RubyGems - rails_admin_settings - Versions diffs - 1.3.2 → 1.4.0 - Mend

rails_admin_settings 1.3.2 → 1.4.0

Files changed (32) hide show

checksums.yaml +5 -5
data/.travis.yml +4 -1
data/CHANGELOG.md +11 -0
data/Gemfile.lock +106 -103
data/README.md +21 -3
data/app/views/rails_admin/main/_setting_value.html.haml +3 -3
data/config/locales/en.yml +1 -0
data/config/locales/pt-BR.yml +1 -0
data/config/locales/ru.yml +1 -0
data/gemfiles/{mongoid-6.1.gemfile → mongoid-6.3.gemfile} +1 -1
data/lib/rails_admin_settings.rb +5 -0
data/lib/rails_admin_settings/kinds.rb +7 -1
data/lib/rails_admin_settings/processing.rb +59 -10
data/lib/rails_admin_settings/require_helpers.rb +20 -0
data/lib/rails_admin_settings/settings.rb +6 -2
data/lib/rails_admin_settings/storage/{carrierwave.rb → carrier_wave_uploader.rb} +2 -2
data/lib/rails_admin_settings/tasks.rb +1 -1
data/lib/rails_admin_settings/uploads.rb +13 -12
data/lib/rails_admin_settings/validation.rb +11 -1
data/lib/rails_admin_settings/version.rb +1 -1
data/log/development.log +0 -0
data/rails_admin_settings.gemspec +2 -2
data/spec/defaults_spec.rb +6 -6
data/spec/factories/setting.rb +1 -1
data/spec/label_spec.rb +0 -2
data/spec/migration_spec.rb +4 -4
data/spec/model_spec.rb +68 -8
data/spec/paperclip_spec.rb +0 -1
data/spec/settings_spec.rb +1 -1
data/spec/spec_helper.rb +31 -2
data/spec/types_spec.rb +12 -6
metadata +9 -8

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 354ac1ea3f414693cec277ee8f2d92295d9ca5b1
-  data.tar.gz: 6f4ecafee55ac66d6215ad25ea400a685195b674
+SHA256:
+  metadata.gz: 2c3a2cc5a5dd0c4e77f1e05ef1447698edde1ba25344fc2e5baea2dc7c686427
+  data.tar.gz: 753783ad33100ef2d26891da3ecb909768f2b4c9e86242d1fedd44b388ee02ec
 SHA512:
-  metadata.gz: 0e0ed9a6c11e4ee88b669ed7982d98095e56d5880fab2f26abcd51d6cdf6dfb75b71c66f9ab3c3651f5cf54fe615c2626a6b6197bdb3607fb937798187acd4e3
-  data.tar.gz: 588d5ed55e2f5800ee23f0b3003f89c87d9de04c279c32ade06f933e9e7f6b4fbf661c203c232feb28d8f5940d27f19a0415ccee2fac5d3a6c395f6ad37ba436
+  metadata.gz: b8b2f3ac4d7218bd0840aba1965f499f5b56d4a0bb0f30a1e36cdb3ac411ab19e620cfc7c769989d66eab63fd7efd06c1a7356e21e1a3bd96e5f441ebd492ad0
+  data.tar.gz: 306df770d677bee42028699ded628aed3339aad936837383aefa2257cfe79badbdcbcfde7c618f745dd692b2d4a1d78c2254c2622f5dcca2f3596194f98a2f78

data/.travis.yml CHANGED Viewed

@@ -6,12 +6,15 @@ notifications:
 rvm:
   - 2.3.3
+  - 2.5.0
 env:
   - "UPLOADS=paperclip"
   - "UPLOADS=carrierwave"
+  - "RAILS=1 UPLOADS=paperclip"
+  - "RAILS=1 UPLOADS=carrierwave"
 gemfile:
   - gemfiles/mongoid-6.0.gemfile
-  - gemfiles/mongoid-6.1.gemfile
+  - gemfiles/mongoid-6.3.gemfile

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,14 @@
+## 1.4.0
+Add new kinds
+strip_tags (uses strip_tags rails helper)
+simple_format (uses simple_format rails helper)
+simple_format_raw (does NOT sanitize (allows ANY javascript) - uses simple_format rails helper with sanitize: false)
+json
+Use Psych.safe_load for yaml if available
 ## 1.3.1
 add pt-BR locale (thanks @prem-prakash)

