RubyGems - decidim-core - Versions diffs - 0.11.2 → 0.12.0.pre - Mend

decidim-core 0.11.2 → 0.12.0.pre

Files changed (238) hide show

checksums.yaml +4 -4
data/app/assets/javascripts/decidim/notifications.js.es6 +8 -6
data/app/assets/javascripts/decidim/user_registrations.js.es6 +25 -1
data/app/assets/stylesheets/decidim/application.scss.erb +4 -0
data/app/assets/stylesheets/decidim/layouts/_home.scss +79 -0
data/app/assets/stylesheets/decidim/modules/_author-avatar.scss +2 -1
data/app/assets/stylesheets/decidim/modules/_cards.scss +82 -38
data/app/assets/stylesheets/decidim/modules/_collapsible-list.scss +16 -0
data/app/assets/stylesheets/decidim/modules/_definition-data.scss +27 -0
data/app/assets/stylesheets/decidim/modules/_fingerprint.scss +8 -0
data/app/assets/stylesheets/decidim/modules/_horizontal-tabs.scss +51 -0
data/app/assets/stylesheets/decidim/modules/_inline-filters.scss +5 -3
data/app/assets/stylesheets/decidim/modules/_margins.scss +6 -4
data/app/assets/stylesheets/decidim/modules/_modules.scss +3 -0
data/app/assets/stylesheets/decidim/modules/_navbar.scss +113 -7
data/app/assets/stylesheets/decidim/modules/_signup.scss +22 -5
data/app/assets/stylesheets/decidim/modules/_toggle.scss +9 -0
data/app/assets/stylesheets/decidim/modules/_typography.scss +5 -1
data/app/assets/stylesheets/decidim/utils/_helpers.scss +42 -0
data/app/assets/stylesheets/decidim/utils/_mixins.scss +6 -0
data/app/assets/stylesheets/decidim/utils/_settings.scss +3 -2
data/app/cells/decidim/announcement/show.erb +11 -0
data/app/cells/decidim/announcement_cell.rb +32 -0
data/app/cells/decidim/author/comments.erb +6 -0
data/app/cells/decidim/author/contact.erb +3 -0
data/app/cells/decidim/author/date.erb +5 -0
data/app/cells/decidim/author/flag.erb +5 -0
data/app/cells/decidim/author/profile.erb +9 -0
data/app/cells/decidim/{profile → author}/profile_inline.erb +1 -1
data/app/cells/decidim/author/show.erb +18 -0
data/app/cells/decidim/author/withdraw.erb +6 -0
data/app/cells/decidim/author_cell.rb +109 -0
data/app/cells/decidim/card/show.erb +18 -16
data/app/cells/decidim/card_cell.rb +17 -4
data/app/cells/decidim/card_m/author.erb +3 -0
data/app/cells/decidim/card_m/badge.erb +1 -0
data/app/cells/decidim/card_m/comments_counter.erb +3 -0
data/app/cells/decidim/card_m/data.erb +0 -0
data/app/cells/decidim/card_m/footer.erb +0 -0
data/app/cells/decidim/card_m/header.erb +17 -0
data/app/cells/decidim/card_m/image.erb +5 -0
data/app/cells/decidim/card_m/label.erb +3 -0
data/app/cells/decidim/card_m/show.erb +24 -0
data/app/cells/decidim/card_m/status.erb +9 -0
data/app/cells/decidim/card_m/tags.erb +0 -0
data/app/cells/decidim/card_m_cell.rb +136 -0
data/app/cells/decidim/collapsible_list/show.erb +20 -0
data/app/cells/decidim/collapsible_list_cell.rb +66 -0
data/app/cells/decidim/fingerprint/show.erb +22 -0
data/app/cells/decidim/fingerprint_cell.rb +17 -0
data/app/cells/decidim/follow_button/show.erb +34 -0
data/app/cells/decidim/follow_button_cell.rb +40 -0
data/app/cells/decidim/followers/show.erb +9 -0
data/app/cells/decidim/followers_cell.rb +18 -0
data/app/cells/decidim/following/show.erb +9 -0
data/app/cells/decidim/following_cell.rb +24 -0
data/app/cells/decidim/notifications/show.erb +48 -0
data/app/cells/decidim/notifications_cell.rb +21 -0
data/app/cells/decidim/progress_bar/show.erb +17 -0
data/app/cells/decidim/progress_bar_cell.rb +68 -0
data/app/cells/decidim/tags/category.erb +1 -0
data/app/cells/decidim/tags/scope.erb +1 -0
data/app/cells/decidim/tags/show.erb +5 -0
data/app/cells/decidim/tags_cell.rb +62 -0
data/app/cells/decidim/tos_page/announcement.erb +2 -0
data/app/cells/decidim/tos_page/refuse_btn_modal.erb +23 -0
data/app/cells/decidim/tos_page/sticky_form.erb +29 -0
data/app/cells/decidim/tos_page_cell.rb +39 -0
data/app/cells/decidim/user_profile/footer.erb +5 -0
data/app/cells/decidim/user_profile/header.erb +20 -0
data/app/cells/decidim/user_profile_cell.rb +26 -0
data/app/commands/decidim/create_omniauth_registration.rb +1 -1
data/app/commands/decidim/create_registration.rb +2 -1
data/app/commands/decidim/search.rb +45 -0
data/app/controllers/concerns/decidim/devise_controllers.rb +15 -12
data/app/controllers/concerns/decidim/http_caching_disabler.rb +21 -0
data/app/controllers/concerns/decidim/impersonate_users.rb +1 -6
data/app/controllers/concerns/decidim/locale_switcher.rb +1 -1
