decidim 0.6.7 → 0.6.8

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d677c7d1a8ff3ac01934a64a809f4e4605f86613
-  data.tar.gz: 300691aa26d23f72151cd7fb5f8ffd01c68e0cbc
+  metadata.gz: 0a8e4afd7b99a47464bf8688490d50e5bd9f9f21
+  data.tar.gz: 07374063bf73520642a79455ee8d393965f98afb
 SHA512:
-  metadata.gz: e4cbec9454d2dd6345342ae7fe24845cd718379e04feba94910fe882b5363d20c026ce2f9925e5ea657a555a6c07819dd1c0b7504a7a157d1f525009b00f3791
-  data.tar.gz: 0f52bc41d067a8b2a04bfb2de22d402b26eac5674b56b0a0d3208244456233c866a9e51f10a4d3b1725c54935aaa9f98e785c0f1ff70536ea82d235e886b9219
+  metadata.gz: f54954629fc50be237bfbb062b01ecbad58eb9b3c85318e4f7f32e87af96b43b3d81ce93a6226d71c30b5738cafaa4b043bf3059553e77471dbfdc1e2f47e093
+  data.tar.gz: a423c91afb7cb004e6d1316be25a75532c58f02311b8b6ed0a3e883fdd773caddaba4850b3da001626c2a0ad767ef438549509826bcf085eb031b67552085c84

data/.circleci/config.yml

@@ -2,7 +2,7 @@ version: 2
 jobs:
   build:
     docker:
-      - image: codegram/decidim:0.6.7
+      - image: codegram/decidim:0.6.8
         environment:
           SIMPLECOV: true
           DATABASE_USERNAME: postgres

data/CHANGELOG.md

@@ -1,5 +1,11 @@
 # Change Log
 
+## [v0.6.8](https://github.com/decidim/decidim/tree/v0.6.7) (2017-10-06)
+[Full Changelog](https://github.com/decidim/decidim/compare/v0.6.7...v0.6.8)
+
+**Fixed**
+- **decidim-admin**: Fix impersonation being disallowed when there's another user impersonating.
+
 ## [v0.6.7](https://github.com/decidim/decidim/tree/v0.6.7) (2017-10-06)
 [Full Changelog](https://github.com/decidim/decidim/compare/v0.6.6...v0.6.7)
 

