7 | Site:
8 | Twitter:
9 | Location:
10 |
11 | /* THANKS */
12 | Daniel Kehoe (@rails_apps) for the RailsApps project
13 |
14 | /* SITE */
15 | Standards: HTML5, CSS3
16 | Components: jQuery
17 | Software: Ruby on Rails
18 |
19 | /* GENERATED BY */
20 | RailsApps application template: http://railsapps.github.io/
21 |
--------------------------------------------------------------------------------
/test/fixtures/users.yml:
--------------------------------------------------------------------------------
1 | # Read about fixtures at http://api.rubyonrails.org/classes/ActiveRecord/FixtureSet.html
2 |
3 | # This model initially had no columns defined. If you add columns to the
4 | # model remove the '{}' from the fixture names and add the columns immediately
5 | # below each fixture, per the syntax in the comments below
6 | #
7 | one:
8 | id: 1
9 | name: test1
10 | email: test1@test.com
11 | two:
12 | id: 2
13 | name: test2
14 | email: test2@test.com
15 |
--------------------------------------------------------------------------------
/app/views/layouts/_navigation_links2.html.erb:
--------------------------------------------------------------------------------
1 | <% if user_signed_in? %>
2 |
5 | <%= link_to '', edit_user_registration_path, :class => 'navbar-brand glyphicon glyphicon-cog', :data => {:toggle=>"tooltip"}, :title => "Edit Account" %>
6 | Logged in as: <%= current_user.name %>
7 | <%= button_to 'Logout', destroy_user_session_path, :method=>'delete', :class => 'btn btn-default navbar-btn' %>
8 | <% else %>
9 | <% end %>
--------------------------------------------------------------------------------
/app/views/admin/users/show.html.erb:
--------------------------------------------------------------------------------
1 | <%= t("activerecord.attributes.user.email", :default => t("activerecord.labels.email", :default => "Email")) %>:
2 | <%= @user.email %>
3 |
4 |
5 | <%= link_to "Back", admin_users_path, :class => 'btn' %>
6 | <%= link_to "Edit", edit_admin_user_path(@user), :class => 'btn' %>
7 | <%= link_to "Delete", admin_user_path(@user), :method => "delete", :confirm => "#{t("web-app-theme.confirm", :default => "Are you sure?")}", :class => 'btn' %>
8 |
--------------------------------------------------------------------------------
/app/views/samples/new_yara.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
Compose Yara Signature
3 | <%= form_tag("addrule", method: "post") do %>
4 | <%= label_tag(:q, '') %>
5 |
6 |
Rule Name: <%= text_field_tag(:rule_name, '') %>.yar
7 |
8 |
Rule Content
9 |
10 | <%= text_area_tag(:rule_body, '', size: "100x15") %>
11 |
12 |
13 | <%= submit_tag("Save", class: "btn btn-primary") %>
14 |
15 | <% end %>
16 |
5 |
6 |
7 | Value
8 | Type
9 | Tags
10 | Created
11 |
13 |
14 |
15 | <%- @results.all.each do |i| %>
16 |
17 | <%= i.value %>
18 | <%= i.kind %>
19 | <%= i.tag_list %>
20 | <%= i.created_at %>
21 | <%= link_to '', search_delete_iocs_path(:ioc => i.id), :class => 'btn btn-danger glyphicon glyphicon-remove'%>
22 |
23 | <% end %>
24 |
25 |
26 |
--------------------------------------------------------------------------------
/config/sqlite_database.yml:
--------------------------------------------------------------------------------
1 | # SQLite version 3.x
2 | # gem install sqlite3
3 | #
4 | # Ensure the SQLite 3 gem is defined in your Gemfile
5 | # gem 'sqlite3'
6 |
7 | development:
8 | adapter: sqlite3
9 | database: db/development.sqlite3
10 | pool: 5
11 | timeout: 5000
12 |
13 | # Warning: The database defined as "test" will be erased and
14 | # re-generated from your development database when you run "rake".
15 | # Do not set this db to the same as development or production.
16 | test:
17 | adapter: sqlite3
18 | database: db/test.sqlite3
19 | pool: 5
20 | timeout: 5000
21 |
22 | production:
23 | adapter: sqlite3
24 | database: db/development.sqlite3
25 | pool: 5
26 | timeout: 5000
27 |
--------------------------------------------------------------------------------
/db/migrate/20171018201141_change_collation_for_tag_names.acts_as_taggable_on_engine.rb:
--------------------------------------------------------------------------------
1 | # This migration comes from acts_as_taggable_on_engine (originally 5)
2 | # This migration is added to circumvent issue #623 and have special characters
3 | # work properly
4 | if ActiveRecord.gem_version >= Gem::Version.new('5.0')
5 | class ChangeCollationForTagNames < ActiveRecord::Migration[4.2]; end
6 | else
7 | class ChangeCollationForTagNames < ActiveRecord::Migration[4.2]; end
8 | end
9 | ChangeCollationForTagNames.class_eval do
10 | def up
11 | if ActsAsTaggableOn::Utils.using_mysql?
12 | execute("ALTER TABLE tags MODIFY name varchar(255) CHARACTER SET utf8 COLLATE utf8_bin;")
13 | end
14 | end
15 | end
16 |
--------------------------------------------------------------------------------
/app/models/sample.rb:
--------------------------------------------------------------------------------
1 | class Sample < ActiveRecord::Base
2 | include ActionView::Helpers::TextHelper
3 |
4 | has_attached_file :malz,
5 | :url => "/assets/malware/:basename.:extension",
6 | :path => ":rails_root/app/assets/malware/:basename.:extension"
7 |
8 | validates_attachment :malz,
9 | :content_type => { :content_type => /^.*/ }
10 | validates_attachment_size :malz, :less_than => 10.megabytes
11 | # Allow tagging
12 | acts_as_taggable
13 |
14 | def samples
15 | render partial 'samples'
16 | end
17 |
18 | def signatures
19 | render partial 'signatures'
20 | end
21 |
22 | def upload
23 | render partial 'upload'
24 | end
25 | end
26 |
--------------------------------------------------------------------------------
/config/initializers/inflections.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # Add new inflection rules using the following format. Inflections
4 | # are locale specific, and you may define rules for as many different
5 | # locales as you wish. All of these examples are active by default:
6 | # ActiveSupport::Inflector.inflections(:en) do |inflect|
7 | # inflect.plural /^(ox)$/i, '\1en'
8 | # inflect.singular /^(ox)en/i, '\1'
9 | # inflect.irregular 'person', 'people'
10 | # inflect.uncountable %w( fish sheep )
11 | # end
12 |
13 | # These inflection rules are supported but not enabled by default:
14 | # ActiveSupport::Inflector.inflections(:en) do |inflect|
15 | # inflect.acronym 'RESTful'
16 | # end
17 |
--------------------------------------------------------------------------------
/config/locales/en.yml:
--------------------------------------------------------------------------------
1 | # Files in the config/locales directory are used for internationalization
2 | # and are automatically loaded by Rails. If you want to use locales other
3 | # than English, add the necessary files in this directory.
4 | #
5 | # To use the locales, use `I18n.t`:
6 | #
7 | # I18n.t 'hello'
8 | #
9 | # In views, this is aliased to just `t`:
10 | #
11 | # <%= t('hello') %>
12 | #
13 | # To use a different locale, set it with `I18n.locale`:
14 | #
15 | # I18n.locale = :es
16 | #
17 | # This would use the information in config/locales/es.yml.
18 | #
19 | # To learn more, please read the Rails Internationalization guide
20 | # available at http://guides.rubyonrails.org/i18n.html.
21 |
22 | en:
23 | hello: "Hello world"
24 |
--------------------------------------------------------------------------------
/app/toolbox/virustotal.rb:
--------------------------------------------------------------------------------
1 | # VirusTotal module
2 |
3 | require 'json'
4 | require 'rest-client'
5 |
6 | class VirusTotal
7 | def vtquery(hash)
8 | apikey = File.open('app/assets/api.key', 'rb').read
9 |
10 | begin
11 | vtrequest = RestClient.post "https://www.virustotal.com/vtapi/v2/file/report", :resource => "#{hash}", :apikey => "#{apikey}"
12 | end
13 |
14 | results = JSON.parse(vtrequest.body)
15 | vt_link = results["permalink"]
16 |
17 | if vt_link.nil?
18 | vt_status = "N/A"
19 | else
20 | total = results["total"]
21 | detected = results["positives"]
22 | detect_ratio = "#{detected}/#{total}"
23 | vt_status = detect_ratio
24 | end
25 |
26 | return vt_status
27 | end
28 | end
--------------------------------------------------------------------------------
/app/controllers/registrations_controller.rb:
--------------------------------------------------------------------------------
1 | class RegistrationsController < Devise::RegistrationsController
2 |
3 | def new
4 | flash[:info] = 'Registrations are not open yet, but please check back soon'
5 | redirect_to root_path
6 | end
7 |
8 | def create
9 | flash[:info] = 'Registrations are not open yet, but please check back soon'
10 | redirect_to root_path
11 | end
12 |
13 | before_action :update_sanitized_params, if: :devise_controller?
14 |
15 | def update_sanitized_params
16 | devise_parameter_sanitizer.for(:sign_up) {|u| u.permit(:name, :email, :password, :password_confirmation)}
17 | devise_parameter_sanitizer.for(:account_update) {|u| u.permit(:name, :email, :password, :password_confirmation, :current_password)}
18 | end
19 |
20 | end
21 |
--------------------------------------------------------------------------------
/app/assets/javascripts/tree.js:
--------------------------------------------------------------------------------
1 | $(function () {
2 | $('.tree li:has(ul)').addClass('parent_li').find(' > span').attr('title', 'Collapse this branch');
3 | $('.tree li.parent_li > span').on('click', function (e) {
4 | var children = $(this).parent('li.parent_li').find(' > ul > li');
5 | if (children.is(":visible")) {
6 | children.hide('fast');
7 | $(this).attr('title', 'Expand this branch').find(' > i').addClass('icon-plus-sign').removeClass('glyphicon glyphicon-minus-sign');
8 | } else {
9 | children.show('fast');
10 | $(this).attr('title', 'Collapse this branch').find(' > i').addClass('glyphicon glyphicon-minus-sign').removeClass('icon-plus-sign');
11 | }
12 | e.stopPropagation();
13 | });
14 | });
15 |
--------------------------------------------------------------------------------
/db/migrate/20150124050226_add_missing_unique_indices.acts_as_taggable_on_engine.rb:
--------------------------------------------------------------------------------
1 | # This migration comes from acts_as_taggable_on_engine (originally 2)
2 | class AddMissingUniqueIndices < ActiveRecord::Migration[4.2]
3 | def self.up
4 | add_index :tags, :name, unique: true
5 |
6 | remove_index :taggings, :tag_id
7 | remove_index :taggings, [:taggable_id, :taggable_type, :context]
8 | add_index :taggings,
9 | [:tag_id, :taggable_id, :taggable_type, :context, :tagger_id, :tagger_type],
10 | unique: true, name: 'taggings_idx'
11 | end
12 |
13 | def self.down
14 | remove_index :tags, :name
15 |
16 | remove_index :taggings, name: 'taggings_idx'
17 | add_index :taggings, :tag_id
18 | add_index :taggings, [:taggable_id, :taggable_type, :context]
19 | end
20 | end
21 |
--------------------------------------------------------------------------------
/config/locales/simple_form.en.yml:
--------------------------------------------------------------------------------
1 | en:
2 | simple_form:
3 | "yes": 'Yes'
4 | "no": 'No'
5 | required:
6 | text: 'required'
7 | mark: '*'
8 | # You can uncomment the line below if you need to overwrite the whole required html.
