decidim-api 0.28.5 → 0.29.0.rc1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '0487271bae8055773c103959c1ff43ce4e71c40912ed2d4bb66242d51bfecc68'
-  data.tar.gz: ab52b494b56688ed26b84aca9489cbbcf88d1264116f38d3947396ecd2f60bfc
+  metadata.gz: a4f9bdaae8d166f02a55ec472fe0e400d2046f6cb38713381466c572e5f17c5b
+  data.tar.gz: 1b0c10c1c0e0ef7c8661465ace0d185d914173475bf33f6ec6fcb04f03bf626e
 SHA512:
-  metadata.gz: 6e3cbbdf893f3357e211c9d7a7c0866330e9fc49e3a39e8c94b1066c8e6a0659aa93a08bad7d3cf5e194096bfc7a714d06d5cc453dc815fa5ce06fc727ee4030
-  data.tar.gz: 2b4a3b7e195512b4869b81e23c08280cd0af282556bd81f687f255637bee91644eeea374726a462a1c449618fe2b31aef249398ee3a736a9e4a652f88a2d3879
+  metadata.gz: 57da850dc9496e413f1c7c033a51bedb4258414a426bada0e4f41b986ed1cca6d06fc6b5b5f0707f0eaf854b5c802590c3107564fbd79eff04db9fb16873aed4
+  data.tar.gz: 2293c845d89f6ffc9662e67edccf170ae02e4639915b18df8b8cda8441bf9e4375551ee2b492df36be26a97b8b4f7d6ec863a7e5294937c1442cae3215a630ac

data/app/packs/entrypoints/decidim_api_docs.scss

@@ -59,8 +59,7 @@ em {
   bottom: 0;
   width: 250px;
   padding: 0;
-  overflow-x: hidden;
-  overflow-y: scroll;
+  overflow: hidden scroll;
   -webkit-overflow-scrolling: touch;
   -ms-overflow-style: none;
   border-right: 1px solid #eee;

data/app/packs/entrypoints/decidim_api_graphiql.js

@@ -1,85 +1,100 @@
-/* eslint-disable require-jsdoc */
+/* eslint-disable require-jsdoc, react/no-deprecated */
 
 import "entrypoints/decidim_api_graphiql.scss";
 // Styles from node_modules/graphiql/graphiql.css
 // It needs to be done in JS because postcss-import does not find files in node_modules/
-import "graphiql/graphiql.css"
+import "graphiql/graphiql.css";
 
 import React from "react";
-import ReactDOM from "react-dom";
+import { createRoot } from "react-dom/client";
 
-import GraphiQL from "graphiql";
-import Configuration from "src/decidim/configuration"
+import { GraphiQL } from "graphiql"; // eslint-disable-line no-unused-vars
+import Configuration from "src/decidim/configuration";
 
 window.Decidim = window.Decidim || {};
-window.Decidim.config = new Configuration()
+window.Decidim.config = new Configuration();
 
 let parameters = {};
 
 // Parse the search string to get url parameters.
 const search = window.location.search;
-search.substr(1).split("&").forEach(function (entry) {
-  let eq = entry.indexOf("=");
-  if (eq >= 0) {
-    parameters[decodeURIComponent(entry.slice(0, eq))] =
-      decodeURIComponent(entry.slice(eq + 1));
-  }
-});
+search.
+  substr(1).
+  split("&").
+  forEach(function (entry) {
+    let eq = entry.indexOf("=");
+    if (eq >= 0) {
+      parameters[decodeURIComponent(entry.slice(0, eq))] = decodeURIComponent(
+        entry.slice(eq + 1)
+      );
+    }
+  });
 // if variables was provided, try to format it.
 if (parameters.variables) {
   try {
-    parameters.variables =
-      JSON.stringify(JSON.parse(parameters.variables), null, 2);
+    parameters.variables = JSON.stringify(
+      JSON.parse(parameters.variables),
+      null,
+      2
+    );
   } catch (error) {
     // Do nothing, we want to display the invalid JSON as a string, rather
     // than present an error.
   }
 }
 
-const updateURL = function() {
-  const newSearch = Object.keys(parameters).map(function (key) {
-    return `${encodeURIComponent(key)}=${encodeURIComponent(parameters[key])}`;
-  }).join("&");
+const updateURL = function () {
+  const newSearch = Object.keys(parameters).
+    map(function (key) {
+      return `${encodeURIComponent(
+        key
+      )}=${encodeURIComponent(parameters[key])}`;
+    }).
+    join("&");
 
   history.replaceState(null, null, `?${newSearch}`);
-}
+};
 