data/Gemfile.lock

@@ -1,22 +1,22 @@
 PATH
   remote: .
   specs:
-    decidim (0.6.7)
-      decidim-admin (= 0.6.7)
-      decidim-api (= 0.6.7)
-      decidim-budgets (= 0.6.7)
-      decidim-comments (= 0.6.7)
-      decidim-core (= 0.6.7)
-      decidim-meetings (= 0.6.7)
-      decidim-pages (= 0.6.7)
-      decidim-participatory_processes (= 0.6.7)
-      decidim-proposals (= 0.6.7)
-      decidim-results (= 0.6.7)
-      decidim-surveys (= 0.6.7)
-      decidim-system (= 0.6.7)
-    decidim-admin (0.6.7)
+    decidim (0.6.8)
+      decidim-admin (= 0.6.8)
+      decidim-api (= 0.6.8)
+      decidim-budgets (= 0.6.8)
+      decidim-comments (= 0.6.8)
+      decidim-core (= 0.6.8)
+      decidim-meetings (= 0.6.8)
+      decidim-pages (= 0.6.8)
+      decidim-participatory_processes (= 0.6.8)
+      decidim-proposals (= 0.6.8)
+      decidim-results (= 0.6.8)
+      decidim-surveys (= 0.6.8)
+      decidim-system (= 0.6.8)
+    decidim-admin (0.6.8)
       active_link_to (~> 1.0.0)
-      decidim-core (= 0.6.7)
+      decidim-core (= 0.6.8)
       devise (~> 4.2)
       devise-i18n (~> 1.1.0)
       devise_invitable (~> 1.7.0)
@@ -26,29 +26,29 @@ PATH
       rectify (~> 0.9.1)
       sassc-rails (~> 1.3.0)
       select2-rails (~> 4.0.3)
-    decidim-api (0.6.7)
+    decidim-api (0.6.8)
       graphiql-rails (= 1.4.4)
       graphql (~> 1.6.0)
       rack-cors (~> 0.4.0)
       rails (~> 5.1.3)
       sprockets-es6 (~> 0.9.2)
-    decidim-budgets (0.6.7)
-      decidim-comments (= 0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-budgets (0.6.8)
+      decidim-comments (= 0.6.8)
+      decidim-core (= 0.6.8)
       kaminari (~> 1.0.1)
       rectify (~> 0.9.1)
       searchlight (~> 4.1.0)
-    decidim-comments (0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-comments (0.6.8)
+      decidim-core (= 0.6.8)
       jquery-rails (~> 4.0)
       rails (~> 5.1.3)
-    decidim-core (0.6.7)
+    decidim-core (0.6.8)
       active_link_to (~> 1.0.4)
       autoprefixer-rails (~> 7.1.1)
       cancancan (~> 2.0.0)
       carrierwave (~> 1.1.0)
       date_validator (~> 0.9.0)
-      decidim-api (= 0.6.7)
+      decidim-api (= 0.6.8)
       devise (~> 4.3)
       devise-i18n (~> 1.1.0)
       file_validators (~> 2.1.0)
@@ -76,14 +76,14 @@ PATH
       sprockets-es6 (~> 0.9.2)
       truncato (~> 0.7.9)
       wisper (~> 2.0.0)
-    decidim-dev (0.6.7)
+    decidim-dev (0.6.8)
       byebug
       capybara (~> 2.15.0)
       capybara-screenshot (~> 1.0.14)
       codecov (~> 0.1.9)
       database_cleaner (~> 1.6.0)
       db-query-matchers (~> 0.9.0)
-      decidim (= 0.6.7)
+      decidim (= 0.6.8)
       factory_girl_rails
       faker (~> 1.8.4)
       i18n-tasks (= 0.9.18)
@@ -98,39 +98,39 @@ PATH
       simplecov (~> 0.13)
       webmock (~> 3.0.1)
       wisper-rspec (~> 0.0.3)
-    decidim-meetings (0.6.7)
+    decidim-meetings (0.6.8)
       date_validator (~> 0.9)
-      decidim-core (= 0.6.7)
+      decidim-core (= 0.6.8)
       httparty (~> 0.15.0)
       icalendar (~> 2.4.1)
       jquery-tmpl-rails (~> 1.1.0)
       kaminari (~> 1.0.1)
       rectify (~> 0.8)
       searchlight (~> 4.1.0)
-    decidim-pages (0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-pages (0.6.8)
+      decidim-core (= 0.6.8)
       rectify (~> 0.9.1)
-    decidim-participatory_processes (0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-participatory_processes (0.6.8)
+      decidim-core (= 0.6.8)
       rails (~> 5.1.3)
-    decidim-proposals (0.6.7)
-      decidim-comments (= 0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-proposals (0.6.8)
+      decidim-comments (= 0.6.8)
+      decidim-core (= 0.6.8)
       kaminari (~> 1.0.1)
       rectify (~> 0.9.1)
       social-share-button (~> 0.10.0)
-    decidim-results (0.6.7)
-      decidim-comments (= 0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-results (0.6.8)
+      decidim-comments (= 0.6.8)
+      decidim-core (= 0.6.8)
       kaminari (~> 1.0.1)
       rectify (~> 0.9.1)
       searchlight (~> 4.1.0)
-    decidim-surveys (0.6.7)
-      decidim-core (= 0.6.7)
+    decidim-surveys (0.6.8)
+      decidim-core (= 0.6.8)
       jquery-tmpl-rails (~> 1.1.0)
-    decidim-system (0.6.7)
+    decidim-system (0.6.8)
       active_link_to (~> 1.0.0)
-      decidim-core (= 0.6.7)
+      decidim-core (= 0.6.8)
       devise (~> 4.2)
       devise-i18n (~> 1.1.0)
       devise_invitable (~> 1.7.1)
@@ -187,7 +187,7 @@ GEM
       public_suffix (>= 2.0.2, < 4.0)
     arel (8.0.0)
     ast (2.3.0)
-    autoprefixer-rails (7.1.4.1)
+    autoprefixer-rails (7.1.5)
       execjs
     axiom-types (0.1.1)
       descendants_tracker (~> 0.0.4)
@@ -202,7 +202,7 @@ GEM
     builder (3.2.3)
     byebug (9.1.0)
     cancancan (2.0.0)
-    capybara (2.15.3)
+    capybara (2.15.4)
       addressable
       mini_mime (>= 0.1.3)
       nokogiri (>= 1.3.3)
@@ -293,7 +293,7 @@ GEM
     graphiql-rails (1.4.4)
       rails
     graphql (1.6.8)
-    hashdiff (0.3.6)
+    hashdiff (0.3.7)
     hashie (3.5.6)
     high_voltage (3.0.0)
     highline (1.7.8)