data/app/controllers/concerns/decidim/needs_permission.rb +70 -0
data/app/controllers/concerns/decidim/needs_tos_accepted.rb +42 -0
data/app/controllers/concerns/decidim/participatory_space_context.rb +1 -7
data/app/controllers/concerns/decidim/user_profile.rb +3 -1
data/app/controllers/decidim/account_controller.rb +4 -4
data/app/controllers/decidim/application_controller.rb +17 -8
data/app/controllers/decidim/components/base_controller.rb +14 -9
data/app/controllers/decidim/cookie_policy_controller.rb +0 -2
data/app/controllers/decidim/devise/confirmations_controller.rb +13 -0
data/app/controllers/decidim/devise/invitations_controller.rb +3 -1
data/app/controllers/decidim/devise/omniauth_registrations_controller.rb +9 -3
data/app/controllers/decidim/devise/passwords_controller.rb +1 -1
data/app/controllers/decidim/devise/registrations_controller.rb +1 -7
data/app/controllers/decidim/doorkeeper/authorizations_controller.rb +0 -2
data/app/controllers/decidim/doorkeeper/credentials_controller.rb +0 -1
data/app/controllers/decidim/errors_controller.rb +0 -2
data/app/controllers/decidim/follows_controller.rb +4 -2
data/app/controllers/decidim/locales_controller.rb +1 -1
data/app/controllers/decidim/messaging/conversations_controller.rb +5 -5
data/app/controllers/decidim/newsletters_controller.rb +0 -2
data/app/controllers/decidim/notifications_controller.rb +3 -19
data/app/controllers/decidim/notifications_settings_controller.rb +2 -2
data/app/controllers/decidim/pages_controller.rb +12 -10
data/app/controllers/decidim/profiles_controller.rb +10 -4
data/app/controllers/decidim/reports_controller.rb +14 -1
data/app/controllers/decidim/scopes_controller.rb +3 -3
data/app/controllers/decidim/searches_controller.rb +39 -0
data/app/controllers/decidim/static_map_controller.rb +0 -2
data/app/controllers/decidim/tos_controller.rb +20 -0
data/app/controllers/decidim/widgets_controller.rb +0 -1
data/app/forms/decidim/follow_form.rb +1 -0
data/app/forms/decidim/registration_form.rb +2 -1
data/app/helpers/decidim/card_helper.rb +2 -0
data/app/helpers/decidim/cells_paginate_helper.rb +16 -0
data/app/helpers/decidim/cta_button_helper.rb +1 -1
data/app/helpers/decidim/decidim_form_helper.rb +4 -0
data/app/helpers/decidim/icon_helper.rb +2 -0
data/app/helpers/decidim/resource_helper.rb +1 -2
data/app/helpers/decidim/scopes_helper.rb +17 -10
data/app/helpers/decidim/searches_helper.rb +16 -0
data/app/helpers/decidim/tooltip_helper.rb +12 -0
data/app/models/decidim/organization.rb +10 -0
data/app/models/decidim/permission_action.rb +40 -0
data/app/models/decidim/searchable_resource.rb +37 -0
data/app/models/decidim/static_page.rb +4 -0
data/app/models/decidim/user.rb +39 -3
data/app/permissions/decidim/default_permissions.rb +61 -0
data/app/permissions/decidim/permissions.rb +106 -0
data/app/permissions/decidim/user_manager_permissions.rb +24 -0
data/app/presenters/decidim/admin_log/organization_presenter.rb +2 -1
data/app/presenters/decidim/home_stats_presenter.rb +2 -8
data/app/presenters/decidim/user_presenter.rb +8 -0
data/app/services/decidim/traceability.rb +6 -9
data/app/types/decidim/core/user_type.rb +1 -1
data/app/views/decidim/devise/invitations/edit.html.erb +56 -10
data/app/views/decidim/devise/registrations/new.html.erb +36 -14
data/app/views/decidim/devise/shared/_newsletter_modal.html.erb +25 -0
data/app/views/decidim/follows/update_button.js.erb +2 -2
data/app/views/decidim/messaging/conversations/_message.html.erb +1 -1
data/app/views/{pages → decidim/pages}/decidim_page.html.erb +5 -0
data/app/views/decidim/pages/home.html.erb +17 -0
data/app/views/{pages → decidim/pages}/home/_extended.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_footer_sub_hero.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_hero.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_highlighted_content_banner.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_highlighted_processes.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_statistics.html.erb +0 -0
data/app/views/{pages → decidim/pages}/home/_sub_hero.html.erb +0 -0
data/app/views/decidim/profiles/_followers.html.erb +5 -0
data/app/views/decidim/profiles/_following.html.erb +5 -0
data/app/views/decidim/profiles/_notifications.html.erb +0 -0
data/app/views/decidim/profiles/_user.html.erb +59 -0
data/app/views/decidim/profiles/_user_follow.erb +32 -0
