails-api/active_model_serializers
+#
+
+class UserBoardSerializer < ActiveModel::Serializer
+  attributes :id, :is_admin, :encrypted_password, :created_at, :updated_at
+  belongs_to :board
+
+
+end

data/app/serializers/user_serializer.rb

@@ -0,0 +1,6 @@
+# Serializes the `User` model instance to json.
+# Read more about active model serializers - https://github.com/rails-api/active_model_serializers
+#
+class UserSerializer < ActiveModel::Serializer
+  attributes :id, :name, :email, :created_at, :updated_at
+end

data/config/initializers/unsakini.rb

@@ -0,0 +1,4 @@
+Unsakini.setup do |config|
+  # your application encryption key
+  config.unsakini_crypto_key = "change me"
+end

data/config/routes.rb

@@ -0,0 +1,22 @@
+Rails.application.routes.draw do
+
+  post 'user_token' => 'user_token#create'
+
+  # ng2 html5 pushState routes
+  get 'app', to: 'web_base#app'
+  get 'app/*ngroute', to: 'web_base#app'
+
+  namespace :api do
+    resource :user
+    resources :boards do
+      resources :posts do
+        resources :comments, only: [:index, :create, :update, :destroy]
+      end
+    end
+
+    post '/api/share/board/', to: 'share_board#index', as: 'share_board'
+    get  '/api/users/search', to: 'users#search', as: 'user_search'
+
+  end
+
+end

data/db/migrate/20161116114222_create_boards.rb

@@ -0,0 +1,9 @@
+class CreateBoards < ActiveRecord::Migration[5.0]
+  def change
+    create_table :boards do |t|
+      t.text :name
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20161116200034_create_user_boards.rb

@@ -0,0 +1,11 @@
+class CreateUserBoards < ActiveRecord::Migration[5.0]
+  def change
+    create_table :user_boards do |t|
+      t.integer :user_id
+      t.integer :board_id
+      t.boolean :is_admin, :default => false
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20161118031023_create_posts.rb

@@ -0,0 +1,12 @@
+class CreatePosts < ActiveRecord::Migration[5.0]
+  def change
+    create_table :posts do |t|
+      t.text :title
+      t.text :content
+      t.integer :user_id
+      t.integer :board_id
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20161118100454_create_comments.rb

@@ -0,0 +1,11 @@
+class CreateComments < ActiveRecord::Migration[5.0]
+  def change
+    create_table :comments do |t|
+      t.text :content
+      t.integer :user_id
+      t.integer :post_id
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20161118221508_add_encrypted_password_to_user_board.rb

@@ -0,0 +1,5 @@
+class AddEncryptedPasswordToUserBoard < ActiveRecord::Migration[5.0]
+  def change
+    add_column :user_boards, :encrypted_password, :string
+  end
+end

data/db/migrate/20161122211105_create_users.rb

@@ -0,0 +1,12 @@
+class CreateUsers < ActiveRecord::Migration[5.0]
+  def change
+    create_table :users do |t|
+      t.string :name
+      t.string :email
+      t.string :password_digest
+      t.boolean :confirmed
+
+      t.timestamps
+    end
+  end
+end

data/lib/generators/unsakini/angular/USAGE

@@ -0,0 +1,8 @@
+Description:
+    Generates the angular source files
+
+Example:
+    rails generate unsakini:angular
+
+    This will create:
+        angular/ directory in your project root directory

data/lib/generators/unsakini/angular/angular_generator.rb

@@ -0,0 +1,7 @@
+class Unsakini::AngularGenerator < Rails::Generators::Base
+  source_root File.expand_path('../../../../../', __FILE__)
+
+  def copy_initializer_file
+    directory 'angular', 'angular'
+  end
+end

data/lib/generators/unsakini/config/USAGE

@@ -0,0 +1,8 @@
+Description:
+    Creates config initializer
+
+Example:
+    rails generate unsakini:config
+
+    This will create:
+        config/initializers/unsakini.rb

data/lib/generators/unsakini/config/config_generator.rb

@@ -0,0 +1,7 @@
+class Unsakini::ConfigGenerator < Rails::Generators::Base
+  source_root File.expand_path('../templates', __FILE__)
+
+  def copy_initializer_file
+    copy_file "unsakini.rb", "config/initializers/unsakini.rb"
+  end
+end

data/lib/generators/unsakini/config/templates/unsakini.rb

@@ -0,0 +1,4 @@
+Unsakini.setup do |config|
+  # your application encryption key
+  config.unsakini_crypto_key = "change me"
+end

data/lib/tasks/unsakini_tasks.rake

@@ -0,0 +1,33 @@
+namespace :unsakini do
+
+  desc "Initializes the angular app in ./angular directory."
+  task :build do
+
+    ng_dir = 'angular'
+    lib_dir = "#{File.expand_path File.dirname(__FILE__)}"
+    lib_dir.slice!("/lib/tasks")
+
+    begin
+      Dir.chdir "#{Rails.root}/#{ng_dir}" do
+
+        cmd = ''
+        cmd += 'npm i;'
+        cmd += "#{Rails.root}/#{ng_dir}/node_modules/.bin/ng build"
+        cmd += " --prod" if Rails.env.production?
+        puts "Running #{cmd}"
+        system(cmd)
+
+        puts "Done installing angular assets."
+      end
+    rescue Exception => e
+      puts \
+        "
+
+        Please run `rails g unsakini:angular` before you proceed.
+
+        "
+    end
+
+  end
+
+end

