biovision 0.0.200518.1 → 0.12.211124.0

data/app/lib/biovision/components/base_component.rb

@@ -4,18 +4,22 @@ module Biovision
   module Components
     # Base biovision component
     class BaseComponent
-      extend ComponentSettings
+      extend Base::ComponentSettings
+      include Base::ComponentPrivileges
+      include Base::ComponentParameters
+      include Base::EntityLinks
+      include Base::ImageHandling
 
-      attr_reader :component, :slug, :name, :user, :user_link
+      attr_reader :component, :slug, :name
+      attr_accessor :user
 
       # @param [BiovisionComponent] component
-      # @param [User] user
+      # @param [User|nil] user
       def initialize(component, user = nil)
         @component = component
-        @slug = component&.slug || 'base'
+        self.slug = component&.slug || 'base'
         self.user = user
-
-        @name = I18n.t("biovision.components.#{@slug}.name", default: @slug)
+        self.name = I18n.t("biovision.components.#{slug}.name", default: slug)
       end
 
       # Receive component-specific handler by component slug
@@ -29,7 +33,11 @@ module Biovision
       end
 
       def self.slug
-        to_s.demodulize.underscore.gsub('_component', '')
+        to_s.demodulize.to_s.underscore.gsub('_component', '')
+      end
+
+      def self.active?
+        BiovisionComponent[slug]&.active?
       end
 
       # Receive component-specific handler by class name for component.
@@ -47,72 +55,32 @@ module Biovision
         handler_name.safe_constantize || BaseComponent
       end
 
-      # Privilege names for using in biovision_component_user.data
-      def self.privilege_names
+      # Model list for automatic role creation
+      def self.dependent_models
         []
       end
 
-      # @param [User] user
-      def self.privileged?(user)
-        return false if user.nil? || user.banned?
-        return true if user.super_user?
-
-        BiovisionComponentUser.owned_by(user).each do |link|
-          return true if link.administrator? || !link.data['privileges'].blank?
-        end
-
-        false
+      def self.create
+        BiovisionComponent.create(slug: slug, settings: default_settings)
       end
 
-      # @param [User] user
-      def user=(user)
-        @user = user
-
-        criteria = { biovision_component: @component, user: user }
-
-        @user_link = BiovisionComponentUser.find_by(criteria)
-      end
-
-      def user_link!(force_create = false)
-        if @user_link.nil?
-          criteria = { biovision_component: @component, user: user }
-          @user_link = BiovisionComponentUser.new(criteria)
-          @user_link.save if force_create
-        end
-
-        @user_link
-      end
-
-      def use_parameters?
-        false
+      # @param [ApplicationRecord] entity
+      # @param [Symbol|nil] scope
+      # @param [Hash] options
+      def self.form_options(entity, scope = :admin, options = {})
+        table_name = entity.class.table_name
+        prefix = scope.nil? ? '' : "/#{scope}"
+        {
+          model: scope.nil? ? entity : [scope, entity],
+          id: "#{entity.class.to_s.underscore}-form",
+          data: { check_url: "#{prefix}/#{table_name}/check" }
+        }.merge(options)
       end
 
       def use_settings?
         use_parameters? || @component.settings.any?
       end
 
-      def administrator?
-        return false if user.nil?
-
-        user.super_user? || @user_link&.administrator?
-      end
-
-      # @param [String|Array] privileges
-      def allow?(*privileges)
-        return false if user.nil?
-        return true if administrator? || (component.nil? && privileges.blank?)
-        return false if @user_link.nil?
-
-        result = privileges.blank?
-        privileges.flatten.each { |slug| result |= privilege?(slug) }
-        result
-      end
-
-      # @param [String] privilege_name
-      def privilege?(privilege_name)
-        privilege_handler.privilege?(privilege_name)
-      end
-
       # @param [Hash] data
       def settings=(data)
         @component.settings.merge!(self.class.normalize_settings(data))
@@ -123,40 +91,10 @@ module Biovision
         @component.settings
       end
 