9 | # When using html, text and mark won't be used.
10 | # html: '* '
11 | error_notification:
12 | default_message: "Please review the problems below:"
13 | # Labels and hints examples
14 | # labels:
15 | # defaults:
16 | # password: 'Password'
17 | # user:
18 | # new:
19 | # email: 'E-mail to sign in.'
20 | # edit:
21 | # email: 'E-mail.'
22 | # hints:
23 | # defaults:
24 | # username: 'User name to sign in.'
25 | # password: 'No special characters, please.'
26 |
27 |
--------------------------------------------------------------------------------
/app/assets/stylesheets/application.css.scss:
--------------------------------------------------------------------------------
1 | /*
2 | * This is a manifest file that'll be compiled into application.css, which will include all the files
3 | * listed below.
4 | *
5 | * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
6 | * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
7 | *
8 | * You're free to add application-wide styles to this file and they'll appear at the bottom of the
9 | * compiled file so the styles you add here take precedence over styles defined in any styles
10 | * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
11 | * file per style scope.
12 | *
13 | *= require_tree .
14 | *= require_self
15 | *= require jquery-ui/core
16 | *= require jquery-ui/theme
17 | *= require dataTables/src/demo_table_jui
18 | */
19 |
--------------------------------------------------------------------------------
/app/assets/javascripts/application.js:
--------------------------------------------------------------------------------
1 | // This is a manifest file that'll be compiled into application.js, which will include all the files
2 | // listed below.
3 | //
4 | // Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
5 | // or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
6 | //
7 | // It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
8 | // compiled file.
9 | //
10 | // Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
11 | // about supported directives.
12 | //
13 | //= require jquery
14 | //= require jquery_ujs
15 | //= require dataTables/jquery.dataTables
16 | //= require dataTables/bootstrap/3/jquery.dataTables.bootstrap
17 | //= require tree.js
18 | //= require tagCanvas.js
19 | //= require turbolinks
20 | //= require bootstrap
21 | //= require_tree .
22 |
--------------------------------------------------------------------------------
/app/views/devise/registrations/new.html.erb:
--------------------------------------------------------------------------------
1 |
24 |
--------------------------------------------------------------------------------
/app/views/layouts/application.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | <%= content_for?(:title) ? yield(:title) : "Malstrom" %>
6 | <%= favicon_link_tag 'favicon.ico' %>
7 |
14 | <%= render 'layouts/navigation' %>
15 |
16 |
17 | <%= render 'layouts/messages' %>
18 | <%= yield %>
19 | <% flash.each do |name, msg| %>
20 | <%= content_tag :div, msg, :id => "flash_#{name}" if msg.is_a?(String) %>
21 | <% end %>
22 |
23 |
24 |
25 |
--------------------------------------------------------------------------------
/app/controllers/search_controller.rb:
--------------------------------------------------------------------------------
1 | class SearchController < ApplicationController
2 | before_action :authenticate_user!
3 |
4 | def indicators
5 | end
6 |
7 | def index
8 | # IOC search page handler
9 | if params[:search][0].to_s.length < 1
10 | redirect_to search_indicators_path
11 | else
12 | query = params[:search][0]
13 | @result = search(query)
14 | end
15 | end
16 |
17 | def search(search)
18 | # search function
19 | @results = Element.where("value like ?", "%#{search}%").page params[:page]
20 | if @results.blank?
21 | redirect_to search_indicators_path, :alert => "No results"
22 | end
23 | end
24 |
25 | def delete_iocs
26 | # function to remove IOCs from the db
27 | data = params[:ioc]
28 | ioc = Element.find_by(:id => data)
29 | begin
30 | ioc.destroy
31 | rescue
32 | redirect_to :back, :alert => "Error: IOC was not deleted!"
33 | end
34 | redirect_to :back, :notice => "IOC successfully deleted!"
35 | end
36 | end
37 |
--------------------------------------------------------------------------------
/app/views/admin/users/index.html.erb:
--------------------------------------------------------------------------------
1 | Users
2 |
3 |
4 |
5 | ID
6 |
7 | <%= t("activerecord.attributes.user.email", :default => t("activerecord.labels.email", :default => "Email")) %>
8 |
9 | Created at
10 | Actions
11 |
12 |
13 |
14 | <% @users.each do |user| -%>
15 |
16 | <%= user.id %>
17 | <%= link_to user.email, admin_user_path(user) %>
18 |
19 | <%= user.created_at %>
20 |
21 | <%= link_to "Show", admin_user_path(user) %>
22 | <%= link_to "Edit", edit_admin_user_path(user) %>
23 | <%= link_to "Destroy", admin_user_path(user), :method => :delete, :confirm => "#{t("web-app-theme.confirm", :default => "Are you sure?")}" %>
24 |
25 |
26 | <% end -%>
27 |
28 |
29 |
30 | <%= link_to "New", new_admin_user_path, :class => 'btn btn-primary' %>
--------------------------------------------------------------------------------
/app/views/feeds/new_feed.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | Add Feed
6 |
7 | Feed Builder
8 |
10 |
11 |
12 |
29 |
30 |
--------------------------------------------------------------------------------
/db/migrate/20150124050225_acts_as_taggable_on_migration.acts_as_taggable_on_engine.rb:
--------------------------------------------------------------------------------
1 | # This migration comes from acts_as_taggable_on_engine (originally 1)
2 | class ActsAsTaggableOnMigration < ActiveRecord::Migration[4.2]
3 | def self.up
4 | create_table :tags do |t|
5 | t.string :name
6 | end
7 |
8 | create_table :taggings do |t|
9 | t.references :tag
10 |
11 | # You should make sure that the column created is
12 | # long enough to store the required class names.
13 | t.references :taggable, polymorphic: true
14 | t.references :tagger, polymorphic: true
15 |
16 | # Limit is created to prevent MySQL error on index
17 | # length for MyISAM table type: http://bit.ly/vgW2Ql
18 | t.string :context, limit: 128
19 |
20 | t.datetime :created_at
21 | end
22 |
23 | add_index :taggings, :tag_id
24 | add_index :taggings, [:taggable_id, :taggable_type, :context]
25 | end
26 |
27 | def self.down
28 | drop_table :taggings
29 | drop_table :tags
30 | end
31 | end
32 |
--------------------------------------------------------------------------------
/Gemfile:
--------------------------------------------------------------------------------
1 | source 'https://rubygems.org'
2 | ruby '2.4.2'
3 |
4 | gem 'rails'
5 | gem 'rake'
6 | gem 'pg'
7 | #gem 'sqlite3'
8 | gem 'delayed_job_active_record'
9 | gem 'sass-rails'
10 | gem 'rails_12factor'
11 | gem 'uglifier'
12 | gem 'coffee-rails'
13 | gem 'jquery-rails'
14 | gem 'turbolinks'
15 | gem 'jbuilder', '~> 2.0'
16 | gem 'sdoc', '~> 0.4.0', group: :doc
17 | gem 'spring', group: :development
18 | gem 'bootstrap-sass'
19 | gem 'twitter-bootstrap-rails'
20 | gem 'devise'
21 | gem 'simple_form'
22 | gem 'paperclip', github: 'thoughtbot/paperclip'
23 | gem 'archive-zip'
24 | gem 'hex_string'
25 | gem 'metasm'
26 | gem 'digest'
27 | gem 'exifr'
28 | gem 'json'
29 | gem 'rest-client'
30 | gem 'pedump'
31 | gem 'acts-as-taggable-on'
32 | gem 'kaminari'
33 | gem 'docsplit'
34 |
35 |
36 | #assets
37 | gem 'jquery-ui-rails'
38 | gem 'jquery-datatables-rails', '~> 3.1.1'
39 |
40 | group :development do
41 | gem 'better_errors'
42 | gem 'binding_of_caller', :platforms=>[:mri_19, :mri_20, :mri_21, :rbx]
43 | gem 'rails_layout'
44 | end
45 |
--------------------------------------------------------------------------------
/app/views/layouts/admin.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | <%= content_for?(:title) ? yield(:title) : "Mssd" %>
6 |
13 | <%= render 'layouts/navigation' %>
14 |
15 |
16 | <%= render 'layouts/messages' %>
17 | <%= yield %>
18 | <% flash.each do |name, msg| %>
19 | <%= content_tag :div, msg, :id => "flash_#{name}" if msg.is_a?(String) %>
20 | <% end %>
21 |
22 | <% if user_signed_in? %>
23 | <% #link_to "My Profile", user_root_path%>
24 | <%= link_to('Logout', destroy_user_session_path, :method=>'delete') %>
25 | <%end%>
26 |
27 |
28 |
29 |
--------------------------------------------------------------------------------
/app/views/feeds/import.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | <%= form_tag @extract, html: {action: :upload_ioc}, multipart: true do %>
5 | <%= file_field_tag 'ioc_set' %>
6 |
7 |
Supported File Formats: TXT, CSV, XML, and PDF
8 |
9 |
10 |
11 |
12 |
13 | <%= text_field(:tag_list, :upload_ioc, :class => "form-control", :placeholder => "Putter Panda, APT, from report") %>
14 |
15 | <%= submit_tag("Import", class: "btn btn-primary")%>
16 |
17 |
18 |
19 |
20 | <% end %>
21 |
Threat Tags
2 |
3 |
14 |
15 |
16 |
17 |
18 |
19 | <% tag_cloud( Element.tag_counts_on(:tags), %w(css1 css2 css3 css4)) do |tag, css_class| %>
20 | <%= link_to tag, threats_ioc_list_path(:tag => tag), :class => css_class %>
21 | <% end %>
22 |
23 | <% tag_cloud( Sample.tag_counts_on(:tags), %w(css1 css2 css3 css4)) do |tag, css_class| %>
24 | <%= link_to tag, threats_ioc_list_path(:tag => tag), :class => css_class %>
25 | <% end %>
26 |
27 |
28 |
29 |
2 | <%= f.label :email, t("activerecord.attributes.user.email", :default => "Email"), :class => 'control-label' %>
