morpho 0.3.4 → 1.0.0

data/app/concepts/morpho/user/operation/activate.rb

@@ -0,0 +1,45 @@
+module Morpho
+  class User::Operation::Activate < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :find
+    fail :not_found, fail_fast: true
+    step :check
+    fail :not_allowed, fail_fast: true
+    step :activation_email
+    fail :not_delivered, fail_fast: true
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::Activate.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find (options, **)
+      options['model'] = Morpho::User.find_by(email: options['data']['email'])
+    end
+
+    def check (options, **)
+      !options['model'].active?
+    end
+
+    def activation_email (options, **)
+      options['model'].resend_activation_needed_email!
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_found (options, **)
+      options['error'] = :not_found
+    end
+
+    def not_allowed (options, **)
+      options['error'] = :not_allowed
+    end
+
+    def not_delivered (options, **)
+      options['error'] = :not_delivered
+    end
+  end
+end

data/app/concepts/morpho/user/operation/external_sign_in.rb

@@ -0,0 +1,82 @@
+module Morpho
+  class User::Operation::ExternalSignIn < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    pass :find_authentication
+    pass :find_user
+    pass :sign_in
+    pass :register
+    pass :sign_up
+    step :generate_refresh_token
+    step :register_last_login_activity
+    step :authentication_token
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::ExternalSignIn.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find_authentication (options, **)
+      options['authentication.model'] = Morpho::Authentication.find_by(
+        uid: options['data']['uid'],
+        provider: options['data']['provider']
+      )
+    end
+
+    def find_user (options, **)
+      options['user.model'] = Morpho::User.find_by(email: options['data']['email'])
+    end
+
+    def sign_in (options, **)
+      if options['authentication.model']
+        options['user.model'] = options['authentication.model'].user
+      end
+    end
+
+    def register (options, **)
+      if options['user.model'] && !options['authentication.model']
+        provider = options['data']['provider'].downcase
+
+        options['user.model'].add_provider_to_user(provider, options['data']['uid'])
+      end
+    end
+
+    def sign_up (options, **)
+      if !options['user.model'] && !options['authentication.model']
+        provider = options['data']['provider'].downcase
+
+        options['user.model'] = Morpho::User.create_from_provider(provider, options['data']['uid'], {
+          email: options['data']['email']
+        })
+      end
+    end
+
+    def generate_refresh_token (options, **)
+      options['user.model'].generate_refresh_token!
+    end
+
+    def register_last_login_activity (options, **)
+      options['user.model'].register_last_login_activity!(options['ip'])
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_signed_in (options, **)
+      options['error'] = :not_signed_in
+    end
+
+    def not_registered (options, **)
+      options['error'] = :not_registered
+    end
+
+    def not_signed_up (options, **)
+      options['error'] = :not_signed_up
+    end
+
+    def authentication_token (options, **)
+      options['token'] = Morpho::JWT::Payload.new(options['user.model'])
+    end
+  end
+end

data/app/concepts/morpho/user/operation/refresh_token.rb

@@ -0,0 +1,35 @@
+module Morpho
+  class User::Operation::RefreshToken < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :find
+    fail :not_found, fail_fast: true
+    step :generate_refresh_token
+    step :authentication_token
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::RefreshToken.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find (options, **)
+      options['model'] = Morpho::User.find_by(refresh_token: options['data']['refresh_token'])
+    end
+
+    def generate_refresh_token (options, **)
+      options['model'].generate_refresh_token!
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_found (options, **)
+      options['error'] = :not_found
+    end
+
+    def authentication_token (options, **)
+      options['token'] = Morpho::JWT::Payload.new(options['model'])
+    end
+  end
+end

data/app/concepts/morpho/user/operation/reset_password.rb

@@ -0,0 +1,49 @@
+module Morpho
+  class User::Operation::ResetPassword < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :find
+    fail :not_found, fail_fast: true
+    step :check
+    fail :not_allowed, fail_fast: true
+    step :reset_password_email
+    fail :not_delivered, fail_fast: true
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::ResetPassword.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find (options, **)
+      options['model'] = Morpho::User.find_by(email: options['data']['email'])
+    end
+
+    def check (options, **)
+      !options['model'].external?
+    end
+
+    def reset_password_email (options, **)
+      options['model'].deliver_reset_password_instructions!
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_found (options, **)
+      options['error'] = :not_found
+    end
+
+    def not_allowed (options, **)
+      options['error'] = :not_allowed
+    end
+
+    def not_delivered (options, **)
+      options['error'] = :not_delivered
+    end
+
+    def render (options, **)
+      options['model']
+    end
+  end
+end

