lato 0.1.26 → 0.1.28

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6efff0dabd7587626cdb6a08a71312793654ddfed11b2a60fea58e58475eb8ac
-  data.tar.gz: ff65ff6ad27a5b14c02742de7bb692a24e87e9305136d0bcfb0e9c9406377c26
+  metadata.gz: 5bcb5a6f47f56626a7fd68c8ab3872971d88291b568c8ede302e2307648babd3
+  data.tar.gz: d250a7b34e0dcee6cadbd41a4f93b2fccaaa6f78dd0b56b4f96d2a5cd5b3c097
 SHA512:
-  metadata.gz: 9acbbfba492ee88a0f8acf41265966e7904de8e1cf060331b115e12d06ac41f58782935a4ab7b60c20b18bf1a62aa9e7850e69ea66160530e98c7927c2c6d914
-  data.tar.gz: 532de791068976f1a0b4b693e14e0a10dd5ce88ebf7043065dd0c409fa2a7b1f3195799a00c74f64b36273260458a91e72394f27ee1b5eb83ebf307fba3e5270
+  metadata.gz: 61591a5033d2c16ca7bfbda32416d41060156298a4f2272daa210bf1203be2ccf4ec16e4f59034e05196a9f23dfc1621fa0b3e15db82421a930386c29b144d12
+  data.tar.gz: 73f3a4fdf44043aca72b8276c53a9d73d6285b59a49db1308d2c10e358f715d2c58b77f6c755763124b49072b5c11861f7d1b03f4dc0cbc1511fad4fd51a6d9a

data/app/controllers/lato/authentication_controller.rb

@@ -1,12 +1,19 @@
 module Lato
   class AuthenticationController < ApplicationController
-    before_action :not_authenticate_session, only: %i[signin signin_action signup signup_action]
+    before_action :not_authenticate_session, only: %i[signin signin_action signup signup_action accept_invitation accept_invitation_action]
     before_action :authenticate_session, only: %i[signout signout_action]
+  
     before_action :find_user, only: %i[verify_email verify_email_action update_password update_password_action]
-    before_action :hide_sidebar
+    before_action :find_invitation, only: %i[accept_invitation accept_invitation_action]
+
     before_action :lock_signup_if_disabled, only: %i[signup signup_action]
     before_action :lock_recover_password_if_disabled, only: %i[recover_password recover_password_action update_password update_password_action]
 
+    before_action :hide_sidebar
+
+    # Signin
+    ##
+
     def signin
       @user = Lato::User.new
     end
@@ -15,7 +22,10 @@ module Lato
       @user = Lato::User.new
 
       respond_to do |format|
-        if @user.signin(params.require(:user).permit(:email, :password))
+        if @user.signin(params.require(:user).permit(:email, :password).merge(
+          ip_address: request.remote_ip,
+          user_agent: request.user_agent
+        ))
           session_create(@user.id)
 
           format.html { redirect_to lato.root_path }
@@ -27,12 +37,15 @@ module Lato
       end
     end
 
+    # Signup
+    ##
+
     def signup
       @user = Lato::User.new
     end
 
     def signup_action
-      @user = Lato::User.new(params.require(:user).permit(:first_name, :last_name, :email, :password, :password_confirmation, :accepted_privacy_policy_version, :accepted_terms_and_conditions_version))
+      @user = Lato::User.new(registration_params)
 
       respond_to do |format|
         if @user.save
@@ -47,6 +60,9 @@ module Lato
       end
     end
 
+    # Signout
+    ##
+
     def signout; end
 
     def signout_action
@@ -58,6 +74,9 @@ module Lato
       end
     end
 
+    # Verify email
+    ##
+
     def verify_email
       @code = params[:code]
     end
@@ -74,6 +93,9 @@ module Lato
       end
     end
 
+    # Recover password
+    ##
+
     def recover_password
       @user = Lato::User.new
     end
@@ -92,6 +114,9 @@ module Lato
       end
     end
 