3 |
4 | <%= f.text_field :email, :class => 'text_field' %>
5 |
6 |
9 | <%= f.label :password, t("activerecord.attributes.user.password", :default => "password"), :class => 'control-label' %>
10 |
11 | <%= f.password_field :password, :class => 'password_field' %>
12 |
13 |
15 | <%= f.label :Password, t("activerecord.attributes.user.password_confirmation", :default => "password_confirmation"), :class => 'control-label' %>
16 |
17 | <%= f.password_field :password_confirmation, :class => 'password_field' %>
18 |
19 |
23 | <%= f.label role.name , :class => 'control-label' %>
24 |
25 | <%= check_box_tag "user[role_ids][]", role.id, @user.roles.include?(role) %>
26 |
27 |
32 | Save or
33 | <%= link_to "Cancel", admin_users_path %>
34 |
--------------------------------------------------------------------------------
/app/views/threats/ioc_list.html.erb:
--------------------------------------------------------------------------------
1 |
4 |
5 |
Found <%= @tagged %>
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
Malware
16 |
17 |
18 |
19 | MD5
20 |
21 |
22 |
23 | <% @mal_matches.each do |item| %>
24 |
25 | <%= item %>
26 |
27 | <% end %>
28 |
29 |
30 |
31 |
32 |
35 |
36 |
37 |
IOC
38 |
39 |
40 |
41 | Indicator
42 |
43 |
44 |
45 | <% @ioc_matches.each do |item| %>
46 |
47 | <%= item %>
48 |
49 | <% end %>
50 |
51 |
52 |
53 |
54 |
<%= link_to 'Samples', samples_list_path, :id => "#samplelist", :class => "Samples" %>
4 |
6 | IOC
7 |
12 |
13 |
14 | Tools
15 |
21 |
22 | <% else %>
23 | <%= button_to 'Login', new_user_session_path %>
24 | <% end %>
25 |
26 |
--------------------------------------------------------------------------------
/app/assets/stylesheets/tree.css.scss:
--------------------------------------------------------------------------------
1 | .tree {
2 | min-height:20px;
3 | padding:19px;
4 | margin-bottom:20px;
5 | background-color:#fbfbfb;
6 | border:1px solid #999;
7 | -webkit-border-radius:4px;
8 | -moz-border-radius:4px;
9 | border-radius:4px;
10 | -webkit-box-shadow:inset 0 1px 1px rgba(0, 0, 0, 0.05);
11 | -moz-box-shadow:inset 0 1px 1px rgba(0, 0, 0, 0.05);
12 | box-shadow:inset 0 1px 1px rgba(0, 0, 0, 0.05)
13 | }
14 | .tree li {
15 | list-style-type:none;
16 | margin:0;
17 | padding:10px 5px 0 5px;
18 | position:relative
19 | }
20 | .tree li::before, .tree li::after {
21 | content:'';
22 | left:-20px;
23 | position:absolute;
24 | right:auto
25 | }
26 | .tree li::before {
27 | border-left:1px solid #999;
28 | bottom:50px;
29 | height:100%;
30 | top:0;
31 | width:1px
32 | }
33 | .tree li::after {
34 | border-top:1px solid #999;
35 | height:20px;
36 | top:25px;
37 | width:25px
38 | }
39 | .tree li span {
40 | -moz-border-radius:5px;
41 | -webkit-border-radius:5px;
42 | border:1px solid #999;
43 | border-radius:5px;
44 | display:inline-block;
45 | padding:3px 8px;
46 | text-decoration:none
47 | }
48 | .tree li.parent_li>span {
49 | cursor:pointer
50 | }
51 | .tree>ul>li::before, .tree>ul>li::after {
52 | border:0
53 | }
54 | .tree li:last-child::before {
55 | height:30px
56 | }
57 | .tree li.parent_li>span:hover, .tree li.parent_li>span:hover+ul li span {
58 | background:#eee;
59 | border:1px solid #94a0b4;
60 | color:#000
61 | }
--------------------------------------------------------------------------------
/app/views/search/indicators.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | Feeds
6 |
7 |
10 |
11 |
12 |
36 |
37 |
--------------------------------------------------------------------------------
/db/migrate/20140411031549_devise_create_users.rb:
--------------------------------------------------------------------------------
1 | class DeviseCreateUsers < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table(:users) do |t|
4 | ## Database authenticatable
5 | t.string :email, null: false, default: ""
6 | t.string :encrypted_password, null: false, default: ""
7 |
8 | ## Recoverable
9 | t.string :reset_password_token
10 | t.datetime :reset_password_sent_at
11 |
12 | ## Rememberable
13 | t.datetime :remember_created_at
14 |
15 | ## Trackable
16 | t.integer :sign_in_count, default: 0, null: false
17 | t.datetime :current_sign_in_at
18 | t.datetime :last_sign_in_at
19 | t.string :current_sign_in_ip
20 | t.string :last_sign_in_ip
21 |
22 | ## Confirmable
23 | # t.string :confirmation_token
24 | # t.datetime :confirmed_at
25 | # t.datetime :confirmation_sent_at
26 | # t.string :unconfirmed_email # Only if using reconfirmable
27 |
28 | ## Lockable
29 | # t.integer :failed_attempts, default: 0, null: false # Only if lock strategy is :failed_attempts
30 | # t.string :unlock_token # Only if unlock strategy is :email or :both
31 | # t.datetime :locked_at
32 |
33 |
34 | t.timestamps
35 | end
36 |
37 | add_index :users, :email, unique: true
38 | add_index :users, :reset_password_token, unique: true
39 | # add_index :users, :confirmation_token, unique: true
40 | # add_index :users, :unlock_token, unique: true
41 | end
42 | end
43 |
--------------------------------------------------------------------------------
/app/toolbox/find_artifacts.rb:
--------------------------------------------------------------------------------
1 | class FindArtifacts
2 | def ipv4(line, tags)
3 | patt = '((?:(?:[12]\d?\d?|[1-9]\d|[1-9])\.){3}(?:[12]\d?\d?|[\d+]{1,2}))'
4 | matches = line.scan(/#{patt}/)
5 | matches.each do |match|
6 | match = match[0]
7 | if match == nil
8 | elsif Element.exists?(:value => match)
9 | else
10 | match = match.downcase
11 | @ip = Element.create do |i|
12 | i.value = match
13 | i.kind = 'IP'
14 | i.tag_list = tags
15 | end
16 | end
17 | end
18 | end
19 |
20 | def domain(line, tags)
21 | patt = '([a-z0-9]+(?:[\-|\.][a-z0-9]+)*(?:\[\.\]|\.)(?:com|net|ru|org|de|uk|jp|br|pl|info|fr|it|cn|in|su|pw|biz|co|eu|nl))'
22 | matches = line.scan(/#{patt}/)
23 | matches.each do |match|
24 | match = match[0]
25 | if match == nil
26 | elsif Element.exists?(:value => match)
27 | else
28 | match = match.downcase
29 | @domain = Element.create do |i|
30 | i.value = match
31 | i.kind = 'Domain'
32 | i.tag_list = tags
33 | end
34 | end
35 | end
36 | end
37 |
38 | def md5(line, tags)
39 | patt = "([A-Fa-f0-9]{32})"
40 | matches = line.scan(/#{patt}/)
41 | matches.each do |match|
42 | match = match[0]
43 | if match == nil
44 | elsif Element.exists?(:value => match)
45 | else
46 | match = match.downcase
47 | @domain = Element.create do |i|
48 | i.value = match
49 | i.kind = 'MD5'
50 | i.tag_list = tags
51 | end
52 | end
53 | end
54 | end
55 | end
--------------------------------------------------------------------------------
/app/views/samples/upload.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 | <%= form_tag @sample, html: {action: :upload_malz}, multipart: true do %>
9 | <%= file_field_tag 'malz' %>
10 |
11 |
12 |
13 |
14 |
15 | <%= check_box_tag(:box) %>
16 | <%= label_tag(:box, "Unzip") %>
17 |
18 | <%= text_field(:passwd, :box, :class => "form-control", :placeholder => "password (if encrypted)") %>
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 | <%= text_field(:tag_list, :malz, :class => "form-control", :placeholder => "Max++, Rootkit, APT") %>
27 |
28 | <%= submit_tag("Upload", class: "btn btn-primary")%>
29 |
30 |
31 |
32 |
33 | <% end %>
34 |
35 |
36 |
We're sorry, but something went wrong (500)
5 |
60 |
61 |
We're sorry, but something went wrong.
62 |
63 |
If you are the application owner check the logs for more information.
64 |
3 |
4 |
13 |
14 | <% if user_signed_in? %>
15 |
16 | <%= render 'layouts/navigation_links' %>
17 |
18 |
19 | <%= render 'layouts/navigation_links2' %>
20 |
21 |
22 | <% else %>
23 |
32 | <% end %>
33 |
35 |
36 |
37 |
42 |
43 |
--------------------------------------------------------------------------------
/config/environments/test.rb:
--------------------------------------------------------------------------------
1 | Rails.application.configure do
2 | # Settings specified here will take precedence over those in config/application.rb.
3 |
4 | # The test environment is used exclusively to run your application's
5 | # test suite. You never need to work with it otherwise. Remember that
6 | # your test database is "scratch space" for the test suite and is wiped
7 | # and recreated between test runs. Don't rely on the data there!
8 | config.cache_classes = true
9 |
10 | # Do not eager load code on boot. This avoids loading your whole application
11 | # just for the purpose of running a single test. If you are using a tool that
12 | # preloads Rails for running tests, you may have to set it to true.
13 | config.eager_load = false
14 |
15 | # Configure static asset server for tests with Cache-Control for performance.
16 | config.serve_static_assets = true
17 | config.static_cache_control = 'public, max-age=3600'
18 |
19 | # Show full error reports and disable caching.
20 | config.consider_all_requests_local = true
21 | config.action_controller.perform_caching = false
22 |
23 | # Raise exceptions instead of rendering exception templates.
24 | config.action_dispatch.show_exceptions = false
25 |
26 | # Disable request forgery protection in test environment.
27 | config.action_controller.allow_forgery_protection = false
28 |
29 | # Tell Action Mailer not to deliver emails to the real world.
30 | # The :test delivery method accumulates sent emails in the
31 | # ActionMailer::Base.deliveries array.
32 | config.action_mailer.delivery_method = :test
33 |
34 | # Print deprecation notices to the stderr.
