tybo 0.0.11 → 0.0.13

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f46063c0e17703d488e7eeb91c63da9dcb5e8142af6e7603d44b74beb86a1ee6
-  data.tar.gz: b1c060c22d7a4e950fb5dbef739023951de7e29117963a3fce51d38ef8a0eabc
+  metadata.gz: 2159c6fe429376273f6ba05ab4009d6714a61c09a2fe9d9ad5395c23ad679f69
+  data.tar.gz: fedf0c5fc19e0d446fa3ce7ba4d32d8bf6aaf82b64b6138a1fef740cf8bc8c48
 SHA512:
-  metadata.gz: 735e1f16476a04f48bf01614a8ed7eaa211bfc88867574260a37f6300ba001aad9cdf429d58a9dc9e1d15ae20c3dd3489eb75382a26e6c0814db00ddc324be62
-  data.tar.gz: 8c079b5a1172b5454853ed0059d255bb2d73233be948f792840c1b9e99edaffa2116d2b6169cf55264dd163c12d31ce32eb9242c1f4a1f60141200aaaa5d89f0
+  metadata.gz: 02e9964ddfc462d39f6f4b112bf255036fe5a6fd76e6a40cf88cefa407f5ab7349a7c9b5e5707a38a5daa627fb676cef6789f7ca7367182846351e47b5202ada
+  data.tar.gz: d3d971269635d970e6b1d692b3c5ee489eb948b074eb1c93d01c092d8faba236d6e06fcee2d92f5220ea29514fa3d45097f84552d3e9753a1696cfbb793f4764

data/README.md

@@ -34,6 +34,18 @@ $ bundle exec rails g tybo_install
 
 ```
 
+## Policy
+add your policy logic in ApplicationController eg:
+```
+  rescue_from ActionPolicy::Unauthorized, with: :not_authorized
+
+
+  def not_authorized
+    flash[:alert] = I18n.t('bo.unauthorized')
+    redirect_to(request.referrer || root_path)
+  end
+```
+
 ## Customize
 
 **Update images**: change `logo_url` and `cover_url` in `config/initializer/tybo.rb`

data/app/components/icons/trash_component.html.erb

@@ -1,3 +1,3 @@
-<svg class="mr-3 flex-shrink-0 h-6 w-6 text-white" xmlns="http://www.w3.org/2000/svg" className="h-6 w-6" fill="none" viewBox="0 0 24 24" stroke="currentColor" strokeWidth={2}>
+<svg class="mr-3 flex-shrink-0 h-6 w-6 text-tybo" xmlns="http://www.w3.org/2000/svg" className="h-6 w-6" fill="none" viewBox="0 0 24 24" stroke="currentColor" strokeWidth={2}>
   <path strokeLinecap="round" strokeLinejoin="round" d="M19 7l-.867 12.142A2 2 0 0116.138 21H7.862a2 2 0 01-1.995-1.858L5 7m5 4v6m4-6v6m1-10V4a1 1 0 00-1-1h-4a1 1 0 00-1 1v3M4 7h16" />
 </svg>

data/app/views/devise/passwords/edit.html.erb

@@ -1,8 +1,8 @@
 <div class="flex min-h-full">
   <div class="flex flex-1 flex-col justify-center py-12 px-4 sm:px-6 lg:flex-none lg:px-20 xl:px-24">
-    <%= render 'devise/shared/devise_errors' %>
     <div class="mx-auto w-full max-w-sm lg:w-96">
       <div>
+        <%= render('layouts/flash') %>
         <%= image_tag Tybo.configuration.logo_url, class: 'h-12 w-auto'%>
         <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900">Créer un nouveau mot de passe</h2>
       </div>

data/app/views/devise/passwords/new.html.erb

@@ -1,8 +1,8 @@
 <div class="flex min-h-full">
   <div class="flex flex-1 flex-col justify-center py-12 px-4 sm:px-6 lg:flex-none lg:px-20 xl:px-24">
-    <%= render 'devise/shared/devise_errors' %>
     <div class="mx-auto w-full max-w-sm lg:w-96">
       <div>
+        <%= render('layouts/flash') %>
         <%= image_tag Tybo.configuration.logo_url, class: 'h-12 w-auto'%>
         <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900">Forgot your password?</h2>
       </div>
@@ -20,7 +20,7 @@
 
             </div>
             <div class="mt-5">
-              <%= f.button :submit, "Send me reset password instructions", class: "flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2"  %>
+              <%= f.button :submit, I18n.t("devise.passwords.new.send_me_reset_password_instructions"), class: "flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2"  %>
             </div>
           <% end %>
         </div>