+    # Update password
+    ##
+
     def update_password; end
 
     def update_password_action
@@ -106,23 +131,55 @@ module Lato
       end
     end
 
+    # Accept invitation
+    ##
+
+    def accept_invitation
+      @user = Lato::User.new(email: @invitation.email)
+    end
+
+    def accept_invitation_action
+      @user = Lato::User.new(registration_params)
+
+      respond_to do |format|
+        if @user.accept_invitation(params.permit(:id, :accepted_code))
+          session_create(@user.id)
+
+          format.html { redirect_to lato.root_path }
+          format.json { render json: @user }
+        else
+          format.html { render :accept_invitation, status: :unprocessable_entity }
+          format.json { render json: @user.errors, status: :unprocessable_entity }
+        end
+      end
+    end
+
     private
 
+    def registration_params
+      params.require(:user).permit(:first_name, :last_name, :email, :password, :password_confirmation, :accepted_privacy_policy_version, :accepted_terms_and_conditions_version)
+    end
+
     def find_user
       @user = User.find_by(id: params[:id])
       respond_to_with_not_found unless @user
     end
 
+    def find_invitation
+      @invitation = Lato::Invitation.find_by(id: params[:id], accepted_code: params[:accepted_code])
+      respond_to_with_not_found unless @invitation
+    end
+
     def lock_signup_if_disabled
       return unless Lato.config.auth_disable_signup
 
-      respond_to_with_not_found 
+      respond_to_with_not_found
     end
 
     def lock_recover_password_if_disabled
       return unless Lato.config.auth_disable_recover_password
 
-      respond_to_with_not_found 
+      respond_to_with_not_found
     end
   end
 end

data/app/helpers/lato/components_helper.rb

@@ -50,7 +50,8 @@ module Lato
       columns = options[:columns] || @_lato_index[key][:columns] || collection.column_names || []
       sortable_columns = @_lato_index[key][:sortable_columns] || []
       searchable_columns = @_lato_index[key][:searchable_columns] || []
-      model_name_underscore = options[:model_name] || collection.model.name.gsub('/', '_').underscore
+      model_name = options[:model_name] || collection.model.name
+      model_name_underscore = options[:model_name] || model_name.underscore.gsub('/', '_')
 
       render(
         'lato/components/index',
@@ -59,11 +60,20 @@ module Lato
         columns: columns,
         sortable_columns: sortable_columns,
         searchable_columns: searchable_columns,
+        model_name: model_name,
         model_name_underscore: model_name_underscore,
         custom_actions: options[:custom_actions] || {}
       )
     end
 
+    def lato_index_dynamic_label(params = {})
+      'Please override the method lato_index_dynamic_label in your application_helper.rb'
+    end
+
+    def lato_index_dynamic_value(params = {})
+      'Please override the method lato_index_dynamic_value in your application_helper.rb'
+    end
+
     # Operation
     ##
 

data/app/jobs/lato/application_job.rb

@@ -56,7 +56,9 @@ module Lato
         yield
         @operation&.completed
       rescue StandardError => e
-        @operation&.failed(e.message)
+        return @operation.failed(e.message) if @operation
+
+        raise e
       end
     end
   end

data/app/mailers/lato/invitation_mailer.rb

@@ -0,0 +1,21 @@
+module Lato
+  class InvitationMailer < ApplicationMailer
+    def invite_mail(invitation_id)
+      @invitation = Lato::Invitation.find(invitation_id)
+
+      set_invitation_locale
+
+      mail(
+        to: @invitation.email,
+        subject: 'Hai ricevuto un invito',
+        template_path: 'lato/mailer/invitation'
+      )
+    end
+
+    private
+
+    def set_invitation_locale
+      I18n.locale = @invitation.lato_user&.locale || I18n.default_locale
+    end
+  end
+end

