slack-ruby-bot-server 1.0.0 → 1.2.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3999b9e5a783666fcf1cebfe6d07d50e0228d7a1e3c17ca52217c7677705a1c2
-  data.tar.gz: 6294712aae7ca330fa3c13764e369084ed7f097772e22b54e5a8c1964ec2e130
+  metadata.gz: ce55bd11d1164eaaa7985395b77ac8d104f69adfd1a5d3ccd1e6a195e02aceb2
+  data.tar.gz: '08700bcdc5768db23d313ac4cdde14c4b315f83f407b26fcff764b0249d5ca31'
 SHA512:
-  metadata.gz: 17c1e6474f1a45c964d67210d96669dc4bbb5910c3571d1720916f9a13b469741d08462e6feb57185a9745ffb373164f68c88f91bbf71691313215a23264a0a5
-  data.tar.gz: 43c5fde5d25f993be6da99758303026ff2870b26e50435cda7bc10218ae0fea1c7a9ab321d946f62485fc59f37da845ee425804327b1a5c7a4c2575d1f9ccfd3
+  metadata.gz: 4f2585a8f933f806ff9cb998e58d7a03efda4a0aee1afeccd5f07289156e37c8ccf9092058b19413a22986031c0a82cca7dd35a9f6dbc9d7211d0823b363e708
+  data.tar.gz: b5139b404dfc9c6c1b5027286126438e81da1c577805aedd3273f07e5e0f2ee9fdb89572d32f652d2e9c8f372c062b74c5ae948b4b2a0347383b908ac29648b9

data/.github/workflows/danger.yml

@@ -0,0 +1,23 @@
+---
+name: danger
+on: [pull_request]
+jobs:
+  danger:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        fetch-depth: 0
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: 2.6
+        bundler-cache: true
+    - name: Run Danger
+      env:
+        BUNDLE_GEMFILE: Gemfile.danger      
+      run: |
+        bundle install
+        # the personal token is public, this is ok, base64 encode to avoid tripping Github
+        TOKEN=$(echo -n NWY1ZmM5MzEyMzNlYWY4OTZiOGU3MmI3MWQ3Mzk0MzgxMWE4OGVmYwo= | base64 --decode)
+        DANGER_GITHUB_API_TOKEN=$TOKEN bundle exec danger --verbose

data/.github/workflows/rubocop.yml

@@ -0,0 +1,16 @@
+---
+name: test
+on: [push, pull_request]
+jobs:
+  lint:
+    name: RuboCop
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: 2.7
+          bundler-cache: true
+      - name: Run RuboCop
+        run: bundle exec rubocop

data/.github/workflows/test-mongodb.yml

@@ -0,0 +1,32 @@
+---
+name: test
+on: [push, pull_request]
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        entry:
+          - { ruby: 2.6.2, mongoid: 6.4.8, mongodb: 4.4 }
+          - { ruby: 2.6.2, mongoid: 7.2.3, mongodb: 4.4 }
+          - { ruby: 2.6.2, mongoid: 7.3.0, mongodb: 4.4 }
+    name: test (ruby=${{ matrix.entry.ruby }}, mongoid=${{ matrix.entry.mongoid }}, mongodb=${{ matrix.entry.mongodb }})
+    steps:
+      - uses: actions/checkout@v2
+      - uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: ${{ matrix.entry.ruby }}
+      - uses: browser-actions/setup-geckodriver@latest
+      - run: geckodriver --version
+      - uses: supercharge/mongodb-github-action@1.7.0
+        with:
+          mongodb-version: ${{ matrix.entry.mongodb }}
+      - name: Test
+        uses: GabrielBB/xvfb-action@v1
+        env:
+          DATABASE_ADAPTER: mongoid
+          MONGOID_VERSION: ${{ matrix.entry.mongoid }}
+        with:
+          run: |
+            bundle install
+            bundle exec rake spec

data/.github/workflows/test-postgresql.yml

@@ -0,0 +1,33 @@
+---
+name: test
+on: [push, pull_request]
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        entry:
+          - { ruby: 2.6.2, postgresql: 11 }
+    name: test (ruby=${{ matrix.entry.ruby }}, postgresql=${{ matrix.entry.postgresql }})
+    steps:
+      - uses: actions/checkout@v2
+      - uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: ${{ matrix.entry.ruby }}
+      - uses: browser-actions/setup-geckodriver@latest
+      - run: geckodriver --version
+      - uses: harmon758/postgresql-action@v1
+        with:
+          postgresql version: ${{ matrix.entry.postgresql }}
+          postgresql db: slack_ruby_bot_server_test
+          postgresql user: test
+          postgresql password: password
+      - name: Test
+        uses: GabrielBB/xvfb-action@v1
+        env:
+          DATABASE_ADAPTER: activerecord
+          DATABASE_URL: postgres://test:password@localhost/slack_ruby_bot_server_test
+        with:
+          run: |
+            bundle install
+            bundle exec rake spec

