RubyGems - alchemy_cms - Versions diffs - 5.3.4 → 6.0.0.b1 - Mend

alchemy_cms 5.3.4 → 6.0.0.b1

Files changed (295) hide show

data/config/brakeman.ignore CHANGED Viewed

@@ -3,19 +3,19 @@
     {
       "warning_type": "Cross-Site Scripting",
       "warning_code": 2,
-      "fingerprint": "0551e3f9180b85fca4b17fe3c7cbbac1611d2ef8d385f77e9445c562c471d688",
+      "fingerprint": "068b12d24047e2ece633115ba065ce46fc8c8a26827be7de2565ab721e1c2e82",
       "check_name": "CrossSiteScripting",
       "message": "Unescaped parameter value",
       "file": "app/views/alchemy/admin/elements/update.js.erb",
-      "line": 18,
+      "line": 21,
       "link": "https://brakemanscanner.org/docs/warning_types/cross_site_scripting",
-      "code": "j(Element.find(params[:id]).essence_error_messages.join(\"</li><li>\"))",
+      "code": "Element.find(params[:id]).ingredients_with_errors.map do\n \"[data-ingredient-id=\\\"#{ingredient.id}\\\"]\"\n end.join(\", \")",
       "render_path": [
         {
           "type": "controller",
           "class": "Alchemy::Admin::ElementsController",
           "method": "update",
-          "line": 55,
+          "line": 61,
           "file": "app/controllers/alchemy/admin/elements_controller.rb",
           "rendered": {
             "name": "alchemy/admin/elements/update",
@@ -38,7 +38,7 @@
       "check_name": "SendFile",
       "message": "Parameter value used in file name",
       "file": "app/controllers/alchemy/admin/attachments_controller.rb",
-      "line": 65,
+      "line": 69,
       "link": "https://brakemanscanner.org/docs/warning_types/file_access/",
       "code": "send_file(Attachment.find(params[:id]).file.path, :filename => Attachment.find(params[:id]).file_name, :type => Attachment.find(params[:id]).file_mime_type)",
       "render_path": null,
@@ -71,130 +71,6 @@
       "confidence": "Medium",
       "note": "Because we actually can't know all attributes each inheriting controller supports, we permit all resource model params. It is adviced that all inheriting controllers implement this method and provide its own set of permitted attributes. As this all happens inside the password protected /admin namespace this can be considered a false positive."
     },
-    {
-      "warning_type": "Cross-Site Scripting",
-      "warning_code": 2,
-      "fingerprint": "293a6f5581ba3f0e7aa4f81b38d68baf21f1219c8f3bae3eca6b3e1776b734df",
-      "check_name": "CrossSiteScripting",
-      "message": "Unescaped parameter value",
-      "file": "app/views/alchemy/admin/elements/order.js.erb",
-      "line": 17,
-      "link": "https://brakemanscanner.org/docs/warning_types/cross_site_scripting",
-      "code": "Element.trashed.where(:id => params[:element_ids]).pluck(:id).collect do\n \"#element_area [data-element-id=\\\"#{id}\\\"]\"\n end.join(\", \")",
-      "render_path": [
-        {
-          "type": "controller",
-          "class": "Alchemy::Admin::ElementsController",
-          "method": "order",
-          "line": 78,
-          "file": "app/controllers/alchemy/admin/elements_controller.rb",
-          "rendered": {
-            "name": "alchemy/admin/elements/order",
-            "file": "app/views/alchemy/admin/elements/order.js.erb"
-          }
-        }
-      ],
-      "location": {
-        "type": "template",
-        "template": "alchemy/admin/elements/order"
-      },
-      "user_input": "params[:element_ids]",
-      "confidence": "Weak",
-      "note": ""
-    },
-    {
-      "warning_type": "Dynamic Render Path",
-      "warning_code": 15,
-      "fingerprint": "2eb67abb2b025c3446afa2f9b8d48c6b6a05379234a9228c9af4c25b7e672b00",
-      "check_name": "Render",
-      "message": "Render path contains parameter value",
-      "file": "app/views/alchemy/admin/elements/index.html.erb",
-      "line": 18,
