Feature/front end deployment

.env

@@ -2,3 +2,5 @@ HOST=lvh.me:3000
 GMAIL_DOMAIN=gmail.com
 GMAIL_USERNAME=dontreply1357@gmail.com
 GMAIL_PASSWORD=13579rty
+AWS_SECRET_ACCESS_KEY=xbnXDiIvtqVAmoaFT5yYZWu4Wye/l+CvQt6Cp2bm
+AWS_ACCESS_KEY=AKIAIQ2MGPRTWCHJKK5A

Gemfile

@@ -16,11 +16,13 @@ gem 'coffee-rails', '~> 4.1.0'
 
 # Use apartment for multi-tenant databases
 gem 'apartment', '~> 1.0.1'
+gem 'apartment-sidekiq', '~> 0.2.0'
 
 #bootstrap CSS
 #gem 'bootstrap-sass'
 # Devise is a flexible authentication solution for Rails based on Warden
 gem 'devise', '~> 3.5.1'
+gem 'devise-async', '~>0.10.1'
 
 # simple authorization solution for Rails which is decoupled from user roles
 gem 'cancancan', '~> 1.12.0'
@@ -36,6 +38,11 @@ gem 'sdoc', '~> 0.4.0', group: :doc
 
 gem 'slim-rails', '~> 3.0.1'
 
+# Simple, efficient background processing
+gem 'sidekiq', '~> 3.4.2'
+# For Sidekiq monitor
+gem 'sinatra', '~> 1.4.6'
+
 # Use ActiveModel has_secure_password
 # gem 'bcrypt', '~> 3.1.7'
 
@@ -48,6 +55,9 @@ gem 'unicorn', '~> 4.9.0'
 # Shim to load environment variables from .env into ENV in development.
 gem 'dotenv-rails', '~> 2.0.2', :groups => [:development, :test]
 
+# Official Amazon AWS SDK
+gem 'aws-sdk', '~> 2.1.7'
+
 group :development, :test do
   # Call 'byebug' anywhere in the code to stop execution and get a debugger console
   gem 'byebug'
@@ -64,11 +74,13 @@ group :test do
   gem 'capybara', '~> 2.4.4'
   gem 'database_cleaner', '~> 1.4.1'
   gem 'rspec-rails', '~> 3.2.3'
+  gem 'rspec-its', '~> 1.2.0'
   gem 'factory_girl', '~> 4.5.0'
   gem 'rspec-expectations', '~> 3.2.1'
   gem 'factory_girl_rails', '~> 4.0'
   gem 'shoulda-matchers', '~> 2.8.0'
   gem 'faker', '~> 1.4.3'
+  gem 'rspec-activejob', '~> 0.4.1'
 end
 
