Description:
[web] improved log-in & roles efficiency
git-svn-id: http://theory.cpe.ku.ac.th/grader/web/trunk@196 6386c4cd-e34a-4fa8-8920-d93eb39b512e
Commit status:
[Not Reviewed]
References:
Diff options:
Comments:
0 Commit comments
0 Inline Comments
Unresolved TODOs:
There are no unresolved TODOs
Author
jittat
-
r104:7a05c208f2ec - - 6 files changed: 23 inserted, 10 deleted
| @@ -1,28 +1,27 | |||||
|
|
1 | class AnnouncementsController < ApplicationController |
|
1 | class AnnouncementsController < ApplicationController |
|
|
2 |
|
2 | ||
|
|
3 |
- before_filter :a |
|
3 | + before_filter :admin_authorization |
|
|
4 | - before_filter { |controller| controller.authorization_by_roles(['admin'])} |
|
||
|
|
5 |
|
4 | ||
|
|
6 | in_place_edit_for :announcement, :published |
|
5 | in_place_edit_for :announcement, :published |
|
|
7 |
|
6 | ||
|
|
8 | # GET /announcements |
|
7 | # GET /announcements |
|
|
9 | # GET /announcements.xml |
|
8 | # GET /announcements.xml |
|
|
10 | def index |
|
9 | def index |
|
|
11 | @announcements = Announcement.find(:all, |
|
10 | @announcements = Announcement.find(:all, |
|
|
12 | :order => "created_at DESC") |
|
11 | :order => "created_at DESC") |
|
|
13 |
|
12 | ||
|
|
14 | respond_to do |format| |
|
13 | respond_to do |format| |
|
|
15 | format.html # index.html.erb |
|
14 | format.html # index.html.erb |
|
|
16 | format.xml { render :xml => @announcements } |
|
15 | format.xml { render :xml => @announcements } |
|
|
17 | end |
|
16 | end |
|
|
18 | end |
|
17 | end |
|
|
19 |
|
18 | ||
|
|
20 | # GET /announcements/1 |
|
19 | # GET /announcements/1 |
|
|
21 | # GET /announcements/1.xml |
|
20 | # GET /announcements/1.xml |
|
|
22 | def show |
|
21 | def show |
|
|
23 | @announcement = Announcement.find(params[:id]) |
|
22 | @announcement = Announcement.find(params[:id]) |
|
|
24 |
|
23 | ||
|
|
25 | respond_to do |format| |
|
24 | respond_to do |format| |
|
|
26 | format.html # show.html.erb |
|
25 | format.html # show.html.erb |
|
|
27 | format.xml { render :xml => @announcement } |
|
26 | format.xml { render :xml => @announcement } |
|
|
28 | end |
|
27 | end |
| @@ -1,51 +1,58 | |||||
|
|
1 | # Filters added to this controller apply to all controllers in the application. |
|
1 | # Filters added to this controller apply to all controllers in the application. |
|
|
2 | # Likewise, all the methods added will be available for all controllers. |
|
2 | # Likewise, all the methods added will be available for all controllers. |
|
|
3 |
|
3 | ||
|
|
4 | class ApplicationController < ActionController::Base |
|
4 | class ApplicationController < ActionController::Base |
|
|
5 | # Pick a unique cookie name to distinguish our session data from others' |
|
5 | # Pick a unique cookie name to distinguish our session data from others' |
|
|
6 | session :session_key => '_grader_session_id' |
|
6 | session :session_key => '_grader_session_id' |
|
|
7 |
|
7 | ||
|
|
8 | SINGLE_USER_MODE_CONF_KEY = 'system.single_user_mode' |
|
8 | SINGLE_USER_MODE_CONF_KEY = 'system.single_user_mode' |
|
|
9 |
|
9 | ||
|
|
|
10 | + def admin_authorization | ||
|
|
|
11 | + return false unless authenticate | ||
|
|
|
12 | + user = User.find(session[:user_id], :include => ['roles']) | ||
|
|
|
13 | + redirect_to :controller => 'main', :action => 'login' unless user.admin? | ||
|
|
|
14 | + end | ||
|
|
|
15 | + | ||
|
|
10 | def authorization_by_roles(allowed_roles) |
|
16 | def authorization_by_roles(allowed_roles) |
|
|
11 | return false unless authenticate |
|
17 | return false unless authenticate |
|
|
12 | user = User.find(session[:user_id]) |
|
18 | user = User.find(session[:user_id]) |
|
|
13 | unless user.roles.detect { |role| allowed_roles.member?(role.name) } |