data/.rubocop_todo.yml

@@ -1,6 +1,6 @@
 # This configuration was generated by
 # `rubocop --auto-gen-config`
-# on 2020-11-15 11:38:22 -0500 using RuboCop version 0.81.0.
+# on 2020-11-16 09:56:54 -0500 using RuboCop version 0.81.0.
 # The point is for the user to remove these configuration records
 # one by one as the offenses are removed from the code base.
 # Note that changes in the inspected code, or installation of new

data/CHANGELOG.md

@@ -1,5 +1,18 @@
 ### Changelog
 
+#### 1.2.1 (2022/03/06)
+
+* [#140](https://github.com/slack-ruby/slack-ruby-bot-server/pull/140): Fix: `NameError` for `Boolean` types with mongoid >= 7.3.0 - [@dblock](https://github.com/dblock).
+* [#142](https://github.com/slack-ruby/slack-ruby-bot-server/pull/142): Replace Travis-CI with GitHub Actions - [@dblock](https://github.com/dblock).
+
+#### 1.2.0 (2020/11/27)
+
+* [#133](https://github.com/slack-ruby/slack-ruby-bot-server/pull/133): Added `Team#oauth_version` and `#scope` - [@dblock](https://github.com/dblock).
+
+#### 1.1.0 (2020/11/17)
+
+* [#132](https://github.com/slack-ruby/slack-ruby-bot-server/pull/132): Added support for OAuth v2 - [@dblock](https://github.com/dblock).
+
 #### 1.0.0 (2020/11/15)
 
 * [#129](https://github.com/slack-ruby/slack-ruby-bot-server/pull/129): Extracted RealTime components into [slack-ruby-bot-server-rtm](https://github.com/slack-ruby/slack-ruby-bot-server-rtm) - [@dblock](https://github.com/dblock).

data/Gemfile

@@ -3,7 +3,7 @@ source 'https://rubygems.org'
 case ENV['DATABASE_ADAPTER']
 when 'mongoid' then
   gem 'kaminari-mongoid'
-  gem 'mongoid'
+  gem 'mongoid', ENV['MONGOID_VERSION'] || '~> 7.3.0'
   gem 'mongoid-scroll'
   gem 'mongoid-shell'
 when 'activerecord' then
@@ -23,10 +23,11 @@ group :development, :test do
   gem 'bundler'
   gem 'byebug'
   gem 'capybara', '~> 2.15.1'
-  gem 'database_cleaner'
+  gem 'database_cleaner', '~> 1.8.5'
   gem 'fabrication'
   gem 'faker'
-  gem 'hyperclient'
+  gem 'faraday', '0.17.5'
+  gem 'hyperclient', '~> 0.9.3'
   gem 'rack-server-pages'
   gem 'rack-test'
   gem 'rake'
@@ -35,9 +36,5 @@ group :development, :test do
   gem 'selenium-webdriver', '~> 3.4.4'
   gem 'vcr'
   gem 'webmock'
-end
-
-group :test do
-  gem 'danger-toc', '~> 0.2.0', require: false
-  gem 'slack-ruby-danger', '~> 0.1.0', require: false
+  gem 'webrick', '~> 1.6.1'
 end

data/Gemfile.danger

@@ -0,0 +1,6 @@
+source 'https://rubygems.org'
+
+group :test do
+  gem 'danger-toc', '~> 0.2.0', require: false
+  gem 'slack-ruby-danger', '~> 0.2.0', require: false
+end

