decidim-system 0.19.1 → 0.23.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 441f74bf9e266efc84367e6f448c90674dc636f8a27486af0d73f7016bce6dfe
-  data.tar.gz: 7f8f565f3cec64fc28377c077fe29f5ad9e9899c9b8d2d9b9d1cb2246e3a1189
+  metadata.gz: 5faf98a3152e536e389d9fb86ae7e604b2bc56bada412fdb799fa4371544839e
+  data.tar.gz: 3a94d7d2a997d7996ac5869cdc589770b2925eaf409f4c5c8029eeea616a1fb2
 SHA512:
-  metadata.gz: 4be3847813af41392dc4796c29968e099ff7150fa0bc92c400ee30fe216172264974a31f71f156db030def8b5884cf4a861d8e7c13f28ea345314bbe6cbdbf64
-  data.tar.gz: 479d45242016df2e19fce5ee09ac65c50eb16b01565ef4108cfa02423ac8d050b8d9ec68b0dbd812f7b64564c6405654d90bea68256de8f11e00810b6b56bdbf
+  metadata.gz: 76c65b21024ee256684a009fe7791662f1099165baaa2c35ca68c8e1bc9ef8a6ad284a5f6b432fd3a07eea2e46f5cec0adf29c84ae05ae09bec27a32d467bd97
+  data.tar.gz: 417789586417f17361ba78e29fe554c7c121d8a178aba6cdb5470ff3bfaa9440fa52757f2d71f9ee9263e8b498477d0b7808c52a543b60b8d8676fd3686ce178

data/app/assets/javascripts/decidim/system/application.js.es6

@@ -1,8 +1,10 @@
-// = require jquery
+// = require jquery3
 // = require foundation
 // = require rails-ujs
 // = require decidim/editor
+// = require decidim/input_tags
 // = require_self
+// = require decidim/configuration
 
 $(() => {
   $(document).foundation();

data/app/assets/stylesheets/decidim/system/_forms.scss

@@ -0,0 +1,36 @@
+@import "tagsinput";
+
+$tag-padding: .25rem;
+$tag-margin: .2rem;
+
+.input__tag{
+  background-color: rgba($medium-gray, .5);
+  border-radius: $input-radius;
+  padding: $tag-padding;
+  display: inline-block;
+  cursor: pointer;
+  -webkit-user-select: none;
+  -moz-user-select: none;
+  -ms-user-select: none;
+  user-select: none;
+}
+
+// Override defaults
+.bootstrap-tagsinput{
+  margin-bottom: $form-spacing;
+
+  // Use foundation precalculated methods to get accurate form css properties
+  $height: ($input-font-size * unitless-calc($input-line-height)) + (get-side($input-padding, 'top') + get-side($input-padding, 'bottom'));
+  $tag-line-height: rem-calc(22);
+  $span-height: ($input-font-size * unitless-calc($tag-line-height)) + (get-side($tag-padding, 'top') + get-side($tag-padding, 'bottom')) - rem-calc(1);
+
+  width: 100%;
+  min-height: $height;
+  padding-bottom: $tag-margin / 4;
+
+  .tag{
+    color: inherit;
+    margin-right: 0; // fix whitespace
+    margin-bottom: $tag-margin;
+  }
+}

data/app/assets/stylesheets/decidim/system/_foundation_and_overrides.scss

@@ -2,6 +2,7 @@
 
 @import "settings";
 @import "foundation";
+@import "foundation-overrides/components/button-group";
 
 // If you'd like to include motion-ui the foundation-rails gem comes prepackaged with it, uncomment the 3 @imports, if you are not using the gem you need to install the motion-ui sass package.
 //

data/app/assets/stylesheets/decidim/system/_sidebar.scss

@@ -1,5 +1,4 @@
 @mixin menu-title{
-  text-transform: uppercase;
   letter-spacing: 5px;
 }
 
