motor-admin 0.1.58 → 0.1.64

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 98eed032de058a25fc5951c40afac9faeedd33ad66299ab381f15527e122aeeb
-  data.tar.gz: 4797ba6520bf3614ced8ea7aa800145f2ee7c35934820c5ae623dfe19c007a45
+  metadata.gz: 0241a4e5ecb99619c75457e1694e8deb4fc1bb3ddc2d4a3db3fcd9082c1f3997
+  data.tar.gz: b6a4269bfed8f4bd56fabf7f73897e2abf3d0e305a6ff58d45406dddd80c90f5
 SHA512:
-  metadata.gz: 7d966ae337a44f486a56f0dcb741d06787af84e67e4a4f5c5f750796b6a8b7979e9685ec9485854e34d994477ddcfdbc55882d9efc0dd26b356f8bbfe66bb0dd
-  data.tar.gz: 82e3f0b57ef8aa4902a36da9a8d94814f3d42f5b18cd73d70a95e59d69b5737d8652505bf3b6468629b51fef06c55e55b3ab03840838db8b1222edbc9ef9a3df
+  metadata.gz: 5395c69f5ecfc86fe5854327d8dad4b8ca361d710beeb2e1cca424da36e3f0876b10aa727a878f4109119d1ad72a846c9585c4adf214021cb9abf30e4d5252dc
+  data.tar.gz: d577fe177e037f2dcc9d4390fbaf950ede4a5afb961b1a682e76b9108b59fcf8ddb787aad5fb7e958a7440c7d950104ce3a0ce009063b1069df0688485f1f4e0

data/README.md

@@ -43,9 +43,9 @@ $ rails motor:install && rake db:migrate
 
 ![Settings UI](https://user-images.githubusercontent.com/5418788/119263883-90708780-bbe9-11eb-9f9f-f76fed0b7f27.png)
 
-Everything in the admin panel can be configured using intuitive settings UI, which can be opened via the icon in the top right corner.
+Everything in the admin panel can be configured using the intuitive settings UI, which can be opened via the icon in the top right corner.
 
-Data displayed on the resource page can be completely custimized via [SQL queries](#sql-queries) and [dashboards](#dashboards) attached to the resource as a tab. Usually, queries used to display resource data should contain `{{resource_name_id}}` [variable](#sql-queries).
+Data displayed on the resource page can be completely customized via [SQL queries](#sql-queries) and [dashboards](#dashboards) attached to the resource as a tab. Usually, queries used to display resource data should contain `{{resource_name_id}}` [variable](#sql-queries).
 
 ### Custom Actions
 
@@ -63,7 +63,7 @@ Values from the form fields can be used in API path via `{field_name}` syntax: `
 
 ![SQL query](https://user-images.githubusercontent.com/5418788/119264127-84d19080-bbea-11eb-9903-ef465d1d2c97.png)
 
-Queries can include embeded variables via `{{variable}}` syntax ([mustache](https://mustache.github.io)). `{{#variable}} ... {{/variable}}` syntax allows to decide if conditions inside the scope should be included in the query.
+Queries can include embedded variables via `{{variable}}` syntax ([mustache](https://mustache.github.io)). `{{#variable}} ... {{/variable}}` syntax allows to decide if conditions inside the scope should be included in the query.
 
 ### Data Visualization
 
@@ -93,7 +93,7 @@ Intelligence search can be opened via the top right corner button or using <kbd>
 
 ### Authorization
 
-Motor Admin allows to set row-level and column-level permissions via [cancan](https://github.com/CanCanCommunity/cancancan) gem. Admin UI permissions should be defined in `app/models/motor/ability.rb` file in `Motor::Ability` class. See [Motor Admin guide](https://github.com/omohokcoj/motor-admin/blob/master/guides/defining_prmissions.md) and [CanCan documentation](https://github.com/CanCanCommunity/cancancan/blob/develop/docs/Defining-Abilities.md) to learn how to define user permissions.
+Motor Admin allows to set row-level and column-level permissions via [cancan](https://github.com/CanCanCommunity/cancancan) gem. Admin UI permissions should be defined in `app/models/motor/ability.rb` file in `Motor::Ability` class. See [Motor Admin guide](https://github.com/omohokcoj/motor-admin/blob/master/guides/defining_permissions.md) and [CanCan documentation](https://github.com/CanCanCommunity/cancancan/blob/develop/docs/Defining-Abilities.md) to learn how to define user permissions.
 
