lesli_admin 0.1.0

data/app/services/lesli_admin/user_service.rb

@@ -0,0 +1,300 @@
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS Development Framework.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+
+module LesliAdmin
+    class UserService < Lesli::ApplicationLesliService
+
+
+        # Return a list of users that belongs to the account of the current_user
+        # this list is meant to be used in selectors, autocomplets, etc
+        def list query=nil, params=nil
+            #users = current_user.account.users
+            users = Lesli::Account.first.users
+
+            if params[:role].present?
+                # add simple quotes to the roles so the sql can manage the query
+                roles = params[:role].split(",").map { |role| "'#{role}'" }.join(", ")
+                users = users.joins("
+                    inner join (
+                        select
+                            ur.users_id, string_agg(r.\"name\", ', ') role_names
+                        from user_roles ur
+                        join roles r
+                            on r.id = ur.role_id 
+                            and r.name in ( #{ roles } )
+                        where ur.deleted_at is null
+                        group by ur.users_id
+                    ) roles on roles.users_id = users.id
+                ")
+            end
+
+            users.order(name: :asc).select(
+                :id,
+                :email,
+                "CONCAT_WS(' ', first_name, last_name) as name",
+                :alias
+            ).as_json
+        end
+
+
+        # @return [Array] Paginated index of users.
+        # @description Return a paginated array of users, used mostly in frontend views
+        # TODO: Implement pg_search
+        def index query, params
+
+            # sql string to join to user_roles and get all the roles assigned to a user
+            sql_string_for_user_roles = "left join (
+                select
+                    ur.user_id, string_agg(r.\"name\", ', ') rolenames
+                from user_roles ur
+                join roles r
+                    on r.id = ur.role_id
+                where ur.deleted_at is null
+                group by ur.user_id
+            ) roles on roles.user_id = users.id"
+
+            # sql string to joing to user_sessions and get all the active sessions of a user
+            sql_string_for_user_sessions = "left join (
+                select
+                    max(last_used_at) as last_action_performed_at,
+                    user_id
+                from user_sessions us
+                where us.deleted_at is null
+                group by(us.user_id)
+            ) sessions on sessions.user_id = users.id"
+
+            #users = current_user.account.users
+            users = Lesli::Account.first.users
+            #.joins(sql_string_for_user_roles)
+            #.joins(sql_string_for_user_sessions)
+            users = users.page(query[:pagination][:page])
+            .per(query[:pagination][:perPage])
+            .order("#{query[:order][:by]} #{query[:order][:dir]} NULLS LAST")
+
+            users.select(
+                :id,
+                "CONCAT(COALESCE(first_name, ''), ' ', COALESCE(last_name, '')) as name",
+                :email,
+                :active,
+                #:rolenames,
+                #Date2.new.date_time.db_column("current_sign_in_at"),
+                #Date2.new.date_time.db_column("last_action_performed_at")
+            )
+
+        end
+
+
+        # Creates a query that selects all user information from several tables if CloudLock is present
+        def show
+
+            user = resource
+
+            return {
+                id: user[:id],
+                email: user[:email],
+                alias: user[:alias],
+                active: user[:active],
+                full_name: user.full_name,
+                salutation: user[:salutation],
+                first_name: user[:first_name],
+                last_name: user[:last_name],
+                telephone: user[:telephone],
+                
+                locale: user.settings.select(:value).find_by(:name => "locale"),
+
+                roles: user.roles.map { |r| { id: r[:id], name: r[:name], permission_level: r[:object_level_permission]} },
+
+                mfa_enabled: user.mfa_settings[:enabled],
+                mfa_method:  user.mfa_settings[:method],
+
+                created_at: user[:created_at],
+                updated_at: user[:updated_at],
+                
+                detail_attributes: {
+                    title: user.detail[:title],
+                    address: user.detail[:address],
+                    work_city: user.detail[:work_city],
+                    work_region: user.detail[:work_region],
+                    work_address: user.detail[:work_address]
+                }
+            }
+        end
+
+        def create user_params
+
+            # check if request has an email to create the user
+            if user_params[:email].blank?
+                self.error(I18n.t("core.users.messages_danger_not_valid_email_found"))
+            end
+
+            
+            # register the new user
+            user = User.new({
+                :active => true,
+                :email => user_params[:email],
+                :alias => user_params[:alias] || "",
