orbit-basic/app/controllers/application_controller.rb

class ApplicationController < ActionController::Base
  protect_from_forgery
  
  include ParserFrontEnd, ParserBackEnd
  
  layout :layout_by_resource
  
  helper :all
  before_filter :set_locale, :set_site

  def front_end_available(module_app_title='')
    app_controller = ModuleApp.first(conditions: {:key => module_app_title} )
    unless app_controller.enable_frontend? 
      render :nothing => true
    end
  end
  
  def get_all_app_engines
    ary = ["vender/plugins/new_blog"]
    app_engines = ary.collect{|t|
      Rails::Engine.find t
    }
    app_engines.each{ |t|
     # t.
    }
  end

  def flaten_controller
    ary=[]
    Find.find(File.join(Rails.root , 'vendor/plugins/'))  { |name|  
          require_dependency(name) if /_controller\.rb$/ =~ name
          ary << name
    }
    ary
  end
  
  # Find the parent for the given item
  def find_parent_item
    @parent_item  = Item.first(:conditions => { :id => BSON::ObjectId(params[:parent_id]) }) rescue nil
  end
  
  def auth_failed_in_backend
     redirect_to admin_dashboards_url 
  end
  
  # Check if the current_user is admin
  def is_admin?
    
    auth_failed_in_backend unless current_user.admin?
  end
  
  def is_manager?
     @module_app.managing_users.include?(current_user) || is_admin?
  end
  
  def for_admin_only
    if is_admin?
      true
    else
    flash[:error] = t("admin.access.denied.not_admin")
    auth_failed_in_backend
    end
  end
  
  def for_app_manager
    if is_manager?
      true
    else
    flash[:error] = t("admin.access.denied.app.not_manager")
    auth_failed_in_backend
  end
  end
  
  def for_app_sub_manager
    if (@module_app.sub_managing_users.include?(current_user) || is_manager?)
      true
    else
    flash[:error] = t("admin.access.denied.app.not_sub_manager")
    auth_failed_in_backend
  end
  end

  def for_app_user
    if (@module_app.app_auth.auth_users.include?(current_user) || for_app_sub_manager )
      true
    else
    flash[:error] = t("admin.access.denied.app.not_authed_user")
    auth_failed_in_backend
  end
  end

  def check_object_premission(obj,title)
    flash[:error] = t("admin.access.denied.object")
    auth_failed_in_backend unless (obj.get_object_auth_by_title(title).auth_users.include?(current_user) || is_manager? || is_admin? )
  end
  
  # Render the page
  def render_page(id = nil)
    if @item
      render :text => process_page(@item, id), :layout => 'page_layout'
    else
      render :text => '404 Not Found'
    end
  end
  
  protected
  
  # Set I18n.locale
  def set_locale
    # update session if passed
    session[:locale] = params[:locale] if params[:locale]

    # set locale based on session or default
    begin
      # check if locale is valid for non site pages
      if LIST[:forbidden_item_names].include?(env['PATH_INFO'].split('/')[1].to_s) && !VALID_LOCALES.include?(session[:locale])
        I18n.locale = I18n.default_locale
      else
        I18n.locale = session[:locale]
      end
    rescue
      I18n.locale = I18n.default_locale
    end    
  end
    
  # Set the site variables
  def set_site
    # set site if exist or create site
    @site = Site.first || Site.create({:valid_locales => [], :in_use_locales => []})
    session[:site] = @site.id
    @site_in_use_locales = @site.in_use_locales
    @site_valid_locales = @site.valid_locales
  end
  
  def set_current_item
    session[:current_page] = params[:id] || @item.id rescue nil
  end
  
  def decrypt_data(encrypted_data, encrypted_key, encrypted_iv)
    site = Site.find(session[:site])
    if encrypted_data
      private_key = OpenSSL::PKey::RSA.new(site.private_key)
      cipher = OpenSSL::Cipher.new('aes-256-cbc')
      cipher.decrypt
      cipher.key = private_key.private_decrypt(encrypted_key)
      cipher.iv = private_key.private_decrypt(encrypted_iv)

      decrypted_data = cipher.update(encrypted_data)
      decrypted_data << cipher.final
    else
      ''
    end
  end
  
  def get_homepage
    Item.first(:conditions => {:parent_id => nil})
  end

  def layout_by_resource
    if devise_controller?
      "devise"
    else
      "application"
    end
  end

