Merge branch 'szzh' into develop

.gitignore

@@ -1,30 +1,30 @@
-*.swp
-/.project
-/.idea
-/.bundle
-*.swp
-/config/database.yml
-/config/configuration.yml
-/config/additional_environment.rb
-/files/*
-/log/*
-/public/tmp/*
-/tmp/*
-/public/cache/*
-.gitignore
-/config/newrelic.yml
-/public/images/avatars/*
-/Gemfile
-/Gemfile.lock
-/db/schema.rb
-/Gemfile.lock
-/lib/plugins/acts_as_versioned/test/debug.log
-.rbenv-gemsets
-.DS_Store
-public/api_doc/
-/.metadata
-vendor/cache
-/files
-/public/images/avatars
-/public/files
-/tags
+*.swp
+/.project
+/.idea
+/.bundle
+*.swp
+/config/database.yml
+/config/configuration.yml
+/config/additional_environment.rb
+/files/*
+/log/*
+/public/tmp/*
+/tmp/*
+/public/cache/*
+.gitignore
+/config/newrelic.yml
+/public/images/avatars/*
+/Gemfile
+/Gemfile.lock
+/db/schema.rb
+/Gemfile.lock
+/lib/plugins/acts_as_versioned/test/debug.log
+.rbenv-gemsets
+.DS_Store
+public/api_doc/
+/.metadata
+vendor/cache
+/files
+/public/images/avatars
+/public/files
+/tags

Gemfile

@@ -24,6 +24,8 @@ gem 'acts-as-taggable-on', '2.4.1'
 gem 'spreadsheet'
 gem 'ruby-ole'
 gem 'rails_kindeditor',path:'lib/rails_kindeditor'
+gem "rmagick", ">= 2.0.0"
+
 group :development do
   gem 'grape-swagger'
   #gem 'grape-swagger-ui', git: 'https://github.com/guange2015/grape-swagger-ui.git'
@@ -48,14 +50,6 @@ group :test do
   gem 'selenium-webdriver', '~> 2.42.0'
 
   gem "faker"
-  # platforms :mri, :mingw do
-  #   group :rmagick do
-  #     # RMagick 2 supports ruby 1.9
-  #     # RMagick 1 would be fine for ruby 1.8 but Bundler does not support
-  #     # different requirements for the same gem on different platforms
-  #     gem "rmagick", ">= 2.0.0"
-  #   end
-  #end
 end
 
 # Gems used only for assets and not required

app/api/mobile/apis/courses.rb

@@ -232,6 +232,7 @@ module Mobile
         params do
           requires :token, type: String
           requires :course_id,type: Integer,desc: '课程id'
+          optional :name,type:String,desc:'课件名称可能包含的字符'
         end
         get ":course_id/attachments" do
           cs = CoursesService.new
@@ -240,6 +241,19 @@ module Mobile
           present :status, 0
         end
 
+        desc '课程学生'
+        params do
+          requires :token,type:String
+          requires :course_id,type:Integer,desc: '课程id'
+          optional :name,type:String,desc:'学生的姓名或者昵称或者学号可能包含的字符'
+        end
+        get ":course_id/members" do
+          cs = CoursesService.new
+          count = cs.course_members params
+          present :data, count, with: Mobile::Entities::Member
+          present :status, 0
+        end
+
       end
     end
   end

app/api/mobile/entities/course.rb

@@ -46,6 +46,7 @@ module Mobile
       course_expose :term
       course_expose :time
       course_expose :updated_at
+      course_expose :course_student_num
       expose :teacher, using: Mobile::Entities::User do |c, opt|
         if c.is_a? ::Course
           c.teacher

app/api/mobile/entities/member.rb

@@ -0,0 +1,33 @@
+module Mobile
+  module Entities
+    class Member < Grape::Entity
+      include ApplicationHelper
+      include ApiHelper
+      def self.member_expose(f)
+        expose f do |u,opt|
+          if u.is_a?(Hash) && u.key?(f)
+            u[f]
+          elsif u.is_a?(::Member)
+            if u.respond_to?(f)
+              u.send(f)
+            else
+              case f
+               when :student_id
+                u.user.user_extensions.student_id
+              end
+            end
+          end
+
+        end
+      end
+
+      expose :user, using: Mobile::Entities::User do |c, opt|
+        if c.is_a?(::Member)
+          c.user
+        end
+      end
+      member_expose :student_id
+      member_expose :score
+    end
+  end
+end

app/controllers/account_controller.rb

@@ -31,9 +31,6 @@ class AccountController < ApplicationController
     else
       authenticate_user
     end
-  rescue AuthSourceException => e
-    logger.error "An error occured when authenticating #{params[:username]}: #{e.message}"
-    render_error :message => e.message
   end
 
   # Log out current user and redirect to welcome page
@@ -47,6 +44,10 @@ class AccountController < ApplicationController
     # display the logout form
   end
 
