card-mod-account 0.11.2 → 0.12.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b83f29edd97e19f1ffa148f41b57c67f5009f421cf3266c6bf811a56231a1984
-  data.tar.gz: 0baee78e9eef9589305298abc04aca8f8714dfbfe8781e21b83f752fd9f74cae
+  metadata.gz: 7a6ffc73cc5f34565b5b73ab83dd0d36fe98cb423fbc498f57f3df311f734a89
+  data.tar.gz: b30e646f2304e4086231139fdd87990b7c4f77e60e84198eb0dd5b2c5f634bd8
 SHA512:
-  metadata.gz: f1782318b47b6e0d66830c9420e9116b3fd6bade7d3bc1366df2c8072dc87a0ce89048303afa0828ed4912f6a79676621d512ffde2f3e9e3231e9902e8144a9c
-  data.tar.gz: 5e2efc3bdec486d61f0ac557adc0cd9bc8ca5eb6db0f905e49a8f98d0dad61a8c68f10bd58ee7888a3a80dc235872b327794bbf0ac6ff69c6ff8eb8a83a24a4d
+  metadata.gz: d1881835e8feccd020608499267ce77bdd7baf4b0e934e36a02252ae574c26e9025a68d0319cc802c6b6702275116f5519b202760dfb67368a0ad85c35d1a111
+  data.tar.gz: f91cfc3bd4093f92b43791aaac1ffc2a2d05069c5b40b8a8f0e8de99b8a58c78a8db478ee51fa2468386508dc2b1747b33ff8d5f0b13fe998ab215438190b67a

data/README.md

@@ -1,5 +1,5 @@
 <!--
-# @title README: account mod
+# @title README - mod: account
 -->
 # account
 

data/set/abstract/account_field.rb

@@ -1,3 +1,8 @@
+delegate :accounted, to: :account_card
+
+def account_card
+  left
+end
 
 # allow account owner to update account field content
 def ok_to_update

data/set/abstract/accountable.rb

@@ -38,7 +38,11 @@ format :html do
        { path: { slot: { hide: %i[help_link bridge_link] } } }],
       ["Roles", :roles,
        { path:  { view: :content_with_edit_button } }],
-      ["Notifications", :follow]
+      ["Notifications", :follow],
+      ["API", :account,
+       { path: { view: :api_key,
+                 items: { view: :content },
+                 slot: { hide: %i[help_link bridge_link] } } }]
     ]
   end
 

data/set/all/account.rb

@@ -39,6 +39,7 @@ def fetch_read_rules
 
   ([AnyoneID] + parties).each_with_object([]) do |party_id, rule_ids|
     next unless (cache = Card::Rule.read_rule_cache[party_id])
+
     rule_ids.concat cache
   end
 end
@@ -48,10 +49,16 @@ def clear_roles
 end
 
 def with_clear_roles
-  a, b, c, d = @parties, @all_roles, @all_active_roles, @read_rules
+  a = @parties
+  b = @all_roles
+  c = @all_active_roles
+  d = @read_rules
   yield
 ensure
-  @parties, @all_roles, @all_active_roles, @read_rules = a, b, c, d
+  @parties = a
+  @all_roles = b
+  @all_active_roles = c
+  @read_rules = d
 end
 
 def all_enabled_roles

data/set/right/account.rb

@@ -4,7 +4,6 @@ card_accessor :email
 card_accessor :password
 card_accessor :salt
 card_accessor :status
-card_accessor :api_key
 
 require_field :email
 
@@ -17,7 +16,7 @@ def accounted_id
 end
 
 def ok_to_read
-  own_account? ? true : super
+  own_account? || super
 end
 
 # allow account owner to update account field content
@@ -43,16 +42,12 @@ def send_account_email email_template
   ecard.deliver self, to: email
 end
 
