move to v. 1.3.0 code cleanup, bugfixes in storage and attachment plug-ins. new restful web-service

Author: mlist

application.properties

@@ -3,12 +3,4 @@
 app.grails.version=2.2.5
 app.name=OpenLabFramework
 app.servlet.version=2.4
-app.version=1.2.3
-plugins.ajax-uploader=1.1
-plugins.bubbling=2.1.4
-plugins.cloud-foundry=1.2.3
-plugins.export=1.5
-plugins.grails-ui=1.2.3
-plugins.joda-time=1.4
-plugins.quartz=0.4.2
-plugins.yui=2.8.2.1
+app.version=1.3.0

grails-app/conf/BootStrap.groovy

@@ -182,6 +182,7 @@ class BootStrap {
     def initSecurity() {
         /* create requestmaps to enable url security */
         if (Requestmap.list().size() == 0) {
+
             def requestMap = new Requestmap(url: "/error/**", configAttribute: "IS_AUTHENTICATED_ANONYMOUSLY")
             requestMap.save()
 
@@ -224,6 +225,15 @@ class BootStrap {
             requestMap = new Requestmap(url: "/settings/**", configAttribute: "ROLE_ADMIN")
             requestMap.save()
         }
+
+        if(!Requestmap.findByUrl("/restful/**")){
+            def requestMap = new Requestmap(url: "/restful/**", configAttribute: "IS_AUTHENTICATED_ANONYMOUSLY")
+            requestMap.save()
+        }
+        if(!Requestmap.findByUrl("/appAccessToken/**")) {
+            def requestMap = new Requestmap(url: "/appAccessToken/**", configAttribute: "ROLE_ADMIN")
+            requestMap.save()
+        }
     }
 
     def initDummyData() {

grails-app/conf/BuildConfig.groovy

@@ -55,6 +55,7 @@ grails.project.dependency.resolution = {
         grailsCentral()
         mavenCentral()
         mavenRepo "http://maven.springframework.org/milestone/"
+        mavenRepo "http://repo.grails.org/grails/repo/"
 
         // uncomment the below to enable remote dependency resolution
         // from public Maven repositories
@@ -70,6 +71,7 @@ grails.project.dependency.resolution = {
         // specify dependencies here under either 'build', 'compile', 'runtime', 'test' or 'provided' scopes eg.
         runtime "hsqldb:hsqldb:1.8.0.10"
         runtime 'mysql:mysql-connector-java:5.1.16'
+        runtime "net.sourceforge.jtds:jtds:1.3.1" //MS-SQL
         compile "org.cloudfoundry:cloudfoundry-runtime:0.8.4"
         build 'org.bouncycastle:bcpg-jdk15on:1.50'
         build 'org.bouncycastle:bcprov-jdk15on:1.50'
@@ -103,7 +105,10 @@ grails.project.dependency.resolution = {
         compile (":richui:0.8"){
             excludes 'yui'
         }
+        compile ":ajax-uploader:1.1"
+        compile ":bubbling:2.1.4"
+        compile ":export:1.5"
+        compile ":joda-time:1.4"
+        compile ":quartz:0.4.2"
     }
-
 }
-

grails-app/conf/Config.groovy

@@ -228,17 +228,6 @@ grails.resources.modules = {
             resource id: '/css/uploader.css', url: '/css/custom_uploader.css'
         }
     }
-    tinymce{
-		dependsOn 'jquery'
-		resource url: 'js/tinymce/tinymce.min.js'
-		resource url: 'js/tinymce/themes/modern/theme.js'
-		resource url: 'js/tinymce/plugins/table/plugin.min.js'
-		resource url: 'js/tinymce/plugins/textcolor/plugin.min.js'
-		resource url: 'js/tinymce/plugins/code/plugin.min.js'
-		resource url: 'js/tinymce/skins/lightgray/content.min.css'
-		resource url: 'js/tinymce/skins/lightgray/skin.min.css'
-		
-    }
 }
 
 //db migration
@@ -258,3 +247,7 @@ grails.gorm.default.mapping = {
 //define default javascript library
 grails.views.javascript.library="prototype"
 
+//make sure that the restful controller is only called via secure http since the access token can easily be sniffed out otherwise
+grails.plugins.springsecurity.secureChannel.definition = [
+        '/restful/**' : 'REQUIRES_SECURE_CHANNEL'
+]

grails-app/controllers/org/openlab/navigation/ProjectTreeController.groovy

@@ -36,7 +36,7 @@ import org.openlab.genetracker.Recombinant
 import org.openlab.genetracker.CellLineData
 