data/MIGRATING.md

@@ -0,0 +1,98 @@
+### Introduction
+
+Slack recently [introduced granular permissions](https://medium.com/slack-developer-blog/more-precision-less-restrictions-a3550006f9c3) and is now requiring all new apps to use them. The old apps are called _classic_ apps. Slack also provided a [migration guide](https://api.slack.com/authentication/migration).
+
+> As of December 4th, 2020 Slack no longer accept resubmissions from apps that are not using granular permissions. On November 18, 2021 Slack will start delisting apps that have not migrated to use granular permissions. So you better get going with a migration ASAP.
+
+New bots cannot use real-time, and there's no way to automatically migrate existing installations - users must reinstall a newer version of the bot. This migration guide avoids a data migration by allowing you to operate both the old and the new version on top of the same database.
+
+> The migration effectively involves replacing `slack-ruby-bot-server-rtm` with `slack-ruby-bot-server-events`.
+
+### Upgrade to Slack-Ruby-Bot-Server 1.2.0 and Slack-Ruby-Bot-Server-Rtm
+
+Upgrade to the latest version of [slack-ruby-bot-server-rtm](https://github.com/slack-ruby/slack-ruby-bot-server-rtm) , which extracts real-time components. This involves replacing `SlackRubyBotServer::Server` with `SlackRubyBotServer::RealTime::Server`.
+
+Upgrade to [slack-ruby-bot-server](https://github.com/slack-ruby/slack-ruby-bot-server) >= 1.2.0. This version introduces two new `Team` fields, `oauth_version` and `oauth_scope` to store which version of the bot performed the install. This allows slack-ruby-bot-server-rtm to ignore newer bots and only boot RTM for legacy bots.
+
+See [UPGRADING](https://github.com/slack-ruby/slack-ruby-bot-server/blob/master/UPGRADING.md#upgrading-to--120) for more information on ActiveRecord database migrations.
+
+Deploy your bot and make sure everything is working without any changes.
+
+### Create a New Slack App
+
+In order not to affect existing users, [create a new Slack app](https://api.slack.com/apps) with new granular permissions and scopes. For example, to send messages to Slack you will need `chat:write`. To read messages in public channels, `channels:history`. To receive bot mentions you'll need `app_mentions:read` and to receive DMs, `im:history`.
+
+### Respond to Slack Events
+
+#### App Mentions
+
+A typical bot may want to respond to mentions, which is made very easy by the new [slack-ruby-bot-server-events-app-mentions](https://github.com/slack-ruby/slack-ruby-bot-server-events-app-mentions) gem. This is similar to the [commands in slack-ruby-bot](https://github.com/slack-ruby/slack-ruby-bot#commands-and-operators), but you'll need to do the work to actually migrate functionality to mentions, and not all variations of commands and operators are currently supported.
+
+```ruby
+SlackRubyBotServer.configure do |config|
+  config.oauth_version = :v2
+  config.oauth_scope = ['app_mentions:read', 'im:history', 'chat:write']
+end
+```
+
+```ruby
+class Ping < SlackRubyBotServer::Events::AppMentions::Mention
+  mention 'ping'
+
+  def self.call(data)
+    client = Slack::Web::Client.new(token: data.team.token)
+    client.chat_postMessage(channel: data.channel, text: 'pong')
+  end
+end
+```
+
+See a [complete sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-app-mentions-sample) for more details.
+
+#### Other Messages
+
+More advanced bots may want to handle all kinds of messages. For example, [slack-shellbot#22](https://github.com/slack-ruby/slack-shellbot/pull/22) configures scopes to receive the kitchen sink of events, then handles them carefully avoiding handling its own messages.
+
+```ruby
+SlackRubyBotServer.configure do |config|
+  config.oauth_version = :v2
+  config.oauth_scope = ['chat:write', 'im:history', 'mpim:history', 'channels:history', 'groups:history']
+end
+```
+
+```ruby
+SlackRubyBotServer::Events.configure do |config|
+  config.on :event, 'event_callback', 'message' do |event|
+    # SlackShellbot::Commands::Base.logger.info event
+
+    next true if event['event']['subtype'] # updates, etc.
+    next true if event['authorizations'][0]['user_id'] == event['event']['user'] # self
+
+    team = Team.where(team_id: event['team_id']).first
+    next true unless team
+
+    data = Slack::Messages::Message.new(event['event'])
+
+    # handles event data here
+
+    true
+  end
+end
+```
+
+### Deploy
+
+Create a new app deployment, use the same database as your production bot. The new bot needs a configuration with the `SLACK_CLIENT_ID`, `SLACK_CLIENT_SECRET` and `SLACK_SIGNING_SECRET` from the new app with granular permissions. Use the same database instance as the old RTM bot.
+
+Now there are two versions of the app running on top of the same database: one is the legacy one, and the other is the granular scopes app. The old app will ignore new bot installations that use granular permissions. The new app should ignore any old bot installations. Thus both apps should work.
+
+### Switch DNS
+
+Switch DNS, new bot registrations can use the new granular scopes app. Make sure in Slack the event URLs are configured properly to point to this DNS.
+
+### Slow Migration for Existing Teams
+
+Existing teams can uninstall the old bot and re-install the new one. The old real-time implementation will stop working once the token has been switched, but the data will remain intact and the team will get reactivated using the new bot with granular permissions.
+
+### Long Version
+
+See [this blog post](http://localhost:4000/2020/11/30/migrating-classic-slack-ruby-bots-to-granular-permissions.html) for a longer, opinionated version of this migration guide.

data/README.md

@@ -2,51 +2,57 @@ Slack Ruby Bot Server
 =====================
 
 [![Gem Version](https://badge.fury.io/rb/slack-ruby-bot-server.svg)](https://badge.fury.io/rb/slack-ruby-bot-server)
-[![Build Status](https://travis-ci.org/slack-ruby/slack-ruby-bot-server.svg?branch=master)](https://travis-ci.org/slack-ruby/slack-ruby-bot-server)
 [![Code Climate](https://codeclimate.com/github/slack-ruby/slack-ruby-bot-server.svg)](https://codeclimate.com/github/slack-ruby/slack-ruby-bot-server)
+[![mongodb](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/test-mongodb.yml/badge.svg)](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/test-mongodb.yml)
+[![postgresql](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/test-postgresql.yml/badge.svg)](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/test-postgresql.yml)
+[![rubocop](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/rubocop.yml/badge.svg)](https://github.com/slack-ruby/slack-ruby-bot-server/actions/workflows/rubocop.yml)
 
 Build a complete Slack bot service with Slack button integration, in Ruby.
 