data/app/concepts/morpho/user/operation/sign_in.rb

@@ -0,0 +1,71 @@
+module Morpho
+  class User::Operation::SignIn < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :find
+    fail :not_found, fail_fast: true
+    step :check_active
+    fail :not_active, fail_fast: true
+    step :check_unlocked
+    fail :locked, fail_fast: true
+    step :check_password
+    fail :wrong_password, fail_fast: true
+    step :generate_refresh_token
+    step :register_last_login_activity
+    step :authentication_token
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::SignIn.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find (options, **)
+      options['model'] = Morpho::User.find_by(email: options['data']['email'])
+    end
+
+    def check_active (options, **)
+      options['model'].active?
+    end
+
+    def check_unlocked (options, **)
+      options['model'].unlocked?
+    end
+
+    def check_password (options, **)
+      options['model'].valid_password?(options['data']['password'])
+    end
+
+    def generate_refresh_token (options, **)
+      options['model'].generate_refresh_token!
+    end
+
+    def register_last_login_activity (options, **)
+      options['model'].register_last_login_activity!(options['ip'])
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_found (options, **)
+      options['error'] = :not_found
+    end
+
+    def not_active (options, **)
+      options['error'] = :not_active
+    end
+
+    def locked (options, **)
+      options['error'] = :locked
+    end
+
+    def wrong_password (options, **)
+      options['model'].register_failed_login!
+      options['error'] = :wrong_password
+    end
+
+    def authentication_token (options, **)
+      options['token'] = Morpho::JWT::Payload.new(options['model'])
+    end
+  end
+end

data/app/concepts/morpho/user/operation/sign_up.rb

@@ -0,0 +1,36 @@
+module Morpho
+  class User::Operation::SignUp < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :sync
+    fail :not_synced, fail_fast: true
+    step :save
+    fail :not_saved, fail_fast: true
+
+    def validate(options, **)
+      options['contract'] = Morpho::User::Contract::SignUp.new(Morpho::User.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def sync(options, **)
+      options['contract'].sync
+    end
+
+    def save (options, **)
+      options['model'] = options['contract'].model
+      options['model'].save
+    end
+
+    def not_valid(options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_synced(options, **)
+      options['error'] = :not_synced
+    end
+
+    def not_saved(options, **)
+      options['error'] = :not_saved
+    end
+  end
+end

data/app/concepts/morpho/user/operation/unlock.rb

@@ -0,0 +1,45 @@
+module Morpho
+  class User::Operation::Unlock < Trailblazer::Operation
+    step :validate
+    fail :not_valid, fail_fast: true
+    step :find
+    fail :not_found, fail_fast: true
+    step :check
+    fail :not_allowed, fail_fast: true
+    step :unlock_token_email
+    fail :not_delivered, fail_fast: true
+
+    def validate (options, **)
+      options['contract'] = Morpho::User::Contract::Unlock.new(OpenStruct.new)
+      options['contract'].validate(options['data'])
+    end
+
+    def find (options, **)
+      options['model'] = Morpho::User.find_by(email: options['data']['email'])
+    end
+
+    def check (options, **)
+      options['model'].login_locked?
+    end
+
+    def unlock_token_email (options, **)
+      options['model'].resend_unlock_token_email!
+    end
+
+    def not_valid (options, **)
+      options['error'] = :not_valid
+    end
+
+    def not_found (options, **)
+      options['error'] = :not_found
+    end
+
+    def not_allowed (options, **)
+      options['error'] = :not_allowed
+    end
+
+    def not_delivered (options, **)
+      options['error'] = :not_delivered
+    end
+  end
+end

data/app/models/morpho/user.rb

@@ -1,17 +1,19 @@
 module Morpho
   class User < ApplicationRecord
+    include Morpho::Tokenable
     authenticates_with_sorcery!
 
     has_many :authentications, dependent: :destroy
     accepts_nested_attributes_for :authentications
 
-    validates :email, uniqueness: true
-    validates_email_format_of :email
-
     def active?
       self.activation_state == 'active'
     end
 