data/app/views/devise/sessions/new.html.erb

@@ -1,10 +1,9 @@
 <div class="flex min-h-full">
   <div class="flex flex-1 flex-col justify-center py-12 px-4 sm:px-6 lg:flex-none lg:px-20 xl:px-24">
     <div class="mx-auto w-full max-w-sm lg:w-96">
-      <%= render 'devise/shared/devise_errors' %>
-      <div>
+      <%= render('layouts/flash') %>
         <%= image_tag Tybo.configuration.logo_url, class: 'h-12 w-auto'%>
-        <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900">Sign in to your account</h2>
+        <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900"><%=I18n.t("bo.devise.sign_in_as.#{resource_name}")%></h2>
       </div>
       <div class="mt-8">
         <div class="mt-6">
@@ -28,16 +27,18 @@
             <div class="flex items-center justify-between">
               <div class="flex items-center">
                 <input id="remember_me" name="remember_me" type="checkbox" class="h-4 w-4 rounded border-gray-300 text-tybo-600 focus:ring-tybo-500">
-                <label for="remember_me" class="ml-2 block text-sm text-gray-900">Remember me</label>
+                <label for="remember_me" class="ml-2 block text-sm text-gray-900"><%=I18n.t("activerecord.attributes.user.remember_me")%></label>
               </div>
 
               <div class="text-sm">
-                <a href="<%= new_password_path(Administrator)%>" class="font-medium text-tybo-600 hover:text-tybo-500">Forgot your password?</a>
+                <a href="<%= new_password_path(Administrator)%>" class="font-medium text-tybo-600 hover:text-tybo-500">
+                  <%=I18n.t("devise.passwords.new.forgot_your_password")%>
+                </a>
               </div>
             </div>
 
             <div class="mt-5">
-              <%= f.button :submit, "Sign in", class: "flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2"  %>
+              <%= f.button :submit, I18n.t("devise.sessions.new.sign_in"), class: "flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2"  %>
             </div>
           <% end %>
         </div>

data/app/views/devise/shared/_links.html.erb

@@ -1,6 +1,6 @@
 <div class="space-y-1 mt-1">
   <%- if controller_name != 'sessions' %>
-    <%= link_to "Log in", new_session_path(resource_name), class: "inline-flex w-full justify-center rounded-md border border-gray-300 bg-white py-2 px-4 text-sm font-medium text-gray-500 shadow-sm hover:bg-gray-50" %><br />
+    <%= link_to I18n.t('devise.sessions.new.sign_in'), new_session_path(resource_name), class: "inline-flex w-full justify-center rounded-md border border-gray-300 bg-white py-2 px-4 text-sm font-medium text-gray-500 shadow-sm hover:bg-gray-50" %><br />
   <% end %>
 
   <%- if devise_mapping.registerable? && controller_name != 'registrations' %>

data/app/views/layouts/_flash.html.erb

@@ -1,24 +1,24 @@
 <% flash.each do |key, errors| %>
-  <div class="<%= classes_for_flash(key) %> m-5 p-5 rounded-md" data-controller="flash">
-    <div class="flex">
-      <div class="flex-shrink-0">
-        <svg class="h-5 w-5" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
-          <path fill-rule="evenodd" d="M8.485 3.495c.673-1.167 2.357-1.167 3.03 0l6.28 10.875c.673 1.167-.17 2.625-1.516 2.625H3.72c-1.347 0-2.189-1.458-1.515-2.625L8.485 3.495zM10 6a.75.75 0 01.75.75v3.5a.75.75 0 01-1.5 0v-3.5A.75.75 0 0110 6zm0 9a1 1 0 100-2 1 1 0 000 2z" clip-rule="evenodd"/>
-        </svg>
-      </div>
-      <div class="ml-3">
-        <p class="text-sm font-medium bold"><%= errors %></p>
-      </div>
-      <div class="ml-auto pl-3">
-        <div class="-mx-1.5 -my-1.5">