-# Table of Contents
+## Table of Contents
 
 - [What is this?](#what-is-this)
 - [Stable Release](#stable-release)
 - [Make Your Own](#make-your-own)
-- [Storage](#storage)
-- [MongoDB](#mongodb)
-- [ActiveRecord](#activerecord)
 - [Usage](#usage)
-- [API](#api)
-  - [App](#app)
-  - [Service Manager](#service-manager)
-    - [Lifecycle Callbacks](#lifecycle-callbacks)
-    - [Service Timers](#service-timers)
-    - [Extensions](#extensions)
-  - [Service Class](#service-class)
-- [HTML Templates](#html-templates)
-- [Access Tokens](#access-tokens)
+  - [Storage](#storage)
+    - [MongoDB](#mongodb)
+    - [ActiveRecord](#activerecord)
+  - [OAuth Version and Scopes](#oauth-version-and-scopes)
+  - [Slack App](#slack-app)
+  - [API](#api)
+    - [App](#app)
+    - [Service Manager](#service-manager)
+      - [Lifecycle Callbacks](#lifecycle-callbacks)
+      - [Service Timers](#service-timers)
+      - [Extensions](#extensions)
+    - [Service Class](#service-class)
+  - [HTML Templates](#html-templates)
+  - [Access Tokens](#access-tokens)
 - [Sample Bots Using Slack Ruby Bot Server](#sample-bots-using-slack-ruby-bot-server)
   - [Slack Bots with Granular Permissions](#slack-bots-with-granular-permissions)
   - [Legacy Slack Bots](#legacy-slack-bots)
 - [Copyright & License](#copyright--license)
 
-### What is this?
+## What is this?
 
-A library that contains a web server and a RESTful [Grape](http://github.com/ruby-grape/grape) API serving a Slack bot to multiple teams. Use in conjunction with [slack-ruby-bot-server-events](https://github.com/slack-ruby/slack-ruby-bot-server-events) to build a complete Slack bot service, or [slack-ruby-bot-server-rtm](https://github.com/slack-ruby/slack-ruby-bot-server-rtm) to build a Class RealTime Slack bot. Your customers can use a Slack button to install the bot.
+A library that contains a web server and a RESTful [Grape](http://github.com/ruby-grape/grape) API serving a Slack bot to multiple teams. Use in conjunction with [slack-ruby-bot-server-events](https://github.com/slack-ruby/slack-ruby-bot-server-events) to build a complete Slack bot service, or [slack-ruby-bot-server-rtm](https://github.com/slack-ruby/slack-ruby-bot-server-rtm) to build a (legacy) Classic RealTime Slack bot. Your customers can use a Slack button to install the bot.
 
-### Stable Release
+## Stable Release
 
-You're reading the documentation for the **stable** release of slack-ruby-bot-server, v1.0.0. See [UPGRADING](UPGRADING.md) when upgrading from an older version.
+You're reading the documentation for the **stable** release of slack-ruby-bot-server. See [UPGRADING](UPGRADING.md) when upgrading from an older version. See [MIGRATING](MIGRATING.md) for help with migrating Legacy Slack Apps to Granular Scopes.
 
-### Make Your Own
+## Make Your Own
 
-We recommend you get started from a [slack-ruby-bot-events-sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-sample) app to bootstrap your project.
+This library alone will only register a new bot, but will not include any bot functionality. To make something useful, we recommend you get started from either [slack-ruby-bot-server-events-app-mentions-sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-app-mentions-sample) (handles a single kind of event), or [slack-ruby-bot-server-events-sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-sample) (handles all kinds of events) to bootstrap your project.
+
+## Usage
 
 ### Storage
 
 A database is required to store teams.
 
-### MongoDB
+#### MongoDB
 
 Use MongoDB with [Mongoid](https://github.com/mongodb/mongoid) as ODM. Configure the database connection in `mongoid.yml`. Add the `mongoid` gem in your Gemfile.
 
@@ -57,9 +63,9 @@ gem 'mongoid-scroll'
 gem 'slack-ruby-bot-server'
 ```
 
-### ActiveRecord
+#### ActiveRecord
 
-Use ActiveRecord with, for example, PostgreSQL via [pg](https://github.com/ged/ruby-pg). Configure the database connection in `postgresql.yml`. Add the `activerecord`, `pg`, `otr-activerecord` and `cursor_pagination` gems to your Gemfile.
+Use ActiveRecord with, for example, PostgreSQL via [pg](https://github.com/ged/ruby-pg). Add the `activerecord`, `pg`, `otr-activerecord` and `cursor_pagination` gems to your Gemfile.
 