|
19 | unless user.roles.detect { |role| allowed_roles.member?(role.name) } |
|
|
14 | flash[:notice] = 'You are not authorized to view the page you requested' |
|
20 | flash[:notice] = 'You are not authorized to view the page you requested' |
|
|
15 | redirect_to :controller => 'main', :action => 'login' |
|
21 | redirect_to :controller => 'main', :action => 'login' |
|
|
16 | return false |
|
22 | return false |
|
|
17 | end |
|
23 | end |
|
|
18 | end |
|
24 | end |
|
|
19 |
|
25 | ||
|
|
20 | protected |
|
26 | protected |
|
|
|
27 | + | ||
|
|
21 | def authenticate |
|
28 | def authenticate |
|
|
22 | unless session[:user_id] |
|
29 | unless session[:user_id] |
|
|
23 | redirect_to :controller => 'main', :action => 'login' |
|
30 | redirect_to :controller => 'main', :action => 'login' |
|
|
24 | return false |
|
31 | return false |
|
|
25 | end |
|
32 | end |
|
|
26 |
|
33 | ||
|
|
27 | - Configuration.reload |
|
34 | + #Configuration.reload |
|
|
28 | # check if run in single user mode |
|
35 | # check if run in single user mode |
|
|
29 | if (Configuration[SINGLE_USER_MODE_CONF_KEY]) |
|
36 | if (Configuration[SINGLE_USER_MODE_CONF_KEY]) |
|
|
30 | user = User.find(session[:user_id]) |
|
37 | user = User.find(session[:user_id]) |
|
|
31 | if user==nil or user.login != 'root' |
|
38 | if user==nil or user.login != 'root' |
|
|
32 | redirect_to :controller => 'main', :action => 'login' |
|
39 | redirect_to :controller => 'main', :action => 'login' |
|
|
33 | return false |
|
40 | return false |
|
|
34 | end |
|
41 | end |
|
|
35 | end |
|
42 | end |
|
|
36 |
|
43 | ||
|
|
37 | return true |
|
44 | return true |
|
|
38 | end |
|
45 | end |
|
|
39 |
|
46 | ||
|
|
40 | def authorization |
|
47 | def authorization |
|
|
41 | return false unless authenticate |
|
48 | return false unless authenticate |
|
|
42 | user = User.find(session[:user_id]) |
|
49 | user = User.find(session[:user_id]) |
|
|
43 | unless user.roles.detect { |role| |
|
50 | unless user.roles.detect { |role| |
|
|
44 | role.rights.detect{ |right| |
|
51 | role.rights.detect{ |right| |
|
|
45 | right.controller == self.class.controller_name and |
|
52 | right.controller == self.class.controller_name and |
|
|
46 | (right.action == 'all' or right.action == action_name) |
|
53 | (right.action == 'all' or right.action == action_name) |
|
|
47 | } |
|
54 | } |
|
|
48 | } |
|
55 | } |
|
|
49 | flash[:notice] = 'You are not authorized to view the page you requested' |
|
56 | flash[:notice] = 'You are not authorized to view the page you requested' |
|
|
50 | #request.env['HTTP_REFERER'] ? (redirect_to :back) : (redirect_to :controller => 'login') |
|
57 | #request.env['HTTP_REFERER'] ? (redirect_to :back) : (redirect_to :controller => 'login') |
|
|
51 | redirect_to :controller => 'main', :action => 'login' |
|
58 | redirect_to :controller => 'main', :action => 'login' |
| @@ -1,19 +1,24 | |||||
|
|
1 | class LoginController < ApplicationController |
|
1 | class LoginController < ApplicationController |
|
|
2 |
|
2 | ||
|
|
3 | def index |
|
3 | def index |
|
|
4 | # show login screen |
|
4 | # show login screen |
|
|
5 | reset_session |
|
5 | reset_session |
|
|
6 | redirect_to :controller => 'main', :action => 'login' |
|
6 | redirect_to :controller => 'main', :action => 'login' |
|
|
7 | end |
|
7 | end |
|
|
8 |
|
8 | ||
|
|
9 | def login |
|
9 | def login |
|
|
10 | if user = User.authenticate(params[:login], params[:password]) |
|
10 | if user = User.authenticate(params[:login], params[:password]) |
|
|
11 | session[:user_id] = user.id |
|
11 | session[:user_id] = user.id |
|
|
12 | redirect_to :controller => 'main', :action => 'list' |
|
