jobshop 0.0.163 → 0.0.167

data/app/controllers/concerns/email_token_validation.rb

@@ -1,59 +0,0 @@
-class EmailTokenValidation
-  def self.before(controller)
-    @token = EmailToken.new(
-      controller.params.fetch(:user_email, nil),
-      controller.params.fetch(:email_authentication_token, nil)
-    )
-
-    if @token.valid?
-      sign_out_current_scope
-      sign_in token.user
-      token.destroy
-    end
-  end
-
-  class EmailToken
-    attr_reader :token
-
-    def initialize(email, token)
-      @email, @token = email, token
-    end
-
-    def valid?
-      present? && user && token && !expired? && secure_compare
-    end
-
-  private
-    def present?
-      @email.present? && @token.present?
-    end
-
-    def user
-      @user ||= Jobshop::User.where(email: @email)
-        .where.not(email_authentication_token_sent_at: nil).first
-    end
-
-    def destroy
-      user.update({
-        email_authentication_token:         nil,
-        email_authentication_token_sent_at: nil
-      })
-    end
-
-    def secure_compare
-      # Notice how we use Devise.secure_compare to compare the token in the
-      # database with the token given in the params, mitigating timing
-      # attacks.
-      Devise.secure_compare(user.email_authentication_token, token)
-    end
-
-    def expired?
-      @expired ||= Time.now >= expires_on
-    end
-
-    def expires_on
-      # TODO: Make token expiration configurable in initializers/jobshop.rb.
-      @expires_on ||= user.email_authentication_token_sent_at + 6.hours
-    end
-  end
-end

data/app/controllers/concerns/jobshop/authentication_handler.rb

@@ -1,15 +0,0 @@
-module Jobshop
-  module AuthenticationHandler
-    extend ActiveSupport::Concern
-
-    class InvalidCredentials < StandardError; end
-
-    included do
-      rescue_from AuthenticationHandler::InvalidCredentials, with: :unauthorized
-    end
-
-    private def unauthorized(e)
-      render({ json: { message: "Invalid credentials #{e.message}" } }, :unauthorized)
-    end
-  end
-end

data/app/controllers/concerns/jobshop/authorization_handler.rb

@@ -1,29 +0,0 @@
-module Jobshop
-  module AuthorizationHandler
-    extend ActiveSupport::Concern
-
-    class TokenMissing < StandardError; end
-    class TokenInvalid < StandardError; end
-
-    included do
-      before_action :authorize_request
-
-      rescue_from Jobshop::AuthorizationHandler::TokenMissing, with: :four_twenty_two
-      rescue_from Jobshop::AuthorizationHandler::TokenInvalid, with: :four_twenty_two
-      rescue_from ActiveRecord::RecordInvalid, with: :four_twenty_two
-      rescue_from ActiveRecord::RecordNotFound do |e|
-        render({ json: { message: e.message } }, :not_found)
-      end
-
-      attr_reader :current_user
-    end
-
-    private def four_twenty_two(e)
-      render({ json: { message: e.message } }, :unprocessable_entity)
-    end
-
-    private def authorize_request
-      @current_user = (AuthorizationService.new(request.headers).perform)[:user]
-    end
-  end
-end

data/app/controllers/jobshop/session_activations_controller.rb

@@ -1,13 +0,0 @@
-require_dependency "jobshop/application_controller"
-
-module Jobshop
-  class SessionActivationsController < ApplicationController
-    def destroy
-      revoked_session.destroy
-    end
-
-    private def revoked_session
-      @revoked_session ||= current_user.session_activations.find(params[:id])
-    end
-  end
-end

data/app/controllers/jobshop/sessions_controller.rb

@@ -1,20 +0,0 @@
-require_dependency "jobshop/application_controller"
-
-module Jobshop
-  class SessionsController < ApplicationController
-    skip_before_action :authorize_request, only: :new
-
-    def new
-      token = AuthenticationService.new(
-        session_params[:email],
-        session_params[:password]
-      ).perform
-
-      render(json: { auth_token: token })
-    end
-
-    private def session_params
-      params.permit(:email, :password)
-    end
-  end
-end

data/app/email_handlers/jobshop/rfq_handler.rb

@@ -1,43 +0,0 @@
-# frozen_string_literals: true
-
-module Jobshop
-  class RFQHandler
-    def initialize(message, organization:)
-      @from = message.from.first
-      @subject = message.subject
-      @content = message.text_part.decoded
-      @organization = organization
-    end
-
-    def process
-      new_rfq = @organization.rfqs.create({
-        from: @from,
-        subject: @subject,
-        content: @content
-      })
-
-      if new_rfq.persisted?
-        # TODO: Send response email to customer
-        # TODO: Send rfq to quoting queue.
-        return new_rfq
-      else
-        # TODO: There was some kind of failure which should be logged.
-        return false
-      end
-    end
-
-    # Whether or not to copy the original to a new location after processing.
-    def copy_after_processing?
-      true
-    end
-
-    # Whether or not to delete the original item after processing.
-    def delete_after_processing?
-      true
-    end
-
-    def processed_copy_prefix
-      "rfqs/processed"
-    end
-  end
-end