-          <button type="button" data-action="flash#dismiss" class="inline-flex rounded-md p-1.5 focus:outline-none focus:ring-2 focus:ring-offset-2">
-            <span class="sr-only">Dismiss</span>
-            <svg class="h-5 w-5" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
-              <path d="M6.28 5.22a.75.75 0 00-1.06 1.06L8.94 10l-3.72 3.72a.75.75 0 101.06 1.06L10 11.06l3.72 3.72a.75.75 0 101.06-1.06L11.06 10l3.72-3.72a.75.75 0 00-1.06-1.06L10 8.94 6.28 5.22z"/>
-            </svg>
-          </button>
-        </div>
+<div class="rounded-md <%= classes_for_flash(key) %> p-4"  data-controller="flash">
+  <div class="flex">
+    <div class="flex-shrink-0">
+      <svg class="h-5 w-5" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
+        <path fill-rule="evenodd" d="M8.485 3.495c.673-1.167 2.357-1.167 3.03 0l6.28 10.875c.673 1.167-.17 2.625-1.516 2.625H3.72c-1.347 0-2.189-1.458-1.515-2.625L8.485 3.495zM10 6a.75.75 0 01.75.75v3.5a.75.75 0 01-1.5 0v-3.5A.75.75 0 0110 6zm0 9a1 1 0 100-2 1 1 0 000 2z" clip-rule="evenodd"/>
+      </svg>
+    </div>
+    <div class="ml-3">
+      <%= errors %>
+    </div>
+    <div class="ml-auto pl-3">
+      <div class="-mx-1.5 -my-1.5">
+        <button type="button" data-action="flash#dismiss" class="inline-flex rounded-md p-1.5 focus:outline-none focus:ring-2 focus:ring-offset-2">
+          <span class="sr-only"><%= I18n.t('bo.flash.close')%></span>
+          <svg class="h-5 w-5" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
+            <path d="M6.28 5.22a.75.75 0 00-1.06 1.06L8.94 10l-3.72 3.72a.75.75 0 101.06 1.06L10 11.06l3.72 3.72a.75.75 0 101.06-1.06L11.06 10l3.72-3.72a.75.75 0 00-1.06-1.06L10 8.94 6.28 5.22z"/>
+          </svg>
+        </button>
       </div>
     </div>
   </div>
+</div>
 <% end %>

data/app/views/layouts/tybo/application.html.erb

@@ -1,14 +1,12 @@
 <!DOCTYPE html>
-<html>
-<head>
-  <title>Tybo</title>
-  <%= csrf_meta_tags %>
-  <%= csp_meta_tag %>
-  <%= stylesheet_link_tag "tybo", "data-turbo-track": "reload" %>
-</head>
-<body>
-
-<%= yield %>
-
-</body>
+  <html>
+  <head>
+    <title>Tybo</title>
+    <%= csrf_meta_tags %>
+    <%= csp_meta_tag %>
+    <%= stylesheet_link_tag "tybo", "data-turbo-track": "reload" %>
+  </head>
+  <body>
+    <%= yield %>
+  </body>
 </html>

data/app/views/login/home.html.erb

@@ -3,17 +3,15 @@
     <div class="mx-auto w-full max-w-sm lg:w-96">
       <div>
         <%= image_tag Tybo.configuration.logo_url, class: 'h-12 w-auto' %>
-        <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900">Sign in to your account</h2>
       </div>
       <div class="mt-4">
       <% @resources.each do |resource| %>
       <a href="<%=send("new_#{resource.to_s}_session_path")%>" class="mt-2 flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2">
-        Sign in as <%= I18n.t("bo.#{resource.to_s}.one")%>
+        <%=I18n.t("bo.devise.sign_in_as.#{resource.to_s}")%>
       </a>
       <% end %>
       </div>
     </div>
   </div>
-  <div class="relative hidden w-0 flex-1 lg:block">
-    <img class="absolute inset-0 h-full w-full object-cover" src="https://tymate.com/_next/image?url=https%3A%2F%2Fwww.datocms-assets.com%2F33962%2F1667561118-natif-dribbble-2.png%3Fw%3D1600&w=1920&q=75" alt="">
-  </div>
+  <%= render(CoverComponent.new) %>
+

data/config/initializers/devise.rb

@@ -1,5 +1,19 @@
 # frozen_string_literal: true
 
+class TurboFailureApp < Devise::FailureApp
+  def respond
+    if request_format == :turbo_stream
+      redirect
+    else
+      super
+    end
+  end
+
+  def skip_format?
