decidim-api 0.30.8 → 0.31.0.rc1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/app/controllers/decidim/api/application_controller.rb +20 -0
- data/app/controllers/decidim/api/queries_controller.rb +33 -2
- data/app/controllers/decidim/api/sessions_controller.rb +61 -0
- data/app/models/decidim/api/api_user.rb +82 -0
- data/app/models/decidim/api/jwt_denylist.rb +11 -0
- data/app/packs/entrypoints/decidim_api_graphiql.js +2 -1
- data/app/presenters/decidim/api/api_user_presenter.rb +23 -0
- data/config/assets.rb +2 -2
- data/config/initializers/devise.rb +26 -0
- data/config/routes.rb +8 -0
- data/decidim-api.gemspec +2 -1
- data/docs/usage.md +98 -8
- data/lib/decidim/api/component_mutation_type.rb +19 -0
- data/lib/decidim/api/devise.rb +12 -0
- data/lib/decidim/api/engine.rb +2 -2
- data/lib/decidim/api/graphql_permissions.rb +125 -0
- data/lib/decidim/api/mutation_type.rb +10 -0
- data/lib/decidim/api/required_scopes.rb +31 -0
- data/lib/decidim/api/schema.rb +0 -6
- data/lib/decidim/api/test/component_context.rb +17 -19
- data/lib/decidim/api/test/factories.rb +33 -0
- data/lib/decidim/api/test/mutation_context.rb +38 -0
- data/lib/decidim/api/test/shared_examples/amendable_interface_examples.rb +14 -0
- data/lib/decidim/api/test/shared_examples/amendable_proposals_interface_examples.rb +50 -0
- data/lib/decidim/api/test/shared_examples/attachable_interface_examples.rb +40 -0
- data/lib/decidim/api/test/shared_examples/authorable_interface_examples.rb +46 -0
- data/lib/decidim/api/test/shared_examples/categories_container_examples.rb +22 -0
- data/lib/decidim/api/test/shared_examples/categorizable_interface_examples.rb +27 -0
- data/lib/decidim/api/test/shared_examples/coauthorable_interface_examples.rb +77 -0
- data/lib/decidim/api/test/shared_examples/commentable_interface_examples.rb +13 -0
- data/lib/decidim/api/test/shared_examples/fingerprintable_interface_examples.rb +17 -0
- data/lib/decidim/api/test/shared_examples/followable_interface_examples.rb +13 -0
- data/lib/decidim/api/test/shared_examples/input_filter_examples.rb +77 -0
- data/lib/decidim/api/test/shared_examples/input_sort_examples.rb +126 -0
- data/lib/decidim/api/test/shared_examples/likeable_interface_examples.rb +22 -0
- data/lib/decidim/api/test/shared_examples/localizable_interface_examples.rb +29 -0
- data/lib/decidim/api/test/shared_examples/participatory_space_resourcable_interface_examples.rb +61 -0
- data/lib/decidim/api/test/shared_examples/referable_interface_examples.rb +13 -0
- data/lib/decidim/api/test/shared_examples/scopable_interface_examples.rb +19 -0
- data/lib/decidim/api/test/shared_examples/statistics_examples.rb +30 -16
- data/lib/decidim/api/test/shared_examples/taxonomizable_interface_examples.rb +20 -0
- data/lib/decidim/api/test/shared_examples/timestamps_interface_examples.rb +21 -0
- data/lib/decidim/api/test/shared_examples/traceable_interface_examples.rb +49 -0
- data/lib/decidim/api/test/type_context.rb +9 -92
- data/lib/decidim/api/test.rb +21 -0
- data/lib/decidim/api/types/base_mutation.rb +5 -1
- data/lib/decidim/api/types/base_object.rb +4 -69
- data/lib/decidim/api/types.rb +3 -9
- data/lib/decidim/api/version.rb +1 -1
- data/lib/decidim/api.rb +23 -15
- data/lib/devise/models/api_authenticatable.rb +30 -0
- data/lib/devise/strategies/api_authenticatable.rb +21 -0
- data/lib/warden/jwt_auth/decidim_overrides.rb +42 -0
- metadata +66 -84
- data/config/locales/am-ET.yml +0 -1
- data/config/locales/ar.yml +0 -1
- data/config/locales/bg.yml +0 -1
- data/config/locales/bn-BD.yml +0 -1
- data/config/locales/bs-BA.yml +0 -1
- data/config/locales/ca-IT.yml +0 -8
- data/config/locales/ca.yml +0 -8
- data/config/locales/cs.yml +0 -7
- data/config/locales/da.yml +0 -1
- data/config/locales/de.yml +0 -1
- data/config/locales/el.yml +0 -1
- data/config/locales/en.yml +0 -8
- data/config/locales/eo.yml +0 -1
- data/config/locales/es-MX.yml +0 -8
- data/config/locales/es-PY.yml +0 -8
- data/config/locales/es.yml +0 -8
- data/config/locales/et.yml +0 -1
- data/config/locales/eu.yml +0 -8
- data/config/locales/fa-IR.yml +0 -1
- data/config/locales/fi-plain.yml +0 -8
- data/config/locales/fi.yml +0 -8
- data/config/locales/fr-CA.yml +0 -8
- data/config/locales/fr.yml +0 -8
- data/config/locales/ga-IE.yml +0 -1
- data/config/locales/gl.yml +0 -1
- data/config/locales/gn-PY.yml +0 -1
- data/config/locales/he-IL.yml +0 -1
- data/config/locales/hr.yml +0 -1
- data/config/locales/hu.yml +0 -1
- data/config/locales/id-ID.yml +0 -1
- data/config/locales/is-IS.yml +0 -1
- data/config/locales/it.yml +0 -1
- data/config/locales/ja.yml +0 -8