data/Gemfile.lock CHANGED Viewed

@@ -1,190 +1,193 @@
 PATH
   remote: .
   specs:
-    rails_admin_settings (1.3.2)
+    rails_admin_settings (1.4.0)
 GEM
   remote: https://rubygems.org/
   specs:
-    actioncable (5.1.1)
-      actionpack (= 5.1.1)
+    actioncable (5.1.5)
+      actionpack (= 5.1.5)
       nio4r (~> 2.0)
       websocket-driver (~> 0.6.1)
-    actionmailer (5.1.1)
-      actionpack (= 5.1.1)
-      actionview (= 5.1.1)
-      activejob (= 5.1.1)
+    actionmailer (5.1.5)
+      actionpack (= 5.1.5)
+      actionview (= 5.1.5)
+      activejob (= 5.1.5)
       mail (~> 2.5, >= 2.5.4)
       rails-dom-testing (~> 2.0)
-    actionpack (5.1.1)
-      actionview (= 5.1.1)
-      activesupport (= 5.1.1)
+    actionpack (5.1.5)
+      actionview (= 5.1.5)
+      activesupport (= 5.1.5)
       rack (~> 2.0)
-      rack-test (~> 0.6.3)
+      rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (5.1.1)
-      activesupport (= 5.1.1)
+    actionview (5.1.5)
+      activesupport (= 5.1.5)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
       rails-html-sanitizer (~> 1.0, >= 1.0.3)
-    activejob (5.1.1)
-      activesupport (= 5.1.1)
+    activejob (5.1.5)
+      activesupport (= 5.1.5)
       globalid (>= 0.3.6)
-    activemodel (5.1.1)
-      activesupport (= 5.1.1)
-    activerecord (5.1.1)
-      activemodel (= 5.1.1)
-      activesupport (= 5.1.1)
+    activemodel (5.1.5)
+      activesupport (= 5.1.5)
+    activerecord (5.1.5)
+      activemodel (= 5.1.5)
+      activesupport (= 5.1.5)
       arel (~> 8.0)
-    activesupport (5.1.1)
+    activesupport (5.1.5)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (~> 0.7)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
-    addressable (2.5.1)
-      public_suffix (~> 2.0, >= 2.0.2)
+    addressable (2.5.2)
+      public_suffix (>= 2.0.2, < 4.0)
     arel (8.0.0)
-    bson (4.2.1)
+    bson (4.3.0)
     builder (3.2.3)
-    carrierwave (0.11.2)
-      activemodel (>= 3.2.0)
-      activesupport (>= 3.2.0)
-      json (>= 1.7)
+    carrierwave (1.2.2)
+      activemodel (>= 4.0.0)
+      activesupport (>= 4.0.0)
       mime-types (>= 1.16)
-      mimemagic (>= 0.3.0)
-    carrierwave-mongoid (0.10.0)
-      carrierwave (>= 0.8.0, < 0.12.0)
+    carrierwave-mongoid (1.0.0)
+      carrierwave (>= 0.8, < 1.3)
       mongoid (>= 3.0, < 7.0)
       mongoid-grid_fs (>= 1.3, < 3.0)
     climate_control (0.2.0)
     cocaine (0.5.8)
       climate_control (>= 0.0.3, < 1.0)
-    coderay (1.1.1)
+    coderay (1.1.2)
     concurrent-ruby (1.0.5)
-    crass (1.0.2)
-    database_cleaner (1.6.1)
+    crass (1.0.3)
+    database_cleaner (1.6.2)
     diff-lcs (1.3)
     docile (1.1.5)
-    erubi (1.6.0)
-    factory_girl (4.8.0)
+    erubi (1.7.1)
+    factory_bot (4.8.2)
       activesupport (>= 3.0.0)
-    geocoder (1.4.4)
-    globalid (0.4.0)
+    geocoder (1.4.6)
+    globalid (0.4.1)
       activesupport (>= 4.2.0)
-    i18n (0.8.4)
+    i18n (0.9.5)
+      concurrent-ruby (~> 1.0)
     json (2.1.0)
-    loofah (2.0.3)
+    loofah (2.2.0)
+      crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
-    mail (2.6.6)
-      mime-types (>= 1.16, < 4)
-    method_source (0.8.2)
+    mail (2.7.0)
+      mini_mime (>= 0.1.1)
+    method_source (0.9.0)
     mime-types (3.1)
       mime-types-data (~> 3.2015)
     mime-types-data (3.2016.0521)
     mimemagic (0.3.2)
-    mini_portile2 (2.2.0)
-    minitest (5.10.2)
-    mongo (2.4.2)
-      bson (>= 4.2.1, < 5.0.0)
-    mongoid (6.2.0)
+    mini_mime (1.0.0)
+    mini_portile2 (2.3.0)
+    minitest (5.11.3)
+    mongo (2.5.1)
+      bson (>= 4.3.0, < 5.0.0)
+    mongoid (6.3.0)
       activemodel (~> 5.1)
-      mongo (>= 2.4.1, < 3.0.0)
+      mongo (>= 2.5.0, < 3.0.0)
+    mongoid-compatibility (0.5.1)
+      activesupport
+      mongoid (>= 2.0)
     mongoid-grid_fs (2.3.0)
       mime-types (>= 1.0, < 4.0)
       mongoid (>= 3.0, < 7.0)
     mongoid-paperclip (0.0.11)
       mongoid
       paperclip (>= 2.3.6, != 4.3.0)
-    mongoid-rspec (1.10.0)
-      mongoid (>= 3.0.1)
-      rake
-      rspec (>= 2.14)
-    nio4r (2.1.0)
-    nokogiri (1.8.0)
-      mini_portile2 (~> 2.2.0)
-    nokogumbo (1.4.13)
+    mongoid-rspec (4.0.0)
+      activesupport (>= 3.0.0)
+      mongoid (>= 2.0)
+      mongoid-compatibility
+      rspec (~> 3.3)
+    nio4r (2.2.0)
+    nokogiri (1.8.2)
+      mini_portile2 (~> 2.3.0)
+    nokogumbo (1.5.0)
       nokogiri
-    paperclip (5.1.0)
+    paperclip (5.2.1)
       activemodel (>= 4.2.0)
       activesupport (>= 4.2.0)
       cocaine (~> 0.5.5)
       mime-types
       mimemagic (~> 0.3.0)
-    pry (0.10.4)
+    pry (0.11.3)
       coderay (~> 1.1.0)
-      method_source (~> 0.8.1)
-      slop (~> 3.4)
-    public_suffix (2.0.5)
-    rack (2.0.3)
-    rack-test (0.6.3)
-      rack (>= 1.0)
-    rails (5.1.1)
-      actioncable (= 5.1.1)
-      actionmailer (= 5.1.1)
-      actionpack (= 5.1.1)
-      actionview (= 5.1.1)
-      activejob (= 5.1.1)
-      activemodel (= 5.1.1)
-      activerecord (= 5.1.1)
-      activesupport (= 5.1.1)
-      bundler (>= 1.3.0, < 2.0)
-      railties (= 5.1.1)
+      method_source (~> 0.9.0)
+    public_suffix (3.0.2)
+    rack (2.0.4)
+    rack-test (0.8.3)
+      rack (>= 1.0, < 3)
+    rails (5.1.5)
+      actioncable (= 5.1.5)
+      actionmailer (= 5.1.5)
+      actionpack (= 5.1.5)
+      actionview (= 5.1.5)
+      activejob (= 5.1.5)
+      activemodel (= 5.1.5)
+      activerecord (= 5.1.5)
+      activesupport (= 5.1.5)
+      bundler (>= 1.3.0)
+      railties (= 5.1.5)
       sprockets-rails (>= 2.0.0)
     rails-dom-testing (2.0.3)
       activesupport (>= 4.2.0)
       nokogiri (>= 1.6)
     rails-html-sanitizer (1.0.3)
       loofah (~> 2.0)
-    railties (5.1.1)
-      actionpack (= 5.1.1)
-      activesupport (= 5.1.1)
+    railties (5.1.5)
+      actionpack (= 5.1.5)
+      activesupport (= 5.1.5)
       method_source
       rake (>= 0.8.7)
       thor (>= 0.18.1, < 2.0)
-    rake (12.0.0)
-    rspec (3.6.0)
-      rspec-core (~> 3.6.0)
-      rspec-expectations (~> 3.6.0)
-      rspec-mocks (~> 3.6.0)
-    rspec-core (3.6.0)
-      rspec-support (~> 3.6.0)
-    rspec-expectations (3.6.0)
+    rake (12.3.0)
+    rspec (3.7.0)
+      rspec-core (~> 3.7.0)
+      rspec-expectations (~> 3.7.0)
+      rspec-mocks (~> 3.7.0)
+    rspec-core (3.7.1)
+      rspec-support (~> 3.7.0)
+    rspec-expectations (3.7.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-mocks (3.6.0)
+      rspec-support (~> 3.7.0)
+    rspec-mocks (3.7.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.6.0)
-    rspec-support (3.6.0)
+      rspec-support (~> 3.7.0)
+    rspec-support (3.7.1)
     russian_phone (0.6.0)
     safe_yaml (1.0.4)
-    sanitize (4.5.0)
+    sanitize (4.6.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.4.4)
-      nokogumbo (~> 1.4.1)
-    simplecov (0.14.1)
+      nokogumbo (~> 1.4)
+    simplecov (0.15.1)
       docile (~> 1.1.0)
       json (>= 1.8, < 3)
       simplecov-html (~> 0.10.0)
-    simplecov-html (0.10.1)
-    slop (3.6.0)
+    simplecov-html (0.10.2)
     sprockets (3.7.1)
       concurrent-ruby (~> 1.0)
       rack (> 1, < 3)
-    sprockets-rails (3.2.0)
+    sprockets-rails (3.2.1)
       actionpack (>= 4.0)
       activesupport (>= 4.0)
       sprockets (>= 3.0.0)
-    thor (0.19.4)
+    thor (0.20.0)
     thread_safe (0.3.6)
-    tzinfo (1.2.3)
+    tzinfo (1.2.5)
       thread_safe (~> 0.1)
     validates_email_format_of (1.6.3)
       i18n
     websocket-driver (0.6.5)
       websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.2)
+    websocket-extensions (0.1.3)
 PLATFORMS
   ruby
@@ -194,9 +197,9 @@ DEPENDENCIES
   bundler
   carrierwave-mongoid
   database_cleaner
-  factory_girl
+  factory_bot
   geocoder
-  mongoid (~> 6.1)
+  mongoid (~> 6.3)
   mongoid-paperclip
   mongoid-rspec
   pry
@@ -211,4 +214,4 @@ DEPENDENCIES
   validates_email_format_of
 BUNDLED WITH
-   1.15.1
+   1.16.1