+    %w(html turbo_stream */*).include? request_format.to_s
+  end
+end
+
 # Assuming you have not yet modified this file, each configuration option below
 # is set to its default value. Note that some are commented out while others
 # are not: uncommented lines are intended to protect your configuration from
@@ -14,7 +28,7 @@ Devise.setup do |config|
   # confirmation, reset password and unlock tokens in the database.
   # Devise will use the `secret_key_base` as its `secret_key`
   # by default. You can change it below and use your own secret key.
-  # config.secret_key = 'f2db45f41dff5f5dcad76fa6760490bf0cd1a23391c3cd5485f9d0ec4f4dcb538091b1c481a78a24dea2ebef4db12895ed53c5493d09435c2dbe3c2af4417004'
+  # config.secret_key = '4bd5e06b48093101d6f137ef226bd5cca582610e9feb2809347eae388976f5efa778178fd94b7567ea13fd3c504d185db881d5f4aa9425781cb988d784639fd4'
 
   # ==> Controller configuration
   # Configure the parent class to the devise controllers.
@@ -28,7 +42,9 @@ Devise.setup do |config|
 
   # Configure the class responsible to send e-mails.
   # config.mailer = 'Devise::Mailer'
-
+  config.mailer_sender = ENV['MAIL_FROM']
+  # Configure the class responsible to send e-mails.
+  config.mailer = 'BoDeviseMailer'
   # Configure the parent class responsible to send e-mails.
   # config.parent_mailer = 'ActionMailer::Base'
 
@@ -126,7 +142,7 @@ Devise.setup do |config|
   config.stretches = Rails.env.test? ? 1 : 12
 
   # Set up a pepper to generate the hashed password.
-  # config.pepper = '6d099d571921492a580c14dd259ec5c074f1eac78938689e00690b3c8fea2cb8062076445b07edf08c4ac7f7e3760a687624702b2faf9ccf03e60f38402e82ed'
+  # config.pepper = '4551e02c32a843da4a330d94e9427b4239f886a6adb77cdc03711ec57741a0f922aa56a2faeddcc11acb633846be7f9717860c11bf428ba9db1b10f91bb9b1b0'
 
   # Send a notification to the original email when the user's email is changed.
   # config.send_email_changed_notification = false
@@ -264,6 +280,7 @@ Devise.setup do |config|
   #
   # The "*/*" below is required to match Internet Explorer requests.
   # config.navigational_formats = ['*/*', :html]
+  config.navigational_formats = ['*/*', :html, :turbo_stream]
 
   # The default HTTP method used to sign out a resource. Default is :delete.
   config.sign_out_via = :delete
@@ -281,6 +298,9 @@ Devise.setup do |config|
   #   manager.intercept_401 = false
   #   manager.default_strategies(scope: :user).unshift :some_external_strategy
   # end
+  config.warden do |manager|
+    manager.failure_app = TurboFailureApp
+  end
 
   # ==> Mountable engine configurations
   # When using Devise inside an engine, let's call it `MyEngine`, and this engine

data/config/locales/devise.fr.yml

@@ -0,0 +1,145 @@
+fr:
+  activerecord:
+    attributes:
+      user:
+        confirmation_sent_at: Date d'envoi de la confirmation
+        confirmation_token: Clé de confirmation du mot de passe
+        confirmed_at: Date de confirmation
+        created_at: Date d'enregistrement
+        current_password: Mot de passe actuel
+        current_sign_in_at: Date de la connexion actuelle
+        current_sign_in_ip: IP de la connexion actuelle
+        email: Email
+        encrypted_password: Mot de passe chiffré
+        failed_attempts: Tentatives échouées
+        last_sign_in_at: Date de la dernière connexion
+        last_sign_in_ip: IP de la dernière connexion
+        locked_at: Verrouillé à
+        password: Mot de passe
+        password_confirmation: Confirmation du mot de passe
+        remember_created_at: Mémorisé à
+        remember_me: Se souvenir de moi ?
+        reset_password_sent_at: Clé de réinitialisation créée à
+        reset_password_token: Clé de réinitialisation du mot de passe
+        sign_in_count: Nombre des connexions
+        unconfirmed_email: Email non confirmé
+        unlock_token: Clé de déverrouillage
+        updated_at: Date de mise à jour
+    models:
+      user: Utilisateur
+  devise:
+    confirmations:
+      confirmed: Votre compte a bien été confirmé.
+      new:
+        resend_confirmation_instructions: Renvoyer les instructions de confirmation
+      send_instructions: Vous allez recevoir sous quelques minutes un email comportant des instructions pour confirmer votre compte.
+      send_paranoid_instructions: Si votre email existe sur notre base de données, vous recevrez sous quelques minutes un message avec des instructions pour confirmer votre compte.
+    failure:
+      already_authenticated: Vous êtes déjà connecté(e).
+      inactive: Votre compte n’est pas encore activé.
+      invalid: "%{authentication_keys} ou mot de passe incorrect."
+      last_attempt: Il vous reste une chance avant que votre compte soit bloqué.
+      locked: Votre compte est verrouillé.
