decidim-generators 0.26.2 → 0.27.0.rc2

data/exe/decidim

@@ -28,7 +28,34 @@ Options:
   --help                   display this help and exit
   --version                output version information and exit
   --component [name]       creates a component for Decidim
-  [name]                   creates an application based on Decidim"
+  [name]                   creates an application based on Decidim
+
+App generation extra options (ignored if the --component flag is on):
+  --storage [provider]     Setup the Gemfile with the appropiate gem to handle a storage provider. Supported options are: local (default), s3, gcs, azure
+  --queue [provider]       Setup the Gemfile with the appropiate gem to handle a job queue backend. Only 'sidekiq' is supported as option for now.
+  --force_ssl [true|false] Enables or disables mandatory redirection to HTTPS (defaults to enabled)
+  --locales [locales]      Force the available locales to the ones specified. Separate with comas
+                           Warning: this option disables the ENV var DECIDIM_AVAILABLE_LOCALES used to setup this configuration by default.
+  --profiling              Adds profiling gems for development
+  --path                   Use a local path for the Gemfile instead of the last decidim gem version available
+  --edge                   Use GitHub's develop branch instead of the last decidim gem version available
+  --branch [branch]        Use GitHub's specified branch instead of the last decidim gem version available
+  --repository             Use a custom GIT repository instead of the default https::/github.com/decidim/decidim
+  --skip_gemfile           Skip Gemfile processing
+  --skip_bundle            Do not run bundle install
+  --skip_webpack_install   Do not run webpacker initialization (webpack install)
+  --demo                   Create a demo application, with seeds, all the optional modules enabled and some authorization examples
+  --seed_db [true|false]   Seed the database: generate demo data for each participatory space and component
+  --recreate_db            Recreate the database after installing Decidim
+
+Examples:
+  decidim my-application
+  decidim --storage=s3 my-application
+  decidim --storage=s3,gcs --profiling --force_ssl=false my-application
+  decidim --locales=en,ca,es,fr my-application
+  decidim --queue sidekiq my-application
+  decidim --queue sidekiq --storage s3 my-application
+"
 else
   require "decidim/generators/app_generator"
 

data/lib/decidim/generators/app_generator.rb

@@ -41,6 +41,10 @@ module Decidim
                             default: nil,
                             desc: "Use a specific branch from GitHub's version"
 
+      class_option :repository, type: :string,
+                                default: "https://github.com/decidim/decidim.git",
+                                desc: "Use a specific GIT repository (valid in conjunction with --edge or --branch)"
+
       class_option :recreate_db, type: :boolean,
                                  default: false,
                                  desc: "Recreate test database"
@@ -50,7 +54,7 @@ module Decidim
                              desc: "Seed test database"
 
       class_option :skip_bundle, type: :boolean,
-                                 default: true,
+                                 default: true, # this is to avoid installing gems in this step yet (done by InstallGenerator)
                                  desc: "Don't run bundle install"
 
       class_option :skip_gemfile, type: :boolean,
@@ -69,10 +73,26 @@ module Decidim
                                default: "true",
                                desc: "Doesn't force to use ssl"
 
+      class_option :locales, type: :string,
+                             default: "",
+                             desc: "Force the available locales to the ones specified. Separate with comas"
+
+      class_option :storage, type: :string,
+                             default: "local",
+                             desc: "Setup the Gemfile with the appropiate gem to handle a storage provider. Supported options are: local (default), s3, gcs, azure"
+
+      class_option :queue, type: :string,
+                           default: "",
+                           desc: "Setup the Gemfile with the appropiate gem to handle a queue adapter provider. Supported options are: (empty, does nothing) and sidekiq"
+
       class_option :skip_webpack_install, type: :boolean,
                                           default: true,
                                           desc: "Don't run Webpack install"
 
+      class_option :dev_ssl, type: :boolean,
+                             default: false,
+                             desc: "Don't add Puma development SSL configuration options"
+
       def database_yml
         template "database.yml.erb", "config/database.yml", force: true
       end
@@ -115,19 +135,72 @@ module Decidim
 
         gsub_file "Gemfile", /gem "#{current_gem}".*/, "gem \"#{current_gem}\", #{gem_modifier}"
 
