decidim-generators 0.27.5 → 0.28.0.rc4

data/README.md

@@ -28,14 +28,14 @@ require in your final decidim application in order to use it. To do that, you
 need to include the plugin in your application's `Gemfile`.
 
 For example, if you generated your component at
-`~/decidim-module-experimental_component`, you'll need to edit your `Gemfile` like
+`~/decidim-module-experimental_component`, you will need to edit your `Gemfile` like
 this in order for the component to be used:
 
 ```ruby
 gem "decidim-experimental_plugin", path: "~/decidim-module-experimental_plugin"
 ```
 
-Once you do that, and boot your application, you'll see the new component being
+Once you do that, and boot your application, you will see the new component being
 offered in the "New component" selector on the "Components" section of any
 participatory space in the admin dashboard.
 

data/lib/decidim/generators/app_generator.rb

@@ -55,11 +55,11 @@ module Decidim
 
       class_option :skip_bundle, type: :boolean,
                                  default: true, # this is to avoid installing gems in this step yet (done by InstallGenerator)
-                                 desc: "Don't run bundle install"
+                                 desc: "Do not run bundle install"
 
       class_option :skip_gemfile, type: :boolean,
                                   default: false,
-                                  desc: "Don't generate a Gemfile for the application"
+                                  desc: "Do not generate a Gemfile for the application"
 
       class_option :demo, type: :boolean,
                           default: false,
@@ -71,7 +71,7 @@ module Decidim
 
       class_option :force_ssl, type: :string,
                                default: "true",
-                               desc: "Doesn't force to use ssl"
+                               desc: "Does not force to use ssl"
 
       class_option :locales, type: :string,
                              default: "",
@@ -87,11 +87,16 @@ module Decidim
 
       class_option :skip_webpack_install, type: :boolean,
                                           default: true,
-                                          desc: "Don't run Webpack install"
+                                          desc: "Do not run Webpack install"
 
       class_option :dev_ssl, type: :boolean,
                              default: false,
-                             desc: "Don't add Puma development SSL configuration options"
+                             desc: "Do not add Puma development SSL configuration options"
+
+      # we disable the webpacker installation as we will use shakapacker
+      def webpacker_gemfile_entry
+        []
+      end
 
       def database_yml
         template "database.yml.erb", "config/database.yml", force: true
@@ -122,11 +127,26 @@ module Decidim
         template "LICENSE-AGPLv3.txt", "LICENSE-AGPLv3.txt"
       end
 
+      def rubocop
+        copy_file ".rubocop.yml", ".rubocop.yml"
+      end
+
+      def ruby_version
+        copy_file ".ruby-version", ".ruby-version", force: true
+      end
+
+      def node_version
+        copy_file ".node-version", ".node-version"
+      end
+
       def gemfile
         return if options[:skip_gemfile]
 
         if branch.present?
           get target_gemfile, "Gemfile", force: true
+          append_file "Gemfile", %(\ngem "net-imap", "~> 0.2.3", group: :development)
+          append_file "Gemfile", %(\ngem "net-pop", "~> 0.1.1", group: :development)
+          append_file "Gemfile", %(\ngem "net-smtp", "~> 0.3.1", group: :development)
           get "#{target_gemfile}.lock", "Gemfile.lock", force: true
         else
           copy_file target_gemfile, "Gemfile", force: true
@@ -139,7 +159,7 @@ module Decidim
 
         gsub_file "Gemfile", /gem "decidim-dev".*/, "gem \"decidim-dev\", #{gem_modifier}"
 
-        %w(conferences consultations elections initiatives templates).each do |component|
+        %w(conferences design elections initiatives templates).each do |component|
           if options[:demo]
             gsub_file "Gemfile", /gem "decidim-#{component}".*/, "gem \"decidim-#{component}\", #{gem_modifier}"
           else
@@ -209,6 +229,16 @@ module Decidim
         prepend_to_file "config/spring.rb", "require \"decidim/spring\"\n\n"
       end
 