data/README.md CHANGED Viewed

@@ -57,7 +57,7 @@ Or install it yourself as:
 ## Advanced Usage
-    Settings.content_block_1(kind: 'html', default: 'test')
+    Settings.content_block_1(kind: 'html', default: 'test', label: "Test Value")
     Settings.data(kind: 'yaml')
     Settings.data = [1, 2, 3]
@@ -95,23 +95,41 @@ Supported types:
     text (textarea)
     boolean (checkbox)
     color (uses built-in RailsAdmin color picker)
-    html (supports Rich, glebtv-ckeditor, ckeditor, but does not require any of them)
-    sanitized (requires sanitize -- sanitizes HTML before saving to DB [Warning: uses RELAXED config!])
+    html (does NOT sanitize (allows ANY javascript) - for trusted admin, supports Rich, glebtv-ckeditor, ckeditor, but does not require any of them)
+    code (does NOT sanitize (allows ANY javascript) - shows as codemirror, requires glebtv-ckeditor for codemirror)
+    sanitized (requires sanitize gem -- sanitizes HTML before saving to DB [Warning: uses RELAXED config!])
     integer (stored as string)
     yaml (requires safe_yaml)
     phone (requires russian_phone)
+    phones (requires russian_phone - multiple phones)
     email (requires validates_email_format_of)
     address (requires geocoder)
     file (requires paperclip or carrierwave)
     url (requires addressable)
     domain (requires addressable)
+    sanitize (uses rails sanitize helper with default settings, shows as html)
+    sanitize_code (uses rails sanitize helper with default settings, shows as codemirror textarea, can provide custom scrubber, defaults to Rails::Html::WhiteListSanitizer)
+    strip_tags (uses strip_tags rails helper)
+    simple_format (uses simple_format rails helper)
+    simple_format_raw (does NOT sanitize (allows ANY javascript) - uses simple_format rails helper with sanitize: false)
+    json
+#### Sanitize settings
+Sanitizer can be changed like this:
+```
+RalsAdminSettings.scrubber = Rails::Html::WhiteListSanitizer.new
+```
+defaults to Rails::Html::WhiteListSanitizer
 Strings and html support following replacement patterns:
     {{year}} -> current year
     {{year|2013}} -> 2013 in 2013, 2013-2014 in 2014, etc
+Sanitized types sanitize before storing to DB and not on display for performance.
+Simple format types are stored in db as-is.
 ## Usage with Rails Admin
 Rails admin management for settings is supported out of the box