-def validate_api_key! api_key
-  api_key_card.validate! api_key
-end
-
 def method_missing method, *args
-  super unless args.empty? && (matches = method.match(/^(?<status>.*)\?$/))
+  return super unless args.empty? && (matches = method.match(/^(?<status>.*)\?$/))
 
   status == matches[:status]
 end
 
 def respond_to_missing? method, _include_private=false
-  method.match?(/\?/) ? true : super
+  method.match?(/\?$/) ? true : super
 end

data/set/right/account/events.rb

@@ -44,7 +44,7 @@ def activatable
   yield
 end
 
-# note: this only works in the context of an action.
+# NOTE: this only works in the context of an action.
 # if run independently, it will not activate an account
 event :activate_account do
   add_subfield :status, content: "active"
@@ -95,5 +95,5 @@ end
 
 def reset_password_failure error_message
   Auth.as_bot { send_password_reset_email }
-  errors.add :content, tr(:sorry_email_reset, error_msg: error_message)
+  errors.add :content, t(:account_sorry_email_reset, error_msg: error_message)
 end

data/set/right/email.rb

@@ -8,7 +8,7 @@ event :validate_email, :validate, on: :save do
   self.content = content.strip
   return if content.match?(/^([^@\s]+)@((?:[-a-z0-9]+\.)+[a-z]{2,})$/i)
 
-  errors.add :content, tr(:error_invalid_address)
+  errors.add :content, t(:account_error_invalid_address)
 end
 
 event :validate_unique_email, after: :validate_email, on: :save do
@@ -16,9 +16,9 @@ event :validate_unique_email, after: :validate_email, on: :save do
     Auth.as_bot do
       cql = { right_id: EmailID, eq: content, return: :id }
       cql[:not] = { id: id } if id
-      cql_comment = tr(:search_email_duplicate, content: content)
+      cql_comment = t(:account_search_email_duplicate, content: content)
       if Card.search(cql, cql_comment).first
-        errors.add :content, tr(:error_not_unique)
+        errors.add :content, t(:account_error_not_unique)
       end
     end
   end
@@ -26,6 +26,7 @@ end
 
 event :downcase_email, :prepare_to_validate, on: :save do
   return if !content || content == content.downcase
+
   self.content = content.downcase
 end
 
@@ -37,7 +38,7 @@ def ok_to_read
   if own_email? || Auth.always_ok?
     true
   else
-    deny_because tr(:deny_email_restricted)
+    deny_because t(:account_deny_email_restricted)
   end
 end
 

data/set/right/password.rb

@@ -5,7 +5,7 @@ def history?
 end
 
 def ok_to_read
-  own_account? ? true : super
+  own_account? || super
 end
 
 event :encrypt_password, :store,
@@ -23,7 +23,7 @@ end
 event :validate_password, :validate, on: :save do
   return if content.length > 3
 
-  errors.add :password, tr(:password_length)
+  errors.add :password, t(:account_password_length)
 end
 
 event :validate_password_present, :prepare_to_validate, on: :update do
@@ -31,7 +31,7 @@ event :validate_password_present, :prepare_to_validate, on: :update do
 end
 
 view :raw do
-  tr :encrypted
+  t :account_encrypted
 end
 
 format :html do
@@ -46,6 +46,7 @@ format :html do
 
   def autocomplete?
     return "on" if @parent && @parent.card.name == "*signin+*account" # HACK
+
     "off"
   end
 end

data/set/right/roles.rb

@@ -9,8 +9,8 @@ end
 def forbidden_roles
   # restore old roles for permission check
   with_old_role_permissions do |new_roles|
-    new_roles.select do |card|
-      !Card.fetch(card, "*members").ok? :update
+    new_roles.reject do |card|
+      Card.fetch(card, "*members").ok? :update
     end
   end
 end