data/app/mailers/lato/user_mailer.rb

@@ -3,6 +3,9 @@ module Lato
     def email_verification_mail(user_id, code)
       @user = Lato::User.find(user_id)
       @code = code
+
+      set_user_locale
+
       mail(
         to: @user.email,
         subject: 'Conferma il tuo indirizzo email',
@@ -13,11 +16,20 @@ module Lato
     def password_update_mail(user_id, code)
       @user = Lato::User.find(user_id)
       @code = code
+
+      set_user_locale
+
       mail(
         to: @user.email,
         subject: 'Imposta una nuova password',
         template_path: 'lato/mailer/user'
       )
     end
+
+    private
+
+    def set_user_locale
+      I18n.locale = @user.locale || I18n.default_locale
+    end
   end
 end

data/app/models/lato/invitation.rb

@@ -0,0 +1,82 @@
+module Lato
+  class Invitation < ApplicationRecord
+    attr_accessor :actions
+
+    # Kredis
+    ##
+
+    kredis_boolean :email_invite_semaphore, expires_in: 2.minutes
+
+    # Validations
+    ##
+
+    validates :email, presence: true, uniqueness: true
+
+    # Relations
+    ##
+
+    belongs_to :lato_user, class_name: 'Lato::User', foreign_key: :lato_user_id, optional: true
+
+    # Hooks
+    ##
+
+    before_validation do
+      self.email = email&.downcase&.strip
+    end
+
+    # be sure that email is not already used by another user
+    before_create do
+      if Lato::User.find_by(email: email)
+        errors.add(:email, 'is already used by another user')
+        throw :abort
+      end
+    end
+
+    # generate a random code for the invitation
+    before_create do
+      self.accepted_code = SecureRandom.hex(16)
+    end
+
+    # send an email to the invited user
+    after_create do
+      send_invite
+    end
+
+    # be sure accepted invitations can not be deleted
+    before_destroy do
+      throw :abort if accepted?
+    end
+
+    # Helpers
+    ##
+
+    def accepted?
+      !!accepted_at
+    end
+
+    # Operations
+    ##
+
+    def send_invite
+      if accepted?
+        errors.add(:base, :already_accepted)
+        return false
+      end
+
+      if email_invite_semaphore.value
+        errors.add(:base, :email_sending_limit)
+        return false
+      end
+
+      delivery = Lato::InvitationMailer.invite_mail(id).deliver_now
+      unless delivery
+        errors.add(:base, :email_sending_error)
+        return false
+      end
+
+      email_invite_semaphore.value = true
+
+      true
+    end
+  end
+end

data/app/models/lato/log/user_signin.rb

@@ -0,0 +1,8 @@
+module Lato
+  class Log::UserSignin < ApplicationRecord
+    # Relations
+    ##
+
+    belongs_to :lato_user, class_name: 'Lato::User', foreign_key: :lato_user_id, optional: true
+  end
+end

data/app/models/lato/log.rb

@@ -0,0 +1,14 @@
+module Lato
+  module Log
+    # This module is used to add log to the application.
+    # Log are used to track user actions without sensitive data.
+    # Log should not be destroyed.
+    before_destroy do
+      throw :abort
+    end
+
+    def self.table_name_prefix
+      'lato_log_'
+    end
+  end
+end

data/app/models/lato/operation.rb

@@ -10,6 +10,11 @@ module Lato
     has_one_attached :input_file
     has_one_attached :output_file
 
+    # Relations
+    ##
+
+    belongs_to :lato_user, class_name: 'Lato::User', foreign_key: :lato_user_id, optional: true
+
     # Hooks
     ##
 
@@ -50,6 +55,7 @@ module Lato
     end
 
     # Operations
+    ##
 
     def start
       begin
@@ -93,7 +99,7 @@ module Lato
       }
       operation_params[:input_file] = file unless file.nil?
 