data/app/views/decidim/profiles/show.html.erb +32 -59
data/app/views/decidim/searches/_count.html.erb +1 -0
data/app/views/decidim/searches/_filters.html.erb +20 -0
data/app/views/decidim/searches/_filters_small_view.html.erb +18 -0
data/app/views/decidim/searches/_results.html.erb +5 -0
data/app/views/decidim/searches/index.html.erb +20 -0
data/app/views/decidim/searches/index.js.erb +5 -0
data/app/views/decidim/shared/_address_details.html.erb +7 -9
data/app/views/decidim/shared/_announcement.html.erb +1 -6
data/app/views/decidim/shared/_author_reference.html.erb +1 -1
data/app/views/decidim/shared/_follow_button.html.erb +1 -34
data/app/views/decidim/shared/_static_map.html.erb +3 -1
data/app/views/decidim/shared/_tags.html.erb +1 -11
data/app/views/kaminari/decidim/_paginator.html.erb +16 -15
data/app/views/layouts/decidim/_head.html.erb +1 -0
data/app/views/layouts/decidim/_topbar_search.html.erb +8 -0
data/app/views/layouts/decidim/_user_menu.html.erb +2 -2
data/app/views/layouts/decidim/_wrapper.html.erb +3 -2
data/config/initializers/devise.rb +1 -1
data/config/initializers/rack_attack.rb +28 -0
data/config/locales/ca.yml +136 -55
data/config/locales/en.yml +135 -54
data/config/locales/es.yml +136 -55
data/config/locales/eu.yml +136 -54
data/config/locales/fi.yml +135 -54
data/config/locales/fr.yml +136 -54
data/config/locales/gl.yml +136 -54
data/config/locales/it.yml +136 -54
data/config/locales/nl.yml +136 -54
data/config/locales/pl.yml +144 -54
data/config/locales/pt-BR.yml +136 -54
data/config/locales/pt.yml +136 -54
data/config/locales/ru.yml +150 -60
data/config/locales/sv.yml +136 -54
data/config/locales/uk.yml +146 -57
data/config/routes.rb +11 -1
data/db/migrate/20180209122819_create_decidim_searchable_resource.rb +21 -0
data/db/migrate/20180508111640_add_tos_version_to_organization.rb +19 -0
data/db/migrate/20180508111710_add_accepted_tos_version_field_to_users.rb +25 -0
data/db/seeds.rb +33 -26
data/lib/decidim/component_manifest.rb +35 -27
data/lib/decidim/content_processor.rb +21 -3
data/lib/decidim/core.rb +27 -16
data/lib/decidim/core/engine.rb +8 -19
data/lib/decidim/core/test.rb +2 -0
data/lib/decidim/core/test/factories.rb +34 -4
data/lib/decidim/core/test/shared_examples/fingerprint_examples.rb +15 -0
data/lib/decidim/core/test/shared_examples/searchable_results_examples.rb +27 -0
data/lib/decidim/core/version.rb +1 -1
data/lib/decidim/events/base_event.rb +5 -1
data/lib/decidim/fingerprint_calculator.rb +42 -0
data/lib/decidim/fingerprintable.rb +63 -0
data/lib/decidim/form_builder.rb +1 -0
data/lib/decidim/manifest_registry.rb +4 -10
data/lib/decidim/participable.rb +4 -0
data/lib/decidim/participatory_space_manifest.rb +36 -0
data/lib/decidim/participatory_space_resourceable.rb +11 -0
data/lib/decidim/resource_manifest.rb +10 -11
data/lib/decidim/resourceable.rb +3 -2
data/lib/decidim/search_resource_fields_mapper.rb +93 -0
data/lib/decidim/searchable.rb +85 -0
data/lib/decidim/settings_manifest.rb +3 -2
data/lib/decidim/traceable.rb +2 -0
data/lib/decidim/view_model.rb +9 -0
data/lib/tasks/decidim_tasks.rake +79 -1
metadata +149 -76
data/app/assets/stylesheets/decidim/extras/_register_form.scss +0 -9
data/app/cells/decidim/author_box/show.erb +0 -10
data/app/cells/decidim/author_box_cell.rb +0 -21
data/app/cells/decidim/profile/show.erb +0 -13
data/app/cells/decidim/profile_cell.rb +0 -17
data/app/controllers/concerns/decidim/needs_authorization.rb +0 -46
data/app/models/decidim/abilities/admin_ability.rb +0 -29
data/app/models/decidim/abilities/base_ability.rb +0 -56
data/app/models/decidim/abilities/everyone_ability.rb +0 -25
data/app/models/decidim/abilities/participatory_process_admin_ability.rb +0 -28
data/app/models/decidim/abilities/participatory_process_collaborator_ability.rb +0 -28
data/app/models/decidim/abilities/participatory_process_moderator_ability.rb +0 -15
data/app/models/decidim/abilities/user_manager_ability.rb +0 -35
data/app/views/decidim/notifications/_notification.html.erb +0 -20
data/app/views/decidim/notifications/index.html.erb +0 -36
data/app/views/decidim/shared/_author.html.erb +0 -21
data/app/views/pages/home.html.erb +0 -17
data/db/migrate/20180613080638_rename_missing_features_to_components.rb +0 -15
data/lib/decidim/abilities.rb +0 -7
data/lib/decidim/abilities/participatory_process_role_ability.rb +0 -60
data/lib/decidim/page_finder.rb +0 -49