+  def heartbeat
+    render :json => session[:user_id]
+  end
+
   # Lets user choose a new password
   def lost_password
     (redirect_to(home_url); return) unless Setting.lost_password?
@@ -314,7 +315,7 @@ class AccountController < ApplicationController
     #根据home_url生产正则表达式
     eval("code = " + "/^" + home_url.gsub(/\//,"\\\/") + "\\\/*(welcome)?\\\/*(\\\/index\\\/*.*)?\$/")
     if (code=~params[:back_url] || params[:back_url].to_s.include?('lost_password')) && last_login_on != ''
-      redirect_to user_activities_path(user)
+      redirect_to user_activities_path(user,host: Setting.user_domain)
     else
       if last_login_on == ''
         redirect_to my_account_url
@@ -329,7 +330,7 @@ class AccountController < ApplicationController
   end
 
   def set_autologin_cookie(user)
-    token = Token.create(:user => user, :action => 'autologin')
+    token = Token.get_or_create_permanent_login_token(user)
     cookie_options = {
       :value => token.value,
       :expires => 7.days.from_now,

app/controllers/application_controller.rb

@@ -156,16 +156,16 @@ class ApplicationController < ActionController::Base
       user
     end
   end
-  def try_to_autologin1
-
-      # auto-login feature starts a new session
-      user = User.try_to_autologin(params[:token])
-      if user
-          start_user_session(user)
-      end
-      user
 
+  def try_to_autologin1
+    user = User.try_to_autologin(params[:token])
+    if user
+      logout_user if User.current.id != user.id
+      start_user_session(user)
+    end
+    user
   end
+
   # Sets the logged in user
   def logged_user=(user)
     reset_session
@@ -200,7 +200,7 @@ class ApplicationController < ActionController::Base
   def logout_user
     if User.current.logged?
       cookies.delete(autologin_cookie_name)
-      Token.delete_all(["user_id = ? AND action = ?", User.current.id, 'autologin'])
+      # Token.delete_all(["user_id = ? AND action = ?", User.current.id, 'autologin'])
       self.logged_user = nil
     end
   end

app/controllers/avatar_controller.rb

@@ -56,25 +56,9 @@ class AvatarController < ApplicationController
 #    self.digest = md5.hexdigest
     end
     @temp_file = nil
-    # @avatar = Avatar.new(:receive_file => request.raw_post)
-    # @avatar.source_id = User.current.id
-    # @avatar.image_file = params[:filename].presence || Redmine::Utils.random_hex(16)
-    # saved = @avatar.save
-    begin
-      f = Magick::ImageList.new(diskfile)
-      # gif格式不再做大小处理
-      if f.format != 'GIF'
-        width = 300.0
-        proportion = (width/f[0].columns)
-        height = (f[0].rows*proportion)
-        f.resize_to_fill!(width,height)
-        f.write(diskfile)
-      end
-
-    rescue Exception => e
-      logger.error "[Error] avatar : avatar_controller#upload ===> #{e}"
-    end
 
+    image = Trustie::Utils::Image.new(diskfile,true)
+    image.compress(300)
 
     respond_to do |format|
       format.js

app/controllers/bids_controller.rb

@@ -490,7 +490,7 @@ class BidsController < ApplicationController
               (SELECT stars FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 1 AND stars IS NOT NULL ORDER BY updated_at DESC limit 0,1) AS t_score,
               (SELECT AVG(stars) FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 0) AS s_score
               FROM homework_attaches WHERE bid_id = #{@bid.id} ORDER BY s_score DESC,created_at ASC) AS table1
-              WHERE table1.t_score IS NULL OR table1.t_score = 0")
+              WHERE table1.t_score IS NULL")
           @not_batch_homework = true
           @cur_type = 1
         else

app/controllers/discuss_demos_controller.rb

@@ -0,0 +1,42 @@
+class DiscussDemosController < ApplicationController
+  def index
+
+    @discuss_demo_list = DiscussDemo.where("body is not null").order("created_at desc").page(params[:page] || 1).per(10)
+  end
+
+  def new
+    @discuss_demo = DiscussDemo.create
+    @discuss_demo.save!
+    @discuss_demo
+  end
+
+  def create
+
+  end
+
+  def update
+    @discuss_demo = DiscussDemo.find(params[:id])
+    @discuss_demo.update_attributes(:title =>  params[:discuss_demo][:title],:body =>  params[:discuss_demo][:body])
+    redirect_to :controller=> 'discuss_demos',:action => 'show',:id => params[:id]
+  end
+
+  def delete
+
+  end
+
+  def destroy
+    asset = Kindeditor::Asset.find_by_owner_id(params[:id])
+    if !asset.nil?
+      filepath = File.join(Rails.root,"public","files","uploads",
+                           asset[:created_at].to_s.gsub("+0800","").to_datetime.strftime("%Y%m").to_s,
+                           asset[:asset].to_s)
+      File.delete(filepath) if File.exist?filepath
+    end
+    DiscussDemo.destroy(params[:id])
+    redirect_to :controller=> 'discuss_demos',:action => 'index'
+  end
+
+  def show
+    @discuss_demo = DiscussDemo.find(params[:id])
+  end
+end