-      Operation.create(operation_params)
+      Lato::Operation.create(operation_params)
     end
   end
 end

data/app/models/lato/user.rb

@@ -24,6 +24,9 @@ module Lato
     ##
 
     has_many :lato_operations, class_name: 'Lato::Operation', foreign_key: :lato_user_id, dependent: :nullify
+    has_many :lato_invitations, class_name: 'Lato::Invitation', foreign_key: :lato_user_id, dependent: :nullify
+
+    has_many :lato_log_user_signins, class_name: 'Lato::Log::UserSignin', foreign_key: :lato_user_id, dependent: :nullify
 
     # Hooks
     ##
@@ -80,6 +83,15 @@ module Lato
       self.id = user.id
       reload
 
+      begin
+        lato_log_user_signins.create(
+          ip_address: params[:ip_address],
+          user_agent: params[:user_agent]
+        )
+      rescue StandardError => e
+        Rails.logger.error(e)
+      end
+
       true
     end
 
@@ -120,15 +132,6 @@ module Lato
       true
     end
 
-    def destroy_with_confirmation(params)
-      unless params[:email_confirmation] == email
-        errors.add(:email, :not_correct)
-        return
-      end
-
-      destroy
-    end
-
     def request_recover_password(params)
       user = Lato::User.find_by(email: params[:email])
       unless user
@@ -184,5 +187,31 @@ module Lato
 
       update(accepted_terms_and_conditions_version: Lato.config.legal_terms_and_conditions_version)
     end
+
+    def destroy_with_confirmation(params)
+      unless params[:email_confirmation] == email
+        errors.add(:email, :not_correct)
+        return
+      end
+
+      destroy
+    end
+
+    def accept_invitation(params)
+      invitation = Lato::Invitation.find_by(id: params[:id], accepted_code: params[:accepted_code])
+      if !invitation || invitation.accepted? || invitation.email != email
+        errors.add(:base, :invitation_invalid)
+        return
+      end
+
+      ActiveRecord::Base.transaction do
+        raise ActiveRecord::Rollback unless save && invitation.update(
+          accepted_at: Time.now,
+          lato_user_id: id
+        ) 
+
+        true
+      end
+    end
   end
 end

data/app/views/lato/authentication/_fields-registration.html.erb

@@ -0,0 +1,37 @@
+<%
+
+email_readonly ||= false
+
+%>
+
+<div class="row">
+  <div class="col col-12 col-md-6 mb-3">
+    <%= lato_form_item_label form, :first_name %>
+    <%= lato_form_item_input_text form, :first_name, required: true %>
+  </div>
+
+  <div class="col col-12 col-md-6 mb-3">
+    <%= lato_form_item_label form, :last_name %>
+    <%= lato_form_item_input_text form, :last_name, required: true %>
+  </div>
+
+  <div class="col col-12 mb-3">
+    <%= lato_form_item_label form, :email %>
+    <%= lato_form_item_input_email form, :email, required: true, readonly: email_readonly %>
+  </div>
+
+  <div class="col col-12 col-md-6 mb-3">
+    <%= lato_form_item_label form, :password %>
+    <%= lato_form_item_input_password form, :password, required: true %>
+  </div>
+
+  <div class="col col-12 col-md-6 mb-3">
+    <%= lato_form_item_label form, :password_confirmation %>
+    <%= lato_form_item_input_password form, :password_confirmation, required: true %>
+  </div>
+</div>
+
+<div class="mb-3 text-muted" style="font-size: 14px;">
+  <%= lato_form_item_input_check form, :accepted_privacy_policy_version, I18n.t('lato.privacy_policy_checkbox', link: link_to(I18n.t('lato.privacy_policy'), Lato.config.legal_privacy_policy_url)), required: true %>
+  <%= lato_form_item_input_check form, :accepted_terms_and_conditions_version, I18n.t('lato.terms_and_conditions_checkbox', link: link_to(I18n.t('lato.terms_and_conditions'), Lato.config.legal_terms_and_conditions_url)), required: true %>
+</div>