+      def tweak_csp_initializer
+        return unless File.exist?("config/initializers/content_security_policy.rb")
+
+        remove_file("config/initializers/content_security_policy.rb")
+        create_file "config/initializers/content_security_policy.rb" do
+          %(# For tuning the Content Security Policy, check the Decidim documentation site
+# https://docs.decidim.org/develop/en/customize/content_security_policy)
+        end
+      end
+
       def puma_ssl_options
         return unless options[:dev_ssl]
 
@@ -227,8 +257,29 @@ module Decidim
         CONFIG
       end
 
-      def add_ignore_uploads
-        append_file ".gitignore", "\n# Ignore public uploads\npublic/uploads" unless options["skip_git"]
+      def modify_gitignore
+        return if options[:skip_git]
+
+        append_file ".gitignore", <<~GITIGNORE
+
+          # Ignore env configuration files
+          .env
+          .envrc
+          .rbenv-vars
+
+          # Ignore the files and folders generated through Webpack
+          /public/decidim-packs
+          /public/packs-test
+          /public/sw.js
+          /public/sw.js.map
+
+          # Ignore node modules
+          /node_modules
+        GITIGNORE
+      end
+
+      def add_ignore_tailwind_configuration
+        append_file ".gitignore", "\n\n# Ignore Tailwind configuration\ntailwind.config.js" unless options["skip_git"]
       end
 
       def remove_default_error_pages
@@ -236,6 +287,10 @@ module Decidim
         remove_file "public/500.html"
       end
 
+      def remove_default_favicon
+        remove_file "public/favicon.ico"
+      end
+
       def decidim_initializer
         copy_file "initializer.rb", "config/initializers/decidim.rb"
 
@@ -262,6 +317,26 @@ module Decidim
                   "# config.available_locales = Rails.application.secrets.decidim[:available_locales].presence || [:en]"
       end
 
+      def dev_performance_config
+        gsub_file "config/environments/development.rb", /^end\n$/, <<~CONFIG
+
+            # Performance configs for local testing
+            if ENV.fetch("RAILS_BOOST_PERFORMANCE", false).to_s == "true"
+              # Indicate boost performance mode
+              config.boost_performance = true
+              # Enable caching and eager load
+              config.eager_load = true
+              config.cache_classes = true
+              # Logging
+              config.log_level = :info
+              config.action_view.logger = nil
+              # Compress the HTML responses with gzip
+              config.middleware.use Rack::Deflater
+            end
+          end
+        CONFIG
+      end
+
       def authorization_handler
         return unless options[:demo]
 

data/lib/decidim/generators/app_templates/.node-version

@@ -0,0 +1 @@
+18.17.1

data/lib/decidim/generators/app_templates/.rubocop.yml

@@ -0,0 +1,2 @@
+inherit_gem:
+  decidim-dev: rubocop-decidim.yml

data/lib/decidim/generators/app_templates/.ruby-version

@@ -0,0 +1 @@
+3.1.1

data/lib/decidim/generators/app_templates/README.md.erb

@@ -6,17 +6,12 @@ This is the open-source repository for <%= app_name %>, based on [Decidim](https
 
 ## Setting up the application
 
-You will need to do some steps before having the app working properly once you've deployed it:
+You will need to do some steps before having the app working properly once you have deployed it:
 
-1. Open a Rails console in the server: `bundle exec rails console`
-2. Create a System Admin user:
-```ruby
-user = Decidim::System::Admin.new(email: <email>, password: <password>, password_confirmation: <password>)
-user.save!
-```
-3. Visit `<your app url>/system` and login with your system admin credentials
-4. Create a new organization. Check the locales you want to use for that organization, and select a default locale.
-5. Set the correct default host for the organization, otherwise the app will not work properly. Note that you need to include any subdomain you might be using.
-6. Fill the rest of the form and submit it.
+1. Create a System Admin user: `bin/rails decidim_system:create_admin`
+1. Visit `<your app url>/system` and login with your system admin credentials
+1. Create a new organization. Check the locales you want to use for that organization, and select a default locale.
+1. Set the correct default host for the organization, otherwise the app will not work properly. Note that you need to include any subdomain you might be using.
+1. Fill the rest of the form and submit it.
 