 ```
 gem 'pg'
@@ -69,27 +75,79 @@ gem 'otr-activerecord'
 gem 'cursor_pagination'
 ```
 
-### Usage
+Configure the database connection in `config/postgresql.yml`. 
 
-Start with the [slack-ruby-bot-events-sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-sample) sample, which contain a couple of custom commands, necessary dependencies and tests, then [create a new Slack App](https://api.slack.com/applications/new).
+```yaml
+default: &default
+  adapter: postgresql
+  pool: 10
+  timeout: 5000
+  encoding: unicode
 
-![](images/create-app.png)
+development:
+  <<: *default
+  database: bot_development
 
-Follow Slack's instructions, note the app client ID and secret, give the bot a default name, etc. The redirect URL should be the location of your app. For local testing purposes use a public tunneling service such as [ngrok](https://ngrok.com/) to expose local port 9292.
+test:
+  <<: *default
+  database: bot_test
 
-Within your application, edit your `.env` file and add `SLACK_CLIENT_ID=...` and `SLACK_CLIENT_SECRET=...` in it.
+production:
+  <<: *default
+  database: bot
+```
+
+Establish a connection in your startup code.
+
+```ruby
+ActiveRecord::Base.establish_connection(
+  YAML.safe_load(
+    ERB.new(
+      File.read('config/postgresql.yml')
+    ).result, [], [], true
+  )[ENV['RACK_ENV']]
+)
+```
+
+### OAuth Version and Scopes
 
-Configure your app's [OAuth scopes](https://api.slack.com/legacy/oauth-scopes) as needed by your application.
+Configure your app's [OAuth version](https://api.slack.com/authentication/oauth-v2) and [scopes](https://api.slack.com/legacy/oauth-scopes) as needed by your application.
 