- data/config/locales/ka-GE.yml +0 -1
- data/config/locales/kaa.yml +0 -1
- data/config/locales/ko.yml +0 -1
- data/config/locales/lb.yml +0 -1
- data/config/locales/lo-LA.yml +0 -1
- data/config/locales/lt.yml +0 -1
- data/config/locales/lv.yml +0 -1
- data/config/locales/mt.yml +0 -1
- data/config/locales/nl.yml +0 -1
- data/config/locales/no.yml +0 -6
- data/config/locales/oc-FR.yml +0 -1
- data/config/locales/om-ET.yml +0 -1
- data/config/locales/pl.yml +0 -1
- data/config/locales/pt-BR.yml +0 -8
- data/config/locales/pt.yml +0 -1
- data/config/locales/ro-RO.yml +0 -8
- data/config/locales/ru.yml +0 -1
- data/config/locales/si-LK.yml +0 -1
- data/config/locales/sk.yml +0 -1
- data/config/locales/sl.yml +0 -1
- data/config/locales/so-SO.yml +0 -1
- data/config/locales/sq-AL.yml +0 -1
- data/config/locales/sr-CS.yml +0 -1
- data/config/locales/sv.yml +0 -8
- data/config/locales/sw-KE.yml +0 -1
- data/config/locales/th-TH.yml +0 -1
- data/config/locales/ti-ER.yml +0 -1
- data/config/locales/tr-TR.yml +0 -1
- data/config/locales/uk.yml +0 -1
- data/config/locales/val-ES.yml +0 -1
- data/config/locales/vi.yml +0 -1
- data/config/locales/zh-CN.yml +0 -1
- data/config/locales/zh-TW.yml +0 -1
- data/lib/decidim/api/alias_analyzer.rb +0 -23
- data/lib/decidim/api/decidim_introspection.rb +0 -51
- data/lib/decidim/api/errors/introspection_disabled_error.rb +0 -14
- data/lib/decidim/api/errors/recursion_limit_exceeded_error.rb +0 -14
- data/lib/decidim/api/errors/too_many_aliases_error.rb +0 -15
- data/lib/decidim/api/recursion_analyzer.rb +0 -74
data/lib/decidim/api/test.rb
CHANGED
|
@@ -1,4 +1,25 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "decidim/api/test/component_context"
|
|
4
|
+
require "decidim/api/test/shared_examples/amendable_interface_examples"
|
|
5
|
+
require "decidim/api/test/shared_examples/amendable_proposals_interface_examples"
|
|
6
|
+
require "decidim/api/test/shared_examples/attachable_interface_examples"
|
|
7
|
+
require "decidim/api/test/shared_examples/authorable_interface_examples"
|
|
8
|
+
require "decidim/api/test/shared_examples/categories_container_examples"
|
|
9
|
+
require "decidim/api/test/shared_examples/categorizable_interface_examples"
|
|
10
|
+
require "decidim/api/test/shared_examples/coauthorable_interface_examples"
|
|
11
|
+
require "decidim/api/test/shared_examples/commentable_interface_examples"
|
|
12
|
+
require "decidim/api/test/shared_examples/fingerprintable_interface_examples"
|
|
13
|
+
require "decidim/api/test/shared_examples/followable_interface_examples"
|
|
14
|
+
require "decidim/api/test/shared_examples/input_filter_examples"
|
|
15
|
+
require "decidim/api/test/shared_examples/input_sort_examples"
|
|
16
|
+
require "decidim/api/test/shared_examples/likeable_interface_examples"
|
|
17
|
+
require "decidim/api/test/shared_examples/localizable_interface_examples"
|
|
18
|
+
require "decidim/api/test/shared_examples/participatory_space_resourcable_interface_examples"
|
|
19
|
+
require "decidim/api/test/shared_examples/referable_interface_examples"
|
|
20
|
+
require "decidim/api/test/shared_examples/scopable_interface_examples"
|
|
3
21
|
require "decidim/api/test/shared_examples/statistics_examples"
|
|
22
|
+
require "decidim/api/test/shared_examples/taxonomizable_interface_examples"
|
|
23
|
+
require "decidim/api/test/shared_examples/timestamps_interface_examples"
|
|
24
|
+
require "decidim/api/test/shared_examples/traceable_interface_examples"
|
|
4
25
|
require "decidim/api/test/type_context"
|
|
@@ -4,9 +4,13 @@ module Decidim
|
|
|
4
4
|
module Api
|
|
5
5
|
module Types
|
|
6
6
|
class BaseMutation < GraphQL::Schema::RelayClassicMutation
|
|
7
|
+
include Decidim::Api::GraphqlPermissions
|
|
8
|
+
|
|
7
9
|
object_class BaseObject
|
|
8
|
-
field_class BaseField
|
|
10
|
+
field_class Types::BaseField
|
|
9
11
|
input_object_class BaseInputObject
|
|
12
|
+
|
|
13
|
+
required_scopes "api:read", "api:write"
|
|
10
14
|
end
|
|
11
15
|
end
|
|
12
16
|
end
|
|
@@ -4,77 +4,12 @@ module Decidim
|
|
|
4
4
|
module Api
|
|
5
5
|
module Types
|
|
6
6
|
class BaseObject < GraphQL::Schema::Object
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
def self.authorized?(object, context)
|
|
10
|
-
chain = []
|
|
11
|
-
|
|
12
|
-
subject = determine_subject_name(object)
|
|
13
|
-
context[subject] = object
|
|
14
|
-
|
|
15
|
-
chain.unshift(allowed_to?(:read, :participatory_space, object, context)) if object.respond_to?(:participatory_space)
|
|
16
|
-
chain.unshift(allowed_to?(:read, :component, object, context)) if object.respond_to?(:component) && object.component.present?