-        if current_gem == "decidim"
-          gsub_file "Gemfile", /gem "decidim-dev".*/, "gem \"decidim-dev\", #{gem_modifier}"
+        return unless current_gem == "decidim"
+
+        gsub_file "Gemfile", /gem "decidim-dev".*/, "gem \"decidim-dev\", #{gem_modifier}"
+
+        %w(conferences consultations elections initiatives templates).each do |component|
+          if options[:demo]
+            gsub_file "Gemfile", /gem "decidim-#{component}".*/, "gem \"decidim-#{component}\", #{gem_modifier}"
+          else
+            gsub_file "Gemfile", /gem "decidim-#{component}".*/, "# gem \"decidim-#{component}\", #{gem_modifier}"
+          end
+        end
+      end
+
+      def add_storage_provider
+        template "storage.yml.erb", "config/storage.yml", force: true
+
+        providers = options[:storage].split(",")
+
+        abort("#{providers} is not supported as storage provider, please use local, s3, gcs or azure") unless (providers - %w(local s3 gcs azure)).empty?
+        gsub_file "config/environments/production.rb",
+                  /config.active_storage.service = :local/,
+                  "config.active_storage.service = Rails.application.secrets.dig(:storage, :provider) || :local"
+
+        add_production_gems do
+          gem "aws-sdk-s3", require: false if providers.include?("s3")
+          gem "azure-storage-blob", require: false if providers.include?("azure")
+          gem "google-cloud-storage", "~> 1.11", require: false if providers.include?("gcs")
+        end
+      end
+
+      def add_queue_adapter
+        adapter = options[:queue]
+
+        abort("#{adapter} is not supported as a queue adapter, please use sidekiq for the moment") unless adapter.in?(["", "sidekiq"])
+
+        return unless adapter == "sidekiq"
+
+        template "sidekiq.yml.erb", "config/sidekiq.yml", force: true
+
+        gsub_file "config/environments/production.rb",
+                  /# config.active_job.queue_adapter     = :resque/,
+                  "config.active_job.queue_adapter = ENV['QUEUE_ADAPTER'] if ENV['QUEUE_ADAPTER'].present?"
 
-          %w(conferences consultations elections initiatives templates).each do |component|
-            if options[:demo]
-              gsub_file "Gemfile", /gem "decidim-#{component}".*/, "gem \"decidim-#{component}\", #{gem_modifier}"
-            else
-              gsub_file "Gemfile", /gem "decidim-#{component}".*/, "# gem \"decidim-#{component}\", #{gem_modifier}"
-            end
+        prepend_file "config/routes.rb", "require \"sidekiq/web\"\n\n"
+        route <<~RUBY
+          authenticate :user, ->(u) { u.admin? } do
+            mount Sidekiq::Web => "/sidekiq"
           end
+        RUBY
+
+        add_production_gems do
+          gem "sidekiq"
         end
+      end
 
-        run "bundle install"
+      def add_production_gems(&block)
+        return if options[:skip_gemfile]
+
+        if block
+          @production_gems ||= []
+          @production_gems << block
+        elsif @production_gems.present?
+          gem_group :production do
+            @production_gems.map(&:call)
+          end
+        end
       end
 
       def tweak_bootsnap
@@ -146,6 +219,30 @@ module Decidim
         RUBY
       end
 
+      def tweak_spring
+        return unless File.exist?("config/spring.rb")
+
+        prepend_to_file "config/spring.rb", "require \"decidim/spring\"\n\n"
+      end
+
+      def puma_ssl_options
+        return unless options[:dev_ssl]
+
+        append_file "config/puma.rb", <<~CONFIG
+
+          # Development SSL
+          if ENV["DEV_SSL"] && defined?(Bundler) && (dev_gem = Bundler.load.specs.find { |spec| spec.name == "decidim-dev" })
+            cert_dir = ENV.fetch("DEV_SSL_DIR") { "\#{dev_gem.full_gem_path}/lib/decidim/dev/assets" }
+            ssl_bind(
+              "0.0.0.0",
+              ENV.fetch("DEV_SSL_PORT") { 3443 },
+              cert_pem: File.read("\#{cert_dir}/ssl-cert.pem"),
+              key_pem: File.read("\#{cert_dir}/ssl-key.pem")
+            )
+          end
+        CONFIG
+      end
+
       def add_ignore_uploads
         append_file ".gitignore", "\n# Ignore public uploads\npublic/uploads" unless options["skip_git"]
       end
@@ -158,11 +255,27 @@ module Decidim
       def decidim_initializer
         copy_file "initializer.rb", "config/initializers/decidim.rb"
 