data/app/views/rails_admin/main/_setting_value.html.haml CHANGED Viewed

@@ -4,9 +4,9 @@
   = form.check_box :raw, {:value => field.value}, 'true', 'false'
 - if @object.type == 'color'
   = form.text_field :raw, :value => field.value, 'data-color' => true, style: "background-color: ##{field.value}"
-- elsif %w(text yaml phones).include?( @object.type )
+- elsif %w(text simple_format simple_format_raw strip_tags yaml json phones).include?( @object.type )
   = form.text_area :raw, :value => field.value, :rows => 10, :cols => 80
-- elsif @object.type == 'code'
+- elsif @object.type == 'code' || @object.type == 'sanitize_code'
   :ruby
     #binding.pry
     js_data = {
@@ -24,7 +24,7 @@
     }
   = form.text_area field.method_name, field.html_attributes.reverse_merge(data: { richtext: 'codemirror', options: js_data.to_json }).reverse_merge({ value: field.form_value })
-- elsif @object.type == 'html' || @object.type == 'sanitized'
+- elsif @object.type == 'html' || @object.type == 'sanitized' || @object.type == 'sanitize'
   - if form.respond_to?(:cktext_area)
     = javascript_include_tag "ckeditor/init"
     = form.cktext_area :raw, :value => field.value, :rows => 10, :cols => 80

data/config/locales/en.yml CHANGED Viewed

@@ -7,6 +7,7 @@ en:
       phones_invalid: "Incorrect phone: %{phones}"
       email_invalid: Incorrect email
       yaml_invalid: Incorrect YAML
+      json_invalid: Incorrect JSON
       color_invalid: Incorrect color
   mongoid: &mongoid
     models:

data/config/locales/pt-BR.yml CHANGED Viewed

@@ -7,6 +7,7 @@ pt-BR:
       phones_invalid: "Telefone incorreto: %{phones}"
       email_invalid: Email incorreto
       yaml_invalid: YAML incorreto
+      json_invalid: JSON incorreto
       color_invalid: Cor incorreta
   mongoid: &mongoid
     models:

data/config/locales/ru.yml CHANGED Viewed

@@ -7,6 +7,7 @@ ru:
       phones_invalid: "Неверный телефонный номер: %{phones}"
       email_invalid: Неверный email
       yaml_invalid: Неверный синтаксис YAML
+      json_invalid: Неверный синтаксис JSON
       color_invalid: Неверный цвет
   mongoid: &mongoid
     models:

data/gemfiles/{mongoid-6.1.gemfile → mongoid-6.3.gemfile} RENAMED Viewed

@@ -1,5 +1,5 @@
 source "https://rubygems.org"
-gem "mongoid", "~> 6.1.0"
+gem "mongoid", "~> 6.3.0"
 gemspec path: "../"

data/lib/rails_admin_settings.rb CHANGED Viewed

@@ -1,6 +1,11 @@
 require "rails_admin_settings/version"
 module RailsAdminSettings
+  if defined?(Rails) && defined?(Rails::Html) && defined?(Rails::Html::WhiteListSanitizer)
+    @@scrubber = Rails::Html::WhiteListSanitizer.new
+  end
+  cattr_accessor :scrubber
   class << self
     def orm
       if defined?(::Mongoid)

data/lib/rails_admin_settings/kinds.rb CHANGED Viewed

@@ -17,7 +17,13 @@ module RailsAdminSettings
       'image',
       'url',
       'domain',
-      'color'
+      'color',
+      'strip_tags',
+      'sanitize',
+      'sanitize_code',
+      'simple_format',
+      'simple_format_raw',
+      'json',
     ]
   end

