Merge pull request #108 from gabceb/CanCanAdmin

Added admin console. Added ability for admins approve, suspend and activate users

Author: Tony Guntharp

Gemfile

@@ -21,6 +21,7 @@ gem 'aws-sdk'
 gem 'paperclip'
 gem 'remotipart'
 gem 'jquery-rails'
+gem 'enumerize'
 
 # Making the world a better, more stable place
 gem 'airbrake'
@@ -34,6 +35,7 @@ group :assets do
   gem 'execjs'   
   gem 'eco'
   gem 'uglifier'
+  gem 'bootstrap-sass', '~> 2.3.0.1'
 end
 
 group :development do
@@ -42,6 +44,7 @@ group :development do
   gem 'awesome_print'
   gem 'better_errors'
   gem 'binding_of_caller'
+  gem 'debugger'
 end
 
 group :test do

Gemfile.lock

@@ -53,6 +53,8 @@ GEM
       coderay (>= 1.0.0)
       erubis (>= 2.6.6)
     binding_of_caller (0.6.8)
+    bootstrap-sass (2.3.0.1)
+      sass (~> 3.2)
     bourbon (1.4.0)
       sass (>= 3.1)
     bourne (1.1.2)
@@ -74,9 +76,17 @@ GEM
       coffee-script-source
       execjs
     coffee-script-source (1.4.0)
+    columnize (0.3.6)
     cookiejar (0.3.0)
     daemons (1.1.9)
     database_cleaner (0.9.1)
+    debugger (1.2.3)
+      columnize (>= 0.3.1)
+      debugger-linecache (~> 1.1.1)
+      debugger-ruby_core_source (~> 1.1.5)
+    debugger-linecache (1.1.2)
+      debugger-ruby_core_source (>= 1.1.1)
+    debugger-ruby_core_source (1.1.6)
     devise (1.5.3)
       bcrypt-ruby (~> 3.0)
       orm_adapter (~> 0.0.3)
@@ -98,6 +108,8 @@ GEM
       http_parser.rb (>= 0.5.3)
     em-socksify (0.2.1)
       eventmachine (>= 1.0.0.beta.4)
+    enumerize (0.5.1)
+      activesupport (>= 3.2)
     erubis (2.7.0)
     eventmachine (1.0.0)
     execjs (1.4.0)
@@ -267,13 +279,16 @@ DEPENDENCIES
   aws-sdk
   better_errors
   binding_of_caller
+  bootstrap-sass (~> 2.3.0.1)
   bourbon (~> 1.4.0)
   cloudfuji
   coffee-rails
   database_cleaner
+  debugger
   devise
   devise_cloudfuji_authenticatable
   eco
+  enumerize
   execjs
   factory_girl_rails
   faker