+        gsub_file "config/environments/production.rb",
+                  /config.log_level = :info/,
+                  "config.log_level = %w(debug info warn error fatal).include?(ENV['RAILS_LOG_LEVEL']) ? ENV['RAILS_LOG_LEVEL'] : :info"
+
+        gsub_file "config/environments/production.rb",
+                  %r{# config.asset_host = 'http://assets.example.com'},
+                  "config.asset_host = ENV['RAILS_ASSET_HOST'] if ENV['RAILS_ASSET_HOST'].present?"
+
         if options[:force_ssl] == "false"
           gsub_file "config/initializers/decidim.rb",
                     /# config.force_ssl = true/,
                     "config.force_ssl = false"
         end
+        return if options[:locales].blank?
+
+        gsub_file "config/initializers/decidim.rb",
+                  /#{Regexp.escape("# config.available_locales = %w(en ca es)")}/,
+                  "config.available_locales = %w(#{options[:locales].gsub(",", " ")})"
+        gsub_file "config/initializers/decidim.rb",
+                  /#{Regexp.escape("config.available_locales = Rails.application.secrets.decidim[:available_locales].presence || [:en]")}/,
+                  "# config.available_locales = Rails.application.secrets.decidim[:available_locales].presence || [:en]"
       end
 
       def authorization_handler
@@ -230,11 +343,11 @@ module Decidim
 
       def gem_modifier
         @gem_modifier ||= if options[:path]
-                            "path: \"#{options[:path]}\""
+                            %(path: "#{options[:path]}")
                           elsif branch.present?
-                            "git: \"https://github.com/decidim/decidim.git\", branch: \"#{branch}\""
+                            %(git: "#{repository}", branch: "#{branch}")
                           else
-                            "\"#{Decidim::Generators.version}\""
+                            %("#{Decidim::Generators.version}")
                           end
       end
 
@@ -244,6 +357,10 @@ module Decidim
         @branch ||= options[:edge] ? Decidim::Generators.edge_git_branch : options[:branch].presence
       end
 
+      def repository
+        @repository ||= options[:repository] || "https://github.com/decidim/decidim.git"
+      end
+
       def app_name
         options[:app_name] || super
       end

data/lib/decidim/generators/app_templates/database.yml.erb

@@ -63,7 +63,7 @@ development:
 # Do not set this db to the same as development or production.
 test:
   <<: *default
-  database: <%= app_name %>_test
+  database: <%= app_name %>_test<%%= ENV.fetch('TEST_ENV_NUMBER', "") %>
 
 # As with config/secrets.yml, you never want to store sensitive information,
 # like your database password, in your source code. If your source code is

data/lib/decidim/generators/app_templates/dummy_authorization_handler.rb

@@ -21,7 +21,7 @@
 # See Decidim::AuthorizationHandler for more documentation.
 class DummyAuthorizationHandler < Decidim::AuthorizationHandler
   # Define the attributes you need for this authorization handler. Attributes
-  # are defined using Virtus.
+  # are defined using Decidim::AttributeObject.
   #
   attribute :name_and_surname, String
   attribute :document_number, String

data/lib/decidim/generators/app_templates/initializer.rb

@@ -2,27 +2,29 @@
 
 Decidim.configure do |config|
   # The name of the application
-  config.application_name = "My Application Name"
+  config.application_name = Rails.application.secrets.decidim[:application_name]
 
   # The email that will be used as sender in all emails from Decidim
-  config.mailer_sender = "change-me@example.org"
+  config.mailer_sender = Rails.application.secrets.decidim[:mailer_sender]
 
   # Sets the list of available locales for the whole application.
   #
   # When an organization is created through the System area, system admins will
   # be able to choose the available languages for that organization. That list
   # of languages will be equal or a subset of the list in this file.
-  config.available_locales = [:en, :ca, :es]
+  config.available_locales = Rails.application.secrets.decidim[:available_locales].presence || [:en]
+  # Or block set it up manually and prevent ENV manipulation:
+  # config.available_locales = %w(en ca es)
 
   # Sets the default locale for new organizations. When creating a new
   # organization from the System area, system admins will be able to overwrite
   # this value for that specific organization.
-  config.default_locale = :en
+  config.default_locale = Rails.application.secrets.decidim[:default_locale].presence || :en
 
   # Restrict access to the system part with an authorized ip list.
   # You can use a single ip like ("1.2.3.4"), or an ip subnet like ("1.2.3.4/24")
   # You may specify multiple ip in an array ["1.2.3.4", "1.2.3.4/24"]
-  # config.system_accesslist_ips = ["127.0.0.1"]
+  config.system_accesslist_ips = Rails.application.secrets.decidim[:system_accesslist_ips] if Rails.application.secrets.decidim[:system_accesslist_ips].present?
 