 # Deployment

Gemfile.lock

@@ -36,10 +36,19 @@ GEM
       minitest (~> 5.1)
       thread_safe (~> 0.3, >= 0.3.4)
       tzinfo (~> 1.1)
-    apartment (1.0.1)
+    apartment (1.0.2)
       activerecord (>= 3.1.2, < 5.0)
       rack (>= 1.3.6)
-    arel (6.0.0)
+    apartment-sidekiq (0.2.0)
+      apartment (~> 1.0)
+      sidekiq (>= 2.11)
+    arel (6.0.2)
+    aws-sdk (2.1.8)
+      aws-sdk-resources (= 2.1.8)
+    aws-sdk-core (2.1.8)
+      jmespath (~> 1.0)
+    aws-sdk-resources (2.1.8)
+      aws-sdk-core (= 2.1.8)
     bcrypt (3.1.10)
     binding_of_caller (0.7.2)
       debug_inspector (>= 0.0.1)
@@ -83,7 +92,7 @@ GEM
     colorize (0.7.7)
     columnize (0.9.0)
     connection_pool (2.2.0)
-    cucumber (1.3.19)
+    cucumber (1.3.20)
       builder (>= 2.1.2)
       diff-lcs (>= 1.1.3)
       gherkin (~> 2.12)
@@ -104,6 +113,8 @@ GEM
       responders
       thread_safe (~> 0.1)
       warden (~> 1.2.3)
+    devise-async (0.10.1)
+      devise (~> 3.2)
     diff-lcs (1.2.5)
     dotenv (2.0.2)
     dotenv-rails (2.0.2)
@@ -124,10 +135,12 @@ GEM
       activesupport (>= 4.1.0)
     hitimes (1.2.2)
     i18n (0.7.0)
-    jbuilder (2.3.0)
+    jbuilder (2.3.1)
       activesupport (>= 3.0.0, < 5)
       multi_json (~> 1.2)
-    jquery-rails (4.0.3)
+    jmespath (1.0.2)
+      multi_json (~> 1.0)
+    jquery-rails (4.0.4)
       rails-dom-testing (~> 1.0)
       railties (>= 4.2.0)
       thor (>= 0.14, < 2.0)
@@ -140,7 +153,7 @@ GEM
     mime-types (2.6.1)
     mini_portile (0.6.2)
     minitest (5.7.0)
-    multi_json (1.11.1)
+    multi_json (1.11.2)
     multi_test (0.1.2)
     net-scp (1.2.1)
       net-ssh (>= 2.6.5)
@@ -149,7 +162,9 @@ GEM
       mini_portile (~> 0.6.0)
     orm_adapter (0.5.0)
     pg (0.18.2)
-    rack (1.6.1)
+    rack (1.6.4)
+    rack-protection (1.5.3)
+      rack
     rack-test (0.6.3)
       rack (>= 1.0)
     rails (4.2.1)
@@ -184,11 +199,17 @@ GEM
       redis (~> 3.0, >= 3.0.4)
     responders (2.1.0)
       railties (>= 4.2.0, < 5)
+    rspec-activejob (0.4.1)
+      activejob (>= 4.2)
+      rspec-mocks
     rspec-core (3.2.3)
       rspec-support (~> 3.2.0)
     rspec-expectations (3.2.1)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.2.0)
+    rspec-its (1.2.0)
+      rspec-core (>= 3.0.0)
+      rspec-expectations (>= 3.0.0)
     rspec-mocks (3.2.1)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.2.0)
@@ -201,8 +222,8 @@ GEM
       rspec-mocks (~> 3.2.0)
       rspec-support (~> 3.2.0)
     rspec-support (3.2.2)
-    sass (3.4.14)
-    sass-rails (5.0.2)
+    sass (3.4.16)
+    sass-rails (5.0.3)
       railties (>= 4.0.0, < 5.0)
       sass (~> 3.1)
       sprockets (>= 2.8, < 4.0)
@@ -219,6 +240,10 @@ GEM
       json (~> 1.0)
       redis (~> 3.2, >= 3.2.1)
       redis-namespace (~> 1.5, >= 1.5.2)
+    sinatra (1.4.6)
+      rack (~> 1.4)
+      rack-protection (~> 1.4)
+      tilt (>= 1.3, < 3)
     slim (3.0.6)
       temple (~> 0.7.3)
       tilt (>= 1.3.3, < 2.1)
@@ -231,7 +256,7 @@ GEM
     spring (1.3.6)
     sprockets (3.2.0)
       rack (~> 1.0)
-    sprockets-rails (2.3.1)
+    sprockets-rails (2.3.2)
       actionpack (>= 3.0)
       activesupport (>= 3.0)
       sprockets (>= 2.8, < 4.0)
@@ -258,7 +283,7 @@ GEM
       raindrops (~> 0.7)
     warden (1.2.3)
       rack (>= 1.0)
-    web-console (2.1.2)
+    web-console (2.2.1)
       activemodel (>= 4.0)
       binding_of_caller (>= 0.7.2)
       railties (>= 4.0)
@@ -271,6 +296,8 @@ PLATFORMS
 
 DEPENDENCIES
   apartment (~> 1.0.1)
+  apartment-sidekiq (~> 0.2.0)
+  aws-sdk (~> 2.1.7)
   byebug
   cancancan (~> 1.12.0)
   capistrano (~> 3.4.0)
@@ -284,6 +311,7 @@ DEPENDENCIES
   cucumber-rails (~> 1.4.2)
   database_cleaner (~> 1.4.1)
   devise (~> 3.5.1)
+  devise-async (~> 0.10.1)
   dotenv-rails (~> 2.0.2)
   factory_girl (~> 4.5.0)
   factory_girl_rails (~> 4.0)
@@ -292,14 +320,21 @@ DEPENDENCIES
   jquery-rails
   pg (~> 0.18.2)
   rails (= 4.2.1)
+  rspec-activejob (~> 0.4.1)
   rspec-expectations (~> 3.2.1)
+  rspec-its (~> 1.2.0)
   rspec-rails (~> 3.2.3)
   sass-rails (~> 5.0)
   sdoc (~> 0.4.0)
   shoulda-matchers (~> 2.8.0)
+  sidekiq (~> 3.4.2)
+  sinatra (~> 1.4.6)
   slim-rails (~> 3.0.1)
   spring
   turbolinks
   uglifier (>= 1.3.0)
   unicorn (~> 4.9.0)
   web-console (~> 2.0)
+
+BUNDLED WITH
+   1.10.3

app/controllers/application_controller.rb

@@ -2,8 +2,16 @@ class ApplicationController < ActionController::Base
   # Prevent CSRF attacks by raising an exception.
   # For APIs, you may want to use :null_session instead.
   protect_from_forgery with: :exception
-  rescue_from CanCan::AccessDenied do
-    redirect_to root_path
+  rescue_from CanCan::AccessDenied do |exception|
+    redirect_to root_path,  alert: exception.message
   end
 