app/controllers/homework_attach_controller.rb

@@ -51,7 +51,7 @@ class HomeworkAttachController < ApplicationController
       order_by = "created_at #{direction}"
     end
     all_homework_list = HomeworkAttach.eager_load(:attachments,:user,:rate_averages).find_by_sql("SELECT * FROM (SELECT homework_attaches.*,
-            (SELECT stars FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 1 AND stars IS NOT NULL AND stars > 0 ORDER BY updated_at DESC limit 0,1) AS t_score,
+            (SELECT stars FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 1 AND stars IS NOT NULL ORDER BY updated_at DESC limit 0,1) AS t_score,
             (SELECT AVG(stars) FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 0) AS s_score
             FROM homework_attaches WHERE bid_id = #{@bid.id}
             ORDER BY #{order_by}) AS table1
@@ -445,7 +445,8 @@ class HomeworkAttachController < ApplicationController
     is_teacher = @is_teacher ? 1 : 0
     #保存评分@homework.rate(@m_score.to_i,User.current.id,:quality, (@is_teacher ? 1 : 0))
     @is_comprehensive_evaluation = @is_teacher ? 1 : (@is_anonymous_comments ? 2 : 3) #判断当前评论是老师评论？匿评？留言
-    if @m_score && (@is_teacher || @is_anonymous_comments)
+    if @is_teacher || @is_anonymous_comments
+      @m_score ||= 0
       rate = @homework.rates(:quality).where(:rater_id => User.current.id, :is_teacher_score => is_teacher).first
       if rate
         rate.stars = @m_score
@@ -502,7 +503,7 @@ class HomeworkAttachController < ApplicationController
       get_not_batch_homework_list params[:cur_sort] || "s_socre",params[:cur_direction] || "desc",@homework.bid_id
     elsif @cur_type == "2" #老师已批列表
       @result_homework = HomeworkAttach.find_by_sql("SELECT homework_attaches.*,
-            (SELECT stars FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 1 AND stars IS NOT NULL AND stars > 0 ORDER BY updated_at DESC limit 0,1) AS t_score,
+            (SELECT stars FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 1 AND stars IS NOT NULL ORDER BY updated_at DESC limit 0,1) AS t_score,
             (SELECT AVG(stars) FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 0) AS s_score
             FROM homework_attaches WHERE id = #{@homework.id}").first
     elsif @cur_type == "3" #全部作业列表
@@ -629,7 +630,7 @@ class HomeworkAttachController < ApplicationController
         (SELECT AVG(stars) FROM seems_rateable_rates WHERE rateable_type = 'HomeworkAttach' AND rateable_id = homework_attaches.id AND is_teacher_score = 0) AS s_score
         FROM homework_attaches WHERE bid_id = #{bid_id}
         ORDER BY #{order_by}) AS table1
-        WHERE table1.t_score IS NULL OR table1.t_score = 0 ")
+        WHERE table1.t_score IS NULL ")
     @all_homework_list = search_homework_member(@all_homework_list,@search_name.to_s.downcase) if @search_name
     # @homework_list = paginateHelper @all_homework_list,10
     @homework_list = @all_homework_list

app/controllers/issues_controller.rb

@@ -75,7 +75,11 @@ class IssuesController < ApplicationController
       else
         @limit = 10#per_page_option
       end
-
+      @assign_to_id = params[:assigned_to_id]
+      @author_id = params[:author_id]
+      @priority_id = params[:priority_id]
+      @status_id = params[:status_id]
+      @subject = params[:subject]
       @issue_count = @query.issue_count
       @issue_pages = Paginator.new @issue_count, @limit, params['page']
       @offset ||= @issue_pages.offset

app/controllers/messages_controller.rb

@@ -123,13 +123,13 @@ class MessagesController < ApplicationController
     #@topic.update_attribute(:updated_on, Time.now)
     if !@reply.new_record?
       if params[:asset_id]
-       ids = params[:asset_id].split(',')
-       update_kindeditor_assets_owner ids,@reply.id,OwnerTypeHelper::MESSAGE
+        ids = params[:asset_id].split(',')
+        update_kindeditor_assets_owner ids,@reply.id,OwnerTypeHelper::MESSAGE
       end
       call_hook(:controller_messages_reply_after_save, { :params => params, :message => @reply})
       attachments = Attachment.attach_files(@reply, params[:attachments])
       render_attachment_warning_if_needed(@reply)
-     else
+    else
       #render file: 'messages#show', layout: 'base_courses'
     end
     redirect_to board_message_url(@board, @topic, :r => @reply)
@@ -202,7 +202,7 @@ class MessagesController < ApplicationController
     render :partial => 'common/preview'
   end
 