data/config/routes.rb CHANGED Viewed

@@ -39,7 +39,7 @@ Decidim::Core::Engine.routes.draw do
       end
     end
     resources :conversations, only: [:new, :create, :index, :show, :update], controller: "messaging/conversations"
-    resources :notifications, only: [:index, :destroy] do
+    resources :notifications, only: [:destroy] do
       collection do
         delete :read_all
       end
@@ -49,13 +49,23 @@ Decidim::Core::Engine.routes.draw do
   end
   resources :profiles, only: [:show], param: :nickname
+  scope "/profiles/:nickname" do
+    get "notifications", to: "profiles#show", as: "profile_notifications", active: "notifications"
+    get "following", to: "profiles#show", as: "profile_following", active: "following"
+    get "followers", to: "profiles#show", as: "profile_followers", active: "followers"
+  end
   resources :pages, only: [:index, :show], format: false
+  get "/search", to: "searches#index", as: :search
+  get :organization_users, to: "users#index"
   get "/scopes/picker", to: "scopes#picker", as: :scopes_picker
   get "/static_map", to: "static_map#show", as: :static_map
   get "/cookies/accept", to: "cookie_policy#accept", as: :accept_cookies
+  put "/pages/terms-and-conditions/accept", to: "tos#accept_tos", as: :accept_tos
   match "/404", to: "errors#not_found", via: :all
   match "/500", to: "errors#internal_server_error", via: :all