35 | config.active_support.deprecation = :stderr
36 |
37 | # Raises error for missing translations
38 | # config.action_view.raise_on_missing_translations = true
39 | end
40 |
--------------------------------------------------------------------------------
/public/422.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | The change you wanted was rejected (422)
5 |
60 |
61 |
The change you wanted was rejected.
62 |
Maybe you tried to change something you didn't have access to.
63 |
64 |
If you are the application owner check the logs for more information.
65 |
38 |
Delete Account
39 | <%= button_to "Delete", registration_path(resource_name), :data => { :confirm => "Are you sure?" }, :method => :delete, :class => 'btn btn-danger' %>
40 |
41 |
--------------------------------------------------------------------------------
/public/404.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | The page you were looking for doesn't exist (404)
5 |
60 |
61 |
The page you were looking for doesn't exist.
62 |
You may have mistyped the address or the page may have moved.
63 |
64 |
If you are the application owner check the logs for more information.
65 |
Feeds
6 |
7 | <%= image_tag("rss_cube.png", :size => "65x35", :style => "float :left",:crop => :fill) %>
8 | Add Threat Feed <%= link_to '', feeds_new_feed_path, class: 'glyphicon glyphicon-plus btn btn-success' %>
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 | Name
18 | URL
19 | Run Now
20 |
21 | Remove
22 | Tags
23 |
24 |
25 |
26 | <% @feeds.each do |feed| %>
27 |
28 | <%= feed.name %>
29 | <%= feed.url %>
30 | <%= link_to '', feeds_run_feed_path(:url => feed.url, :name => feed.name, :tags => feed.tag_list), class: 'glyphicon glyphicon-retweet btn btn-primary' %>
31 |
39 | <%= link_to '', feeds_delete_feed_path(:name => feed.name), class: 'glyphicon glyphicon-trash btn btn-danger' %>
40 | <% feed.tag_list.each do |tag| %>
41 | <%= link_to tag, threats_ioc_list_path(:tag => tag), :class => 'label label-large label-info' %>
42 | <% end %>
43 |
44 | <% end %>
45 |
46 |
47 |
48 |
File: <%= @sample.malz_file_name %>
2 |
3 |
4 |
5 |
6 |
Details
7 |
8 |
9 | Type: <%= @type %>
10 | Size: <%= @sample.malz_file_size %>
11 | MD5: <%= @sample.md5sum %>
12 | SHA1: <%= @sample.sha1sum %>
13 | SHA256: <%= @sample.sha256 %>
14 |
15 |
16 |
17 |
18 |
Analysis
19 |
20 |
21 |
22 | <%= @sample.deepdive %>
23 |
24 |
25 |
26 |
29 |
30 |
31 |
32 | Virustotal Detection: <%= link_to @sample.detection, "http://virustotal.com/en/file/#{@sample.sha256}/analysis", :target => "_blank", :class => "label label-danger" %>
33 |
34 |
35 |
36 |
39 |
40 |
41 |
Notes
42 |
43 |
44 | <%= form_tag("add_note", method: "post") do %>
45 | <%= label_tag(:add_note, '') %>
46 |
47 | <%= text_area_tag(:note_content, "#{@sample.notes}", size: "52x15") %>
48 | <%= hidden_field_tag(:sample_id, @sample.id) %>
49 |
50 |
51 | <%= submit_tag("Save", class: "btn btn-primary") %>
52 |
53 | <% end %>
54 |
55 |
56 |
2 |
5 |
6 | <% if user_signed_in? %>
7 |
8 |
9 |
10 |
11 |
Malware
12 |
13 |
14 |
Samples
15 |
16 |
<%= Sample.count(:all)%>
17 |
18 |
19 |
20 |
21 |
Yara Signatures
22 |
23 | <% @files = Dir['app/assets/yara/*.yar']%>
24 |
<%= @files.length %>
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
Intelligence
35 |
36 |
37 |
Feeds
38 |
39 |
<%= Feeds.count(:all)%>
40 |
41 |
42 |
43 |
44 |
Indicators
45 |
46 |
<%= Element.count(:all)%>
47 |
48 |
49 |
50 |
51 |
52 |
53 | <% else %>
54 |
55 |
56 |
57 |
58 | <%= link_to "Login", new_user_session_path, :class => "btn btn-primary" %>
59 |
62 |
64 |
65 | <% end %>
66 |
4 | <%= image_tag("yara_old-logo.png", :size => "120x150", :style => "float :left",:crop => :fill) %>
5 |
6 |
Add new yara signature <%= link_to '', samples_new_yara_path, :class => 'glyphicon glyphicon-plus btn btn-success' %>
7 |
8 | <% @rules = Dir["app/assets/yara/*.yar"] %>
9 |
10 |
11 |
12 |
Rule Sets
13 |
14 |
15 |
16 | Name
17 | Remove
18 |
19 |
20 |
21 | <% sig_id = 0 %>
22 | <% @rules.each do |x| %>
23 | <% sig_id += 1 %>
24 |
25 | <%= File.basename(x) %>
28 |
29 |
30 |
34 |
35 |
40 |
41 |
44 |
45 |
46 |
<%= link_to '', samples_remove_rule_path(:rule_name => File.basename(x)), :class => "btn btn-danger glyphicon glyphicon-trash" %>
48 |
49 | <% end %>
50 |
51 |
52 |
53 |
54 |
Threat Profiles
4 | <% profiles = Dir["app/views/threats/profile_archive/_*"] %>
5 |
6 |
7 |
8 |
9 | <% count = 1 %>
10 | <% profiles.each do |item| %>
11 | <% item_name = File.basename(item, '.html.erb') %>
12 | <% profile = item_name[1..-1] %>
13 | <%= link_to "#{count}. #{profile}", threats_analysis_path(:profile => profile), :class => 'list-group-item' %>
14 | <% count += count %>
15 | <% end %>
16 |
17 |
18 |
23 |
24 |
25 |
29 |
30 | <%= form_tag @new_profile, html: {action: :new_profile}, multipart: true do %>
31 |
36 |
37 |
46 |
47 | Modus Operandi <%= text_field(:passwd, :box, :class => "form-control", :placeholder => "Nation-state actor") %>
48 |
49 |
50 | Tactics & Techniques <%= text_field(:passwd, :box, :class => "form-control", :placeholder => "Spearphishing, Custom Exploits") %>
51 |
52 |
53 |
54 |
55 |
56 | <%= text_field(:tag_list, :new_profile, :class => "form-control", :placeholder => "APT1, Espionage") %>
57 |
58 | <%# submit_tag("Create", :class => "btn btn-success")%>
59 |
60 |
61 |
62 |
63 | <% end %>
64 |
65 |
68 |
69 |
70 |
2 |
3 |
4 |
6 |
7 |
14 |
15 |
17 |
18 |
25 |
26 |
27 |
28 |
30 |
31 |
33 |
34 | This actor utilizes home-grown malware
35 |
36 |
37 |
38 |
39 |
46 |
47 |
54 |
55 |
57 |
58 | Primary C2 server
59 |
60 |
61 |
62 |
63 |
64 |
65 |
66 |
67 |
4 | <%= image_tag("biohazard-orb.png", :size => "100x60", :style => "float :left",:crop => :fill) %>
5 | Malware Samples
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 | DL
16 | MD5
17 | MIME
18 | Detected
19 | Remove
20 | Tags
21 |
22 |
23 |
24 |
25 | <% @all_malz.each do |mal| %>
26 | <%= link_to '', samples_download_malz_path(:sample => mal.malz_file_name), :class => 'glyphicon glyphicon-download-alt btn btn-primary' %>
27 | <%= link_to mal.md5sum, samples_analysis_path(:md5sum => mal.md5sum) %>
28 | <%= mal.malz_content_type %>
29 | <% if mal.detection == 'N/A' %>
30 | <%= mal.detection %>
31 | <% else %>
32 | <%= link_to mal.detection, "http://virustotal.com/en/file/#{mal.sha256}/analysis", :target => "_blank" %>
33 | <% end %>
34 | <%= link_to '', samples_delete_sample_path(:sample_id => mal.id), class: 'glyphicon glyphicon-trash btn btn-danger' %>
35 | <% mal.tag_list.each do |tag| %>
36 | <%= link_to tag, threats_ioc_list_path(:tag => tag), :class => 'label label-large label-info' %>
37 | <% end %>
38 |
39 |
40 | <% end %>
41 |
42 |
43 |
44 |
48 |
49 |
50 |
54 |
55 |
56 | <%= form_tag @sample, html: {action: :upload_malz}, multipart: true do %>
57 | <%= file_field_tag 'malz' %>
58 |
69 |
70 |
71 |
72 |
73 |
74 | <%= text_field(:tag_list, :malz, :class => "form-control", :placeholder => "Max++, Rootkit, APT") %>
75 |
76 | <%= submit_tag("Upload", :class => "btn btn-primary")%>
77 |
78 |
79 |
80 |
81 | <% end %>
82 |
83 |
84 |
87 |
88 |
89 |
2 |
3 |
4 |
6 |
7 |
14 |
15 |
17 |
18 |
25 |
26 |
27 |
28 |
30 |
31 |
33 |
34 | This actor utilizes home-grown malware
35 |
36 |
37 |
38 |
39 |
46 |
47 |
54 |
55 |
57 |
58 | Primary C2 server
59 |
60 |
61 | Alternate C2 server
62 |
63 |
64 |
65 |
66 |
67 |
68 |
69 |
70 |
{' not found!"
146 | return
147 | end
148 | rule_name = params[:rule_name]
149 | new_rule_path = "app/assets/yara/#{rule_name}.yar"
150 | begin
151 | File.write(new_rule_path, new_rule_content)
152 | redirect_to samples_yara_path, :notice => "Signature has been uploaded successfully!"
153 | rescue
154 | redirect_to samples_yara_path, :alert => "Error: Could not create rule"
155 | end
156 | end
157 |
158 | # delete yara rule
159 | def remove_rule
160 | # delete rule here function here
161 | rule_name = params[:rule_name]
162 | rule_path = "app/assets/yara/#{rule_name}"
163 | begin
164 | File.delete(rule_path)
165 | redirect_to samples_yara_path, :notice => "Signature has been deleted successfully!"
166 | rescue
167 | redirect_to samples_yara_path, :alert => "Could not delete rule"
168 | end
169 | end
170 | end
171 |
--------------------------------------------------------------------------------
/config/initializers/simple_form.rb:
--------------------------------------------------------------------------------
1 | # Use this setup block to configure all options available in SimpleForm.
2 | SimpleForm.setup do |config|
3 | # Wrappers are used by the form builder to generate a
4 | # complete input. You can remove any component from the
5 | # wrapper, change the order or even add your own to the
6 | # stack. The options given below are used to wrap the
7 | # whole input.