-You're good to go!
+You are good to go!

data/lib/decidim/generators/app_templates/another_dummy_authorization_handler.rb

@@ -9,7 +9,7 @@ class AnotherDummyAuthorizationHandler < Decidim::AuthorizationHandler
   validate :valid_passport_number
 
   def metadata
-    super.merge(passport_number: passport_number, postal_code: postal_code)
+    super.merge(passport_number:, postal_code:)
   end
 
   def unique_id

data/lib/decidim/generators/app_templates/budgets_workflow_random.rb

@@ -5,7 +5,7 @@
 # Note: random selection should be deterministic for the same user and the same budgets component.
 # As the budget resources list could change and affect the random selection, it also allows to finish orders created on other budgets.
 class BudgetsWorkflowRandom < Decidim::Budgets::Workflows::Base
-  # Highlight the resource if the user didn't vote and is allowed to vote on it.
+  # Highlight the resource if the user did not vote and is allowed to vote on it.
   def highlighted?(resource)
     vote_allowed?(resource)
   end

data/lib/decidim/generators/app_templates/bullet_initializer.rb

@@ -1,6 +1,6 @@
 # frozen_string_literal: true
 
-if defined?(Bullet)
+if defined?(Bullet) && !Rails.application.config.try(:boost_performance)
   Rails.application.config.after_initialize do
     Bullet.enable = true
     Bullet.bullet_logger = true

data/lib/decidim/generators/app_templates/database.yml.erb

@@ -41,7 +41,7 @@ development:
   #password:
 
   # Connect on a TCP socket. Omitted by default since the client uses a
-  # domain socket that doesn't need configuration. Windows does not have
+  # domain socket that does not need configuration. Windows does not have
   # domain sockets, so uncomment these lines.
   #host: localhost
 

data/lib/decidim/generators/app_templates/decidim_application.scss

@@ -2,6 +2,7 @@
 // Notice that this file is included at the very end of the stylesheets packs to have
 // more priority
 //
-// To override CSS variables or Foundation settings use _decidim-settings.scss
+// To override the Tailwind CSS configuration you can do so by following the instructions
+// available at https://docs.decidim.org/en/develop/customize/styles.html#_tailwind_css
 //
 // By default this is empty.

data/lib/decidim/generators/app_templates/dummy_authorization_handler.rb

@@ -43,7 +43,7 @@ class DummyAuthorizationHandler < Decidim::AuthorizationHandler
   # be created or not, you should return a Boolean value.
   #
   # Note that if you set some validations and overwrite this method, then the
-  # validations will not run, so it's easier to remove this method and rewrite
+  # validations will not run, so it is easier to remove this method and rewrite
   # your logic using ActiveModel validations.
   #
   # def valid?
@@ -66,10 +66,10 @@ class DummyAuthorizationHandler < Decidim::AuthorizationHandler
   # can do it here.
   #
   # You must return a Hash that will be serialized to the authorization when
-  # it's created, and available though authorization.metadata
+  # it is created, and available though authorization.metadata
   #
   def metadata
-    super.merge(document_number: document_number, postal_code: postal_code, scope_id: scope_id)
+    super.merge(document_number:, postal_code:, scope_id:)
   end
 