data/db/migrate/20180209122819_create_decidim_searchable_resource.rb ADDED Viewed

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+class CreateDecidimSearchableResource < ActiveRecord::Migration[5.1]
+  def change
+    create_table :decidim_searchable_resources do |t|
+      t.text :content_a
+      t.text :content_b
+      t.text :content_c
+      t.text :content_d
+      t.string :locale, null: false
+      t.datetime :datetime
+      t.belongs_to :decidim_scope
+      t.belongs_to :decidim_participatory_space, polymorphic: true, index: { name: "index_decidim_searchable_resource_on_pspace_type_and_pspace_id" }
+      t.belongs_to :decidim_organization
+      t.belongs_to :resource, polymorphic: true, index: { name: "index_decidim_searchable_rsrcs_on_s_type_and_s_id" }
+      t.timestamps null: false
+    end
+  end
+end

data/db/migrate/20180508111640_add_tos_version_to_organization.rb ADDED Viewed

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+class AddTosVersionToOrganization < ActiveRecord::Migration[5.1]
+  class Organization < ApplicationRecord
+    self.table_name = :decidim_organizations
+  end
+  def up
+    add_column :decidim_organizations, :tos_version, :datetime
+    Organization.find_each do |organization|
+      tos_version = Decidim::StaticPage.find_by(slug: "terms-and-conditions", organization: organization).updated_at
+      organization.update(tos_version: tos_version)
+    end
+  end
+  def down
+    remove_columns :decidim_organizations, :tos_version
+  end
+end

data/db/migrate/20180508111710_add_accepted_tos_version_field_to_users.rb ADDED Viewed

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+class AddAcceptedTosVersionFieldToUsers < ActiveRecord::Migration[5.1]
+  class Organization < ApplicationRecord
+    self.table_name = :decidim_organizations
+    has_many :users, foreign_key: "decidim_organization_id", class_name: "Decidim::User", dependent: :destroy
+  end
+  class User < ApplicationRecord
+    self.table_name = :decidim_users
+    belongs_to :organization, foreign_key: "decidim_organization_id", class_name: "Decidim::Organization"
+  end
+  def up
+    add_column :decidim_users, :accepted_tos_version, :datetime
+    Organization.find_each do |organization|
+      # rubocop:disable Rails/SkipsModelValidations
+      organization.users.update_all(accepted_tos_version: organization.tos_version)
+      # rubocop:enable Rails/SkipsModelValidations
+    end
+  end
+  def down
+    remove_columns :decidim_users, :accepted_tos_version
+  end
+end