   # Defines a list of custom content processors. They are used to parse and
   # render specific tags inside some user-provided content. Check the docs for
@@ -30,8 +32,14 @@ Decidim.configure do |config|
   # config.content_processors = []
 
   # Whether SSL should be enabled or not.
+  # if this var is not defined, it is decided automatically per-rails-environment
+  config.force_ssl = Rails.application.secrets.decidim[:force_ssl].present? unless Rails.application.secrets.decidim[:force_ssl] == "auto"
+  # or set it up manually and prevent any ENV manipulation:
   # config.force_ssl = true
 
+  # Enable the service worker. By default is disabled in development and enabled in the rest of environments
+  config.service_worker_enabled = Rails.application.secrets.decidim[:service_worker_enabled].present?
+
   # Map and Geocoder configuration
   #
   # == HERE Maps ==
@@ -98,6 +106,40 @@ Decidim.configure do |config|
   #   cache: Redis.new,
   #   cache_prefix: "..."
   # }
+  if Rails.application.secrets.maps.present? && Rails.application.secrets.maps[:static_provider].present?
+    static_provider = Rails.application.secrets.maps[:static_provider]
+    dynamic_provider = Rails.application.secrets.maps[:dynamic_provider]
+    dynamic_url = Rails.application.secrets.maps[:dynamic_url]
+    static_url = Rails.application.secrets.maps[:static_url]
+    static_url = "https://image.maps.ls.hereapi.com/mia/1.6/mapview" if static_provider == "here" && static_url.blank?
+    config.maps = {
+      provider: static_provider,
+      api_key: Rails.application.secrets.maps[:static_api_key],
+      static: { url: static_url },
+      dynamic: {
+        provider: dynamic_provider,
+        api_key: Rails.application.secrets.maps[:dynamic_api_key]
+      }
+    }
+    config.maps[:geocoding] = { host: Rails.application.secrets.maps[:geocoding_host], use_https: true } if Rails.application.secrets.maps[:geocoding_host]
+    config.maps[:dynamic][:tile_layer] = {}
+    config.maps[:dynamic][:tile_layer][:url] = dynamic_url if dynamic_url
+    config.maps[:dynamic][:tile_layer][:attribution] = Rails.application.secrets.maps[:attribution] if Rails.application.secrets.maps[:attribution]
+    if Rails.application.secrets.maps[:extra_vars].present?
+      vars = URI.decode_www_form(Rails.application.secrets.maps[:extra_vars])
+      vars.each do |key, value|
+        # perform a naive type conversion
+        config.maps[:dynamic][:tile_layer][key] = case value
+                                                  when /^true$|^false$/i
+                                                    value.downcase == "true"
+                                                  when /\A[-+]?\d+\z/
+                                                    value.to_i
+                                                  else
+                                                    value
+                                                  end
+      end
+    end
+  end
 
   # Custom resource reference generator method. Check the docs for more info.
   # config.reference_generator = lambda do |resource, component|
@@ -106,14 +148,20 @@ Decidim.configure do |config|
   # end
 
   # Currency unit
-  # config.currency_unit = "€"
+  config.currency_unit = Rails.application.secrets.decidim[:currency_unit] if Rails.application.secrets.decidim[:currency_unit].present?
+
+  # Workaround to enable SVG assets cors
+  config.cors_enabled = Rails.application.secrets.decidim[:cors_enabled].present?
 