data/lib/rails_admin_settings/processing.rb CHANGED Viewed

@@ -10,7 +10,7 @@ module RailsAdminSettings
     end
     def text_kind?
-      (RailsAdminSettings.kinds - ['phone', 'phones', 'integer', 'yaml', 'boolean']).include? kind
+      (RailsAdminSettings.kinds - ['phone', 'phones', 'integer', 'yaml', 'json', 'boolean']).include? kind
     end
     def upload_kind?
@@ -18,8 +18,13 @@ module RailsAdminSettings
     end
     def html_kind?
-      ['html', 'code', 'sanitized'].include? kind
+      ['html', 'code', 'sanitize', 'sanitize_code', 'strip_tags', 'simple_format', 'simple_format_raw', 'sanitized'].include? kind
     end
+    def preprocessed_kind?
+      ['sanitize', 'sanitize_code', 'strip_tags', 'simple_format', 'simple_format_raw', 'sanitized'].include? kind
+    end
     alias_method :text_type?, :text_kind?
     alias_method :upload_type?, :upload_kind?
     alias_method :html_type?, :html_kind?
@@ -49,7 +54,7 @@ module RailsAdminSettings
     end
     def to_s
-      if yaml_kind? || phone_kind? || integer_kind?
+      if yaml_kind? || json_kind? || phone_kind? || integer_kind?
         raw
       else
         value
@@ -58,9 +63,27 @@ module RailsAdminSettings
     private
-    def sanitize_value
-      require_sanitize do
-        self.raw = Sanitize.clean(value, Sanitize::Config::RELAXED)
+    def preprocess_value
+      case kind
+        # just to raise error if not in rails
+        when 'simple_format'
+          require_rails do
+          end
+        when 'simple_format_raw'
+          require_rails do
+          end
+        when 'strip_tags'
+          require_rails do
+            self.raw = ActionController::Base.helpers.strip_tags(raw)
+          end
+        when 'sanitize', 'sanitize_code'
+          require_rails do
+            self.raw = RailsAdminSettings.scrubber.sanitize(raw)
+          end
+        when 'sanitized'
+          require_sanitize do
+            self.raw = Sanitize.clean(value, Sanitize::Config::RELAXED)
+          end
       end
     end
@@ -72,10 +95,11 @@ module RailsAdminSettings
       elsif integer_kind?
         0
       elsif yaml_kind?
+        nil
+      elsif json_kind?
+        nil
       elsif boolean_kind?
         false
-      elsif yaml_type?
-        nil
       elsif phone_kind?
         require_russian_phone do
           RussianPhone::Number.new('')
@@ -97,6 +121,20 @@ module RailsAdminSettings
       end
     end
+    def process_html_types(text)
+      case kind
+        when 'simple_format'
+          require_rails do
+            text = ActionController::Base.helpers.simple_format(text)
+          end
+        when 'simple_format_raw'
+          require_rails do
+            text = ActionController::Base.helpers.simple_format(text, {}, sanitize: false)
+          end
+      end
+      text
+    end
     def process_text
       text = raw.dup
       text.gsub!('{{year}}', Time.now.strftime('%Y'))
@@ -107,6 +145,7 @@ module RailsAdminSettings
           "#{$1}-#{Time.now.strftime('%Y')}"
         end
       end
+      text = process_html_types(text)
       text = text.html_safe if html_kind?
       text
     end
@@ -124,11 +163,19 @@ module RailsAdminSettings
     end
     def load_yaml
-      require_safe_yaml do
-        YAML.safe_load(raw)
+      if defined?(Psych) && Psych.respond_to?(:safe_load)
+        Psych.safe_load(raw)
+      else
+        require_safe_yaml do
+          YAML.safe_load(raw)
+        end
       end
     end
+    def load_json
+      JSON.load(raw)
+    end
     def processed_value
       if text_kind?
         process_text
@@ -136,6 +183,8 @@ module RailsAdminSettings
         raw.to_i
       elsif yaml_kind?
         load_yaml
+      elsif json_kind?
+        load_json
       elsif boolean_kind?
         raw == 'true'
       elsif phone_kind?

data/lib/rails_admin_settings/require_helpers.rb CHANGED Viewed

@@ -1,4 +1,13 @@
 module RailsAdminSettings
+  class NoRailsError  < StandardError
+    def initialize(message)
+      @message = message
+    end
+    def to_s
+      @message
+    end
+  end
   module RequireHelpers
     private
@@ -32,6 +41,17 @@ module RailsAdminSettings
       end
     end
+    def require_rails
+      if defined?(Rails) &&
+          defined?(ActionController) &&
+          defined?(ActionController::Base) &&
+          !RailsAdminSettings.scrubber.nil?
+        yield
+      else
+        raise NoRailsError.new("[rails_admin_settings] sanitize, simple_format and strip_tags types require Rails, please add this gem after Rails in your Gemfile")
+      end
+    end
     def require_validates_email_format_of
       begin
         require 'validates_email_format_of'

data/lib/rails_admin_settings/settings.rb CHANGED Viewed

@@ -56,7 +56,7 @@ class Settings < BasicObject
     end
     def root_file_path
-      if Object.const_defined?('Rails')
+      if defined?(Rails)
         Rails.root
       else
         Pathname.new(File.dirname(__FILE__)).join('../..')
@@ -66,7 +66,11 @@ class Settings < BasicObject
     def apply_defaults!(file, verbose = false)
       if File.file?(file)
         puts "[settings] Loading from #{file}" if verbose
-        yaml = YAML.load(File.read(file), safe: true)
+        if defined?(Psych) && Psych.respond_to?(:safe_load)
+          yaml = Psych.safe_load(File.read(file))
+        else
+          yaml = YAML.load(File.read(file), safe: true)
+        end
         yaml.each_pair do |namespace, vals|
           vals.symbolize_keys!
           n = ns(namespace)

data/lib/rails_admin_settings/storage/{carrierwave.rb → carrier_wave_uploader.rb} RENAMED Viewed

@@ -1,9 +1,9 @@
 module RailsAdminSettings
   module Uploads
-    class CarrierWave < CarrierWave::Uploader::Base
+    class CarrierWaveUploader < CarrierWave::Uploader::Base
       def extension_white_list
         %w(jpg jpeg gif png tiff psd ai txt rtf doc docx xls xlsx ppt pptx odt odx zip rar 7z pdf)
       end
     end
   end
-end
+end

data/lib/rails_admin_settings/tasks.rb CHANGED Viewed

@@ -21,7 +21,7 @@ namespace :settings do
     RailsAdminSettings::Dumper.dump(path)
     puts "dumped settings to #{path}"
   end
   desc "Load settings from config/settings.yml without overwriting current values"
   task :load => ['settings:require'] do
     Settings.apply_defaults!(Rails.root.join("config/settings.#{Rails.env.to_s}.yml"), true)