data/app/models/jobshop/company.rb

@@ -1,35 +0,0 @@
-# frozen_string_literals: true
-
-module Jobshop
-  class Company < ApplicationRecord
-    self.primary_keys = %i[ organization_id company_id ]
-
-    # Because we have a column named +type+, Rails wants to activate STI
-    # Disable it manually
-    self.inheritance_column = nil
-
-    after_initialize { self.company_id ||= SecureRandom.uuid if new_record? }
-
-    belongs_to :organization, inverse_of: :companies
-
-    has_many :company_people, inverse_of: :company,
-      foreign_key: %i[ organization_id company_id ]
-
-    belongs_to :created_by, class_name: "Jobshop::Person",
-      foreign_key: %i[ organization_id created_by_id ]
-
-    has_many :orders, inverse_of: :company,
-      foreign_key: %i[ organization_id company_id ]
-
-    has_many :people, through: :company_people,
-      foreign_key: %i[ organization_id person_id ]
-
-    has_many :rfqs, inverse_of: :company,
-      foreign_key: %i[ organization_id company_id ]
-
-    belongs_to :type, class_name: "Jobshop::Company::Type",
-      foreign_key: %i[ organization_id type_id ], inverse_of: :companies
-
-    validates :name, presence: true
-  end
-end

data/app/models/jobshop/company/type.rb

@@ -1,17 +0,0 @@
-# frozen_string_literals: true
-
-module Jobshop
-  class Company::Type < ApplicationRecord
-    self.primary_keys = %i[ organization_id type_id ]
-
-    after_initialize { self.type_id ||= SecureRandom.uuid if new_record? }
-
-    belongs_to :organization, inverse_of: :company_types
-
-    has_many :companies, inverse_of: :type,
-      foreign_key: %i[ organization_id type_id ]
-
-    validates :name,
-      uniqueness: { scope: :organization_id, case_sensitive: false }
-  end
-end

data/app/models/jobshop/company_person.rb

@@ -1,15 +0,0 @@
-# frozen_string_literals: true
-
-module Jobshop
-  class CompanyPerson < ApplicationRecord
-    self.primary_keys = %i[ organization_id company_id person_id ]
-
-    belongs_to :organization
-
-    belongs_to :company, inverse_of: :company_people,
-      foreign_key: %i[ organization_id company_id ]
-
-    belongs_to :person, inverse_of: :company_person,
-      foreign_key: %i[ organization_id person_id ]
-  end
-end

data/app/models/jobshop/person.rb

@@ -1,30 +0,0 @@
-# frozen_string_literals: true
-
-module Jobshop
-  class Person < ApplicationRecord
-    self.primary_keys = %i[ organization_id person_id ]
-
-    after_initialize { self.person_id ||= SecureRandom.uuid if new_record? }
-
-    belongs_to :organization, inverse_of: :people
-
-    has_one :company_person, inverse_of: :person,
-      foreign_key: %i[ organization_id person_id ]
-
-    has_one :company, through: :company_person,
-      foreign_key: %i[ organization_id company_id ]
-
-    validates :email,
-      presence:   { if: :email_required? },
-      format:     { if: :email_required?, with: /\A[^@\s]+@[^@\s]+\z/ },
-      uniqueness: { if: :email_changed?, scope: :organization_id, case_sensitive: false }
-
-    def name
-      @name = [ forename, surname ].join(" ")
-    end
-
-    private def email_required?
-      true
-    end
-  end
-end

data/app/models/jobshop/session_activation.rb

@@ -1,30 +0,0 @@
-module Jobshop
-  class SessionActivation < ApplicationRecord
-    LIMIT = 20
-
-    class << self
-      def active?(token)
-        token && where(activation_token: token).exists?
-      end
-
-      def activate(token)
-        activation = create!(activation_token: token)
-        enforce_active_session_quota
-        activation
-      end
-
-      def deactivate(token)
-        return unless token
-        where(activation_token: token).delete_all
-      end
-
-      def enforce_active_session_quota
-        order("created_at desc").offset(LIMIT).destroy_all
-      end
-
-      def exclusive(token)
-        where("activation_token != ?", id).delete_all
-      end
-    end
-  end
-end