+      not_found_in_database: "%{authentication_keys} ou mot de passe incorrect."
+      timeout: Votre session est expirée, veuillez vous reconnecter pour continuer.
+      unauthenticated: Vous devez vous connecter ou vous enregistrer pour continuer.
+      unconfirmed: Vous devez confirmer votre compte par email.
+    mailer:
+      confirmation_instructions:
+        action: Confirmer mon email
+        greeting: Bienvenue %{recipient} !
+        instruction: 'Vous pouvez confirmer votre email grâce au lien ci-dessous :'
+        subject: Instructions de confirmation
+      email_changed:
+        greeting: Bonjour %{recipient} !
+        message: Nous vous contactons pour vous informer que votre email a été changé en %{email}.
+        message_unconfirmed: Nous vous contactons pour vous informer que votre email est en train d'être changé par %{email}.
+        subject: Email modifié
+      password_change:
+        greeting: Bonjour %{recipient} !
+        message: Nous vous contactons pour vous notifier que votre mot de passe a été modifié.
+        subject: Mot de passe modifié
+      reset_password_instructions:
+        action: Changer mon mot de passe
+        greeting: Bonjour %{recipient} !
+        instruction: 'Quelqu''un a demandé un lien pour changer votre mot de passe, le voici :'
+        instruction_2: Si vous n'avez pas émis cette demande, merci d'ignorer cet email.
+        instruction_3: Votre mot de passe ne changera pas tant que vous n'aurez pas cliqué sur ce lien et renseigné un nouveau mot de passe.
+        subject: Instructions pour changer le mot de passe
+      unlock_instructions:
+        action: Débloquer mon compte
+        greeting: Bonjour %{recipient} !
+        instruction: 'Suivez ce lien pour débloquer votre compte :'
+        message: Votre compte a été bloqué suite à un nombre d'essais de connexions manquées trop important.
+        subject: Instructions pour déverrouiller le compte
+    omniauth_callbacks:
+      failure: 'Nous ne pouvons pas vous authentifier depuis %{kind} pour la raison suivante : ''%{reason}''.'
+      success: Autorisé par votre compte %{kind}.
+    passwords:
+      edit:
+        change_my_password: Changer mon mot de passe
+        change_your_password: Changer votre mot de passe
+        confirm_new_password: Confirmez votre nouveau mot de passe
+        new_password: Nouveau mot de passe
+      new:
+        forgot_your_password: Mot de passe oublié ?
+        send_me_reset_password_instructions: Réinitialiser mon mot de passe
+      no_token: Vous ne pouvez pas accéder à cette page si vous n’y accédez pas depuis un email de réinitialisation de mot de passe. Si vous venez en effet d’un tel email, vérifiez que vous avez copié l’adresse URL en entier.
+      send_instructions: Vous allez recevoir sous quelques minutes un email vous indiquant comment réinitialiser votre mot de passe.
+      send_paranoid_instructions: Si votre email existe dans notre base de données, vous recevrez un lien vous permettant de récupérer votre mot de passe.
+      updated: Votre mot de passe a bien été modifié. Vous êtes maintenant connecté(e).
+      updated_not_active: Votre mot de passe a bien été modifié.
+    registrations:
+      destroyed: Au revoir ! Votre compte a bien été supprimé. Nous espérons vous revoir bientôt.
+      edit:
+        are_you_sure: Êtes-vous sûr ?
+        cancel_my_account: Supprimer mon compte
+        currently_waiting_confirmation_for_email: 'Confirmation en attente pour: %{email}'
+        leave_blank_if_you_don_t_want_to_change_it: laissez ce champ vide pour le laisser inchangé
+        title: Éditer %{resource}
+        unhappy: Pas content ?
+        update: Modifier
+        we_need_your_current_password_to_confirm_your_changes: nous avons besoin de votre mot de passe actuel pour valider ces modifications
+      new:
+        sign_up: Inscription
+      signed_up: Bienvenue ! Vous vous êtes bien enregistré(e).
+      signed_up_but_inactive: Vous vous êtes bien enregistré(e). Cependant, nous n’avons pas pu vous connecter car votre compte n’a pas encore été activé.
+      signed_up_but_locked: Vous vous êtes bien enregistré(e). Cependant, nous n’avons pas pu vous connecter car votre compte est verrouillé.
+      signed_up_but_unconfirmed: Un message avec un lien de confirmation vous a été envoyé par mail. Veuillez suivre ce lien pour activer votre compte.
+      update_needs_confirmation: Vous avez bien modifié votre compte, mais nous devons vérifier votre nouvelle adresse email. Veuillez consulter vos emails et cliquer sur le lien de confirmation pour confirmer votre nouvelle adresse.