|
|
17
|
-
|
|
18
|
-
super && chain.all?
|
|
19
|
-
end
|
|
20
|
-
|
|
21
|
-
def self.determine_subject_name(object)
|
|
22
|
-
object.class.name.split("::").last.underscore.to_sym
|
|
23
|
-
end
|
|
24
|
-
|
|
25
|
-
# This is a simplified adaptation of allowed_to? from NeedsPermission concern
|
|
26
|
-
# @param action [Symbol] The action performed. Most cases the action is :read
|
|
27
|
-
# @param subject [Object] The name of the subject. Ex: :participatory_space, :component, or object
|
|
28
|
-
# @param object [ActiveModel::Base] The object that is being represented.
|
|
29
|
-
# @param context [GraphQL::Query::Context] The GraphQL context
|
|
30
|
-
#
|
|
31
|
-
# @return Boolean
|
|
32
|
-
def self.allowed_to?(action, subject, object, context)
|
|
33
|
-
unless subject.is_a?(::Symbol)
|
|
34
|
-
subject = determine_subject_name(object)
|
|
35
|
-
context[subject] = object
|
|
36
|
-
end
|
|
7
|
+
include Decidim::Api::RequiredScopes
|
|
8
|
+
include Decidim::Api::GraphqlPermissions
|
|
37
9
|
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
permission_chain(object).inject(permission_action) do |current_permission_action, permission_class|
|
|
41
|
-
permission_class.new(
|
|
42
|
-
context[:current_user],
|
|
43
|
-
current_permission_action,
|
|
44
|
-
local_context(object, context)
|
|
45
|
-
).permissions
|
|
46
|
-
end.allowed?
|
|
47
|
-
end
|
|
48
|
-
|
|
49
|
-
# Injects into context object current_participatory_space and current_component keys as they are needed
|
|
50
|
-
#
|
|
51
|
-
# @param object [ActiveModel::Base] The object that is being represented.
|
|
52
|
-
# @param context [GraphQL::Query::Context] The GraphQL context
|
|
53
|
-
#
|
|
54
|
-
# @return Hash
|
|
55
|
-
def self.local_context(object, context)
|
|
56
|
-
context[:current_participatory_space] = object.participatory_space if object.respond_to?(:participatory_space)
|
|
57
|
-
context[:current_component] = object.component if object.respond_to?(:component) && object.component.present?
|
|
58
|
-
|
|
59
|
-
context.to_h
|
|
60
|
-
end
|
|
61
|
-
|
|
62
|
-
# Creates the permission chain arrau that contains all the permission classes required to authorize a certain resource
|
|
63
|
-
# We are using unshift as we need the Admin and base permissions to be last in the chain
|
|
64
|
-
# @param object [ActiveModel::Base] The object that is being represented.
|
|
65
|
-
#
|
|
66
|
-
# @return [Decidim::DefaultPermissions]
|
|
67
|
-
def self.permission_chain(object)
|
|
68
|
-
permissions = [
|
|
69
|
-
Decidim::Admin::Permissions,
|
|
70
|
-
Decidim::Permissions
|
|
71
|
-
]
|
|
72
|
-
|
|
73
|
-
permissions.unshift(object.participatory_space.manifest.permissions_class) if object.respond_to?(:participatory_space)
|
|
74
|
-
permissions.unshift(object.component.manifest.permissions_class) if object.respond_to?(:component) && object.component.present?