@@ -48,7 +47,6 @@
     }
 
     li{
-      text-transform: uppercase;
       font-weight: bold;
       font-size: .9em;
       border-left: 2px solid transparent;

data/app/assets/stylesheets/decidim/system/application.scss

@@ -4,6 +4,7 @@
 @import "sidebar";
 @import "tables";
 @import "actions";
+@import "forms";
 @import "decidim/editor";
 @import "decidim/utils/fontface";
 

data/app/commands/decidim/system/create_default_content_blocks.rb

@@ -24,7 +24,7 @@ module Decidim
           Decidim::ContentBlock.create(
             decidim_organization_id: organization.id,
             weight: weight,
-            scope: :homepage,
+            scope_name: :homepage,
             manifest_name: manifest.name,
             published_at: Time.current
           )

data/app/commands/decidim/system/create_oauth_application.rb

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # Creates an OAuthApplication.
+    class CreateOAuthApplication < Rectify::Command
+      # Initializes the command.
+      #
+      # form - The source fo data for this OAuthApplication.
+      def initialize(form)
+        @form = form
+      end
+
+      def call
+        return broadcast(:invalid) unless @form.valid?
+
+        @application = Decidim.traceability.create!(
+          OAuthApplication,
+          @form.current_user,
+          organization: @form.current_organization,
+          name: @form.name,
+          decidim_organization_id: @form.decidim_organization_id,
+          organization_name: @form.organization_name,
+          organization_url: @form.organization_url,
+          organization_logo: @form.organization_logo,
+          redirect_uri: @form.redirect_uri,
+          scopes: "public"
+        )
+
+        broadcast(:ok, @application)
+      rescue ActiveRecord::RecordInvalid
+        @form.errors.add(:organization_logo, @application.errors[:organization_logo]) if @application.errors.include? :organization_logo
+        broadcast(:invalid)
+      end
+    end
+  end
+end

data/app/commands/decidim/system/destroy_oauth_application.rb

@@ -0,0 +1,39 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # This command deals with destroying an application from the admin panel.
+    class DestroyOAuthApplication < Rectify::Command
+      # Public: Initializes the command.
+      #
+      # application - The OAuthApplication to be destroyed.
+      # user        - The user that destroys the application.
+      def initialize(application, current_user)
+        @application = application
+        @current_user = current_user
+      end
+
+      # Public: Executes the command.
+      #
+      # Broadcasts :ok if it got destroyed
+      def call
+        destroy_application
+        broadcast(:ok)
+      end
+
+      private
+
+      attr_reader :application, :current_user
+
+      def destroy_application
+        Decidim.traceability.perform_action!(
+          "delete",
+          application,
+          current_user
+        ) do
+          application.destroy!
+        end
+      end
+    end
+  end
+end

data/app/commands/decidim/system/register_organization.rb

@@ -57,8 +57,10 @@ module Decidim
           badges_enabled: true,
           user_groups_enabled: true,
           default_locale: form.default_locale,
+          omniauth_settings: form.encrypted_omniauth_settings,
           smtp_settings: form.encrypted_smtp_settings,
-          send_welcome_notification: true
+          send_welcome_notification: true,
+          file_upload_settings: form.file_upload_settings.final
         )
       end
 

data/app/commands/decidim/system/update_oauth_application.rb

@@ -0,0 +1,39 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # Updates the OAuth application given form data.
+    class UpdateOAuthApplication < Rectify::Command
+      # Initializes the command.
+      #
+      # application - The OAuthApplication to update.
+      # form        - The form object containing the data to update.
+      # user        - The user that updates the application.
+      def initialize(application, form, user)
+        @application = application
+        @form = form
+        @user = user
+      end
+
+      def call
+        return broadcast(:invalid) unless @form.valid?
+
+        @application = Decidim.traceability.update!(
+          @application,
+          @user,
+          name: @form.name,
+          decidim_organization_id: @form.decidim_organization_id,
+          organization_name: @form.organization_name,
+          organization_url: @form.organization_url,
+          organization_logo: @form.organization_logo,
+          redirect_uri: @form.redirect_uri
+        )
+
+        broadcast(:ok, @application)
+      rescue ActiveRecord::RecordInvalid
+        @form.errors.add(:organization_logo, @application.errors[:organization_logo]) if @application.errors.include? :organization_logo
+        broadcast(:invalid)
+      end
+    end
+  end
+end