+                :first_name => user_params[:first_name] || "",
+                :last_name => user_params[:last_name] || "",
+                :telephone => user_params[:telephone] || "",
+                #:detail_attributes => user_params[:detail_attributes] || {}
+            })
+
+
+
+            # assign a random password
+            user.password = Devise.friendly_token
+
+            # enrol user to my own account
+            user.account = current_user.account
+
+            # users created through the administration area does not need to confirm their accounts
+            # instead we send a password reset link, so they can have access to the platform
+            #user.confirm
+
+            if user.save
+
+                # if a role is provided to assign to the new user
+                # unless user_params[:roles_id].blank?
+                #     # check if current user can work with the sent role
+                #     if current_user.can_work_with_role?(user_params[:roles_id])
+                #         # Search the role assigned
+                #         role = current_user.account.roles.find_by(id: user_params[:roles_id])
+                #         # assign role to the new user
+                #         user.user_roles.create({ role: role })
+                #     end
+                # end
+
+                # role validation - if new user does not have any role assigned
+                # if user.roles.blank?
+
+                #     default_role_id = current_user.account.settings.find_by(:name => "default_role_id")&.value
+                #     owner_role_id =  current_user.account.roles.find_by(:name => "owner").id
+                #     if default_role_id.present? && default_role_id != owner_role_id
+                #         # assign default role
+                #         user.user_roles.create({ role:  current_user.account.roles.find_by(:id => default_role_id)})
+
+                #     else
+                #         # assign limited role
+                #         user.user_roles.create({ role: current_user.account.roles.find_by(:name => "limited") })
+                #     end 
+                # end
+
+                # saving logs with information about the creation of the user
+                # user.logs.create({ title: "user_created_at", description: Date2.new.date_time.to_s })
+                # user.logs.create({ title: "user_created_by", description: current_user.email })
+                # user.logs.create({ title: "user_created_with_role", description: user.user_roles.first.role.name + " " + user.user_roles.first.role.id.to_s})
+                # User.log_activity_create(current_user, user)
+
+                self.resource = user
+
+                begin
+                    # users created through the administration area does not need to confirm their accounts
+                    # instead we send a password reset link, so they can have access to the platform
+                    #UserMailer.with(user: user).invitation_instructions.deliver_now
+                rescue => exception
+                    #Honeybadger.notify(exception)
+                    #user.logs.create({ title: "user_creation_email_failed ", description: exception.message })
+                end
+
+            else
+                self.error(user.errors.full_messages.to_sentence)
+            end
+
+            self
+
+        end
+
+        def update params
+
+            old_attributes = resource.detail.attributes.merge({
+                active: resource.active
+            })
+
+            if resource.update(params)
+                new_attributes = resource.detail.attributes.merge({
+                    active: resource.active
+                })
+
+                resource.log_activity_update(current_user, resource, old_attributes, new_attributes)
+            else
+                self.error(resource.errors.full_messages.to_sentence)
+            end
+            
+            self
+        end
+
+
+        # force the user to change the password (at next login)
+        def request_password
+
+            # expire password
+            resource.set_password_as_expired
+
+            resource.logs.create({ title: "request_password", description: "by_user: " + current_user.email })
+        end
+
+
+        # generate a random password for the user
+        def password_reset
+
+            # generate random password
+            pass = resource.password_reset
+
+            resource.logs.create({ title: "password_reset", description: "by_user: " + current_user.email })
+
+            pass
+        end
+
+        def logout
+            # delete user active sessions
+            resource.sessions.destroy_all
+
+            resource.logs.create({ title: "close_sessions", description: "by_user: " + current_user.email })
+        end
+
+        def revoke_access
+
+            # delete user active sessions
+            self.logout
+
+            # add delete date to the last active session
+            resource.revoke_access
+
+            resource.logs.create({ title: "revoke_access", description: "by_user: " + current_user.email })
+        end
+
+        def find id
+            #super(current_user.account.users.joins(:detail).find_by(id: id))
+            super(current_user.account.users.find_by(id: id))
+        end
+    end
+end