-private
+  private
   def find_message
     return unless find_board
     @message = @board.messages.find(params[:id], :include => :parent)

app/controllers/my_controller.rb

@@ -95,76 +95,46 @@ class MyController < ApplicationController
     @pref = @user.pref
     diskfile = disk_filename('User', @user.id)
     diskfile1 = diskfile + 'temp'
-    if request.post?
-      @user.safe_attributes = params[:user]
-      @user.pref.attributes = params[:pref]
-      @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
-      @user.login = params[:login]
-      unless @user.user_extensions.nil?
-        if @user.user_extensions.identity == 2
-          @user.firstname = params[:enterprise_name]
-        end
-      end
-
-      @se = @user.extensions
-      if params[:occupation].to_i.to_s == params[:occupation]
-        @se.school_id = params[:occupation]
-      else
-        @se.occupation = params[:occupation]
-      end
-      @se.gender = params[:gender]
-      @se.location = params[:province] if params[:province]
-      @se.location_city = params[:city] if params[:city]
-      @se.identity = params[:identity].to_i if params[:identity]
-      @se.technical_title = params[:technical_title] if params[:technical_title]
-      @se.student_id = params[:no] if params[:no]
-
-      if @user.save && @se.save
-        # 头像保存
-        if File.exist?(diskfile1)
-          if File.exist?(diskfile)
-            File.delete(diskfile)
-          end
-          File.open(diskfile1, "rb") do |f|
-            buffer = f.read(10)
-            if buffer != "DELETE"
-              File.open(diskfile1, "rb") do |f1|
-                File.open(diskfile, "wb") do |f|
-                  buffer = ""
-                  while (buffer = f1.read(8192))
-                    f.write(buffer)
-                  end
-                end
-              end
-
-              # File.rename(diskfile + 'temp',diskfile);
-            end
+    begin
+      if request.post?
+        @user.safe_attributes = params[:user]
+        @user.pref.attributes = params[:pref]
+        @user.pref[:no_self_notified] = (params[:no_self_notified] == '1')
+        @user.login = params[:login]
+        unless @user.user_extensions.nil?
+          if @user.user_extensions.identity == 2
+            @user.firstname = params[:enterprise_name]
           end
         end
 
-        # 确保文件被删除
-        if File.exist?(diskfile1)
-          File.delete(diskfile1)
+        @se = @user.extensions
+        if params[:occupation].to_i.to_s == params[:occupation]
+          @se.school_id = params[:occupation]
+        else
+          @se.occupation = params[:occupation]
         end
+        @se.gender = params[:gender]
+        @se.location = params[:province] if params[:province]
+        @se.location_city = params[:city] if params[:city]
+        @se.identity = params[:identity].to_i if params[:identity]
+        @se.technical_title = params[:technical_title] if params[:technical_title]
+        @se.student_id = params[:no] if params[:no]
 
-        @user.pref.save
-        @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
-        set_language_if_valid @user.language
-        flash[:notice] = l(:notice_account_updated)
-        redirect_to user_url(@user)
-        return
-      else
-        # 确保文件被删除
-        if File.exist?(diskfile1)
-          File.delete(diskfile1)
+        if @user.save && @se.save
+          # 头像保存
+          FileUtils.mv diskfile1, diskfile, force: true
+          @user.pref.save
+          @user.notified_project_ids = (@user.mail_notification == 'selected' ? params[:notified_project_ids] : [])
+          set_language_if_valid @user.language
+          flash[:notice] = l(:notice_account_updated)
+          redirect_to user_url(@user)
+          return
+        else
+          @user.login = lg
         end
-        @user.login = lg
-      end
-    else
-      # 确保文件被删除
-      if File.exist?(diskfile1)
-        File.delete(diskfile1)
       end
+    ensure
+      File.delete(diskfile1) if File.exist?(diskfile1)
     end
 
   end
@@ -200,31 +170,20 @@ class MyController < ApplicationController
       @user = us.change_password params.merge(:current_user_id => @user.id)
       if @user.errors.full_messages.count <= 0
         flash.now[:notice] = l(:notice_account_password_updated)
-        redirect_to my_account_url
+        # 修改完密码，让其重新登录，并更新Token
+        Token.delete_user_all_tokens(@user)
+        logout_user
+        redirect_to signin_url(back_url: my_account_path)
+      else
+        flash.now[:error] = l(:notice_account_wrong_password)
       end
     end
   rescue Exception => e
     if e.message == 'wrong password'
       flash.now[:error] = l(:notice_account_wrong_password)
+    else
+      flash.now[:error] = e.message
     end
-  #  @user = User.current
-  #  unless @user.change_password_allowed?
-  #    flash.now[:error] = l(:notice_can_t_change_password)
-  #    redirect_to my_account_url
-  #    return
-  #  end
-  #  if request.post?
-  #    if @user.check_password?(params[:password])
-  #      @user.password, @user.password_confirmation = params[:new_password], params[:new_password_confirmation]
-  #
-  #      if @user.save
-  #        flash.now[:notice] = l(:notice_account_password_updated)
-  #        redirect_to my_account_url
-  #      end
-  #    else
-  #      flash.now[:error] = l(:notice_account_wrong_password)
-  #    end
-  #  end
   end
 
