RubyGems - turbo_boost-commands - Versions diffs - 0.2.2 → 0.3.1 - Mend

turbo_boost-commands 0.2.2 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (40) hide show

checksums.yaml +4 -4
data/README.md +122 -37
data/app/assets/builds/@turbo-boost/commands.js +1 -1
data/app/assets/builds/@turbo-boost/commands.js.map +4 -4
data/app/assets/builds/@turbo-boost/commands.metafile.json +1 -1
data/app/controllers/concerns/turbo_boost/commands/controller.rb +1 -1
data/app/javascript/drivers/index.js +1 -1
data/app/javascript/elements.js +0 -1
data/app/javascript/events.js +6 -3
data/app/javascript/headers.js +2 -2
data/app/javascript/index.js +20 -11
data/app/javascript/invoker.js +2 -10
data/app/javascript/lifecycle.js +3 -6
data/app/javascript/logger.js +29 -2
data/app/javascript/renderer.js +11 -5
data/app/javascript/schema.js +2 -1
data/app/javascript/state/index.js +50 -33
data/app/javascript/state/observable.js +1 -1
data/app/javascript/state/page.js +34 -0
data/app/javascript/state/storage.js +11 -0
data/app/javascript/turbo.js +0 -10
data/app/javascript/version.js +1 -1
data/lib/turbo_boost/commands/attribute_set.rb +8 -0
data/lib/turbo_boost/commands/command.rb +8 -3
data/lib/turbo_boost/commands/command_callbacks.rb +23 -6
data/lib/turbo_boost/commands/command_validator.rb +44 -0
data/lib/turbo_boost/commands/controller_pack.rb +10 -10
data/lib/turbo_boost/commands/engine.rb +14 -10
data/lib/turbo_boost/commands/errors.rb +15 -8
data/lib/turbo_boost/commands/{middleware.rb → middlewares/entry_middleware.rb} +30 -21
data/lib/turbo_boost/commands/middlewares/exit_middleware.rb +63 -0
data/lib/turbo_boost/commands/patches/action_view_helpers_tag_helper_tag_builder_patch.rb +10 -2
data/lib/turbo_boost/commands/responder.rb +28 -0
data/lib/turbo_boost/commands/runner.rb +150 -186
data/lib/turbo_boost/commands/sanitizer.rb +1 -1
data/lib/turbo_boost/commands/state.rb +97 -47
data/lib/turbo_boost/commands/state_store.rb +72 -0
data/lib/turbo_boost/commands/token_validator.rb +51 -0
data/lib/turbo_boost/commands/version.rb +1 -1
metadata +29 -8

data/lib/turbo_boost/commands/state_store.rb ADDED Viewed

@@ -0,0 +1,72 @@
+# frozen_string_literal: true
+class TurboBoost::Commands::StateStore < ActiveSupport::Cache::MemoryStore
+  include Enumerable
+  class NoCoder
+    def dump(value)
+      value
+    end
+    def load(value)
+      value
+    end
+  end
+  SGID_PURPOSE = name.dup.freeze
+  def initialize(payload = {})
+    super(coder: NoCoder.new, compress: false, expires_in: 1.day, size: 16.kilobytes)
+    begin
+      payload = case payload
+      when SignedGlobalID then URI::UID.from_sgid(payload, for: SGID_PURPOSE)&.decode
+      when GlobalID then URI::UID.from_gid(payload)&.decode
+      when String then URI::UID.from_sgid(payload, for: SGID_PURPOSE)&.decode || URI::UID.from_gid(payload, for: SGID_PURPOSE)&.decode
+      else payload
+      end
+    rescue => error
+      Rails.logger.error "Failed to decode URI::UID when creating a TurboBoost::Commands::StateStore! #{error.message}"
+      payload = {}
+    end
+    merge! payload
+  end
+  alias_method :[], :read
+  alias_method :[]=, :write
+  def to_h
+    @data
+      .each_with_object({}) { |(key, entry), memo| memo[key] = entry.value }
+      .with_indifferent_access
+  end
+  delegate :dig, :each, to: :to_h
+  def merge!(other = {})
+    other.to_h.each { |key, val| write key, val }
+    self
+  end
+  def to_uid
+    cleanup
+    URI::UID.build to_h, include_blank: false
+  end
+  def to_gid
+    to_uid.to_gid
+  end
+  def to_gid_param
+    to_gid.to_param
+  end
+  def to_sgid
+    to_uid.to_sgid for: SGID_PURPOSE, expires_in: 1.day
+  end
+  def to_sgid_param
+    to_sgid.to_param
+  end
+end