-      "link": "https://brakemanscanner.org/docs/warning_types/dynamic_render_path/",
-      "code": "render(action => Page.find(params[:page_id]).all_elements.not_nested.unfixed.not_trashed.includes(*element_includes).map do\n Alchemy::ElementEditor.new(element)\n end, {})",
-      "render_path": [
-        {
-          "type": "controller",
-          "class": "Alchemy::Admin::ElementsController",
-          "method": "index",
-          "line": 13,
-          "file": "app/controllers/alchemy/admin/elements_controller.rb",
-          "rendered": {
-            "name": "alchemy/admin/elements/index",
-            "file": "app/views/alchemy/admin/elements/index.html.erb"
-          }
-        }
-      ],
-      "location": {
-        "type": "template",
-        "template": "alchemy/admin/elements/index"
-      },
-      "user_input": "params[:page_id]",
-      "confidence": "Weak",
-      "note": ""
-    },
-    {
-      "warning_type": "Dynamic Render Path",
-      "warning_code": 15,
-      "fingerprint": "2eb67abb2b025c3446afa2f9b8d48c6b6a05379234a9228c9af4c25b7e672b00",
-      "check_name": "Render",
-      "message": "Render path contains parameter value",
-      "file": "app/views/alchemy/admin/elements/index.html.erb",
-      "line": 31,
-      "link": "https://brakemanscanner.org/docs/warning_types/dynamic_render_path/",
-      "code": "render(action => Page.find(params[:page_id]).all_elements.not_nested.unfixed.not_trashed.includes(*element_includes).map do\n Alchemy::ElementEditor.new(element)\n end, {})",
-      "render_path": [
-        {
-          "type": "controller",
-          "class": "Alchemy::Admin::ElementsController",
-          "method": "index",
-          "line": 13,
-          "file": "app/controllers/alchemy/admin/elements_controller.rb",
-          "rendered": {
-            "name": "alchemy/admin/elements/index",
-            "file": "app/views/alchemy/admin/elements/index.html.erb"
-          }
-        }
-      ],
-      "location": {
-        "type": "template",
-        "template": "alchemy/admin/elements/index"
-      },
-      "user_input": "params[:page_id]",
-      "confidence": "Weak",
-      "note": ""
-    },
-    {
-      "warning_type": "Dynamic Render Path",
-      "warning_code": 15,
-      "fingerprint": "2fa9bf5c73b4e6e3c272f0b14635f96efbd763e9a2c5b785caefffe3589ac461",
-      "check_name": "Render",
-      "message": "Render path contains parameter value",
-      "file": "app/views/alchemy/admin/essence_pictures/assign.js.erb",
-      "line": 2,
-      "link": "https://brakemanscanner.org/docs/warning_types/dynamic_render_path/",
-      "code": "render(action => Alchemy::ContentEditor.new(Content.find(params[:content_id])), {})",
-      "render_path": [
-        {
-          "type": "controller",
-          "class": "Alchemy::Admin::EssencePicturesController",
-          "method": "assign",
-          "line": 49,
-          "file": "app/controllers/alchemy/admin/essence_pictures_controller.rb",
-          "rendered": {
-            "name": "alchemy/admin/essence_pictures/assign",
-            "file": "app/views/alchemy/admin/essence_pictures/assign.js.erb"
-          }
-        }
-      ],
-      "location": {
-        "type": "template",
-        "template": "alchemy/admin/essence_pictures/assign"
-      },
-      "user_input": "params[:content_id]",
-      "confidence": "Weak",
-      "note": ""
-    },
     {
       "warning_type": "Dynamic Render Path",
       "warning_code": 15,
@@ -210,7 +86,7 @@
           "type": "controller",
           "class": "Alchemy::Admin::ElementsController",
           "method": "fold",
-          "line": 95,
+          "line": 97,
           "file": "app/controllers/alchemy/admin/elements_controller.rb",
           "rendered": {
             "name": "alchemy/admin/elements/fold",
@@ -233,7 +109,7 @@
       "check_name": "MassAssignment",
