atomic_admin 2.0.0.beta.5 → 2.0.0.beta.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 45e769d018db1fe843c0d6386ec5007465077b44e4731f27d4afa1efca6ff94e
-  data.tar.gz: 298af2cf1c71df14fb6bb3c51dd884157d068182d066ffb2cd1674afbfff616d
+  metadata.gz: 8c6745a63396d5082de09298e3279be5f7cd6f7e00423c9fa3c78c2f7f022a6e
+  data.tar.gz: 0417afcd5e4b470c1d99c7d734b3c3634a5181d7de4132c245e62601975706d5
 SHA512:
-  metadata.gz: 37e0a008ee8794c07a0a9f414acf838501ffbf70292812aee7471d682972104ccb0a54ec3bbb6a7ebcb1540dd54e4c0b64e7f2faa10e45ac924dc7170b8f6f46
-  data.tar.gz: f121526e3fa12837bc090f7cd9bb8747def98fccfc88ff8e69ba0f6323391f68da0bafca426391abd93949bda41c6a6b7619b1e9ea853a75050099475327e118
+  metadata.gz: 4eba8d0fab5b8f740840ba325bc82cfc4c2150cfd3bb95de92adb79ce214158b9f912d0a07117b3614b4f32ab8abb7c41c5d31635a30cb4b992ba7169a7872ce
+  data.tar.gz: 07dae532165b817a0ca1cdecc625d2ab0c8ddb0a964ed296f0b0cd9f66bbb33b5e41bcf368522f19176aa62be0073c569837a772b3fb4d6fa9eed0cdc6061341

data/app/controllers/atomic_admin/api/admin/v1/users_controller.rb

@@ -0,0 +1,4 @@
+
+module AtomicAdmin::Api::Admin::V1
+  UsersController = AtomicAdmin::V1::UsersController
+end

data/app/controllers/atomic_admin/v1/admin_controller.rb

@@ -1,6 +1,7 @@
 module AtomicAdmin::V1
   class AdminController < ActionController::API
     include RequireJwtToken
+
     before_action :validate_admin_token
 
     rescue_from ActiveRecord::RecordNotFound, with: :record_not_found

data/app/controllers/atomic_admin/v1/application_instances_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class ApplicationInstancesController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_sort_columns %w[nickname]
     allowed_search_columns %w[nickname]

data/app/controllers/atomic_admin/v1/applications_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class ApplicationsController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_sort_columns %w[name]
     allowed_search_columns %w[name]

data/app/controllers/atomic_admin/v1/lti_platforms_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class LtiPlatformsController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_search_columns %w[iss]
     allowed_sort_columns %w[iss]

data/app/controllers/atomic_admin/v1/sites_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class SitesController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_search_columns %w[url]
     allowed_sort_columns %w[url]

data/app/controllers/atomic_admin/v1/tenant_client_id_strategies_controller.rb

@@ -1,10 +1,12 @@
 module AtomicAdmin::V1
   class TenantClientIdStrategiesController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_search_columns %w[client_id, iss]
     allowed_sort_columns %w[client_id, iss]
 
+    before_action :check_restrictions, only: %i[create]
+
     def index
       query = AtomicTenant::PinnedClientId.where(application_instance_id:)
       page, meta = filter(query)
@@ -44,5 +46,32 @@ module AtomicAdmin::V1
     def find_pinned_client_id
       AtomicTenant::PinnedClientId.find_by(id: params[:id])
     end
+
+    def check_restrictions
+      return if interaction.nil?
+
+      if interaction.data[:restricted_client_id_prefixes]
+        prefixes = interaction.data[:restricted_client_id_prefixes]
+
+        prefixes.each do |prefix|
+          if create_params[:iss] == prefix[:iss] && create_params[:client_id].start_with?(prefix[:prefix])
+            render json: { error: prefix[:reason] }, status: :forbidden
+            return
+          end
+        end
+      end
+
+      if interaction.data[:restricted_client_id_issuers]
+        issuers = interaction.data[:restricted_client_id_issuers]
+        if issuers.any? { |issuer| create_params[:iss] == issuer }
+          render json: { error: "This ISS is blocked from client_id pinning. Pin by deployment instead." }, status: :forbidden
+          return
+        end
+      end
+    end
+
+    def interaction
+      @interaction ||= AtomicAdmin.application_instance_interactions.for_type(:lti_advantage).first
+    end
   end
 end

data/app/controllers/atomic_admin/v1/tenant_deployments_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class TenantDeploymentsController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_search_columns %w[deployment_id, iss]
     allowed_sort_columns %w[deployment_id, iss]

data/app/controllers/atomic_admin/v1/tenant_platform_guid_strategies_controller.rb