 // When the query and variables string is edited, update the URL bar so
 // that it can be easily shared
-const onEditQuery = function(newQuery) {
+const onEditQuery = function (newQuery) {
   parameters.query = newQuery;
   updateURL();
-}
+};
 
-const onEditVariables = function(newVariables) {
+const onEditVariables = function (newVariables) {
   parameters.variables = newVariables;
   updateURL();
-}
+};
 
 // Defines a GraphQL fetcher using the fetch API.
-const graphQLFetcher = function(graphQLParams) {
+const graphQLFetcher = function (graphQLParams) {
   const graphQLEndpoint = window.Decidim.config.get("graphql_endpoint");
   return fetch(graphQLEndpoint, {
     method: "post",
     headers: JSON.parse(window.Decidim.config.get("request_headers")),
     body: JSON.stringify(graphQLParams),
     credentials: "include"
-  }).then(function(response) {
+  }).then(function (response) {
     try {
       return response.json();
     } catch (error) {
       return {
-        "status": response.status,
-        "message": "The server responded with invalid JSON, this is probably a server-side error",
-        "response": response.text()
+        status: response.status,
+        message:
+          "The server responded with invalid JSON, this is probably a server-side error",
+        response: response.text()
       };
     }
-  })
-}
+  });
+};
 
 window.addEventListener("DOMContentLoaded", () => {
-  // Render <GraphiQL /> into the body.
-  ReactDOM.render(
+  const container = document.getElementById("graphiql-container");
+
+  const root = createRoot(container);
+
+  root.render(
     React.createElement(GraphiQL, {
       fetcher: graphQLFetcher,
       defaultQuery: window.Decidim.config.get("default_query"),
@@ -87,7 +102,6 @@ window.addEventListener("DOMContentLoaded", () => {
       variables: parameters.variables,
       onEditQuery: onEditQuery,
       onEditVariables: onEditVariables
-    }),
-    document.getElementById("graphiql-container")
-  )
+    })
+  );
 });

data/app/views/decidim/api/documentation/show.html.erb

@@ -1,7 +1,7 @@
 <div class="content">
   <div class="version">Decidim <%= Decidim.version %></div>
 
-  <h1><%= current_organization.name %> API documentation</h1>
+  <h1><%= current_organization_name %> API documentation</h1>
   <% if defined?(graphiql_path) %>
     <%= link_to "Explore the API interactively with GraphiQL", graphiql_path %>
   <% end %>

data/app/views/layouts/decidim/api/documentation.html.erb

@@ -1,6 +1,6 @@
 <html>
   <head>
-    <title><%= current_organization.name %> - API Documentation</title>
+    <title><%= current_organization_name %> - API Documentation</title>
     <%= stylesheet_pack_tag("decidim_api_docs") %>
   </head>
   <body>

data/config/routes.rb

@@ -5,5 +5,5 @@ Decidim::Api::Engine.routes.draw do
   get "/docs", to: "documentation#show", as: :documentation
   get "/docs/*path", to: "documentation#show"
   get "/", to: redirect("/api/docs")
-  post "/" => "queries#create", as: :root
+  post "/" => "queries#create", :as => :root
 end

data/decidim-api.gemspec

@@ -10,7 +10,7 @@ Gem::Specification.new do |s|
   s.version = Decidim::Api.version
   s.authors = ["Josep Jaume Rey Peroy", "Marc Riera Casals", "Oriol Gual Oliva"]
   s.email = ["josepjaume@gmail.com", "mrc2407@gmail.com", "oriolgual@gmail.com"]
-  s.license = "AGPL-3.0-or-later"
+  s.license = "AGPL-3.0"
   s.homepage = "https://decidim.org"
   s.metadata = {
     "bug_tracker_uri" => "https://github.com/decidim/decidim/issues",
@@ -19,7 +19,7 @@ Gem::Specification.new do |s|
     "homepage_uri" => "https://decidim.org",
     "source_code_uri" => "https://github.com/decidim/decidim"
   }
-  s.required_ruby_version = "~> 3.1.0"
+  s.required_ruby_version = "~> 3.2.0"
 
   s.name = "decidim-api"
   s.summary = "Decidim API module"
@@ -32,14 +32,11 @@ Gem::Specification.new do |s|
     end
   end
 
