forest_liana 5.3.0 → 6.0.0.pre.beta.2

data/spec/requests/sessions_spec.rb

@@ -0,0 +1,55 @@
+require 'rails_helper'
+require 'openid_connect'
+require 'json'
+
+RSpec.describe "Authentications", type: :request do
+  before() do
+    allow(ForestLiana::IpWhitelist).to receive(:retrieve) { true }
+    allow(ForestLiana::IpWhitelist).to receive(:is_ip_whitelist_retrieved) { true }
+    allow(ForestLiana::IpWhitelist).to receive(:is_ip_valid) { true }
+
+    body = '{"data":{"id":"654","type":"users","attributes":{"email":"user@email.com","first_name":"FirstName","last_name":"LastName","teams":["Operations"]}},"relationships":{"renderings":{"data":[{"id":1,"type":"renderings"}]}}}'
+    allow(ForestLiana::ForestApiRequester).to receive(:get).with(
+      "/liana/v2/renderings/42/authorization", { :headers => { "forest-token" => "google-access-token" }, :query=> {} }
+    ).and_return(
+      instance_double(HTTParty::Response, :body => body, :code => 200)
+    )
+  end
+
+  after() do
+    Rails.cache.delete(URI.join(ForestLiana.application_url, ForestLiana::Engine.routes.url_helpers.authentication_callback_path).to_s)
+  end
+
+  headers = {
+    'Accept' => 'application/json',
+    'Content-Type' => 'application/json',
+  }
+
+  describe "POST /forest/sessions-google" do
+    before() do 
+      post ForestLiana::Engine.routes.url_helpers.sessions_google_path, { :renderingId => 42, :forestToken => "google-access-token" }, :headers => headers
+    end
+
+    it "should respond with a 200 code" do
+      expect(response).to have_http_status(200)
+    end
+
+    it "should return a valid authentication token" do
+      response_body = JSON.parse(response.body, :symbolize_names => true)
+      expect(response_body).to have_key(:token)
+
+      token = response_body[:token]
+      decoded = JWT.decode(token, ForestLiana.auth_secret, true, { algorithm: 'HS256' })[0]
+
+      expected_token_data = {
+        "id" => '654',
+        "email" => 'user@email.com',
+        "first_name" => 'FirstName',
+        "last_name" => 'LastName',
+        "rendering_id" => "42",
+        "team" => 'Operations'
+      }
+      expect(decoded).to include(expected_token_data);
+    end
+  end
+end

data/spec/services/forest_liana/apimap_sorter_spec.rb

@@ -75,8 +75,7 @@ module ForestLiana
                 type: 'File',
                 field: 'File'
               }],
-              http_method: nil,
-              hooks: nil,
+              http_method: nil
             }
           }, {
             attributes: {
@@ -96,8 +95,7 @@ module ForestLiana
               download: nil,
               endpoint: nil,
               redirect: nil,
-              'http_method': nil,
-              hooks: nil,
+              'http_method': nil
             }
           }]
         }
@@ -150,8 +148,8 @@ module ForestLiana
         end
 