 ### Optimized for Mobile
 
@@ -143,12 +143,6 @@ Start example application in development mode:
 MOTOR_DEVELOPMENT=true rails s
 ```
 
-## Comming Soon
-
-* Multiple databases
-* NoSQL data sources
-* Pro Bussines intelligence features
-
 ## License
 
 The gem is available as open source under the terms of the [MIT License](https://github.com/omohokcoj/motor-admin/blob/master/LICENSE).

data/app/controllers/motor/api_base_controller.rb

@@ -8,6 +8,7 @@ module Motor
     unless Rails.env.test?
       rescue_from StandardError do |e|
         Rails.logger.error(e)
+        Rails.logger.error(e.backtrace.join("\n"))
 
         render json: { errors: [e.message] }, status: :internal_server_error
       end

data/app/controllers/motor/auth_tokens_controller.rb

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+module Motor
+  class AuthTokensController < ApiBaseController
+    GENERIC_TOKEN_TTL = 2.hours
+
+    skip_authorization_check
+
+    def create
+      return render json: {} unless current_user
+
+      if defined?(Devise::JWT)
+        respond_with_devise_jwt
+      elsif defined?(JWT)
+        respond_with_generic_jwt
+      else
+        render json: {}
+      end
+    end
+
+    private
+
+    def respond_with_devise_jwt
+      warden.set_user(current_user)
+
+      render json: { token: request.env['warden-jwt_auth.token'] }
+    end
+
+    def respond_with_generic_jwt
+      payload = { uid: current_user.id, exp: GENERIC_TOKEN_TTL.from_now.to_i }
+      token = JWT.encode(payload, Rails.application.secrets.secret_key_base)
+
+      render json: { token: token }
+    end
+  end
+end

data/app/controllers/motor/icons_controller.rb

@@ -2,6 +2,8 @@
 
 module Motor
   class IconsController < ApiBaseController
+    skip_authorization_check
+
     CACHE_STORE = ActiveSupport::Cache::MemoryStore.new
 
     def index

data/app/controllers/motor/resource_methods_controller.rb

@@ -2,6 +2,8 @@
 
 module Motor
   class ResourceMethodsController < ApiBaseController
+    skip_authorization_check
+
     before_action :authorize_resource
 
     def show

data/app/controllers/motor/run_queries_controller.rb

@@ -20,8 +20,9 @@ module Motor
     private
 
     def render_result
-      variables = params.fetch(:variables, {}).merge(current_user_variables)
-      query_result = Queries::RunQuery.call(@query, variables_hash: variables)
+      query_result = Queries::RunQuery.call(@query, variables_hash: variables_params,
+                                                    limit: params[:limit].presence,
+                                                    filters: filter_params)
 
       if query_result.error
         render json: { errors: [{ detail: query_result.error }] }, status: :unprocessable_entity
@@ -56,5 +57,13 @@ module Motor
     def query_params
       params.require(:data).permit(:sql_body, preferences: {})
     end
+
+    def variables_params
+      params.fetch(:variables, {}).merge(current_user_variables)
+    end
+
+    def filter_params
+      (params[:filter] || params[:filters])&.to_unsafe_h
+    end
   end
 end

data/config/routes.rb

@@ -5,6 +5,7 @@ Motor::Admin.routes.draw do
     scope 'api', as: :api do
       resources :run_queries, only: %i[show create]
       resources :send_alerts, only: %i[create]
+      resources :auth_tokens, only: %i[create]
       resources :queries, only: %i[index show create update destroy]