data/app/views/lato/authentication/_form-accept-invitation.html.erb

@@ -0,0 +1,18 @@
+<%
+
+user ||= Lato::User.new
+invitation ||= Lato::Invitation.new
+
+%>
+
+<%= turbo_frame_tag 'authentication_form-signup' do %>
+  <%= form_with model: user, url: lato.authentication_accept_invitation_action_path(id: invitation.id, accepted_code: invitation.accepted_code), data: { turbo_frame: '_self', controller: 'lato-form' } do |form| %>
+    <%= lato_form_errors user, class: %w[mb-3] %>
+
+    <%= render 'lato/authentication/fields-registration', form: form, email_readonly: true %>
+
+    <div class="d-flex justify-content-end">
+      <%= lato_form_submit form, I18n.t('lato.confirm') %>
+    </div>
+  <% end %>
+<% end %>

data/app/views/lato/authentication/_form-signup.html.erb

@@ -8,37 +8,7 @@ user ||= Lato::User.new
   <%= form_with model: user, url: lato.authentication_signup_action_path, data: { turbo_frame: '_self', controller: 'lato-form' } do |form| %>
     <%= lato_form_errors user, class: %w[mb-3] %>
     
-    <div class="row">
-      <div class="col col-12 col-md-6 mb-3">
-        <%= lato_form_item_label form, :first_name %>
-        <%= lato_form_item_input_text form, :first_name, required: true %>
-      </div>
-
-      <div class="col col-12 col-md-6 mb-3">
-        <%= lato_form_item_label form, :last_name %>
-        <%= lato_form_item_input_text form, :last_name, required: true %>
-      </div>
-
-      <div class="col col-12 mb-3">
-        <%= lato_form_item_label form, :email %>
-        <%= lato_form_item_input_email form, :email, required: true %>
-      </div>
-
-      <div class="col col-12 col-md-6 mb-3">
-        <%= lato_form_item_label form, :password %>
-        <%= lato_form_item_input_password form, :password, required: true %>
-      </div>
-
-      <div class="col col-12 col-md-6 mb-3">
-        <%= lato_form_item_label form, :password_confirmation %>
-        <%= lato_form_item_input_password form, :password_confirmation, required: true %>
-      </div>
-    </div>
-
-    <div class="mb-3 text-muted" style="font-size: 14px;">
-      <%= lato_form_item_input_check form, :accepted_privacy_policy_version, I18n.t('lato.privacy_policy_checkbox', link: link_to(I18n.t('lato.privacy_policy'), Lato.config.legal_privacy_policy_url)), required: true %>
-      <%= lato_form_item_input_check form, :accepted_terms_and_conditions_version, I18n.t('lato.terms_and_conditions_checkbox', link: link_to(I18n.t('lato.terms_and_conditions'), Lato.config.legal_terms_and_conditions_url)), required: true %>
-    </div>
+    <%= render 'lato/authentication/fields-registration', form: form %>
 
     <div class="d-flex justify-content-end">
       <%= lato_form_submit form, I18n.t('lato.signup') %>

data/app/views/lato/authentication/accept_invitation.html.erb

@@ -0,0 +1,10 @@
+<div class="w-100 h-100 d-flex justify-content-center align-items-center" style="min-height: calc(100vh - 54px - 2rem)">
+  <div class="card w-100" style="max-width: 550px">
+    <div class="card-header">
+      <h1 class="fs-3 mb-0 text-center"><%= I18n.t('lato.accept_invitation') %></h1>
+    </div>
+    <div class="card-body">
+      <%= render 'lato/authentication/form-accept-invitation', user: @user, invitation: @invitation %>
+    </div>
+  </div>
+</div>

data/app/views/lato/components/_index.html.erb

@@ -1,3 +1,9 @@
+<%
+
+collection_test_istance = collection.model.new
+
+%>
+
 <%= turbo_frame_tag "lato_index_#{key}_#{model_name_underscore}", class: 'lato-index' do %>
 