       "message": "Specify exact keys allowed for mass assignment instead of using `permit!` which allows any keys",
       "file": "app/controllers/alchemy/admin/elements_controller.rb",
-      "line": 146,
+      "line": 150,
       "link": "https://brakemanscanner.org/docs/warning_types/mass_assignment/",
       "code": "params.fetch(:contents, {}).permit!",
       "render_path": null,
@@ -297,57 +173,88 @@
       "note": ""
     },
     {
-      "warning_type": "File Access",
-      "warning_code": 16,
-      "fingerprint": "a1197cfa89e3a66e6d10ee060cd87af97d5e978d6d93b5936eb987288f1c02e6",
-      "check_name": "SendFile",
-      "message": "Parameter value used in file name",
-      "file": "app/controllers/alchemy/attachments_controller.rb",
-      "line": 12,
-      "link": "https://brakemanscanner.org/docs/warning_types/file_access/",
-      "code": "send_file(Attachment.find(params[:id]).file.path, :filename => Attachment.find(params[:id]).file_name, :type => Attachment.find(params[:id]).file_mime_type, :disposition => \"inline\")",
-      "render_path": null,
+      "warning_type": "Dynamic Render Path",
+      "warning_code": 15,
+      "fingerprint": "80b9b11d658cd393c549d568b3655c62566862f55b2fa16ed688de7c2e9343ac",
+      "check_name": "Render",
+      "message": "Render path contains parameter value",
+      "file": "app/views/alchemy/admin/elements/index.html.erb",
+      "line": 18,
+      "link": "https://brakemanscanner.org/docs/warning_types/dynamic_render_path/",
+      "code": "render(action => PageVersion.find(params[:page_version_id]).elements.order(:position).includes(*element_includes).not_nested.unfixed.map do\n Alchemy::ElementEditor.new(element)\n end, {})",
+      "render_path": [
+        {
+          "type": "controller",
+          "class": "Alchemy::Admin::ElementsController",
+          "method": "index",
+          "line": 15,
+          "file": "app/controllers/alchemy/admin/elements_controller.rb",
+          "rendered": {
+            "name": "alchemy/admin/elements/index",
+            "file": "app/views/alchemy/admin/elements/index.html.erb"
+          }
+        }
+      ],
       "location": {
-        "type": "method",
-        "class": "Alchemy::AttachmentsController",
-        "method": "show"
+        "type": "template",
+        "template": "alchemy/admin/elements/index"
       },
-      "user_input": "params[:id]",
+      "user_input": "params[:page_version_id]",
       "confidence": "Weak",
       "note": ""
     },
     {
       "warning_type": "Dynamic Render Path",
       "warning_code": 15,
-      "fingerprint": "b9f63fd46d0ebd6684b649ab260f27df8a6422d44fed4769273d8e6a6a30397c",
+      "fingerprint": "80b9b11d658cd393c549d568b3655c62566862f55b2fa16ed688de7c2e9343ac",
       "check_name": "Render",
       "message": "Render path contains parameter value",
-      "file": "app/views/alchemy/admin/essence_files/assign.js.erb",
-      "line": 1,
+      "file": "app/views/alchemy/admin/elements/index.html.erb",
+      "line": 31,
       "link": "https://brakemanscanner.org/docs/warning_types/dynamic_render_path/",
-      "code": "render(action => Alchemy::ContentEditor.new(Content.find_by(:id => params[:content_id])), {})",
+      "code": "render(action => PageVersion.find(params[:page_version_id]).elements.order(:position).includes(*element_includes).not_nested.unfixed.map do\n Alchemy::ElementEditor.new(element)\n end, {})",
       "render_path": [
         {
           "type": "controller",
-          "class": "Alchemy::Admin::EssenceFilesController",
-          "method": "assign",
-          "line": 32,
-          "file": "app/controllers/alchemy/admin/essence_files_controller.rb",
+          "class": "Alchemy::Admin::ElementsController",
+          "method": "index",
+          "line": 15,
+          "file": "app/controllers/alchemy/admin/elements_controller.rb",