data/app/commands/decidim/system/update_organization.rb

@@ -27,6 +27,9 @@ module Decidim
           save_organization
         end
 
+        # Ensure the runtime settings are updated
+        OrganizationSettings.reload(organization)
+
         broadcast(:ok)
       rescue ActiveRecord::RecordInvalid, ActiveRecord::RecordNotUnique
         broadcast(:invalid)
@@ -47,7 +50,9 @@ module Decidim
         organization.force_users_to_authenticate_before_access_organization = form.force_users_to_authenticate_before_access_organization
         organization.available_authorizations = form.clean_available_authorizations
         organization.users_registration_mode = form.users_registration_mode
+        organization.omniauth_settings = form.encrypted_omniauth_settings
         organization.smtp_settings = form.encrypted_smtp_settings
+        organization.file_upload_settings = form.file_upload_settings.final
 
         organization.save!
       end

data/app/controllers/decidim/system/oauth_applications_controller.rb

@@ -0,0 +1,84 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # Controller that allows managing OAuth applications at the admin panel.
+    #
+    class OAuthApplicationsController < Decidim::System::ApplicationController
+      helper Decidim::Admin::AttributesDisplayHelper
+
+      def index
+        @oauth_applications = collection.page(params[:page]).per(15)
+      end
+
+      def show
+        @oauth_application = collection.find(params[:id])
+      end
+
+      def new
+        @form = form(OAuthApplicationForm).instance
+      end
+
+      def create
+        @form = form(OAuthApplicationForm).from_params(params)
+
+        CreateOAuthApplication.call(@form) do
+          on(:ok) do
+            flash[:notice] = I18n.t("oauth_applications.create.success", scope: "decidim.system")
+            redirect_to action: :index
+          end
+
+          on(:invalid) do
+            flash.now[:alert] = I18n.t("oauth_applications.create.error", scope: "decidim.system")
+            render :new
+          end
+        end
+      end
+
+      def edit
+        @oauth_application = collection.find(params[:id])
+        @form = form(OAuthApplicationForm).from_model(@oauth_application)
+      end
+
+      def update
+        @oauth_application = collection.find(params[:id])
+        @form = form(OAuthApplicationForm).from_params({ organization_logo: @oauth_application.organization_logo }.merge(params.to_unsafe_h))
+
+        UpdateOAuthApplication.call(@oauth_application, @form, current_user) do
+          on(:ok) do |_application|
+            flash[:notice] = I18n.t("oauth_applications.update.success", scope: "decidim.system")
+            redirect_to action: :index
+          end
+
+          on(:invalid) do |application|
+            @oauth_application = application
+            flash.now[:error] = I18n.t("oauth_applications.update.error", scope: "decidim.system")
+            render action: :edit
+          end
+        end
+      end
+
+      def destroy
+        @oauth_application = collection.find(params[:id])
+
+        DestroyOAuthApplication.call(@oauth_application, current_user) do
+          on(:ok) do
+            flash[:notice] = I18n.t("oauth_applications.destroy.success", scope: "decidim.system")
+            redirect_to action: :index
+          end
+
+          on(:invalid) do
+            flash.now[:error] = I18n.t("oauth_applications.destroy.error", scope: "decidim.system")
+            redirect_to :back
+          end
+        end
+      end
+
+      private
+
+      def collection
+        @collection ||= Decidim::OAuthApplication.all.includes([:organization])
+      end
+    end
+  end
+end