app/assets/images/emoticons/sad-meme.png

@@ -0,0 +1,112 @@
+SUSPEND_ACTION = "suspend"
+SUSPEND_BTN_CSS = "btn-danger"
+ACTIVATE_ACTION = "activate"
+ACTIVATE_APPROVE_BTN_CSS = "btn-success"
+APPROVE_ACTION = "approve"
+
+$(document).ready ->
+	$(document).on("click", ".waiting-for-approval-users .action.approve", {action : APPROVE_ACTION }, act_on_user)
+	$(document).on("click", ".approved-users .action.suspend", {action : SUSPEND_ACTION }, act_on_user)
+	$(document).on("click", ".approved-users .action.activate", {action : ACTIVATE_ACTION }, act_on_user)
+	$(document).on("click", ".admin input[type='checkbox']", {}, toggelAdminOnUser)
+	return
+
+act_on_user = (obj)->
+	$el = $(this)
+	$row = $el.closest("tr")
+	
+	user_id = $row.data("user-id")
+	action_taken = obj.data.action
+	
+	request = $.post '/admin/update_user',
+		user_id: user_id
+		action_taken: action_taken
+
+	request.success (data) ->
+		# We will set the new and old css actions depending on the action that was taken because this method
+		# is used by 3 different buttons
+		if action_taken == SUSPEND_ACTION
+			old_btn_class = SUSPEND_ACTION
+			old_css_class = SUSPEND_BTN_CSS
+			new_btn_class = ACTIVATE_APPROVE_BTN_CSS
+			new_css_class = ACTIVATE_ACTION
+		else
+			# Approve and activate will be almost the same except for the original css class 
+			if action_taken == ACTIVATE_ACTION
+				old_css_class = ACTIVATE_ACTION
+			else
+				old_css_class = APPROVE_ACTION
+			
+			old_btn_class = ACTIVATE_APPROVE_BTN_CSS
+			new_btn_class = SUSPEND_BTN_CSS
+			new_css_class = SUSPEND_ACTION
+
+		btn_text = _.str.titleize(new_css_class)
+
+		$row.find("td.status").text(_.str.titleize(data.status))
+
+		# Change the look of the buttons by removing and adding classes
+		$el.text(btn_text).removeClass("#{old_btn_class} #{old_css_class}").addClass("#{new_btn_class} #{new_css_class}")
+
+		# Check if the user was an approval. If so, move the user out of the waiting for approval table and add it to the approved table
+		if action_taken == APPROVE_ACTION
+			$row.remove()
+			$(".approved-users table").show().append($row)
+
+			toggleTableIfNeeded $(".waiting-for-approval-users")
+			toggleTableIfNeeded $(".approved-users")
+
+			# Show the admin row that is hidden on the waiting for approval users table
+			$row.find("td.admin").show()
+
+		return
+	
+	request.error (data, textStatus, jqXHR) ->
+			alert('Something went wrong while trying to get change user status')
+	
+	return
+
+toggelAdminOnUser = ()->
+	$el = $(this)
+	$row = $el.closest("tr")
+
+	user_id = $row.data("user-id")
+
+	checked = $el.prop("checked");
+
+	full_name = $row.data("full-name")
+
+	# Generate the message based on the check of the user admin flag
+	message = if checked then "make #{full_name} an administrator?" else "remove #{full_name} from the administrators?"
+	message = "Are you sure " + message
+
+	# If the user didnt confirm then put the check back and return
+	if(confirm(message) != true)
+		$el.prop("checked", !checked);
+		return
+
+	request = $.post '/admin/toggle_admin',
+		user_id: user_id
+
+	request.success (data) ->
+		alert("#{full_name} is now an administrator")
+		return
+
+	request.error (data, textStatus, jqXHR) ->
+			alert("Something went wrong while trying to make #{full_name} an administrator")
+			$el.prop("checked", !checked);
+	return
+
+# Toggles a table and the container that says there are no users if needed
+toggleTableIfNeeded = ($container)->
+	$table = $container.find("table")
+	$no_user_el = $container.find(".js-no-users")
+
+	if $table.find("tbody tr").length == 0
+		$table.hide()
+		$no_user_el.show()
+	else
+		$table.show()
+		$no_user_el.hide()
+	
+	return

app/assets/images/profile.png

@@ -19,5 +19,6 @@
 //= require lib/backbone
 //= require backbone/kandan
 //= require_tree .
+//= stub admin/admin
 //= require lib/jquery.atwho
 //= require lib/jquery.caret

app/assets/javascripts/admin/admin.js.coffee

@@ -125,29 +125,13 @@ window.Kandan =
       Kandan.Plugins.Mentions.initUsersMentions(Kandan.Helpers.ActiveUsers.all())
       return
 
-  setCurrentUser: ()->
-    template = JST['current_user']
-    currentUser = Kandan.Helpers.Users.currentUser()
-    displayName =   "#{currentUser.first_name} #{currentUser.last_name}" if currentUser.first_name?
-    displayName ||= currentUser.email
-    $(".header .user").html template({
-      gravatarHash: currentUser.gravatar_hash,
-      name: displayName
-    })
-
   registerUtilityEvents: ()->
     window.setInterval(=>
       for el in $(".posted_at")
         $(el).text (new Date($(el).data("timestamp"))).toRelativeTime(@options.nowThreshold)
     , @options.timestampRefreshInterval)
 
-    $(".user_menu_link").click (e)->
-      e.preventDefault()
-      $(".user_menu").toggle()
-      false
-
   init: ->
-    @setCurrentUser()
     channels = new Kandan.Collections.Channels()
     channels.fetch({
       success: (channelsCollection)=>

app/assets/javascripts/application.js

@@ -0,0 +1,5 @@
+$(document).ready ->
+	$(".user_menu_link").click (e)->
+      e.preventDefault()
+      $(".user_menu").toggle()
+      false

app/assets/javascripts/backbone/kandan.js.coffee.erb

@@ -0,0 +1,3 @@
+# Place all the behaviors and hooks related to the matching controller here.
+# All this logic will automatically be available in application.js.
+# You can use CoffeeScript in this file: http://jashkenas.github.com/coffee-script/

app/assets/javascripts/layout.js.coffee

@@ -110,20 +110,16 @@ body
   float: right
   margin: -150px 320px 0 0
 
-.about p,h1,h3,
-  margin-left: auto
-  margin-right: auto
-  width: 600px
-
-.about ul
-  margin-left: auto
-  margin-right: auto  
-  width: 600px
+.about
+  p,h1,h3,ul,
+    margin-left: auto
+    margin-right: auto
+    width: 600px
 
