From 30321781c208b47af2a2ab48182afb88e405a86e Mon Sep 17 00:00:00 2001
From: Harvey Kandola <harvey@documize.com>
Date: Wed, 4 Oct 2017 12:27:56 -0400
Subject: [PATCH] implemented view users permission

---
 domain/auth/endpoint.go                       |   2 +-
 gui/app/pods/customize/folders/template.hbs   |  90 ++---
 gui/app/pods/customize/users/template.hbs     |   2 -
 gui/app/pods/folder/settings/route.js         |   2 +-
 gui/app/services/ajax.js                      |   2 +-
 gui/app/services/session.js                   |  15 +-
 gui/app/styles/view/page-customize.scss       |  13 +-
 .../components/customize/auth-settings.hbs    | 144 ++++----
 .../components/customize/general-settings.hbs |  62 ++--
 .../components/customize/global-settings.hbs  |  97 ++---
 .../components/customize/user-admin.hbs       | 332 +++++++++---------
 .../components/customize/user-settings.hbs    |  42 ++-
 server/middleware.go                          |   8 +-
 13 files changed, 423 insertions(+), 388 deletions(-)

diff --git a/domain/auth/endpoint.go b/domain/auth/endpoint.go
index 99e91d51..d91e84f0 100644
--- a/domain/auth/endpoint.go
+++ b/domain/auth/endpoint.go
@@ -110,7 +110,7 @@ func (h *Handler) Login(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 
-	h.Runtime.Log.Info("login " + email + " @ " + dom)
+	h.Runtime.Log.Info("logged in " + email + " @ " + dom)
 
 	authModel := auth.AuthenticationModel{}
 	authModel.Token = GenerateJWT(h.Runtime, u.RefID, org.RefID, dom)
diff --git a/gui/app/pods/customize/folders/template.hbs b/gui/app/pods/customize/folders/template.hbs
index 4814219b..dfa26f76 100644
--- a/gui/app/pods/customize/folders/template.hbs
+++ b/gui/app/pods/customize/folders/template.hbs
@@ -1,51 +1,51 @@
-{{#if folders}}
+<div class="page-customize">
+	<div class="space-admin">
 
-	<div class="global-folder-settings">
-		<div class="form-header">
-			<div class="title">{{folders.length}} shared {{label}}</div>
-			<div class="tip">View and change shared space ownership</div>
-		</div>
-		<div class="input-control manage-space-list">
-			{{#each folders as |folder|}}
-				<div class="space pull-left width-80">
-					{{#link-to 'folder' folder.id folder.slug class="alt"}}{{folder.name}}{{/link-to}}
-				</div>
-				<div class="pull-right">
-					<div id="delete-space-button-{{folder.id}}" class="round-button-mono" title="Delete" {{action "onShow" folder.id}}>
-						<i class="material-icons">delete</i>
+		{{#if folders}}
+			<div class="form-header">
+				<div class="title">{{folders.length}} shared {{label}}</div>
+				<div class="tip">View and change shared space ownership</div>
+			</div>
+			<div class="input-control manage-space-list">
+				{{#each folders as |folder|}}
+					<div class="space pull-left width-80">
+						{{#link-to 'folder' folder.id folder.slug class="alt"}}{{folder.name}}{{/link-to}}
+					</div>
+					<div class="pull-right">
+						<div id="delete-space-button-{{folder.id}}" class="round-button-mono" title="Delete" {{action "onShow" folder.id}}>
+							<i class="material-icons">delete</i>
+						</div>
+					</div>
+					<div class="clearfix" />
+				{{/each}}
+			</div>
+
+			<div class="dropdown-dialog delete-space-dialog">
+				<div class="content">
+					<p>Are you sure you want to delete this space and all associated documents?</p>
+					<div class="input-control">
+						<div class="tip">Please type the space name to confirm</div>
+						{{input type='text' id="delete-space-name" value=deleteSpace.name}}
 					</div>
 				</div>
-				<div class="clearfix" />
-			{{/each}}
-		</div>
-	</div>
-
-	<div class="dropdown-dialog delete-space-dialog">
-		<div class="content">
-			<p>Are you sure you want to delete this space and all associated documents?</p>
-			<div class="input-control">
-				<div class="tip">Please type the space name to confirm</div>
-				{{input type='text' id="delete-space-name" value=deleteSpace.name}}
+				<div class="actions">
+					<div class="flat-button" {{action 'onCancel'}}>
+						cancel
+					</div>
+					<div class="flat-button flat-red" {{action 'onDelete'}}>
+						delete
+					</div>
+				</div>
+				<div class="clearfix"></div>
 			</div>
-		</div>
-		<div class="actions">
-			<div class="flat-button" {{action 'onCancel'}}>
-				cancel
+
+		{{else}}
+
+			<div class="form-header">
+				<div class="title">{{folders.length}} shared {{label}}</div>
+				<div class="tip">There are no spaces to maintain</div>
 			</div>
-			<div class="flat-button flat-red" {{action 'onDelete'}}>
-				delete
-			</div>
-		</div>
-		<div class="clearfix"></div>
+
+		{{/if}}
 	</div>
-
-{{else}}
-
-	<div class="global-folder-settings">
-		<div class="form-header">
-			<div class="title">{{folders.length}} shared {{label}}</div>
-			<div class="tip">There are no spaces to maintain</div>
-		</div>
-	</div>
-
-{{/if}}
\ No newline at end of file
+</div>
diff --git a/gui/app/pods/customize/users/template.hbs b/gui/app/pods/customize/users/template.hbs
index 4ae3ca9d..398170d1 100644
--- a/gui/app/pods/customize/users/template.hbs
+++ b/gui/app/pods/customize/users/template.hbs
@@ -1,5 +1,3 @@
 {{customize/user-settings add=(action 'add')}}
 