   <%= form_tag request.path, method: :get, data: { turbo_frame: '_self' } do %>
@@ -38,10 +44,19 @@
               <tbody>
                 <% columns.each do |column| %>
                   <tr>
-                    <th><%= collection.model.human_attribute_name column %></th>
+                    <th><%= collection_test_istance.respond_to?(column) ? collection.model.human_attribute_name(column) : lato_index_dynamic_label({
+                      key: key,
+                      model_name: model_name,
+                      column: column
+                    }) %></th>
                     <td class="lato-index-col-<%= column %>">
                       <% viewer_function_name = "#{model_name_underscore}_#{column}" %>
-                      <%= respond_to?(viewer_function_name) ? send(viewer_function_name, member) : member.send(column) %>
+                      <%= respond_to?(viewer_function_name) ? send(viewer_function_name, member) : (collection_test_istance.respond_to?(column) ? member.send(column) : lato_index_dynamic_value({
+                        key: key,
+                        model_name: model_name,
+                        column: column,
+                        member: member
+                      })) %>
                     </td>
                   </tr>
                 <% end %>
@@ -67,7 +82,11 @@
               <% columns.each do |column| %>
                 <th scope="col" class="lato-index-col-<%= column %>">
                   <div class="d-flex align-items-center">
-                    <span><%= collection.model.human_attribute_name column %></span>
+                    <span><%= collection_test_istance.respond_to?(column) ? collection.model.human_attribute_name(column) : lato_index_dynamic_label({
+                      key: key,
+                      model_name: model_name,
+                      column: column
+                    }) %></span>
                     <% if sortable_columns.include?(column) %>
                       <div class="btn-group ms-3">
                         <div class="position-relative btn btn-sm <%= params[:sort_by] == "#{column}|ASC" ? 'btn-primary' : 'btn-outline-primary' %>">
@@ -92,7 +111,12 @@
                 <% columns.each do |column| %>
                   <td class="lato-index-col-<%= column %>">
                     <% viewer_function_name = "#{model_name_underscore}_#{column}" %>
-                    <%= respond_to?(viewer_function_name) ? send(viewer_function_name, member) : member.send(column) %>
+                    <%= respond_to?(viewer_function_name) ? send(viewer_function_name, member) : (collection_test_istance.respond_to?(column) ? member.send(column) : lato_index_dynamic_value({
+                      key: key,
+                      model_name: model_name,
+                      column: column,
+                      member: member
+                    })) %>
                   </td>
                 <% end %>
               </tr>

data/app/views/lato/mailer/invitation/invite_mail.html.erb

@@ -0,0 +1,17 @@
+<% if I18n.locale == 'en' %>
+
+You have received an invitation to use <%= Lato.config.application_title %>.
+<br><br>
+Click the following link to accept the invitation and complete the registration:
+<br><br>
+<%= link_to lato.authentication_accept_invitation_url(id: @invitation.id, accepted_code: @invitation.accepted_code), lato.authentication_accept_invitation_url(id: @invitation.id, accepted_code: @invitation.accepted_code) %>
+
+<% else %>
+
+Hai ricevuto un invito per utilizzare <%= Lato.config.application_title %>.
+<br><br>
+Clicca il seguente link per accettare l'invito e completare la registrazione:
+<br><br>
+<%= link_to lato.authentication_accept_invitation_url(id: @invitation.id, accepted_code: @invitation.accepted_code), lato.authentication_accept_invitation_url(id: @invitation.id, accepted_code: @invitation.accepted_code) %>
+
+<% end %>

data/app/views/lato/mailer/user/email_verification_mail.html.erb

@@ -1,4 +1,4 @@
-<% if @user.locale == 'en' %>
+<% if I18n.locale == 'en' %>
 
 To have access to all the features of <%= Lato.config.application_title %> you must confirm your email address.
 <br><br>

data/app/views/lato/mailer/user/password_update_mail.html.erb

@@ -1,4 +1,4 @@
-<% if @user.locale == 'en' %>
+<% if I18n.locale == 'en' %>
 
 An update to your <%= Lato.config.application_title %> account password has been requested.
 <br><br>