data/db/seeds.rb CHANGED Viewed

@@ -1,6 +1,8 @@
 # frozen_string_literal: true
 if !Rails.env.production? || ENV["SEED"]
+  print "Creating seeds for decidim-core...\n" unless Rails.env.test?
   require "decidim/faker/localized"
   seeds_root = File.join(__dir__, "seeds")
@@ -21,37 +23,40 @@ if !Rails.env.production? || ENV["SEED"]
     default_locale: Decidim.default_locale,
     available_locales: Decidim.available_locales,
     reference_prefix: Faker::Name.suffix,
-    available_authorizations: Decidim.authorization_workflows.map(&:name)
+    available_authorizations: Decidim.authorization_workflows.map(&:name),
+    tos_version: Time.current
   )
-  province = Decidim::ScopeType.create!(
-    name: Decidim::Faker::Localized.literal("province"),
-    plural: Decidim::Faker::Localized.literal("provinces"),
-    organization: organization
-  )
-  municipality = Decidim::ScopeType.create!(
-    name: Decidim::Faker::Localized.literal("municipality"),
-    plural: Decidim::Faker::Localized.literal("municipalities"),
-    organization: organization
-  )
+  if organization.top_scopes.none?
+    province = Decidim::ScopeType.create!(
+      name: Decidim::Faker::Localized.literal("province"),
+      plural: Decidim::Faker::Localized.literal("provinces"),
+      organization: organization
+    )
-  3.times do
-    parent = Decidim::Scope.create!(
-      name: Decidim::Faker::Localized.literal(Faker::Address.unique.state),
-      code: Faker::Address.unique.country_code,
-      scope_type: province,
+    municipality = Decidim::ScopeType.create!(
+      name: Decidim::Faker::Localized.literal("municipality"),
+      plural: Decidim::Faker::Localized.literal("municipalities"),
       organization: organization
     )
-    5.times do
-      Decidim::Scope.create!(
-        name: Decidim::Faker::Localized.literal(Faker::Address.unique.city),
-        code: parent.code + "-" + Faker::Address.unique.state_abbr,
-        scope_type: municipality,
-        organization: organization,
-        parent: parent
+    3.times do
+      parent = Decidim::Scope.create!(
+        name: Decidim::Faker::Localized.literal(Faker::Address.unique.state),
+        code: Faker::Address.unique.country_code,
+        scope_type: province,
+        organization: organization
       )
+      5.times do
+        Decidim::Scope.create!(
+          name: Decidim::Faker::Localized.literal(Faker::Address.unique.city),
+          code: parent.code + "-" + Faker::Address.unique.state_abbr,
+          scope_type: municipality,
+          organization: organization,
+          parent: parent
+        )
+      end
     end
   end
@@ -96,7 +101,8 @@ if !Rails.env.production? || ENV["SEED"]
     admin: true,
     tos_agreement: true,
     personal_url: Faker::Internet.url,
-    about: Faker::Lorem.paragraph(2)
+    about: Faker::Lorem.paragraph(2),
+    accepted_tos_version: organization.tos_version
   )
   regular_user = Decidim::User.find_or_initialize_by(email: "user@example.org")
@@ -111,7 +117,8 @@ if !Rails.env.production? || ENV["SEED"]
     organization: organization,
     tos_agreement: true,
     personal_url: Faker::Internet.url,
-    about: Faker::Lorem.paragraph(2)
+    about: Faker::Lorem.paragraph(2),
+    accepted_tos_version: organization.tos_version
   )
   Decidim::Messaging::Conversation.start!(

data/lib/decidim/component_manifest.rb CHANGED Viewed

@@ -46,8 +46,9 @@ module Decidim
     # as well that allows checking for those permissions.
     attribute :actions, Array[String]
-    # The cell path to use to render the card of a resource.
-    attribute :card, String
+    # The name of the class that handles the permissions for this component. It will
+    # probably have the form of `Decidim::<MyComponent>::Permissions`.
+    attribute :permissions_class_name, String, default: "Decidim::DefaultPermissions"
     validates :name, presence: true
@@ -98,6 +99,7 @@ module Decidim
     #
     # Returns nothing.
     def seed!(participatory_space)
+      print "-- Creating #{name} component seeds for the participatory space with ID: #{participatory_space.id}...\n" unless Rails.env.test?
       @seeds&.call(participatory_space)
     end
@@ -122,23 +124,6 @@ module Decidim
       settings
     end
-    # Public: Registers a resource inside a component manifest. Exposes a DSL
-    # defined by `Decidim::ResourceManifest`.
-    #
-    # Resource manifests are a way to expose a resource from one engine to
-    # the whole system. This was resoruces can be linked between them.
-    #
-    # block - A Block that will be called to set the Resource attributes.
-    #
-    # Returns nothing.
-    def register_resource
-      manifest = ResourceManifest.new
-      manifest.component_manifest = self
-      yield(manifest)
-      manifest.validate!
-      resource_manifests << manifest
-    end
     # Public: Registers an export artifact with a name and its properties
     # defined in `Decidim::Components::ExportManifest`.
     #
@@ -169,14 +154,6 @@ module Decidim
       end
     end
-    # Public: Finds all the registered resource manifest's via the
-    # `register_resource` method.
-    #
-    # Returns an Array[ResourceManifest].
-    def resource_manifests
-      @resource_manifests ||= []
-    end
     # Public: Stores an instance of StatsRegistry
     def stats
       @stats ||= StatsRegistry.new
@@ -194,5 +171,36 @@ module Decidim
     def register_stat(name, options = {}, &block)
       stats.register(name, options, &block)
     end
+    # Public: Finds the permission class from its name, using the
+    # `permissions_class_name` attribute. If the class does not exist,
+    # it raises an exception. If the class name is not set, it returns nil.
+    #
+    # Returns a Class.
+    def permissions_class
+      permissions_class_name&.constantize
+    end
+    # Public: Registers a resource. Exposes a DSL defined by
+    # `Decidim::ResourceManifest`. Automatically sets the component manifest
+    # for that resource to the current one.
+    #
+    # Resource manifests are a way to expose a resource from one engine to
+    # the whole system. This way resources can be linked between them.
+    #
+    # name - A name for that resource. Should be singular (ie not plural).
+    # block - A Block that will be called to set the Resource attributes.
+    #
+    # Returns nothing.
+    def register_resource(name)
+      my_component_manifest = self
+      my_block = proc do |resource|
+        resource.component_manifest = my_component_manifest
+        yield(resource)
+      end
+      Decidim.register_resource(name, &my_block)
+    end
   end
 end