data/lib/unsakini/engine.rb

@@ -0,0 +1,30 @@
+
+
+module Unsakini
+  class Engine < ::Rails::Engine
+
+    config.generators.api_only = true
+
+    config.generators do |g|
+      g.test_framework :rspec, :fixture => false
+      g.fixture_replacement :factory_girl, :dir => 'spec/factories'
+      g.assets false
+      g.helper false
+    end
+
+    # config.middleware.insert_before 0, Rack::Cors do
+    #   allow do
+    #     origins '*'
+    #     resource '*', :headers => :any, :methods => [:get, :post, :options]
+    #   end
+    # end
+
+  end
+
+  # http://stackoverflow.com/questions/4065699/rails-3-engine-provide-config-for-users
+  def self.setup(&block)
+    yield Engine.config if block
+    Engine.config
+  end
+
+end

data/lib/unsakini/version.rb

@@ -0,0 +1,3 @@
+module Unsakini
+  VERSION = '0.0.0'
+end

data/lib/unsakini.rb

@@ -0,0 +1,5 @@
+require "unsakini/engine"
+
+module Unsakini
+  # Your code goes here...
+end

data/spec/concerns/models/encryptable_concern.rb

@@ -0,0 +1,40 @@
+require 'spec_helper'
+
+shared_examples_for "encryptable" do |attributes|
+  let(:model) { described_class } # the class that includes the concern
+
+  let(:model_instance) {
+    build(described_class.to_s.underscore.to_sym)
+  }
+
+  it "has encryptable attributes" do
+    expect(model_instance.encryptable_attributes).not_to be_empty
+    expect(model_instance.encryptable_attributes).to eq(attributes)
+  end
+
+  it "encrypts and decrypts encryptable attributes" do
+    model_hash = parse_json(model_instance.to_json)
+    model_instance.save
+    where_param = Hash.new
+    model_instance.encryptable_attributes.each do |variable|
+      where_param[variable] = model_hash[variable.to_s]
+    end
+    expect(model.where(where_param).count).to eq 0
+  end
+
+  it "encrypts data before saving and decrypts it after saving" do
+    expect(model_instance).to receive(:encrypt_encryptable_attributes)
+    expect(model_instance).to receive(:decrypt_encryptable_attributes)
+    model_instance.save validate: false
+  end
+
+  it "decrypts data after find" do
+    model_hash = parse_json(model_instance.to_json)
+    model_instance.save validate: false
+    find_model_instance = model.find_by_id(model_instance.id)
+    find_model_instance.encryptable_attributes.each do |attribute|
+      expect(find_model_instance.send(attribute)).to eq(model_hash[attribute.to_s])
+    end
+  end
+
+end

data/spec/dummy/Rakefile

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require_relative 'config/application'
+
+Rails.application.load_tasks

data/spec/dummy/angular/README.md

@@ -0,0 +1,31 @@
+# Angular
+
+This project was generated with [angular-cli](https://github.com/angular/angular-cli) version 1.0.0-beta.20-4.
+
+## Development server
+Run `ng serve` for a dev server. Navigate to `http://localhost:4200/`. The app will automatically reload if you change any of the source files.
+
+## Code scaffolding
+
+Run `ng generate component component-name` to generate a new component. You can also use `ng generate directive/pipe/service/class`.
+
+## Build
+
+Run `ng build` to build the project. The build artifacts will be stored in the `dist/` directory. Use the `-prod` flag for a production build.
+
+## Running unit tests
+
+Run `ng test` to execute the unit tests via [Karma](https://karma-runner.github.io).
+
+## Running end-to-end tests
+
+Run `ng e2e` to execute the end-to-end tests via [Protractor](http://www.protractortest.org/).
+Before running the tests make sure you are serving the app via `ng serve`.
+
+## Deploying to Github Pages
+
+Run `ng github-pages:deploy` to deploy to Github Pages.
+
+## Further help
+
+To get more help on the `angular-cli` use `ng --help` or go check out the [Angular-CLI README](https://github.com/angular/angular-cli/blob/master/README.md).

data/spec/dummy/angular/angular-cli.json

@@ -0,0 +1,59 @@
+{
+  "project": {
+    "version": "1.0.0-beta.20-4",
+    "name": "angular"
+  },
+  "apps": [
+    {
+      "root": "src",
+      "outDir": "../public/app",
+      "assets": [
+        "assets",
+        "favicon.ico"
+      ],
+      "index": "index.html",
+      "main": "main.ts",
+      "test": "test.ts",
+      "tsconfig": "tsconfig.json",
+      "prefix": "app",
+      "mobile": false,
+      "styles": [
+        "styles.css"
+      ],
+      "scripts": [],
+      "environments": {
+        "source": "environments/environment.ts",
+        "dev": "environments/environment.ts",
+        "prod": "environments/environment.prod.ts"
+      }
+    }
+  ],
+  "addons": [],
+  "packages": [],
+  "e2e": {
+    "protractor": {
+      "config": "./protractor.conf.js"
+    }
+  },
+  "test": {
+    "karma": {
+      "config": "./karma.conf.js"
+    }
+  },
+  "defaults": {
+    "styleExt": "css",
+    "prefixInterfaces": false,
+    "inline": {
+      "style": false,
+      "template": false
+    },
+    "spec": {
+      "class": false,
+      "component": true,
+      "directive": true,
+      "module": false,
+      "pipe": true,
+      "service": true
+    }
+  }
+}