data/app/views/layouts/lato/_feedbacks.html.erb

@@ -13,4 +13,19 @@
       </div>
     </div>
   <% end %>
+
+  <% if alert %>
+    <div class="position-fixed bottom-0 end-0 p-3" style="z-index: 11">
+      <div data-controller="lato-feedback" id="feedbackAlert" class="toast hide" role="alert" aria-live="assertive" aria-atomic="true">
+        <div class="toast-header">
+          <i class="bi bi-check-circle-fill text-danger me-2"></i>
+          <strong class="me-auto"><%= I18n.t('lato.operation_failed') %></strong>
+          <button type="button" class="btn-close" data-bs-dismiss="toast" aria-label="Close"></button>
+        </div>
+        <div class="toast-body">
+          <%= alert %>
+        </div>
+      </div>
+    </div>
+  <% end %>
 </div>

data/app/views/layouts/lato/_mailer-head_content.html.erb

@@ -1,7 +1,7 @@
-<% if @user.locale == 'en' %>
-  Hello <%= @user.first_name %>,
+<% if I18n.locale == 'en' %>
+  Hello,
   <br><br>
 <% else %>
-  Salve <%= @user.first_name %>,
+  Salve,
   <br><br>
-<%end %>
+<% end %>

data/config/locales/en.yml

@@ -36,8 +36,10 @@ en:
     signout_confirmation_request: "%{user}, Are you sure to leave?"
     recover_password_code: Code received by email
     operation_completed: Operation completed
+    operation_failed: Operation failed
     privacy_policy_update_title: Privacy policy update
     terms_and_conditions_update_title: Terms and conditions update
+    accept_invitation: Accept invitation
 
     account_controller:
       update_user_action_notice: Account information properly updated
@@ -79,3 +81,9 @@ en:
               inclusion: not accepted
             accepted_terms_and_conditions_version:
               inclusion: not accepted
+        lato/invitation:
+          attributes:
+            base:
+              already_accepted: Invitation already accepted
+              email_sending_error:  Unable to send mail
+              email_sending_limit: Wait at least 2 minutes to try a new invite attempt

data/config/locales/it.yml

@@ -38,8 +38,10 @@ it:
     signout_confirmation_request: "%{user}, Sei sicuro di voler uscire dal tuo account?"
     recover_password_code: Codice ricevuto via email
     operation_completed: Operazione completata
+    operation_failed: Operazione fallita
     privacy_policy_update_title: Aggiornamento privacy policy
     terms_and_conditions_update_title: Aggiornamento termini e condizioni
+    accept_invitation: Accetta invito
 
     account_controller:
       update_user_action_notice: Informazioni account aggiornate correttamente
@@ -76,6 +78,7 @@ it:
               password_update_code_invalid: Il codice di verifica non risulta valido
               privacy_policy_invalid: Per accettare la privacy policy devi selezionare la checkbox di conferma
               terms_and_conditions_invalid: Per accettare i termini e condizioni devi selezionare la checkbox di conferma
+              invitation_invalid: Invito non valido
             password:
               not_correct: non corretta
             password_confirmation:
@@ -88,6 +91,14 @@ it:
               inclusion: non accettata
             accepted_terms_and_conditions_version:
               inclusion: non accettati
+        lato/invitation:
+          attributes:
+            base:
+              already_accepted: Invito già accettato dall'utente
+              email_sending_error: Impossibile inviare mail
+              email_sending_limit: Attendi almeno 2 minuti per provare un nuovo tentativo di invito email
+
+
   date:
     abbr_day_names:
     - dom

data/config/routes.rb

@@ -19,6 +19,8 @@ Lato::Engine.routes.draw do
     post 'recover_password_action', to: 'authentication#recover_password_action', as: :authentication_recover_password_action
     get 'update_password', to: 'authentication#update_password', as: :authentication_update_password
     patch 'update_password_action', to: 'authentication#update_password_action', as: :authentication_update_password_action
+    get 'accept_invitation', to: 'authentication#accept_invitation', as: :authentication_accept_invitation
+    post 'accept_invitation_action', to: 'authentication#accept_invitation_action', as: :authentication_accept_invitation_action
   end
 