-  s.add_dependency "commonmarker", "~> 0.23.0", ">= 0.23.9"
   s.add_dependency "decidim-core", Decidim::Api.version
-  # Graphql version 2.1 breaks graphql-client compatibility See https://github.com/github/graphql-client/pull/310
-  s.add_dependency "graphql", "~> 2.0.0"
-  s.add_dependency "graphql-docs", "~> 3.0.1"
+  s.add_dependency "graphql", "~> 2.2.6"
+  s.add_dependency "graphql-docs", "~> 4.0"
   s.add_dependency "rack-cors", "~> 1.0"
 
-  s.add_development_dependency "decidim-assemblies", Decidim::Api.version
   s.add_development_dependency "decidim-comments", Decidim::Api.version
   s.add_development_dependency "decidim-dev", Decidim::Api.version
   s.add_development_dependency "decidim-participatory_processes", Decidim::Api.version

data/lib/decidim/api/graphiql/config.rb

@@ -7,7 +7,7 @@ module Decidim
         # @example Adding a header to the request
         #    config.headers["My-Header"] = -> (view_context) { "My-Value" }
         #
-        # @return [Hash<String => Proc>] Keys are headers to include in GraphQL requests, values are `->(view_context) { ... }` procs to determin values
+        # @return [Hash<String => Proc>] Keys are headers to include in GraphQL requests, values are `->(view_context) { ... }` procs to determine values
         attr_accessor :headers
 
         attr_accessor :query_params, :initial_query, :csrf, :title, :logo

data/lib/decidim/api/test/component_context.rb

@@ -41,438 +41,3 @@ shared_context "with a graphql decidim component" do
     )
   end
 end
-
-shared_examples "with resource visibility" do
-  let(:process_space_factory) { :participatory_process }
-  let(:space_type) { "participatoryProcess" }
-
-  shared_examples "graphQL visible resource" do
-    it "is visible" do
-      expect(response[space_type]["components"].first[lookout_key]).to eq(query_result)
-    end
-  end
-
-  shared_examples "graphQL hidden space" do
-    it "should not be visible" do
-      expect(response[space_type]).to be_nil
-    end
-  end
-
-  shared_examples "graphQL hidden component" do
-    it "should not be visible" do
-      expect(response[space_type]["components"].first).to be_nil
-    end
-  end
-
-  shared_examples "graphQL resource visible for admin" do
-    context "when the user is admin" do
-      let!(:current_user) { create(:user, :admin, :confirmed, organization: current_organization) }
-
-      it_behaves_like "graphQL visible resource"
-    end
-  end
-
-  shared_examples "graphQL space hidden to visitor" do
-    context "when user is visitor" do
-      let!(:current_user) { nil }
-      it_behaves_like "graphQL hidden space"
-    end
-  end
-
-  context "when space is published" do
-    let!(:participatory_process) { create(process_space_factory, :published, :with_steps, organization: current_organization) }
-
-    context "when component is published" do
-      let!(:current_component) { create(component_factory, :published, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is visitor" do
-        let!(:current_user) { nil }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL visible resource"
-      end
-    end
-
-    context "when component is not published" do
-      let!(:current_component) { create(component_factory, :unpublished, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is visitor" do
-        let!(:current_user) { nil }
-
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL hidden component"
-      end
-    end
-  end
-
-  context "when space is published, private and transparent" do
-    let(:process_space_factory) { :assembly }
-    let(:space_type) { "assembly" }
-
-    let(:participatory_process_query) do
-      %(
-      assembly(id: #{participatory_process.id}) {
-        components(filter: {type: "#{component_type}"}){
-          id
-          name {
-            translation(locale: "#{locale}")
-          }
-          weight
-          __typename
-          ...fooComponent
-        }
-        id
-      }
-    )
-    end
-    let!(:participatory_process) { create(process_space_factory, :published, :private, :transparent, organization: current_organization) }
-
-    context "when component is published" do
-      let!(:current_component) { create(component_factory, :published, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "admin") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is visitor" do
-        let!(:current_user) { nil }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:assembly_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL visible resource"
-      end
-    end
-
-    context "when component is not published" do
-      let!(:current_component) { create(component_factory, :unpublished, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "admin") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:assembly_user_role, assembly: participatory_process, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL visible resource"
-      end
-
-      context "when user is visitor" do
-        let!(:current_user) { nil }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL hidden component"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:assembly_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL hidden component"
-      end
-    end
-  end
-
-  context "when space is published but private" do
-    let!(:participatory_process) { create(process_space_factory, :published, :private, :with_steps, organization: current_organization) }
-
-    context "when component is published" do
-      let!(:current_component) { create(component_factory, :published, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      it_behaves_like "graphQL space hidden to visitor"
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL visible resource"
-      end
-    end
-
-    context "when component is not published" do
-      let!(:current_component) { create(component_factory, :unpublished, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL hidden space"
-      end
-      it_behaves_like "graphQL space hidden to visitor"
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL hidden component"
-      end
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL hidden space"
-      end
-    end
-  end
-
-  context "when space is unpublished" do
-    let(:participatory_process) { create(process_space_factory, :unpublished, :with_steps, organization: current_organization) }
-
-    context "when component is published" do
-      let!(:current_component) { create(component_factory, :published, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      it_behaves_like "graphQL space hidden to visitor"
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        it_behaves_like "graphQL hidden space"
-      end
-    end
-
-    context "when component is not published" do
-      let!(:current_component) { create(component_factory, :unpublished, participatory_space: participatory_process) }
-
-      it_behaves_like "graphQL resource visible for admin"
-
-      context "when the user is space admin" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "admin") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space collaborator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "collaborator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space moderator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "moderator") }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when the user is space valuator" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:role) { create(:participatory_process_user_role, participatory_process:, user: current_user, role: "valuator") }
-        it_behaves_like "graphQL hidden space"
-      end
-      it_behaves_like "graphQL space hidden to visitor"
-
-      context "when user is member" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-        let!(:participatory_space_private_user) { create(:participatory_space_private_user, user: current_user, privatable_to: participatory_process) }
-        it_behaves_like "graphQL hidden space"
-      end
-
-      context "when user is normal user" do
-        let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
-
-        it_behaves_like "graphQL hidden space"
-      end
-    end
-  end
-end