-<div class="clearfix" />
-
 {{customize/user-admin users=model onDelete=(action "onDelete") onSave=(action "onSave") onPassword=(action "onPassword")}}
diff --git a/gui/app/pods/folder/settings/route.js b/gui/app/pods/folder/settings/route.js
index e7595d5e..b065f731 100644
--- a/gui/app/pods/folder/settings/route.js
+++ b/gui/app/pods/folder/settings/route.js
@@ -15,7 +15,7 @@ import AuthenticatedRouteMixin from 'ember-simple-auth/mixins/authenticated-rout
 export default Ember.Route.extend(AuthenticatedRouteMixin, {
 	beforeModel: function (transition) {
 		if (is.equal(transition.targetName, 'folder.settings.index')) {
-			this.transitionTo('folder.settings.invitation');
+			this.transitionTo('folder.settings.security');
 		}
 	},
 
diff --git a/gui/app/services/ajax.js b/gui/app/services/ajax.js
index 43d4c34c..fc41022e 100644
--- a/gui/app/services/ajax.js
+++ b/gui/app/services/ajax.js
@@ -42,7 +42,7 @@ export default AjaxService.extend({
 			if (is.not.empty(userUpdate)) {
 				let latest = JSON.parse(userUpdate);
 
-				if (!latest.active || user.editor !== latest.editor || user.admin !== latest.admin) {
+				if (!latest.active || user.editor !== latest.editor || user.admin !== latest.admin || user.viewUsers !== latest.viewUsers) {
 					window.location.href = 'auth/login';
 				}
 			}
diff --git a/gui/app/services/session.js b/gui/app/services/session.js
index 787adc67..90c388c5 100644
--- a/gui/app/services/session.js
+++ b/gui/app/services/session.js
@@ -26,12 +26,15 @@ export default SimpleAuthSession.extend({
 	currentFolder: null,
 	isMac: false,
 	isMobile: false,
+
 	hasAccounts: computed('isAuthenticated', 'session.content.authenticated.user', function() {
 		return this.get('session.authenticator') !== 'authenticator:anonymous' && this.get('session.content.authenticated.user.accounts').length > 0;
 	}),
+
 	accounts: computed('hasAccounts', function() {
 		return this.get('session.content.authenticated.user.accounts');
 	}),
+
 	user: computed('isAuthenticated', 'session.content.authenticated.user', function () {
 		if (this.get('isAuthenticated')) {
 			let user = this.get('session.content.authenticated.user') || { id: '0' };
@@ -39,28 +42,32 @@ export default SimpleAuthSession.extend({
 			return this.get('store').push(data);
 		}
 	}),
+
 	authenticated: computed('session.content.authenticated.user', function () {
 		return this.get('session.authenticator') !== 'authenticator:anonymous' && this.get('session.content.authenticated.user.id') !== '0';
 	}),
+
 	isAdmin: computed('session.content.authenticated.user', function () {
-		return this.get('session.authenticator') !== 'authenticator:anonymous' && 
+		return this.get('session.authenticator') !== 'authenticator:anonymous' &&
 			this.get('session.content.authenticated.user.id') !== '0' &&
 			this.get('session.content.authenticated.user.admin') === true;
 	}),
+
 	isEditor: computed('session.content.authenticated.user', function () {
-		return this.get('session.authenticator') !== 'authenticator:anonymous' && 
+		return this.get('session.authenticator') !== 'authenticator:anonymous' &&
 			this.get('session.content.authenticated.user.id') !== '0' &&
 			this.get('session.content.authenticated.user.editor') === true;
 	}),
+
 	isGlobalAdmin: computed('session.content.authenticated.user', function () {
-		return this.get('session.authenticator') !== 'authenticator:anonymous' && 
+		return this.get('session.authenticator') !== 'authenticator:anonymous' &&
 			this.get('session.content.authenticated.user.id') !== '0' &&
 			this.get('session.content.authenticated.user.global') === true;
 	}),
 
 	init() {
 		this._super(...arguments);
-		
+
 		this.set('isMac', is.mac());
 		this.set('isMobile', is.mobile());
 	},
diff --git a/gui/app/styles/view/page-customize.scss b/gui/app/styles/view/page-customize.scss
index 930bfc38..9c3b3793 100644
--- a/gui/app/styles/view/page-customize.scss
+++ b/gui/app/styles/view/page-customize.scss
@@ -1,7 +1,16 @@
 .page-customize {
-	@include content-container();
 
-	.user-admin {
+	> .auth-admin, > .general-admin, > .license-admin, > .smtp-admin, > .space-admin {
+		@include content-container();
+	}
+
+	> .add-user {
+		@include content-container();
+		margin-bottom: 50px;
+	}
+
+	> .user-admin {
+		@include content-container();
 		margin: 30px 0;
 