12 | redirect_to :controller => 'main', :action => 'list' |
|
|
|
13 | + if user.admin? | ||
|
|
|
14 | + session[:admin] = true | ||
|
|
|
15 | + else | ||
|
|
|
16 | + session[:admin] = false | ||
|
|
|
17 | + end | ||
|
|
13 | else |
|
18 | else |
|
|
14 | flash[:notice] = 'Wrong password' |
|
19 | flash[:notice] = 'Wrong password' |
|
|
15 | redirect_to :controller => 'main', :action => 'login' |
|
20 | redirect_to :controller => 'main', :action => 'login' |
|
|
16 | end |
|
21 | end |
|
|
17 | end |
|
22 | end |
|
|
18 |
|
23 | ||
|
|
19 | end |
|
24 | end |
| @@ -1,34 +1,32 | |||||
|
|
1 | class MessagesController < ApplicationController |
|
1 | class MessagesController < ApplicationController |
|
|
2 |
|
2 | ||
|
|
3 | before_filter :authenticate |
|
3 | before_filter :authenticate |
|
|
4 |
|
4 | ||
|
|
5 | verify :method => :post, :only => ['create'], |
|
5 | verify :method => :post, :only => ['create'], |
|
|
6 | :redirect_to => { :action => 'list' } |
|
6 | :redirect_to => { :action => 'list' } |
|
|
7 |
|
7 | ||
|
|
8 |
- before_filter :only => ['console','show'] |
|
8 | + before_filter :admin_authorization, :only => ['console','show','reply'] |
|
|
9 | - controller.authorization_by_roles(['admin']) |
|
||
|
|
10 | - end |
|
||
|
|
11 |
|
9 | ||
|
|
12 | def list |
|
10 | def list |
|
|
13 | @user = User.find(session[:user_id]) |
|
11 | @user = User.find(session[:user_id]) |
|
|
14 | @messages = Message.find_all_sent_by_user(@user) |
|
12 | @messages = Message.find_all_sent_by_user(@user) |
|
|
15 | end |
|
13 | end |
|
|
16 |
|
14 | ||
|
|
17 | def console |
|
15 | def console |
|
|
18 | @user = User.find(session[:user_id]) |
|
16 | @user = User.find(session[:user_id]) |
|
|
19 | @messages = Message.find_all_system_unreplied_messages |
|
17 | @messages = Message.find_all_system_unreplied_messages |
|
|
20 | end |
|
18 | end |
|
|
21 |
|
19 | ||
|
|
22 | def show |
|
20 | def show |
|
|
23 | @message = Message.find(params[:id]) |
|
21 | @message = Message.find(params[:id]) |
|
|
24 | end |
|
22 | end |
|
|
25 |
|
23 | ||
|
|
26 | def create |
|
24 | def create |
|
|
27 | user = User.find(session[:user_id]) |
|
25 | user = User.find(session[:user_id]) |
|
|
28 | @message = Message.new(params[:message]) |
|
26 | @message = Message.new(params[:message]) |
|
|
29 | @message.sender = user |
|
27 | @message.sender = user |
|
|
30 | if !@message.save |
|
28 | if !@message.save |
|
|
31 | render :action => 'list' and return |
|
29 | render :action => 'list' and return |
|
|
32 | else |
|
30 | else |
|
|
33 | flash[:notice] = 'New message posted' |
|
31 | flash[:notice] = 'New message posted' |
|
|
34 | redirect_to :action => 'list' |
|
32 | redirect_to :action => 'list' |
| @@ -1,32 +1,32 | |||||
|
|
1 | # Methods added to this helper will be available to all templates in the application. |
|
1 | # Methods added to this helper will be available to all templates in the application. |
|
|
2 | module ApplicationHelper |
|
2 | module ApplicationHelper |
|
|
3 |
|
3 | ||
|
|
4 | def user_header |
|
4 | def user_header |
|
|
5 | menu_items = '' |
|
5 | menu_items = '' |
|
|
6 | user = User.find(session[:user_id]) |
|
6 | user = User.find(session[:user_id]) |
|
|
7 |
|
7 | ||
|
|
8 |
- if (user!=nil) and ( |
|
8 | + if (user!=nil) and (session[:admin]) |
|
|
9 | # admin menu |
|
9 | # admin menu |
|
|
10 | menu_items << "<b>Administrative task:</b> " |
|
10 | menu_items << "<b>Administrative task:</b> " |
|
|
11 | append_to menu_items, '[Announcements]', 'announcements', 'index' |
|
11 | append_to menu_items, '[Announcements]', 'announcements', 'index' |
|
|
12 | append_to menu_items, '[Msg console]', 'messages', 'console' |
|
12 | append_to menu_items, '[Msg console]', 'messages', 'console' |