8 | config.wrappers :default, class: :input,
9 | hint_class: :field_with_hint, error_class: :field_with_errors do |b|
10 | ## Extensions enabled by default
11 | # Any of these extensions can be disabled for a
12 | # given input by passing: `f.input EXTENSION_NAME => false`.
13 | # You can make any of these extensions optional by
14 | # renaming `b.use` to `b.optional`.
15 |
16 | # Determines whether to use HTML5 (:email, :url, ...)
17 | # and required attributes
18 | b.use :html5
19 |
20 | # Calculates placeholders automatically from I18n
21 | # You can also pass a string as f.input placeholder: "Placeholder"
22 | b.use :placeholder
23 |
24 | ## Optional extensions
25 | # They are disabled unless you pass `f.input EXTENSION_NAME => :lookup`
26 | # to the input. If so, they will retrieve the values from the model
27 | # if any exists. If you want to enable the lookup for any of those
28 | # extensions by default, you can change `b.optional` to `b.use`.
29 |
30 | # Calculates maxlength from length validations for string inputs
31 | b.optional :maxlength
32 |
33 | # Calculates pattern from format validations for string inputs
34 | b.optional :pattern
35 |
36 | # Calculates min and max from length validations for numeric inputs
37 | b.optional :min_max
38 |
39 | # Calculates readonly automatically from readonly attributes
40 | b.optional :readonly
41 |
42 | ## Inputs
43 | b.use :label_input
44 | b.use :hint, wrap_with: { tag: :span, class: :hint }
45 | b.use :error, wrap_with: { tag: :span, class: :error }
46 | end
47 |
48 | # The default wrapper to be used by the FormBuilder.
49 | config.default_wrapper = :default
50 |
51 | # Define the way to render check boxes / radio buttons with labels.
52 | # Defaults to :nested for bootstrap config.
53 | # inline: input + label
54 | # nested: label > input
55 | config.boolean_style = :nested
56 |
57 | # Default class for buttons
58 | config.button_class = 'btn'
59 |
60 | # Method used to tidy up errors. Specify any Rails Array method.
61 | # :first lists the first message for each field.
62 | # Use :to_sentence to list all errors for each field.
63 | # config.error_method = :first
64 |
65 | # Default tag used for error notification helper.
66 | config.error_notification_tag = :div
67 |
68 | # CSS class to add for error notification helper.
69 | config.error_notification_class = 'alert alert-error'
70 |
71 | # ID to add for error notification helper.
72 | # config.error_notification_id = nil
73 |
74 | # Series of attempts to detect a default label method for collection.
75 | # config.collection_label_methods = [ :to_label, :name, :title, :to_s ]
76 |
77 | # Series of attempts to detect a default value method for collection.
78 | # config.collection_value_methods = [ :id, :to_s ]
79 |
80 | # You can wrap a collection of radio/check boxes in a pre-defined tag, defaulting to none.
81 | # config.collection_wrapper_tag = nil
82 |
83 | # You can define the class to use on all collection wrappers. Defaulting to none.
84 | # config.collection_wrapper_class = nil
85 |
86 | # You can wrap each item in a collection of radio/check boxes with a tag,
87 | # defaulting to :span. Please note that when using :boolean_style = :nested,
88 | # SimpleForm will force this option to be a label.
89 | # config.item_wrapper_tag = :span
90 |
91 | # You can define a class to use in all item wrappers. Defaulting to none.
92 | # config.item_wrapper_class = nil
93 |
94 | # How the label text should be generated altogether with the required text.
95 | # config.label_text = lambda { |label, required| "#{required} #{label}" }
96 |
97 | # You can define the class to use on all labels. Default is nil.
98 | config.label_class = 'control-label'
99 |
100 | # You can define the class to use on all forms. Default is simple_form.
101 | # config.form_class = :simple_form
102 |
103 | # You can define which elements should obtain additional classes
104 | # config.generate_additional_classes_for = [:wrapper, :label, :input]
105 |
106 | # Whether attributes are required by default (or not). Default is true.
107 | # config.required_by_default = true
108 |
109 | # Tell browsers whether to use the native HTML5 validations (novalidate form option).
110 | # These validations are enabled in SimpleForm's internal config but disabled by default
111 | # in this configuration, which is recommended due to some quirks from different browsers.
112 | # To stop SimpleForm from generating the novalidate option, enabling the HTML5 validations,
113 | # change this configuration to true.
114 | config.browser_validations = false
115 |
116 | # Collection of methods to detect if a file type was given.
117 | # config.file_methods = [ :mounted_as, :file?, :public_filename ]
118 |
119 | # Custom mappings for input types. This should be a hash containing a regexp
120 | # to match as key, and the input type that will be used when the field name
121 | # matches the regexp as value.
122 | # config.input_mappings = { /count/ => :integer }
123 |
124 | # Custom wrappers for input types. This should be a hash containing an input
125 | # type as key and the wrapper that will be used for all inputs with specified type.
126 | # config.wrapper_mappings = { string: :prepend }
127 |
128 | # Default priority for time_zone inputs.
129 | # config.time_zone_priority = nil
130 |
131 | # Default priority for country inputs.
132 | # config.country_priority = nil
133 |
134 | # When false, do not use translations for labels.
135 | # config.translate_labels = true
136 |
137 | # Automatically discover new inputs in Rails' autoload path.
138 | # config.inputs_discovery = true
139 |
140 | # Cache SimpleForm inputs discovery
141 | # config.cache_discovery = !Rails.env.development?
142 |
143 | # Default class for inputs
144 | # config.input_class = nil
145 | end
146 |
--------------------------------------------------------------------------------
/Gemfile.lock:
--------------------------------------------------------------------------------
1 | GIT
2 | remote: git://github.com/thoughtbot/paperclip.git
3 | revision: 9b4805354864bc729e1a79a67a795e79dc7f42ae
4 | specs:
5 | paperclip (5.1.0)
6 | activemodel (>= 4.2.0)
7 | activesupport (>= 4.2.0)
8 | cocaine (~> 0.5.5)
9 | mime-types
10 | mimemagic (~> 0.3.0)
11 |
12 | GEM
13 | remote: https://rubygems.org/
14 | specs:
15 | actioncable (5.1.4)
16 | actionpack (= 5.1.4)
17 | nio4r (~> 2.0)
18 | websocket-driver (~> 0.6.1)
19 | actionmailer (5.1.4)
20 | actionpack (= 5.1.4)
21 | actionview (= 5.1.4)
22 | activejob (= 5.1.4)
23 | mail (~> 2.5, >= 2.5.4)
24 | rails-dom-testing (~> 2.0)
25 | actionpack (5.1.4)
26 | actionview (= 5.1.4)
27 | activesupport (= 5.1.4)
28 | rack (~> 2.0)
29 | rack-test (>= 0.6.3)
30 | rails-dom-testing (~> 2.0)
31 | rails-html-sanitizer (~> 1.0, >= 1.0.2)
32 | actionview (5.1.4)
33 | activesupport (= 5.1.4)
34 | builder (~> 3.1)
35 | erubi (~> 1.4)
36 | rails-dom-testing (~> 2.0)
37 | rails-html-sanitizer (~> 1.0, >= 1.0.3)
38 | activejob (5.1.4)
39 | activesupport (= 5.1.4)
40 | globalid (>= 0.3.6)
41 | activemodel (5.1.4)
42 | activesupport (= 5.1.4)
43 | activerecord (5.1.4)
44 | activemodel (= 5.1.4)
45 | activesupport (= 5.1.4)
46 | arel (~> 8.0)
47 | activesupport (5.1.4)
48 | concurrent-ruby (~> 1.0, >= 1.0.2)
49 | i18n (~> 0.7)
50 | minitest (~> 5.1)