data/lib/decidim/api/test/shared_examples/statistics_examples.rb

@@ -16,13 +16,12 @@ shared_examples "implements stats type" do
           { "name" => "results_count", "value" => 0 },
           { "name" => "debates_count", "value" => 0 },
           { "name" => "sortitions_count", "value" => 0 },
-          { "name" => "posts_count", "value" => 0 },
-          { "name" => "elections_count", "value" => 0 }
+          { "name" => "posts_count", "value" => 0 }
         ]
       }
     end
 
-    it "executes sucessfully" do
+    it "executes successfully" do
       expect { response }.not_to raise_error
     end
 

data/lib/decidim/api/test/type_context.rb

@@ -2,7 +2,7 @@
 
 shared_context "with a graphql class type" do
   let!(:current_organization) { create(:organization) }
-  let!(:current_user) { create(:user, :confirmed, organization: current_organization) }
+  let!(:current_user) { create(:user, organization: current_organization) }
   let!(:current_component) { create(:component) }
   let(:model) { OpenStruct.new({}) }
   let(:type_class) { described_class }
@@ -27,7 +27,8 @@ shared_context "with a graphql class type" do
       root_value:,
       context: {
         current_organization:,
-        current_user:
+        current_user:,
+        current_component:
       },
       variables:
     )