       resources :tags, only: %i[index]
       resources :configs, only: %i[index create]

data/lib/generators/motor/templates/install.rb

@@ -149,6 +149,7 @@ class <%= migration_class_name %> < ActiveRecord::Migration[<%= ActiveRecord::Mi
     drop_table :motor_audits
     drop_table :motor_alert_locks
     drop_table :motor_alerts
+    drop_table :motor_forms
     drop_table :motor_taggable_tags
     drop_table :motor_tags
     drop_table :motor_resources

data/lib/motor/active_record_utils.rb

@@ -20,4 +20,5 @@ require_relative './active_record_utils/fetch_methods'
 require_relative './active_record_utils/defined_scopes_extension'
 require_relative './active_record_utils/active_storage_links_extension'
 require_relative './active_record_utils/active_storage_blob_patch'
-require_relative './active_record_utils/active_record_filter'
+require_relative './active_record_utils/active_record_filter_patch'
+require_relative './active_record_utils/active_record_connection_column_patch'

data/lib/motor/active_record_utils/active_record_connection_column_patch.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+begin
+  require 'active_record/connection_adapters/deduplicable'
+rescue LoadError
+  nil
+end
+
+ActiveRecord::ConnectionAdapters::Column.class_eval do
+  def array
+    false
+  end
+end

data/lib/motor/admin.rb

@@ -45,6 +45,7 @@ module Motor
     initializer 'motor.alerts.scheduler' do
       config.after_initialize do
         next unless Motor.server?
+        next if Motor.development?
 
         Motor::Alerts::Scheduler::SCHEDULER_TASK.execute
       end
@@ -65,6 +66,18 @@ module Motor
       end
     end
 
+    initializer 'warden.configure.dispatch_requests' do
+      next unless defined?(Warden::JWTAuth)
+
+      config.after_initialize do
+        Warden::JWTAuth.configure do |config|
+          config.dispatch_requests += [
+            ['POST', /\A#{Regexp.escape(Motor::Admin.routes.url_helpers.motor_api_auth_tokens_path)}\z/]
+          ]
+        end
+      end
+    end
+
     initializer 'motor.active_storage.extensions' do
       config.after_initialize do
         next unless defined?(ActiveStorage::Engine)

data/lib/motor/api_query.rb

@@ -5,9 +5,9 @@ module Motor
     module_function
 
     def call(rel, params)
-      rel = ApiQuery::Sort.call(rel, params[:sort])
+      rel = ApiQuery::Sort.call(rel, params[:sort] || params[:order])
       rel = ApiQuery::Paginate.call(rel, params[:page])
-      rel = ApiQuery::Filter.call(rel, params[:filter])
+      rel = ApiQuery::Filter.call(rel, params[:filter] || params[:filters])
       rel = ApiQuery::ApplyScope.call(rel, params[:scope])
 
       ApiQuery::Search.call(rel, params[:q] || params[:search] || params[:query])

data/lib/motor/api_query/filter.rb

@@ -4,6 +4,7 @@ module Motor
   module ApiQuery
     module Filter
       LIKE_FILTER_VALUE_REGEXP = /\A%?(.*?)%?\z/.freeze
+      DISTINCT_RESTRICTED_COLUMN_TYPES = %i[json point].freeze
 
       module_function
 
@@ -12,7 +13,10 @@ module Motor
 
         normalized_params = normalize_params(Array.wrap(params))
 
-        rel.filter(normalized_params).distinct
+        rel = rel.filter(normalized_params)
+        rel = rel.distinct if can_apply_distinct?(rel)
+
+        rel
       end
 
       def normalize_params(params)
@@ -47,6 +51,12 @@ module Motor
         end
       end
 
+      def can_apply_distinct?(rel)
