ActionItem111: enabled access_control everywhere

git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@739 3f533792-8f58-4932-b0fe-aaf55b0a4547

ActionItem111: enabled access_control everywhere
git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@739 3f533792-8f58-4932-b0fe-aaf55b0a4547
MoisesMachado
1 parent 6a3a49d6
Showing 7 changed files with 8 additions and 8 deletions Show diff stats
app/controllers/environment_admin/region_validators_controller.rb
app/controllers/profile_admin/cms_controller.rb
app/controllers/profile_admin/membership_editor_controller.rb
app/controllers/profile_admin/profile_editor_controller.rb
app/controllers/profile_admin/profile_members_controller.rb
app/controllers/public/account_controller.rb
script/anhetegua
@@ -2,6 +2,7 @@ class RegionValidatorsController &lt; ApplicationController
   before_filter :load_region_and_search, :except => 'index'
+  protect [:index, :region, :search, :add, :remove], 'manage_environment_validators', environment
   def index
     @regions = Region.top_level_for(environment)
   end
@@ -5,6 +5,5 @@ class CmsController &lt; ComatoseAdminController
   define_option :page_class, Article
-  # not yet
-  # protect [:edit, :new, :reorder, :delete], :post_content, :profile
+   protect [:edit, :new, :reorder, :delete], :post_content, :profile
 end
@@ -4,7 +4,7 @@ class MembershipEditorController &lt; ProfileAdminController
   needs_profile 
-#  protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
+  protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
   def index
     @memberships = current_user.person.memberships
@@ -3,8 +3,7 @@ class ProfileEditorController &lt; ProfileAdminController
   design_editor :holder => 'profile', :autosave => true, :block_types => :block_types
-#  protect [:edit], 'edit_profile', profile
-#  protect []
+  protect [:edit], 'edit_profile', profile
   def block_types
     {
@@ -15,7 +14,6 @@ class ProfileEditorController &lt; ProfileAdminController
     }
   end
-
   # edits the profile info (posts back)
   def edit
     if request.post?
 class ProfileMembersController < ProfileAdminController
-#  protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
+  protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
   def index
     @members = profile.people.uniq
@@ -36,6 +36,8 @@ class AccountController &lt; PublicController
         @user.person.environment = environment
         @user.person.save!
         self.current_user = @user
+        owner_role = Role.find_by_name('owner')
+        @user.person.affiliate(@user.person, [owner_role]) if owner_role
         redirect_back_or_default(homepage_path(:profile => current_user.login))
         flash[:notice] = _("Thanks for signing up!")
       end
@@ -56,7 +56,7 @@ owner_role = Role.create!(:name =&gt; &#39;owner&#39;, :permissions =&gt; [&#39;edit_profile&#39;, &#39;de
 # root user of the system, admin_role for him, the assignment of the role for him and the ownership of the system homepage
 root = User.create!(:login => 'root', :email => 'root@noosfero.org', :password => 'root', :password_confirmation => 'root').person
-admin_role = Role.create!(:name => 'admin', :permissions => ['edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
+admin_role = Role.create!(:name => 'admin', :permissions => ['view_environment_admin_panel','edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
 RoleAssignment.create!(:accessor => root, :role => admin_role, :resource => nil)
 RoleAssignment.create!(:accessor => root, :role => owner_role, :resource => noosfero)
	@@ -2,6 +2,7 @@ class RegionValidatorsController < ApplicationController		@@ -2,6 +2,7 @@ class RegionValidatorsController < ApplicationController
2		2
3	before_filter :load_region_and_search, :except => 'index'	3	before_filter :load_region_and_search, :except => 'index'
4		4
		5	+ protect [:index, :region, :search, :add, :remove], 'manage_environment_validators', environment
5	def index	6	def index
6	@regions = Region.top_level_for(environment)	7	@regions = Region.top_level_for(environment)
7	end	8	end
	@@ -5,6 +5,5 @@ class CmsController < ComatoseAdminController		@@ -5,6 +5,5 @@ class CmsController < ComatoseAdminController
5		5
6	define_option :page_class, Article	6	define_option :page_class, Article
7		7
8	- # not yet
9	- # protect [:edit, :new, :reorder, :delete], :post_content, :profile	8	+ protect [:edit, :new, :reorder, :delete], :post_content, :profile
10	end	9	end
	@@ -4,7 +4,7 @@ class MembershipEditorController < ProfileAdminController		@@ -4,7 +4,7 @@ class MembershipEditorController < ProfileAdminController
4		4
5	needs_profile	5	needs_profile
6		6
7	-# protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile	7	+ protect [:index, :new_enterprise, :create_enterprise ], 'edit_profile', profile
8		8
9	def index	9	def index
10	@memberships = current_user.person.memberships	10	@memberships = current_user.person.memberships
1	class ProfileMembersController < ProfileAdminController	1	class ProfileMembersController < ProfileAdminController
2		2
3	-# protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile	3	+ protect [:index, :change_roles, :update_roles, :change_role, :add_role, :remove_role, :unassociate], 'manage_memberships', profile
4		4
5	def index	5	def index
6	@members = profile.people.uniq	6	@members = profile.people.uniq
	@@ -56,7 +56,7 @@ owner_role = Role.create!(:name => 'owner', :permissions => ['edit_profile', 'de		@@ -56,7 +56,7 @@ owner_role = Role.create!(:name => 'owner', :permissions => ['edit_profile', 'de
56		56
57	# root user of the system, admin_role for him, the assignment of the role for him and the ownership of the system homepage	57	# root user of the system, admin_role for him, the assignment of the role for him and the ownership of the system homepage
58	root = User.create!(:login => 'root', :email => 'root@noosfero.org', :password => 'root', :password_confirmation => 'root').person	58	root = User.create!(:login => 'root', :email => 'root@noosfero.org', :password => 'root', :password_confirmation => 'root').person
59	-admin_role = Role.create!(:name => 'admin', :permissions => ['edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])	59	+admin_role = Role.create!(:name => 'admin', :permissions => ['view_environment_admin_panel','edit_environment_features', 'edit_environment_design', 'manage_environment_categories', 'manage_environment_roles', 'manage_environment_validators'])
60	RoleAssignment.create!(:accessor => root, :role => admin_role, :resource => nil)	60	RoleAssignment.create!(:accessor => root, :role => admin_role, :resource => nil)
61	RoleAssignment.create!(:accessor => root, :role => owner_role, :resource => noosfero)	61	RoleAssignment.create!(:accessor => root, :role => owner_role, :resource => noosfero)
62		62