 		> .heading {
diff --git a/gui/app/templates/components/customize/auth-settings.hbs b/gui/app/templates/components/customize/auth-settings.hbs
index c957f87a..6008a359 100644
--- a/gui/app/templates/components/customize/auth-settings.hbs
+++ b/gui/app/templates/components/customize/auth-settings.hbs
@@ -1,72 +1,76 @@
-<form class=>
-    <div class="form-header">
-        <div class="title">Authentication</div>
-        <div class="tip">Determine the method for user authentication</div>
-    </div>
-    <div class="input-control">
-        <label>Provider</label>
-        <div class="tip">External authentication servers, services must be accessible from the server running this Documize instance</div>
-        {{#ui/ui-radio selected=isDocumizeProvider onClick=(action 'onDocumize')}}Documize &mdash; email/password{{/ui/ui-radio}}
-        {{#ui/ui-radio selected=isKeycloakProvider onClick=(action 'onKeycloak')}}Keycloak &mdash; bring your own authentication server{{/ui/ui-radio}}
-    </div>
+<div class="page-customize">
+	<div class="auth-admin">
+		<form>
+			<div class="form-header">
+				<div class="title">Authentication</div>
+				<div class="tip">Determine the method for user authentication</div>
+			</div>
+			<div class="input-control">
+				<label>Provider</label>
+				<div class="tip">External authentication servers, services must be accessible from the server running this Documize instance</div>
+				{{#ui/ui-radio selected=isDocumizeProvider onClick=(action 'onDocumize')}}Documize &mdash; email/password{{/ui/ui-radio}}
+				{{#ui/ui-radio selected=isKeycloakProvider onClick=(action 'onKeycloak')}}Keycloak &mdash; bring your own authentication server{{/ui/ui-radio}}
+			</div>
 
-    {{#if isKeycloakProvider}}
-        <div class="form-header">
-            <div class="title">Keycloak Configuration</div>
-            <div class="tip">Connection parameters &mdash; create a documize user in Master realm with 'manage-users' role against target realm</div>
-        </div>
-        <div class="input-control">
-            <label>Keycloak Server URL</label>
-            <div class="tip">e.g. http://localhost:8888/auth</div>
-            {{focus-input id="keycloak-url" type="text" value=keycloakConfig.url class=(if KeycloakUrlError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak Realm</label>
-            <div class="tip">e.g. main</div>
-            {{input id="keycloak-realm" type="text" value=keycloakConfig.realm class=(if keycloakRealmError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak Realm Public Key</label>
-            <div class="tip">Copy the RSA Public Key from Realm Settings &rarr; Keys</div>
-            {{textarea id="keycloak-publicKey" type="text" value=keycloakConfig.publicKey rows=7 class=(if KeycloakPublicKeyError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak OIDC Client ID</label>
-            <div class="tip">e.g. account</div>
-            {{input id="keycloak-clientId" type="text" value=keycloakConfig.clientId class=(if KeycloakClientIdError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak Group ID (Optional)</label>
-            <div class="tip">If you want to sync users in a particular Group (e.g. 'Documize Users'), provide the Group ID (e.g. 511d8b61-1ec8-45f6-bc8d-5de64d54c9d2)</div>
-            {{input id="keycloak-group" type="text" value=keycloakConfig.group}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak Username</label>
-            <div class="tip">Used to connect with Keycloak and sync users with Documize (create user under Master Realm and assign 'view-users' role against Realm specified above)</div>
-            {{input id="keycloak-admin-user" type="text" value=keycloakConfig.adminUser class=(if KeycloakAdminUserError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Keycloak Password</label>
-            <div class="tip">Used to connect with Keycloak and sync users with Documize</div>