+        rel.columns.none? do |column|
+          DISTINCT_RESTRICTED_COLUMN_TYPES.include?(column.type)
+        end
+      end
+
       def normalize_action(action, value)
         case action
         when 'includes'

data/lib/motor/build_schema/find_icon.rb

@@ -99,7 +99,6 @@ module Motor
       'customer' => 'users',
       'client' => 'users',
       'ticket' => 'ticket',
-      'event' => 'event',
       'contact' => 'users',
       'member' => 'users',
       'admin' => 'user-check',

data/lib/motor/queries/render_sql_template.rb

@@ -22,9 +22,19 @@ module Motor
             variable_name = Regexp.last_match[1]
 
             index = selected_variables.index { |name, _| name == variable_name }
-            selected_variables << [variable_name, variables[variable_name]] unless index
+            variable_values = variables[variable_name]
 
-            "$#{selected_variables.size}"
+            if variable_values.is_a?(Array)
+              first_variable_index = selected_variables.size + 1
+
+              variable_values.each { |value| selected_variables << [variable_name, value] } unless index
+
+              (first_variable_index..selected_variables.size).map { |i| "$#{i}" }.join(', ')
+            else
+              selected_variables << [variable_name, variables[variable_name]] unless index
+
+              "$#{selected_variables.size}"
+            end
           end
 
         [rendered, selected_variables]

data/lib/motor/queries/run_query.rb

@@ -7,13 +7,16 @@ module Motor
 
       QueryResult = Struct.new(:data, :columns, :error, keyword_init: true)
 
-      WITH_STATEMENT_START = 'WITH __query__ AS ('
+      CTE_NAME = '__query__'
+
+      WITH_STATEMENT_START = "WITH #{CTE_NAME} AS ("
 
       WITH_STATEMENT_TEMPLATE = <<~SQL
         #{WITH_STATEMENT_START}%<sql_body>s
-        ) SELECT * FROM __query__ LIMIT %<limit>s;
+        )
       SQL
 
+      STATEMENT_VARIABLE_REGEXP = /\$\d+/.freeze
       PG_ERROR_REGEXP = /\APG.+ERROR:/.freeze
 
       RESERVED_VARIABLES = %w[current_user_id current_user_email].freeze
@@ -23,11 +26,14 @@ module Motor
       # @param query [Motor::Query]
       # @param variables_hash [Hash]
       # @param limit [Integer]
+      # @param filters [Hash]
       # @return [Motor::Queries::RunQuery::QueryResult]
-      def call!(query, variables_hash: nil, limit: DEFAULT_LIMIT)
+      def call!(query, variables_hash: nil, limit: nil, filters: nil)
         variables_hash ||= {}
+        limit ||= DEFAULT_LIMIT
+        filters ||= {}
 
-        result = execute_query(query, limit, variables_hash)
+        result = execute_query(query, limit, variables_hash, filters)
 
         QueryResult.new(data: result.rows, columns: build_columns_hash(result))
       end
@@ -36,8 +42,8 @@ module Motor
       # @param variables_hash [Hash]
       # @param limit [Integer]
       # @return [Motor::Queries::RunQuery::QueryResult]
-      def call(query, variables_hash: nil, limit: DEFAULT_LIMIT)
-        call!(query, variables_hash: variables_hash, limit: limit)
+      def call(query, variables_hash: nil, limit: nil, filters: nil)
+        call!(query, variables_hash: variables_hash, limit: limit, filters: filters)
       rescue ActiveRecord::StatementInvalid => e
         QueryResult.new(error: build_error_message(e))
       end
@@ -51,10 +57,11 @@ module Motor
       # @param query [Motor::Query]
       # @param limit [Integer]