 /**
- * Controller to deliver XML data to the YUI tree that is showing
+ * Controller to deliver XML data to the JS tree that is showing
  * the project structure.
  * @author markus.list
  *
@@ -45,9 +45,6 @@ public class ProjectTreeController {
 
     def index = { renderTree }
 
-    //def springSecurityService
-    //def settingsService
-
     def renderTree(){
         [:]
     }
@@ -117,114 +114,5 @@ public class ProjectTreeController {
             render cellLineDataAsJSON as JSON
         }
     }
-    /**
-     * Create the XML data for the YUI treeview
-     */
-    /*def renderTree = {
-
-        /*
-               * create tree data XML from projects
-               *
-        def writer = new StringWriter()
-        def xml = new MarkupBuilder(writer)
-
-        def principal = springSecurityService.getPrincipal()
-        def userName = principal.getUsername()
-
-        xml.root(name: settingsService.getLabel(key: "projects") ?: "Projects", checked: false, expanded: false)
-                {
-                    Laboratory.list().each { lab ->
-
-                        xml.laboratories(name: lab.toString(), checked: false, expanded: false)
-                                {
-                                    def myProjects = Project.findAllByLaboratoryAndCreator(lab, User.findByUsername(userName)).toList().sort {it.toString()};
-                                    def otherProjects = (Project.findAllByLaboratory(lab) - myProjects).toList().sort {it.toString()}
-
-                                    findProjects(xml, settingsService.getLabel(key: "myprojects") ?: "My Projects", myProjects)
-                                    findProjects(xml, settingsService.getLabel(key: "otherprojects") ?: "Other Projects", otherProjects)
-                                }
-                    }
-
-                }
-
-        /*
-               * set params
-               *
-        params.max = Math.min(params.max ? params.int('max') : 10, 100)
-
-        /**
-         * obtain dataobject types
-         *
-        def types = DataObject.list().collect {it.type}.unique()
-
-        render(template: "/layouts/renderTree", model: ["data": writer.toString(), objectTypes: types])
-    }
-
-    /**
-     * Processes a list of projects and builds up the XML structure. Checked refers to the availability of a
-     * checkbox version of the YUI treeview. Not used here.
-     * @param builder
-     * @param projName
-     * @param projList
-     * @return
-
-    def findProjects(builder, projName, projList) {
-        builder.projects(name: projName, id: projName, checked: false, expanded: false, selected: false)
-                {
-                    projList.each {p ->
-                        if (projList.contains(p)) {
-                            project(name: p.name, id: p.id, checked: false, expanded: false, selected: false)
-                                    {
-                                        DataObject.list().findAll {it.projects.contains(p)}.each {obj ->
-                                            object(name: obj.toString(), id: obj.id, checked: false, expanded: false, selected: isSelected(obj))
-                                        }
-                                    }
-                        }
-                    }
-                }
-    }
-
-    /**
-     * Determines whether the current node should be expanded or not.
-     * To determine which project is focused, the nextBackId property
-     * of the BrowserHistoryFilter (grails-app/conf) is used.
-     * @param p
-     * @return
-     *
-    def isExpanded(def project) {
-        if (session.nextBackId && DataObject.findById(session.nextBackId)?.projects?.contains(project)) return true
-
-        else return false
-    }
-
-    /**
-     * Determines whether a node (representing a dataobject or a project) should be selected.
-     * To determine which node is focused at that moment, the nextBackId property
-     * of the BrowserHistoryFilter (grails-app/conf) is used.
-     * @param obj
-     * @return
-     *
-    def isSelected(def obj) {
-        if (!session.nextBackId) return false
-
-        else if (obj.class.getName() == "org.openlab.main.Project") {
-            return (session.nextBackId.toString() == obj.id.toString())
-        }
-        else return (DataObject.findById(session.nextBackId) == obj)
-    }
-
-    /**
-     * Checks whether "MyProjects" or "OtherProjects" has been selected and
-     * triggers the corresponding action in project controller.
-     *
-    def listSubsetOfProjects = {
-        def id = params.id
-        params.remove("id")
-
-        if (id == (settingsService.getLabel(key: "myprojects") ?: "My Projects"))
-            redirect(controller: "project", action: "listMyProjects", params: params)
 
-        else if (id == (settingsService.getLabel(key: "otherprojects") ?: "Other Projects"))
-            redirect(controller: "project", action: "listOtherProjects", params: params)
-    }    **/
 }

grails-app/conf/spring/resources.groovy …security/AppAccessTokenController.groovygrails-app/conf/spring/resources.groovy renamed to grails-app/controllers/security/AppAccessTokenController.groovy grails-app/conf/spring/resources.groovy renamed to grails-app/controllers/security/AppAccessTokenController.groovy