data/lib/decidim/api/types/base_object.rb

@@ -5,76 +5,6 @@ module Decidim
     module Types
       class BaseObject < GraphQL::Schema::Object
         field_class Types::BaseField
-
-        def self.authorized?(object, context)
-          chain = []
-
-          subject = determine_subject_name(object)
-          context[subject] = object
-
-          chain.unshift(allowed_to?(:read, :participatory_space, object, context)) if object.respond_to?(:participatory_space)
-          chain.unshift(allowed_to?(:read, :component, object, context)) if object.respond_to?(:component) && object.component.present?
-
-          super && chain.all?
-        end
-
-        def self.determine_subject_name(object)
-          object.class.name.split("::").last.underscore.to_sym
-        end
-
-        # This is a simplified adaptation of allowed_to? from NeedsPermission concern
-        # @param action [Symbol] The action performed. Most cases the action is :read
-        # @param subject [Object] The name of the subject. Ex: :participatory_space, :component, or object
-        # @param object [ActiveModel::Base] The object that is being represented.
-        # @param context [GraphQL::Query::Context] The GraphQL context
-        #
-        # @return Boolean
-        def self.allowed_to?(action, subject, object, context)
-          unless subject.is_a?(::Symbol)
-            subject = determine_subject_name(object)
-            context[subject] = object
-          end
-
-          permission_action = Decidim::PermissionAction.new(scope: :public, action:, subject:)
-
-          permission_chain(object).inject(permission_action) do |current_permission_action, permission_class|
-            permission_class.new(
-              context[:current_user],
-              current_permission_action,
-              local_context(object, context)
-            ).permissions
-          end.allowed?
-        end
-
-        # Injects into context object current_participatory_space and current_component keys as they are needed
-        #
-        # @param object [ActiveModel::Base] The object that is being represented.
-        # @param context [GraphQL::Query::Context] The GraphQL context
-        #
-        # @return Hash
-        def self.local_context(object, context)
-          context[:current_participatory_space] = object.participatory_space if object.respond_to?(:participatory_space)
-          context[:current_component] = object.component if object.respond_to?(:component) && object.component.present?
-
-          context.to_h
-        end
-
-        # Creates the permission chain arrau that contains all the permission classes required to authorize a certain resource
-        # We are using unshift as we need the Admin and base permissions to be last in the chain
-        # @param object [ActiveModel::Base] The object that is being represented.
-        #
-        # @return [Decidim::DefaultPermissions]
-        def self.permission_chain(object)
-          permissions = [
-            Decidim::Admin::Permissions,
-            Decidim::Permissions
-          ]
-
-          permissions.unshift(object.participatory_space.manifest.permissions_class) if object.respond_to?(:participatory_space)
-          permissions.unshift(object.component.manifest.permissions_class) if object.respond_to?(:component) && object.component.present?
-
-          permissions
-        end
       end
     end
   end

data/lib/decidim/api/version.rb

@@ -4,7 +4,7 @@ module Decidim
   # This holds the decidim-api version.
   module Api
     def self.version
-      "0.28.5"
+      "0.29.0.rc1"
     end
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: decidim-api
 version: !ruby/object:Gem::Version
-  version: 0.28.5
+  version: 0.29.0.rc1
 platform: ruby
 authors:
 - Josep Jaume Rey Peroy
@@ -10,70 +10,50 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-02-12 00:00:00.000000000 Z
+date: 2024-07-16 00:00:00.000000000 Z
 dependencies:
-- !ruby/object:Gem::Dependency
-  name: commonmarker
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.23.0
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.23.9
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 0.23.0
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.23.9
 - !ruby/object:Gem::Dependency
   name: decidim-core
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
 - !ruby/object:Gem::Dependency
   name: graphql
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.0.0
+        version: 2.2.6
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.0.0
+        version: 2.2.6
 - !ruby/object:Gem::Dependency
   name: graphql-docs
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.0.1
+        version: '4.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.0.1
+        version: '4.0'
 - !ruby/object:Gem::Dependency
   name: rack-cors
   requirement: !ruby/object:Gem::Requirement
@@ -88,62 +68,48 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.0'
-- !ruby/object:Gem::Dependency
-  name: decidim-assemblies
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 0.28.5
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 0.28.5
 - !ruby/object:Gem::Dependency
   name: decidim-comments
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
 - !ruby/object:Gem::Dependency
   name: decidim-dev
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
 - !ruby/object:Gem::Dependency
   name: decidim-participatory_processes
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.28.5
+        version: 0.29.0.rc1
 description: API engine for decidim
 email:
 - josepjaume@gmail.com
@@ -196,7 +162,7 @@ files:
 - lib/tasks/decidim_api_docs.rake
 homepage: https://decidim.org
 licenses:
-- AGPL-3.0-or-later
+- AGPL-3.0
 metadata:
   bug_tracker_uri: https://github.com/decidim/decidim/issues
   documentation_uri: https://docs.decidim.org/
@@ -211,14 +177,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - "~>"
     - !ruby/object:Gem::Version
-      version: 3.1.0
+      version: 3.2.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.4.10
 signing_key:
 specification_version: 4
 summary: Decidim API module