data/lib/rails_admin_settings/uploads.rb CHANGED Viewed

@@ -1,12 +1,21 @@
 module RailsAdminSettings
   module Uploads
-    autoload :CarrierWave, "rails_admin_settings/storage/carrierwave"
+    autoload :CarrierWaveUploader, "rails_admin_settings/storage/carrier_wave_uploader"
+    def self.paperclip_options
+      if defined?(Rails)
+        {}
+      else
+        {path: "#{File.dirname(__FILE__)}/../../uploads/:filename", url: '/uploads/:filename'}
+      end
+    end
     def self.included(base)
       # carrierwave
       if base.respond_to?(:mount_uploader)
         # puts "[rails_admin_settings] CarrierWave detected"
         # base.field(:file, type: String)
-        base.mount_uploader(:file, RailsAdminSettings::Uploads::CarrierWave)
+        base.mount_uploader(:file, RailsAdminSettings::Uploads::CarrierWaveUploader)
         Settings.file_uploads_supported = true
         Settings.file_uploads_engine = :carrierwave
       # mongoid-paperclip
@@ -14,11 +23,7 @@ module RailsAdminSettings
         base.send(:include, ::Mongoid::Paperclip)
         # puts "[rails_admin_settings] PaperClip detected"
         base.field(:file, type: String)
-        if defined?(Rails)
-          base.has_mongoid_attached_file(:file)
-        else
-          base.has_mongoid_attached_file(:file, path: "#{File.dirname(__FILE__)}/../../uploads/:filename", url: '/uploads/:filename')
-        end
+        base.has_mongoid_attached_file(:file, self.paperclip_options)
         if base.respond_to?(:do_not_validate_attachment_file_type)
           base.do_not_validate_attachment_file_type :file
         end
@@ -26,11 +31,7 @@ module RailsAdminSettings
         Settings.file_uploads_supported = true
         Settings.file_uploads_engine = :paperclip
       elsif RailsAdminSettings.active_record? && defined?(Paperclip)
-        if defined?(Rails)
-          base.has_attached_file(:file)
-        else
-          base.has_attached_file(:file, path: "#{File.dirname(__FILE__)}/../../uploads/:filename", url: '/uploads/:filename')
-        end
+        base.has_mongoid_attached_file(:file, self.paperclip_options)
         if base.respond_to?(:do_not_validate_attachment_file_type)
           base.do_not_validate_attachment_file_type :file
         end

data/lib/rails_admin_settings/validation.rb CHANGED Viewed

@@ -4,7 +4,7 @@ module RailsAdminSettings
       base.before_validation do
         self.raw = default_serializable_value if raw.blank?
       end
-      base.before_validation :sanitize_value, if: :sanitized_kind?
+      base.before_validation :preprocess_value, if: :preprocessed_kind?
       base.validates_uniqueness_of :key, scope: :ns
       base.validates_inclusion_of :kind, in: RailsAdminSettings.kinds
       base.validates_numericality_of :raw, if: :integer_kind?
@@ -79,6 +79,16 @@ module RailsAdminSettings
           end
         end
       end
+      base.validate if: :json_kind? do
+        unless raw.blank?
+          begin
+            JSON.load(raw)
+          rescue JSON::ParserError => e
+            errors.add(:raw, I18n.t('admin.settings.json_invalid'))
+          end
+        end
+      end
     end
   end
 end

data/lib/rails_admin_settings/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module RailsAdminSettings
-  VERSION = "1.3.2"
+  VERSION = "1.4.0"
 end

data/log/development.log ADDED Viewed

File without changes

data/rails_admin_settings.gemspec CHANGED Viewed

@@ -19,7 +19,7 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
-  spec.add_development_dependency "mongoid", '~> 6.1'
+  spec.add_development_dependency "mongoid", '~> 6.3'
   spec.add_development_dependency "rails"
   spec.add_development_dependency "bundler"
   spec.add_development_dependency "rake"
@@ -27,7 +27,7 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency "mongoid-rspec"
   spec.add_development_dependency "simplecov"
   spec.add_development_dependency "database_cleaner"
-  spec.add_development_dependency "factory_girl"
+  spec.add_development_dependency "factory_bot"
   spec.add_development_dependency "safe_yaml"
   spec.add_development_dependency "russian_phone"
   spec.add_development_dependency "sanitize"

data/spec/defaults_spec.rb CHANGED Viewed

@@ -52,12 +52,12 @@ describe 'Settings loading defaults' do
     expect(Settings.ns(:main).footer).to eq 'test <b></b>'
     expect(Settings.footer).to eq 'zzz'
-    Settings.ns(:main).phone.should eq '906 1111111'
-    Settings.ns(:main).true_setting.should be true
-    Settings.ns(:main).false_setting.should be false
-    Settings.ns(:other).footer.should eq 'zzz'
-    Settings.ns(:main).footer.should eq 'test <b></b>'
-    Settings.footer.should eq 'zzz'
+    expect(Settings.ns(:main).phone).to eq '906 1111111'
+    expect(Settings.ns(:main).true_setting).to be true
+    expect(Settings.ns(:main).false_setting).to be false
+    expect(Settings.ns(:other).footer).to eq 'zzz'
+    expect(Settings.ns(:main).footer).to eq 'test <b></b>'
+    expect(Settings.footer).to eq 'zzz'
     expect(Settings.ns(:etc, fallback: :main).phone).to eq '906 1111111'
     expect(Settings.ns(:etc, fallback: :main).footer).to eq 'test <b></b>'

data/spec/factories/setting.rb CHANGED Viewed

@@ -1,6 +1,6 @@
 # coding: utf-8
-FactoryGirl.define do
+FactoryBot.define do
   factory :setting, class: RailsAdminSettings::Setting do
     sequence(:key){|n| "setting_#{n}" }
     raw "Контент 1"

data/spec/label_spec.rb CHANGED Viewed

@@ -3,7 +3,6 @@
 require 'spec_helper'
 describe 'Settings label' do
   it "should have label" do
     label = "E-Mail"
     Settings.email(label: label, default: "my@mail.ru")
@@ -14,5 +13,4 @@ describe 'Settings label' do
     Settings.email(default: "my@mail.ru")
     expect(Settings.get(:email).name).to eq('email')
   end
 end