+      updated: Votre compte a bien été modifié.
+      updated_but_not_signed_in: Votre compte a été mis à jour avec succès. Vous devez vous reconnecter car votre mot de passe a été modifié.
+    sessions:
+      already_signed_out: Déconnecté(e).
+      new:
+        sign_in: Connexion
+      signed_in: Connecté(e).
+      signed_out: Déconnecté(e).
+    shared:
+      links:
+        back: Retour
+        didn_t_receive_confirmation_instructions: Vous n'avez pas reçu l'email de confirmation ?
+        didn_t_receive_unlock_instructions: Vous n'avez pas reçu l'email de déblocage ?
+        forgot_your_password: Mot de passe oublié ?
+        sign_in: Connexion
+        sign_in_with_provider: Connexion avec %{provider}
+        sign_up: Inscription
+      minimum_password_length:
+        one: "(%{count} caractère au moins)"
+        other: "(%{count} caractères au moins)"
+    unlocks:
+      new:
+        resend_unlock_instructions: Renvoyer les instructions de déblocage
+      send_instructions: Vous allez recevoir sous quelques minutes un email comportant des instructions pour déverrouiller votre compte.
+      send_paranoid_instructions: Si votre email existe sur notre base de données, vous recevrez sous quelques minutes un message avec des instructions pour déverrouiller votre compte.
+      unlocked: Votre compte a bien été déverrouillé. Veuillez vous connecter.
+  errors:
+    messages:
+      already_confirmed: a déjà été confirmé(e)
+      confirmation_period_expired: doit être confirmé(e) en %{period}, veuillez en demander un(e) autre
+      expired: est expiré, veuillez en demander un autre
+      not_found: n’a pas été trouvé(e)
+      not_locked: n’était pas verrouillé(e)
+      not_saved:
+        one: 'une erreur a empêché ce (cet ou cette) %{resource} d’être enregistré(e) :'
+        other: "%{count} erreurs ont empêché ce (cet ou cette) %{resource} d’être enregistré(e) :"

data/lib/generators/bo/bo_generator.rb

@@ -19,6 +19,10 @@ class BoGenerator < Rails::Generators::NamedBase
     template '_search_bar.html.erb', File.join("app/views/#{options[:namespace]}", "#{plural_name}/_search_bar.html.erb")
     template 'show.html.erb', File.join("app/views/#{options[:namespace]}", "#{plural_name}/show.html.erb")
     template 'controller.rb', File.join("app/controllers/#{options[:namespace]}", "#{plural_name}_controller.rb")
+    template 'policy.rb', File.join("app/policies/bo/#{options[:namespace]}", "#{file_name.underscore}_policy.rb")
+    unless File.exists?("app/policies/bo/#{options[:namespace]}.rb")
+      template 'namespace_policy.rb', "app/policies/bo/#{options[:namespace]}_policy.rb"
+    end
     create_translations
   end
 
@@ -65,7 +69,7 @@ class BoGenerator < Rails::Generators::NamedBase
 
   def permited_params
     params = {}
-    action_text_columns= has_one_assoc&.select {|a| a.name == :rich_text_content}
+    action_text_columns= has_one_assoc&.select {|a| a.options[:class_name] == 'ActionText::RichText'}
     model_columns&.map do |col|
       params["#{col}".to_sym] = nil
     end
@@ -76,8 +80,10 @@ class BoGenerator < Rails::Generators::NamedBase
        params["#{association.name.to_s.singularize}_ids".to_sym] = []
     end
     has_one_assoc&.map do |association|
-       attributes = association.klass.column_names.map(&:to_sym).delete_if {|attr| excluded_columns.include?(attr)}
-       params["#{association.name.to_s.singularize}_attributes".to_sym] = attributes
+      next if association.options[:class_name] == 'ActionText::RichText'
+
+      attributes = association.klass.column_names.map(&:to_sym).delete_if {|attr| excluded_columns.include?(attr)}
+      params["#{association.name.to_s.singularize}_attributes".to_sym] = attributes
     end
     params
   end

data/lib/generators/bo/templates/_form.html.erb

@@ -11,7 +11,10 @@
   <!-- has_one Associations -->