-            {{input id="keycloak-admin-password" type="password" value=keycloakConfig.adminPassword class=(if KeycloakAdminPasswordError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Disable Logout</label>
-            <div class="tip">Hide the logout button for Keycloak users</div>
-            <div class="checkbox">
-                {{input type="checkbox" checked=keycloakConfig.disableLogout}}
-                <label for="allowAnonymousAccess">Do not show logout button</label>
-            </div>            
-        </div>
-        <div class="input-control">
-            <label>Grant Add Space Permission</label>
-            <div class="tip">Determine if Keycloak sync'ed users permission to add new spaces</div>
-            <div class="checkbox">
-                {{input type="checkbox" checked=keycloakConfig.defaultPermissionAddSpace}}
-                <label for="allowAnonymousAccess">Can add spaces</label>
-            </div>            
-        </div>
-    {{/if}}
+			{{#if isKeycloakProvider}}
+				<div class="form-header">
+					<div class="title">Keycloak Configuration</div>
+					<div class="tip">Connection parameters &mdash; create a documize user in Master realm with 'manage-users' role against target realm</div>
+				</div>
+				<div class="input-control">
+					<label>Keycloak Server URL</label>
+					<div class="tip">e.g. http://localhost:8888/auth</div>
+					{{focus-input id="keycloak-url" type="text" value=keycloakConfig.url class=(if KeycloakUrlError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak Realm</label>
+					<div class="tip">e.g. main</div>
+					{{input id="keycloak-realm" type="text" value=keycloakConfig.realm class=(if keycloakRealmError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak Realm Public Key</label>
+					<div class="tip">Copy the RSA Public Key from Realm Settings &rarr; Keys</div>
+					{{textarea id="keycloak-publicKey" type="text" value=keycloakConfig.publicKey rows=7 class=(if KeycloakPublicKeyError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak OIDC Client ID</label>
+					<div class="tip">e.g. account</div>
+					{{input id="keycloak-clientId" type="text" value=keycloakConfig.clientId class=(if KeycloakClientIdError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak Group ID (Optional)</label>
+					<div class="tip">If you want to sync users in a particular Group (e.g. 'Documize Users'), provide the Group ID (e.g. 511d8b61-1ec8-45f6-bc8d-5de64d54c9d2)</div>
+					{{input id="keycloak-group" type="text" value=keycloakConfig.group}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak Username</label>
+					<div class="tip">Used to connect with Keycloak and sync users with Documize (create user under Master Realm and assign 'view-users' role against Realm specified above)</div>
+					{{input id="keycloak-admin-user" type="text" value=keycloakConfig.adminUser class=(if KeycloakAdminUserError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Keycloak Password</label>
+					<div class="tip">Used to connect with Keycloak and sync users with Documize</div>
+					{{input id="keycloak-admin-password" type="password" value=keycloakConfig.adminPassword class=(if KeycloakAdminPasswordError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Disable Logout</label>
+					<div class="tip">Hide the logout button for Keycloak users</div>
+					<div class="checkbox">
+						{{input type="checkbox" checked=keycloakConfig.disableLogout}}
+						<label for="allowAnonymousAccess">Do not show logout button</label>
+					</div>
+				</div>
+				<div class="input-control">
+					<label>Grant Add Space Permission</label>
+					<div class="tip">Determine if Keycloak sync'ed users permission to add new spaces</div>
+					<div class="checkbox">
+						{{input type="checkbox" checked=keycloakConfig.defaultPermissionAddSpace}}
+						<label for="allowAnonymousAccess">Can add spaces</label>
+					</div>
+				</div>
+			{{/if}}
 