|
|
10
|
+
field_class Types::BaseField
|
|
75
11
|
|
|
76
|
-
|
|
77
|
-
end
|
|
12
|
+
required_scopes "api:read"
|
|
78
13
|
end
|
|
79
14
|
end
|
|
80
15
|
end
|
data/lib/decidim/api/types.rb
CHANGED
|
@@ -2,18 +2,12 @@
|
|
|
2
2
|
|
|
3
3
|
module Decidim
|
|
4
4
|
module Api
|
|
5
|
-
autoload :AliasAnalyzer, "decidim/api/alias_analyzer"
|
|
6
5
|
autoload :QueryType, "decidim/api/query_type"
|
|
7
6
|
autoload :MutationType, "decidim/api/mutation_type"
|
|
8
7
|
autoload :Schema, "decidim/api/schema"
|
|
9
|
-
autoload :
|
|
10
|
-
autoload :
|
|
11
|
-
|
|
12
|
-
module Errors
|
|
13
|
-
autoload :IntrospectionDisabledError, "decidim/api/errors/introspection_disabled_error"
|
|
14
|
-
autoload :RecursionLimitExceededError, "decidim/api/errors/recursion_limit_exceeded_error"
|
|
15
|
-
autoload :TooManyAliasesError, "decidim/api/errors/too_many_aliases_error"
|
|
16
|
-
end
|
|
8
|
+
autoload :RequiredScopes, "decidim/api/required_scopes"
|
|
9
|
+
autoload :GraphqlPermissions, "decidim/api/graphql_permissions"
|
|
10
|
+
autoload :ComponentMutationType, "decidim/api/component_mutation_type"
|
|
17
11
|
|
|
18
12
|
module Types
|
|
19
13
|
autoload :BaseArgument, "decidim/api/types/base_argument"
|
data/lib/decidim/api/version.rb
CHANGED
data/lib/decidim/api.rb
CHANGED
|
@@ -1,7 +1,11 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require "devise/jwt"
|
|
4
|
+
require "warden/jwt_auth/decidim_overrides"
|
|
5
|
+
require "decidim/env"
|
|
3
6
|
require "decidim/api/engine"
|
|
4
7
|
require "decidim/api/types"
|
|
8
|
+
require "decidim/api/devise"
|
|
5
9
|
|
|
6
10
|
module Decidim
|
|
7
11
|
# This module holds all business logic related to exposing a Public API for
|
|
@@ -11,39 +15,43 @@ module Decidim
|
|
|
11
15
|
|
|
12
16
|
# defines the schema max_per_page to configure GraphQL pagination
|
|
13
17
|
config_accessor :schema_max_per_page do
|
|
14
|
-
50
|
|
18
|
+
Decidim::Env.new("API_SCHEMA_MAX_PER_PAGE", 50).to_i
|
|
15
19
|
end
|
|
16
20
|
|
|
17
21
|
# defines the schema max_complexity to configure GraphQL query complexity
|
|
18
22
|
config_accessor :schema_max_complexity do
|
|
19
|
-
5000
|
|
20
|
-
end
|
|
21
|
-
|
|
22
|
-
# defines how many aliases are permitted in a query
|
|
23
|
-
config_accessor :max_aliases do
|
|
24
|
-
ENV.fetch("API_SCHEMA_MAX_ALIASES", 5).to_i
|
|
23
|
+
Decidim::Env.new("API_SCHEMA_MAX_COMPLEXITY", 5000).to_i
|
|
25
24
|
end
|
|
26
25
|
|
|
27
26
|
# defines the schema max_depth to configure GraphQL query max_depth
|
|
28
27
|
config_accessor :schema_max_depth do
|
|
29
|
-
15
|
|
28
|
+
Decidim::Env.new("API_SCHEMA_MAX_DEPTH", 15).to_i
|
|
30
29
|
end
|
|
31
30
|
|
|
32
31
|
config_accessor :disclose_system_version do
|
|
33
|
-
|
|
32
|
+
Decidim::Env.new("DECIDIM_API_DISCLOSE_SYSTEM_VERSION").present?
|
|
33
|
+
end
|
|
34
|
+
|
|
35
|
+
# Public Setting that can make the API authentication necessary in order to
|
|
36
|
+
# access it.
|
|
37
|
+
config_accessor :force_api_authentication do
|
|
38
|
+
Decidim::Env.new("DECIDIM_API_FORCE_API_AUTHENTICATION", nil).present?
|
|
34
39
|
end
|
|
35
40
|
|
|
36
|
-
#
|
|
37
|
-
#
|
|
38
|
-
#
|
|
39
|
-
config_accessor :
|
|
40
|
-
|
|
41
|
+
# The expiration time of the JWT tokens, after which issued token will
|
|
42
|
+
# expire. Recommended to match the value of
|
|
43
|
+
# `DECIDIM_OAUTH_ACCESS_TOKEN_EXPIRES_IN`.
|
|
44
|
+
config_accessor :jwt_expires_in do
|
|
45
|
+
Decidim::Env.new(
|
|
46
|
+
"DECIDIM_API_JWT_EXPIRES_IN",
|
|
47
|
+
Decidim::Env.new("DECIDIM_OAUTH_ACCESS_TOKEN_EXPIRES_IN", "120").value
|
|
48
|
+
).to_i
|
|
41
49
|
end
|
|
42
50
|
|
|
43
51
|
# This declares all the types an interface or union can resolve to. This needs
|
|
44
52
|
# to be done in order to be able to have them found. This is a shortcoming of
|
|
45
53
|
# graphql-ruby and the way it deals with loading types, in combination with
|
|
46
|
-
# rail's infamous
|
|
54
|
+
# rail's infamous auto-loading.
|
|
47
55
|
def self.orphan_types
|
|
48
56
|
Decidim.component_manifests.map(&:query_type).map(&:constantize).uniq +
|
|
49
57
|
Decidim.participatory_space_manifests.map(&:query_type).map(&:constantize).uniq +
|
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Devise
|
|
4
|
+
module Models
|
|
5
|
+
module ApiAuthenticatable
|
|
6
|
+
extend ActiveSupport::Concern
|
|
7
|
+
|
|
8
|
+
def api_secret=(new_secret)
|
|
9
|
+
self.encrypted_password = ::Devise::Encryptor.digest(self.class, new_secret)
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
# Verifies whether a secret (ie from sign in) matches the user's secret.
|
|
13
|
+
def valid_api_secret?(secret)
|
|
14
|
+
Devise::Encryptor.compare(self.class, encrypted_password, secret)
|
|
15
|
+
end
|
|
16
|
+
|
|
17
|
+
module ClassMethods
|
|
18
|
+
Devise::Models.config(self, :pepper, :stretches)
|
|
19
|
+
|
|
20
|
+
def authentication_keys
|
|
21
|
+
[:key, :secret]
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def find_for_api_authentication(conditions)
|
|
25
|
+
find_for_authentication(conditions)
|
|
26
|
+
end
|
|
27
|
+
end
|
|
28
|
+
end
|
|
29
|
+
end
|
|
30
|
+
end
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require "devise/strategies/authenticatable"
|
|
4
|
+
|
|
5
|
+
module Devise
|
|
6
|
+
module Strategies
|
|
7
|
+
class ApiAuthenticatable < Authenticatable
|
|
8
|
+
def authenticate!