 ```ruby
 SlackRubyBotServer.configure do |config|
-  config.oauth_scope = ['channels:read', 'chat:write:user']
+  config.oauth_version = :v2
+  config.oauth_scope = ['channels:read', 'chat:write']
 end
 ```
 
 The "Add to Slack" button uses the standard OAuth code grant flow as described in the [Slack docs](https://api.slack.com/docs/oauth#flow). Once clicked, the user is taken through the authorization process at Slack's site. Upon successful completion, a callback containing a temporary code is sent to the redirect URL you specified. The endpoint at that URL contains code that persists the bot token each time a Slack client is instantiated for the specific team.
 
-Run `bundle install` and `foreman start` to boot the app. Navigate to [localhost:9292](http://localhost:9292). You should see an "Add to Slack" button. Use it to install the app into your own Slack team.
+### Slack App
+
+Create a new Slack App [here](https://api.slack.com/applications/new).
+
+![](images/create-app.png)
+
+Follow Slack's instructions, note the app client ID and secret, give the bot a default name, etc.
+
+Within your application, edit your `.env` file and add `SLACK_CLIENT_ID=...` and `SLACK_CLIENT_SECRET=...` in it.
+
+Run `bundle install` and `foreman start` to boot the app.
+
+```
+$ foreman start
+07:44:47 web.1  | started with pid 59258
+07:44:50 web.1  | * Listening on tcp://0.0.0.0:5000
+```
+
+Set the redirect URL in "OAuth & Permissions" be the location of your app. Since you cannot receive notifications on localhost from Slack use a public tunneling service such as [ngrok](https://ngrok.com/) to expose local port 9292 for testing.
+
+```
+$ ngrok http 5000
+Forwarding https://ddfd97f80615.ngrok.io -> http://localhost:5000
+```
+
+Navigate to either [localhost:9292](http://localhost:9292) or the ngrok URL above. You should see an "Add to Slack" button. Use it to install the app into your own Slack team.
 
 ### API
 
@@ -168,7 +226,7 @@ The [Add to Slack button](https://api.slack.com/docs/slack-button) also allows f
 auth = OpenSSL::HMAC.hexdigest("SHA256", "key", "data")
 ```
 ```html
-<a href="https://slack.com/oauth/authorize?scope=<%= SlackRubyBotServer::Config.oauth_scope_s %>&client_id=<%= ENV['SLACK_CLIENT_ID'] %>&state=#{auth)"> ... </a>
+<a href="<%= SlackRubyBotServer::Config.oauth_authorize_url %>?scope=<%= SlackRubyBotServer::Config.oauth_scope_s %>&client_id=<%= ENV['SLACK_CLIENT_ID'] %>&state=#{auth)"> ... </a>
 ```
 ```ruby
 instance = SlackRubyBotServer::Service.instance
@@ -250,16 +308,16 @@ end
 
 ### Access Tokens
 
-By default the implementation of [Team](lib/slack-ruby-bot-server/models/team) stores the value of the token with all the requested OAuth scopes in both `token` and `activated_user_access_token` (for backwards compatibility). If a legacy Slack bot integration `bot_access_token` is present, it is stored as `token`, and `activated_user_access_token`is the token that has all the requested OAuth scopes.
+By default the implementation of [Team](lib/slack-ruby-bot-server/models/team) stores the value of the token with all the requested OAuth scopes in both `token` and `activated_user_access_token` (for backwards compatibility), along with `oauth_version` and `oauth_scope`. If a legacy Slack bot integration `bot_access_token` is present, it is stored as `token`, and `activated_user_access_token` is the token that has all the requested OAuth scopes.
 
-### Sample Bots Using Slack Ruby Bot Server
+## Sample Bots Using Slack Ruby Bot Server
 
-#### Slack Bots with Granular Permissions
+### Slack Bots with Granular Permissions
 
 * [slack-ruby-bot-server-events-sample](https://github.com/slack-ruby/slack-ruby-bot-server-events-sample), a generic sample
 * [slack-rails-bot-starter](https://github.com/CrazyOptimist/slack-rails-bot-starter), an all-in-one Rails starter kit
 
-#### Legacy Slack Bots
+### Legacy Slack Bots
 
 * [slack-ruby-bot-server-sample](https://github.com/slack-ruby/slack-ruby-bot-server-sample), a generic sample
 * [slack-sup](https://github.com/dblock/slack-sup), see [sup.playplay.io](https://sup.playplay.io)
@@ -270,7 +328,7 @@ By default the implementation of [Team](lib/slack-ruby-bot-server/models/team) s
 * [slack-strava](https://github.com/dblock/slack-strava), see [slava.playplay.io](https://slava.playplay.io)
 * [slack-arena](https://github.com/dblock/slack-arena), see [arena.playplay.io](https://arena.playplay.io)
 
-### Copyright & License
+## Copyright & License
 
 Copyright [Daniel Doubrovkine](http://code.dblock.org) and Contributors, 2015-2020
 

data/UPGRADING.md

@@ -1,7 +1,31 @@
 Upgrading Slack-Ruby-Bot-Server
 ===============================
 
-### Upgrading to >= 1.0.0
+### Upgrading to >= 1.2.0
+
+#### New Team Fields
+
+The following fields have been added to `Team`.
+
+* `oauth_scope`: Slack OAuth scope
+* `oauth_version`: Slack OAuth version used
+
+No action is required for Mongoid.
+
+If you're using ActiveRecord, create a migration to add these fields.
+
+```ruby
+class AddOauthFields < ActiveRecord::Migration[5.0]
+  def change
+    add_column :teams, :oauth_scope, :string
+    add_column :teams, :oauth_version, :string, default: 'v1', null: false
+  end
+end
+```
+
+See [MIGRATING](MIGRATING.md) for help with migrating Legacy Slack Apps to Granular Scopes.
+
+### Upgrading to >= 1.1.0
 
 #### Extracted RealTime (Legacy) Support
 
@@ -12,6 +36,13 @@ To upgrade an existing classic Slack app that uses slack-ruby-bot-server do the