   # Defines the quality of image uploads after processing. Image uploads are
   # processed by Decidim, this value helps reduce the size of the files.
-  # config.image_uploader_quality = 80
+  config.image_uploader_quality = Rails.application.secrets.decidim[:image_uploader_quality].to_i
+
+  config.maximum_attachment_size = Rails.application.secrets.decidim[:maximum_attachment_size].to_i.megabytes
+  config.maximum_avatar_size = Rails.application.secrets.decidim[:maximum_avatar_size].to_i.megabytes
 
   # The number of reports which a resource can receive before hiding it
-  # config.max_reports_before_hiding = 3
+  config.max_reports_before_hiding = Rails.application.secrets.decidim[:max_reports_before_hiding].to_i
 
   # Custom HTML Header snippets
   #
@@ -128,22 +176,22 @@ Decidim.configure do |config|
   # that an organization's administrator injects malicious scripts to spy on or
   # take over user accounts.
   #
-  config.enable_html_header_snippets = false
+  config.enable_html_header_snippets = Rails.application.secrets.decidim[:enable_html_header_snippets].present?
 
   # Allow organizations admins to track newsletter links.
-  # config.track_newsletter_links = true
+  config.track_newsletter_links = Rails.application.secrets.decidim[:track_newsletter_links].present? unless Rails.application.secrets.decidim[:track_newsletter_links] == "auto"
 
-  # Amount of time that the data portability files will be available in the server.
-  # config.data_portability_expiry_time = 7.days
+  # Amount of time that the download your data files will be available in the server.
+  config.download_your_data_expiry_time = Rails.application.secrets.decidim[:download_your_data_expiry_time].to_i.days
 
   # Max requests in a time period to prevent DoS attacks. Only applied on production.
-  # config.throttling_max_requests = 100
+  config.throttling_max_requests = Rails.application.secrets.decidim[:throttling_max_requests].to_i
 
   # Time window in which the throttling is applied.
-  # config.throttling_period = 1.minute
+  config.throttling_period = Rails.application.secrets.decidim[:throttling_period].to_i.minutes
 
   # Time window were users can access the website even if their email is not confirmed.
-  # config.unconfirmed_access_for = 2.days
+  config.unconfirmed_access_for = Rails.application.secrets.decidim[:unconfirmed_access_for].to_i.days
 
   # A base path for the uploads. If set, make sure it ends in a slash.
   # Uploads will be set to `<base_path>/uploads/`. This can be useful if you
@@ -151,7 +199,7 @@ Decidim.configure do |config|
   # environments, but in different folders.
   #
   # If not set, it will be ignored.
-  # config.base_uploads_path = nil
+  config.base_uploads_path = Rails.application.secrets.decidim[:base_uploads_path] if Rails.application.secrets.decidim[:base_uploads_path].present?
 
   # SMS gateway configuration
   #
@@ -198,6 +246,7 @@ Decidim.configure do |config|
   #   end
   # end
   #
+  #
   # config.timestamp_service = "MyTimestampService"
 
   # PDF signature service configuration
@@ -228,14 +277,16 @@ Decidim.configure do |config|
   # Only needed if you want to have Etherpad integration with Decidim. See
   # Decidim docs at https://docs.decidim.org/en/services/etherpad/ in order to set it up.
   #
-  # config.etherpad = {
-  #   server: Rails.application.secrets.etherpad[:server],
-  #   api_key: Rails.application.secrets.etherpad[:api_key],
-  #   api_version: Rails.application.secrets.etherpad[:api_version]
-  # }
+  if Rails.application.secrets.etherpad.present? && Rails.application.secrets.etherpad[:server].present?
+    config.etherpad = {
+      server: Rails.application.secrets.etherpad[:server],
+      api_key: Rails.application.secrets.etherpad[:api_key],
+      api_version: Rails.application.secrets.etherpad[:api_version]
+    }
+  end
 
   # Sets Decidim::Exporters::CSV's default column separator
-  # config.default_csv_col_sep = ";"
+  config.default_csv_col_sep = Rails.application.secrets.decidim[:default_csv_col_sep] if Rails.application.secrets.decidim[:default_csv_col_sep].present?
 