|
|
9
|
+
key = authentication_hash[:key]
|
|
10
|
+
secret = authentication_hash[:secret]
|
|
11
|
+
|
|
12
|
+
resource = mapping.to.find_for_api_authentication(api_key: key)
|
|
13
|
+
validation_status = validate(resource) { resource.valid_api_secret?(secret) }
|
|
14
|
+
|
|
15
|
+
success!(resource) if validation_status
|
|
16
|
+
end
|
|
17
|
+
end
|
|
18
|
+
end
|
|
19
|
+
end
|
|
20
|
+
|
|
21
|
+
Warden::Strategies.add(:api_authenticatable, Devise::Strategies::ApiAuthenticatable)
|
|
@@ -0,0 +1,42 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Warden
|
|
4
|
+
module JWTAuth
|
|
5
|
+
# This module adds some overrides to Warde::JWTAuth due to some issues with
|
|
6
|
+
# how it needs to be setup.
|
|
7
|
+
module EnvHelper
|
|
8
|
+
# Returns ORIGINAL_FULLPATH, REQUEST_PATH or REQUEST_URI environment
|
|
9
|
+
# variable, which is different from the original version returning the
|
|
10
|
+
# PATH_INFO environment variable.
|
|
11
|
+
#
|
|
12
|
+
# This is overridden because the `PATH_INFO` string only includes the
|
|
13
|
+
# route under the engine where it is defined, i.e. `/sign_in` and
|
|
14
|
+
# `/sign_out` which are defined under the `Decidim::Api`.
|
|
15
|
+
#
|
|
16
|
+
# Instead, we want this method to return the full path, i.e.
|
|
17
|
+
# `/api/sign_in` and `/api/sign_out` in order to map these routes
|
|
18
|
+
# correctly as the JWT token dispatch and revocation routes. Otherwise the
|
|
19
|
+
# token would be dispatched and revoked also with normal user sign in and
|
|
20
|
+
# sign out requests under the `Decidim::Core` engine which we do not want.
|
|
21
|
+
#
|
|
22
|
+
# This affects the Devise::JWT / Warden::JWTAuth configuration that is
|
|
23
|
+
# defined at `decidim-api/config/initializers/devise.rb` (as
|
|
24
|
+
# `config.jwt`).
|
|
25
|
+
#
|
|
26
|
+
# The return value is only used by Warden::JWTAuth to check when the token
|
|
27
|
+
# should be dispatched or revoked for the user, nothing else.
|
|
28
|
+
#
|
|
29
|
+
# Note that this behaves slightly differently during controller testing
|
|
30
|
+
# and when the application is actually running under Rack. The end result
|
|
31
|
+
# is the same but some of the environment variables may be missing during
|
|
32
|
+
# controller testing (e.g. `REQUEST_PATH` is not defined under that
|
|
33
|
+
# situation).
|
|
34
|
+
#
|
|
35
|
+
# @param env [Hash] Rack env
|
|
36
|
+
# @return [String]
|
|
37
|
+
def self.path_info(env)
|
|
38
|
+
env["ORIGINAL_FULLPATH"] || env["REQUEST_PATH"] || env["REQUEST_URI"] || ""
|
|
39
|
+
end
|
|
40
|
+
end
|
|
41
|
+
end
|
|
42
|
+
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: decidim-api
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.31.0.rc1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Josep Jaume Rey Peroy
|
|
@@ -10,7 +10,7 @@ authors:
|
|
|
10
10
|
autorequire:
|
|
11
11
|
bindir: bin
|
|
12
12
|
cert_chain: []
|
|
13
|
-
date:
|
|
13
|
+
date: 2025-09-25 00:00:00.000000000 Z
|
|
14
14
|
dependencies:
|
|
15
15
|
- !ruby/object:Gem::Dependency
|
|
16
16
|
name: decidim-core
|
|
@@ -18,14 +18,28 @@ dependencies:
|
|
|
18
18
|
requirements:
|
|
19
19
|
- - '='
|
|
20
20
|
- !ruby/object:Gem::Version
|
|
21
|
-
version: 0.
|
|
21
|
+
version: 0.31.0.rc1
|
|
22
22
|
type: :runtime
|
|
23
23
|
prerelease: false
|
|
24
24
|
version_requirements: !ruby/object:Gem::Requirement
|
|
25
25
|
requirements:
|
|
26
26
|
- - '='
|
|
27
27
|
- !ruby/object:Gem::Version
|
|
28
|
-
version: 0.