-      # Receive parameter value with default
-      #
-      # Returns value of component's parameter or default value
-      # when it's not found
-      #
-      # @param [String] key
-      # @param [String] default
-      # @return [String]
-      def receive(key, default = '')
-        @component.get(key, default)
-      end
-
-      # Receive parameter value or nil
-      #
-      # Returns value of component's parameter of nil when it's not found
-      #
-      # @param [String] key
-      # @return [String]
-      def [](key)
-        @component.get(key)
-      end
-
-      # Set parameter
-      #
-      # @param [String] key
-      # @param [String] value
-      def []=(key, value)
-        @component[key] = value unless key.blank?
-      end
-
       # @param [String] name
       # @param [Integer] quantity
       def register_metric(name, quantity = 1)
-        metric = Metric.find_by(name: name)
+        metric = Metric[name]
         if metric.nil?
           attributes = {
             biovision_component: @component,
@@ -169,8 +107,38 @@ module Biovision
         metric << quantity
       end
 
-      def privilege_handler
-        @privilege_handler ||= PrivilegeHandler.new(self)
+      # @param [User] user
+      # @param [String] code_type
+      # @param [Integer] quantity
+      def find_or_create_code(user, code_type, quantity = 1)
+        @component.find_or_create_code(user, code_type, quantity)
+      end
+
+      # @param [String|Symbol] key
+      # @param default_value
+      def data_value(key, default_value = '')
+        data = user.component_data(slug)
+        data.key?(key.to_s) ? data[key.to_s] : default_value
+      end
+
+      # @param [String|Symbol] key
+      # @param new_value
+      def update_data_value(key, new_value)
+        data = user.component_data(slug)
+        data[key.to_s] = new_value
+        user.new_component_data(data)
+      end
+
+      # @param [ApplicationRecord] entity
+      # @param [Hash] new_attributes
+      def update_entity(entity, new_attributes)
+        entity.update(new_attributes)
+      end
+
+      # @param [Class] model_class
+      # @param [Hash] parameters
+      def new_entity(model_class, parameters)
+        model_class.new(parameters)
       end
     end
   end

data/app/lib/biovision/components/contact_component.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    # Contact and feedback
+    class ContactComponent < BaseComponent
+      SETTING_FEEDBACK_MAIL = 'feedback_email'
+
+      def self.settings_strings
+        [SETTING_FEEDBACK_MAIL]
+      end
+
+      def self.default_settings
+        { SETTING_FEEDBACK_MAIL => '' }
+      end
+
+      def self.dependent_models
+        [FeedbackMessage, FeedbackResponse, ContactType, ContactMethod]
+      end
+
+      def use_parameters?
+        true
+      end
+    end
+  end
+end