   # The list of roles a user can have, not considering the space-specific roles.
   # config.user_roles = %w(admin user_manager)
@@ -284,7 +335,147 @@ Decidim.configure do |config|
 
   # Defines the name of the cookie used to check if the user allows Decidim to
   # set cookies.
-  # config.consent_cookie_name = "decidim-cc"
+  config.consent_cookie_name = Rails.application.secrets.decidim[:consent_cookie_name] if Rails.application.secrets.decidim[:consent_cookie_name].present?
+
+  # Defines data consent categories and the data stored in each category.
+  # config.consent_categories = [
+  #   {
+  #     slug: "essential",
+  #     mandatory: true,
+  #     items: [
+  #       {
+  #         type: "cookie",
+  #         name: "_session_id"
+  #       },
+  #       {
+  #         type: "cookie",
+  #         name: Decidim.consent_cookie_name
+  #       }
+  #     ]
+  #   },
+  #   {
+  #     slug: "preferences",
+  #     mandatory: false
+  #   },
+  #   {
+  #     slug: "analytics",
+  #     mandatory: false
+  #   },
+  #   {
+  #     slug: "marketing",
+  #     mandatory: false
+  #   }
+  # ]
+
+  # Admin admin password configurations
+  Rails.application.secrets.dig(:decidim, :admin_password, :strong).tap do |strong_pw|
+    # When the strong password is not configured, default to true
+    config.admin_password_strong = strong_pw.nil? ? true : strong_pw.present?
+  end
+  config.admin_password_expiration_days = Rails.application.secrets.dig(:decidim, :admin_password, :expiration_days).presence || 90
+  config.admin_password_min_length = Rails.application.secrets.dig(:decidim, :admin_password, :min_length).presence || 15
+  config.admin_password_repetition_times = Rails.application.secrets.dig(:decidim, :admin_password, :repetition_times).presence || 5
+
+  # Additional optional configurations (see decidim-core/lib/decidim/core.rb)
+  config.cache_key_separator = Rails.application.secrets.decidim[:cache_key_separator] if Rails.application.secrets.decidim[:cache_key_separator].present?
+  config.expire_session_after = Rails.application.secrets.decidim[:expire_session_after].to_i.minutes if Rails.application.secrets.decidim[:expire_session_after].present?
+  config.enable_remember_me = Rails.application.secrets.decidim[:enable_remember_me].present? unless Rails.application.secrets.decidim[:enable_remember_me] == "auto"
+  if Rails.application.secrets.decidim[:session_timeout_interval].present?
+    config.session_timeout_interval = Rails.application.secrets.decidim[:session_timeout_interval].to_i.seconds
+  end
+  config.follow_http_x_forwarded_host = Rails.application.secrets.decidim[:follow_http_x_forwarded_host].present?
+  config.maximum_conversation_message_length = Rails.application.secrets.decidim[:maximum_conversation_message_length].to_i
+  config.password_blacklist = Rails.application.secrets.decidim[:password_blacklist] if Rails.application.secrets.decidim[:password_blacklist].present?
+  config.allow_open_redirects = Rails.application.secrets.decidim[:allow_open_redirects] if Rails.application.secrets.decidim[:allow_open_redirects].present?
+end
+
+if Decidim.module_installed? :api
+  Decidim::Api.configure do |config|
+    config.schema_max_per_page = Rails.application.secrets.dig(:decidim, :api, :schema_max_per_page).presence || 50
+    config.schema_max_complexity = Rails.application.secrets.dig(:decidim, :api, :schema_max_complexity).presence || 5000
+    config.schema_max_depth = Rails.application.secrets.dig(:decidim, :api, :schema_max_depth).presence || 15
+  end
+end
+
+if Decidim.module_installed? :proposals
+  Decidim::Proposals.configure do |config|
+    config.similarity_threshold = Rails.application.secrets.dig(:decidim, :proposals, :similarity_threshold).presence || 0.25
+    config.similarity_limit = Rails.application.secrets.dig(:decidim, :proposals, :similarity_limit).presence || 10
+    config.participatory_space_highlighted_proposals_limit = Rails.application.secrets.dig(:decidim, :proposals, :participatory_space_highlighted_proposals_limit).presence || 4
+    config.process_group_highlighted_proposals_limit = Rails.application.secrets.dig(:decidim, :proposals, :process_group_highlighted_proposals_limit).presence || 3
+  end
+end
+
+if Decidim.module_installed? :meetings
+  Decidim::Meetings.configure do |config|
+    config.upcoming_meeting_notification = Rails.application.secrets.dig(:decidim, :meetings, :upcoming_meeting_notification).to_i.days