           "rendered": {
-            "name": "alchemy/admin/essence_files/assign",
-            "file": "app/views/alchemy/admin/essence_files/assign.js.erb"
+            "name": "alchemy/admin/elements/index",
+            "file": "app/views/alchemy/admin/elements/index.html.erb"
           }
         }
       ],
       "location": {
         "type": "template",
-        "template": "alchemy/admin/essence_files/assign"
+        "template": "alchemy/admin/elements/index"
       },
-      "user_input": "params[:content_id]",
+      "user_input": "params[:page_version_id]",
+      "confidence": "Weak",
+      "note": ""
+    },
+    {
+      "warning_type": "File Access",
+      "warning_code": 16,
+      "fingerprint": "a1197cfa89e3a66e6d10ee060cd87af97d5e978d6d93b5936eb987288f1c02e6",
+      "check_name": "SendFile",
+      "message": "Parameter value used in file name",
+      "file": "app/controllers/alchemy/attachments_controller.rb",
+      "line": 12,
+      "link": "https://brakemanscanner.org/docs/warning_types/file_access/",
+      "code": "send_file(Attachment.find(params[:id]).file.path, :filename => Attachment.find(params[:id]).file_name, :type => Attachment.find(params[:id]).file_mime_type, :disposition => \"inline\")",
+      "render_path": null,
+      "location": {
+        "type": "method",
+        "class": "Alchemy::AttachmentsController",
+        "method": "show"
+      },
+      "user_input": "params[:id]",
       "confidence": "Weak",
       "note": ""
     }
   ],
-  "updated": "2021-01-04 16:29:42 +0100",
-  "brakeman_version": "4.10.1"
+  "updated": "2021-06-29 20:56:10 +0200",
+  "brakeman_version": "5.0.1"
 }

data/config/initializers/dragonfly.rb CHANGED Viewed

@@ -1,6 +1,7 @@
 # frozen_string_literal: true
 require "dragonfly_svg"
 require "alchemy/dragonfly/processors/crop_resize"
+require "alchemy/dragonfly/processors/auto_orient"
 # Logger
 Dragonfly.logger = Rails.logger
@@ -16,4 +17,5 @@ Dragonfly::ImageMagick::Processors::Encode::WHITELISTED_ARGS << "flatten"
 Rails.application.config.after_initialize do
   Dragonfly.app(:alchemy_pictures).add_processor(:crop_resize, Alchemy::Dragonfly::Processors::CropResize.new)
+  Dragonfly.app(:alchemy_pictures).add_processor(:auto_orient, Alchemy::Dragonfly::Processors::AutoOrient.new)
 end

data/config/locales/alchemy.en.yml CHANGED Viewed

@@ -89,6 +89,11 @@ en:
         right: 'Right from text'
         no_float: 'Above the text'
+    ingredient_values:
+      boolean:
+        true: "True"
+        false: "False"
     # == Contactform translations
     contactform:
       labels:
@@ -194,7 +199,6 @@ en:
     'An error happened': 'An error happened'
     "Change password": "Change password"
     "Choose page": "Choose page"
-    "Cleared trash": "Cleared trash"
     "Clear selection": "Clear selection"
     "Forgot your password?": "Forgot your password?"
     "Clipboard": "Clipboard"
@@ -204,15 +208,14 @@ en:
     "Currently locked pages": "Currently locked pages"
     "Default language has to be public": "Default language has to be public"
     "Delete image": "Delete image"
+    "Delete element": "Delete element"
     "Do you really want to clear the clipboard?": "Do you really want to clear the clipboard?"
-    "Do you really want to clear the trash?": "Do you really want to clear the trash?"
     "Do you really want to delete this content?": "Do you really want to delete this content?"
     "Drag an element over to the element window to restore it": "Drag an element over to the element window to restore it"
     "Edit Picturemask": "Edit picturemask"
     "Edit image": "Edit image"
     "Edit multiple pictures": "Edit multiple pictures"
     "Elements": "Elements"
-    "Element trashed": "Element trashed"
     "Error with the Flash® Uploader!": "Error with the Flash® Uploader!"