|
|
28
|
+
version: 0.31.0.rc1
|
|
29
|
+
- !ruby/object:Gem::Dependency
|
|
30
|
+
name: devise-jwt
|
|
31
|
+
requirement: !ruby/object:Gem::Requirement
|
|
32
|
+
requirements:
|
|
33
|
+
- - "~>"
|
|
34
|
+
- !ruby/object:Gem::Version
|
|
35
|
+
version: 0.12.1
|
|
36
|
+
type: :runtime
|
|
37
|
+
prerelease: false
|
|
38
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
39
|
+
requirements:
|
|
40
|
+
- - "~>"
|
|
41
|
+
- !ruby/object:Gem::Version
|
|
42
|
+
version: 0.12.1
|
|
29
43
|
- !ruby/object:Gem::Dependency
|
|
30
44
|
name: graphql
|
|
31
45
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -33,6 +47,9 @@ dependencies:
|
|
|
33
47
|
- - "~>"
|
|
34
48
|
- !ruby/object:Gem::Version
|
|
35
49
|
version: 2.4.0
|
|
50
|
+
- - ">="
|
|
51
|
+
- !ruby/object:Gem::Version
|
|
52
|
+
version: 2.4.17
|
|
36
53
|
type: :runtime
|
|
37
54
|
prerelease: false
|
|
38
55
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -40,6 +57,9 @@ dependencies:
|
|
|
40
57
|
- - "~>"
|
|
41
58
|
- !ruby/object:Gem::Version
|
|
42
59
|
version: 2.4.0
|
|
60
|
+
- - ">="
|
|
61
|
+
- !ruby/object:Gem::Version
|
|
62
|
+
version: 2.4.17
|
|
43
63
|
- !ruby/object:Gem::Dependency
|
|
44
64
|
name: graphql-docs
|
|
45
65
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -74,56 +94,56 @@ dependencies:
|
|
|
74
94
|
requirements:
|
|
75
95
|
- - '='
|
|
76
96
|
- !ruby/object:Gem::Version
|
|
77
|
-
version: 0.
|
|
97
|
+
version: 0.31.0.rc1
|
|
78
98
|
type: :development
|
|
79
99
|
prerelease: false
|
|
80
100
|
version_requirements: !ruby/object:Gem::Requirement
|
|
81
101
|
requirements:
|
|
82
102
|
- - '='
|
|
83
103
|
- !ruby/object:Gem::Version
|
|
84
|
-
version: 0.
|
|
104
|
+
version: 0.31.0.rc1
|
|
85
105
|
- !ruby/object:Gem::Dependency
|
|
86
106
|
name: decidim-comments
|
|
87
107
|
requirement: !ruby/object:Gem::Requirement
|
|
88
108
|
requirements:
|
|
89
109
|
- - '='
|
|
90
110
|
- !ruby/object:Gem::Version
|
|
91
|
-
version: 0.
|
|
111
|
+
version: 0.31.0.rc1
|
|
92
112
|
type: :development
|
|
93
113
|
prerelease: false
|
|
94
114
|
version_requirements: !ruby/object:Gem::Requirement
|
|
95
115
|
requirements:
|
|
96
116
|
- - '='
|
|
97
117
|
- !ruby/object:Gem::Version
|
|
98
|
-
version: 0.
|
|
118
|
+
version: 0.31.0.rc1
|
|
99
119
|
- !ruby/object:Gem::Dependency
|
|
100
120
|
name: decidim-dev
|
|
101
121
|
requirement: !ruby/object:Gem::Requirement
|
|
102
122
|
requirements:
|
|
103
123
|
- - '='
|
|
104
124
|
- !ruby/object:Gem::Version
|
|
105
|
-
version: 0.
|
|
125
|
+
version: 0.31.0.rc1
|
|
106
126
|
type: :development
|
|
107
127
|
prerelease: false
|
|
108
128
|
version_requirements: !ruby/object:Gem::Requirement
|
|
109
129
|
requirements:
|
|
110
130
|
- - '='
|
|
111
131
|
- !ruby/object:Gem::Version
|
|
112
|
-
version: 0.
|
|
132
|
+
version: 0.31.0.rc1
|
|
113
133
|
- !ruby/object:Gem::Dependency
|
|
114
134
|
name: decidim-participatory_processes
|
|
115
135
|
requirement: !ruby/object:Gem::Requirement
|
|
116
136
|
requirements:
|
|
117
137
|
- - '='
|
|
118
138
|
- !ruby/object:Gem::Version
|
|
119
|
-
version: 0.
|
|
139
|
+
version: 0.31.0.rc1
|
|
120
140
|
type: :development
|
|
121
141
|
prerelease: false
|
|
122
142
|
version_requirements: !ruby/object:Gem::Requirement
|
|
123
143
|
requirements:
|
|
124
144
|
- - '='
|
|
125
145
|
- !ruby/object:Gem::Version
|
|
126
|
-
version: 0.