end
init rails 2.3.2 2009-05-07 16:53:18 +00:00			`class ApplicationController < ActionController::Base`
Add announcement admin and view template 2009-06-01 06:20:15 +00:00			`protect_from_forgery`
upgrade to rails3, but grip is broken 2010-03-08 08:04:05 +00:00
Merge with sub_roles 2011-12-23 10:34:21 +00:00			`include ParserFrontEnd, ParserBackEnd`
radius parser for multilingual - dev.rake 2011-03-02 09:28:33 +00:00
Changes for orbit bar, login 2012-02-19 08:33:22 +00:00			`layout :layout_by_resource`

upgrade to rails3, but grip is broken 2010-03-08 08:04:05 +00:00			`helper :all`
Links edition 2011-05-13 01:08:42 +00:00			`before_filter :set_locale, :set_site`
fixing for app_auth 2012-01-05 08:20:51 +00:00
			`def front_end_available(module_app_title='')`
Add key in module_app.rb to use instead of title for authorization 2012-01-30 10:12:18 +00:00			`app_controller = ModuleApp.first(conditions: {:key => module_app_title} )`
fixing for app_auth 2012-01-05 08:20:51 +00:00			`unless app_controller.enable_frontend?`
announcement widget query 2012-01-18 13:34:26 +00:00			`render :nothing => true`
fixing for app_auth 2012-01-05 08:20:51 +00:00			`end`
			`end`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00
Revert ff82391b7d0d17c17568ed21176b8b0112a34e31^..HEAD 2011-10-20 02:06:06 +00:00			`def get_all_app_engines`
Change NewBlog to new_blog 2012-01-10 10:29:11 +00:00			`ary = ["vender/plugins/new_blog"]`
Revert ff82391b7d0d17c17568ed21176b8b0112a34e31^..HEAD 2011-10-20 02:06:06 +00:00			`app_engines = ary.collect{\|t\|`
			`Rails::Engine.find t`
			`}`
			`app_engines.each{ \|t\|`
			`# t.`
			`}`
			`end`

			`def flaten_controller`
			`ary=[]`
			`Find.find(File.join(Rails.root , 'vendor/plugins/')) { \|name\|`
			`require_dependency(name) if /_controller\.rb$/ =~ name`
			`ary << name`
			`}`
			`ary`
			`end`

Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`# Find the parent for the given item`
			`def find_parent_item`
			`@parent_item = Item.first(:conditions => { :id => BSON::ObjectId(params[:parent_id]) }) rescue nil`
			`end`
let page model support i18n 2009-06-19 09:31:10 +00:00
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`def auth_failed_in_backend`
			`redirect_to admin_dashboards_url`
			`end`

Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`# Check if the current_user is admin`
			`def is_admin?`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00
			`auth_failed_in_backend unless current_user.admin?`
			`end`

			`def is_manager?`
			`@module_app.managing_users.include?(current_user) \|\| is_admin?`
			`end`

			`def for_admin_only`
			`if is_admin?`
			`true`
			`else`
clean up useless flash msgs. add i18n vars for app auth and object auth 2012-04-30 07:51:22 +00:00			`flash[:error] = t("admin.access.denied.not_admin")`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`auth_failed_in_backend`
			`end`
			`end`

			`def for_app_manager`
			`if is_manager?`
			`true`
			`else`
clean up useless flash msgs. add i18n vars for app auth and object auth 2012-04-30 07:51:22 +00:00			`flash[:error] = t("admin.access.denied.app.not_manager")`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`auth_failed_in_backend`
			`end`
			`end`

			`def for_app_sub_manager`
			`if (@module_app.sub_managing_users.include?(current_user) \|\| is_manager?)`
			`true`
			`else`
clean up useless flash msgs. add i18n vars for app auth and object auth 2012-04-30 07:51:22 +00:00			`flash[:error] = t("admin.access.denied.app.not_sub_manager")`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`auth_failed_in_backend`
			`end`
			`end`

			`def for_app_user`
			`if (@module_app.app_auth.auth_users.include?(current_user) \|\| for_app_sub_manager )`
			`true`
			`else`
clean up useless flash msgs. add i18n vars for app auth and object auth 2012-04-30 07:51:22 +00:00			`flash[:error] = t("admin.access.denied.app.not_authed_user")`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`auth_failed_in_backend`
			`end`
			`end`