data/app/serializers/jobshop/test_user_serializer.rb

@@ -1,10 +0,0 @@
-module Jobshop
-  class TestUserSerializer
-    include FastJsonapi::ObjectSerializer
-    attributes :email, :forename, :surname, :job_title
-
-    attribute :organization_name do |object|
-      object.organization.name
-    end
-  end
-end

data/app/services/jobshop/authentication_service.rb

@@ -1,20 +0,0 @@
-module Jobshop
-  class AuthenticationService
-    attr_reader :email, :password
-
-    def initialize(email, password)
-      @email = email
-      @password = password
-    end
-
-    def perform
-      Jobshop::JWTService.encode(user_id: user.id) if user
-    end
-
-    private def user
-      user = User.find_by(email: email)
-      user && user.authenticate(password) ||
-        raise(AuthenticationHandler::InvalidCredentials)
-    end
-  end
-end

data/app/services/jobshop/authorization_service.rb

@@ -1,30 +0,0 @@
-module Jobshop
-  class AuthorizationService
-    attr_reader :headers
-
-    def initialize(headers = {})
-      @headers = headers
-    end
-
-    def perform
-      { user: user }
-    end
-
-    private def user
-      @user ||= Jobshop::User.find(decoded_auth_token[:user_id]) if decoded_auth_token
-    rescue ActiveRecord::RecordNotFound => e
-      raise(AuthorizationHandler::TokenInvalid, e.message)
-    end
-
-    private def decoded_auth_token
-      @decoded_auth_token ||= JWTService.decode(http_auth_header)
-    end
-
-    private def http_auth_header
-      if headers["Authorization"].present?
-        return headers["Authorization"].split(" ").last
-      end
-      raise(AuthorizationHandler::TokenMissing)
-    end
-  end
-end

data/app/services/jobshop/jwt_service.rb

@@ -1,17 +0,0 @@
-module Jobshop
-  class JWTService
-    HMAC_SECRET = "fixme"
-
-    def self.encode(payload, exp = 24.hours.from_now)
-      payload[:exp] = exp.to_i
-      JWT.encode(payload, HMAC_SECRET)
-    end
-
-    def self.decode(token)
-      body = JWT.decode(token, HMAC_SECRET)[0]
-      HashWithIndifferentAccess.new body
-    rescue JWT::DecodeError => e
-      raise AuthorizationHandler::TokenInvalid, e.message
-    end
-  end
-end

data/db/migrate/20171216021853_create_companies.rb

@@ -1,64 +0,0 @@
-# frozen_string_literals: true
-
-require "jobshop/helpers/migration.rb"
-
-class CreateCompanies < ActiveRecord::Migration[5.2]
-  include Jobshop::Helpers::Migration
-
-  def change # rubocop:disable Metrics/MethodLength
-    create_table :jobshop_company_types, id: false do |t|
-      t.uuid :organization_id, null: false
-      t.uuid :type_id, null: false, default: "gen_random_uuid()"
-      t.index %i[ organization_id type_id ],
-        name: :idx_jobshop_company_types_pkey, unique: true
-
-      t.citext :name, null: false
-      t.index %i[ organization_id name ], unique: true
-
-      t.text :description
-    end
-
-    idx_table_name_pkey :jobshop_company_types
-    fk_organization_id :jobshop_company_types
-
-    create_table :jobshop_companies, id: false do |t|
-      t.uuid :organization_id, null: false
-      t.uuid :company_id, null: false, default: "gen_random_uuid()"
-      t.index %i[ organization_id company_id ], unique: true,
-        name: :idx_jobshop_companies_pkey
-
-      t.uuid :created_by_id, null: false
-
-      t.uuid :type_id, null: false
-
-      t.citext :name, null: false
-      t.index %i[ organization_id name ], unique: true
-
-      t.timestamps
-    end
-
-    idx_table_name_pkey :jobshop_companies
-    fk_organization_id :jobshop_companies
-    fk_created_by_id :jobshop_companies
-    foreign_key :jobshop_companies, :jobshop_company_types,
-      %i[ organization_id type_id ]
-
-    create_table :jobshop_company_people, id: false do |t|
-      t.uuid :organization_id, null: false
-      t.uuid :company_id, null: false
-      t.uuid :person_id, null: false
-      t.index %i[ organization_id company_id person_id ],
-        name: :idx_jobshop_company_people_pkey, unique: true
-
-      t.index %i[ organization_id company_id ],
-        name: :idx_jobshop_company_organization_company_ids
-    end
-
-    idx_table_name_pkey :jobshop_company_people
-    fk_organization_id :jobshop_company_people
-    foreign_key :jobshop_company_people, :jobshop_companies,
-      %i[ organization_id company_id ]
-    foreign_key :jobshop_company_people, :jobshop_people,
-      %i[ organization_id person_id ]
-  end
-end