+    if Rails.application.secrets.dig(:decidim, :meetings, :embeddable_services).present?
+      config.embeddable_services = Rails.application.secrets.dig(:decidim, :meetings, :embeddable_services)
+    end
+    unless Rails.application.secrets.dig(:decidim, :meetings, :enable_proposal_linking) == "auto"
+      config.enable_proposal_linking = Rails.application.secrets.dig(:decidim, :meetings, :enable_proposal_linking).present?
+    end
+  end
+end
+
+if Decidim.module_installed? :budgets
+  Decidim::Budgets.configure do |config|
+    unless Rails.application.secrets.dig(:decidim, :budgets, :enable_proposal_linking) == "auto"
+      config.enable_proposal_linking = Rails.application.secrets.dig(:decidim, :budgets, :enable_proposal_linking).present?
+    end
+  end
+end
+
+if Decidim.module_installed? :accountability
+  Decidim::Accountability.configure do |config|
+    unless Rails.application.secrets.dig(:decidim, :accountability, :enable_proposal_linking) == "auto"
+      config.enable_proposal_linking = Rails.application.secrets.dig(:decidim, :accountability, :enable_proposal_linking).present?
+    end
+  end
+end
+
+if Decidim.module_installed? :consultations
+  Decidim::Consultations.configure do |config|
+    config.stats_cache_expiration_time = Rails.application.secrets.dig(:decidim, :consultations, :stats_cache_expiration_time).to_i.minutes
+  end
+end
+
+if Decidim.module_installed? :initiatives
+  Decidim::Initiatives.configure do |config|
+    unless Rails.application.secrets.dig(:decidim, :initiatives, :creation_enabled) == "auto"
+      config.creation_enabled = Rails.application.secrets.dig(:decidim, :initiatives, :creation_enabled).present?
+    end
+    config.similarity_threshold = Rails.application.secrets.dig(:decidim, :initiatives, :similarity_threshold).presence || 0.25
+    config.similarity_limit = Rails.application.secrets.dig(:decidim, :initiatives, :similarity_limit).presence || 5
+    config.minimum_committee_members = Rails.application.secrets.dig(:decidim, :initiatives, :minimum_committee_members).presence || 2
+    config.default_signature_time_period_length = Rails.application.secrets.dig(:decidim, :initiatives, :default_signature_time_period_length).presence || 120
+    config.default_components = Rails.application.secrets.dig(:decidim, :initiatives, :default_components)
+    config.first_notification_percentage = Rails.application.secrets.dig(:decidim, :initiatives, :first_notification_percentage).presence || 33
+    config.second_notification_percentage = Rails.application.secrets.dig(:decidim, :initiatives, :second_notification_percentage).presence || 66
+    config.stats_cache_expiration_time = Rails.application.secrets.dig(:decidim, :initiatives, :stats_cache_expiration_time).to_i.minutes
+    config.max_time_in_validating_state = Rails.application.secrets.dig(:decidim, :initiatives, :max_time_in_validating_state).to_i.days
+    unless Rails.application.secrets.dig(:decidim, :initiatives, :print_enabled) == "auto"
+      config.print_enabled = Rails.application.secrets.dig(:decidim, :initiatives, :print_enabled).present?
+    end
+    config.do_not_require_authorization = Rails.application.secrets.dig(:decidim, :initiatives, :do_not_require_authorization).present?
+  end
+end
+
+if Decidim.module_installed? :elections
+  Decidim::Elections.configure do |config|
+    config.setup_minimum_hours_before_start = Rails.application.secrets.dig(:elections, :setup_minimum_hours_before_start).presence || 3
+    config.start_vote_maximum_hours_before_start = Rails.application.secrets.dig(:elections, :start_vote_maximum_hours_before_start).presence || 6
+    config.voter_token_expiration_minutes = Rails.application.secrets.dig(:elections, :voter_token_expiration_minutes).presence || 120
+  end
+
+  Decidim::Votings.configure do |config|
+    config.check_census_max_requests = Rails.application.secrets.dig(:elections, :votings, :check_census_max_requests).presence || 5
+    config.throttling_period = Rails.application.secrets.dig(:elections, :votings, :throttling_period).to_i.minutes
+  end
+
+  Decidim::Votings::Census.configure do |config|
+    config.census_access_codes_export_expiry_time = Rails.application.secrets.dig(:elections, :votings, :census, :access_codes_export_expiry_time).to_i.days
+  end
 end
 
 Rails.application.config.i18n.available_locales = Decidim.available_locales