data/set/right/salt.rb

@@ -9,5 +9,5 @@ def history?
 end
 
 view :raw do
-  tr :private_data
+  t :account_private_data
 end

data/set/right/status.rb

@@ -11,7 +11,7 @@ end
 
 def ok_to_update
   if own_account? && !Auth.always_ok?
-    deny_because you_cant(tr(:deny_not_change_own_account))
+    deny_because you_cant(t(:account_deny_not_change_own_account))
   else
     super
   end

data/set/self/signin.rb

@@ -65,19 +65,15 @@ def failed_signin email
 end
 
 def abort_unless value, error_key
-  abort :failure, tr(error_key) unless value
+  abort :failure, t("account_#{error_key}") unless value
 end
 
 def signin_error_message account
-  case
-  when account.nil?     then tr :error_unknown_email
-  when !account.active? then tr :error_not_active
-  else                       tr :error_wrong_password
-  end
+  t "account_#{signin_error_key account}"
 end
 
 def error_on field, error_key
-  errors.add field, tr(error_key)
+  errors.add field, t("account_#{error_key}")
 end
 
 def account_for email
@@ -110,6 +106,16 @@ def reset_password_fail account
   end
 end
 
+private
+
+def signin_error_key account
+  case
+  when account.nil?     then :error_unknown_email
+  when !account.active? then :error_not_active
+  else                       :error_wrong_password
+  end
+end
+
 format :html do
   view :core, cache: :never do
     voo.edit_structure = [signin_field(:email), signin_field(:password)]
@@ -131,7 +137,7 @@ format :html do
 
   # FIXME: need a generic solution for this
   view :title do
-    voo.title ||= tr :sign_in_title
+    voo.title ||= t(:account_sign_in_title)
     super()
   end
 
@@ -146,7 +152,7 @@ format :html do
 
   view :reset_password_success do
     # 'Check your email for a link to reset your password'
-    frame { tr :check_email }
+    frame { t :account_check_email }
   end
 
   view :signin_buttons do
@@ -162,30 +168,31 @@ format :html do
   end
 
   def reset_password_voo
-    voo.title ||= tr :forgot_password
+    voo.title ||= t :account_forgot_password
     voo.edit_structure = [signin_field(:email)]
     voo.hide :help
   end
 
   view :edit_buttons do
-    button_tag tr(:reset_my_password),
+    button_tag t(:account_reset_my_password),
                situation: "primary", class: "_close-modal-on-success"
   end
 
   def signin_success
-    "REDIRECT: #{Env.interrupted_action || '*previous'}"
+    { redirect: true, mark: (Env.interrupted_action || "*previous") }
   end
 
   def signin_button
-    button_tag tr(:sign_in), situation: "primary"
+    button_tag t(:account_sign_in), situation: "primary"
   end
 
   def signup_link
-    subformat(Card[:account_links]).render! :sign_up, title: tr(:or_sign_up)
+    subformat(Card[:account_links]).render! :sign_up, title: t(:account_or_sign_up)
   end
 
   def reset_password_link
-    link = link_to_view :edit, tr(:reset_password), path: { slot: { hide: :bridge_link } }
+    link = link_to_view :edit, t(:account_reset_password),
+                        path: { slot: { hide: :bridge_link } }
     # FIXME: inline styling
     raw("<div style='float:right'>#{link}</div>")
   end

data/set/type/signup/views.rb

@@ -4,7 +4,7 @@ format :html do
   end
 
   view :new do
-    voo.title = invitation? ? tr(:invite) : tr(:sign_up)
+    voo.title = invitation? ? t(:account_invite) : t(:account_sign_up)
     super()
   end
 
@@ -20,6 +20,7 @@ format :html do
 
   def invite_button
     return unless invitation?
+
     button_tag "Send Invitation", situation: "primary"
   end
 
@@ -46,7 +47,7 @@ format :html do
     if card.account
       verification_lines
     else
-      [tr(:missing_account)]
+      [t(:account_missing_account)]
     end
   end
 