   <%- has_one_assoc.each do |association| -%>
   <%- if association.options[:class_name] == "ActionText::RichText" -%>
-  <%%= f.rich_text_area :<%= association.name.to_s.singularize.to_s.remove('rich_text_' )%> %>
+  <label class="block my-5 block text-sm font-medium text-gray-700 string optional text-sm font-medium text-gray-600">
+    <%%= I18n.t('bo.<%= class_name.underscore %>.attributes.<%=- association.name.to_s.singularize.to_s.remove('rich_text_') -%>') %>
+  </label>
+  <%%= f.rich_text_area :<%= association.name.to_s.singularize.to_s.remove('rich_text_')%> %>
   <%- else -%>
   <%%= render(Forms::HasOneFormComponent.new(title: I18n.t('bo.<%= association.name %>.one') )) do %>
     <%%= f.simple_fields_for :<%= association.name.to_s %> do |<%= association.name.to_s %>_form| %>

data/lib/generators/bo/templates/controller.rb

@@ -5,11 +5,15 @@ module <%= options[:namespace].camelize %>
     before_action :set_<%= class_name.underscore %>, only: %i[show edit destroy update]
 
     def index
-      @q = <%=class_name%>.ransack(params[:q])
+      @q = authorized_scope(
+        <%=class_name%>.all,
+        with: Bo::<%= options[:namespace].camelize %>::<%= class_name %>Policy
+      ).ransack(params[:q])
       @pagy, @<%= class_name.pluralize.underscore %> = pagy(@q.result(distinct: true))
     end
 
     def show
+      authorize! @<%= class_name.underscore %>, to: :show?, namespace:, strict_namespace: true
     <%- has_one_assoc.each do |association| -%>
     <%- next if association.options[:class_name] == "ActionText::RichText" -%>
       @<%= class_name.underscore %>.build_<%= association.name %> if @<%= class_name.underscore %>.<%= association.name %>.nil?
@@ -18,16 +22,20 @@ module <%= options[:namespace].camelize %>
 
     def new
       @<%= class_name.underscore %> = <%= class_name %>.new
+      authorize! @<%= class_name.underscore %>, to: :new?, namespace:, strict_namespace: true
       <%- has_one_assoc.each do |association| -%>
       <%- next if association.options[:class_name] == "ActionText::RichText" -%>
       @<%= class_name.underscore %>.build_<%= association.name %>
       <%- end -%>
     end
 
-    def edit; end
+    def edit
+      authorize! @<%= class_name.underscore %>, to: :edit?, namespace:, strict_namespace: true
+    end
 
     def create
       @<%= class_name.underscore %> = <%= class_name %>.new(<%= class_name.underscore %>_params)
+      authorize! @<%= class_name.underscore %>, to: :create?, namespace:, strict_namespace: true
 
       if @<%= class_name.underscore %>.save
         flash[:success] = t('bo.record.created')
@@ -38,6 +46,8 @@ module <%= options[:namespace].camelize %>
     end
 
     def update
+      authorize! @<%= class_name.underscore %>, to: :update?, namespace:, strict_namespace: true
+
       if @<%= class_name.underscore %>.update(<%= class_name.underscore %>_params)
         flash[:success] = t('bo.record.updated')
         redirect_to <%="#{options[:namespace]}_#{class_name.underscore}_path"%>
@@ -47,6 +57,8 @@ module <%= options[:namespace].camelize %>
     end
 
     def destroy
+      authorize! @<%= class_name.underscore %>, to: :destroy?, namespace:, strict_namespace: true
+
       @<%= class_name.underscore %>.destroy
       flash[:success] = t('bo.record.destroyed')
 
@@ -70,5 +82,9 @@ module <%= options[:namespace].camelize %>
         <%- end -%>
       )
     end
+
+    def namespace
+      @namespace ||= Bo::<%= options[:namespace].camelize %>
+    end
   end
 end

data/lib/generators/bo/templates/namespace_policy.rb

@@ -0,0 +1,29 @@
+module Bo
+  class <%= options[:namespace].camelize %>Policy < ActionPolicy::Base
+    def show?
+      true
+    end
+
+    def new?
+      true
+    end
+
+    def edit?
+      true
+    end
+
+    def create?
+      true
+    end
+
+    def update?
+      true
+    end
+
+    def destroy?