51 | tzinfo (~> 1.1)
52 | acts-as-taggable-on (5.0.0)
53 | activerecord (>= 4.2.8)
54 | archive-zip (0.10.0)
55 | io-like (~> 0.3.0)
56 | arel (8.0.0)
57 | autoprefixer-rails (7.1.5)
58 | execjs
59 | awesome_print (1.8.0)
60 | bcrypt (3.1.11)
61 | better_errors (2.4.0)
62 | coderay (>= 1.0.0)
63 | erubi (>= 1.0.0)
64 | rack (>= 0.9.0)
65 | binding_of_caller (0.7.2)
66 | debug_inspector (>= 0.0.1)
67 | bootstrap-sass (3.3.7)
68 | autoprefixer-rails (>= 5.2.1)
69 | sass (>= 3.3.4)
70 | builder (3.2.3)
71 | climate_control (0.2.0)
72 | cocaine (0.5.8)
73 | climate_control (>= 0.0.3, < 1.0)
74 | coderay (1.1.2)
75 | coffee-rails (4.2.2)
76 | coffee-script (>= 2.2.0)
77 | railties (>= 4.0.0)
78 | coffee-script (2.4.1)
79 | coffee-script-source
80 | execjs
81 | coffee-script-source (1.12.2)
82 | commonjs (0.2.7)
83 | concurrent-ruby (1.0.5)
84 | crass (1.0.2)
85 | debug_inspector (0.0.3)
86 | delayed_job (4.1.3)
87 | activesupport (>= 3.0, < 5.2)
88 | delayed_job_active_record (4.1.2)
89 | activerecord (>= 3.0, < 5.2)
90 | delayed_job (>= 3.0, < 5)
91 | devise (4.3.0)
92 | bcrypt (~> 3.0)
93 | orm_adapter (~> 0.1)
94 | railties (>= 4.1.0, < 5.2)
95 | responders
96 | warden (~> 1.2.3)
97 | digest (0.0.1)
98 | docsplit (0.7.6)
99 | domain_name (0.5.20170404)
100 | unf (>= 0.0.5, < 1.0.0)
101 | erubi (1.7.0)
102 | execjs (2.7.0)
103 | exifr (1.3.2)
104 | ffi (1.9.18)
105 | globalid (0.4.0)
106 | activesupport (>= 4.2.0)
107 | hex_string (1.0.1)
108 | http-cookie (1.0.3)
109 | domain_name (~> 0.5)
110 | i18n (0.9.0)
111 | concurrent-ruby (~> 1.0)
112 | io-like (0.3.0)
113 | iostruct (0.0.4)
114 | jbuilder (2.7.0)
115 | activesupport (>= 4.2.0)
116 | multi_json (>= 1.2)
117 | jquery-datatables-rails (3.1.1)
118 | actionpack (>= 3.1)
119 | jquery-rails
120 | railties (>= 3.1)
121 | sass-rails
122 | jquery-rails (4.3.1)
123 | rails-dom-testing (>= 1, < 3)
124 | railties (>= 4.2.0)
125 | thor (>= 0.14, < 2.0)
126 | jquery-ui-rails (6.0.1)
127 | railties (>= 3.2.16)
128 | json (1.8.6)
129 | kaminari (1.1.0)
130 | activesupport (>= 4.1.0)
131 | kaminari-actionview (= 1.1.0)
132 | kaminari-activerecord (= 1.1.0)
133 | kaminari-core (= 1.1.0)
134 | kaminari-actionview (1.1.0)
135 | actionview
136 | kaminari-core (= 1.1.0)
137 | kaminari-activerecord (1.1.0)
138 | activerecord
139 | kaminari-core (= 1.1.0)
140 | kaminari-core (1.1.0)
141 | less (2.6.0)
142 | commonjs (~> 0.2.7)
143 | less-rails (2.8.0)
144 | actionpack (>= 4.0)
145 | less (~> 2.6.0)
146 | sprockets (> 2, < 4)
147 | tilt
148 | loofah (2.1.1)
149 | crass (~> 1.0.2)
150 | nokogiri (>= 1.5.9)
151 | mail (2.6.6)
152 | mime-types (>= 1.16, < 4)
153 | metasm (1.0.3)
154 | method_source (0.9.0)
155 | mime-types (3.1)
156 | mime-types-data (~> 3.2015)
157 | mime-types-data (3.2016.0521)
158 | mimemagic (0.3.2)
159 | mini_portile2 (2.3.0)
160 | minitest (5.10.3)
161 | multi_json (1.12.2)
162 | multipart-post (2.0.0)
163 | netrc (0.11.0)
164 | nio4r (2.1.0)
165 | nokogiri (1.8.1)
166 | mini_portile2 (~> 2.3.0)
167 | orm_adapter (0.5.0)
168 | pedump (0.5.2)
169 | awesome_print
170 | iostruct (>= 0.0.4)
171 | multipart-post (~> 2.0.0)
172 | progressbar
173 | zhexdump (>= 0.0.2)
174 | pg (0.21.0)
175 | progressbar (1.9.0)
176 | rack (2.0.3)
177 | rack-test (0.7.0)
178 | rack (>= 1.0, < 3)
179 | rails (5.1.4)
180 | actioncable (= 5.1.4)
181 | actionmailer (= 5.1.4)
182 | actionpack (= 5.1.4)
183 | actionview (= 5.1.4)
184 | activejob (= 5.1.4)
185 | activemodel (= 5.1.4)
186 | activerecord (= 5.1.4)
187 | activesupport (= 5.1.4)
188 | bundler (>= 1.3.0)
189 | railties (= 5.1.4)
190 | sprockets-rails (>= 2.0.0)
191 | rails-dom-testing (2.0.3)
192 | activesupport (>= 4.2.0)
193 | nokogiri (>= 1.6)
194 | rails-html-sanitizer (1.0.3)
195 | loofah (~> 2.0)
196 | rails_12factor (0.0.3)
197 | rails_serve_static_assets
198 | rails_stdout_logging
199 | rails_layout (1.0.41)
200 | rails_serve_static_assets (0.0.5)
201 | rails_stdout_logging (0.0.5)
202 | railties (5.1.4)
203 | actionpack (= 5.1.4)
204 | activesupport (= 5.1.4)
205 | method_source
206 | rake (>= 0.8.7)
207 | thor (>= 0.18.1, < 2.0)
208 | rake (12.1.0)
209 | rb-fsevent (0.10.2)
210 | rb-inotify (0.9.10)
211 | ffi (>= 0.5.0, < 2)
212 | rdoc (4.3.0)
213 | responders (2.4.0)
214 | actionpack (>= 4.2.0, < 5.3)
215 | railties (>= 4.2.0, < 5.3)
216 | rest-client (2.0.2)
217 | http-cookie (>= 1.0.2, < 2.0)
218 | mime-types (>= 1.16, < 4.0)
219 | netrc (~> 0.8)
220 | sass (3.5.2)
221 | sass-listen (~> 4.0.0)
222 | sass-listen (4.0.0)
223 | rb-fsevent (~> 0.9, >= 0.9.4)
224 | rb-inotify (~> 0.9, >= 0.9.7)
225 | sass-rails (5.0.6)
226 | railties (>= 4.0.0, < 6)
227 | sass (~> 3.1)
228 | sprockets (>= 2.8, < 4.0)
229 | sprockets-rails (>= 2.0, < 4.0)
230 | tilt (>= 1.1, < 3)
231 | sdoc (0.4.2)
232 | json (~> 1.7, >= 1.7.7)
233 | rdoc (~> 4.0)
234 | simple_form (3.5.0)
235 | actionpack (> 4, < 5.2)
236 | activemodel (> 4, < 5.2)
237 | spring (2.0.2)
238 | activesupport (>= 4.2)
239 | sprockets (3.7.1)
240 | concurrent-ruby (~> 1.0)
241 | rack (> 1, < 3)
242 | sprockets-rails (3.2.1)
243 | actionpack (>= 4.0)
244 | activesupport (>= 4.0)
245 | sprockets (>= 3.0.0)
246 | thor (0.20.0)
247 | thread_safe (0.3.6)
248 | tilt (2.0.8)
249 | turbolinks (5.0.1)
250 | turbolinks-source (~> 5)
251 | turbolinks-source (5.0.3)
252 | twitter-bootstrap-rails (4.0.0)
253 | actionpack (~> 5.0, >= 5.0.1)
254 | execjs (~> 2.7)
255 | less-rails (~> 2.8, >= 2.8.0)
256 | railties (~> 5.0, >= 5.0.1)
257 | tzinfo (1.2.3)
258 | thread_safe (~> 0.1)
259 | uglifier (3.2.0)
260 | execjs (>= 0.3.0, < 3)
261 | unf (0.1.4)
262 | unf_ext
263 | unf_ext (0.0.7.4)
264 | warden (1.2.7)
265 | rack (>= 1.0)
266 | websocket-driver (0.6.5)
267 | websocket-extensions (>= 0.1.0)
268 | websocket-extensions (0.1.2)
269 | zhexdump (0.0.2)
270 |
271 | PLATFORMS
272 | ruby
273 |
274 | DEPENDENCIES
275 | acts-as-taggable-on
276 | archive-zip
277 | better_errors
278 | binding_of_caller
279 | bootstrap-sass
280 | coffee-rails
281 | delayed_job_active_record
282 | devise
283 | digest
284 | docsplit
285 | exifr
286 | hex_string
287 | jbuilder (~> 2.0)
288 | jquery-datatables-rails (~> 3.1.1)
289 | jquery-rails
290 | jquery-ui-rails
291 | json
292 | kaminari
293 | metasm
294 | paperclip!
295 | pedump
296 | pg
297 | rails
298 | rails_12factor
299 | rails_layout
300 | rake
301 | rest-client
302 | sass-rails
303 | sdoc (~> 0.4.0)
304 | simple_form
305 | spring
306 | turbolinks
307 | twitter-bootstrap-rails
308 | uglifier
309 |
310 | RUBY VERSION
311 | ruby 2.4.2p198
312 |
313 | BUNDLED WITH
314 | 1.15.4
315 |
--------------------------------------------------------------------------------
/app/assets/stylesheets/toggle-switch.css.scss:
--------------------------------------------------------------------------------
1 | /*
2 | * CSS TOGGLE SWITCHES
3 | * Unlicense
4 | *
5 | * Ionuț Colceriu - ghinda.net
6 | * https://github.com/ghinda/css-toggle-switch
7 | *
8 | */
9 | /* Supported values are px, rem-calc, em-calc */
10 | /* Functions */
11 | /* Toggle Switches */
12 | /* Shared */
13 | /* Checkbox
14 | */
15 | /* Radio Switch
16 | */
17 | /* Hide by default
18 | */
19 | .switch-toggle a, .switch-light span span {
20 | display: none; }
21 |
22 | /* We can't test for a specific feature,
23 | * so we only target browsers with support for media queries.