   scope :account do

data/db/migrate/20230109054412_create_lato_log_user_signins.rb

@@ -0,0 +1,10 @@
+class CreateLatoLogUserSignins < ActiveRecord::Migration[7.0]
+  def change
+    create_table :lato_log_user_signins do |t|
+      t.string :ip_address
+      t.string :user_agent
+      t.references :lato_user, index: true, foreign_key: true
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20230109061533_create_lato_invitations.rb

@@ -0,0 +1,11 @@
+class CreateLatoInvitations < ActiveRecord::Migration[7.0]
+  def change
+    create_table :lato_invitations do |t|
+      t.string :email
+      t.datetime :accepted_at
+      t.string :accepted_code
+      t.references :lato_user, index: true, foreign_key: true
+      t.timestamps
+    end
+  end
+end

data/lib/lato/version.rb

@@ -1,3 +1,3 @@
 module Lato
-  VERSION = "0.1.26"
+  VERSION = "0.1.28"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: lato
 version: !ruby/object:Gem::Version
-  version: 0.1.26
+  version: 0.1.28
 platform: ruby
 authors:
 - Gregorio Galante
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-12-30 00:00:00.000000000 Z
+date: 2023-02-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -130,9 +130,13 @@ files:
 - app/helpers/lato/components_helper.rb
 - app/jobs/lato/application_job.rb
 - app/mailers/lato/application_mailer.rb
+- app/mailers/lato/invitation_mailer.rb
 - app/mailers/lato/user_mailer.rb
 - app/models/concerns/lato_user_application.rb
 - app/models/lato/application_record.rb
+- app/models/lato/invitation.rb
+- app/models/lato/log.rb
+- app/models/lato/log/user_signin.rb
 - app/models/lato/operation.rb
 - app/models/lato/session.rb
 - app/models/lato/user.rb
@@ -142,11 +146,14 @@ files:
 - app/views/lato/account/_form-password.html.erb
 - app/views/lato/account/_form-user.html.erb
 - app/views/lato/account/index.html.erb
+- app/views/lato/authentication/_fields-registration.html.erb
+- app/views/lato/authentication/_form-accept-invitation.html.erb
 - app/views/lato/authentication/_form-recover-password.html.erb
 - app/views/lato/authentication/_form-signin.html.erb
 - app/views/lato/authentication/_form-signup.html.erb
 - app/views/lato/authentication/_form-update-password.html.erb
 - app/views/lato/authentication/_form-verify-email.html.erb
+- app/views/lato/authentication/accept_invitation.html.erb
 - app/views/lato/authentication/recover_password.html.erb
 - app/views/lato/authentication/signin.html.erb
 - app/views/lato/authentication/signout.html.erb
@@ -159,6 +166,7 @@ files:
 - app/views/lato/components/_operation.html.erb
 - app/views/lato/components/_page_head.html.erb
 - app/views/lato/components/_sidebar_nav_item.html.erb
+- app/views/lato/mailer/invitation/invite_mail.html.erb
 - app/views/lato/mailer/user/email_verification_mail.html.erb
 - app/views/lato/mailer/user/password_update_mail.html.erb
 - app/views/lato/operations/show.html.erb
@@ -183,6 +191,8 @@ files:
 - db/migrate/20221022205744_create_lato_users.rb
 - db/migrate/20221118072130_create_lato_operations.rb
 - db/migrate/20221229233844_add_locale_to_lato_user.rb
+- db/migrate/20230109054412_create_lato_log_user_signins.rb
+- db/migrate/20230109061533_create_lato_invitations.rb
 - lib/lato.rb
 - lib/lato/btstrap.rb
 - lib/lato/config.rb