@@ -1,6 +1,6 @@
 module AtomicAdmin::V1
   class TenantPlatformGuidStrategiesController < AdminController
-    include Filtering
+    include AtomicAdmin::Filtering
 
     allowed_search_columns %w[platform_guid, iss]
     allowed_sort_columns %w[platform_guid, iss]

data/app/controllers/atomic_admin/v1/users_controller.rb

@@ -0,0 +1,59 @@
+module AtomicAdmin::V1
+  class UsersController < AdminController
+    include AtomicAdmin::Filtering
+
+    around_action :switch_tenants
+
+    allowed_sort_columns %w[name lti_user_id lms_user_id create_method]
+    allowed_search_columns %w[name lti_user_id lms_user_id]
+
+    def index
+      query = User.includes(:roles).where.not(lti_user_id: nil)
+
+      users, meta = filter(query)
+
+      render json: { users: json_for(users), meta: meta }
+    end
+
+    def show
+      @user = User.find(params[:id])
+      render json: { user: json_for(@user) }
+    end
+
+    def update
+      @user = User.find(params[:id])
+
+      do_update(@user, params)
+
+      render json: { user: json_for(@user) }
+    end
+
+    def bulk_update
+      params[:users].each do |user_params|
+        user = User.find(user_params[:id])
+        do_update(user, user_params)
+      end
+
+      render json: { success: true }
+    end
+
+    def do_update(user, params)
+      raise "Not implemented. This method should be implemented in a subclass of UsersController."
+    end
+
+    def json_for(relation)
+      relation.as_json(
+        include: :roles,
+        only: [:id, :name, :lti_user_id, :lms_user_id]
+      )
+    end
+
+    def switch_tenants(&)
+      application_instance = ApplicationInstance.find(
+        params[:application_instance_id]
+      )
+
+      Apartment::Tenant.switch(application_instance.tenant, &)
+    end
+  end
+end

data/config/routes.rb

@@ -36,6 +36,20 @@ AtomicAdmin::Engine.routes.draw do
             resources :tenant_platform_guid_strategies
             resources :tenant_deployments
             resources :stats
+            resources :users do
+              collection do
+                post :bulk_update
+              end
+            end
+
+            AtomicAdmin.application_instance_interactions.for_type(:resource).each do |interaction|
+              controller_name = interaction.key.to_s.pluralize
+              resources controller_name do
+                collection do
+                  get :interactions
+                end
+              end
+            end
           end
         end
       end

data/{app/controllers/concerns → lib/atomic_admin}/filtering.rb

@@ -1,4 +1,4 @@
-module Filtering
+module AtomicAdmin::Filtering
   extend ActiveSupport::Concern
 
   included do
@@ -27,7 +27,8 @@ module Filtering
     allowed_search_columns = self.class.class_variable_get(:@@allowed_search_columns)
 
     if params[:search].present? && params[:search_on].present? && allowed_search_columns.include?(params[:search_on])
-      relation = relation.where("lower(#{params[:search_on]}) LIKE ?", "%#{params[:search].downcase}%")
+      table_name = relation.table_name
+      relation = relation.where("lower(#{table_name}.#{params[:search_on]}) LIKE ?", "%#{params[:search].downcase}%")
     end
 
     allowed_sort_columns = self.class.class_variable_get(:@@allowed_sort_columns)

data/lib/atomic_admin/interaction/analytics.rb

@@ -0,0 +1,13 @@
+module AtomicAdmin::Interaction
+  class Analytics < AtomicAdmin::Interaction::Base
+
+    def initialize(controller:, **kwargs)
+      super(**kwargs)
+      @controller = controller
+
+      Rails.application.config.to_prepare do
+        AtomicAdmin::Api::Admin::V1.const_set(:StatsController, controller.constantize)
+      end
+    end
+  end
+end

data/lib/atomic_admin/interaction/base.rb

@@ -0,0 +1,23 @@
+module AtomicAdmin::Interaction
+  class Base
+    attr_accessor :key, :type, :key, :title, :icon, :order, :data
+
+    def initialize(key:, type:, title: nil, icon: nil, order: 0, **kwargs)
+      @key = key
+      @type = type
+      @title = title
+      @icon = icon
+      @order = order
+      @data = kwargs
+    end
+
+    def resolve(**kwargs)
+      {
+        key: key,
+        type: type,
+        title: title,
+        icon: icon,
+      }
+    end
+  end
+end