         it 'should sort the included actions and segments objects attributes values' do
-          expect(apimap_sorted['included'][0]['attributes'].keys).to eq(['name', 'endpoint', 'http_method', 'redirect', 'download', 'hooks'])
-          expect(apimap_sorted['included'][1]['attributes'].keys).to eq(['name', 'http_method', 'fields', 'hooks'])
+          expect(apimap_sorted['included'][0]['attributes'].keys).to eq(['name', 'endpoint', 'http_method', 'redirect', 'download'])
+          expect(apimap_sorted['included'][1]['attributes'].keys).to eq(['name', 'http_method', 'fields'])
           expect(apimap_sorted['included'][2]['attributes'].keys).to eq(['name'])
           expect(apimap_sorted['included'][3]['attributes'].keys).to eq(['name'])
         end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: forest_liana
 version: !ruby/object:Gem::Version
-  version: 5.3.0
+  version: 6.0.0.pre.beta.2
 platform: ruby
 authors:
 - Sandro Munda
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-12-07 00:00:00.000000000 Z
+date: 2020-12-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -178,6 +178,48 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: json-jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: openid_connect
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Forest is a modern admin interface that works on all major web frameworks.
   forest_liana is the gem that makes Forest admin work on any Rails application (Rails
   >= 4.0).
@@ -197,6 +239,7 @@ files:
 - app/controllers/forest_liana/apimaps_controller.rb
 - app/controllers/forest_liana/application_controller.rb
 - app/controllers/forest_liana/associations_controller.rb
+- app/controllers/forest_liana/authentication_controller.rb
 - app/controllers/forest_liana/base_controller.rb
 - app/controllers/forest_liana/devise_controller.rb
 - app/controllers/forest_liana/intercom_controller.rb
@@ -211,7 +254,6 @@ files:
 - app/helpers/forest_liana/adapter_helper.rb
 - app/helpers/forest_liana/application_helper.rb
 - app/helpers/forest_liana/decoration_helper.rb
-- app/helpers/forest_liana/is_same_data_structure_helper.rb
 - app/helpers/forest_liana/query_helper.rb
 - app/helpers/forest_liana/schema_helper.rb
 - app/models/forest_liana/model/action.rb
@@ -231,6 +273,7 @@ files:
 - app/serializers/forest_liana/stripe_payment_serializer.rb
 - app/serializers/forest_liana/stripe_subscription_serializer.rb
 - app/services/forest_liana/apimap_sorter.rb
+- app/services/forest_liana/authentication.rb
 - app/services/forest_liana/authorization_getter.rb
 - app/services/forest_liana/base_getter.rb
 - app/services/forest_liana/belongs_to_updater.rb
@@ -252,6 +295,9 @@ files:
 - app/services/forest_liana/login_handler.rb
 - app/services/forest_liana/mixpanel_last_events_getter.rb
 - app/services/forest_liana/objective_stat_getter.rb
+- app/services/forest_liana/oidc_client_manager.rb
+- app/services/forest_liana/oidc_configuration_retriever.rb
+- app/services/forest_liana/oidc_dynamic_client_registrator.rb
 - app/services/forest_liana/operator_date_interval_parser.rb
 - app/services/forest_liana/permissions_checker.rb
 - app/services/forest_liana/permissions_getter.rb
@@ -276,11 +322,13 @@ files:
 - app/services/forest_liana/stripe_sources_getter.rb
 - app/services/forest_liana/stripe_subscription_getter.rb
 - app/services/forest_liana/stripe_subscriptions_getter.rb
+- app/services/forest_liana/token.rb
 - app/services/forest_liana/two_factor_registration_confirmer.rb
 - app/services/forest_liana/user_secret_creator.rb
 - app/services/forest_liana/value_stat_getter.rb
 - app/views/layouts/forest_liana/application.html.erb
 - config/initializers/arel-helpers.rb
+- config/initializers/error-messages.rb
 - config/initializers/errors.rb
 - config/initializers/logger.rb
 - config/initializers/time_formats.rb
@@ -337,12 +385,12 @@ files:
 - spec/dummy/db/migrate/20190716130830_add_age_to_tree.rb
 - spec/dummy/db/migrate/20190716135241_add_type_to_user.rb
 - spec/dummy/db/schema.rb
-- spec/helpers/forest_liana/is_same_data_structure_helper_spec.rb
 - spec/helpers/forest_liana/query_helper_spec.rb
 - spec/helpers/forest_liana/schema_helper_spec.rb
 - spec/rails_helper.rb
-- spec/requests/actions_controller_spec.rb
+- spec/requests/authentications_spec.rb
 - spec/requests/resources_spec.rb
+- spec/requests/sessions_spec.rb
 - spec/services/forest_liana/apimap_sorter_spec.rb
 - spec/services/forest_liana/filters_parser_spec.rb
 - spec/services/forest_liana/ip_whitelist_checker_spec.rb
@@ -454,9 +502,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ">="
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubygems_version: 3.0.8
 signing_key: 
@@ -559,7 +607,8 @@ test_files:
 - spec/services/forest_liana/apimap_sorter_spec.rb
 - spec/services/forest_liana/filters_parser_spec.rb
 - spec/spec_helper.rb
-- spec/requests/actions_controller_spec.rb
+- spec/requests/sessions_spec.rb
+- spec/requests/authentications_spec.rb
 - spec/requests/resources_spec.rb
 - spec/dummy/README.rdoc
 - spec/dummy/app/views/layouts/application.html.erb
@@ -602,6 +651,5 @@ test_files:
 - spec/dummy/config/initializers/backtrace_silencers.rb
 - spec/dummy/config/database.yml
 - spec/helpers/forest_liana/schema_helper_spec.rb
-- spec/helpers/forest_liana/is_same_data_structure_helper_spec.rb
 - spec/helpers/forest_liana/query_helper_spec.rb
 - spec/rails_helper.rb

