ActionItem111: enabled access_control everywhere

git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@739 3f533792-8f58-4932-b0fe-aaf55b0a4547

ActionItem111: enabled access_control everywhere
git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@739 3f533792-8f58-4932-b0fe-aaf55b0a4547
MoisesMachado
1 parent 6a3a49d6
Showing 7 changed files with 8 additions and 8 deletions Show diff stats
app/controllers/environment_admin/region_validators_controller.rb
app/controllers/profile_admin/cms_controller.rb
app/controllers/profile_admin/membership_editor_controller.rb
app/controllers/profile_admin/profile_editor_controller.rb
app/controllers/profile_admin/profile_members_controller.rb
app/controllers/public/account_controller.rb
script/anhetegua
@@ -2,6 +2,7 @@ class RegionValidatorsController &lt; ApplicationController
  
   before_filter :load_region_and_search, :except => 'index'
  
+  protect [:index, :region, :search, :add, :remove], 'manage_environment_validators', environment
   def index
     @regions = Region.top_level_for(environment)
   end
@@ -5,6 +5,5 @@ class CmsController &lt; ComatoseAdminController
  
   define_option :page_class, Article
  
-  # not yet
-  # protect [:edit, :new, :reorder, :delete], :post_content, :profile
+   protect [:edit, :new, :reorder, :delete], :post_content, :profile
 end
@@ -4,7 +4,7 @@ class MembershipEditorController &lt; ProfileAdminController
  
   needs_profile 
  
-#  protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
+  protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
  
   def index
     @memberships = current_user.person.memberships
@@ -3,8 +3,7 @@ class ProfileEditorController &lt; ProfileAdminController
  
   design_editor :holder => 'profile', :autosave => true, :block_types => :block_types
  
-#  protect [:edit], 'edit_profile', profile
-#  protect []
+  protect [:edit], 'edit_profile', profile
  
   def block_types
     {
@@ -15,7 +14,6 @@ class ProfileEditorController &lt; ProfileAdminController
     }
   end
  
-
   # edits the profile info (posts back)
   def edit
     if request.post?
 class ProfileMembersController < ProfileAdminController
  
-#  protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
+  protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
  
   def index
     @members = profile.people.uniq
@@ -36,6 +36,8 @@ class AccountController &lt; PublicController
         @user.person.environment = environment
         @user.person.save!
         self.current_user = @user
+        owner_role = Role.find_by_name('owner')
+        @user.person.affiliate(@user.person, [owner_role]) if owner_role
         redirect_back_or_default(homepage_path(:profile => current_user.login))
         flash[:notice] = _("Thanks for signing up!")
       end
@@ -56,7 +56,7 @@ owner_role = Role.create!(:name =&gt; &#39;owner&#39;, :permissions =&gt; [&#39;edit_profile&#39;, &#39;de
  
 # root user of the system, admin_role for him, the assignment of the role for him and the ownership of the system homepage
 root = User.create!(:login => 'root', :email => 'root@noosfero.org', :password => 'root', :password_confirmation => 'root').person
-admin_role = Role.create!(:name => 'admin', :permissions => ['edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
+admin_role = Role.create!(:name => 'admin', :permissions => ['view_environment_admin_panel','edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
 RoleAssignment.create!(:accessor => root, :role => admin_role, :resource => nil)
 RoleAssignment.create!(:accessor => root, :role => owner_role, :resource => noosfero)
...	...	@@ -2,6 +2,7 @@ class RegionValidatorsController < ApplicationController
2	2
3	3	before_filter :load_region_and_search, :except => 'index'
4	4
	5	+ protect [:index, :region, :search, :add, :remove], 'manage_environment_validators', environment
5	6	def index
6	7	@regions = Region.top_level_for(environment)
7	8	end
...	...
...	...	@@ -5,6 +5,5 @@ class CmsController < ComatoseAdminController
5	5
6	6	define_option :page_class, Article
7	7
8		- # not yet
9		- # protect [:edit, :new, :reorder, :delete], :post_content, :profile
	8	+ protect [:edit, :new, :reorder, :delete], :post_content, :profile
10	9	end
...	...
...	...	@@ -4,7 +4,7 @@ class MembershipEditorController < ProfileAdminController
4	4
5	5	needs_profile
6	6
7		-# protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
	7	+ protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
8	8
9	9	def index
10	10	@memberships = current_user.person.memberships
...	...
...	...	@@ -3,8 +3,7 @@ class ProfileEditorController < ProfileAdminController
3	3
4	4	design_editor :holder => 'profile', :autosave => true, :block_types => :block_types
5	5
6		-# protect [:edit], 'edit_profile', profile
7		-# protect []
	6	+ protect [:edit], 'edit_profile', profile
8	7
9	8	def block_types
10	9	{
...	...	@@ -15,7 +14,6 @@ class ProfileEditorController < ProfileAdminController
15	14	}
16	15	end
17	16
18		-
19	17	# edits the profile info (posts back)
20	18	def edit
21	19	if request.post?
...	...
1	1	class ProfileMembersController < ProfileAdminController
2	2
3		-# protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
	3	+ protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
4	4
5	5	def index
6	6	@members = profile.people.uniq
...	...
...	...	@@ -36,6 +36,8 @@ class AccountController < PublicController
36	36	@user.person.environment = environment
37	37	@user.person.save!
38	38	self.current_user = @user
	39	+ owner_role = Role.find_by_name('owner')
	40	+ @user.person.affiliate(@user.person, [owner_role]) if owner_role
39	41	redirect_back_or_default(homepage_path(:profile => current_user.login))
40	42	flash[:notice] = _("Thanks for signing up!")
41	43	end
...	...
...	...	@@ -56,7 +56,7 @@ owner_role = Role.create!(:name => 'owner', :permissions => ['edit_profile', 'de
56	56
57	57	# root user of the system, admin_role for him, the assignment of the role for him and the ownership of the system homepage
58	58	root = User.create!(:login => 'root', :email => 'root@noosfero.org', :password => 'root', :password_confirmation => 'root').person
59		-admin_role = Role.create!(:name => 'admin', :permissions => ['edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
	59	+admin_role = Role.create!(:name => 'admin', :permissions => ['view_environment_admin_panel','edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
60	60	RoleAssignment.create!(:accessor => root, :role => admin_role, :resource => nil)
61	61	RoleAssignment.create!(:accessor => root, :role => owner_role, :resource => noosfero)
62	62
...	...