data/decidim-admin/app/models/decidim/admin/abilities/user_manager_ability.rb

@@ -10,19 +10,22 @@ module Decidim
           super
 
           can :manage, :managed_users
+
           cannot [:new, :create], :managed_users if empty_available_authorizations?
+
           can :impersonate, Decidim::User do |user_to_impersonate|
-            user_to_impersonate.managed? && Decidim::ImpersonationLog.active.empty?
+            user_to_impersonate.managed? && Decidim::ImpersonationLog.active.where(admin: user).empty?
           end
+
           can :promote, Decidim::User do |user_to_promote|
-            user_to_promote.managed? && Decidim::ImpersonationLog.active.empty?
+            user_to_promote.managed? && Decidim::ImpersonationLog.active.where(admin: user).empty?
           end
         end
 
         private
 
         def empty_available_authorizations?
-          @context[:current_organization] && @context[:current_organization].available_authorizations.empty?
+          user.organization.available_authorizations.empty?
         end
       end
     end

data/decidim-admin/spec/models/abilities/user_manager_ability_spec.rb

@@ -3,12 +3,29 @@
 require "spec_helper"
 
 describe Decidim::Admin::Abilities::UserManagerAbility do
-  let(:user) { build(:user, :user_manager) }
+  let(:organization) { create(:organization, available_authorizations: ["dummy"]) }
+  let(:user) { create(:user, :user_manager, organization: organization) }
 
   subject { described_class.new(user, {}) }
 
+  context "when the organization has authorizations" do
+    it "can create new managed users" do
+      expect(subject).to be_able_to(:new, :managed_users)
+      expect(subject).to be_able_to(:create, :managed_users)
+    end
+  end
+
+  context "when the organization doesn't have authorizations" do
+    let(:organization) { create(:organization, available_authorizations: []) }
+
+    it "can't create new managed users" do
+      expect(subject).to_not be_able_to(:new, :managed_users)
+      expect(subject).to_not be_able_to(:create, :managed_users)
+    end
+  end
+
   context "when the user is not a user manager" do
-    let(:user) { build(:user) }
+    let(:user) { create(:user, organization: organization) }
 
     it "doesn't have any permission" do
       expect(subject.permissions[:can]).to be_empty
@@ -16,5 +33,35 @@ describe Decidim::Admin::Abilities::UserManagerAbility do
     end
   end
 
+  context "when the user doesn't have an impersonation log" do
+    let(:managed) { create(:user, :managed, organization: organization) }
+
+    before do
+      create(:impersonation_log, admin: create(:user, organization: organization))
+    end
+
+    it { is_expected.to be_able_to(:impersonate, managed) }
+  end
+
+  context "when the user doesn't have an active impersonation log" do
+    let(:managed) { create(:user, :managed, organization: organization) }
+
+    before do
+      create(:impersonation_log, admin: user, started_at: 2.days.ago, ended_at: 1.day.ago)
+    end
+
+    it { is_expected.to be_able_to(:impersonate, managed) }
+  end
+
+  context "when the user has an active impersonation log" do
+    let(:managed) { create(:user, :managed, organization: organization) }
+
+    before do
+      create(:impersonation_log, admin: user, started_at: 10.minutes.ago)
+    end
+
+    it { is_expected.to_not be_able_to(:impersonate, managed) }
+  end
+
   it { is_expected.to be_able_to(:manage, :managed_users) }
 end

data/decidim-core/lib/decidim/core/test/factories.rb

@@ -290,7 +290,7 @@ FactoryGirl.define do
   factory :impersonation_log, class: Decidim::ImpersonationLog do
     admin { build(:user, :admin) }
     user { build(:user, :managed, organization: admin.organization) }
-    started_at Time.current
+    started_at { 10.minutes.ago }
   end
 
   factory :follow, class: "Decidim::Follow" do

data/decidim-core/lib/decidim/core/version.rb

@@ -3,7 +3,7 @@
 # This holds Decidim's version and the Rails version on which it depends.
 module Decidim
   def self.version
-    "0.6.7"
+    "0.6.8"
   end
 
   def self.rails_version

data/package.json

@@ -1,6 +1,6 @@
 {
   "name": "decidim",
-  "version": "0.6.7",
+  "version": "0.6.8",
   "repository": {
     "url": "git@github.com:decidim/decidim.git",
     "type": "git"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: decidim
 version: !ruby/object:Gem::Version
-  version: 0.6.7
+  version: 0.6.8
 platform: ruby
 authors:
 - Josep Jaume Rey Peroy
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-10-09 00:00:00.000000000 Z
+date: 2017-10-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: decidim-core
@@ -18,168 +18,168 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-participatory_processes
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-system
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-admin
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-api
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-pages
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-comments
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-meetings
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-proposals
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-results
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-budgets
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: decidim-surveys
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.7
+        version: 0.6.8
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -2522,7 +2522,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.6.13
+rubygems_version: 2.6.11
 signing_key: 
 specification_version: 4
 summary: Citizen participation framework for Ruby on Rails.