fixes #3930 - refactoring of edit_self implementation.

fixes #3312 - support /users/extlogin as a login page based on REMOTE_USER

fixes #3249 - change regex syntax from start/end of line to start/end of string

fixes #2741 - rails 3 syntax

fixes #2945 - extend AR to add getter/setters *_name(s) for has_many/belongs_to associations

fixes #2741 - remove unnecessary require statements

fixes #2669 username first name and last name doesn't accept i18n characters

Fixes #2632 - extract strings from validation errors

fixes #2630 - restrict assignment of roles to those a user has (CVE-2013-2113)

fixes #2604 searching for hosts with digits can lead to unexpected results

Fixes #2519 - Protect locale changes from validation failure so that
password validation can be run

fixes #2281 - don't allow admin flag to be removed from admin account

fixes #2444 - locale selector in user account

fixes #2422 Rails 3.2: before_destroy / dependent => :destroy ordering

fixes #2421 added missing has_many :hostgroups and missing :dependent => destroy

fixes #2393 - Couple of models broken with audited 3.0.0

this is not a fix for the mass assignment problem, rather just to solve immedient packaing issue upstream.

a follow up on mass assignment should be done via another commit.

Feature #2368 - use N_ for model validators

As per https://github.com/grosser/fast_gettext/wiki/activerecord

Feature #2368 - i18n extracting strings

Feature #2368 - i18n extracting strings

Enforce hostgroup/role uniqueness on User relation

upgrade foreman to rails 3.2.13

This commit updates from rails 3.0.x to 3.2.x, main changes include:

• Asset pipline support
• cleanup of existing assets (javascript, css, images)

Users who uses foreman in production, make sure that you now compile
your assets, e.g...

fixes #2001 - Changing Loc or Org after compute resource selection give 500 error

fixes #2025 - show user login if name is blank

removed has_many_polymorphs and used has_many :source and :source_type

renamed to thread_session.rb

fixes #1978 - changing login maximum size to 100

In case of using a long login name (such as ovirt_username@domain), on
the fly login will fail. Increasing the maximum login size to 100.

ensures that admin user can't be duplicated when running within an org

Ensure existing org user search is unscoped

refs 611f5bff

Add organization and location to foreman.

This feature allows foreman to provide multi location, multi tenant and
multi organizations capablities.

the idea is that resources within foreman (e.g. hosts, subnets, users,
environments etc) can belong to one or more locations and organization,...

refactor AuthSourceLdap Class

cleanup the classes, as it was aweful ruby.
TODO: improve the logic between existing user and new users on the fly creaetion

Fixed validation error handling and auth durin admin user creation

Bug #1936 Allow user creation without email

auto create admin-user when missing in API requests

add getter for admin user User.admin which auto creates admin when missing

[SQL optimizations] - many small optimizations

• Bookmarks have only users, not usergroups
• added caching to the settings table
• removed notice message lookups (we are not really using those)...

fixes #1638 - remove whitespaces for user email instead of validation error

incorrect error message shown when trying to rename the admin account

Do not enable auditing while executing rake tasks / migrations

fixes #1613 - Email address format validation preventing admin user creation

audit as twitter and versions for template.

This also closes #1377 as it offer versions and diff view of the tempates.

it is not ideal, but it should handle the most common case for now,
where we should open other feature requests to support all of the ideas in #1377

wip audits upgrade

fixes #1597 - Restrict compute resources access by user

And add some rights to give non admin users so they can perform some normal actions on the hosts they own.

unit/domain_parameter_test.rb self-broke... added a tiny fix.
Removing compute_resources/vms nesting, it is such a nightmare for functional tests....

code smell

fixes #1324 - Separate permssions on hosts from permissions for objects within hosts.

This allows a user to be granted permission to edit the host (and so change the group or proxy) but not, for example, edit the parameters
This could probably be extended further if necessary.

fixes #1456 - renaming the admin account should not be allowed

fixes #1355 - Ability to Search Users by Role

Signed-off-by: Greg Sutcliffe <gsutcliffe@ibahn.com>

WIP rails3 migration

New artwork

• dark top-bar
• moved the search box below the tabs line.
• improved the show host page
• added notifications
• Settings tab now changes title based on the active action
• lots of cleanups - fixes #1066, fixes #926, fixes #628 and many other minor changes...

fixes #1064 - last login info for a user without admin rights is not updated

fixes #100 - Setting is now a ActiveRecord object

This allows users to manage foreman settings via the UI.

the UI is a bit ugly, but works :)

Fixes #906 - Always allow a user to edit some of their own User details

Signed-off-by: Paul Kelly <paul.ian.kelly@googlemail.com>

ensures that current user is cleared, refs #807

fixes #807 - Update the User.current implementation to use a Thread-local variable

fixes #797 - JSON for users not returned

fixes #457 - LDAP on the fly user creation no longer works

Fixes #366 - Redmine authorization port

This is a major feature which provides RBAC authorization within Foreman
a mental note to myself - never ever work on large commits

Added a basic notice facility to foreman

Notice.create :message => "text", :level => level, :global => boolean
if global is true then any user can cancel that message for all users
else each user must cancel the message individually

level can be "warning" or "message"...

Fixes #390 - A user account is always associated with a session

requireing the sha1 library, refs #145

Fixes #145 - Added AuthSourceInternal

Added a password setting facility to the user class for AuthSourceInternal
Switched to SHA1
Changed :ldap to :login
Applied numerous fixes from Ohad Levy
Fixed malformed user page
Switched attr_accessible to attr_protected...

fixes #293 - add table sorting to users page

imported redundent line - refs #232

Fixes #232 - Removes AS from Users page

The password verification test has not yet been implemented but will get done in AuthSourceInternal fix
All tests now pass These tests now work whether settings[:ldap] is enabled or not
Plus whitespace fix

Fixes #170 - implement usergroups

Added migration
Added tests
Added MVC files
Added the routes as well
Added the program logic and additional views
Added RESTful actions for update and create
Added validations to ensure that usergroup.name and user.login do not collide...

Adding Links to Audit Log
Currently Facts Auditing is disable

Squashed commit of the following:

commit c4382aeea5d72402bcbf3049d3c08f74792ca379
Author: Ohad Levy <ohadlevy@gmail.com>
Date: Thu Oct 15 22:03:26 2009 +0800

disable ldap by default

commit 685baf5f2c78128feebcbeed6910b131a072a81b
Author: Ohad Levy <ohadlevy@gmail.com>...