data/lib/decidim/content_processor.rb CHANGED Viewed

@@ -30,6 +30,10 @@ module Decidim
   #   rendered = Decidim::ContentProcessor.render(content)
   #   puts rendered
   module ContentProcessor
+    extend ActionView::Helpers::SanitizeHelper
+    extend ActionView::Helpers::TagHelper
+    extend ActionView::Helpers::TextHelper
     # Class that represents the result of processing a text
     #
     # @!attribute rewrite
@@ -61,9 +65,23 @@ module Decidim
     #
     # @return [String] the content processed and ready to display (it is expected to include HTML)
     def self.render(content)
-      Decidim.content_processors.reduce(content) do |result, type|
-        renderer_klass(type).constantize.new(result).render
-      end
+      simple_format(
+        Decidim.content_processors.reduce(content) do |result, type|
+          renderer_klass(type).constantize.new(result).render
+        end
+      )
+    end
+    # This method overwrites the views `sanitize` method. This is required to
+    # ensure the content does not include any weird HTML that could harm the end
+    # user.
+    #
+    # @return [String] sanitized content.
+    def self.sanitize(text, options = {})
+      Rails::Html::WhiteListSanitizer.new.sanitize(
+        text,
+        { scrubber: Decidim::UserInputScrubber.new }.merge(options)
+      ).try(:html_safe)
     end
     # Guess the class name of the parser for a processor