data/spec/migration_spec.rb CHANGED Viewed

@@ -11,10 +11,10 @@ describe 'Migrating from old versions' do
       coll.insert({enabled: true, key: 'test', raw: '9060000000', type: 'phone'})
     end
     RailsAdminSettings.migrate!
-    RailsAdminSettings::Setting.first.key.should eq 'test'
-    RailsAdminSettings::Setting.first.raw.should eq '9060000000'
-    RailsAdminSettings::Setting.first.ns.should eq 'main'
-    RailsAdminSettings::Setting.first.kind.should eq 'phone'
+    expect(RailsAdminSettings::Setting.first.key).to eq 'test'
+    expect(RailsAdminSettings::Setting.first.raw).to eq '9060000000'
+    expect(RailsAdminSettings::Setting.first.ns).to eq 'main'
+    expect(RailsAdminSettings::Setting.first.kind).to eq 'phone'
   end
 end

data/spec/model_spec.rb CHANGED Viewed

@@ -6,40 +6,100 @@ describe RailsAdminSettings::Setting do
   it { is_expected.to have_fields(:enabled, :key, :kind, :raw) }
   it "correctly return content when enabled" do
-    setting = FactoryGirl.create(:setting)
+    setting = FactoryBot.create(:setting)
     expect(setting.to_s).to eq "Контент 1"
   end
   it "return empty string when disabled" do
-    setting = FactoryGirl.create(:setting, enabled: false)
+    setting = FactoryBot.create(:setting, enabled: false)
     expect(setting.to_s).to eq ""
   end
   it "correctly process {{year}}" do
-    setting = FactoryGirl.create(:setting, raw: '&copy; {{year}} company')
+    setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company')
     expect(setting.val).to eq "&copy; #{Time.now.strftime('%Y')} company"
   end
   it "correctly process {{year|2010}}" do
-    setting = FactoryGirl.create(:setting, raw: '&copy; {{year|2010}} company')
+    setting = FactoryBot.create(:setting, raw: '&copy; {{year|2010}} company')
     expect(setting.val).to eq "&copy; 2010-#{Time.now.strftime('%Y')} company"
   end
   it "correctly process {{year|current_year}}" do
-    setting = FactoryGirl.create(:setting, raw: '&copy; {{year|' + Time.now.strftime('%Y') + '}} company')
+    setting = FactoryBot.create(:setting, raw: '&copy; {{year|' + Time.now.strftime('%Y') + '}} company')
     expect(setting.val).to eq "&copy; #{Time.now.strftime('%Y')} company"
     expect(setting.val.class.name).not_to eq "ActiveSupport::SafeBuffer"
   end
   it 'return html_safe string when in html mode' do
-    setting = FactoryGirl.create(:setting, raw: '&copy; {{year}} company', kind: 'html')
+    setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company', kind: 'html')
     expect(setting.val).to eq "&copy; #{Time.now.strftime('%Y')} company"
     expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
   end
   it 'sanitize html when in sanitized mode' do
-    setting = FactoryGirl.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitized')
+    setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitized')
     expect(setting.val).to eq "© #{Time.now.strftime('%Y')} company <a>test</a>"
     expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
   end
-end
+  it 'sanitize html when in sanitize mode' do
+    if defined?(Rails)
+      setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitize')
+      expect(setting.val).to eq "© #{Time.now.strftime('%Y')} company <a>test</a>"
+      expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
+    else
+      expect {
+        FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitize')
+      }.to raise_error(RailsAdminSettings::NoRailsError)
+    end
+  end
+  it 'sanitize html when in sanitize_code mode' do
+    if defined?(Rails)
+      setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitize_code')
+      expect(setting.val).to eq "© #{Time.now.strftime('%Y')} company <a>test</a>"
+      expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
+    else
+      expect {
+        FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'sanitize_code')
+      }.to raise_error(RailsAdminSettings::NoRailsError)
+    end
+  end
+  it 'remove html when in strip_tags mode' do
+    if defined?(Rails)
+      setting = FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'strip_tags')
+      expect(setting.val).to eq "© #{Time.now.strftime('%Y')} company test"
+      expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
+    else
+      expect {
+        FactoryBot.create(:setting, raw: '&copy; {{year}} company <a href="javascript:alert()">test</a>', kind: 'strip_tags')
+      }.to raise_error(RailsAdminSettings::NoRailsError)
+    end
+  end
+  it 'formats text and cleans html in simple_format mode' do
+    if defined?(Rails)
+      setting = FactoryBot.create(:setting, raw: "&copy; {{year}}\n\ncompany <a href='javascript:alert()'>test</a>", kind: 'simple_format')
+      expect(setting.val).to eq "<p>© #{Time.now.strftime('%Y')}</p>\n\n<p>company <a>test</a></p>"
+      expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
+    else
+      expect {
+        FactoryBot.create(:setting, raw: "&copy; {{year}}\n\ncompany <a href='javascript:alert()'>test</a>", kind: 'simple_format')
+      }.to raise_error(RailsAdminSettings::NoRailsError)
+    end
+  end
+  it 'formats text and DOESNT html in simple_format_raw mode' do
+    if defined?(Rails)
+      setting = FactoryBot.create(:setting, raw: "&copy; {{year}}\n\ncompany <a href='javascript:alert()'>test</a>", kind: 'simple_format_raw')
+      expect(setting.val).to eq "<p>&copy; #{Time.now.strftime('%Y')}</p>\n\n<p>company <a href='javascript:alert()'>test</a></p>"
+      expect(setting.val.class.name).to eq "ActiveSupport::SafeBuffer"
+    else
+      expect {
+        FactoryBot.create(:setting, raw: "&copy; {{year}}\n\ncompany <a href='javascript:alert()'>test</a>", kind: 'simple_format_raw')
+      }.to raise_error(RailsAdminSettings::NoRailsError)
+    end
+  end
+end