   # Create a new feeds key

app/controllers/projects_controller.rb

@@ -247,10 +247,9 @@ class ProjectsController < ApplicationController
     # 1、自动注册
     # 2、加入项目、创建角色
     # 3、用户得分
-    if params[:login]
-      # 自动激活用户
-      user.status = 1
-      user.save
+    if params[:email]
+      user = User.find_by_mail(params[:email].to_s)
+      Member.create(:role_ids => [4], :user_id => user.id,:project_id => @project.id)
     end
     if params[:jump] && redirect_to_project_menu_item(@project, params[:jump])
       return

app/controllers/trackers_controller.rb

@@ -38,12 +38,13 @@ class TrackersController < ApplicationController
     @tracker ||= Tracker.new(params[:tracker])
     @trackers = Tracker.sorted.all
     @projects = Project.where("project_type = #{Project::ProjectType_project}").all
-    @courses = Course.all
-    @course_activity_count=Hash.new
-    @courses.each do |course|
-      @course_activity_count[course.id]=0
-    end
-    @course_activity_count=get_course_activity @courses,@course_activity_count
+    # 去掉原因，这块代码已经没有用到
+    # @courses = Course.all
+    # @course_activity_count=Hash.new
+    # @courses.each do |course|
+    #   @course_activity_count[course.id]=0
+    # end
+    # @course_activity_count=get_course_activity @courses,@course_activity_count
   end
 
   def create

app/controllers/welcome_controller.rb

@@ -58,12 +58,18 @@ class WelcomeController < ApplicationController
     else
       case @first_page.sort_type
         when 0
+          @my_projects = find_my_projects
+          @other_projects = @my_projects.count < 9 ? find_miracle_project( 9 - @my_projects.count, 3,"score desc") : []
           @projects = find_miracle_project(10, 3,"created_on desc")
           #@projects =  @projects_all.order("created_on desc")
         when 1
+          @my_projects = find_my_projects
+          @other_projects = @my_projects.count < 9 ? find_miracle_project( 9 - @my_projects.count, 3,"score desc") : []
           @projects = find_miracle_project(10, 3,"score desc")
           #@projects = @projects_all.order("grade desc")
         when 2
+          @my_projects = find_my_projects
+          @other_projects = @my_projects.count < 9 ? find_miracle_project( 9 - @my_projects.count, 3,"score desc") : []
           @projects = find_miracle_project(10, 3,"watchers_count desc")
           #@projects = @projects_all.order("watchers_count desc")
 

app/helpers/application_helper.rb

@@ -329,12 +329,12 @@ module ApplicationHelper
     imagesize = attachment.thumbnail(:size => "200*200")
     imagepath = named_attachment_path(attachment, attachment.filename)
     if imagesize
-      link_to image_tag(thumbnail_path(attachment), height: '73', width: '100', name: 'issue_attachment_picture'),
+      link_to image_tag(thumbnail_path(attachment), height: '73', width: '100', class: 'issue_attachment_picture'),
               imagepath,
               :title => attachment.filename
 
     else
-      link_to image_tag(imagepath , height: '73', width: '100', name: 'issue_attachment_picture'),
+      link_to image_tag(imagepath , height: '73', width: '100', class: 'issue_attachment_picture'),
               imagepath,
               :title => attachment.filename
     end

app/helpers/courses_helper.rb

@@ -797,4 +797,17 @@ module CoursesHelper
     end
     result
   end
+
+  def zh_course_role role
+    if role == "TeachingAsistant"
+      result = l(:label_TA)
+    elsif role == "Teacher"
+      result = l(:label_teacher)
+    elsif role == "Student"
+      result = l(:label_student)
+    elsif role == "Manager"
+      result = l(:field_admin)
+    end
+    result
+  end
 end

app/helpers/queries_helper.rb

@@ -243,15 +243,15 @@ module QueriesHelper
 
   # Retrieve query from session or build a new query
   def retrieve_query
-    if !params[:query_id].blank?
-      cond = "project_id IS NULL"
-      cond << " OR project_id = #{@project.id}" if @project
-      @query = IssueQuery.find(params[:query_id], :conditions => cond)
-      raise ::Unauthorized unless @query.visible?
-      @query.project = @project
-      session[:query] = {:id => @query.id, :project_id => @query.project_id}
-      sort_clear
-    elsif api_request? || params[:set_filter] || session[:query].nil? || session[:query][:project_id] != (@project ? @project.id : nil)
+    # if !params[:query_id].blank?
+    #   cond = "project_id IS NULL"
+    #   cond << " OR project_id = #{@project.id}" if @project
+    #   @query = IssueQuery.find(params[:query_id], :conditions => cond)
+    #   raise ::Unauthorized unless @query.visible?
+    #   @query.project = @project
+    #   session[:query] = {:id => @query.id, :project_id => @query.project_id}
+    #   sort_clear
+    # elsif api_request? || params[:set_filter] || session[:query].nil? || session[:query][:project_id] != (@project ? @project.id : nil)
       # Give it a name, required to be valid
       @query = IssueQuery.new(:name => "_")
       @query.project = @project
@@ -268,12 +268,12 @@ module QueriesHelper
                     'assigned_to_id' => [params[:assigned_to_id]]} unless params[:status_id].nil?
       @query.build_from_params(params)
       #session[:query] = {:project_id => @query.project_id, :filters => @query.filters, :group_by => @query.group_by, :column_names => @query.column_names}
-    else
-      # retrieve from session
-      @query = IssueQuery.find_by_id(session[:query][:id]) if session[:query][:id]
-      @query ||= IssueQuery.new(:name => "_", :filters => session[:query][:filters], :group_by => session[:query][:group_by], :column_names => session[:query][:column_names])
-      @query.project = @project
-    end
+    # else
+    #   # retrieve from session
+    #   @query = IssueQuery.find_by_id(session[:query][:id]) if session[:query][:id]
+    #   @query ||= IssueQuery.new(:name => "_", :filters => session[:query][:filters], :group_by => session[:query][:group_by], :column_names => session[:query][:column_names])
+    #   @query.project = @project
+    # end
   end
 