   private
@@ -105,7 +105,7 @@ class DummyAuthorizationHandler < Decidim::AuthorizationHandler
         if disallowed_user_postal_code
           if user_postal_code
             i18n_postal_codes_key = "extra_explanation.user_postal_codes"
-            user_postal_code_params = { user_postal_code: user_postal_code }
+            user_postal_code_params = { user_postal_code: }
           else
             i18n_postal_codes_key = "extra_explanation.postal_codes"
             user_postal_code_params = {}
@@ -126,7 +126,7 @@ class DummyAuthorizationHandler < Decidim::AuthorizationHandler
         if disallowed_user_user_scope
           if user_scope_id
             i18n_scope_key = "extra_explanation.user_scope"
-            user_scope_params = { user_scope_name: user_scope_name }
+            user_scope_params = { user_scope_name: }
           else
             i18n_scope_key = "extra_explanation.scope"
             user_scope_params = {}

data/lib/decidim/generators/app_templates/initializer.rb

@@ -40,6 +40,11 @@ Decidim.configure do |config|
   # Enable the service worker. By default is disabled in development and enabled in the rest of environments
   config.service_worker_enabled = Rails.application.secrets.decidim[:service_worker_enabled].present?
 
+  # Sets the list of static pages' slugs that can include content blocks.
+  # By default is only enabled in the terms-of-service static page to allow a summary to be added and include
+  # sections with a two-pane view
+  config.page_blocks = Rails.application.secrets.decidim[:page_blocks].presence || %w(terms-of-service)
+
   # Map and Geocoder configuration
   #
   # See Decidim docs at https://docs.decidim.org/en/develop/services/maps.html
@@ -336,6 +341,9 @@ Decidim.configure do |config|
   #
   # config.machine_translation_service = "MyTranslationService"
 
+  # Defines the social networking services used for social sharing
+  config.social_share_services = Rails.application.secrets.decidim[:social_share_services]
+
   # Defines the name of the cookie used to check if the user allows Decidim to
   # set cookies.
   config.consent_cookie_name = Rails.application.secrets.decidim[:consent_cookie_name] if Rails.application.secrets.decidim[:consent_cookie_name].present?
@@ -370,6 +378,10 @@ Decidim.configure do |config|
   #   }
   # ]
 
+  # Defines additional content security policies following the structure
+  # Read more: https://docs.decidim.org/en/develop/configure/initializer#_content_security_policy
+  config.content_security_policies_extra = {}
+
   # Admin admin password configurations
   Rails.application.secrets.dig(:decidim, :admin_password, :strong).tap do |strong_pw|
     # When the strong password is not configured, default to true
@@ -388,7 +400,8 @@ Decidim.configure do |config|
   end
   config.follow_http_x_forwarded_host = Rails.application.secrets.decidim[:follow_http_x_forwarded_host].present?
   config.maximum_conversation_message_length = Rails.application.secrets.decidim[:maximum_conversation_message_length].to_i
-  config.password_blacklist = Rails.application.secrets.decidim[:password_blacklist] if Rails.application.secrets.decidim[:password_blacklist].present?
+  config.password_similarity_length = Rails.application.secrets.decidim[:password_similarity_length] if Rails.application.secrets.decidim[:password_similarity_length].present?
+  config.denied_passwords = Rails.application.secrets.decidim[:denied_passwords] if Rails.application.secrets.decidim[:denied_passwords].present?
   config.allow_open_redirects = Rails.application.secrets.decidim[:allow_open_redirects] if Rails.application.secrets.decidim[:allow_open_redirects].present?
 end
 
@@ -437,12 +450,6 @@ if Decidim.module_installed? :accountability
   end
 end
 
-if Decidim.module_installed? :consultations
-  Decidim::Consultations.configure do |config|
-    config.stats_cache_expiration_time = Rails.application.secrets.dig(:decidim, :consultations, :stats_cache_expiration_time).to_i.minutes
-  end
-end
-
 if Decidim.module_installed? :initiatives
   Decidim::Initiatives.configure do |config|
     unless Rails.application.secrets.dig(:decidim, :initiatives, :creation_enabled) == "auto"
@@ -466,9 +473,10 @@ end
 
 if Decidim.module_installed? :elections
   Decidim::Elections.configure do |config|
-    config.setup_minimum_hours_before_start = Rails.application.secrets.dig(:elections, :setup_minimum_hours_before_start).presence || 3
+    config.setup_minimum_hours_before_start = Rails.application.secrets.dig(:elections, :setup_minimum_hours_before_start).presence || 1
     config.start_vote_maximum_hours_before_start = Rails.application.secrets.dig(:elections, :start_vote_maximum_hours_before_start).presence || 6
     config.voter_token_expiration_minutes = Rails.application.secrets.dig(:elections, :voter_token_expiration_minutes).presence || 120
+    config.document_types = Rails.application.secrets.dig(:elections, :document_types).presence || %w(identification_number passport)
   end
 
