RubyGems - decidim-access_requests - Versions diffs - 0.15.0 - Mend

decidim-access_requests 0.15.0

Files changed (33) hide show

data/app/controllers/decidim/access_requests/verification/authorizations_controller.rb ADDED Viewed

@@ -0,0 +1,68 @@
+# frozen_string_literal: true
+module Decidim
+  module AccessRequests
+    module Verification
+      class AuthorizationsController < Decidim::ApplicationController
+        helper_method :authorization
+        before_action :load_authorization
+        def new
+          enforce_permission_to :create, :authorization, authorization: @authorization
+          @form = RequestForm.new(handler_handle: authorization_handle)
+        end
+        def create
+          enforce_permission_to :create, :authorization, authorization: @authorization
+          @form = RequestForm.from_params(
+            params.merge(user: current_user)
+          ).with_context(current_organization: current_organization)
+          Decidim::Verifications::PerformAuthorizationStep.call(@authorization, @form) do
+            on(:ok) do
+              flash[:notice] = t("authorizations.create.success", scope: "decidim.access_requests.verification")
+              redirect_to decidim_verifications.authorizations_path
+            end
+            on(:invalid) do
+              flash.now[:alert] = t("authorizations.create.error", scope: "decidim.access_requests.verification")
+              render :new
+            end
+          end
+        end
+        def edit
+          enforce_permission_to :create, :authorization, authorization: @authorization
+        end
+        private
+        # rubocop:disable Naming/MemoizedInstanceVariableName
+        def authorization
+          @authorization_presenter ||= AuthorizationPresenter.new(@authorization)
+        end
+        # rubocop:enable Naming/MemoizedInstanceVariableName
+        def load_authorization
+          @authorization = Decidim::Authorization.find_or_initialize_by(
+            user: current_user,
+            name: authorization_handle
+          )
+        end
+        def authorization_handle
+          # In case the form is posted, the authorization handle is not
+          # available from the request path.
+          tmpform = RequestForm.from_params(params)
+          return tmpform.handler_name unless tmpform.handler_name.nil?
+          # Determine the handle from the request path
+          request.path.split("/").last
+        end
+      end
+    end
+  end
+end

data/app/events/decidim/access_requests/access_request_confirmed_event.rb ADDED Viewed

@@ -0,0 +1,31 @@
+# frozen-string_literal: true
+module Decidim
+  module AccessRequests
+    class AccessRequestConfirmedEvent < Decidim::Events::SimpleEvent
+      delegate :url_helpers, to: "Decidim::Core::Engine.routes"
+      i18n_attributes :verification_name
+      def resource_url
+        url_helpers.profile_url(
+          user_nickname,
+          host: user.organization.host
+        )
+      end
+      def resource_path
+        url_helpers.profile_path(user_nickname)
+      end
+      def verification_name
+        handler_name = extra.dig("handler_name")
+        I18n.t("#{handler_name}.name", scope: "decidim.authorization_handlers")
+      end
+      def user_nickname
+        extra.dig("user_nickname")
+      end
+    end
+  end
+end

data/app/forms/decidim/access_requests/verification/request_form.rb ADDED Viewed

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+module Decidim
+  module AccessRequests
+    module Verification
+      # A form object to be used when public users want to get verified by
+      # access requests.
+      class RequestForm < AuthorizationHandler
+        attribute :handler_handle, String
+        validates :handler_handle,
+                  presence: true,
+                  inclusion: {
+                    in: proc { |form|
+                      form.current_organization.available_authorizations
+                    }
+                  }
+        def handler_name
+          handler_handle
+        end
+      end
+    end
+  end
+end

data/app/presenters/decidim/access_requests/verification/authorization_presenter.rb ADDED Viewed

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+module Decidim
+  module AccessRequests
+    module Verification
+      #
+      # Decorator for access request authorizations.
+      #
+      class AuthorizationPresenter < SimpleDelegator
+        def self.for_collection(authorizations)
+          authorizations.map { |authorization| new(authorization) }
+        end
+      end
+    end
+  end
+end

data/app/views/decidim/access_requests/verification/admin/granted_authorizations/index.html.erb ADDED Viewed