data/app/helpers/forest_liana/is_same_data_structure_helper.rb

@@ -1,44 +0,0 @@
-require 'set'
-
-module ForestLiana
-  module IsSameDataStructureHelper
-    class Analyser
-      def initialize(object, other, deep = 0)
-        @object = object
-        @other = other
-        @deep = deep
-      end
-
-      def are_objects(object, other)
-        object && other && object.is_a?(Hash) && other.is_a?(Hash)
-      end
-
-      def check_keys(object, other, step = 0)
-        unless are_objects(object, other)
-          return false
-        end
-
-        object_keys = object.keys
-        other_keys = other.keys
-
-        if object_keys.length != other_keys.length
-          return false
-        end
-
-        object_keys_set = object_keys.to_set
-        other_keys.each { |key|
-          if !object_keys_set.member?(key) || (step + 1 <= @deep && !check_keys(object[key], other[key], step + 1))
-            return false
-          end
-        }
-
-        return true
-      end
-
-      def perform
-        check_keys(@object, @other)
-      end
-    end
-  end
-end
-

data/spec/helpers/forest_liana/is_same_data_structure_helper_spec.rb

@@ -1,87 +0,0 @@
-module ForestLiana
-  context 'IsSameDataStructure class' do
-    it 'should: be valid with simple data' do
-      object = {:a => 'a', :b => 'b'}
-      other = {:a => 'a', :b => 'b'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be true
-    end
-
-    it 'should: be invalid with simple data' do
-      object = {:a => 'a', :b => 'b'}
-      other = {:a => 'a', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with not same hash' do
-      object = {:a => 'a', :b => 'b'}
-      other = {:a => 'a', :b => 'b', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with nil' do
-      object = nil
-      other = {:a => 'a', :b => 'b', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with not hash' do
-      object = nil
-      other = {:a => 'a', :b => 'b', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with integer' do
-      object = 1
-      other = {:a => 'a', :b => 'b', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with string' do
-      object = 'a'
-      other = {:a => 'a', :b => 'b', :c => 'c'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other).perform
-      expect(result).to be false
-    end
-
-    it 'should: be valid with depth 1' do
-      object = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      other = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      result = IsSameDataStructureHelper::Analyser.new(object, other, 1).perform
-      expect(result).to be true
-    end
-
-    it 'should: be invalid with depth 1' do
-      object = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      other = {:a => {:c => 'c'}, :b => {:e => 'e'}}
-      result = IsSameDataStructureHelper::Analyser.new(object, other, 1).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with depth 1 and nil' do
-      object = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      other = {:a => {:c => 'c'}, :b => nil}
-      result = IsSameDataStructureHelper::Analyser.new(object, other, 1).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with depth 1 and integer' do
-      object = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      other = {:a => {:c => 'c'}, :b => 1}
-      result = IsSameDataStructureHelper::Analyser.new(object, other, 1).perform
-      expect(result).to be false
-    end
-
-    it 'should: be invalid with depth 1 and string' do
-      object = {:a => {:c => 'c'}, :b => {:d => 'd'}}
-      other = {:a => {:c => 'c'}, :b => 'b'}
-      result = IsSameDataStructureHelper::Analyser.new(object, other, 1).perform
-      expect(result).to be false
-    end
-  end
-end