   Decidim::Votings.configure do |config|

data/lib/decidim/generators/app_templates/rack_profiler_initializer.rb

@@ -1,8 +1,9 @@
 # frozen_string_literal: true
 
-if Rails.env.development?
+if Rails.env.development? && !Rails.application.config.try(:boost_performance)
   require "rack-mini-profiler"
 
   # initialization is skipped so trigger it
   Rack::MiniProfilerRails.initialize!(Rails.application)
+  Rack::MiniProfiler.config.skip_paths << "/favicon.ico"
 end

data/lib/decidim/generators/app_templates/secrets.yml.erb

@@ -4,11 +4,11 @@
 # If you change this key, all old signed cookies will become invalid!
 
 # Make sure the secret is at least 30 characters and all random,
-# no regular words or you'll be exposed to dictionary attacks.
+# no regular words or you will be exposed to dictionary attacks.
 # You can use `rails secret` to generate a secure secret key.
 
 # Make sure the secrets in this file are kept private
-# if you're sharing your code publicly.
+# if you are sharing your code publicly.
 
 decidim_default: &decidim_default
   application_name: <%%= Decidim::Env.new("DECIDIM_APPLICATION_NAME", "My Application Name").to_json %>
@@ -38,9 +38,12 @@ decidim_default: &decidim_default
   enable_remember_me: <%%= Decidim::Env.new("DECIDIM_ENABLE_REMEMBER_ME", "auto").default_or_present_if_exists.to_s %>
   follow_http_x_forwarded_host: <%%= Decidim::Env.new("DECIDIM_FOLLOW_HTTP_X_FORWARDED_HOST").to_boolean_string %>
   maximum_conversation_message_length: <%%= Decidim::Env.new("DECIDIM_MAXIMUM_CONVERSATION_MESSAGE_LENGTH", "1000").to_i %>
-  password_blacklist: <%%= Decidim::Env.new("DECIDIM_PASSWORD_BLACKLIST").to_array(separator: ", ").to_json %>
+  password_similarity_length: <%%= Decidim::Env.new("DECIDIM_PASSWORD_SIMILARITY_LENGTH", 4).to_i %>
+  denied_passwords: <%%= Decidim::Env.new("DECIDIM_DENIED_PASSWORDS").to_array(separator: ", ").to_json %>
   allow_open_redirects: <%%= Decidim::Env.new("DECIDIM_ALLOW_OPEN_REDIRECTS").to_boolean_string %>
+  social_share_services: <%%= Decidim::Env.new("DECIDIM_SOCIAL_SHARE_SERVICES", "X, Facebook, WhatsApp, Telegram").to_array.to_json %>
   service_worker_enabled: <%%= Decidim::Env.new("DECIDIM_SERVICE_WORKER_ENABLED", Rails.env.exclude?("development")).to_boolean_string %>
+  page_blocks: <%%= Decidim::Env.new("DECIDIM_PAGE_BLOCKS", "terms-of-service").to_array %>
   admin_password:
     expiration_days: <%%= Decidim::Env.new("DECIDIM_ADMIN_PASSWORD_EXPIRATION_DAYS", 90).to_i %>
     min_length: <%%= Decidim::Env.new("DECIDIM_ADMIN_PASSWORD_MIN_LENGTH", 15).to_i %>
@@ -63,8 +66,6 @@ decidim_default: &decidim_default
     enable_proposal_linking: <%%= Decidim::Env.new("BUDGETS_ENABLE_PROPOSAL_LINKING", "auto").default_or_present_if_exists.to_s %>
   accountability:
     enable_proposal_linking: <%%= Decidim::Env.new("ACCOUNTABILITY_ENABLE_PROPOSAL_LINKING", "auto").default_or_present_if_exists.to_s %>
-  consultations:
-    stats_cache_expiration_time: <%%= Decidim::Env.new("CONSULTATIONS_STATS_CACHE_EXPIRATION_TIME", 5).to_i %>
   initiatives:
     creation_enabled: <%%= Decidim::Env.new("INITIATIVES_CREATION_ENABLED", "auto").default_or_present_if_exists.to_s %>
     similarity_threshold: <%%= Decidim::Env.new("INITIATIVES_SIMILARITY_THRESHOLD", 0.25).to_f %>
@@ -88,6 +89,8 @@ elections_default: &elections_default
   scheme_name: "dummy"
   quorum: 2
   number_of_trustees: 3
+  setup_minimum_hours_before_start: 1
+  document_types: <%%= Decidim::Env.new("ELECTIONS_DOCUMENT_TYPES", "identification_number,passport").to_array.to_json %>
 