data/lib/decidim/core.rb CHANGED Viewed

@@ -45,15 +45,18 @@ module Decidim
   autoload :MenuRegistry, "decidim/menu_registry"
   autoload :Messaging, "decidim/messaging"
   autoload :ManifestRegistry, "decidim/manifest_registry"
-  autoload :Abilities, "decidim/abilities"
   autoload :EngineRouter, "decidim/engine_router"
   autoload :Events, "decidim/events"
   autoload :ViewHooks, "decidim/view_hooks"
   autoload :NewsletterEncryptor, "decidim/newsletter_encryptor"
+  autoload :Searchable, "decidim/searchable"
+  autoload :SearchResourceFieldsMapper, "decidim/search_resource_fields_mapper"
   autoload :QueryExtensions, "decidim/query_extensions"
   autoload :ParticipatorySpaceResourceable, "decidim/participatory_space_resourceable"
   autoload :HasPrivateUsers, "decidim/has_private_users"
   autoload :ViewModel, "decidim/view_model"
+  autoload :FingerprintCalculator, "decidim/fingerprint_calculator"
+  autoload :Fingerprintable, "decidim/fingerprintable"
   include ActiveSupport::Configurable
@@ -82,20 +85,6 @@ module Decidim
   # the mails.
   config_accessor :mailer_sender
-  # Exposes a configuration option: an Array of `cancancan`'s Ability classes
-  # that will be automatically included to the base `Decidim::Abilities::BaseAbility`
-  # class.
-  config_accessor :abilities do
-    []
-  end
-  # Exposes a configuration option: an Array of `cancancan`'s Ability classes
-  # that will be automatically included to the `Decidim::Admin::Abilities::BaseAbility`
-  # class.
-  config_accessor :admin_abilities do
-    []
-  end
   # Exposes a configuration option: The application available locales.
   config_accessor :available_locales do
     %w(en ca es eu fi fr gl it nl pt pt-BR ru sv uk)
@@ -187,6 +176,16 @@ module Decidim
     true
   end
+  # Max requests in a time period to prevent DoS attacks. Only applied on production.
+  config_accessor :throttling_max_requests do
+    100
+  end
+  # Time window in which the throttling is applied.
+  config_accessor :throttling_period do
+    1.minute
+  end
   # A base path for the uploads. If set, make sure it ends in a slash.
   # Uploads will be set to `<base_path>/uploads/`. This can be useful if you
   # want to use the same uploads place for both staging and production
@@ -259,6 +258,13 @@ module Decidim
     participatory_space_registry.register(name, &block)
   end
+  # Public: Registers a resource.
+  #
+  # Returns nothing.
+  def self.register_resource(name, &block)
+    resource_registry.register(name, &block)
+  end
   # Public: Finds all registered component manifest's via the `register_component`
   # method.
   #
@@ -301,7 +307,7 @@ module Decidim
   #
   # Returns a ResourceManifest if found, nil otherwise.
   def self.find_resource_manifest(resource_name_or_klass)
-    component_registry.find_resource_manifest(resource_name_or_klass)
+    resource_registry.find(resource_name_or_klass)
   end
   # Public: Stores the registry of components
@@ -314,6 +320,11 @@ module Decidim
     @participatory_space_registry ||= ManifestRegistry.new(:participatory_spaces)
   end
+  # Public: Stores the registry of resource spaces
+  def self.resource_registry
+    @resource_registry ||= ManifestRegistry.new(:resources)
+  end
   # Public: Stores an instance of StatsRegistry
   def self.stats
     @stats ||= StatsRegistry.new

data/lib/decidim/core/engine.rb CHANGED Viewed

@@ -22,11 +22,9 @@ require "rectify"
 require "decidim/rectify_ext"
 require "carrierwave"
-require "high_voltage"
 require "rails-i18n"
 require "date_validator"
 require "sprockets/es6"
-require "cancancan"
 require "truncato"
 require "file_validators"
 require "omniauth"
@@ -39,6 +37,7 @@ require "geocoder"
 require "paper_trail"
 require "cells/rails"
 require "cells-erb"
+require "kaminari"
 require "doorkeeper"
 require "doorkeeper-i18n"
@@ -72,12 +71,6 @@ module Decidim
         app.config.assets.debug = true if Rails.env.test?
       end
-      initializer "decidim.high_voltage" do |_app|
-        HighVoltage.configure do |config|
-          config.routes = false
-        end
-      end
       initializer "decidim.default_form_builder" do |_app|
         ActionView::Base.default_form_builder = Decidim::FormBuilder
       end
@@ -86,17 +79,6 @@ module Decidim
         app.config.exceptions_app = Decidim::Core::Engine.routes
       end
-      initializer "decidim.inject_abilities_to_user" do |_app|
-        Decidim.configure do |config|
-          config.abilities << "Decidim::Abilities::EveryoneAbility"
-          config.abilities << "Decidim::Abilities::AdminAbility"
-          config.abilities << "Decidim::Abilities::UserManagerAbility"
-          config.abilities << "Decidim::Abilities::ParticipatoryProcessAdminAbility"
-          config.abilities << "Decidim::Abilities::ParticipatoryProcessCollaboratorAbility"
-          config.abilities << "Decidim::Abilities::ParticipatoryProcessModeratorAbility"
-        end
-      end
       initializer "decidim.locales" do |app|
         app.config.i18n.fallbacks = true
       end
@@ -280,6 +262,13 @@ module Decidim
           inflect.acronym "OAuth"
         end
       end
+      initializer "decidim.core.register_resources" do
+        Decidim.register_resource(:user) do |resource|
+          resource.model_class_name = "Decidim::User"
+          resource.card = "decidim/user_profile"
+        end
+      end
     end
   end
 end