data/app/lib/biovision/components/content/oembed/receiver.rb

@@ -0,0 +1,98 @@
+# frozen_string_literal: true
+
+# Receiver for OEmbed-wrapped content
+module Biovision
+  module Components
+    module Content
+      module Oembed
+        # Default receiver for embedded media
+        class Receiver
+          PATTERN = %r{<oembed url="([^"]+)"></oembed>}
+
+          # @param [String] url
+          def initialize(url = '')
+            @url = url
+          end
+
+          # @param [String] url
+          def self.[](url)
+            host = URI.parse(url).host
+            slug = OembedDomain[host]&.receiver_slug
+            receiver_path = "biovision/components/content/oembed/#{slug}_receiver"
+            receiver_class = receiver_path.classify.safe_constantize
+
+            receiver_class.nil? ? new(url) : receiver_class.new(url)
+          end
+
+          # @param [String] text
+          def self.convert(text)
+            text.gsub(PATTERN) do |fragment|
+              url = fragment.match(PATTERN)[1].to_s
+              return '' if url.blank?
+
+              receiver = self[url]
+              receiver.code
+            end
+          end
+
+          def self.slug
+            to_s.demodulize.to_s.underscore.gsub('_receiver', '')
+          end
+
+          def self.domains
+            %w[]
+          end
+
+          def self.seed
+            receiver_entity = OembedReceiver.find_or_create_by(slug: slug)
+            domains.each do |domain|
+              receiver_entity.oembed_domains.create(name: domain)
+            end
+          end
+
+          def code
+            @link = OembedLink[@url]
+            @link.code || receive_and_update
+          end
+
+          def fallback
+            attributes = %(rel="external nofollow noreferrer" target="_blank")
+            %(<a href="#{@url}" #{attributes}>#{URI.parse(@url).host}</a>)
+          end
+
+          private
+
+          def receive_and_update
+            code = receive(code_url)
+            @link.code = code
+            @link.save
+
+            code
+          end
+
+          # @param [String] embed_url
+          def receive(embed_url)
+            response = RestClient.get(embed_url)
+            parse(response.body)
+          rescue RestClient::Exception => e
+            Rails.logger.warn("Cannot receive data for #{embed_url}: #{e}")
+            fallback
+          end
+
+          # @param [String] response
+          def parse(response)
+            json = JSON.parse(response)
+            json['html'] || fallback
+          rescue JSON::ParserError => e
+            Rails.logger.warn("Cannot parse response #{response}: #{e}")
+            fallback
+          end
+
+          def code_url
+            "https://#{@host}/oembed?url=#{CGI.escape(@url)}&format=json"
+          end
+        end
+      end
+    end
+  end
+end

data/app/lib/biovision/components/content/oembed/twitter_receiver.rb

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    module Content
+      module Oembed
+        # OEmbed receiver for Twitter
+        class TwitterReceiver < Receiver
+          def code_url
+            "https://publish.twitter.com/oembed?url=#{CGI.escape(@url)}"
+          end
+
+          def self.domains
+            %w[twitter.com www.twitter.com]
+          end
+        end
+      end
+    end
+  end
+end

data/app/lib/biovision/components/content/oembed/vimeo_receiver.rb

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    module Content
+      module Oembed
+        # OEmbed receiver for vimeo.com
+        class VimeoReceiver < Receiver
+          def code_url
+            "https://vimeo.com/api/oembed.json?url=#{CGI.escape(@url)}&responsive=true"
+          end
+
+          def self.domains
+            %w[www.vimeo.com vimeo.com]
+          end
+        end
+      end
+    end
+  end
+end

data/app/lib/biovision/components/content/oembed/youtube_receiver.rb

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    module Content
+      module Oembed
+        # OEmbed receiver for YouTube
+        class YoutubeReceiver < Receiver
+          def code_url
+            "https://www.youtube.com/oembed?url=#{CGI.escape(@url)}&format=json"
+          end
+
+          def self.domains
+            %w[www.youtube.com youtube.com youtu.be]
+          end
+        end
+      end
+    end
+  end
+end

data/app/lib/biovision/components/content_component.rb

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    # Content
+    class ContentComponent < BaseComponent
+      def self.dependent_models
+        [
+          DynamicPage, NavigationGroup, NavigationGroupPage, DynamicBlock,
+          OembedReceiver, OembedDomain, OembedLink
+        ]
+      end
+
+      def self.seed
+        [
+          Biovision::Components::Content::Oembed::VimeoReceiver,
+          Biovision::Components::Content::Oembed::YoutubeReceiver,
+          Biovision::Components::Content::Oembed::TwitterReceiver
+        ].each(&:seed)
+      end
+
+      def use_parameters?
+        true
+      end
+
+      def use_images?
+        true
+      end
+
+      def crud_table_names
+        super - %w[navigation_group_pages oembed_receivers oembed_domains]
+      end
+
+      def administrative_parts
+        %w[navigation_groups dynamic_blocks dynamic_pages oembed_links]
+      end
+
+      def navigation
+        @navigation ||= prepare_navigation
+      end
+
+      private
+
+      def prepare_navigation
+        result = {}
+        NavigationGroup.connection.execute(grouped_links_query).each do |row|
+          result[row['slug']] = [] unless result.key?(row['slug'])
+          result[row['slug']] << { text: row['name'], url: row['url'] }
+        end
+        result
+      end
+
+      def grouped_links_query
+        <<~SQL
+          select g.slug, p.name, p.url
+          from "#{NavigationGroupPage.table_name}" gp
+          join "#{NavigationGroup.table_name}" g on gp.navigation_group_id = g.id
+          join "#{DynamicPage.table_name}" p on gp.dynamic_page_id = p.id
+          where p.visible = true
+          order by g.slug asc, gp.priority asc
+        SQL
+      end
+    end
+  end
+end