-    <div class="regular-button button-blue" {{action 'onSave'}}>save</div>
-</form>
+			<div class="regular-button button-blue" {{action 'onSave'}}>save</div>
+		</form>
+	</div>
+</div>
\ No newline at end of file
diff --git a/gui/app/templates/components/customize/general-settings.hbs b/gui/app/templates/components/customize/general-settings.hbs
index cb2bed23..5efc774c 100644
--- a/gui/app/templates/components/customize/general-settings.hbs
+++ b/gui/app/templates/components/customize/general-settings.hbs
@@ -1,30 +1,34 @@
-<form>
-    <div class="form-header">
-        <div class="title">Instance Settings</div>
-        <div class="tip">Settings applicable to your Documize instance</div>
-    </div>
-    <div class="input-control">
-        <label>Title</label>
-        <div class="tip">Describe the title of this Documize instance</div>
-        {{focus-input id="siteTitle" type="text" value=model.general.title class=(if hasTitleInputError 'error')}}
-    </div>
-    <div class="input-control">
-        <label>Message</label>
-        <div class="tip">Describe the purpose of this Documize instance</div>
-        {{textarea id="siteMessage" rows="3" value=model.general.message class=(if hasMessageInputError 'error')}}
-    </div>
-    <div class="input-control">
-        <label>Anonymous Access</label>
-        <div class="tip">Content within "Everyone" will be made available to anonymous users</div>
-        <div class="checkbox">
-            <input type="checkbox" id="allowAnonymousAccess" checked={{model.general.allowAnonymousAccess}} />
-            <label for="allowAnonymousAccess">Allow anyone to access this Documize instance</label>
-        </div>
-    </div>
-	<div class="input-control">
-		<label>Conversion Service URL</label>
-		<div class="tip">Endpoint for handling import/export (e.g. https://api.documize.com, <a href="https://docs.documize.com/s/WNEpptWJ9AABRnha/administration-guides/d/WO0pt_MXigAB6sJ7/general-options">view documentation</a>)</div>
-		{{focus-input id="conversionEndpoint" type="text" value=model.general.conversionEndpoint class=(if hasConversionEndpointInputError 'error')}}
+<div class="page-customize">
+	<div class="general-admin">
+		<form>
+			<div class="form-header">
+				<div class="title">Instance Settings</div>
+				<div class="tip">Settings applicable to your Documize instance</div>
+			</div>
+			<div class="input-control">
+				<label>Title</label>
+				<div class="tip">Describe the title of this Documize instance</div>
+				{{focus-input id="siteTitle" type="text" value=model.general.title class=(if hasTitleInputError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>Message</label>
+				<div class="tip">Describe the purpose of this Documize instance</div>
+				{{textarea id="siteMessage" rows="3" value=model.general.message class=(if hasMessageInputError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>Anonymous Access</label>
+				<div class="tip">Content within "Everyone" will be made available to anonymous users</div>
+				<div class="checkbox">
+					<input type="checkbox" id="allowAnonymousAccess" checked={{model.general.allowAnonymousAccess}} />
+					<label for="allowAnonymousAccess">Allow anyone to access this Documize instance</label>
+				</div>
+			</div>
+			<div class="input-control">
+				<label>Conversion Service URL</label>
+				<div class="tip">Endpoint for handling import/export (e.g. https://api.documize.com, <a href="https://docs.documize.com/s/WNEpptWJ9AABRnha/administration-guides/d/WO0pt_MXigAB6sJ7/general-options">view documentation</a>)</div>
+				{{focus-input id="conversionEndpoint" type="text" value=model.general.conversionEndpoint class=(if hasConversionEndpointInputError 'error')}}
+			</div>
+			<div class="regular-button button-blue" {{ action 'save' }}>save</div>
+		</form>
 	</div>
-    <div class="regular-button button-blue" {{ action 'save' }}>save</div>
-</form>
+</div>
\ No newline at end of file
diff --git a/gui/app/templates/components/customize/global-settings.hbs b/gui/app/templates/components/customize/global-settings.hbs
index 439c9e02..3e4d0547 100644
--- a/gui/app/templates/components/customize/global-settings.hbs
+++ b/gui/app/templates/components/customize/global-settings.hbs
@@ -1,48 +1,53 @@
-<form>
-    <div class="form-header">
-        <div class="title">Mail Server Settings</div>
-        <div class="tip">Used for sending email notifications</div>
-    </div>
-    <div class="input-control">
-        <label>SMTP Host</label>
-        <div class="tip">e.g. my.host.com</div>
-        {{focus-input id="smtp-host" type="text" value=model.smtp.host class=(if SMTPHostEmptyError 'error')}}
-    </div>
-	<div class="input-control">
-        <label>SMTP Port</label>
-        <div class="tip">e.g. 587</div>
-        {{input id="smtp-port" type="text" value=model.smtp.port class=(if SMTPPortEmptyError 'error')}}
-    </div>
-	<div class="input-control">
-        <label>SMTP Sender</label>
-        <div class="tip">e.g. noreply@documize.com</div>
-        {{input id="smtp-sender" type="text" value=model.smtp.sender class=(if SMTPSenderEmptyError 'error')}}
-    </div>
-	<div class="input-control">
-        <label>SMTP User ID</label>
-        <div class="tip">Your credentials</div>
-        {{input id="smtp-userid" type="text" value=model.smtp.userid class=(if SMTPUserIdEmptyError 'error')}}
-    </div>
-	<div class="input-control">
-        <label>SMTP Password</label>
-        <div class="tip">Your credentials</div>
-        {{input id="smtp-password" type="text" value=model.smtp.password class=(if SMTPPasswordEmptyError 'error')}}
-    </div>
-    <div class="regular-button button-blue" {{ action 'saveSMTP' }}>save</div>
-</form>
+<div class="page-customize">
+	<div class="smtp-admin">
+		<form>
+			<div class="form-header">
+				<div class="title">Mail Server Settings</div>
+				<div class="tip">Used for sending email notifications</div>
+			</div>
+			<div class="input-control">
+				<label>SMTP Host</label>
+				<div class="tip">e.g. my.host.com</div>
+				{{focus-input id="smtp-host" type="text" value=model.smtp.host class=(if SMTPHostEmptyError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>SMTP Port</label>
+				<div class="tip">e.g. 587</div>
+				{{input id="smtp-port" type="text" value=model.smtp.port class=(if SMTPPortEmptyError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>SMTP Sender</label>
+				<div class="tip">e.g. noreply@documize.com</div>
+				{{input id="smtp-sender" type="text" value=model.smtp.sender class=(if SMTPSenderEmptyError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>SMTP User ID</label>
+				<div class="tip">Your credentials</div>
+				{{input id="smtp-userid" type="text" value=model.smtp.userid class=(if SMTPUserIdEmptyError 'error')}}
+			</div>
+			<div class="input-control">
+				<label>SMTP Password</label>
+				<div class="tip">Your credentials</div>
+				{{input id="smtp-password" type="text" value=model.smtp.password class=(if SMTPPasswordEmptyError 'error')}}
+			</div>
+			<div class="regular-button button-blue" {{ action 'saveSMTP' }}>save</div>
+		</form>
+	</div>
 