 storage_default: &storage_default
   provider: <%%= Decidim::Env.new("STORAGE_PROVIDER", "local").to_s %>
@@ -124,13 +127,15 @@ default: &default
       enabled: <%%= Decidim::Env.new("OMNIAUTH_FACEBOOK_APP_ID").to_boolean_string %>
       app_id: <%%= ENV["OMNIAUTH_FACEBOOK_APP_ID"] %>
       app_secret: <%%= ENV["OMNIAUTH_FACEBOOK_APP_SECRET"] %>
+      icon: facebook-fill
     twitter:
       enabled: <%%= Decidim::Env.new("OMNIAUTH_TWITTER_API_KEY").to_boolean_string %>
       api_key: <%%= ENV["OMNIAUTH_TWITTER_API_KEY"] %>
       api_secret: <%%= ENV["OMNIAUTH_TWITTER_API_SECRET"] %>
+      icon: twitter-x-fill
     google_oauth2:
       enabled: <%%= Decidim::Env.new("OMNIAUTH_GOOGLE_CLIENT_ID").to_boolean_string %>
-      icon_path: decidim/brands/google.svg
+      icon: google-fill
       client_id: <%%= ENV["OMNIAUTH_GOOGLE_CLIENT_ID"] %>
       client_secret: <%%= ENV["OMNIAUTH_GOOGLE_CLIENT_SECRET"] %>
   maps:
@@ -162,7 +167,7 @@ development:
   omniauth:
     developer:
       enabled: true
-      icon: phone
+      icon: phone-line
 
 test:
   <<: *default
@@ -206,9 +211,10 @@ production:
     scheme_name: <%%= Decidim::Env.new("ELECTIONS_SCHEME_NAME", "electionguard").to_s %>
     number_of_trustees: <%%= Decidim::Env.new("ELECTIONS_NUMBER_OF_TRUSTEES").to_i %>
     quorum: <%%= Decidim::Env.new("ELECTIONS_QUORUM").to_i %>
-    setup_minimum_hours_before_start: <%%= Decidim::Env.new("ELECTIONS_SETUP_MINIMUM_HOURS_BEFORE_START", 3).to_i %>
+    setup_minimum_hours_before_start: <%%= Decidim::Env.new("ELECTIONS_SETUP_MINIMUM_HOURS_BEFORE_START", 1).to_i %>
     start_vote_maximum_hours_before_start: <%%= Decidim::Env.new("ELECTIONS_START_VOTE_MAXIMUM_HOURS_BEFORE_START", 6).to_i %>
     voter_token_expiration_minutes: <%%= Decidim::Env.new("ELECTIONS_VOTER_TOKEN_EXPIRATION_MINUTES", 120).to_i %>
+    document_types: <%%= Decidim::Env.new("ELECTIONS_DOCUMENT_TYPES", "identification_number,passport").to_array.to_json %>
     votings:
       check_census_max_requests: <%%= Decidim::Env.new("VOTINGS_CHECK_CENSUS_MAX_REQUESTS", 5).to_i %>
       throttling_period: <%%= Decidim::Env.new("VOTINGS_THROTTLING_PERIOD", 1).to_i %>