+  protected
+
+  # Helper method used in layout to render model errors, should be overriden in controllers
+  def errors
+    {}
+  end
+  helper_method :errors
+
 end

app/controllers/themes_controller.rb

@@ -0,0 +1,30 @@
+class ThemesController < ApplicationController
+  before_action :authenticate_user!
+  load_and_authorize_resource
+
+  # GET#index
+  def index
+    @themes = Theme.all
+  end
+
+  # GET#create_completed redirect from AWS
+  def create_completed
+    key = params.require(:key)
+    theme_file_name = key.sub(/[^_]*_/, '') # theme zip file name (theme name) is located after the first _ (underscore)
+    theme_name =  File.basename theme_file_name, File.extname(theme_file_name)
+    theme = Theme.new name: theme_name, zip_file_url: key, status: :processing
+    redirect_to action: (theme.save ? 'index' : 'new')
+    if theme.errors.blank?
+      flash.notice = "Theme '#{theme_name}' uploaded successfully"
+    else
+      flash.alert = theme.errors.full_messages
+    end
+  end
+
+  # DELETE#destroy
+  def destroy
+    @theme.destroy
+    flash.notice = "Theme '#{@theme.name}' successfully deleted"
+    redirect_to themes_path
+  end
+end

app/helpers/themes_helper.rb

@@ -0,0 +1,32 @@
+module ThemesHelper
+  UPLOADS_FOLDER = 'uploads/'
+
+  def theme_upload_params
+    return @theme_upload_params if @theme_upload_params
+
+    bucket_name = Rails.application.config.aws_public_bucket_name
+    redirect_url = request.protocol + request.host_with_port + '/themes/create_completed'
+
+    @theme_upload_params = { form_action: "https://#{bucket_name}.s3.amazonaws.com/",
+                             form_method: 'post',
+                             form_enclosure_type: 'multipart/form-data',
+                             acl: 'private',
+                             redirect_url: redirect_url,
+                             file_id: "#{UPLOADS_FOLDER}#{SecureRandom.uuid}_${filename}",
+                             access_key: Rails.application.config.aws_access_key }
+
+    conditions = [[:eq, :$bucket, bucket_name],
+                  [:eq, :$acl, :private],
+                  [:"content-length-range", 1, Rails.application.config.aws_max_theme_zip_file_length],
+                  [:"starts-with", :$key, UPLOADS_FOLDER],
+                  [:eq, :$success_action_redirect, redirect_url]]
+    policy = { conditions: conditions, expiration: (Time.now + 10.hours).utc.iso8601 }
+    policy = Base64.strict_encode64(policy.to_json)
+
+    @theme_upload_params.merge! policy: policy
+    @theme_upload_params.merge! signature:
+                                Base64.strict_encode64(OpenSSL::HMAC.digest(OpenSSL::Digest.new('sha1'),
+                                                                            Rails.application.config.aws_secret_access_key,
+                                                                            policy))
+  end
+end

app/jobs/delete_theme_job.rb

@@ -0,0 +1,11 @@
+class DeleteThemeJob < ActiveJob::Base
+  queue_as :low_priority
+
+  rescue_from(Aws::S3::Errors::RequestTimeout) do
+    retry_job wait: 5.minutes, queue: :low_priority
+  end
+
+  def perform(zip_file_url, is_public_bucket)
+    AmazonAwsClient.try (is_public_bucket ? :delete_from_public_bucket : :delete_from_private_bucket), zip_file_url
+  end
+end

app/jobs/transfer_theme_job.rb

@@ -0,0 +1,12 @@
+class TransferThemeJob < ActiveJob::Base
+  queue_as :default
+
+  rescue_from(Aws::S3::Errors::RequestTimeout) do
+    retry_job wait: 5.minutes, queue: :default
+  end
+
+  def perform(theme)
+    AmazonAwsClient.transfer_from_public_to_private_bucket theme.zip_file_url
+    theme.update! status: :uploaded
+  end
+end

app/libs/amazon_aws_client.rb

@@ -0,0 +1,28 @@
+module AmazonAwsClient
+  def self.client
+    credentials = Aws::Credentials.new Rails.application.config.aws_access_key, Rails.application.config.aws_secret_access_key
+    Aws::S3::Client.new region: Rails.application.config.aws_region, credentials: credentials
+  end
+
+  def self.transfer_from_public_to_private_bucket key
+    client = self.client
+    client.copy_object(bucket: Rails.application.config.aws_private_bucket_name,
+                       key: key,
+                       copy_source: Rails.application.config.aws_public_bucket_name + '/' + key)
+    client.delete_object bucket: Rails.application.config.aws_public_bucket_name, key: key
+  end
+
+  def self.delete_from_public_bucket key
+    self.delete_from_bucket Rails.application.config.aws_public_bucket_name, key
+  end
+
+  def self.delete_from_private_bucket key
+    self.delete_from_bucket Rails.application.config.aws_private_bucket_name, key
+  end
+
+  private
+
+  def self.delete_from_bucket bucket, key
+    self.client.delete_object bucket: bucket, key: key
+  end
+end

app/models/ability.rb

@@ -10,5 +10,9 @@ def initialize(user)
     can :destroy, User if user.role.can_delete_users?
     can :update_users_role, User if user.role.can_update_users_role?
     can :update_users_password, User if user.role.can_update_users_password?
+    can :read, Theme if user.role.can_create_themes? || user.role.can_delete_themes?
+    can :create, Theme if user.role.can_create_themes?
+    can :create_completed, Theme if user.role.can_create_themes?
+    can :destroy, Theme if user.role.can_delete_themes?
   end
 end