|
|
13 | append_to menu_items, '[Problem admin]', 'problems', 'index' |
|
13 | append_to menu_items, '[Problem admin]', 'problems', 'index' |
|
|
14 | append_to menu_items, '[User admin]', 'user_admin', 'index' |
|
14 | append_to menu_items, '[User admin]', 'user_admin', 'index' |
|
|
15 | append_to menu_items, '[User stat]', 'user_admin', 'user_stat' |
|
15 | append_to menu_items, '[User stat]', 'user_admin', 'user_stat' |
|
|
16 | #append_to menu_items, '[Graders]', 'graders', 'list' |
|
16 | #append_to menu_items, '[Graders]', 'graders', 'list' |
|
|
17 | append_to menu_items, '[Site config]', 'configurations', 'index' |
|
17 | append_to menu_items, '[Site config]', 'configurations', 'index' |
|
|
18 | menu_items << "<br/>" |
|
18 | menu_items << "<br/>" |
|
|
19 | end |
|
19 | end |
|
|
20 |
|
20 | ||
|
|
21 | # main page |
|
21 | # main page |
|
|
22 | append_to menu_items, '[Main]', 'main', 'list' |
|
22 | append_to menu_items, '[Main]', 'main', 'list' |
|
|
23 | append_to menu_items, '[Messages]', 'messages', 'list' |
|
23 | append_to menu_items, '[Messages]', 'messages', 'list' |
|
|
24 | append_to menu_items, '[Tasks]', 'tasks', 'list' |
|
24 | append_to menu_items, '[Tasks]', 'tasks', 'list' |
|
|
25 | append_to menu_items, '[Submissions]', 'main', 'submission' |
|
25 | append_to menu_items, '[Submissions]', 'main', 'submission' |
|
|
26 | append_to menu_items, '[Test]', 'test', 'index' |
|
26 | append_to menu_items, '[Test]', 'test', 'index' |
|
|
27 | append_to menu_items, '[Settings]', 'users', 'index' |
|
27 | append_to menu_items, '[Settings]', 'users', 'index' |
|
|
28 | append_to menu_items, '[Log out]', 'main', 'login' |
|
28 | append_to menu_items, '[Log out]', 'main', 'login' |
|
|
29 |
|
29 | ||
|
|
30 | menu_items |
|
30 | menu_items |
|
|
31 | end |
|
31 | end |
|
|
32 |
|
32 | ||
| @@ -1,26 +1,30 | |||||
|
|
1 | - content_for :head do |
|
1 | - content_for :head do |
|
|
2 | = javascript_include_tag :defaults |
|
2 | = javascript_include_tag :defaults |
|
|
3 |
|
3 | ||
|
|
4 | %h1 Grader configuration |
|
4 | %h1 Grader configuration |
|
|
5 |
|
5 | ||
|
|
6 | %table.info |
|
6 | %table.info |
|
|
7 | %tr.info-head |
|
7 | %tr.info-head |
|
|
8 | %th Key |
|
8 | %th Key |
|
|
9 | %th Type |
|
9 | %th Type |
|
|
10 | %th Value |
|
10 | %th Value |
|
|
11 |
|
11 | ||
|
|
12 | - @configurations.each do |conf| |
|
12 | - @configurations.each do |conf| |
|
|
13 | - @configuration = conf |
|
13 | - @configuration = conf |
|
|
14 | %tr |
|
14 | %tr |
|
|
15 | %td |
|
15 | %td |
|
|
16 | = in_place_editor_field :configuration, :key, {}, :rows=>1 |
|
16 | = in_place_editor_field :configuration, :key, {}, :rows=>1 |
|
|
17 | %td |
|
17 | %td |
|
|
18 | = in_place_editor_field :configuration, :value_type, {}, :rows=>1 |
|
18 | = in_place_editor_field :configuration, :value_type, {}, :rows=>1 |
|
|
19 | %td |
|
19 | %td |
|
|
20 | = in_place_editor_field :configuration, :value, {}, :rows=>1 |
|
20 | = in_place_editor_field :configuration, :value, {}, :rows=>1 |
|
|
21 |
|
21 | ||
|
|
22 | %br/ |
|
22 | %br/ |
|
|
23 | - = link_to '[Reload configuration]', :action => 'reload' |
|
23 | + Your config is saved, but it does not automatically take effect. |
|
|
24 | %br/ |
|
24 | %br/ |
|
|
25 | - Your config is saved, but it does not automatically take effect. |
|
25 | + If you have one mongrel process running, you can |
|
|
26 | - You must reload. |
|
26 | + = link_to '[click]', :action => 'reload' |
|
|
|
27 | + here to reload. | ||
|
|
|
28 | + %br/ | ||
|
|
|
29 | + If you have more than one process running, you should restart | ||
|
|
|
30 | + them manually. | ||
You need to be logged in to leave comments.
Login now