data_porter 1.0.2 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7ca6bfabfc9f831d71c60a1942516a5dccf95c85e3787f16a1217188c9feb3a0
-  data.tar.gz: f703da9261612953fcacad2674e38bef3037b804191e7fb3087577846b096461
+  metadata.gz: 46a9ae914232272194aaa961ed2619a423e2fcbbe9b5dc4dbdb2762bbcdb7129
+  data.tar.gz: 4de6b7f13955136df74552b6788792b3f9e8ba0b201e8b0fa25000e28294e13b
 SHA512:
-  metadata.gz: a7d8ad32cb5d80e027d9adfe2a089a84703c6e8e5b00901c0d057a4b2bb24cb2ffbe0f6edb53f61021219fd03384830517192657fbe4c693dd74b6977279b22a
-  data.tar.gz: 6d96ecefa39d191cea801ff8e4075f5c9bb4e13979f7754041db33a6685701d98f4521230500a1d0a47a417ce141f1b08973b5cbfd65868b0c3920c99afb61f6
+  metadata.gz: 0af51f459c999859b1ef723787998134e96a371bfe25c4e99a086a38cd787e35f4c8b2e58331b5594a1baeb7bc0c8220d0ccd5a9c2738f0cbabc1cc69021a754
+  data.tar.gz: 735f5bc4d814f7e641fd8e2d9498487ddf75a5ce784f40439fbcfcdd7a995b131e243538dd261ea5d5b4494148a0035b83b7c5bac924de2f9279f2a019dd6af5

data/CHANGELOG.md

@@ -5,6 +5,20 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [1.1.0] - 2026-02-08
+
+### Added
+
+- **Scoped imports** -- `config.scope` lambda returns the owner object (any ActiveRecord model) for multi-tenant isolation; used for both storage and filtering; IDOR-safe
+- **Scoped mapping templates** -- Templates are filtered and assigned by owner, consistent with import scope
+- **`ScopeManagement` concern** -- Shared `resolve_owner` logic extracted for both controllers
+- **Polymorphic user on `mapping_templates`** -- Migration template adds `user` reference for template ownership
+
+### Changed
+
+- `build_import` uses `resolve_owner` instead of raw `current_user`
+- 413 RSpec examples (up from 402), 0 failures
+
 ## [1.0.2] - 2026-02-07
 
 ### Changed

data/README.md

@@ -31,7 +31,8 @@ Supports CSV, JSON, XLSX, and API sources with a declarative DSL for defining im
 - **Per-target source filtering** -- Each target declares its allowed sources, the UI filters accordingly
 - **Import deletion & auto-purge** -- Delete imports from the UI, or schedule `rake data_porter:purge` for automatic cleanup
 - **Reject rows export** -- Download a CSV of failed/errored records with error messages after import
-- **Security validations** -- File size limit, MIME type check, strong parameter whitelisting
+- **Scoped imports** -- `config.scope` for multi-tenant isolation; each user only sees their own imports
+- **Security validations** -- File size limit, MIME type check, strong parameter whitelisting, IDOR protection via scope
 - **Safety guards** -- Max records limit (`config.max_records`), configurable transaction mode (`:per_record` or `:all`)
 - **Declarative Target DSL** -- One class per import type, zero boilerplate ([docs](docs/TARGETS.md))
 