data/lib/atomic_admin/interaction/json_form.rb

@@ -0,0 +1,19 @@
+module AtomicAdmin::Interaction
+  class JsonForm < AtomicAdmin::Interaction::Base
+
+    def initialize(schema:, **kwargs)
+      super(**kwargs)
+      @schema_factory = schema
+    end
+
+    def resolve(**kwargs)
+      hash = super(**kwargs)
+
+      schema = @schema_factory.new(**kwargs)
+      hash[:schema] = schema.schema
+      hash[:uischema] = schema.uischema
+
+      hash
+    end
+  end
+end

data/lib/atomic_admin/interaction/launch.rb

@@ -0,0 +1,19 @@
+module AtomicAdmin::Interaction
+  class Launch < AtomicAdmin::Interaction::Base
+
+    def initialize(launch:, aud:, **kwargs)
+      super(**kwargs)
+      @launch = launch
+      @aud = aud
+    end
+
+    def resolve(**kwargs)
+      hash = super(**kwargs)
+
+      hash[:launch_url] = @launch.call(**kwargs)
+      hash[:aud] = @aud
+
+      hash
+    end
+  end
+end

data/lib/atomic_admin/interaction/manager.rb

@@ -0,0 +1,58 @@
+module AtomicAdmin::Interaction
+  class Manager
+    include Enumerable
+
+    INTERACTIONS = {
+      analytics: AtomicAdmin::Interaction::Analytics,
+      jsonform: AtomicAdmin::Interaction::JsonForm,
+      resource: AtomicAdmin::Interaction::Resource,
+      launch: AtomicAdmin::Interaction::Launch,
+    }.freeze
+
+    def initialize
+      @interactions = {}
+      @curr_index = 0
+    end
+
+    def each(&block)
+      @interactions.each do |key, interaction|
+        block.call(key, interaction)
+      end
+    end
+
+    def add(key, type:, **kwargs)
+      interaction_cls = INTERACTIONS[type] || AtomicAdmin::Interaction::Base
+
+      interaction = interaction_cls.new(key:, type:, order: @curr_index, **kwargs)
+      @interactions[key] = interaction
+      @curr_index += 1
+
+      nil
+    end
+
+    def get(key)
+      @interactions[key]
+    end
+
+    def [](key)
+      @interactions[key]
+    end
+
+    def tap
+      yield self
+      self
+    end
+
+    def for_type(type)
+      @interactions.values.select { |interaction| interaction.type == type }
+    end
+
+
+    def resolve(**kwargs)
+      sorted = @interactions.sort_by { |key, interaction| interaction.order }
+      sorted.map do |key, interaction|
+        interaction.resolve(**kwargs)
+      end
+    end
+  end
+end

data/lib/atomic_admin/interaction/resource.rb

@@ -0,0 +1,45 @@
+module AtomicAdmin::Interaction
+  class Resource < AtomicAdmin::Interaction::Base
+
+    def initialize(controller:, table:, actions: [], plural:, singular:, **kwargs)
+      super(**kwargs)
+      @controller = controller
+      @table = table
+      @actions = actions
+      @plural = plural
+      @singular = singular
+
+      Rails.application.config.to_prepare do
+        controller_name = controller.demodulize
+        AtomicAdmin::Api::Admin::V1.const_set(controller_name, controller.constantize)
+      end
+    end
+
+    def resolve(**kwargs)
+      hash = super(**kwargs)
+
+      hash[:plural] = @plural
+      hash[:singular] = @singular
+      hash[:table] = @table
+
+      hash[:actions] = @actions.map do |action|
+        action_hash = {
+          type: action[:type],
+          label: action[:label],
+        }
+
+        if action[:schema]
+          schema_factory = action[:schema]
+          schema = schema_factory.new(**kwargs)
+
+          action_hash[:schema] = schema.schema
+          action_hash[:uischema] = schema.uischema
+        end
+
+        action_hash
+      end
+
+      hash
+    end
+  end
+end

data/lib/atomic_admin/interaction.rb

@@ -1,58 +1,9 @@
-module AtomicAdmin::Interaction
-  class Manager
-    def initialize
-      @interactions = {}
-      @curr_index = 0
-    end
-
-    def add(key, **kwargs)
-      @interactions[key] = {
-        **kwargs,
-        order: @curr_index,
-      }
-
-      if @interactions[key][:type] == :analytics && @interactions[key][:controller].present?
-        controller_class = @interactions[key][:controller]
-        Rails.application.config.to_prepare do
-          AtomicAdmin::Api::Admin::V1.const_set(:StatsController, controller_class.constantize)
-        end
-      end
-      @curr_index += 1
-    end
-
-    def get(key)
-      @interactions[key]
-    end
+require_relative 'interaction/base'
+require_relative 'interaction/json_form'
+require_relative 'interaction/analytics'
+require_relative 'interaction/resource'
+require_relative 'interaction/launch'
+require_relative 'interaction/manager'
 