data/lib/decidim/generators/component_generator.rb

@@ -3,15 +3,26 @@
 
 require "bundler"
 require "thor"
+require "json"
 require "active_support/inflector"
 require "decidim/core/version"
+require "decidim/generators"
 
 module Decidim
   module Generators
     class ComponentGenerator < Thor
       include Thor::Actions
 
-      attr_reader :component_name, :component_module_name, :component_resource_name, :component_folder, :component_description, :core_version
+      attr_reader :component_name,
+                  :component_module_name,
+                  :component_resource_name,
+                  :component_folder,
+                  :component_description,
+                  :core_version,
+                  :npm_package_version,
+                  :required_ruby_version,
+                  :security_email,
+                  :edge_git_branch
 
       source_root File.expand_path("component_templates", __dir__)
 
@@ -24,7 +35,12 @@ module Decidim
         @component_module_name = component_name.camelize
         @component_folder = options[:destination_folder] || "decidim-module-#{component_name}"
         @core_version = Decidim::Core.version
+        @npm_package_version = "^#{semver_friendly_version}"
+        @edge_git_branch = Decidim::Generators.edge_git_branch
         @component_description = ask "Write a description for the new component:"
+        @required_ruby_version = RUBY_VERSION.length == 5 ? RUBY_VERSION[0..2] : RUBY_VERSION
+        @security_email = ask "Provide a public email in case of security concern:"
+        format_email!
 
         template "decidim-component.gemspec.erb", "#{component_folder}/decidim-#{component_name}.gemspec"
         template "Gemfile.erb", "#{component_folder}/Gemfile" if options[:external]
@@ -32,7 +48,13 @@ module Decidim
         template "LICENSE-AGPLv3.txt", "#{component_folder}/LICENSE-AGPLv3.txt"
         template "README.md.erb", "#{component_folder}/README.md"
         template "gitignore", "#{component_folder}/.gitignore"
-        template "circleci/config.yml", "#{component_folder}/.circleci/config.yml"
+        template "github/ci.yml.erb", "#{component_folder}/.github/workflows/ci_#{component_name}.yml"
+        template "package.json.erb", "#{component_folder}/package.json"
+        copy_file ".ruby-version", "#{component_folder}/.ruby-version"
+        copy_file ".node-version", "#{component_folder}/.node-version"
+        copy_file ".rubocop.yml", "#{component_folder}/.rubocop.yml"
+        copy_file ".eslintrc.json", "#{component_folder}/.eslintrc.json"
+        copy_file ".stylelintrc.json", "#{component_folder}/.stylelintrc.json"
 
         app_folder = "#{component_folder}/app"
         template "app/packs/js/entrypoint.js", "#{app_folder}/packs/entrypoints/decidim_#{component_name}.js"
@@ -42,6 +64,7 @@ module Decidim
         template "app/controllers/decidim/component/admin/application_controller.rb.erb", "#{app_folder}/controllers/decidim/#{component_name}/admin/application_controller.rb"
         template "app/helpers/decidim/component/application_helper.rb.erb", "#{app_folder}/helpers/decidim/#{component_name}/application_helper.rb"
         template "app/models/decidim/component/application_record.rb.erb", "#{app_folder}/models/decidim/#{component_name}/application_record.rb"
+        template "app/permissions/decidim/component/admin/permissions.rb.erb", "#{app_folder}/permissions/decidim/#{component_name}/admin/permissions.rb"
 