data/lib/turbo_boost/commands/token_validator.rb ADDED Viewed

@@ -0,0 +1,51 @@
+# frozen_string_literal: true
+class TurboBoost::Commands::TokenValidator
+  def initialize(command, method_name)
+    @command = command
+    @method_name = method_name
+  end
+  attr_reader :command, :method_name
+  delegate :controller, to: :command
+  delegate :session, to: :controller
+  def validate
+    return true unless TurboBoost::Commands.config.protect_from_forgery
+    tokens.any? { |token| valid_token? token }
+  end
+  alias_method :valid?, :validate
+  def validate!
+    return true if valid?
+    message = <<~MSG
+      `#{command.class.name}##{method_name}` invoked with an invalid authenticity token!
+      Verify that your page includes `<%= csrf_meta_tags %>` in the header.
+      If the problem persists, you can disable forgery protection with `TurboBoost::Commands.config.protect_from_forgery = false`
+    MSG
+    raise TurboBoost::Commands::InvalidTokenError.new(message, command: command.class)
+  end
+  private
+  def tokens
+    list = Set.new.tap do |set|
+      set.add command.params[:csrf_token]
+      # TODO: Update to use Rails' public API
+      set.merge controller.send(:request_authenticity_tokens)
+    end
+    list.select(&:present?).to_a
+  end
+  def valid_token?(token)
+    # TODO: Update to use Rails' public API
+    controller.send :valid_authenticity_token?, session, token
+  end
+end

data/lib/turbo_boost/commands/version.rb CHANGED Viewed

@@ -2,6 +2,6 @@
 module TurboBoost
   module Commands
-    VERSION = "0.2.2"
+    VERSION = "0.3.1"
   end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: turbo_boost-commands
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.3.1
 platform: ruby
 authors:
 - Nate Hopkins (hopsoft)
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-03-14 00:00:00.000000000 Z
+date: 2024-05-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -66,6 +66,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 0.1.7
+- !ruby/object:Gem::Dependency
+  name: amazing_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: capybara
   requirement: !ruby/object:Gem::Requirement
@@ -336,16 +350,16 @@ dependencies:
   name: sqlite3
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '1.7'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '1.7'
 - !ruby/object:Gem::Dependency
   name: standardrb
   requirement: !ruby/object:Gem::Requirement
@@ -431,6 +445,8 @@ files:
 - app/javascript/schema.js
 - app/javascript/state/index.js
 - app/javascript/state/observable.js
+- app/javascript/state/page.js
+- app/javascript/state/storage.js
 - app/javascript/turbo.js
 - app/javascript/urls.js
 - app/javascript/uuids.js
@@ -440,16 +456,21 @@ files:
 - lib/turbo_boost/commands/attribute_set.rb
 - lib/turbo_boost/commands/command.rb
 - lib/turbo_boost/commands/command_callbacks.rb
+- lib/turbo_boost/commands/command_validator.rb
 - lib/turbo_boost/commands/controller_pack.rb
 - lib/turbo_boost/commands/engine.rb
 - lib/turbo_boost/commands/errors.rb
 - lib/turbo_boost/commands/http_status_codes.rb
-- lib/turbo_boost/commands/middleware.rb
+- lib/turbo_boost/commands/middlewares/entry_middleware.rb
+- lib/turbo_boost/commands/middlewares/exit_middleware.rb
 - lib/turbo_boost/commands/patches.rb
 - lib/turbo_boost/commands/patches/action_view_helpers_tag_helper_tag_builder_patch.rb
+- lib/turbo_boost/commands/responder.rb
 - lib/turbo_boost/commands/runner.rb
 - lib/turbo_boost/commands/sanitizer.rb
 - lib/turbo_boost/commands/state.rb
+- lib/turbo_boost/commands/state_store.rb
+- lib/turbo_boost/commands/token_validator.rb
 - lib/turbo_boost/commands/version.rb
 homepage: https://github.com/hopsoft/turbo_boost-commands
 licenses:
@@ -473,7 +494,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.6
+rubygems_version: 3.5.10
 signing_key:
 specification_version: 4
 summary: Commands to help you build robust reactive applications with Rails & Hotwire.