     "Excerpt": "Excerpt"
     "File successfully updated": "File successfully updated"
@@ -268,7 +271,6 @@ en:
     "Please log in": "Please log in."
     "Please seperate the tags with commata": "* Please seperate the tags with commas."
     "Properties": "Properties"
-    "Publish page": "Publish page"
     "Read the License": "Read the License"
     "Redirects to": "Redirects to"
     "Reload Preview": "Reload Preview"
@@ -287,13 +289,14 @@ en:
     "Show clipboard": "Show clipboard"
     "Copied to clipboard": "Copied to clipboard"
     "Show picture infos": "Show picture infos"
-    "Show trash": "Show trash"
     "Site successfully created": "Website successfully created."
     "Site successfully removed": "Website successfully removed."
     "Site successfully updated": "Website successfully updated."
     "Size": "Size"
+    "Sort pages": "Reorder pages"
     "Successfully added content": "Successfully added %{content}"
     "Successfully deleted content": "Successfully deleted %{content}"
+    "Successfully deleted element": "Successfully deleted %{element}"
     "Tags": "Tags"
     "These pictures could not be deleted, because they were in use": "These pictures could not be deleted, because they were in use: %{names}"
     "This page is locked": "This page is currently locked by %{name}"
@@ -309,6 +312,7 @@ en:
     "Warning!": "Warning!"
     content_definition_missing: "Warning: Content is missing its definition. Please check the elements.yml"
     content_deprecated: "WARNING! This content is deprecated and will be removed soon. Please do not use it anymore."
+    ingredient_deprecated: "WARNING! This content is deprecated and will be removed soon. Please do not use it anymore."
     element_definition_missing: "WARNING! Missing element definition. Please check your elements.yml file."
     element_deprecated: "WARNING! This element is deprecated and will be removed soon. Please do not use it anymore."
     page_definition_missing: "WARNING! Missing page layout definition. Please check your page_layouts.yml file."
@@ -320,7 +324,6 @@ en:
     element_dirty_close_window_notice: "You have unsaved elements. Do you really want to close the elements window?"
     "Your last login was on": "Your last login was on %{time}."
     "Your last updated pages": "Your last updated pages"
-    "Your trash is empty": "Your trash is empty"
     above: "above"
     add: "Add"
     align_in_text: "Alignment in text"
@@ -328,7 +331,6 @@ en:
     all_pictures: "All pictures"
     apply: "apply"
     assign_file: "Assign a file"
-    assign_file_from_archive: "assign a file from your archive"
     assign_image: "Assign an image"
     attached_to: "attached to"
     attachment_filename_notice: "* Please do not use any special characters for the filename."
@@ -336,17 +338,18 @@ en:
     big_thumbnails: "Big thumbnails"
     cancel: "cancel"
     cannot_delete_picture_notice: "Cannot delete Picture %{name}, because it's still in use."
+    cannot_visit_unpublic_page: "Publish page before visiting it."
     choose_file_to_link: "Please choose a file to link"
     "clear clipboard": "clear clipboard"
-    "clear trash": "clear trash"
     click_to_show_all: "Click to show all again."
+    confirm_to_delete_element: "Do you really want to delete this element? It cannot be restored!"
     confirm_to_delete_file: "Do you really want to delete this file from the server?"
     confirm_to_delete_image: "Do you really want to delete this image from server?"
     confirm_to_delete_image_from_server: "Do you really want to delete this image from the server?"
     confirm_to_delete_images_from_server: "Do you really want to delete these images from the server?"
     confirm_to_delete_menu: "Do you really want to delete this menu?"
     confirm_to_delete_node: "Do you really want to delete this menu node?"
-    confirm_to_delete_page: "Do you really want to delete this page? All its elements (even trashed ones) will get lost!"