 .devise
   padding-top: 20px
 
-.devise p, .devise div,h1,h2,
-  margin-left: auto
-  margin-right: auto
-  width: 600px  
+  p, div, h1, h2,
+    margin-left: auto
+    margin-right: auto
+    width: 600px  

app/assets/javascripts/pages.js.coffee

@@ -0,0 +1,6 @@
+@import bootstrap
+
+.admin-main-area
+  input[type="number"]
+    height: 30px !important
+

app/assets/stylesheets/_base.sass

@@ -0,0 +1,3 @@
+// Place all the styles related to the Pages controller here.
+// They will automatically be included in application.css.
+// You can use Sass (SCSS) here: http://sass-lang.com/

app/assets/stylesheets/admin.css.sass

@@ -0,0 +1,56 @@
+module Admin
+  class AdminController < BaseController
+
+  	def index
+  		@settings = Setting.my_settings
+  		@all_users = User.find(:all, :conditions => ["id != ?", current_user.id])
+
+  		@waiting_for_approval_users = []
+  		@approved_users = []
+
+  		# Iterate over the array to get approved and non-approved users
+  		@all_users.each{|user| user.status.waiting_approval? ? @waiting_for_approval_users.push(user) : @approved_users.push(user) }
+  	end
+
+  	def update
+
+  		max_rooms = params[:setting][:max_rooms].to_i
+  		public_site = params[:setting][:public_site] == "1"
+
+  		Setting.set_values(:max_rooms => max_rooms, :public_site => public_site)
+
+  		redirect_to :admin_root
+  	end
+
+  	def update_user
+  		user_id = params[:user_id]
+  		action = params[:action_taken].to_s
+
+  		user = User.find(user_id)
+
+  		case action
+  		when "activate", "approve"
+  			user.status = "active"
+  		when "suspend"
+  			user.status = "suspended"
+  		end
+
+  		user.save! if user.changed?
+
+  		render :json => user, :status => 200
+  	end
+
+  	def toggle_admin
+  		user_id = params[:user_id]
+
+  		user = User.find(user_id)
+
+  		user.is_admin = !user.is_admin?
+
+  		user.save!
+
+  		render :json => user, :status => 200  		
+  	end
+    
+  end
+end

app/assets/stylesheets/pages.css.scss

@@ -0,0 +1,12 @@
+module Admin
+  class BaseController < ApplicationController
+   before_filter :authenticate_admin!
+
+   private
+
+   def authenticate_admin!
+   	redirect_to root_url unless current_user.try(:is_admin?)
+   end
+
+  end
+end

app/controllers/admin/admin_controller.rb

@@ -1,3 +1,21 @@
 class ApplicationController < ActionController::Base
   protect_from_forgery
+
+  before_filter :force_approved_account
+  before_filter :redirect_suspended_account
+
+  def force_approved_account
+  	# We will redirect to the approval page if a user is signed in, is not an admin and is marked as waiting for approval
+  	redirect = user_signed_in? && !current_user.is_admin? && current_user.status.waiting_approval?
+
+  	redirect_to approval_path if redirect
+  end
+
+  def redirect_suspended_account
+  	# We will redirect to suspended if a user is singed in and its marked as suspended 
+  	redirect = user_signed_in? && current_user.status.suspended?
+  	
+  	redirect_to suspended_path if redirect
+  end
+
 end

app/controllers/admin/base_controller.rb

@@ -0,0 +1,19 @@
+class PagesController < ApplicationController
+  
+  before_filter :authenticate_user!, :except => :about
+
+  skip_filter :force_approved_account, :only => :approval
+  skip_filter :redirect_suspended_account, :only => :suspended
+
+  def approval
+  	redirect_to(root_path) && return unless current_user.status.waiting_approval?
+  end
+
+  def suspended
+  	redirect_to(root_path) && return unless current_user.status.suspended?
+  end
+
+  def about
+  end
+
+end

app/controllers/application_controller.rb

@@ -0,0 +1,4 @@
+class SessionsController < Devise::SessionsController
+  skip_filter :force_approved_account
+  skip_filter :redirect_suspended_account
+end