   def retrieve_query_from_session

app/helpers/welcome_helper.rb

@@ -443,6 +443,10 @@ module WelcomeHelper
     resultSet.take(limit)
   end
 
+  def find_my_projects
+    my_projects = User.current.memberships.all(conditions: "projects.project_type = 0")
+  end
+
   def sort_project_by_hot_rails project_type=0, order_by='score DESC', limit=15
     # Project.find_by_sql("
 			# SELECT p.id, p.name, p.description, p.identifier, t.project_id

app/models/mailer.rb

@@ -71,14 +71,14 @@ class Mailer < ActionMailer::Base
 
   # 邀请已注册的用户加入项目
   def request_member_to_project(email, project, invitor)
+    @subject = "#{invitor.name} #{l(:label_invite_project)}: #{project.name} "
     user = User.find_by_mail(email.to_s)
-      Member.create(:role_ids => [4], :user_id => user.id,:project_id => project.id)
-      @invitor_name = "#{invitor.name}"
-      @project_name = "#{project.name}"
-      @user = user
-      @token = Token.get_token_from_user(user, 'autologin')
-      @project_url = url_for(:controller => 'projects', :action => 'show', :id => project.id,:user => user, :token => @token.value)
-      mail :to => email, :invitor_name => "#{@invitor_name}", :project_name => "#{@project_name}"
+    @invitor_name = "#{invitor.name}"
+    @project_name = "#{project.name}"
+    @user = user
+    @token = Token.get_token_from_user(user, 'autologin')
+    @project_url = url_for(:controller => 'projects', :action => 'show', :id => project.id, :email => email, :token => @token.value)
+    mail :to => email, :subject => @subject
   end
 
   # author: alan

app/models/token.rb

@@ -1,3 +1,4 @@
+#coding=utf-8
 # Redmine - project management software
 # Copyright (C) 2006-2013  Jean-Philippe Lang
 #
@@ -14,7 +15,7 @@
 # You should have received a copy of the GNU General Public License
 # along with this program; if not, write to the Free Software
 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
-
+#
 class Token < ActiveRecord::Base
   belongs_to :user
   validates_uniqueness_of :value
@@ -27,6 +28,14 @@ class Token < ActiveRecord::Base
     self.value = Token.generate_token_value
   end
 
+  def self.get_or_create_permanent_login_token(user)
+    token = Token.get_token_from_user(user, 'autologin')
+    unless token
+      token = Token.create(:user => user, :action => 'autologin')
+    end
+    token
+  end
+
   def self.get_token_from_user(user, action)
     token = Token.where(:action => action, :user_id => user).first
     unless token
@@ -42,7 +51,7 @@ class Token < ActiveRecord::Base
 
   # Delete all expired tokens
   def self.destroy_expired
-    Token.delete_all ["action NOT IN (?) AND created_on < ?", ['feeds', 'api'], Time.now - @@validity_time]
+    Token.delete_all ["action NOT IN (?) AND created_on < ?", ['feeds', 'api', 'autologin'], Time.now - @@validity_time]
   end
 
   # Returns the active user who owns the key for the given action
@@ -80,6 +89,10 @@ class Token < ActiveRecord::Base
     Redmine::Utils.random_hex(20)
   end
 
+  def self.delete_user_all_tokens(user)
+    Token.delete_all(user_id: user.id)
+  end
+
   private
 