+    confirm_to_delete_page: "Do you really want to delete this page?"
     content_essence_not_found: "Content essence not found"
     content_not_found: "Field for content not present."
     content_validations_headline: "Please check marked fields below"
@@ -392,7 +395,8 @@ en:
     element_saved: "Saved element."
     enter_external_link: "Please enter the URL you want to link with"
     explain_cropping: "<p>Move the frame and change its size with the mouse or arrow keys to adjust the image mask. Click on \"apply\" when you are satisfied with your selection.</p><p>If you want to return to the original centered image mask like it was defined in the layout, click \"reset\" and \"apply\" afterwards.</p>"
-    explain_publishing: "Publish the page and remove the cached version from the server."
+    explain_publishing: "Publish current page content"
+    explain_sitemap_dragndrop_sorting: "Tip: Drag the pages at the icon in order to sort them."
     explain_unlocking: "Leave page and unlock it for other users."
     external_link_notice_1: "Please enter the complete url with http:// or a similar protocol."
     external_link_notice_2: "To refer a path from your website url, start with a /."
@@ -420,7 +424,7 @@ en:
     dashboard: "Dashboard"
     image_alt_tag: "Alt-tag"
     image_caption: "Caption"
-    image_name: "Name"
+    image_name: "Name: %{name}"
     image_title: "Title-tag"
     internal_link_headline: "Search for a page to link to by entering its name into the Page select."
     internal_link_page_elements_explanation: "Additionally you can choose an anchor to an element from selected page."
@@ -489,7 +493,7 @@ en:
     or_replace_it_with_an_existing_tag: 'Or replace it with an existing tag'
     "Page created": "Page: '%{name}' created."
     page_infos: 'Page info'
-    page_layout_changed_notice: "Page type was changed. Elements not usable anymore have been moved into the trash."
+    page_layout_changed_notice: "Page type was changed. Elements not usable anymore have been hided."
     page_properties: "Page properties"
     page_public: "published"
     page_published: "Published page"
@@ -536,6 +540,8 @@ en:
       '1024': '1024px (iPad - Landscape)'
       '1280': '1280px (Desktop)'
     preview_url: Preview
+    publish_page_language_not_public: Cannot publish page if language is not public
+    publish_page_not_allowed: You have not the permission to publish this page
     recently_uploaded_only: 'Recently uploaded only'
     "regular method": "Regular method"
     remove: "Remove"
@@ -551,6 +557,7 @@ en:
     robot_follow: "robot may follow links."
     robot_index: "allow robot to index."
     save: "Save"
+    "save order": "Save order"
     saved_link: "Link saved."
     search: "search"
     search_engines: "Search engines"
@@ -565,7 +572,6 @@ en:
     subject: "Subject"
     successfully_added_element: "Successfully added new element."
     successfully_deleted_tag: "Successfully deleted tag"
-    successfully_restored_element: "Element restored successfully."
     successfully_saved_element_position: "Element position updated successfully."
     successfully_updated_tag: "Successfully updated tag"
     swap_image: "Change image"
@@ -575,7 +581,6 @@ en:
     this_picture_is_used_on_these_pages: "This picture is used on following pages"
     title: "Title"
     to_alchemy: "To Alchemy"
-    "trash element": "Put element into trash"
     unknown: "unknown"
     unlink: "Remove link from this image."