data/app/views/layouts/lesli_admin/application.html.erb

@@ -0,0 +1,15 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Lesli admin</title>
+  <%= csrf_meta_tags %>
+  <%= csp_meta_tag %>
+
+  <%= stylesheet_link_tag    "lesli_admin/application", media: "all" %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/app/views/lesli_admin/accounts/_account.html.erb

@@ -0,0 +1,2 @@
+<div id="<%= dom_id account %>">
+</div>

data/app/views/lesli_admin/accounts/_form.html.erb

@@ -0,0 +1,17 @@
+<%= form_with(model: account) do |form| %>
+  <% if account.errors.any? %>
+    <div style="color: red">
+      <h2><%= pluralize(account.errors.count, "error") %> prohibited this account from being saved:</h2>
+
+      <ul>
+        <% account.errors.each do |error| %>
+          <li><%= error.full_message %></li>
+        <% end %>
+      </ul>
+    </div>
+  <% end %>
+
+  <div>
+    <%= form.submit %>
+  </div>
+<% end %>

data/app/views/lesli_admin/accounts/edit.html.erb

@@ -0,0 +1,10 @@
+<h1>Editing account</h1>
+
+<%= render "form", account: @account %>
+
+<br>
+
+<div>
+  <%= link_to "Show this account", @account %> |
+  <%= link_to "Back to accounts", accounts_path %>
+</div>

data/app/views/lesli_admin/accounts/index.html.erb

@@ -0,0 +1,34 @@
+<%
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS development platform.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+%>
+<router-view></router-view>

data/app/views/lesli_admin/accounts/new.html.erb

@@ -0,0 +1,9 @@
+<h1>New account</h1>
+
+<%= render "form", account: @account %>
+
+<br>
+
+<div>
+  <%= link_to "Back to accounts", accounts_path %>
+</div>

data/app/views/lesli_admin/accounts/show.html.erb

@@ -0,0 +1,34 @@
+<%
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS development platform.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+%>
+<router-view></router-view>

data/app/views/lesli_admin/dashboards/_dashboard.html.erb

@@ -0,0 +1,2 @@
+<div id="<%= dom_id dashboard %>">
+</div>

data/app/views/lesli_admin/dashboards/_form.html.erb

@@ -0,0 +1,17 @@
+<%= form_with(model: dashboard) do |form| %>
+  <% if dashboard.errors.any? %>
+    <div style="color: red">
+      <h2><%= pluralize(dashboard.errors.count, "error") %> prohibited this dashboard from being saved:</h2>
+
+      <ul>
+        <% dashboard.errors.each do |error| %>
+          <li><%= error.full_message %></li>
+        <% end %>
+      </ul>
+    </div>
+  <% end %>
+
+  <div>
+    <%= form.submit %>
+  </div>
+<% end %>

data/app/views/lesli_admin/dashboards/edit.html.erb

@@ -0,0 +1,10 @@
+<h1>Editing dashboard</h1>
+
+<%= render "form", dashboard: @dashboard %>
+
+<br>
+
+<div>
+  <%= link_to "Show this dashboard", @dashboard %> |
+  <%= link_to "Back to dashboards", dashboards_path %>
+</div>

data/app/views/lesli_admin/dashboards/index.html.erb

@@ -0,0 +1,14 @@
+<p style="color: green"><%= notice %></p>
+
+<h1>Dashboards</h1>
+
+<div id="dashboards">
+  <% @dashboards.each do |dashboard| %>
+    <%= render dashboard %>
+    <p>
+      <%= link_to "Show this dashboard", dashboard %>
+    </p>
+  <% end %>
+</div>
+
+<%= link_to "New dashboard", new_dashboard_path %>

data/app/views/lesli_admin/dashboards/new.html.erb

@@ -0,0 +1,9 @@
+<h1>New dashboard</h1>
+
+<%= render "form", dashboard: @dashboard %>
+
+<br>
+
+<div>
+  <%= link_to "Back to dashboards", dashboards_path %>
+</div>