       # @param variables_hash [Hash]
+      # @param filters [Hash]
       # @return [ActiveRecord::Result]
-      def execute_query(query, limit, variables_hash)
+      def execute_query(query, limit, variables_hash, filters)
         result = nil
-        statement = prepare_sql_statement(query, limit, variables_hash)
+        statement = prepare_sql_statement(query, limit, variables_hash, filters)
 
         ActiveRecord::Base.transaction do
           result =
@@ -62,6 +69,8 @@ module Motor
             when 'ActiveRecord::ConnectionAdapters::PostgreSQLAdapter'
               PostgresqlExecQuery.call(ActiveRecord::Base.connection, statement)
             else
+              statement = normalize_statement_for_sql(statement)
+
               ActiveRecord::Base.connection.exec_query(*statement)
             end
 
@@ -88,27 +97,68 @@ module Motor
       # @param query [Motor::Query]
       # @param limit [Integer]
       # @param variables_hash [Hash]
+      # @param filters [Hash]
       # @return [Array]
-      def prepare_sql_statement(query, limit, variables_hash)
+      def prepare_sql_statement(query, limit, variables_hash, filters)
         variables = merge_variable_default_values(query.preferences.fetch(:variables, []), variables_hash)
 
         sql, query_variables = RenderSqlTemplate.call(query.sql_body, variables)
+        cte_sql = format(WITH_STATEMENT_TEMPLATE, sql_body: sql.strip.delete_suffix(';'))
+        cte_select_sql = build_cte_select_sql(limit, filters)
 
         attributes = build_statement_attributes(query_variables)
 
-        [format(WITH_STATEMENT_TEMPLATE, sql_body: sql.strip.delete_suffix(';'), limit: limit), 'SQL', attributes]
+        [[cte_sql, cte_select_sql].join, 'SQL', attributes]
+      end
+
+      # @param limit [Number]
+      # @param filters [Hash]
+      # @return [String]
+      def build_cte_select_sql(limit, filters)
+        table = Arel::Table.new(CTE_NAME)
+
+        arel_filters = build_filters_arel(filters)
+
+        expresion = table.project(table[Arel.star])
+        expresion = expresion.where(arel_filters) if arel_filters.present?
+
+        expresion.take(limit.to_i).to_sql
+      end
+
+      # @param filters [Hash]
+      # @return [Arel::Nodes, nil]
+      def build_filters_arel(filters)
+        return nil if filters.blank?
+
+        table = Arel::Table.new(CTE_NAME)
+
+        arel_filters = filters.map { |key, value| table[key].in(value) }
+
+        arel_filters[1..].reduce(arel_filters.first) { |acc, arel| acc.and(arel) }
       end
 
       # @param variables [Array<(String, Object)>]
       # @return [Array<ActiveRecord::Relation::QueryAttribute>]
       def build_statement_attributes(variables)
         variables.map do |variable_name, value|
-          ActiveRecord::Relation::QueryAttribute.new(
-            variable_name,
-            value,
-            ActiveRecord::Type::Value.new
-          )
-        end
+          [value].flatten.map do |val|
+            ActiveRecord::Relation::QueryAttribute.new(
+              variable_name,
+              val,
+              ActiveRecord::Type::Value.new
+            )
+          end
+        end.flatten
+      end
+
+      # @param array [Array]
+      # @return [Array]
+      def normalize_statement_for_sql(statement)
+        sql, _, attributes = statement
+
+        sql = ActiveRecord::Base.sanitize_sql([sql.gsub(STATEMENT_VARIABLE_REGEXP, '?'), attributes.map(&:value)])