@@ -57,12 +58,14 @@ format :html do
   def verification_sent_line
     account = card.account
     return unless account.email_card.ok?(:read)
+
     "A verification email has been sent to #{account.email}"
   end
 
   def verification_link_line
     links = verification_links
     return if links.empty?
+
     links.join " "
   end
 
@@ -81,6 +84,7 @@ format :html do
 
   def approval_link text, with_or_without
     return unless card.can_approve?
+
     link_to_card card, text,
                  path: { action: :update,
                          card: { trigger: "approve_#{with_or_without}_verification" } }
@@ -88,6 +92,7 @@ format :html do
 
   def deny_link
     return unless card.ok? :delete
+
     link_to_card card, "Deny and delete", path: { action: :delete }
   end
 end

data/set/type/user.rb

@@ -35,7 +35,7 @@ format :html do
   def setup_hidden_fields
     hidden_tags(
       setup: true,
-      success: "REDIRECT: #{path mark: ''}",
+      success: { redirect: true, mark: path(mark: "") },
       "card[type_id]" => Card.default_accounted_type_id
     )
   end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: card-mod-account
 version: !ruby/object:Gem::Version
-  version: 0.11.2
+  version: 0.12.0
 platform: ruby
 authors:
 - Ethan McCutchen
@@ -10,7 +10,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-03-15 00:00:00.000000000 Z
+date: 2021-07-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: card
@@ -18,56 +18,56 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.101.2
+        version: 1.102.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.101.2
+        version: 1.102.0
 - !ruby/object:Gem::Dependency
   name: card-mod-email
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
 - !ruby/object:Gem::Dependency
   name: card-mod-permissions
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
 - !ruby/object:Gem::Dependency
   name: card-mod-list
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.11.2
+        version: 0.12.0
 description: ''
 email:
 - info@decko.org
@@ -82,13 +82,11 @@ files:
 - set/right/account.rb
 - set/right/account/events.rb
 - set/right/account/views.rb
-- set/right/api_key.rb
 - set/right/email.rb
 - set/right/password.rb
 - set/right/roles.rb
 - set/right/salt.rb
 - set/right/status.rb
-- set/self/captcha.rb
 - set/self/signin.rb
 - set/type/role.rb
 - set/type/signup.rb
@@ -122,7 +120,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.2.15
 signing_key:
 specification_version: 4
 summary: Email-based account handling for decko cards

data/set/right/api_key.rb

@@ -1,48 +0,0 @@
-include_set Abstract::AccountField
-
-# DURATIONS = "second|minute|hour|day|week|month|year".freeze
-
-def history?
-  false
-end
-
-view :raw do
-  tr :private_data
-end
-
-def validate! api_key
-  error =
-    case
-    when !real?             then [:token_not_found, tr(:error_token_not_found)]
-    # when expired?           then [:token_expired, tr(:error_token_expired)]
-    when content != api_key then [:incorrect_token, tr(:error_incorrect_token)]
-    end
-  errors.add(*error) if error
-  error.nil?
-end
-
-# def expired?
-#   !permanent? && updated_at <= term.ago
-# end
-#
-# def permanent?
-#   term == "permanent"
-# end
-
-# def term
-#   @term ||=
-#     if expiration.present?
-#       term_from_string expiration
-#     else
-#       Card.config.token_expiry
-#     end
-# end
-
-# def term_from_string string
-#   string.strip!
-#   return "permanent" if string == "none"
-#   re_match = /^(\d+)[\.\s]*(#{DURATIONS})s?$/.match(string)
-#   number, unit = re_match.captures if re_match
-#   raise Card::Open::Error, tr(:exception_bad_expiration, example: '2 days') unless unit
-#   number.to_i.send unit
-# end

data/set/self/captcha.rb

@@ -1,5 +0,0 @@
-setting_opts group: :permission,
-             position: 5,
-             help_text: "Anti-spam setting.  Requires non-signed-in users to complete a "\
-                        "[[http://decko.org/captcha|captcha]] before adding or editing "\
-                        "cards (where permitted)."