data/spec/requests/actions_controller_spec.rb

@@ -1,136 +0,0 @@
-require 'rails_helper'
-
-describe 'Requesting Actions routes', :type => :request  do
-  before(:each) do
-    allow(ForestLiana::IpWhitelist).to receive(:is_ip_whitelist_retrieved) { true }
-    allow(ForestLiana::IpWhitelist).to receive(:is_ip_valid) { true }
-    Island.create(name: 'Corsica')
-  end
-
-  after(:each) do
-    Island.destroy_all
-  end
-
-  describe 'call /values' do
-    it 'should respond 200' do
-      post '/forest/actions/foo/values', {}
-      expect(response.status).to eq(200)
-      expect(response.body).to be {}
-    end
-  end
-
-  describe 'hooks' do
-    foo = {
-        field: 'foo',
-        type: 'String',
-        default_value: nil,
-        enums: nil,
-        is_required: false,
-        reference: nil,
-        description: nil,
-        widget: nil,
-    }
-    action_definition = {
-        name: 'my_action',
-        fields: [foo],
-        hooks: {
-            :load => -> (context) {
-              context[:fields]
-            },
-            :change => {
-              'foo' => -> (context) {
-                fields = context[:fields]
-                fields['foo'][:value] = 'baz'
-                return fields
-              }
-            }
-        }
-    }
-    fail_action_definition = {
-        name: 'fail_action',
-        fields: [foo],
-        hooks: {
-            :load => -> (context) {
-              1
-            },
-            :change => {
-                'foo' => -> (context) {
-                  1
-                }
-            }
-        }
-    }
-    cheat_action_definition = {
-        name: 'cheat_action',
-        fields: [foo],
-        hooks: {
-            :load => -> (context) {
-              context[:fields]['baz'] = foo.clone.update({field: 'baz'})
-              context[:fields]
-            },
-            :change => {
-                'foo' => -> (context) {
-                  context[:fields]['baz'] = foo.clone.update({field: 'baz'})
-                  context[:fields]
-                }
-            }
-        }
-    }
-    action = ForestLiana::Model::Action.new(action_definition)
-    fail_action = ForestLiana::Model::Action.new(fail_action_definition)
-    cheat_action = ForestLiana::Model::Action.new(cheat_action_definition)
-    island = ForestLiana.apimap.find {|collection| collection.name.to_s == ForestLiana.name_for(Island)}
-    island.actions = [action, fail_action, cheat_action]
-
-    describe 'call /load' do
-      params = {recordIds: [1], collectionName: 'Island'}
-
-      it 'should respond 200' do
-        post '/forest/actions/my_action/hooks/load', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(200)
-        expect(JSON.parse(response.body)).to eq({'fields' => [foo.merge({:value => nil}).stringify_keys]})
-      end
-
-      it 'should respond 500 with bad params' do
-        post '/forest/actions/my_action/hooks/load', {}
-        expect(response.status).to eq(500)
-      end
-
-      it 'should respond 500 with bad hook result type' do
-        post '/forest/actions/fail_action/hooks/load', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(500)
-      end
-
-      it 'should respond 500 with bad hook result data structure' do
-        post '/forest/actions/cheat_action/hooks/load', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(500)
-      end
-    end
-
-    describe 'call /change' do
-      updated_foo = foo.clone.merge({:previousValue => nil, :value => 'bar'})
-      params = {recordIds: [1], fields: [updated_foo], collectionName: 'Island'}
-
-      it 'should respond 200' do
-        post '/forest/actions/my_action/hooks/change', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(200)
-        expect(JSON.parse(response.body)).to eq({'fields' => [updated_foo.merge({:value => 'baz'}).stringify_keys]})
-      end
-
-      it 'should respond 500 with bad params' do
-        post '/forest/actions/my_action/hooks/change', {}
-        expect(response.status).to eq(500)
-      end
-
-      it 'should respond 500 with bad hook result type' do
-        post '/forest/actions/fail_action/hooks/change', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(500)
-      end
-
-      it 'should respond 500 with bad hook result data structure' do
-        post '/forest/actions/cheat_action/hooks/change', JSON.dump(params), 'CONTENT_TYPE' => 'application/json'
-        expect(response.status).to eq(500)
-      end
-    end
-  end
-end