@@ -0,0 +1,44 @@
+<div class="card">
+  <div class="card-divider">
+    <h2 class="card-title">
+      <%= t(".title") %>
+      <%= link_to t(".pending_authorizations"), pending_authorizations_path, class: "button tiny button--title" %>
+      <%= link_to t(".new"), new_granted_authorization_path, class: "button tiny button--title" %>
+    </h2>
+  </div>
+  <div class="card-section">
+    <table class="table-list">
+      <thead>
+        <tr>
+          <th><%= t(".name") %></th>
+          <th><%= t(".nickname") %></th>
+          <th></th>
+        </tr>
+      </thead>
+      <tbody>
+        <% @granted_authorizations.each do |authorization| %>
+          <tr>
+            <td>
+              <%= authorization.user.name %>
+            </td>
+            <td>
+              <%= authorization.user.nickname %>
+            </td>
+            <td class="table-list__actions">
+              <%= icon_link_to "person",
+                               decidim.profile_path(authorization.user.nickname),
+                               t("layouts.decidim.user_profile.account"),
+                               class:"action-icon--show",
+                               target: "_blank" %>
+              <%= icon_link_to "circle-x",
+                              granted_authorization_path(authorization.id),
+                              t(".remove_access"),
+                              method: :delete,
+                              class: "action-icon--delete" %>
+            </td>
+          </tr>
+        <% end %>
+      </tbody>
+    </table>
+  </div>
+</div>

data/app/views/decidim/access_requests/verification/admin/granted_authorizations/new.html.erb ADDED Viewed

@@ -0,0 +1,52 @@
+<div class="filters row">
+  <div class="column medium-4">
+    <%= form_tag "", method: :get do %>
+      <div class="filters__search">
+        <div class="input-group">
+          <%= search_field_tag :q, @query,label: false, class: "input-group-field", placeholder: t(".search") %>
+          <%= hidden_field_tag :state, @state %>
+          <div class="input-group-button">
+            <button type="submit" class="button button--muted">
+              <%= icon "magnifying-glass", aria_label: t(".search") %>
+            </button>
+          </div>
+        </div>
+      </div>
+    <% end %>
+  </div>
+</div>
+<div class="card" id='user-groups'>
+  <div class="card-divider">
+    <h2 class="card-title"><%= t ".users" %></h2>
+  </div>
+  <div class="card-section">
+    <div class="table-scroll">
+      <table class="table-list">
+        <thead>
+          <tr>
+            <th><%= t(".name") %></th>
+            <th><%= t(".nickname") %></th>
+            <th><%= t(".created_at") %></th>
+            <th><%= t(".actions") %></th>
+          </tr>
+        </thead>
+        <tbody>
+          <% @users.each do |user| %>
+            <tr data-user-id="<%= user.id %>">
+              <td><%= link_to user.name, decidim.profile_path(user.nickname) %></td>
+              <td><%= link_to user.nickname, decidim.profile_path(user.nickname) %></td>
+              <td><%= l user.created_at, format: :short %></td>
+              <td class="table-list__actions">
+                <%= icon_link_to "envelope-closed", current_or_new_conversation_path_with(user), t("decidim.contact"), class:"action-icon--new" %>
+                <%= icon_link_to "circle-check", granted_authorizations_path(user_id: user.id), t(".grant_access"), class: "action-icon--verify", method: :post %>
+              </td>
+            </tr>
+          <% end %>
+        </tbody>
+      </table>
+      <%= paginate @users, theme: "decidim" %>
+    </div>
+  </div>
+</div>

data/app/views/decidim/access_requests/verification/admin/pending_authorizations/index.html.erb ADDED Viewed

@@ -0,0 +1,48 @@
+<div class="card">
+  <div class="card-divider">
+    <h2 class="card-title">
+      <%= t(".title") %>
+      <%= link_to t(".granted_authorizations"), granted_authorizations_path, class: "button tiny button--title" %>
+    </h2>
+  </div>
+  <div class="card-section">
+    <table class="table-list">
+      <thead>
+        <tr>
+          <th><%= t(".name") %></th>
+          <th><%= t(".nickname") %></th>
+          <th></th>
+        </tr>
+      </thead>
+      <tbody>
+        <% @pending_authorizations.each do |authorization| %>
+          <tr>
+            <td>
+              <%= authorization.user.name %>
+            </td>
+            <td>
+              <%= authorization.user.nickname %>
+            </td>
+            <td class="table-list__actions">
+              <%= icon_link_to "person",
+                               decidim.profile_path(authorization.user.nickname),
+                               t("layouts.decidim.user_profile.account"),
+                               class:"action-icon--show",
+                               target: "_blank" %>
+              <%= icon_link_to "circle-check",
+                               pending_authorization_path(authorization.id),
+                               t(".approve_request"),
+                               method: :patch,
+                               class: "action-icon--verify" %>
+             <%= icon_link_to "circle-x",
+                              pending_authorization_path(authorization.id),
+                              t(".reject_request"),
+                              method: :delete,
+                              class: "action-icon--reject" %>
+            </td>
+          </tr>
+        <% end %>
+      </tbody>
+    </table>
+  </div>
+</div>

data/app/views/decidim/access_requests/verification/authorizations/_steps.html.erb ADDED Viewed