   # Removes obsolete tokens (same user and action)

app/models/user_extensions.rb

@@ -1,86 +1,86 @@
-# encoding: utf-8
-=begin
-  identity字段含义
-  0 教师教授
-  1 学生
-  2 企业
-  3 开发者
-=end
-class UserExtensions < ActiveRecord::Base
-  validate :school, presence: true
-
-  belongs_to :user
-  belongs_to :school, :class_name => 'School', :foreign_key => :school_id
-  attr_accessible :user_id,:birthday,:brief_introduction,:gender,:location,:occupation,:work_experience,:zip_code,:identity, :technical_title,:student_id
-  TEACHER = 0
-  STUDENT = 1
-  ENTERPRISE = 2
-  DEVELOPER = 3
-  #this method was used to update the table user_extensions
-  def update_user_extensions(birthday=nil,brief_introduction=nil,
-                              gender=nil,location=nil,occupation=nil,work_experience=nil,zip_code=nil)
-     self.birthday = birthday
-     self.brief_introduction = brief_introduction
-     self.gender = gender
-     self.location = location
-     self.occupation = occupation
-     self.work_experience = work_experience
-     self.zip_code = zip_code
-     self.save
-  end
-  
-  def get_brief_introduction
-     return self.brief_introduction
-  end
-
-
-# added by meng
-  def show_identity
-    if User.current.language == 'zh'||User.current.language == ''
-      case self.identity
-        when 0
-          user_identity = l(:label_account_identity_teacher)
-        when 1
-          user_identity = l(:label_account_identity_student)
-        when 2
-          user_identity = l(:label_account_identity_enterprise)
-        when 3
-          user_identity = l(:label_account_identity_developer)
-        else
-          user_identity = ''
-      end
-    else
-      case self.identity
-        when 0
-          user_identity = l(:label_account_identity_teacher)
-        when 1
-          user_identity = l(:label_account_identity_student)
-        when 2
-          user_identity = l(:label_account_identity_enterprise)
-        when 3
-          user_identity = l(:label_account_identity_developer)
-        else
-          user_identity = ''
-       end
-    end
-    return user_identity
-  end
-# end
-
-
-  def self.introduction(user, message)
-    unless user.user_extensions.nil?
-       info = user.user_extensions
-       info.brief_introduction = message
-       info.save
-    else
-       info = UserExtensions.new
-       info.user_id = user.id
-       info.brief_introduction = message
-       info.save
-    end
-  end
-  
-
-  
-end
+# encoding: utf-8
+=begin
+  identity字段含义
+  0 教师教授
+  1 学生
+  2 企业
+  3 开发者
+=end
+class UserExtensions < ActiveRecord::Base
+  validate :school, presence: true
+
+  belongs_to :user
+  belongs_to :school, :class_name => 'School', :foreign_key => :school_id
+  attr_accessible :user_id,:birthday,:brief_introduction,:gender,:location,:occupation,:work_experience,:zip_code,:identity, :technical_title,:student_id
+  TEACHER = 0
+  STUDENT = 1
+  ENTERPRISE = 2
+  DEVELOPER = 3
+  #this method was used to update the table user_extensions
+  def update_user_extensions(birthday=nil,brief_introduction=nil,
+                              gender=nil,location=nil,occupation=nil,work_experience=nil,zip_code=nil)
+     self.birthday = birthday
+     self.brief_introduction = brief_introduction
+     self.gender = gender
+     self.location = location
+     self.occupation = occupation
+     self.work_experience = work_experience
+     self.zip_code = zip_code
+     self.save
+  end
+  
+  def get_brief_introduction
+     return self.brief_introduction
+  end
+
+
+# added by meng
+  def show_identity
+    if User.current.language == 'zh'||User.current.language == ''
+      case self.identity
+        when 0
+          user_identity = l(:label_account_identity_teacher)
+        when 1
+          user_identity = l(:label_account_identity_student)
+        when 2
+          user_identity = l(:label_account_identity_enterprise)
+        when 3
+          user_identity = l(:label_account_identity_developer)
+        else
+          user_identity = ''
+      end
+    else
+      case self.identity
+        when 0
+          user_identity = l(:label_account_identity_teacher)
+        when 1
+          user_identity = l(:label_account_identity_student)
+        when 2
+          user_identity = l(:label_account_identity_enterprise)
+        when 3
+          user_identity = l(:label_account_identity_developer)
+        else
+          user_identity = ''
+       end
+    end
+    return user_identity
+  end
+# end
+
+
+  def self.introduction(user, message)
+    unless user.user_extensions.nil?
+       info = user.user_extensions
+       info.brief_introduction = message
+       info.save
+    else
+       info = UserExtensions.new
+       info.user_id = user.id
+       info.brief_introduction = message
+       info.save
+    end
+  end
+  
+
+  
+end

app/services/courses_service.rb

@@ -86,7 +86,7 @@ class CoursesService
       gender = m.user.user_extensions.gender.nil? ? 0 : m.user.user_extensions.gender
       work_unit = get_user_work_unit m.user
       location = get_user_location m.user
-      users << {:id => m.user.id, :img_url => img_url, :nickname => m.user.login, :gender => gender, :work_unit => work_unit, :mail => m.user.mail, :location => location, :brief_introduction => m.user.user_extensions.brief_introduction}
+      users << {:id => m.user.id, :img_url => img_url, :nickname => m.user.login, :gender => gender, :work_unit => work_unit, :mail => m.user.mail, :location => location, :brief_introduction => m.user.user_extensions.brief_introduction,:realname=>m.user.realname}
     end
     users
   end
@@ -169,7 +169,7 @@ class CoursesService
     unless (course.is_public == 1 ||  current_user.member_of_course?(course) || current_user.admin?)
       raise '403'
     end
-    {:course => course,:work_unit => work_unit, :img_url => url_to_avatar(course),:current_user_is_member => current_user.member_of_course?(course),:current_user_is_teacher => is_course_teacher(current_user,course)}
+    {:course => course,:work_unit => work_unit, :img_url => url_to_avatar(course),:current_user_is_member => current_user.member_of_course?(course),:current_user_is_teacher => is_course_teacher(current_user,course),:course_student_num => course ? course.student.count.to_s : 0}
   end
 