-<div class="margin-top-50">
+	<div class="margin-top-50" />
+
+	<div class="license-admin">
+		<form class="form-bordered">
+			<div class="form-header">
+				<div class="title">Optional Edition License</div>
+				<div class="tip">Only applies to Enterprise Edition</div>
+			</div>
+			<div class="input-control">
+				<label>License</label>
+				<div class="tip">XML format accepted</div>
+				{{textarea value=model.license rows="15"}}
+			</div>
+			<div class="regular-button button-blue" {{ action 'saveLicense' }}>save</div>
+		</form>
+	</div>
 </div>
-
-<form class="form-bordered">
-    <div class="form-header">
-        <div class="title">Optional Edition License</div>
-        <div class="tip">Only applies to Enterprise Edition</div>
-    </div>
-    <div class="input-control">
-        <label>License</label>
-        <div class="tip">XML format accepted</div>
-        {{textarea value=model.license rows="15"}}
-    </div>
-    <div class="regular-button button-blue" {{ action 'saveLicense' }}>save</div>
-</form>
diff --git a/gui/app/templates/components/customize/user-admin.hbs b/gui/app/templates/components/customize/user-admin.hbs
index 6c81906c..a1c78b1f 100644
--- a/gui/app/templates/components/customize/user-admin.hbs
+++ b/gui/app/templates/components/customize/user-admin.hbs
@@ -1,169 +1,171 @@
-<div class="user-admin">
-	<div class="form-header">
-		<div class="title">User Management</div>
-		<div class="tip">Set basic information, passwords and permissions for {{users.length}} users</div>
+<div class="page-customize">
+	<div class="user-admin">
+		<div class="form-header">
+			<div class="title">User Management</div>
+			<div class="tip">Set basic information, passwords and permissions for {{users.length}} users</div>
+		</div>
+
+		<table class="basic-table">
+			<thead>
+				<tr>
+					<th class="">
+						<div class="input-inline input-transparent">
+							{{focus-input type="text" placeholder="< type here to filter users >" value=filter}}
+						</div>
+					</th>
+					<th class="no-width">Add Space</th>
+					<th class="no-width">View Users</th>
+					<th class="no-width">Admin</th>
+					<th class="no-width">Active</th>
+					<th class="no-width">
+						{{#if hasSelectedUsers}}
+							<div class="round-button round-button-small button-red" id="bulk-delete-users">
+								<i class="material-icons">delete</i>
+							</div>
+							{{#dropdown-dialog target="bulk-delete-users" position="bottom right" button="Delete" color="flat-red" onAction=(action 'onBulkDelete')}}
+								<p>Are you sure you want to delete selected users?</p>
+							{{/dropdown-dialog}}
+						{{/if}}
+					</th>
+				</tr>
+			</thead>
+			<tbody>
+				{{#each users key="id" as |user|}}
+					<tr>
+						<td class="{{unless user.active 'inactive-user'}} {{if user.admin 'admin-user'}}">
+							<div class="selector pull-left">
+								{{#if user.me}}
+									<i class="material-icons color-gray">check_box_outline_blank</i>
+								{{else if user.selected}}
+									<i class="material-icons checkbox" {{action 'toggleSelect' user}}>check_box</i>
+								{{else}}
+									<i class="material-icons checkbox" {{action 'toggleSelect' user}}>check_box_outline_blank</i>
+								{{/if}}
+							</div>
+							<div class="name">{{ user.fullname }}</div>
+							<div class="email">{{ user.email }}</div>
+						</td>
+						<td class="no-width text-center">
+							{{#if user.editor}}
+								<i class="material-icons checkbox" {{action 'toggleEditor' user.id}}>check_box</i>
+							{{else}}
+								<i class="material-icons checkbox" {{action 'toggleEditor' user.id}}>check_box_outline_blank</i>
+							{{/if}}
+						</td>
+						<td class="no-width text-center">
+							{{#if user.viewUsers}}
+								<i class="material-icons checkbox" {{action 'toggleUsers' user.id}}>check_box</i>
+							{{else}}
+								<i class="material-icons checkbox" {{action 'toggleUsers' user.id}}>check_box_outline_blank</i>
+							{{/if}}
+						</td>
+						<td class="no-width text-center">
+							{{#if user.me}}
+								<i class="material-icons color-gray">check_box</i>
+							{{else if user.admin}}
+								<i class="material-icons checkbox" {{action 'toggleAdmin' user.id}}>check_box</i>
+							{{else}}
+								<i class="material-icons checkbox" {{action 'toggleAdmin' user.id}}>check_box_outline_blank</i>
+							{{/if}}
+						</td>
+						<td class="no-width text-center">
+							{{#if user.me}}
+								<i class="material-icons color-gray">check_box</i>
+							{{else if user.active}}
+								<i class="material-icons checkbox" {{action 'toggleActive' user.id}}>check_box</i>
+							{{else}}
+								<i class="material-icons checkbox" {{action 'toggleActive' user.id}}>check_box_outline_blank</i>
+							{{/if}}
+						</td>
+						<td class="no-width text-center">
+							{{#if user.me}}
+								<div class="edit-button-{{user.id}} round-button-mono" title="Edit" {{action "edit" user.id}}>
+									<i class="material-icons">edit</i>
+								</div>
+							{{else}}
+								<div class="edit-button-{{user.id}} round-button-mono" title="Edit" {{action "edit" user.id}}>
+									<i class="material-icons">edit</i>
+								</div>
+								<div class="button-gap"></div>
+								<div class="delete-button-{{user.id}} round-button-mono" title="Delete" {{action "confirmDelete" user.id}}>
+									<i class="material-icons">delete</i>
+								</div>
+							{{/if}}
+						</td>
+					</tr>
+				{{/each}}
+			</tbody>
+		</table>
 	</div>
 