			`def check_object_premission(obj,title)`
clean up useless flash msgs. add i18n vars for app auth and object auth 2012-04-30 07:51:22 +00:00			`flash[:error] = t("admin.access.denied.object")`
Fix for NCCU 0430 all functions ok with two submanagers but different behavors 2012-04-29 19:14:15 +00:00			`auth_failed_in_backend unless (obj.get_object_auth_by_title(title).auth_users.include?(current_user) \|\| is_manager? \|\| is_admin? )`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`end`

radius parser for multilingual - dev.rake 2011-03-02 09:28:33 +00:00			`# Render the page`
Change "NewBlog" folders into "new_blog" in assets Modify routes and pages handling for clean front-end urls 2012-01-24 10:16:58 +00:00			`def render_page(id = nil)`
Uniformized: @page and @ link in @item Change parser for page edition. 2011-05-25 06:50:56 +00:00			`if @item`
Trying nokogiri 2012-03-21 17:51:16 +00:00			`render :text => process_page(@item, id), :layout => 'page_layout'`
Add announcement admin and view template 2009-06-01 06:20:15 +00:00			`else`
			`render :text => '404 Not Found'`
			`end`
			`end`

Merge server and rails_3_1 2011-08-18 05:43:33 +00:00			`protected`

Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`# Set I18n.locale`
let page model support i18n 2009-06-19 09:31:10 +00:00			`def set_locale`
			`# update session if passed`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`session[:locale] = params[:locale] if params[:locale]`

let page model support i18n 2009-06-19 09:31:10 +00:00			`# set locale based on session or default`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`begin`
			`# check if locale is valid for non site pages`
			`if LIST[:forbidden_item_names].include?(env['PATH_INFO'].split('/')[1].to_s) && !VALID_LOCALES.include?(session[:locale])`
			`I18n.locale = I18n.default_locale`
			`else`
			`I18n.locale = session[:locale]`
			`end`
			`rescue`
			`I18n.locale = I18n.default_locale`
			`end`
Add reroute middleware hack 2010-01-11 09:09:50 +00:00			`end`
upgrade to rails3, but grip is broken 2010-03-08 08:04:05 +00:00
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`# Set the site variables`
			`def set_site`
			`# set site if exist or create site`
radius parser for multilingual - dev.rake 2011-03-02 09:28:33 +00:00			`@site = Site.first \|\| Site.create({:valid_locales => [], :in_use_locales => []})`
			`session[:site] = @site.id`
			`@site_in_use_locales = @site.in_use_locales`
			`@site_valid_locales = @site.valid_locales`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00			`end`
Links edition 2011-05-13 01:08:42 +00:00
			`def set_current_item`
Uniformized: @page and @ link in @item Change parser for page edition. 2011-05-25 06:50:56 +00:00			`session[:current_page] = params[:id] \|\| @item.id rescue nil`
Links edition 2011-05-13 01:08:42 +00:00			`end`
Merge server and rails_3_1 2011-08-18 05:43:33 +00:00
			`def decrypt_data(encrypted_data, encrypted_key, encrypted_iv)`
			`site = Site.find(session[:site])`
			`if encrypted_data`
			`private_key = OpenSSL::PKey::RSA.new(site.private_key)`
			`cipher = OpenSSL::Cipher.new('aes-256-cbc')`
			`cipher.decrypt`
			`cipher.key = private_key.private_decrypt(encrypted_key)`
			`cipher.iv = private_key.private_decrypt(encrypted_iv)`

			`decrypted_data = cipher.update(encrypted_data)`
			`decrypted_data << cipher.final`
			`else`
			`''`
			`end`
			`end`
Modifications for menu in Design 2011-09-01 01:12:41 +00:00
			`def get_homepage`
			`Item.first(:conditions => {:parent_id => nil})`
			`end`
Chris's first commit at Fri Jan 28 2011 10:14:32 GMT+0800 (CST) 2011-04-13 10:19:51 +00:00
Changes for orbit bar, login 2012-02-19 08:33:22 +00:00			`def layout_by_resource`
			`if devise_controller?`
			`"devise"`
			`else`
			`"application"`
			`end`
			`end`
Revert ff82391b7d0d17c17568ed21176b8b0112a34e31^..HEAD 2011-10-20 02:06:06 +00:00
init rails 2.3.2 2009-05-07 16:53:18 +00:00			`end`