24 | */
25 | @media only screen {
26 | /* Checkbox switch
27 | */
28 | .switch-light {
29 | display: block;
30 | min-height: 1.875em;
31 | /* Outline the toggles when the inputs are focused
32 | */
33 | position: relative;
34 | overflow: visible;
35 | padding: 0;
36 | margin-left: 6.25em;
37 | /* Position the label over all the elements, except the slide-button ()
38 | * Clicking anywhere on the label will change the switch-state
39 | */
40 | /* Don't hide the input from screen-readers and keyboard access
41 | */ }
42 | .switch-light * {
43 | -webkit-box-sizing: border-box;
44 | -moz-box-sizing: border-box;
45 | box-sizing: border-box; }
46 | .switch-light a {
47 | display: block;
48 | -webkit-transition: all 0.2s ease-out;
49 | -moz-transition: all 0.2s ease-out;
50 | transition: all 0.2s ease-out; }
51 | .switch-light label, .switch-light > span {
52 | line-height: 1.875em;
53 | vertical-align: middle; }
54 | .switch-light input:focus ~ a, .switch-light input:focus + label {
55 | outline: 1px dotted #888; }
56 | .switch-light label {
57 | position: relative;
58 | z-index: 3;
59 | display: block;
60 | width: 100%; }
61 | .switch-light input {
62 | position: absolute;
63 | opacity: 0;
64 | z-index: 5; }
65 | .switch-light input:checked ~ a {
66 | right: 0%; }
67 | .switch-light > span {
68 | position: absolute;
69 | left: -6.25em;
70 | width: 100%;
71 | margin: 0;
72 | padding-right: 6.25em;
73 | text-align: left; }
74 | .switch-light > span span {
75 | position: absolute;
76 | top: 0;
77 | left: 0;
78 | z-index: 5;
79 | display: block;
80 | width: 50%;
81 | margin-left: 6.25em;
82 | text-align: center; }
83 | .switch-light > span span:last-child {
84 | left: 50%; }
85 | .switch-light a {
86 | position: absolute;
87 | right: 50%;
88 | top: 0;
89 | z-index: 4;
90 | display: block;
91 | width: 50%;
92 | height: 100%;
93 | padding: 0; }
94 |
95 | /* Radio switch
96 | */
97 | .switch-toggle {
98 | display: block;
99 | min-height: 1.875em;
100 | /* Outline the toggles when the inputs are focused
101 | */
102 | position: relative;
103 | display: table;
104 | table-layout: fixed;
105 | /* For callout panels in foundation
106 | */
107 | padding: 0 !important;
108 | /* Generate styles for the multiple states */ }
109 | .switch-toggle * {
110 | -webkit-box-sizing: border-box;
111 | -moz-box-sizing: border-box;
112 | box-sizing: border-box; }
113 | .switch-toggle a {
114 | display: block;
115 | -webkit-transition: all 0.2s ease-out;
116 | -moz-transition: all 0.2s ease-out;
117 | transition: all 0.2s ease-out; }
118 | .switch-toggle label, .switch-toggle > span {
119 | line-height: 1.875em;
120 | vertical-align: middle; }
121 | .switch-toggle input:focus ~ a, .switch-toggle input:focus + label {
122 | outline: 1px dotted #888; }
123 | .switch-toggle * {
124 | font-size: 1em; }
125 | .switch-toggle input {
126 | position: absolute;
127 | opacity: 0; }
128 | .switch-toggle input + label {
129 | position: relative;
130 | z-index: 2;
131 | display: table-cell;
132 | width: 50%;
133 | padding: 0 0.5em;
134 | margin: 0;
135 | text-align: center; }
136 | .switch-toggle a {
137 | position: absolute;
138 | top: 0;
139 | left: 0;
140 | padding: 0;
141 | z-index: 1;
142 | width: 50%;
143 | height: 100%; }
144 | .switch-toggle input:last-of-type:checked ~ a {
145 | left: 50%; }
146 | .switch-toggle.switch-3 label, .switch-toggle.switch-3 a {
147 | width: 33.3333333333%; }
148 | .switch-toggle.switch-3 input:checked:nth-of-type(2) ~ a {
149 | left: 33.3333333333%; }
150 | .switch-toggle.switch-3 input:checked:last-of-type ~ a {
151 | left: 66.6666666667%; }
152 | .switch-toggle.switch-4 label, .switch-toggle.switch-4 a {
153 | width: 25%; }
154 | .switch-toggle.switch-4 input:checked:nth-of-type(2) ~ a {
155 | left: 25%; }
156 | .switch-toggle.switch-4 input:checked:nth-of-type(3) ~ a {
157 | left: 50%; }
158 | .switch-toggle.switch-4 input:checked:last-of-type ~ a {
159 | left: 75%; }
160 | .switch-toggle.switch-5 label, .switch-toggle.switch-5 a {
161 | width: 20%; }
162 | .switch-toggle.switch-5 input:checked:nth-of-type(2) ~ a {
163 | left: 20%; }
164 | .switch-toggle.switch-5 input:checked:nth-of-type(3) ~ a {
165 | left: 40%; }
166 | .switch-toggle.switch-5 input:checked:nth-of-type(4) ~ a {
167 | left: 60%; }
168 | .switch-toggle.switch-5 input:checked:last-of-type ~ a {
169 | left: 80%; }
170 |
171 | /* Standalone Themes */
172 | /* Candy Theme
173 | * Based on the "Sort Switches / Toggles (PSD)" by Ormal Clarck
174 | * http://www.premiumpixels.com/freebies/sort-switches-toggles-psd/
175 | */
176 | .switch-candy {
177 | background-color: #2d3035;
178 | border-radius: 3px;
179 | color: #fff;
180 | font-weight: bold;
181 | text-align: center;
182 | text-shadow: 1px 1px 1px #191b1e;
183 | box-shadow: inset 0 2px 6px rgba(0, 0, 0, 0.3), 0 1px 0 rgba(255, 255, 255, 0.2); }
184 | .switch-candy label {
185 | color: #fff;
186 | -webkit-transition: color 0.2s ease-out;
187 | -moz-transition: color 0.2s ease-out;
188 | transition: color 0.2s ease-out; }
189 | .switch-candy input:checked + label {
190 | color: #333;
191 | text-shadow: 0 1px 0 rgba(255, 255, 255, 0.5); }
192 | .switch-candy a {
193 | border: 1px solid #333;
194 | background-color: #70c66b;
195 | border-radius: 3px;
196 | background-image: -webkit-linear-gradient(top, rgba(255, 255, 255, 0.2), rgba(0, 0, 0, 0));
197 | background-image: linear-gradient(to bottom, rgba(255, 255, 255, 0.2), rgba(0, 0, 0, 0));
198 | box-shadow: 0 1px 1px rgba(0, 0, 0, 0.2), inset 0 1px 1px rgba(255, 255, 255, 0.45); }
199 | .switch-candy > span {
200 | color: #333;
201 | text-shadow: none; }
202 | .switch-candy span {
203 | color: #fff; }
204 | .switch-candy.switch-candy-blue a {
205 | background-color: #38a3d4; }
206 | .switch-candy.switch-candy-yellow a {
207 | background-color: #f5e560; }
208 |
209 | /* Android Theme
210 | */
211 | .switch-android {
212 | background-color: #464747;
213 | border-radius: 1px;
214 | box-shadow: inset rgba(0, 0, 0, 0.1) 0 1px 0;
215 | color: #fff;
216 | /* Selected ON switch-light
217 | */ }
218 | .switch-android label {
219 | color: #fff; }
220 | .switch-android > span span {
221 | opacity: 0;
222 | margin-left: 7.1875em;
223 | -webkit-transition: all 0.1s;
224 | -moz-transition: all 0.1s;
225 | transition: all 0.1s; }
226 | .switch-android > span span:first-of-type {
227 | opacity: 1; }
228 | .switch-android > span span, .switch-android input + label {
229 | font-size: 85%;
230 | line-height: 2.15625em; }
231 | .switch-android a {
232 | background-color: #666;
233 | border-radius: 1px;
234 | box-shadow: inset rgba(255, 255, 255, 0.2) 0 1px 0, inset rgba(0, 0, 0, 0.3) 0 -1px 0; }
235 | .switch-android.switch-light input:checked ~ a {
236 | background-color: #0E88B1; }
237 | .switch-android.switch-light input:checked ~ span span:first-of-type {
238 | opacity: 0; }
239 | .switch-android.switch-light input:checked ~ span span:last-of-type {
240 | opacity: 1; }
241 | .switch-android.switch-toggle, .switch-android > span span {
242 | text-transform: uppercase; }
243 |
244 | /* iOS Theme
245 | */
246 | .switch-ios.switch-light {
247 | color: #868686; }
248 | .switch-ios.switch-light a {
249 | left: 0;
250 | width: 1.875em;
251 | background-color: #fff;
252 | border: 1px solid #d3d3d3;
253 | border-radius: 100%;
254 | -webkit-transition: all 0.3s ease-out;
255 | -moz-transition: all 0.3s ease-out;
256 | transition: all 0.3s ease-out;
257 | box-shadow: inset 0 -3px 3px rgba(0, 0, 0, 0.025), 0 1px 4px rgba(0, 0, 0, 0.15), 0 4px 4px rgba(0, 0, 0, 0.1); }
258 | .switch-ios.switch-light > span span {
259 | width: 100%;
260 | left: 0;
261 | opacity: 0; }
262 | .switch-ios.switch-light > span span:first-of-type {
263 | opacity: 1;
264 | padding-left: 1.875em; }
265 | .switch-ios.switch-light > span span:last-of-type {
266 | padding-right: 1.875em; }
267 | .switch-ios.switch-light > span:before {
268 | content: '';
269 | display: block;
270 | width: 100%;
271 | height: 100%;
272 | position: absolute;
273 | left: 6.25em;
274 | top: 0;
275 | background-color: #fafafa;
276 | border: 1px solid #d3d3d3;
277 | border-radius: 30px;
278 | -webkit-transition: all 0.5s ease-out;
279 | -moz-transition: all 0.5s ease-out;
280 | transition: all 0.5s ease-out;
281 | box-shadow: inset rgba(0, 0, 0, 0.1) 0 1px 0; }
282 | .switch-ios.switch-light input:checked ~ a {
283 | left: 100%;
284 | margin-left: -1.875em; }
285 | .switch-ios.switch-light input:checked ~ span:before {
286 | border-color: #53d76a;
287 | box-shadow: inset 0 0 0 30px #53d76a; }
288 | .switch-ios.switch-light input:checked ~ span span:first-of-type {
289 | opacity: 0; }
290 | .switch-ios.switch-light input:checked ~ span span:last-of-type {
291 | opacity: 1;
292 | color: #fff; }
293 | .switch-ios.switch-toggle {
294 | background-color: #fafafa;
295 | border: 1px solid #d3d3d3;
296 | border-radius: 30px;
297 | box-shadow: inset rgba(0, 0, 0, 0.1) 0 1px 0; }
298 | .switch-ios.switch-toggle a {
299 | background-color: #53d76a;
300 | border-radius: 25px;
301 | -webkit-transition: all 0.3s ease-out;
302 | -moz-transition: all 0.3s ease-out;
303 | transition: all 0.3s ease-out; }
304 | .switch-ios.switch-toggle label {
305 | color: #868686; }
306 | .switch-ios input:checked + label {
307 | color: #3a3a3a; }
308 | }
309 |
310 | /* Bugfix for older Webkit, including mobile Webkit. Adapted from
311 | * http://css-tricks.com/webkit-sibling-bug/
312 | */
313 | @media only screen and (-webkit-max-device-pixel-ratio: 2) and (max-device-width: 80em) {
314 | .switch-light, .switch-toggle {
315 | -webkit-animation: webkitSiblingBugfix infinite 1s; } }
316 |
317 | @-webkit-keyframes webkitSiblingBugfix {
318 | from {
319 | -webkit-transform: translate3d(0, 0, 0); }
320 |
321 | to {
322 | -webkit-transform: translate3d(0, 0, 0); } }
323 |
--------------------------------------------------------------------------------
/config/initializers/devise.rb:
--------------------------------------------------------------------------------
1 | # Use this hook to configure devise mailer, warden hooks and so forth.
2 | # Many of these configuration options can be set straight in your model.
3 | Devise.setup do |config|
4 | # The secret key used by Devise. Devise uses this key to generate
5 | # random tokens. Changing this key will render invalid all existing
6 | # confirmation, reset password and unlock tokens in the database.
7 | config.secret_key = '60d705c6a0611023aaf3e6c6fbef9d289be3ffc805c2177bc26e38b55df1a8d876c2ecac75c4f3794822c4cb6858a848065371d23b931f4f742f0b9fbcebfe5a'
8 |
9 | # ==> Mailer Configuration
10 | # Configure the e-mail address which will be shown in Devise::Mailer,
11 | # note that it will be overwritten if you use your own mailer class
12 | # with default "from" parameter.
13 | config.mailer_sender = 'please-change-me-at-config-initializers-devise@example.com'
14 |
15 | # Configure the class responsible to send e-mails.
16 | # config.mailer = 'Devise::Mailer'
17 |
18 | # ==> ORM configuration
19 | # Load and configure the ORM. Supports :active_record (default) and
20 | # :mongoid (bson_ext recommended) by default. Other ORMs may be
21 | # available as additional gems.
22 | require 'devise/orm/active_record'
23 |
24 | # ==> Configuration for any authentication mechanism
25 | # Configure which keys are used when authenticating a user. The default is
26 | # just :email. You can configure it to use [:username, :subdomain], so for
27 | # authenticating a user, both parameters are required. Remember that those
28 | # parameters are used only when authenticating and not when retrieving from
29 | # session. If you need permissions, you should implement that in a before filter.