+    def unlocked?
+      !self.login_locked?
+    end
+
     def register_last_login_activity!(ip_address)
       self.set_last_login_at(Time.now)
       self.set_last_ip_address(ip_address)

data/app/services/morpho/jwt/authentication_token.rb

@@ -0,0 +1,11 @@
+module Morpho
+  class JWT::AuthenticationToken
+    def self.new(request)
+      if request.headers[Morpho.config.jwt.header].present?
+        request.headers[Morpho.config.jwt.header].split(' ').last
+      else
+        nil
+      end
+    end
+  end
+end

data/app/services/morpho/jwt/decode.rb

@@ -0,0 +1,11 @@
+module Morpho
+  class JWT::Decode
+    def self.new(token)
+      begin
+        Morpho::Cipher.jwt_decode(token)
+      rescue
+        nil
+      end
+    end
+  end
+end

data/app/services/morpho/jwt/encode.rb

@@ -0,0 +1,11 @@
+module Morpho
+  class JWT::Encode
+    def self.new(payload)
+      begin
+        Morpho::Cipher.jwt_encode(payload)
+      rescue
+        nil
+      end
+    end
+  end
+end

data/app/services/morpho/jwt/payload.rb

@@ -0,0 +1,11 @@
+module Morpho
+  class JWT::Payload
+    def self.new(user)
+      expires_at = Time.now.to_i + Morpho.config.jwt.expiration_time
+      issued_at = Time.now.to_i
+      token = Morpho::JWT::Encode.new({ exp: expires_at, iat: issued_at, email: user.email })
+
+      { authentication_token: token, expires_at: expires_at, refresh_token: user.refresh_token }
+    end
+  end
+end

data/app/services/morpho/jwt/token.rb

@@ -0,0 +1,13 @@
+module Morpho
+  class JWT::Token
+    def self.new(authentication_token)
+      begin
+        token = Morpho::JWT::Decode.new(authentication_token)
+
+        HashWithIndifferentAccess.new(token.first)
+      rescue
+        HashWithIndifferentAccess.new
+      end
+    end
+  end
+end

data/app/views/layouts/morpho/application.html.erb

@@ -5,7 +5,7 @@
   <%= csrf_meta_tags %>
   <%= csp_meta_tag %>
 
-  <%= stylesheet_link_tag    'morpho/application', media: 'all' %>
+  <%= stylesheet_link_tag 'morpho/application', media: 'all' %>
   <%= javascript_include_tag 'morpho/application' %>
 </head>
 <body>

data/config/initializers/grape_swagger.rb

@@ -0,0 +1 @@
+GrapeSwagger.model_parsers.register(Morpho::Grape::DataParser, Morpho::Grape::DataWrapper)

data/config/locales/morpho.en.yml

@@ -137,7 +137,8 @@ en:
         not_found: 'Not found'
         method_not_allowed: 'Method not allowed'
         unprocessable_entity: 'Unprocessable entity'
-        unauthorized_detailed:
+        locked: 'Locked'
+        sign_in:
           unexistent: 'Email address does not belongs to a registered account'
           bad_credentials: 'User email and/or password is incorrect'
           unconfirmed: 'User account has not been confirmed'

data/config/locales/morpho.es.yml

@@ -137,7 +137,8 @@ es:
         not_found: 'No encontrado'
         method_not_allowed: 'Método no permitido'
         unprocessable_entity: 'Entidad no procesable'
-        unauthorized_detailed:
+        locked: 'Bloqueado'
+        sign_in:
           unexistent: 'Correo electrónico no pertenece a un usuario registrado'
           bad_credentials: 'Correo electrónico y/o contraseña es incorrecto(a)'
           unconfirmed: 'Cuenta de usuario no ha sido confirmada'

data/lib/generators/morpho/install/install_generator.rb

@@ -4,5 +4,6 @@ class Morpho::InstallGenerator < Rails::Generators::Base
   def install
     copy_file 'config/initializers/morpho.rb', 'config/initializers/morpho.rb'
     copy_file 'app/api/morpho/api.rb', 'app/api/morpho/api.rb'
+    copy_file '.env', '.env'
   end
 end

data/lib/generators/morpho/install/templates/app/api/morpho/api.rb

@@ -4,6 +4,7 @@ module Morpho
     rescue_from :all
 
     mount Morpho::Resources::Users
+    mount Morpho::Resources::Externals
     mount Morpho::Resources::Tokens
     mount Morpho::Resources::Passwords
     mount Morpho::Resources::Unlocks