@@ -141,7 +142,7 @@ pending -> parsing -> previewing -> importing -> completed
 git clone https://github.com/SerylLns/data_porter.git
 cd data_porter
 bin/setup
-bundle exec rspec     # 391 specs
+bundle exec rspec     # 405 specs
 bundle exec rubocop   # 0 offenses
 ```
 

data/app/controllers/data_porter/concerns/mapping_management.rb

@@ -19,7 +19,8 @@ module DataPorter
       def load_templates
         return [] unless defined?(DataPorter::MappingTemplate)
 
-        DataPorter::MappingTemplate.for_target(@import.target_key)
+        scope = scoped_template_base
+        scope.for_target(@import.target_key)
       end
 
       def save_column_mapping
@@ -31,10 +32,19 @@ module DataPorter
         return unless params[:save_template] == "1"
         return unless defined?(DataPorter::MappingTemplate)
 
-        DataPorter::MappingTemplate.find_or_initialize_by(
+        template = scoped_template_base.find_or_initialize_by(
           target_key: @import.target_key,
           name: params[:template_name].presence || "Default"
-        ).update!(mapping: permitted_column_mapping)
+        )
+        template.user ||= resolve_owner
+        template.update!(mapping: permitted_column_mapping)
+      end
+
+      def scoped_template_base
+        owner = resolve_owner
+        return DataPorter::MappingTemplate unless owner
+
+        DataPorter::MappingTemplate.where(user: owner)
       end
 
       def permitted_column_mapping

data/app/controllers/data_porter/concerns/scope_management.rb

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+module DataPorter
+  module Concerns
+    module ScopeManagement
+      private
+
+      def resolve_owner
+        return unless respond_to?(:current_user, true)
+        return unless current_user
+
+        scope = DataPorter.configuration.scope
+        scope ? scope.call(current_user) : current_user
+      end
+    end
+  end
+end

data/app/controllers/data_porter/imports_controller.rb

@@ -5,6 +5,7 @@ module DataPorter
     include Concerns::ImportValidation
     include Concerns::MappingManagement
     include Concerns::RecordPagination
+    include Concerns::ScopeManagement
 
     layout "data_porter/application"
 
@@ -12,7 +13,7 @@ module DataPorter
     before_action :load_targets, only: %i[index new create]
 
     def index
-      @imports = DataPorter::DataImport.order(created_at: :desc)
+      @imports = scoped_imports.order(created_at: :desc)
     end
 
     def new
@@ -88,7 +89,14 @@ module DataPorter
     private
 
     def set_import
-      @import = DataPorter::DataImport.find(params[:id])
+      @import = scoped_imports.find(params[:id])
+    end
+
+    def scoped_imports
+      owner = resolve_owner
+      return DataPorter::DataImport.all unless owner
+
+      DataPorter::DataImport.where(user: owner)
     end
 
     def load_targets
@@ -97,7 +105,7 @@ module DataPorter
 
     def build_import
       @import = DataPorter::DataImport.new(import_params)
-      @import.user = current_user if respond_to?(:current_user, true)
+      @import.user = resolve_owner
       @import.status = :pending
     end
 

data/app/controllers/data_porter/mapping_templates_controller.rb

@@ -2,12 +2,14 @@
 
 module DataPorter
   class MappingTemplatesController < DataPorter.configuration.parent_controller.constantize
+    include Concerns::ScopeManagement
+
     layout "data_porter/application"
 
     before_action :set_template, only: %i[edit update destroy]
 
     def index
-      @templates = MappingTemplate.order(:target_key, :name)
+      @templates = scoped_templates.order(:target_key, :name)
       @grouped = @templates.group_by(&:target_key)
     end
 
@@ -18,6 +20,7 @@ module DataPorter
 
     def create
       @template = MappingTemplate.new(template_params)
+      @template.user = resolve_owner
 
       if @template.save
         redirect_to mapping_templates_path
@@ -48,7 +51,14 @@ module DataPorter
     private
 
     def set_template
-      @template = MappingTemplate.find(params[:id])
+      @template = scoped_templates.find(params[:id])
+    end
+
+    def scoped_templates
+      owner = resolve_owner
+      return MappingTemplate.all unless owner
+
+      MappingTemplate.where(user: owner)
     end
 
     def template_params

data/app/models/data_porter/mapping_template.rb

@@ -4,6 +4,8 @@ module DataPorter
   class MappingTemplate < ActiveRecord::Base
     self.table_name = "data_porter_mapping_templates"
 
+    belongs_to :user, polymorphic: true, optional: true
+
     attribute :mapping, :json, default: -> { {} }
 
     validates :target_key, presence: true

data/lib/data_porter/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module DataPorter
-  VERSION = "1.0.2"
+  VERSION = "1.1.0"
 end

data/lib/generators/data_porter/install/templates/create_data_porter_mapping_templates.rb.erb

@@ -7,6 +7,8 @@ class CreateDataPorterMappingTemplates < ActiveRecord::Migration[<%= ActiveRecor
       t.string :name,       null: false
       t.jsonb  :mapping,    null: false, default: {}
 
+      t.references :user, polymorphic: true
+
       t.timestamps
     end
 

data/lib/generators/data_porter/install/templates/initializer.rb

@@ -26,6 +26,12 @@ DataPorter.configure do |config|
   # Enabled source types.
   # config.enabled_sources = %i[csv json xlsx api]
 
+  # Scope imports per owner (multi-tenant isolation).
+  # The lambda receives current_user and returns the owner object.
+  # Works with any model: User, Member, Hotel, Organization...
+  # config.scope = ->(user) { user }
+  # config.scope = ->(user) { user.hotel }
+
   # Auto-purge completed/failed imports older than this duration.
   # Set to nil to disable auto-purge. Run `rake data_porter:purge` manually or via cron.
   # config.purge_after = 60.days

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: data_porter
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 1.1.0
 platform: ruby
 authors:
 - Seryl Lounis
@@ -122,6 +122,7 @@ files:
 - app/controllers/data_porter/concerns/import_validation.rb
 - app/controllers/data_porter/concerns/mapping_management.rb
 - app/controllers/data_porter/concerns/record_pagination.rb
+- app/controllers/data_porter/concerns/scope_management.rb
 - app/controllers/data_porter/imports_controller.rb
 - app/controllers/data_porter/mapping_templates_controller.rb
 - app/jobs/data_porter/dry_run_job.rb