data/app/lib/biovision/components/track_component.rb

@@ -4,6 +4,9 @@ module Biovision
   module Components
     # Component for tracking UA and IP
     class TrackComponent < BaseComponent
+      def self.dependent_models
+        [Browser, Agent, IpAddress]
+      end
     end
   end
 end

data/app/lib/biovision/components/users/authentication.rb

@@ -11,18 +11,20 @@ module Biovision
           let_user_in?
         end
 
-        protected
+        private
 
         def let_user_in?
-          return false if user.nil? || user.banned?
-
-          too_many_attempts? ? (log_attempt && false) : try_password
+          if user.nil? || user.banned?
+            register_failure && false
+          else
+            too_many_attempts? ? (log_attempt && false) : try_password
+          end
         end
 
         def too_many_attempts?
-          timeout = settings['bounce_timeout'].to_i.abs.minutes.ago
-          limit = settings['bounce_limit'].to_i
-          LoginAttempt.owned_by(user).since(timeout).count > limit
+          timeout = settings[self.class::SETTING_BOUNCE_TIMEOUT].to_i.abs
+          limit = settings[self.class::SETTING_BOUNCE_COUNT].to_i
+          LoginAttempt.owned_by(user).since(timeout.minutes.ago).count > limit
         end
 
         def log_attempt
@@ -35,12 +37,18 @@ module Biovision
         end
 
         def count_attempt
+          register_failure
           log_attempt
           return unless too_many_attempts?
 
           notifier = Biovision::Notifiers::UsersNotifier.new(user)
           notifier.new_login_attempt(@track)
         end
+
+        def register_failure
+          metric = Biovision::Components::UsersComponent::METRIC_AUTH_FAILURE
+          register_metric(metric)
+        end
       end
     end
   end