 1. Add `slack-ruby-bot-server-rtm` as an additional dependency.
 2. Replace any reference to `SlackRubyBotServer::Server` to `SlackRubyBotServer::RealTime::Server`.
 3. Replace any `require 'slack-ruby-bot-server/rspec'` with `require 'slack-ruby-bot-server-rtm/rspec'`.
+4. Use Slack OAuth 1.0 and configure scopes.
+   ```ruby
+   SlackRubyBotServer.configure do |config|
+     config.oauth_version = :v1
+     config.oauth_scope = ['bot']
+   end
+   ```
 
 Existing RTM Slack bots will continue working and be listed in the Slack App Directory. On December 4th, 2020 Slack will no longer accept resubmissions from apps that are not using granular permissions. On November 18, 2021 Slack will start delisting apps that have not migrated to use granular permissions. Use [slack-ruby-bot-server-events](https://github.com/slack-ruby/slack-ruby-bot-server-events) to create a Slack bot with granular permissions. See [migration](https://api.slack.com/authentication/migration) for more details.
 

data/lib/slack-ruby-bot-server/api/endpoints/teams_endpoint.rb

@@ -19,7 +19,7 @@ module SlackRubyBotServer
 
           desc 'Get all the teams.'
           params do
-            optional :active, type: Boolean, desc: 'Return active teams only.'
+            optional :active, type: ::Grape::API::Boolean, desc: 'Return active teams only.'
             use :pagination
           end
           sort Team::SORT_ORDERS
@@ -40,27 +40,53 @@ module SlackRubyBotServer
 
             raise 'Missing SLACK_CLIENT_ID or SLACK_CLIENT_SECRET.' unless ENV.key?('SLACK_CLIENT_ID') && ENV.key?('SLACK_CLIENT_SECRET')
 
-            rc = client.oauth_access(
+            options = {
               client_id: ENV['SLACK_CLIENT_ID'],
               client_secret: ENV['SLACK_CLIENT_SECRET'],
               code: params[:code]
-            )
+            }
 
-            access_token = rc['access_token']
-            user_id = rc['user_id']
+            rc = client.send(SlackRubyBotServer.config.oauth_access_method, options)
 
-            bot = rc['bot']
+            token = nil
+            access_token = nil
+            user_id = nil
+            bot_user_id = nil
+            team_id = nil
+            team_name = nil
+            oauth_scope = nil
+            oauth_version = SlackRubyBotServer::Config.oauth_version
 
-            token = bot ? bot['bot_access_token'] : access_token
-            bot_user_id = bot['bot_user_id'] if bot
+            case oauth_version
+            when :v2
+              access_token = rc.access_token
+              token = rc.access_token
+              user_id = rc.authed_user&.id
+              bot_user_id = rc.bot_user_id
+              team_id = rc.team&.id
+              team_name = rc.team&.name
+              oauth_scope = rc.scope
+            when :v1
+              access_token = rc.access_token
+              bot = rc.bot if rc.key?(:bot)
+              token = bot ? bot.bot_access_token : access_token
+              user_id = rc.user_id
+              bot_user_id = bot ? bot.bot_user_id : nil
+              team_id = rc.team_id
+              team_name = rc.team_name
+              oauth_scope = rc.scope
+            end
 
             team = Team.where(token: token).first
-            team ||= Team.where(team_id: rc['team_id']).first
+            team ||= Team.where(team_id: team_id, oauth_version: oauth_version).first
+            team ||= Team.where(team_id: team_id).first
 
             if team
               team.ping_if_active!
 
               team.update_attributes!(
+                oauth_version: oauth_version,
+                oauth_scope: oauth_scope,
                 activated_user_id: user_id,
                 activated_user_access_token: access_token,
                 bot_user_id: bot_user_id
@@ -72,8 +98,10 @@ module SlackRubyBotServer
             else
               team = Team.create!(
                 token: token,
-                team_id: rc['team_id'],
-                name: rc['team_name'],
+                oauth_version: oauth_version,
+                oauth_scope: oauth_scope,
+                team_id: team_id,
+                name: team_name,
                 activated_user_id: user_id,
                 activated_user_access_token: access_token,
                 bot_user_id: bot_user_id

data/lib/slack-ruby-bot-server/api/presenters/team_presenter.rb

@@ -10,7 +10,7 @@ module SlackRubyBotServer
         property :team_id, type: String, desc: 'Slack team ID.'
         property :name, type: String, desc: 'Team name.'
         property :domain, type: String, desc: 'Team domain.'
-        property :active, type: Boolean, desc: 'Team is active.'
+        property :active, type: ::Grape::API::Boolean, desc: 'Team is active.'
         property :created_at, type: DateTime, desc: 'Date/time when the team was created.'
         property :updated_at, type: DateTime, desc: 'Date/time when the team was accepted, declined or canceled.'
 

data/lib/slack-ruby-bot-server/app.rb

@@ -1,10 +1,11 @@
 module SlackRubyBotServer
   class App
+    include SlackRubyBotServer::Loggable
+
     def prepare!
       check_database!
       init_database!
       purge_inactive_teams!
-      configure_global_aliases!
     end
 
     def self.instance
@@ -13,13 +14,6 @@ module SlackRubyBotServer
 
     private
 
-    def logger
-      @logger ||= begin
-        STDOUT.sync = true
-        Logger.new(STDOUT)
-      end
-    end
-
     def check_database!
       SlackRubyBotServer::DatabaseAdapter.check!
     end