   #创建课程
@@ -433,13 +433,48 @@ class CoursesService
      result = []
      @course = Course.find(params[:course_id])
      @attachments = @course.attachments.order("created_on desc")
-     @attachments.each do |atta|
-       result << {:filename => atta.filename,:description => atta.description,:downloads => atta.downloads,:quotes => atta.quotes.nil? ? 0 :atta.quotes  }
+     if !params[:name].nil? && params[:name] != ""
+       @attachments.each do |atta|
+         result << {:filename => atta.filename,
+                    :description => atta.description,
+                    :downloads => atta.downloads,
+                    :quotes => atta.quotes.nil? ? 0 :atta.quotes  } if atta.filename.include?(params[:name])
+
+       end
+     else
+       @attachments.each do |atta|
+         result << {:filename => atta.filename,
+                    :description => atta.description,
+                    :downloads => atta.downloads,
+                    :quotes => atta.quotes.nil? ? 0 :atta.quotes  }
+
+       end
      end
      result
    end
 
+  # 课程学生列表
+  def course_members params
+    @all_members = searchmember_by_name(student_homework_score(0,params[:course_id], 10,"desc"),params[:name])
+  end
+
   private
+  def searchmember_by_name  members, name
+    #searchPeopleByRoles(project, StudentRoles)
+    mems = []
+    if name != ""
+      name = name.to_s.downcase
+      members.each do |m|
+        username = m.user[:lastname].to_s.downcase + m.user[:firstname].to_s.downcase
+        if(m.user[:login].to_s.downcase.include?(name) ||  m.user.user_extensions[:student_id].to_s.downcase.include?(name) || username.include?(name))
+          mems << m
+        end
+      end
+    else
+      mems = members
+    end
+    mems
+  end
   def show_homework_info course,bid,current_user,is_course_teacher
     author_real_name = bid.author.lastname + bid.author.firstname
     many_times = course.homeworks.index(bid) + 1
@@ -476,5 +511,52 @@ class CoursesService
   end
 
 
+  def student_homework_score(groupid,course_id, nums, score_sort_by)
+    #teachers = find_course_teachers(@course)
+    #start_from = start_from * nums
+    sql_select = ""
+    if groupid == 0
+      if nums == 0
+        sql_select = "SELECT members.*, SUM(homework_attaches.score) as score FROM members, homework_attaches
+            WHERE members.course_id = #{course_id} AND members.user_id in (SELECT students_for_courses.student_id FROM students_for_courses WHERE course_id = #{course_id}) AND members.user_id = homework_attaches.user_id
+        AND homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id}) GROUP BY members.user_id
+        UNION all
+        SELECT members.*, 0 as  score FROM members,homework_attaches,students_for_courses WHERE members.course_id = #{course_id} AND
+        students_for_courses.course_id = #{course_id} and members.user_id = students_for_courses.student_id AND
+        members.user_id NOT IN (SELECT homework_attaches.user_id FROM homework_attaches WHERE homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id} )
+        )
+        GROUP BY members.user_id ORDER BY score #{score_sort_by}"
+      else
+        sql_select = "SELECT members.*, SUM(homework_attaches.score) as score FROM members, homework_attaches
+            WHERE members.course_id = #{course_id} AND members.user_id in (SELECT students_for_courses.student_id FROM students_for_courses WHERE course_id = #{course_id}) AND members.user_id = homework_attaches.user_id
+        AND homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id})  GROUP BY members.user_id
+        UNION all
+        SELECT members.*, 0 as  score FROM members,homework_attaches,students_for_courses WHERE members.course_id = #{course_id} AND
+        students_for_courses.course_id = #{course_id} and members.user_id = students_for_courses.student_id AND
+        members.user_id NOT IN (SELECT homework_attaches.user_id FROM homework_attaches WHERE homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id} )
+        )
+        GROUP BY members.user_id ORDER BY score #{score_sort_by} " #limit #{start_from}, #{nums}"
+
+      end
+    else
+      sql_select = "SELECT members.*, SUM(homework_attaches.score) as score FROM members, homework_attaches
+        WHERE members.course_id = #{course_id} AND members.user_id in (SELECT students_for_courses.student_id FROM students_for_courses WHERE course_id = #{course_id}) AND members.user_id = homework_attaches.user_id
+        and members.course_group_id = #{groupid} AND homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id})
+        GROUP BY members.user_id
+        UNION all
+        SELECT members.*, 0 as  score FROM members,homework_attaches,students_for_courses WHERE members.course_id = #{course_id}
+        and members.course_group_id = #{groupid} AND
+        students_for_courses.course_id = #{course_id} and members.user_id = students_for_courses.student_id AND
+        members.user_id NOT IN (SELECT homework_attaches.user_id FROM homework_attaches WHERE homework_attaches.bid_id in (SELECT bid_id FROM homework_for_courses WHERE course_id = #{course_id} )
+        )
+        GROUP BY members.user_id ORDER BY score #{score_sort_by}"
+    end
+    sql = ActiveRecord::Base.connection()
+    homework_scores = Member.find_by_sql(sql_select)
+    sql.close()
+
+    homework_scores
+  end
+
 
 end