WORK IN PROGRESS, but it already works !

Ruby on Rails plugin (gem) for managing repositories (files/folders/permissions).

RepositoryManager

This project is based on the need for a repository manager system for Collaide. A system for easily create/delete files and folders in a repository. For share these repositories easily with other object with a flexible and complete authorisations management.

Instead of creating my core repository manager system heavily dependent on our development, I'm trying to implement a generic and potent repository gem.

After looking for a good gem to use I noticed the lack of repository gems and flexibility in them. RepositoryManager tries to be the more flexible possible. Each instance (users, groups, etc..) can have it own repositories (with files and folders). It can manage them easily (edit, remove, add, etc) and share them with other instance.

This gem is my informatics project for the Master in University of Lausanne (CH).

Installation

Add to your Gemfile:

gem 'repository-manager'

Then run:

$ bundle update

Run install script:

$ rails g repository_manager:install

And don't forget to migrate your database:

$ rake db:migrate

Preparing your models

You can choose wich model can have repository.

In your model:

class User < ActiveRecord::Base
  has_repository
end

You are not limited to the User model. You can use RepositoryManager in any other model and use it in serveral different models. If you have Groups and Houses in your application and you want to exchange repositories as if they were the same, just add has_repository to each one and you will be able to share files/folders groups-groups, groups-users, users-groups and users-users. Of course, you can extend it for as many classes as you need.

Example:

class User < ActiveRecord::Base
  has_repository
end
class Group < ActiveRecord::Base
  has_repository
end

How to use RepositoryManager

How can I create/delete a repository (file or folder)

You just have to call the has_repository methods create_file, create_folder, or delete_repository.

# user1 wants to create a folder in his repository

# Create a root folder on the user1 repository (you can have how many roots as you want)
source_folder = user1.create_folder('Root folder')

# user1 own repository :
#   'Root folder'

# sourceFolder is the directory in wich user1 wants to create the folder 'The new folder'
name = 'The new folder'
the_folder = user1.create_folder(name, source_folder)

# user1 own repository :
#   'Root folder'
#     'The new folder'

# Now we want to add a file into the_folder 
# Note : user1 needs the ':can_create => true' permission in the folder : the_folder.
user1.create_file(params[:file], the_folder)
# OR
user1.create_file(File.open('somewhere'), the_folder)

# user1 own repository :
#   'Root folder'
#     'The new folder'
#        'file'

file2 = user1.create_file(params[:file2])

# user1 own repository :
#   'Root folder'
#     'The new folder'
#        'file'
#   'file2'

# Delete a repository
# Note : user1 needs the ':can_delete => true' permission in the folder : the_folder
user1.delete_repository(the_folder)

# user1 own repository :
#   'Root folder'
#   'file2'

user1.delete_repository(file2)

# user1 own repository :
#   'Root folder'

How can I share a repository (file/folder)

Now, user1 want to share his folder 'The new folder' with a Group object et another User object. You can use the has_repository method share(repository, to, options = nil).

# user1 wants to share the_folder with group1 and user2

items = []
# You can add other instance (who has_repository) in this array to share with more than one instance
item << group1
items << user2

share = user1.share(the_folder, items)


# If you want to customize your share options, you can do it like this:

# Default shares permisions are : {can_add: false, can_remove: false} 
share_permissions = {can_add: true, can_remove: true}
# Default reposiroty permissions are: {can_read: true, can_create: false, can_update: false, can_delete: false, can_share: false}
repo_permissions = {can_read: true, can_create: true, can_update: true, can_delete: true, can_share: true}

options = {share_permissions: share_permissions, repo_permissions: repo_permissions}

share = user1.share(the_folder, items, options)

share_permissions specifies if the item who receive the share can add or remove items in this share.

repo_permissions specifies what kind of permission do you give at this share. If all the params are false, the share is useless, because the items have no more permissions in the repository selectionned.

See the chapter Authorisations for more details.

How can I see my repository

There is two king of repository:

  • Your own repositories
  • The repositories shared with you.
# user1 want to get his own repository
user1.repositories.all # => You get the repository that user1 has created

# user2 want to get his shared repository
user2.shared_repositories.all

A repository can be:

  • A file
  • A folder
# We want to know if the object repository is a file or a folder:
if repository.type == 'Folder'
  repository.name #=> Returns the name of the folder ('New folder').
elsif repository.type == 'AppFile'
  repository.name #=> Returns the name of the file ('file.png').
  # Here is the file
  repository.file.url # => '/url/to/file.png'
  repository.file.current_path # => 'path/to/file.png'
  repository.file.identifier # => 'file.png'
end

How can I manage a share

If it has the authorisation, an object can add items to a share.

# user1 want to add items to his share (the actions are done only if user1 has the ':can_add' permission)
user1.can_add_to?(share) # => true

options = {can_add: true, can_remove: false}
# Add items
items = []
items << user3
items << group2
...
user1.add_items_to(share, items, options)

# Here user3 and group2 can add items in this share, but they can't remove an item.
group2.can_add_to?(share) # => true
group2.can_remove_from?(share) # => false

# If user2 add an item in the share, he can choose if the permission ':can_add' is true or false, but he can't put ':can_remove' to true (because he don't have this permission himself).

If it has the authorisation, an object can remove items from a share.

# user1 want to remove group2 from this share
user1.remove_items_from(share, group2)

As admin, you can directly work with the share. Be carefull, there is NO authorisation verification !

# Add an item to the share
share.add_items(item, share_permissions)

# Delete items from the share
share.remove_items(items)

Authorisations

Repository authorisations

The owner of a repository (file or folder) has all the authorisations on it. When he share this repository, he can choose what authorisation he gives to the share. The authorisations are :

  • can_read?(repository) : The item can read (=download) this file/folder.
  • can_create?(repository) : Can create in the repository (if repository is nil (= root), always true).
  • can_update?(repository) : Can update a repository.
  • can_delete?(repository) : Can delete a repository.
  • can_share?(repository) : Can share a repository.

To check if a user has one of this authorisation, you just have to write : user1.can_read?(repository), user1.can_share?(repository), etc (it returns true or false).

NOTICE : An object who can share a repository, can't set new permissions that it doesn't have. For instance, user3 has a share of repository1 with :can_delete => false and :can_share => true. He can share repository1 with user4, but he can't put :can_delete => true in this new share.

You can get all the authorisations with this method: user1.get_authorisations(repository)

# Returns false if the object has no authorisation in this repository
# Returns true if the object has all the authorisations
# Returns a Hash if the entity has custums authorisations 
#   Exemple
#     {can_read: true, can_create: true, can_update:true, can_delete:false, can_share: true}
# Returns true if the repository is nil (because an object has all authorisations on his root folder)
def get_authorisations(repository=nil)
    [...]
end

Share permissions

You can manage the permissions of an instance in a share. The owner of the share has all the permissions. The permissions are:

  • can_add_to?(share) : The item can add a new instance in this share.
  • can_remove_from?(share) : Can remove an instance from this share.

To check if the object can add or remove an instance in the share, just write : group1.can_add_to?(share) or group1.can_remove_from?(share) (it returns true or false).

Like the repository authorisations, you can get the share authorisations with : group1.get_share_authorisations(share).

TODO

  • Can dowload a file or a folder (auto zip the folder)
  • Snapshot the file if possible
  • Flexible configuration of authorised extensions
  • Versioning
  • ...

License

This project rocks and uses MIT-LICENSE.