         bin_folder = "#{component_folder}/bin"
         template "bin/rails.erb", "#{bin_folder}/rails"
@@ -64,13 +87,32 @@ module Decidim
         spec_folder = "#{component_folder}/spec"
         template "spec/spec_helper.rb.erb", "#{spec_folder}/spec_helper.rb"
         template "spec/factories.rb.erb", "#{spec_folder}/factories.rb"
+        template "spec/permissions/admin/permissions_spec.rb.erb", "#{spec_folder}/permissions/admin/permissions_spec.rb"
+        template "spec/lib/version_spec.rb.erb", "#{spec_folder}/lib/decidim/#{component_name}/version_spec.rb"
 
         if options[:external]
           inside(component_folder) do
             Bundler.with_original_env { run "bundle install" }
+            Bundler.with_original_env { run "bundle lock --add-platform x86_64-linux" }
+            Bundler.with_original_env { run "bundle lock --add-platform ruby" }
           end
         end
       end
+
+      private
+
+      def format_email!
+        return unless @security_email&.include?("@")
+
+        split = @security_email.split("@")
+        email = split.first
+        domain = split.last.gsub(".", " [dot] ")
+        @security_email = "#{email} [at] #{domain}"
+      end
+
+      def semver_friendly_version
+        Decidim::Generators.version.gsub(/\.pre/, "-pre").gsub(/\.dev/, "-dev").gsub(/.rc(\d*)/, "-rc\\1")
+      end
     end
   end
 end

data/lib/decidim/generators/component_templates/.eslintrc.json

@@ -0,0 +1,3 @@
+{
+  "extends": ["@decidim"]
+}

data/lib/decidim/generators/component_templates/.node-version

@@ -0,0 +1 @@
+18.17.1

data/lib/decidim/generators/component_templates/.rubocop.yml

@@ -0,0 +1,2 @@
+inherit_gem:
+  decidim-dev: rubocop-decidim.yml

data/lib/decidim/generators/component_templates/.ruby-version

@@ -0,0 +1 @@
+3.1.1

data/lib/decidim/generators/component_templates/.stylelintrc.json

@@ -0,0 +1,3 @@
+{
+  "extends": ["@decidim/stylelint-config"]
+}

data/lib/decidim/generators/component_templates/README.md.erb

@@ -23,7 +23,13 @@ bundle
 
 ## Contributing
 
-See [Decidim](https://github.com/decidim/decidim).
+Contributions are welcome !
+
+We expect the contributions to follow the [Decidim's contribution guide](https://github.com/decidim/decidim/blob/develop/CONTRIBUTING.adoc).
+
+## Security
+
+Security is very important to us. If you have any issue regarding security, please disclose the information responsibly by sending an email to __<%= security_email %>__ and not by creating a Github issue.
 
 ## License
 

data/lib/decidim/generators/component_templates/app/controllers/decidim/component/admin/application_controller.rb.erb

@@ -9,6 +9,17 @@ module Decidim
       # Note that it inherits from `Decidim::Admin::Components::BaseController`, which
       # override its layout and provide all kinds of useful methods.
       class ApplicationController < Decidim::Admin::Components::BaseController
+        def permission_class_chain
+          [::Decidim::<%= component_module_name %>::Admin::Permissions] + super
+        end
+
+        def user_not_authorized_path
+          decidim.root_path
+        end
+
+        def user_has_no_permission_path
+          decidim.root_path
+        end
       end
     end
   end

data/lib/decidim/generators/component_templates/app/permissions/decidim/component/admin/permissions.rb.erb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+module Decidim
+  module <%= component_module_name %>
+    module Admin
+      class Permissions < Decidim::DefaultPermissions
+        def permissions
+          return permission_action if permission_action.scope != :admin
+          return permission_action unless user&.admin?
+
+          allow! if can_access?
+
+          permission_action
+        end
+
+        def can_access?
+          permission_action.subject == :<%= component_name.to_sym %> &&
+            permission_action.action == :read
+        end
+      end
+    end
+  end
+end