@@ -0,0 +1,40 @@
+<%
+active ||= []
+steps = [
+  {
+    icon: "envelope-closed",
+    title: t(".step1.title"),
+    description: t(".step1.description")
+  },
+  {
+    icon: "check",
+    title: t(".step2.title"),
+    description: t(".step2.description")
+  },
+  {
+    icon: "bell",
+    title: t(".step3.title"),
+    description: t(".step3.description")
+  }
+]
+%>
+<div class="row small-up-1 medium-up-3 step-bullets">
+  <% steps.each_with_index do |step, i| %>
+    <%
+    cls = "step-bullet text-center"
+    cls << " completed" if active.include?(i)
+    %>
+    <div class="column">
+      <div class="<%= cls %>">
+        <div class="step-bullet__icon">
+          <%= icon step[:icon] %>
+        </div>
+        <div class="step-bullet__desc">
+          <h4 class="heading6"><%= step[:title] %></h4>
+          <p><%= step[:description] %></p>
+        </div>
+      </div>
+    </div>
+  <% end %>
+</div>

data/app/views/decidim/access_requests/verification/authorizations/edit.html.erb ADDED Viewed

@@ -0,0 +1,13 @@
+<div class="wrapper">
+  <div class="row collapse">
+    <div class="row collapse">
+      <div class="columns large-8 large-centered text-center page-title">
+        <h1><%= t(".title") %></h1>
+      </div>
+    </div>
+    <%= render "steps", active: [0, 1] %>
+  </div>
+</div>
+<%= stylesheet_link_tag "decidim/access_requests/verification" %>

data/app/views/decidim/access_requests/verification/authorizations/new.html.erb ADDED Viewed

@@ -0,0 +1,25 @@
+<div class="wrapper">
+  <div class="row collapse">
+    <div class="row collapse">
+      <div class="columns large-8 large-centered text-center page-title">
+        <h1><%= t(".title") %></h1>
+      </div>
+    </div>
+    <%= render "steps", active: [0] %>
+    <div class="row">
+      <div class="columns large-6 medium-centered">
+        <%= decidim_form_for(@form, url: authorization_path) do |form| %>
+          <%= form.hidden_field :handler_handle %>
+          <div class="actions">
+            <%= form.submit t(".send"), class: "button expanded", "data-disable-with" => "#{t('.send')}..." %>
+          </div>
+        <% end %>
+      </div>
+    </div>
+  </div>
+</div>
+<%= stylesheet_link_tag "decidim/access_requests/verification" %>

data/config/locales/en.yml ADDED Viewed

@@ -0,0 +1,70 @@
+en:
+  activemodel:
+    models:
+      decidim/access_requests/access_request_confirmed_event: Access request confirmed
+  decidim:
+    access_requests:
+      verification:
+        admin:
+          granted_authorizations:
+            destroy:
+              error: There was an error deleting the verification.
+              success: Verification was deleted successfully.
+            index:
+              name: Name
+              new: New
+              nickname: Nickname
+              pending_authorizations: Pending requests
+              remove_access: Remove access
+              title: Granted requests
+              username: Username
+            new:
+              actions: Actions
+              created_at: Created at
+              grant_access: Grant access
+              name: Name
+              nickname: Nickname
+              search: Search
+              users: Users
+          pending_authorizations:
+            destroy:
+              error: There was an error rejecting the access request.
+              success: Access request was rejected successfully.
+            index:
+              approve_request: Grant access
+              granted_authorizations: Granted requests
+              name: Name
+              nickname: Nickname
+              reject_request: Reject access
+              title: Pending requests
+            update:
+              error: There was an error verifying access for the user.
+              success: Access successfully granted for the user.
+        authorizations:
+          create:
+            error: There was an error creating the access request.
+            success: Access request successfully created.
+          edit:
+            title: Your request is pending
+          new:
+            title: Request access
+            send: Send request
+          steps:
+            step1:
+              title: Step 1
+              description: Send access request.
+            step2:
+              title: Step 2
+              description: Wait for review of the request.
+            step3:
+              title: Step 3
+              description: >
+                You will get notified once the request review has been
+                completed.
+    events:
+      access_requests:
+        confirmed:
+          email_intro: Congratulations! You have been granted access to %{verification_name}.
+          email_outro: You have received this notification because your access request has been approved.
+          email_subject: You have been granted access to %{verification_name}!
+          notification_title: You have been granted access to %{verification_name}.