-    def tap
-      yield self
-      self
-    end
-
-    def resolve(**kwargs)
-      sorted = @interactions.sort_by { |key, interaction| interaction[:order] }
-      sorted.map do |key, interaction|
-        type = interaction[:type]
-        hash = {
-          key: key,
-          type: type,
-          title: interaction[:title],
-          icon: interaction[:icon],
-        }
-
-        case type
-        when :jsonform
-          schema_factory = interaction[:schema]
-          schema = schema_factory.new(**kwargs)
-          hash[:schema] = schema.schema
-          hash[:uischema] = schema.uischema
-        when :launch
-          hash[:launch_url] = interaction[:launch_url].call(**kwargs)
-          hash[:aud] = interaction[:aud]
-        end
-
-        hash
-      end
-    end
-  end
+module AtomicAdmin::Interaction
 end

data/lib/atomic_admin/version.rb

@@ -1,3 +1,3 @@
 module AtomicAdmin
-  VERSION = "2.0.0.beta.5".freeze
+  VERSION = "2.0.0.beta.6".freeze
 end

data/lib/atomic_admin.rb

@@ -3,6 +3,7 @@ require "atomic_admin/engine"
 require "atomic_admin/jwt_token"
 require "atomic_admin/schema"
 require "atomic_admin/interaction"
+require "atomic_admin/filtering"
 
 module AtomicAdmin
   mattr_accessor :admin_jwks_url

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: atomic_admin
 version: !ruby/object:Gem::Version
-  version: 2.0.0.beta.5
+  version: 2.0.0.beta.6
 platform: ruby
 authors:
 - Nick Benoit
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-10-31 00:00:00.000000000 Z
+date: 2026-02-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -55,6 +55,7 @@ files:
 - app/controllers/atomic_admin/api/admin/v1/tenant_client_id_strategies_controller.rb
 - app/controllers/atomic_admin/api/admin/v1/tenant_deployments_controller.rb
 - app/controllers/atomic_admin/api/admin/v1/tenant_platform_guid_strategies_controller.rb
+- app/controllers/atomic_admin/api/admin/v1/users_controller.rb
 - app/controllers/atomic_admin/v1/admin_controller.rb
 - app/controllers/atomic_admin/v1/application_instances_controller.rb
 - app/controllers/atomic_admin/v1/applications_controller.rb
@@ -64,7 +65,7 @@ files:
 - app/controllers/atomic_admin/v1/tenant_client_id_strategies_controller.rb
 - app/controllers/atomic_admin/v1/tenant_deployments_controller.rb
 - app/controllers/atomic_admin/v1/tenant_platform_guid_strategies_controller.rb
-- app/controllers/concerns/filtering.rb
+- app/controllers/atomic_admin/v1/users_controller.rb
 - app/controllers/concerns/require_jwt_token.rb
 - app/jobs/atomic_admin/application_job.rb
 - app/mailers/atomic_admin/application_mailer.rb
@@ -72,7 +73,14 @@ files:
 - config/routes.rb
 - lib/atomic_admin.rb
 - lib/atomic_admin/engine.rb
+- lib/atomic_admin/filtering.rb
 - lib/atomic_admin/interaction.rb
+- lib/atomic_admin/interaction/analytics.rb
+- lib/atomic_admin/interaction/base.rb
+- lib/atomic_admin/interaction/json_form.rb
+- lib/atomic_admin/interaction/launch.rb
+- lib/atomic_admin/interaction/manager.rb
+- lib/atomic_admin/interaction/resource.rb
 - lib/atomic_admin/jwt_token.rb
 - lib/atomic_admin/jwt_token/jwks_decoder.rb
 - lib/atomic_admin/jwt_token/secret_decoder.rb
@@ -109,7 +117,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: 1.3.1
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.4.10
 signing_key:
 specification_version: 4
 summary: Engine to provide apis that power the atomic jolt admin app