|
|
146
|
+
version: 0.31.0.rc1
|
|
127
147
|
description: API engine for decidim
|
|
128
148
|
email:
|
|
129
149
|
- josepjaume@gmail.com
|
|
@@ -139,100 +159,59 @@ files:
|
|
|
139
159
|
- app/controllers/decidim/api/documentation_controller.rb
|
|
140
160
|
- app/controllers/decidim/api/graphiql_controller.rb
|
|
141
161
|
- app/controllers/decidim/api/queries_controller.rb
|
|
162
|
+
- app/controllers/decidim/api/sessions_controller.rb
|
|
163
|
+
- app/models/decidim/api/api_user.rb
|
|
164
|
+
- app/models/decidim/api/jwt_denylist.rb
|
|
142
165
|
- app/packs/entrypoints/decidim_api_docs.js
|
|
143
166
|
- app/packs/entrypoints/decidim_api_docs.scss
|
|
144
167
|
- app/packs/entrypoints/decidim_api_graphiql.js
|
|
145
168
|
- app/packs/entrypoints/decidim_api_graphiql.scss
|
|
169
|
+
- app/presenters/decidim/api/api_user_presenter.rb
|
|
146
170
|
- app/views/decidim/api/documentation/graphql_docs_template.html.erb
|
|
147
171
|
- app/views/decidim/api/documentation/show.html.erb
|
|
148
172
|
- app/views/decidim/api/graphiql/show.html.erb
|
|
149
173
|
- app/views/layouts/decidim/api/documentation.html.erb
|
|
150
174
|
- config/assets.rb
|
|
151
|
-
- config/
|
|
152
|
-
- config/locales/ar.yml
|
|
153
|
-
- config/locales/bg.yml
|
|
154
|
-
- config/locales/bn-BD.yml
|
|
155
|
-
- config/locales/bs-BA.yml
|
|
156
|
-
- config/locales/ca-IT.yml
|
|
157
|
-
- config/locales/ca.yml
|
|
158
|
-
- config/locales/cs.yml
|
|
159
|
-
- config/locales/da.yml
|
|
160
|
-
- config/locales/de.yml
|
|
161
|
-
- config/locales/el.yml
|
|
162
|
-
- config/locales/en.yml
|
|
163
|
-
- config/locales/eo.yml
|
|
164
|
-
- config/locales/es-MX.yml
|
|
165
|
-
- config/locales/es-PY.yml
|
|
166
|
-
- config/locales/es.yml
|
|
167
|
-
- config/locales/et.yml
|
|
168
|
-
- config/locales/eu.yml
|
|
169
|
-
- config/locales/fa-IR.yml
|
|
170
|
-
- config/locales/fi-plain.yml
|
|
171
|
-
- config/locales/fi.yml
|
|
172
|
-
- config/locales/fr-CA.yml
|
|
173
|
-
- config/locales/fr.yml
|
|
174
|
-
- config/locales/ga-IE.yml
|
|
175
|
-
- config/locales/gl.yml
|
|
176
|
-
- config/locales/gn-PY.yml
|
|
177
|
-
- config/locales/he-IL.yml
|
|
178
|
-
- config/locales/hr.yml
|
|
179
|
-
- config/locales/hu.yml
|
|
180
|
-
- config/locales/id-ID.yml
|
|
181
|
-
- config/locales/is-IS.yml
|
|
182
|
-
- config/locales/it.yml
|
|
183
|
-
- config/locales/ja.yml
|
|
184
|
-
- config/locales/ka-GE.yml
|
|
185
|
-
- config/locales/kaa.yml
|
|
186
|
-
- config/locales/ko.yml
|
|
187
|
-
- config/locales/lb.yml
|
|
188
|
-
- config/locales/lo-LA.yml
|
|
189
|
-
- config/locales/lt.yml
|
|
190
|
-
- config/locales/lv.yml
|
|
191
|
-
- config/locales/mt.yml
|
|
192
|
-
- config/locales/nl.yml
|
|
193
|
-
- config/locales/no.yml
|
|
194
|
-
- config/locales/oc-FR.yml
|
|
195
|
-
- config/locales/om-ET.yml
|
|
196
|
-
- config/locales/pl.yml
|
|
197
|
-
- config/locales/pt-BR.yml
|
|
198
|
-
- config/locales/pt.yml
|
|
199
|
-
- config/locales/ro-RO.yml
|
|
200
|
-
- config/locales/ru.yml
|
|
201
|
-
- config/locales/si-LK.yml
|
|
202
|
-
- config/locales/sk.yml
|
|
203
|
-
- config/locales/sl.yml
|
|
204
|
-
- config/locales/so-SO.yml
|
|
205
|
-
- config/locales/sq-AL.yml
|
|
206
|
-
- config/locales/sr-CS.yml
|
|
207
|
-
- config/locales/sv.yml
|
|
208
|
-
- config/locales/sw-KE.yml
|
|
209
|
-
- config/locales/th-TH.yml
|
|
210
|
-
- config/locales/ti-ER.yml
|
|
211
|
-
- config/locales/tr-TR.yml
|
|
212
|
-
- config/locales/uk.yml
|
|
213
|
-
- config/locales/val-ES.yml
|
|
214
|
-
- config/locales/vi.yml
|
|
215
|
-
- config/locales/zh-CN.yml
|
|
216
|
-
- config/locales/zh-TW.yml
|
|
175
|
+
- config/initializers/devise.rb
|
|
217
176
|
- config/routes.rb
|
|
218
177
|
- decidim-api.gemspec
|
|
219
178
|
- docs/usage.md
|
|
220
179
|
- lib/decidim/api.rb
|
|
221
|
-
- lib/decidim/api/
|
|
222
|
-
- lib/decidim/api/
|
|
180
|
+
- lib/decidim/api/component_mutation_type.rb
|
|
181
|
+
- lib/decidim/api/devise.rb
|
|
223
182
|
- lib/decidim/api/engine.rb
|
|
224
|
-
- lib/decidim/api/errors/introspection_disabled_error.rb
|
|
225
|
-
- lib/decidim/api/errors/recursion_limit_exceeded_error.rb
|
|
226
|
-
- lib/decidim/api/errors/too_many_aliases_error.rb
|
|
227
183
|
- lib/decidim/api/graphiql-initial-query.txt
|
|
228
184
|
- lib/decidim/api/graphiql/config.rb
|
|
185
|
+
- lib/decidim/api/graphql_permissions.rb
|
|
229
186
|
- lib/decidim/api/mutation_type.rb
|
|
230
187
|
- lib/decidim/api/query_type.rb
|
|
231
|
-
- lib/decidim/api/
|
|
188
|
+
- lib/decidim/api/required_scopes.rb
|
|
232
189
|
- lib/decidim/api/schema.rb
|
|
233
190
|
- lib/decidim/api/test.rb
|
|
234
191
|
- lib/decidim/api/test/component_context.rb