     unlock_page: "Leave page"
@@ -701,11 +706,18 @@ en:
   # Translations for Alchemy models
   activemodel:
     models:
+      alchemy/essence_headline:
+        one: Headline
+        other: Headline
       alchemy/message:
         one: Message
         other: Messages
       alchemy/admin/preview_url: Internal
     attributes:
+      alchemy/essence_headline:
+        body: Headline
+        level: Level
+        size: Size
       alchemy/message:
         salutation: 'Salutation'
         firstname: 'Firstname'
@@ -782,7 +794,6 @@ en:
         name: "Name"
         public: "visible"
         tag_list: Tags
-        trashed: Trashed
       alchemy/essence_file:
         css_class: Style
       alchemy/essence_picture:

data/config/routes.rb CHANGED Viewed

@@ -6,7 +6,7 @@ Alchemy::Engine.routes.draw do
   get "/sitemap.xml" => "pages#sitemap", format: "xml"
-  scope Alchemy.admin_path, {constraints: Alchemy.admin_constraints} do
+  scope Alchemy.admin_path, { constraints: Alchemy.admin_constraints } do
     get "/" => redirect("#{Alchemy.admin_path}/dashboard"), as: :admin
     get "/dashboard" => "admin/dashboard#index", as: :admin_dashboard
     get "/dashboard/info" => "admin/dashboard#info", as: :dashboard_info
@@ -15,7 +15,7 @@ Alchemy::Engine.routes.draw do
     get "/leave" => "admin/base#leave", as: :leave_admin
   end
-  namespace :admin, {path: Alchemy.admin_path, constraints: Alchemy.admin_constraints} do
+  namespace :admin, { path: Alchemy.admin_path, constraints: Alchemy.admin_constraints } do
     resources :contents, only: [:create]
     resources :nodes
@@ -28,13 +28,13 @@ Alchemy::Engine.routes.draw do
         post :copy_language_tree
         get :create_language
         get :link
+        get :sort
         get :tree
       end
       member do
         post :unlock
         post :publish
-        patch :fold
-        post :visit
+        post :fold
         get :configure
         get :preview
         get :info
@@ -49,7 +49,6 @@ Alchemy::Engine.routes.draw do
       member do
         patch :publish
         post :fold
-        delete :trash
       end
     end
@@ -62,6 +61,8 @@ Alchemy::Engine.routes.draw do
         get :edit_multiple
       end
       member do
+        get :url
+        put :assign
         delete :remove
       end
     end
@@ -69,23 +70,25 @@ Alchemy::Engine.routes.draw do
     resources :attachments, except: [:new] do
       member do
         get :download
+        put :assign
       end
     end
-    resources :essence_pictures, except: [:show, :new, :create] do
-      collection do
-        put :assign
-      end
+    resources :essence_audios, only: [:edit, :update]
+    concern :croppable do
       member do
         get :crop
       end
     end
-    resources :essence_files, only: [:edit, :update] do
-      collection do
-        put :assign
-      end
-    end
+    resources :essence_pictures, only: [:edit, :update], concerns: [:croppable]
+    resources :essence_files, only: [:edit, :update]
+    resources :essence_videos, only: [:edit, :update]
+    resources :ingredients, only: [:edit, :update], concerns: [:croppable]
     resources :legacy_page_urls
     resources :languages do
@@ -103,13 +106,6 @@ Alchemy::Engine.routes.draw do
       end
     end
-    resource :trash, only: :index, controller: "trash" do
-      collection do
-        get :index
-        delete :clear
-      end
-    end
     resources :tags do
       collection do
         get :autocomplete
@@ -130,7 +126,7 @@ Alchemy::Engine.routes.draw do
   resources :elements, only: :show
   resources :contents, only: :show
-  namespace :api, defaults: {format: "json"} do
+  namespace :api, defaults: { format: "json" } do
     resources :contents, only: [:index, :show]
     resources :elements, only: [:index, :show] do
@@ -144,9 +140,6 @@ Alchemy::Engine.routes.draw do
       collection do
         get :nested
       end
-      member do
-        patch :move
-      end
     end
     get "/pages/*urlname(.:format)" => "pages#show", as: "page"
@@ -161,7 +154,7 @@ Alchemy::Engine.routes.draw do
   end
   get "/:locale" => "pages#index",
-    constraints: {locale: Alchemy::RoutingConstraints::LOCALE_REGEXP},
+    constraints: { locale: Alchemy::RoutingConstraints::LOCALE_REGEXP },
     as: :show_language_root
   # The page show action has to be last route

data/db/migrate/20201207131309_create_page_versions.rb ADDED Viewed

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+class CreatePageVersions < ActiveRecord::Migration[5.2]
+  def change
+    create_table :alchemy_page_versions do |t|
+      t.references :page,
+                   null: false,
+                   index: true,
+                   foreign_key: {
+                     to_table: :alchemy_pages,
+                     on_delete: :cascade,
+                   }
+      t.datetime :public_on
+      t.datetime :public_until
+      t.index [:public_on, :public_until]
+      t.timestamps
+    end
+  end
+end