30 | # You can also supply a hash where the value is a boolean determining whether
31 | # or not authentication should be aborted when the value is not present.
32 | # config.authentication_keys = [ :email ]
33 |
34 | # Configure parameters from the request object used for authentication. Each entry
35 | # given should be a request method and it will automatically be passed to the
36 | # find_for_authentication method and considered in your model lookup. For instance,
37 | # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
38 | # The same considerations mentioned for authentication_keys also apply to request_keys.
39 | # config.request_keys = []
40 |
41 | # Configure which authentication keys should be case-insensitive.
42 | # These keys will be downcased upon creating or modifying a user and when used
43 | # to authenticate or find a user. Default is :email.
44 | config.case_insensitive_keys = [ :email ]
45 |
46 | # Configure which authentication keys should have whitespace stripped.
47 | # These keys will have whitespace before and after removed upon creating or
48 | # modifying a user and when used to authenticate or find a user. Default is :email.
49 | config.strip_whitespace_keys = [ :email ]
50 |
51 | # Tell if authentication through request.params is enabled. True by default.
52 | # It can be set to an array that will enable params authentication only for the
53 | # given strategies, for example, `config.params_authenticatable = [:database]` will
54 | # enable it only for database (email + password) authentication.
55 | # config.params_authenticatable = true
56 |
57 | # Tell if authentication through HTTP Auth is enabled. False by default.
58 | # It can be set to an array that will enable http authentication only for the
59 | # given strategies, for example, `config.http_authenticatable = [:database]` will
60 | # enable it only for database authentication. The supported strategies are:
61 | # :database = Support basic authentication with authentication key + password
62 | # config.http_authenticatable = false
63 |
64 | # If http headers should be returned for AJAX requests. True by default.
65 | # config.http_authenticatable_on_xhr = true
66 |
67 | # The realm used in Http Basic Authentication. 'Application' by default.
68 | # config.http_authentication_realm = 'Application'
69 |
70 | # It will change confirmation, password recovery and other workflows
71 | # to behave the same regardless if the e-mail provided was right or wrong.
72 | # Does not affect registerable.
73 | # config.paranoid = true
74 |
75 | # By default Devise will store the user in session. You can skip storage for
76 | # particular strategies by setting this option.
77 | # Notice that if you are skipping storage for all authentication paths, you
78 | # may want to disable generating routes to Devise's sessions controller by
79 | # passing skip: :sessions to `devise_for` in your config/routes.rb
80 | config.skip_session_storage = [:http_auth]
81 |
82 | # By default, Devise cleans up the CSRF token on authentication to
83 | # avoid CSRF token fixation attacks. This means that, when using AJAX
84 | # requests for sign in and sign up, you need to get a new CSRF token
85 | # from the server. You can disable this option at your own risk.
86 | # config.clean_up_csrf_token_on_authentication = true
87 |
88 | # ==> Configuration for :database_authenticatable
89 | # For bcrypt, this is the cost for hashing the password and defaults to 10. If
90 | # using other encryptors, it sets how many times you want the password re-encrypted.
91 | #
92 | # Limiting the stretches to just one in testing will increase the performance of
93 | # your test suite dramatically. However, it is STRONGLY RECOMMENDED to not use
94 | # a value less than 10 in other environments. Note that, for bcrypt (the default
95 | # encryptor), the cost increases exponentially with the number of stretches (e.g.
96 | # a value of 20 is already extremely slow: approx. 60 seconds for 1 calculation).
97 | config.stretches = Rails.env.test? ? 1 : 10
98 |
99 | # Setup a pepper to generate the encrypted password.
100 | # config.pepper = '39efb18fa1b60c04fd9b22aaaf0f756e29f84f55c377d5eb93277e5d8394bdd7d0d37aa3b3df1cb0fdb242ddaa22cb4476e17f3811ec9f8ea369ae6bab1012e9'
101 |
102 | # ==> Configuration for :confirmable
103 | # A period that the user is allowed to access the website even without
104 | # confirming their account. For instance, if set to 2.days, the user will be
105 | # able to access the website for two days without confirming their account,
106 | # access will be blocked just in the third day. Default is 0.days, meaning
107 | # the user cannot access the website without confirming their account.
108 | # config.allow_unconfirmed_access_for = 2.days
109 |
110 | # A period that the user is allowed to confirm their account before their
111 | # token becomes invalid. For example, if set to 3.days, the user can confirm
112 | # their account within 3 days after the mail was sent, but on the fourth day
113 | # their account can't be confirmed with the token any more.
114 | # Default is nil, meaning there is no restriction on how long a user can take
115 | # before confirming their account.
116 | # config.confirm_within = 3.days
117 |
118 | # If true, requires any email changes to be confirmed (exactly the same way as
119 | # initial account confirmation) to be applied. Requires additional unconfirmed_email
120 | # db field (see migrations). Until confirmed, new email is stored in
121 | # unconfirmed_email column, and copied to email column on successful confirmation.
122 | config.reconfirmable = true
123 |
124 | # Defines which key will be used when confirming an account
125 | # config.confirmation_keys = [ :email ]
126 |
127 | # ==> Configuration for :rememberable
128 | # The time the user will be remembered without asking for credentials again.
129 | # config.remember_for = 2.weeks
130 |
131 | # If true, extends the user's remember period when remembered via cookie.
132 | # config.extend_remember_period = false
133 |
134 | # Options to be passed to the created cookie. For instance, you can set
135 | # secure: true in order to force SSL only cookies.
136 | # config.rememberable_options = {}
137 |
138 | # ==> Configuration for :validatable
139 | # Range for password length.
140 | config.password_length = 8..128
141 |
142 | # Email regex used to validate email formats. It simply asserts that
143 | # one (and only one) @ exists in the given string. This is mainly
144 | # to give user feedback and not to assert the e-mail validity.
145 | # config.email_regexp = /\A[^@]+@[^@]+\z/
146 |
147 | # ==> Configuration for :timeoutable
148 | # The time you want to timeout the user session without activity. After this
149 | # time the user will be asked for credentials again. Default is 30 minutes.
150 | # config.timeout_in = 30.minutes
151 |
152 | # If true, expires auth token on session timeout.
153 | # config.expire_auth_token_on_timeout = false
154 |
155 | # ==> Configuration for :lockable
156 | # Defines which strategy will be used to lock an account.
157 | # :failed_attempts = Locks an account after a number of failed attempts to sign in.
158 | # :none = No lock strategy. You should handle locking by yourself.
159 | # config.lock_strategy = :failed_attempts
160 |
161 | # Defines which key will be used when locking and unlocking an account
162 | # config.unlock_keys = [ :email ]
163 |
164 | # Defines which strategy will be used to unlock an account.
165 | # :email = Sends an unlock link to the user email
166 | # :time = Re-enables login after a certain amount of time (see :unlock_in below)
167 | # :both = Enables both strategies
168 | # :none = No unlock strategy. You should handle unlocking by yourself.
169 | # config.unlock_strategy = :both
170 |
171 | # Number of authentication tries before locking an account if lock_strategy
172 | # is failed attempts.
173 | # config.maximum_attempts = 20
174 |
175 | # Time interval to unlock the account if :time is enabled as unlock_strategy.
176 | # config.unlock_in = 1.hour
177 |
178 | # Warn on the last attempt before the account is locked.
179 | # config.last_attempt_warning = false
180 |
181 | # ==> Configuration for :recoverable
182 | #
183 | # Defines which key will be used when recovering the password for an account
184 | # config.reset_password_keys = [ :email ]
185 |
186 | # Time interval you can reset your password with a reset password key.
187 | # Don't put a too small interval or your users won't have the time to
188 | # change their passwords.
189 | config.reset_password_within = 6.hours
190 |
191 | # ==> Configuration for :encryptable
192 | # Allow you to use another encryption algorithm besides bcrypt (default). You can use
193 | # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1,
194 | # :authlogic_sha512 (then you should set stretches above to 20 for default behavior)
195 | # and :restful_authentication_sha1 (then you should set stretches to 10, and copy
196 | # REST_AUTH_SITE_KEY to pepper).
197 | #
198 | # Require the `devise-encryptable` gem when using anything other than bcrypt
199 | # config.encryptor = :sha512
200 |
201 | # ==> Scopes configuration
202 | # Turn scoped views on. Before rendering "sessions/new", it will first check for
203 | # "users/sessions/new". It's turned off by default because it's slower if you
204 | # are using only default views.
205 | # config.scoped_views = false
206 |
207 | # Configure the default scope given to Warden. By default it's the first
208 | # devise role declared in your routes (usually :user).
209 | # config.default_scope = :user
210 |
211 | # Set this configuration to false if you want /users/sign_out to sign out
212 | # only the current scope. By default, Devise signs out all scopes.
213 | # config.sign_out_all_scopes = true
214 |
215 | # ==> Navigation configuration
216 | # Lists the formats that should be treated as navigational. Formats like
217 | # :html, should redirect to the sign in page when the user does not have
218 | # access, but formats like :xml or :json, should return 401.
219 | #
220 | # If you have any extra navigational formats, like :iphone or :mobile, you
221 | # should add them to the navigational formats lists.
222 | #
223 | # The "*/*" below is required to match Internet Explorer requests.
224 | # config.navigational_formats = ['*/*', :html]
225 |
226 | # The default HTTP method used to sign out a resource. Default is :delete.
227 | config.sign_out_via = :delete
228 |
229 | # ==> OmniAuth
230 | # Add a new OmniAuth provider. Check the wiki for more information on setting
231 | # up on your models and hooks.
232 | # config.omniauth :github, 'APP_ID', 'APP_SECRET', scope: 'user,public_repo'
233 |
234 | # ==> Warden configuration
235 | # If you want to use other strategies, that are not supported by Devise, or
236 | # change the failure app, you can configure them inside the config.warden block.
237 | #
238 | # config.warden do |manager|
239 | # manager.intercept_401 = false
240 | # manager.default_strategies(scope: :user).unshift :some_external_strategy
241 | # end
242 |
243 | # ==> Mountable engine configurations
244 | # When using Devise inside an engine, let's call it `MyEngine`, and this engine
245 | # is mountable, there are some extra configurations to be taken into account.
246 | # The following options are available, assuming the engine is mounted as:
247 | #
248 | # mount MyEngine, at: '/my_engine'
249 | #
250 | # The router that invoked `devise_for`, in the example above, would be:
251 | # config.router_name = :my_engine
252 | #
253 | # When using omniauth, Devise cannot automatically set Omniauth path,
254 | # so you need to do it manually. For the users scope, it would be:
255 | # config.omniauth_path_prefix = '/my_engine/users/auth'
256 | end
257 |
--------------------------------------------------------------------------------