+
+        [sql, 'SQL', attributes]
       end
 
       # @param variable_configs [Array<Hash>]

data/lib/motor/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Motor
-  VERSION = '0.1.58'
+  VERSION = '0.1.64'
 end

data/ui/dist/manifest.json

@@ -2068,11 +2068,11 @@
   "mail-opened.svg": "icons/mail-opened.svg",
   "mail.svg": "icons/mail.svg",
   "mailbox.svg": "icons/mailbox.svg",
-  "main-ba741735a93c9314bbfa.css.gz": "main-ba741735a93c9314bbfa.css.gz",
-  "main-ba741735a93c9314bbfa.js.LICENSE.txt": "main-ba741735a93c9314bbfa.js.LICENSE.txt",
-  "main-ba741735a93c9314bbfa.js.gz": "main-ba741735a93c9314bbfa.js.gz",
-  "main.css": "main-ba741735a93c9314bbfa.css",
-  "main.js": "main-ba741735a93c9314bbfa.js",
+  "main-6811aa12e49ba8c3cc7b.css.gz": "main-6811aa12e49ba8c3cc7b.css.gz",
+  "main-6811aa12e49ba8c3cc7b.js.LICENSE.txt": "main-6811aa12e49ba8c3cc7b.js.LICENSE.txt",
+  "main-6811aa12e49ba8c3cc7b.js.gz": "main-6811aa12e49ba8c3cc7b.js.gz",
+  "main.css": "main-6811aa12e49ba8c3cc7b.css",
+  "main.js": "main-6811aa12e49ba8c3cc7b.js",
   "man.svg": "icons/man.svg",
   "manual-gearbox.svg": "icons/manual-gearbox.svg",
   "map-2.svg": "icons/map-2.svg",

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: motor-admin
 version: !ruby/object:Gem::Version
-  version: 0.1.58
+  version: 0.1.64
 platform: ruby
 authors:
 - Pete Matsyburka
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-06-13 00:00:00.000000000 Z
+date: 2021-06-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord-filter
@@ -131,6 +131,7 @@ files:
 - app/controllers/motor/application_controller.rb
 - app/controllers/motor/assets_controller.rb
 - app/controllers/motor/audits_controller.rb
+- app/controllers/motor/auth_tokens_controller.rb
 - app/controllers/motor/configs_controller.rb
 - app/controllers/motor/dashboards_controller.rb
 - app/controllers/motor/data_controller.rb
@@ -140,7 +141,6 @@ files:
 - app/controllers/motor/resource_methods_controller.rb
 - app/controllers/motor/resources_controller.rb
 - app/controllers/motor/run_queries_controller.rb
-- app/controllers/motor/schemas_controller.rb
 - app/controllers/motor/send_alerts_controller.rb
 - app/controllers/motor/tags_controller.rb
 - app/controllers/motor/ui_controller.rb
@@ -169,7 +169,8 @@ files:
 - lib/motor-admin.rb
 - lib/motor.rb
 - lib/motor/active_record_utils.rb
-- lib/motor/active_record_utils/active_record_filter.rb
+- lib/motor/active_record_utils/active_record_connection_column_patch.rb
+- lib/motor/active_record_utils/active_record_filter_patch.rb
 - lib/motor/active_record_utils/active_storage_blob_patch.rb
 - lib/motor/active_record_utils/active_storage_links_extension.rb
 - lib/motor/active_record_utils/defined_scopes_extension.rb
@@ -1490,8 +1491,8 @@ files:
 - ui/dist/icons/zoom-money.svg.gz
 - ui/dist/icons/zoom-out.svg.gz
 - ui/dist/icons/zoom-question.svg.gz
-- ui/dist/main-ba741735a93c9314bbfa.css.gz
-- ui/dist/main-ba741735a93c9314bbfa.js.gz
+- ui/dist/main-6811aa12e49ba8c3cc7b.css.gz
+- ui/dist/main-6811aa12e49ba8c3cc7b.js.gz
 - ui/dist/manifest.json
 homepage:
 licenses:

data/app/controllers/motor/schemas_controller.rb

@@ -1,11 +0,0 @@
-# frozen_string_literal: true
-
-module Motor
-  class SchemasController < ApiBaseController
-    def show
-      render json: Motor::BuildSchema.call
-    end
-
-    def update; end
-  end
-end