data/app/lib/biovision/components/users/codes.rb

@@ -0,0 +1,104 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    module Users
+      # Handling user-related codes
+      module Codes
+        # @param [Code] code
+        # @param [String] code_type
+        def valid_code?(code, code_type)
+          return false if code.nil? || code.biovision_component != @component
+
+          code.type?(code_type) && code.active?
+        end
+
+        # @param [Code] code
+        def valid_email_confirmation?(code)
+          return false if code.nil? || code.biovision_component != @component
+          return false unless code.active?
+
+          code_type = self.class::CODE_EMAIL_CONFIRMATION
+          code.type?(code_type) && code.data['email'] == user.email
+        end
+
+        # @param [Code] code
+        def valid_invitation?(code)
+          valid_code?(code, self.class::CODE_INVITATION)
+        end
+
+        # @param [Code] code
+        def valid_recovery?(code)
+          valid_code?(code, self.class::CODE_RECOVERY)
+        end
+
+        # @param [User] user
+        def create_email_confirmation(user)
+          code_type = self.class::CODE_EMAIL_CONFIRMATION
+          code = @component.codes.new(user: user, code_type: code_type)
+          code.data['email'] = user.email
+          code.save
+          code
+        end
+
+        # @param [User] user
+        def create_phone_confirmation(user)
+          code_type = self.class::CODE_PHONE_CONFIRMATION
+          code = @component.codes.new(user: user, code_type: code_type)
+          code.data['phone'] = user.phone
+          code.save
+          code
+        end
+
+        # @param [User] user
+        def send_email_confirmation(user)
+          code_type = self.class::CODE_EMAIL_CONFIRMATION
+          codes = @component.codes.active.owned_by(user).with_type(code_type)
+          code = codes.find_by("data->>'email' = ?", user.email)
+          code = create_email_confirmation(user) if code.nil?
+
+          CodeSender.email(code.id).deliver_later
+        end
+
+        # @param [User] user
+        def send_phone_confirmation(user)
+          code_type = self.class::CODE_PHONE_CONFIRMATION
+          codes = @component.codes.active.owned_by(user).with_type(code_type)
+          code = codes.find_by("data->>'phone' = ?", user.email)
+          code = create_phone_confirmation(user) if code.nil?
+
+          SendPhoneConfirmationJob.perform_later(code.id)
+        end
+
+        # @param [Code] code
+        def activate_email_confirmation(code)
+          return unless valid_email_confirmation?(code)
+
+          code.user.update(email_confirmed: true)
+        end
+
+        # @param [Code] code
+        # @param [User] user
+        def activate_invitation(code, user)
+          return if code.nil? || !code.active? || user.nil?
+
+          code.decrement!(:quantity)
+          user.update(inviter_id: code.user_id)
+
+          register_metric(self.class::METRIC_USED_INVITATION)
+        end
+
+        # @param [User] user
+        def create_invitations_for_user(user)
+          quantity = settings[self.class::SETTING_INVITE_COUNT].to_i
+
+          return if quantity < 1
+
+          code = @component.codes.new(user: user, quantity: quantity)
+          code.code_type = self.class::CODE_INVITATION
+          code.save
+        end
+      end
+    end
+  end
+end

data/app/lib/biovision/components/users/flag_helpers.rb

@@ -0,0 +1,72 @@
+# frozen_string_literal: true
+
+module Biovision
+  module Components
+    module Users
+      # Helper methods for checking user flags
+      module FlagHelpers
+        def needs_email_confirmation?
+          return false if user&.email_confirmed?
+
+          confirm_email? && !user.email.blank?
+        end
+
+        def needs_phone_confirmation?
+          return false if user&.phone_confirmed?
+
+          confirm_phone? && !user.phone.blank?
+        end
+
+        def registration_open?
+          key = Biovision::Components::UsersComponent::SETTING_OPEN
+          settings[key]
+        end
+
+        def email_as_login?
+          key = Biovision::Components::UsersComponent::SETTING_EMAIL_AS_LOGIN
+          settings[key]
+        end
+
+        def phone_as_login?
+          key = Biovision::Components::UsersComponent::SETTING_PHONE_AS_LOGIN
+          settings[key]
+        end
+
+        def require_email?
+          key = Biovision::Components::UsersComponent::SETTING_REQUIRE_EMAIL
+          settings[key] || email_as_login?
+        end
+
+        def require_phone?
+          key = Biovision::Components::UsersComponent::SETTING_REQUIRE_PHONE
+          settings[key] || phone_as_login?
+        end
+
+        def confirm_email?
+          key = Biovision::Components::UsersComponent::SETTING_CONFIRM_EMAIL
+          settings[key]
+        end
+
+        def confirm_phone?
+          key = Biovision::Components::UsersComponent::SETTING_CONFIRM_PHONE
+          settings[key]
+        end
+
+        def invite_only?
+          key = Biovision::Components::UsersComponent::SETTING_INVITE_ONLY
+          settings[key]
+        end
+
+        def use_invites?
+          key = Biovision::Components::UsersComponent::SETTING_USE_INVITES
+          settings[key] || invite_only?
+        end
+
+        def use_phone?
+          key = Biovision::Components::UsersComponent::SETTING_USE_PHONE
+          settings[key]
+        end
+      end
+    end
+  end
+end