@@ -31,11 +25,5 @@ module SlackRubyBotServer
     def purge_inactive_teams!
       Team.purge!
     end
-
-    def configure_global_aliases!
-      SlackRubyBot.configure do |config|
-        config.aliases = ENV['SLACK_RUBY_BOT_ALIASES'].split(' ') if ENV['SLACK_RUBY_BOT_ALIASES']
-      end
-    end
   end
 end

data/lib/slack-ruby-bot-server/config/database_adapters/activerecord.rb

@@ -18,6 +18,8 @@ module SlackRubyBotServer
         t.string :name
         t.string :domain
         t.string :token
+        t.string :oauth_scope
+        t.string :oauth_version, default: 'v1', null: false
         t.string :bot_user_id
         t.string :activated_user_id
         t.string :activated_user_access_token

data/lib/slack-ruby-bot-server/config.rb

@@ -7,11 +7,13 @@ module SlackRubyBotServer
     attr_accessor :database_adapter
     attr_accessor :view_paths
     attr_accessor :oauth_scope
+    attr_accessor :oauth_version
 
     def reset!
       self.logger = nil
       self.service_class = SlackRubyBotServer::Service
       self.oauth_scope = nil
+      self.oauth_version = :v2
 
       self.view_paths = [
         'views',
@@ -28,6 +30,28 @@ module SlackRubyBotServer
                               end
     end
 
+    def oauth_authorize_url
+      case oauth_version
+      when :v2
+        'https://slack.com/oauth/v2/authorize'
+      when :v1
+        'https://slack.com/oauth/authorize'
+      else
+        raise ArgumentError, 'Invalid oauth_version, must be one of :v1 or v2.'
+      end
+    end
+
+    def oauth_access_method
+      case oauth_version
+      when :v2
+        :oauth_v2_access
+      when :v1
+        :oauth_access
+      else
+        raise ArgumentError, 'Invalid oauth_version, must be one of :v1 or v2.'
+      end
+    end
+
     def oauth_scope_s
       oauth_scope&.join('+')
     end

data/lib/slack-ruby-bot-server/models/team/methods.rb

@@ -32,10 +32,18 @@ module Methods
 
     def ping!
       client = Slack::Web::Client.new(token: token)
+
       auth = client.auth_test
+
+      presence = begin
+        client.users_getPresence(user: auth['user_id'])
+                 rescue Slack::Web::Api::Errors::MissingScope
+                   nil
+      end
+
       {
         auth: auth,
-        presence: client.users_getPresence(user: auth['user_id'])
+        presence: presence
       }
     end
 

data/lib/slack-ruby-bot-server/models/team/mongoid.rb

@@ -8,7 +8,9 @@ class Team
   field :name, type: String
   field :domain, type: String
   field :token, type: String
-  field :active, type: Boolean, default: true
+  field :oauth_scope, type: String
+  field :oauth_version, type: String, default: 'v1'
+  field :active, type: Mongoid::Boolean, default: true
   field :bot_user_id, type: String
   field :activated_user_id, type: String
   field :activated_user_access_token, type: String

data/lib/slack-ruby-bot-server/version.rb

@@ -1,3 +1,3 @@
 module SlackRubyBotServer
-  VERSION = '1.0.0'.freeze
+  VERSION = '1.2.1'.freeze
 end

data/public/index.html.erb

@@ -16,7 +16,7 @@
   </p>
   <p id='messages' />
   <p id='register'>
-    <a href="https://slack.com/oauth/authorize?scope=<%= SlackRubyBotServer::Config.oauth_scope_s %>&client_id=<%= ENV['SLACK_CLIENT_ID'] %>"><img alt="Add to Slack" height="40" width="139" src="https://platform.slack-edge.com/img/add_to_slack.png" srcset="https://platform.slack-edge.com/img/add_to_slack.png 1x, https://platform.slack-edge.com/img/add_to_slack@2x.png 2x"></a>
+    <a href="<%= SlackRubyBotServer::Config.oauth_authorize_url %>?scope=<%= SlackRubyBotServer::Config.oauth_scope_s %>&client_id=<%= ENV['SLACK_CLIENT_ID'] %>"><img alt="Add to Slack" height="40" width="139" src="https://platform.slack-edge.com/img/add_to_slack.png" srcset="https://platform.slack-edge.com/img/add_to_slack.png 1x, https://platform.slack-edge.com/img/add_to_slack@2x.png 2x"></a>
   </p>
   <p id='active_teams_count'>&nbsp;</p>
   <p>

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: slack-ruby-bot-server
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.2.1
 platform: ruby
 authors:
 - Daniel Doubrovkine
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-11-15 00:00:00.000000000 Z
+date: 2022-03-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: async
@@ -158,18 +158,23 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".github/FUNDING.yml"
+- ".github/workflows/danger.yml"
+- ".github/workflows/rubocop.yml"
+- ".github/workflows/test-mongodb.yml"
+- ".github/workflows/test-postgresql.yml"
 - ".gitignore"
 - ".rspec"
 - ".rubocop.yml"
 - ".rubocop_todo.yml"
-- ".travis.yml"
 - CHANGELOG.md
 - CONTRIBUTING.md
 - DEBUGGING.md
 - Dangerfile
 - Gemfile
+- Gemfile.danger
 - Guardfile
 - LICENSE
+- MIGRATING.md
 - README.md
 - RELEASING.md
 - Rakefile

data/.travis.yml

@@ -1,33 +0,0 @@
-language: ruby
-
-cache: bundler
-
-matrix:
-  include:
-    - rvm: 2.6.2
-      script:
-        - bundle exec danger
-      services:
-        - xvfb
-    - rvm: 2.6.2
-      env: DATABASE_ADAPTER=activerecord
-      services:
-        - xvfb
-        - postgresql
-    - rvm: 2.6.2
-      env: DATABASE_ADAPTER=mongoid
-      services:
-        - xvfb
-        - mongodb
-
-addons:
-  firefox: 54.0
-
-before_install:
-  - wget https://github.com/mozilla/geckodriver/releases/download/v0.18.0/geckodriver-v0.18.0-linux64.tar.gz
-  - mkdir geckodriver
-  - tar -xzf geckodriver-v0.18.0-linux64.tar.gz -C geckodriver
-  - export PATH=$PATH:$PWD/geckodriver
-
-script:
-  - bundle exec rake