|
|
192
|
+
- lib/decidim/api/test/factories.rb
|
|
193
|
+
- lib/decidim/api/test/mutation_context.rb
|
|
194
|
+
- lib/decidim/api/test/shared_examples/amendable_interface_examples.rb
|
|
195
|
+
- lib/decidim/api/test/shared_examples/amendable_proposals_interface_examples.rb
|
|
196
|
+
- lib/decidim/api/test/shared_examples/attachable_interface_examples.rb
|
|
197
|
+
- lib/decidim/api/test/shared_examples/authorable_interface_examples.rb
|
|
198
|
+
- lib/decidim/api/test/shared_examples/categories_container_examples.rb
|
|
199
|
+
- lib/decidim/api/test/shared_examples/categorizable_interface_examples.rb
|
|
200
|
+
- lib/decidim/api/test/shared_examples/coauthorable_interface_examples.rb
|
|
201
|
+
- lib/decidim/api/test/shared_examples/commentable_interface_examples.rb
|
|
202
|
+
- lib/decidim/api/test/shared_examples/fingerprintable_interface_examples.rb
|
|
203
|
+
- lib/decidim/api/test/shared_examples/followable_interface_examples.rb
|
|
204
|
+
- lib/decidim/api/test/shared_examples/input_filter_examples.rb
|
|
205
|
+
- lib/decidim/api/test/shared_examples/input_sort_examples.rb
|
|
206
|
+
- lib/decidim/api/test/shared_examples/likeable_interface_examples.rb
|
|
207
|
+
- lib/decidim/api/test/shared_examples/localizable_interface_examples.rb
|
|
208
|
+
- lib/decidim/api/test/shared_examples/participatory_space_resourcable_interface_examples.rb
|
|
209
|
+
- lib/decidim/api/test/shared_examples/referable_interface_examples.rb
|
|
210
|
+
- lib/decidim/api/test/shared_examples/scopable_interface_examples.rb
|
|
235
211
|
- lib/decidim/api/test/shared_examples/statistics_examples.rb
|
|
212
|
+
- lib/decidim/api/test/shared_examples/taxonomizable_interface_examples.rb
|
|
213
|
+
- lib/decidim/api/test/shared_examples/timestamps_interface_examples.rb
|
|
214
|
+
- lib/decidim/api/test/shared_examples/traceable_interface_examples.rb
|
|
236
215
|
- lib/decidim/api/test/type_context.rb
|
|
237
216
|
- lib/decidim/api/types.rb
|
|
238
217
|
- lib/decidim/api/types/base_argument.rb
|
|
@@ -245,7 +224,10 @@ files:
|
|
|
245
224
|
- lib/decidim/api/types/base_scalar.rb
|
|
246
225
|
- lib/decidim/api/types/base_union.rb
|
|
247
226
|
- lib/decidim/api/version.rb
|
|
227
|
+
- lib/devise/models/api_authenticatable.rb
|
|
228
|
+
- lib/devise/strategies/api_authenticatable.rb
|
|
248
229
|
- lib/tasks/decidim_api_docs.rake
|
|
230
|
+
- lib/warden/jwt_auth/decidim_overrides.rb
|
|
249
231
|
homepage: https://decidim.org
|
|
250
232
|
licenses:
|
|
251
233
|
- AGPL-3.0-or-later
|
data/config/locales/am-ET.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
am:
|
data/config/locales/ar.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
ar:
|
data/config/locales/bg.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
bg:
|
data/config/locales/bn-BD.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
bn:
|
data/config/locales/bs-BA.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
bs:
|
data/config/locales/ca-IT.yml
DELETED
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
ca-IT:
|
|
3
|
-
decidim:
|
|
4
|
-
api:
|
|
5
|
-
errors:
|
|
6
|
-
introspection_disabled: La introspecció està desactivada per a aquesta sol·licitud
|
|
7
|
-
recursion_limit_exceeded_error: S'han detectat massa consultes recurrents
|
|
8
|
-
too_many_aliases_error: S'han fet servir massa àlies (nicknames). Has fet servir %{size} àlies, però es permet un màxim de %{limit}.
|
data/config/locales/ca.yml
DELETED
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
ca:
|
|
3
|
-
decidim:
|
|
4
|
-
api:
|
|
5
|
-
errors:
|
|
6
|
-
introspection_disabled: La introspecció està desactivada per a aquesta sol·licitud
|
|
7
|
-
recursion_limit_exceeded_error: S'han detectat massa consultes recurrents
|
|
8
|
-
too_many_aliases_error: S'han fet servir massa àlies (nicknames). Has fet servir %{size} àlies, però es permet un màxim de %{limit}.
|
data/config/locales/cs.yml
DELETED
data/config/locales/da.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
da:
|
data/config/locales/de.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
de:
|
data/config/locales/el.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
el:
|
data/config/locales/en.yml
DELETED
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
en:
|
|
3
|
-
decidim:
|
|
4
|
-
api:
|
|
5
|
-
errors:
|
|
6
|
-
introspection_disabled: Introspection is disabled for this request
|
|
7
|
-
recursion_limit_exceeded_error: Too many recursions detected in query
|
|
8
|
-
too_many_aliases_error: Too many aliases used. You have used %{size} aliases, but %{limit} are allowed.
|
data/config/locales/eo.yml
DELETED
|
@@ -1 +0,0 @@
|
|
|
1
|
-
eo:
|