data/spec/paperclip_spec.rb CHANGED Viewed

@@ -17,7 +17,6 @@ describe "Uploads" do
       expect(Settings.get(:file).file_file_name).to eq '1024x768.gif'
       expect(Settings.get(:file).file_file_size).to eq 4357
       expect(Settings.file[0..21]).to eq '/uploads/1024x768.gif?'
       expect(File.exists?("#{File.dirname(__FILE__)}/../uploads/1024x768.gif")).to be_truthy
     end

data/spec/settings_spec.rb CHANGED Viewed

@@ -48,7 +48,7 @@ describe 'Settings' do
     Settings.phone = '906 222 22 22'
     expect(Settings.phone(kind: 'phone', default: '906 111 11 11')).to eq '+7 (906) 222-22-22'
   end
   it 'should properly store settings to DB' do
     Settings.unload!
     expect(Settings.loaded).to eq false

data/spec/spec_helper.rb CHANGED Viewed

@@ -15,10 +15,13 @@ unless ENV['ACTIVERECORD']
 end
 require 'database_cleaner'
-require 'factory_girl'
+require 'factory_bot'
 require 'mongoid-rspec'
-require "mongoid-paperclip" if ENV['UPLOADS'] == 'paperclip'
+p ENV["UPLOADS"]
+if ENV['UPLOADS'] == 'paperclip'
+  require "mongoid-paperclip"
+end
 if ENV['UPLOADS'] == 'carrierwave'
   require "carrierwave/mongoid"
   CarrierWave.configure do |config|
@@ -35,8 +38,34 @@ Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each do |f|
   require f
 end
+if ENV['RAILS'] == '1'
+  require "active_model/railtie"
+  require "action_controller/railtie"
+  require "action_view/railtie"
+  module RAS
+    class Application < Rails::Application
+    end
+  end
+  # Initialize the Rails application.
+  Rails.application.initialize!
+end
 require 'rails_admin_settings'
+if ENV['UPLOADS'] == 'paperclip'
+  module RailsAdminSettings::Uploads
+    def self.paperclip_options
+      {path: "#{File.dirname(__FILE__)}/../uploads/:filename", url: '/uploads/:filename'}
+    end
+  end
+end
 Dir["#{File.dirname(__FILE__)}/factories/**/*.rb"].each do |f|
   require f
 end
+#RSpec.configure do |config|
+  #config.expect_with(:rspec) { |c| c.syntax = :should }
+#end

data/spec/types_spec.rb CHANGED Viewed

@@ -4,12 +4,12 @@ require 'spec_helper'
 describe 'Settings kind' do
   it 'boolean' do
-    Settings.get(:testbool, kind: 'boolean').value.should be false
-    Settings.get(:testbool, default: true, kind: 'boolean').value.should be false
-    Settings.get(:testbool2, default: true, kind: 'boolean').value.should be true
-    Settings.testbool2.should be true
+    expect(Settings.get(:testbool, kind: 'boolean').value).to be(false)
+    expect(Settings.get(:testbool, default: true, kind: 'boolean').value).to be(false)
+    expect(Settings.get(:testbool2, default: true, kind: 'boolean').value).to be(true)
+    expect(Settings.testbool2).to be(true)
     Settings.set(:testbool3, true, kind: 'boolean')
-    Settings.testbool3.should be true
+    expect(Settings.testbool3).to be(true)
   end
   it 'html' do
@@ -23,12 +23,18 @@ describe 'Settings kind' do
     expect(Settings.testint2).to eq 5
   end
-  it 'yaml' do
+  it 'does yaml' do
     Settings.set(:data, '[one, two, three]', kind: 'yaml')
     expect(Settings.get(:data).raw).to eq '[one, two, three]'
     expect(Settings.data).to eq ['one', 'two', 'three']
   end
+  it 'does json' do
+    Settings.set(:data, '{"a": 1, "b": 2}', kind: 'json')
+    expect(Settings.get(:data).raw).to eq '{"a": 1, "b": 2}'
+    expect(Settings.data).to eq({"a" => 1, "b" => 2})
+  end
   it 'phone' do
     Settings.set(:tphone, '906 111 11 11', kind: 'phone')
     expect(Settings.get(:tphone).val.class.name).to eq 'RussianPhone::Number'

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: rails_admin_settings
 version: !ruby/object:Gem::Version
-  version: 1.3.2
+  version: 1.4.0
 platform: ruby
 authors:
 - Gleb Tv
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-06-19 00:00:00.000000000 Z
+date: 2018-03-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: mongoid
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.3'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '6.1'
+        version: '6.3'
 - !ruby/object:Gem::Dependency
   name: rails
   requirement: !ruby/object:Gem::Requirement
@@ -123,7 +123,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: factory_girl
+  name: factory_bot
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -286,7 +286,7 @@ files:
 - config/locales/pt-BR.yml
 - config/locales/ru.yml
 - gemfiles/mongoid-6.0.gemfile
-- gemfiles/mongoid-6.1.gemfile
+- gemfiles/mongoid-6.3.gemfile
 - lib/generators/rails_admin_settings/migration_generator.rb
 - lib/generators/rails_admin_settings/templates/migration.rb
 - lib/rails_admin_settings.rb
@@ -301,11 +301,12 @@ files:
 - lib/rails_admin_settings/rails_admin_config.rb
 - lib/rails_admin_settings/require_helpers.rb
 - lib/rails_admin_settings/settings.rb
-- lib/rails_admin_settings/storage/carrierwave.rb
+- lib/rails_admin_settings/storage/carrier_wave_uploader.rb
 - lib/rails_admin_settings/tasks.rb
 - lib/rails_admin_settings/uploads.rb
 - lib/rails_admin_settings/validation.rb
 - lib/rails_admin_settings/version.rb
+- log/development.log
 - rails_admin_settings.gemspec
 - spec/advanced_usage_spec.rb
 - spec/carrierwave_spec.rb
@@ -347,7 +348,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.11
+rubygems_version: 2.7.6
 signing_key:
 specification_version: 4
 summary: ''