data/app/views/lesli_admin/dashboards/show.html.erb

@@ -0,0 +1 @@
+<router-view></router-view>

data/app/views/lesli_admin/partials/_engine-navigation.html.erb

@@ -0,0 +1,52 @@
+<%
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS development platform.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+%>
+
+<%= navigation_item(lesli_admin.dashboard_path, "Dashboard", "ri-dashboard-3-line"); %>
+<%= navigation_item(lesli_admin.account_path, "Account", "ri-building-4-line"); %>
+<%= navigation_item(lesli_admin.users_path, "Users", "ri-user-line"); %>
+
+<%#= navigation_item(lesli.account_path, "Localization", "ri-time-line"); %>
+<%#= navigation_item(lesli.account_path, "Theming", "ri-paint-brush-line"); %>
+
+<%#= navigation_item(lesli.account_path, I18n.t("core.shared.sidebar_nav_account"), "ri-building-4-line"); %>
+<%#= navigation_item(lesli.users_path, I18n.t("core.shared.sidebar_nav_users"), "ri-user-line"); %>
+
+<%#= navigation_item(main_app.descriptors_path, "Role descriptors", "ri-shield-check-line"); %>
+<%#= navigation_item(main_app.roles_path, I18n.t("core.shared.sidebar_nav_roles_privileges"), "ri-shield-user-line"); %>
+
+<%#= navigation_item(main_app.security_account_settings_path, I18n.t("core.account/settings.view_tab_title_security_settings"), "ri-lock-line"); %>
+<%#= navigation_item(main_app.account_currencies_path, I18n.t("core.shared.sidebar_nav_currencies"), "ri-time-line"); %>
+<%#= navigation_item(main_app.date_time_account_settings_path, I18n.t("core.account/settings.view_tab_title_time_settings"), "ri-time-line"); %>
+<%#= navigation_item(main_app.branding_account_settings_path, I18n.t("core.account/settings.view_tab_title_branding"), "ri-image-line") %>
+<%#= navigation_item(main_app.theme_account_settings_path, I18n.t("core.account/settings.view_tab_title_theme"), "ri-paint-brush-line"); %>

data/app/views/lesli_admin/users/edit.html.erb

@@ -0,0 +1,10 @@
+<h1>Editing user</h1>
+
+<%= render "form", user: @user %>
+
+<br>
+
+<div>
+  <%= link_to "Show this user", @user %> |
+  <%= link_to "Back to users", users_path %>
+</div>

data/app/views/lesli_admin/users/index.html.erb

@@ -0,0 +1,34 @@
+<%
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS development platform.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+%>
+<router-view></router-view>

data/app/views/lesli_admin/users/new.html.erb

@@ -0,0 +1,34 @@
+<%
+=begin
+
+Lesli
+
+Copyright (c) 2023, Lesli Technologies, S. A.
+
+This program is free software: you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation, either version 3 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program. If not, see http://www.gnu.org/licenses/.
+
+Lesli · Ruby on Rails SaaS development platform.
+
+Made with ♥ by https://www.lesli.tech
+Building a better future, one line of code at a time.
+
+@contact  hello@lesli.tech
+@website  https://www.lesli.tech
+@license  GPLv3 http://www.gnu.org/licenses/gpl-3.0.en.html
+
+// · ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~     ~·~
+// · 
+=end
+%>
+<router-view></router-view>

data/app/views/lesli_admin/users/show.html.erb

@@ -0,0 +1,10 @@
+<p style="color: green"><%= notice %></p>
+
+<%= render @user %>
+
+<div>
+  <%= link_to "Edit this user", edit_user_path(@user) %> |
+  <%= link_to "Back to users", users_path %>
+
+  <%= button_to "Destroy this user", @user, method: :delete %>
+</div>

data/config/routes.rb

@@ -0,0 +1,13 @@
+LesliAdmin::Engine.routes.draw do
+    root to: "dashboards#show"
+    resource :dashboard, only: [:show]
+
+    resource :account, only: [:show, :update]
+    resources :users, only: [:index, :show, :new, :update, :create, :destroy] do
+
+        # extensions to the users methods
+        collection do
+            get :list
+        end
+    end
+end

data/lib/lesli_admin/engine.rb

@@ -0,0 +1,18 @@
+module LesliAdmin
+    class Engine < ::Rails::Engine
+        isolate_namespace LesliAdmin
+
+        initializer :lesli_admin do |app|
+
+            # register assets manifest
+            config.assets.precompile += %w[lesli_admin_manifest.js]
+
+            # register engine migrations path
+            unless app.root.to_s.match root.to_s
+                config.paths["db/migrate"].expanded.each do |expanded_path|
+                    app.config.paths["db/migrate"] << expanded_path
+                end
+            end
+        end
+    end
+end

data/lib/lesli_admin/version.rb

@@ -0,0 +1,3 @@
+module LesliAdmin
+  VERSION = "0.1.0"
+end