-    <table class="basic-table">
-        <thead>
-            <tr>
-                <th class="">
-                    <div class="input-inline input-transparent">
-                        {{focus-input type="text" placeholder="< type here to filter users >" value=filter}}
-                    </div>
-                </th>
-                <th class="no-width">Add Space</th>
-                <th class="no-width">View Users</th>
-                <th class="no-width">Admin</th>
-                <th class="no-width">Active</th>
-                <th class="no-width">
-                    {{#if hasSelectedUsers}}
-                        <div class="round-button round-button-small button-red" id="bulk-delete-users">
-                            <i class="material-icons">delete</i>
-                        </div>
-                        {{#dropdown-dialog target="bulk-delete-users" position="bottom right" button="Delete" color="flat-red" onAction=(action 'onBulkDelete')}}
-                            <p>Are you sure you want to delete selected users?</p>
-                        {{/dropdown-dialog}}
-                    {{/if}}
-                </th>
-            </tr>
-        </thead>
-        <tbody>
-            {{#each users as |user|}}
-                <tr>
-                    <td class="{{unless user.active 'inactive-user'}} {{if user.admin 'admin-user'}}">
-                        <div class="selector pull-left">
-							{{#if user.selected}}
-								<i class="material-icons checkbox" {{action 'toggleSelect' user}}>check_box</i>
-							{{else if user.me}}
-								<i class="material-icons color-gray">check_box_outline_blank</i>
-							{{else}}
-								<i class="material-icons checkbox" {{action 'toggleSelect' user}}>check_box_outline_blank</i>
-							{{/if}}
-                        </div>
-                        <div class="name">{{ user.fullname }}</div>
-                        <div class="email">{{ user.email }}</div>
-                    </td>
-                    <td class="no-width text-center">
-                        {{#if user.editor}}
-                            <i class="material-icons checkbox" {{action 'toggleEditor' user.id}}>check_box</i>
-                        {{else}}
-                            <i class="material-icons checkbox" {{action 'toggleEditor' user.id}}>check_box_outline_blank</i>
-                        {{/if}}
-                    </td>
-                    <td class="no-width text-center">
-                      	{{#if user.viewUsers}}
-                            <i class="material-icons checkbox" {{action 'toggleUsers' user.id}}>check_box</i>
-                        {{else}}
-                            <i class="material-icons checkbox" {{action 'toggleUsers' user.id}}>check_box_outline_blank</i>
-                        {{/if}}
-                    </td>
-                    <td class="no-width text-center">
-                        {{#if user.me}}
-                            <i class="material-icons color-gray">check_box</i>
-                        {{else if user.admin}}
-                            <i class="material-icons checkbox" {{action 'toggleAdmin' user.id}}>check_box</i>
-                        {{else}}
-                            <i class="material-icons checkbox" {{action 'toggleAdmin' user.id}}>check_box_outline_blank</i>
-                        {{/if}}
-                    </td>
-                    <td class="no-width text-center">
-                        {{#if user.me}}
-                            <i class="material-icons color-gray">check_box</i>
-                        {{else if user.active}}
-                            <i class="material-icons checkbox" {{action 'toggleActive' user.id}}>check_box</i>
-                        {{else}}
-                            <i class="material-icons checkbox" {{action 'toggleActive' user.id}}>check_box_outline_blank</i>
-                        {{/if}}
-                    </td>
-                    <td class="no-width text-center">
-                        {{#if user.me}}
-                            <div class="edit-button-{{user.id}} round-button-mono" title="Edit" {{action "edit" user.id}}>
-                                <i class="material-icons">edit</i>
-                            </div>
-                        {{else}}
-                            <div class="edit-button-{{user.id}} round-button-mono" title="Edit" {{action "edit" user.id}}>
-                                <i class="material-icons">edit</i>
-                            </div>
-                            <div class="button-gap"></div>
-                            <div class="delete-button-{{user.id}} round-button-mono" title="Delete" {{action "confirmDelete" user.id}}>
-                                <i class="material-icons">delete</i>
-                            </div>
-                        {{/if}}
-                    </td>
-                </tr>
-            {{/each}}
-        </tbody>
-    </table>
-</div>
+	<div class="dropdown-dialog edit-user-dialog">
+		<div class="content">
+			<form>
+				<div class="row">
+					<div class="col-md-6">
+						<div class="input-control">
+							<label>Firstname</label>
+							{{input id="edit-firstname" type="text" value=editUser.firstname}}
+						</div>
+					</div>
+					<div class="col-md-6">
+						<div class="input-control">
+							<label>Lastname</label>
+							{{input id="edit-lastname" type="text" value=editUser.lastname}}
+						</div>
+					</div>
+				</div>
+				<div class="row">
+					<div class="col-md-12">
+						<div class="input-control">
+							<label>Email</label>
+							{{input id="edit-email" type="text" value=editUser.email}}
+						</div>
+					</div>
+				</div>
+				{{#if isAuthProviderDocumize}}
+					<div class="row">
+						<div class="col-md-6">
+							<div class="input-control">
+								<label>Password</label>
+								<div class="tip">Optional new password</div>
+								{{input id="edit-password" type="password" value=password.password}}
+							</div>
+						</div>
+						<div class="col-md-6">
+							<div class="input-control">
+								<label>Confirm Password</label>
+								<div class="tip">Confirm new password</div>
+								{{input id="edit-confirmPassword" type="password" value=password.confirmation}}
+							</div>
+						</div>
+					</div>
+				{{/if}}
+			</form>
+		</div>
+		<div class="actions">
+			<div class="flat-button" {{action 'cancel'}}>
+				cancel
+			</div>
+			<div class="flat-button flat-blue" {{action 'save'}}>
+				save
+			</div>
+		</div>
+		<div class="clearfix"></div>
+	</div>
 
