similar to: Securing the Model

Hi all, I am mocking the following Rails view (inside a partial): <%= render :partial => "forums/forum", :collection => forum_category.forums.readable_by(current_user? ? current_user : nil) %> My spec fails with the following message: 1) ActionView::TemplateError in ''forum_categories/index (anonymous user) should only render forums accessible to anonymous

Linux has just raised the NGROUPS_MAX limit from 32 to 64k. In doing an audit of various tools, openssh turned up as having incorrect groups handling. Almost no user-space apps really care about NGROUPS_MAX. A proposed patch (untested, since the CVS build won't compile on my RH box.. :-/) : What think? Index: uidswap.c ===================================================================

Hello there, I am encountering segfaults with following: ruby 1.8.6 (2008-08-11) [i386-mswin32] on windows 7, rails 2.3.2, mysql (2.7.1) gem and MySQL 5.0.87-community-nt-log Tried with MySQL 5.1 and mysql gem 2.8.1 with no luck. Loga are showing: C:\Users\Alex\Documents\IT\ruote-web2>ruby script\server --port=3333 => Booting Mongrel => Rails 2.3.2 application starting on

Any plans for using Atom with rails. I saw the "Typo" project is using MoveableType, Blogger, ... but not Atom. It seems Atom is not part of ActionWebService. Has anyone done any work with Atom and Rails ? Thanks for your answers, Gaspard

Say your app responds to : store/show/3 and caching is enable at the store controller level. A route says : map.connect ''store/:action/:id'', :controller => ''store'' All the following urls will be processed and cached (the cache filling with ''page not found'' messages) ! store/foo/bar store/show/090934298234897342

so i am trying to save to a join table in a habtm relationship, but i am having problems. from my view, i pass in a group id with: = link_to "Create New User", new_user_url(:group => 1) User model (user.rb) class User < ActiveRecord::Base has_and_belongs_to_many :user_groups accepts_nested_attributes_for :user_groups end UserGroups model (user_groups.rb) class UserGroup <

I the following three models which all have has_and_belongs_to_many # User <-> UserGroup <-> Permissions class UserGroup < ActiveRecord::Base has_and_belongs_to_many :users, :join_table => "user_usergroup_join" has_and_belongs_to_many :permissions, :join_table => "usergroup_permission_join", :uniq => true end I can do this: permissions =

Ok, for those running NeXT and other platforms with broken/missing _POSIX_SAVED_ID please try this patch, and anyone that has spent any amount of time dealing with this problem. I believe it's right. BTW, this patch is no where near as big as it looks. The patch was done against an earily version of the tree which had an issue with white space. - Ben --- ../openssh/uidswap.c Sun Apr 22

Hi I have 3 tables as 1) user_groups id | contact_id | group_id | group_user_type_id 2) contact id | name_first | name_last | 3)contact_email_addresses contact_id | contact_email_address_type_id | emailaddress Now I have group_id sa for example 68 What I want is from contact_email_addresses table get all the emailaddress with contact_email_address_type_id=2 for the contacts

Hi, I'm a developer of a static analysis tool canalyze. Recently I applied it to Openssh-6.2p1. It seems some reports are real after by manually checking: 1. Use undefined value file: dispatch.c function: dispatch_run At line 93: type = packet_read_poll_seqnr(&seqnr); seqnr may not be override at file: packet.c function: packet_read_poll_seqnr line 1442 where compat20 is 0. 2. Null

Fixes a potential (but probably rather unlikely) use after free bug in function temporarily_use_uid(), file uidswap.c. --- a/uidswap.c +++ b/uidswap.c @@ -113,8 +113,9 @@ temporarily_use_uid(struct passwd *pw) } } /* Set the effective uid to the given (unprivileged) uid. */ - if (setgroups(user_groupslen, user_groups) < 0) -

Currently openssh (3.4p1) relies on the NGROUPS_MAX define. This makes the number of allowed simultaneous (per-user) secondary groups a compile-time decision. $ find . -name \*.c | xargs grep NGROUPS_MAX ./groupaccess.c:static char *groups_byname[NGROUPS_MAX + 1]; /* +1 for base/primary group */ ./groupaccess.c: gid_t groups_bygid[NGROUPS_MAX + 1]; ./uidswap.c:static gid_t

Hello, is it possible to setup a model/table schema like this: Groupable --> Membership <-- Group ^ ^ | | User UserGroup I tried the following but failed: Groupable (table with ''type'' column) has_many :memberships, :as => :groupable has_many :groups, :through => :memberships

Lets say I have 3 models, user, user_group and user_group_nodes. A normal user has one user_group_id as a foreign key and a special user has multiple user_groups which are defined in the user_group_nodes. The user_group_nodes is a "acts_as_list" for user and contains a list of group_ids. When I build a form to get user input and I want to save it, is there a way to validate the

Hello Porters, I've finally (thanks to Wendy Palm of Cray) ported OpenSSH to Dynix v4.4.4. I had to make sure that "UseLogin" was set to "no" in the sshd_config file. Also, here are the old-style contextual diffs (obtained with 'diff -c' on the Dynix box) of the two files I had to change: *** configure Sat Jun 16 17:09:50 2001 --- configure.new Mon Oct 8

Je trouverais enrichissant de pouvoir rencontrer quelques utilisateurs de RoR dans la r?gion pour ?changer des bonnes id?es, se faire des critiques sur les choses ? faire, ? ne pas faire, se donner quelques coups de main... Si vous habitez dans la r?gion et ?tes int?ress? par une telle proposition, merci de m''envoyer un email ? gaspard AROBASE teti POINT ch. Je me chargerai de

I am enclosing a context diff of the changes that I made to get openssh working on UWIN. UWIN is a UNIX operating system layer that runs on Win32 systems. For more information on UWIN go to http://www.research.att.com/sw/tools/uwin/. I also ran configure using -with-cppflags=-D_BSDCOMP=2. I don't know where that information would go with the source code. Let me know if you need more

Hi Jason ! Hmmm, this is good and bad news: Good: ruby hooks means I could use a single pass to parse textile customizations in zena instead of running two parsers: nice. Bad: I have just switched to ragel for QueryBuilder to parse pseudo sql and I fear your shortcomings (if that''s an english phrase). Could you describe more precisely what you are missing with ragel ? I''m

Hi Samba team and Maxence, > last week we updated three domain controllers (Sernet Samba) from 4.2 to > 4.7, typical upgrade path (4.3->4.4->4.5->4.6->4.7), everything was ok. > > The next day we got a mail from the Sernet team informing they fixed a > bug affecting the group memberships. > > https://bugzilla.samba.org/show_bug.cgi?id=13095 > > We've

Hello last week we updated three domain controllers (Sernet Samba) from 4.2 to 4.7, typical upgrade path (4.3->4.4->4.5->4.6->4.7), everything was ok. The next day we got a mail from the Sernet team informing they fixed a bug affecting the group memberships. https://bugzilla.samba.org/show_bug.cgi?id=13095 We've applied the update and few days after the update which should