@@ -27,18 +27,13 @@
  *
  * ############################################################################
  */
-beans = {
+package security
 
-    /*dataSource(org.apache.commons.dbcp.BasicDataSource) {
-        driverClassName = "com.mysql.jdbc.Driver"
-        //url = "jdbc:mysql://b2b607b271d99e:[email protected]:3306/ad_08fc40faf37cc76"
-        //username = "b2b607b271d99e"
-        //password = "adde1932"
-        properties{
-            initialSize = 3
-            maxActive = 3
-            maxIdle = 1
-        }
-    }   */
+import grails.plugins.springsecurity.Secured
+import org.openlab.security.AppAccessToken
 
-}
+class AppAccessTokenController {
+
+    def scaffold = AppAccessToken
+
+}

grails-app/module/org/openlab/module/menu/adminMenuModule.groovy

@@ -1,33 +1,33 @@
-/*
- * Copyright (C) 2013 
- * Center for Excellence in Nanomedicine (NanoCAN)
- * Molecular Oncology
- * University of Southern Denmark
- * ###############################################
- * Written by:	Markus List
- * Contact: 	mlist'at'health'.'sdu'.'dk
- * Web:		http://www.nanocan.org
- * ###########################################################################
- *	
- *	This file is part of OpenLabFramework.
- *
- *  OpenLabFramework is free software: you can redistribute it and/or modify
- *  it under the terms of the GNU General Public License as published by
- *  the Free Software Foundation, either version 3 of the License, or
- *  (at your option) any later version.
- *
- *  This program is distributed in the hope that it will be useful,
- *  but WITHOUT ANY WARRANTY; without even the implied warranty of
- *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- *  GNU General Public License for more details.
- *
- *  You should have received a copy of the GNU General Public License
- *   along with this program. It can be found at the root of the project page.
- *	If not, see <http://www.gnu.org/licenses/>.
- *
- * ############################################################################
- */
-package org.openlab.module.menu
+/*
+ * Copyright (C) 2013 
+ * Center for Excellence in Nanomedicine (NanoCAN)
+ * Molecular Oncology
+ * University of Southern Denmark
+ * ###############################################
+ * Written by:	Markus List
+ * Contact: 	mlist'at'health'.'sdu'.'dk
+ * Web:		http://www.nanocan.org
+ * ###########################################################################
+ *	
+ *	This file is part of OpenLabFramework.
+ *
+ *  OpenLabFramework is free software: you can redistribute it and/or modify
+ *  it under the terms of the GNU General Public License as published by
+ *  the Free Software Foundation, either version 3 of the License, or
+ *  (at your option) any later version.
+ *
+ *  This program is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ *  GNU General Public License for more details.
+ *
+ *  You should have received a copy of the GNU General Public License
+ *   along with this program. It can be found at the root of the project page.
+ *	If not, see <http://www.gnu.org/licenses/>.
+ *
+ * ############################################################################
+ */
+package org.openlab.module.menu
 
 import org.openlab.module.*;
 import org.codehaus.groovy.grails.plugins.springsecurity.SpringSecurityUtils
@@ -57,10 +57,11 @@ class adminMenuModule implements MenuModule{
 			{
 				submenu(label: 'Administration')
 				{
-					menuitem(controller: 'settings', action: action, label: 'Change Settings')
+					menuitem(controller: 'settings', action: action, label: 'Change Settings')
 					menuitem(controller: 'laboratory', action: 'list', label: 'Manage Laboratories')
 					menuitem(controller: 'user', action: action, label: 'Manage Users')
 					menuitem(controller: 'dataSource', action: 'show', label: 'Show Database Configuration')
+                    menuitem(controller: 'appAccessToken', action: 'list', label: 'Manage App Access Tokens')
 				}
 			}
 

grails-app/views/login/auth.gsp

@@ -52,11 +52,6 @@
 			</p>
 		</form>
 	</div>
-    <a class="twitter-timeline" data-dnt="true" href="https://twitter.com/search?q=openlabframework" data-widget-id="463641420083904512">Tweets</a>
-    <script>!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0],p=/^http:/.test(d.location)?'http':'https';if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src=p+"://platform.twitter.com/widgets.js";fjs.parentNode.insertBefore(js,fjs);}}(document,"script","twitter-wjs");</script>
-
-
-
 
 </div>
 <script type='text/javascript'>