data/lib/generators/morpho/install/templates/config/initializers/morpho.rb

@@ -1,13 +1,15 @@
 Morpho.configure do |config|
   config.host = ENV.fetch('HOST', 'localhost:3000')
-  config.host = ENV.fetch('PROTOCOL', 'http')
+  config.protocol = ENV.fetch('PROTOCOL', 'http')
   config.mailer.from = ENV.fetch('MAILER_FROM', 'no-reply@example.com')
   config.mailer.address = ENV.fetch('MAILER_ADDRESS', 'smtp.mailtrap.io')
   config.mailer.user_name = ENV.fetch('MAILER_USER_NAME', '')
   config.mailer.password = ENV.fetch('MAILER_PASSWORD', '')
   config.mailer.port = ENV.fetch('MAILER_PORT', 2525)
-  config.mailer.authentication = ENV.fetch('MAILER_AUTHENTICATION').to_s.to_sym
+  config.mailer.authentication = ENV.fetch('MAILER_AUTHENTICATION', 'login')
   config.mailer.enable_starttls_auto = ENV.fetch('MAILER_ENABLE_STARTTLS_AUTO', false)
+  config.mailer.perform_deliveries = ENV.fetch('MAILER_PERFORM_DELIVERIES', false)
+  config.mailer.delivery_method = ENV.fetch('MAILER_DELIVER_METHOD', 'smtp')
   config.jwt.secret = ''
   config.jwt.algorithm = 'HS256'
   config.jwt.header = 'Authorization'

data/lib/morpho/cipher.rb

@@ -3,11 +3,11 @@ module Morpho
     module_function
 
     def jwt_encode(payload, algorithm = Morpho.config.jwt.algorithm)
-      JWT.encode(payload, Morpho.config.jwt.secret, algorithm)
+      ::JWT.encode(payload, Morpho.config.jwt.secret, algorithm)
     end
 
     def jwt_decode(token, algorithm = Morpho.config.jwt.algorithm)
-      JWT.decode(token, Morpho.config.jwt.secret, true, algorithm: algorithm)
+      ::JWT.decode(token, Morpho.config.jwt.secret, true, algorithm: algorithm)
     end
   end
 end

data/lib/morpho/configurations/mailer.rb

@@ -12,8 +12,8 @@ module Morpho
       attr_accessor :delivery_method
 
       def initialize
-        self.perform_deliveries = true
-        self.delivery_method = :smtp
+        self.perform_deliveries = false
+        self.delivery_method = :test
         self.from = ''
         self.address = ''
         self.user_name = ''

data/lib/morpho/grape/data_parser.rb

@@ -0,0 +1,35 @@
+module Morpho
+  module Grape
+    class DataParser
+      attr_reader :wrapper
+      attr_reader :endpoint
+
+      def initialize(wrapper, endpoint)
+        @wrapper = wrapper
+        @endpoint = endpoint
+      end
+
+      def call
+        memo = {}
+
+        name = endpoint.send(:expose_params_from_model, wrapper.model)
+
+        memo[wrapper.key] = if wrapper.is_array
+          {
+            type: :array,
+            items: {
+              '$ref' => "#/definitions/#{name}"
+            }
+          }
+        else
+          {
+            type: :object,
+            '$ref' => "#/definitions/#{name}"
+          }
+        end
+
+        memo
+      end
+    end
+  end
+end

data/lib/morpho/grape/data_wrapper.rb

@@ -0,0 +1,25 @@
+module Morpho
+  module Grape
+    class DataWrapper
+      attr_reader :model
+      attr_reader :key
+      attr_reader :is_array
+      attr_reader :wrapper_name
+
+      def initialize(model, wrapper_name: nil, key: :data, is_array: false)
+        @model = model
+        @wrapper_name = wrapper_name
+        @key = key
+        @is_array = is_array
+      end
+
+      def ancestors
+        [DataWrapper]
+      end
+
+      def to_s
+        wrapper_name ? wrapper_name : "data_wrapper_#{object_id}"
+      end
+    end
+  end
+end

data/lib/morpho/loader.rb

@@ -9,4 +9,7 @@ require 'grape-entity'
 require 'grape-swagger'
 require 'grape-swagger/entity'
 require 'grape-swagger/representable'
-require 'rails-i18n'
+require 'rails-i18n'
+require 'reform'
+require 'reform/rails'
+require 'trailblazer/operation'

data/lib/morpho/version.rb

@@ -1,3 +1,3 @@
 module Morpho
-  VERSION = '0.3.4'
+  VERSION = '1.0.0'
 end

data/lib/morpho.rb

@@ -3,6 +3,8 @@ require 'morpho/engine'
 require 'morpho/cipher'
 require 'morpho/version'
 require 'morpho/configuration'
+require 'morpho/grape/data_wrapper'
+require 'morpho/grape/data_parser'
 require 'morpho/validators/contain_number_validator'
 require 'morpho/validators/contain_uppercase_validator'
 require 'morpho/validators/contain_symbol_validator'