-<div class="dropdown-dialog edit-user-dialog">
-    <div class="content">
-        <form>
-            <div class="row">
-                <div class="col-md-6">
-                    <div class="input-control">
-                        <label>Firstname</label>
-                        {{input id="edit-firstname" type="text" value=editUser.firstname}}
-                    </div>
-                </div>
-                <div class="col-md-6">
-                    <div class="input-control">
-                        <label>Lastname</label>
-                        {{input id="edit-lastname" type="text" value=editUser.lastname}}
-                    </div>
-                </div>
-            </div>
-            <div class="row">
-                <div class="col-md-12">
-                    <div class="input-control">
-                        <label>Email</label>
-                        {{input id="edit-email" type="text" value=editUser.email}}
-                    </div>
-                </div>
-            </div>
-            {{#if isAuthProviderDocumize}}
-                <div class="row">
-                    <div class="col-md-6">
-                        <div class="input-control">
-                            <label>Password</label>
-                            <div class="tip">Optional new password</div>
-                            {{input id="edit-password" type="password" value=password.password}}
-                        </div>
-                    </div>
-                    <div class="col-md-6">
-                        <div class="input-control">
-                            <label>Confirm Password</label>
-                            <div class="tip">Confirm new password</div>
-                            {{input id="edit-confirmPassword" type="password" value=password.confirmation}}
-                        </div>
-                    </div>
-                </div>
-            {{/if}}
-        </form>
-    </div>
-    <div class="actions">
-        <div class="flat-button" {{action 'cancel'}}>
-            cancel
-        </div>
-        <div class="flat-button flat-blue" {{action 'save'}}>
-            save
-        </div>
-    </div>
-    <div class="clearfix"></div>
-</div>
-
-<div class="dropdown-dialog delete-user-dialog">
-    <div class="content">
-        <p>Are you sure you want to delete user <span class="bold">{{deleteUser.fullname}}?</span></p>
-    </div>
-    <div class="actions">
-        <div class="flat-button" {{action 'cancel'}}>
-            cancel
-        </div>
-        <div class="flat-button flat-red" {{action 'delete'}}>
-            delete
-        </div>
-    </div>
-    <div class="clearfix"></div>
+	<div class="dropdown-dialog delete-user-dialog">
+		<div class="content">
+			<p>Are you sure you want to delete user <span class="bold">{{deleteUser.fullname}}?</span></p>
+		</div>
+		<div class="actions">
+			<div class="flat-button" {{action 'cancel'}}>
+				cancel
+			</div>
+			<div class="flat-button flat-red" {{action 'delete'}}>
+				delete
+			</div>
+		</div>
+		<div class="clearfix"></div>
+	</div>
 </div>
diff --git a/gui/app/templates/components/customize/user-settings.hbs b/gui/app/templates/components/customize/user-settings.hbs
index 51ab5471..f256f3d4 100644
--- a/gui/app/templates/components/customize/user-settings.hbs
+++ b/gui/app/templates/components/customize/user-settings.hbs
@@ -1,21 +1,25 @@
 {{#if isAuthProviderDocumize}}
-    <form>
-        <div class="form-header">
-            <div class="title">Add user</div>
-            <div class="tip">New users receive an invitation email with a random password</div>
-        </div>
-        <div class="input-control">
-            <label>Firstname</label>
-            {{focus-input id="newUserFirstname" type="text" value=newUser.firstname class=(if hasFirstnameEmptyError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Lastname</label>
-            {{input id="newUserLastname" type="text" value=newUser.lastname class=(if hasLastnameEmptyError 'error')}}
-        </div>
-        <div class="input-control">
-            <label>Email</label>
-            {{input id="newUserEmail" type="text" value=newUser.email class=(if hasEmailEmptyError 'error')}}
-        </div>
-        <div class="regular-button button-blue" {{ action 'add' }}>Add</div>
-    </form>
+	<div class="page-customize">
+		<div class="add-user">
+			<form>
+				<div class="form-header">
+					<div class="title">New User</div>
+					<div class="tip">Newly added users receive an invitation email with a random password</div>
+				</div>
+				<div class="input-control">
+					<label>Firstname</label>
+					{{focus-input id="newUserFirstname" type="text" value=newUser.firstname class=(if hasFirstnameEmptyError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Lastname</label>
+					{{input id="newUserLastname" type="text" value=newUser.lastname class=(if hasLastnameEmptyError 'error')}}
+				</div>
+				<div class="input-control">
+					<label>Email</label>
+					{{input id="newUserEmail" type="text" value=newUser.email class=(if hasEmailEmptyError 'error')}}
+				</div>
+				<div class="regular-button button-blue" {{ action 'add' }}>Add</div>
+			</form>
+		</div>
+	</div>
 {{/if}}
\ No newline at end of file
diff --git a/server/middleware.go b/server/middleware.go
index e83277a4..121489a9 100644
--- a/server/middleware.go
+++ b/server/middleware.go
@@ -166,14 +166,16 @@ func (m *middleware) Authorize(w http.ResponseWriter, r *http.Request, next http
 			// user state. This helps client-side applications to detect changes in
 			// user state/privileges.
 			var state struct {
-				Active bool `json:"active"`
-				Admin  bool `json:"admin"`
-				Editor bool `json:"editor"`
+				Active    bool `json:"active"`
+				Admin     bool `json:"admin"`
+				Editor    bool `json:"editor"`
+				ViewUsers bool `json:"viewUsers"`
 			}
 
 			state.Active = u.Active
 			state.Admin = u.Admin
 			state.Editor = u.Editor
+			state.ViewUsers = u.ViewUsers
 			sb, err := json.Marshal(state)
 
 			w.Header().Add("X-Documize-Status", string(sb))