data/app/controllers/decidim/system/organizations_controller.rb

@@ -5,10 +5,12 @@ module Decidim
     # Controller to manage Organizations (tenants).
     #
     class OrganizationsController < Decidim::System::ApplicationController
-      helper_method :current_organization
+      helper_method :current_organization, :provider_enabled?
+      helper Decidim::OmniauthHelper
 
       def new
         @form = form(RegisterOrganizationForm).instance
+        @form.file_upload_settings = form(FileUploadSettingsForm).from_model({})
       end
 
       def create
@@ -56,12 +58,18 @@ module Decidim
         end
       end
 
+      private
+
       # The current organization for the request.
       #
       # Returns an Organization.
       def current_organization
         @organization
       end
+
+      def provider_enabled?(provider)
+        Rails.application.secrets.dig(:omniauth, provider, :enabled)
+      end
     end
   end
 end

data/app/forms/decidim/system/file_upload_settings_form.rb

@@ -0,0 +1,70 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # A form object used to update organization file upload settings from the
+    # system dashboard.
+    #
+    class FileUploadSettingsForm < Form
+      include JsonbAttributes
+
+      mimic :organization_file_uploads
+
+      attribute :allowed_file_extensions, Hash[Symbol => String]
+      attribute :allowed_content_types, Hash[Symbol => String]
+      attribute :maximum_file_size, Hash[Symbol => Float]
+
+      def map_model(settings_hash)
+        settings_hash = begin
+          if settings_hash.is_a?(Hash)
+            default_settings.deep_merge(settings_hash.deep_stringify_keys)
+          else
+            default_settings
+          end
+        end
+
+        attribute_set.each do |attr|
+          key = attr.name.to_s
+          next unless settings_hash.has_key?(key)
+
+          # For the view, the array values need to be in comma separated format
+          # in order for them to work correctly with the tags inputs.
+          value = Rectify::FormAttribute.new(attr).value_from(
+            settings_hash[key]
+          )
+          value.each do |k, v|
+            value[k] = v.join(",") if v.is_a?(Array)
+          end
+
+          self[key] = value
+        end
+      end
+
+      # This turns the attributes passed from the view into the final
+      # configuration array. Due to the UI component used for the array values,
+      # those values need to be handled as a single comma separated string in
+      # the view layer. Before we save those attributes, they need to be
+      # converted into arrays which is what this method does.
+      def final
+        csv_attributes = [:allowed_file_extensions, :allowed_content_types]
+        attributes.tap do |attr|
+          csv_attributes.each do |key|
+            attr[key] = csv_array_setting(attr[key])
+          end
+        end
+      end
+
+      private
+
+      def default_settings
+        Decidim::OrganizationSettings.default(:upload)
+      end
+
+      def csv_array_setting(original)
+        original.map do |key, value|
+          [key, value.split(",")]
+        end.to_h
+      end
+    end
+  end
+end

data/app/forms/decidim/system/oauth_application_form.rb

@@ -0,0 +1,35 @@
+# frozen_string_literal: true
+
+module Decidim
+  module System
+    # The form that validates the data to construct a valid OAuthApplication.
+    class OAuthApplicationForm < Decidim::Form
+      include Decidim::HasUploadValidations
+
+      mimic :oauth_application
+
+      attribute :name, String
+      attribute :decidim_organization_id, Integer
+      attribute :organization_name, String
+      attribute :organization_url, String
+      attribute :organization_logo
+      attribute :redirect_uri, String
+
+      validates :name, :redirect_uri, :decidim_organization_id, :organization_name, :organization_url, :organization_logo, presence: true
+      validates :organization_logo, passthru: { to: Decidim::OAuthApplication }
+      validate :redirect_uri_is_ssl
+
+      alias organization current_organization
+
+      private
+
+      def redirect_uri_is_ssl
+        return if redirect_uri.blank?
+
+        uri = URI.parse(redirect_uri)
+
+        errors.add(:redirect_uri, :must_be_ssl) if uri.host != "localhost" && uri.scheme != "https"
+      end
+    end
+  end
+end