+      true
+    end
+
+    relation_scope(&:all)
+  end
+end

data/lib/generators/bo/templates/policy.rb

@@ -0,0 +1,6 @@
+module Bo
+  module <%= options[:namespace].camelize %>
+    class <%= class_name %>Policy < Bo::<%= options[:namespace].camelize %>Policy
+    end
+  end
+end

data/lib/generators/bo_namespace/bo_namespace_generator.rb

@@ -9,7 +9,7 @@ class BoNamespaceGenerator < Rails::Generators::NamedBase
     template 'admin_controller.rb', File.join('app/controllers/', "#{singular_name}_controller.rb")
     template 'seeds.rb', File.join('db/seeds/', "#{plural_name}.rb")
     template 'side_bar.html.erb', File.join('app/views/', "#{plural_name}/layouts/_side_bar.html.erb")
-    #remove_devise_registration
+    remove_devise_registration
   end
 
   def create_directories

data/lib/generators/bo_namespace/templates/admin_controller.rb

@@ -4,4 +4,5 @@ class <%= class_name %>Controller < ApplicationController
   include Pagy::Backend
   layout '<%= class_name.underscore %>'
   before_action :authenticate_<%= class_name.underscore %>!
+  authorize :user, through: :current_<%= class_name.underscore %>
 end

data/lib/generators/bo_namespace/templates/policy.rb

@@ -0,0 +1,4 @@
+module Bo
+  class <%= class_name %>Policy < ActionPolicy::Base
+  end
+end

data/lib/tybo/version.rb

@@ -1,3 +1,3 @@
 module Tybo
-  VERSION = '0.0.11'
+  VERSION = '0.0.13'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: tybo
 version: !ruby/object:Gem::Version
-  version: 0.0.11
+  version: 0.0.13
 platform: ruby
 authors:
 - Michel Delpierre
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-02-08 00:00:00.000000000 Z
+date: 2023-02-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -209,7 +209,6 @@ files:
 - app/mailers/tybo/application_mailer.rb
 - app/models/tybo/application_record.rb
 - app/views/devise/confirmations/new.html.erb
-- app/views/devise/login/home.html.erb
 - app/views/devise/mailer/_reset_password_instructions.html.erb
 - app/views/devise/mailer/confirmation_instructions.html.erb
 - app/views/devise/mailer/email_changed.html.erb
@@ -220,8 +219,6 @@ files:
 - app/views/devise/registrations/edit.html.erb
 - app/views/devise/registrations/new.html.erb
 - app/views/devise/sessions/new.html.erb
-- app/views/devise/shared/_devise_errors.html.erb
-- app/views/devise/shared/_error_messages.html.erb
 - app/views/devise/shared/_links.html.erb
 - app/views/devise/unlocks/new.html.erb
 - app/views/layouts/_errors.html.erb
@@ -234,6 +231,7 @@ files:
 - config/initializers/pagy.rb
 - config/initializers/ransack.rb
 - config/locales/devise.en.yml
+- config/locales/devise.fr.yml
 - config/routes.rb
 - lib/generators/bo/USAGE
 - lib/generators/bo/bo_generator.rb
@@ -243,7 +241,9 @@ files:
 - lib/generators/bo/templates/controller.rb
 - lib/generators/bo/templates/index.html.erb
 - lib/generators/bo/templates/item.html.erb
+- lib/generators/bo/templates/namespace_policy.rb
 - lib/generators/bo/templates/new.html.erb
+- lib/generators/bo/templates/policy.rb
 - lib/generators/bo/templates/show.html.erb
 - lib/generators/bo/utils/files/fr.json
 - lib/generators/bo/utils/translations.rb
@@ -251,6 +251,7 @@ files:
 - lib/generators/bo_namespace/bo_namespace_generator.rb
 - lib/generators/bo_namespace/templates/admin.html.erb
 - lib/generators/bo_namespace/templates/admin_controller.rb
+- lib/generators/bo_namespace/templates/policy.rb
 - lib/generators/bo_namespace/templates/seeds.rb
 - lib/generators/bo_namespace/templates/side_bar.html.erb
 - lib/generators/tybo_install/templates/application.tailwind.css
@@ -258,7 +259,7 @@ files:
 - lib/generators/tybo_install/templates/tailwind.config.js
 - lib/generators/tybo_install/templates/tom-select.css
 - lib/generators/tybo_install/templates/tybo_config.rb
-- lib/generators/tybo_install/tybo_config.rb
+- lib/generators/tybo_install/tybo_install_generator.rb
 - lib/tybo.rb
 - lib/tybo/configuration.rb
 - lib/tybo/engine.rb

data/app/views/devise/login/home.html.erb

@@ -1,18 +0,0 @@
-
-
-<div class="flex flex-1 flex-col justify-center py-12 px-4 sm:px-6 lg:flex-none lg:px-20 xl:px-24">
-  <div class="mx-auto w-full max-w-sm lg:w-96">
-    <div>
-      <%= image_tag Tybo.configuration.logo_url, class: 'h-12 w-auto'%>
-      <h2 class="mt-6 text-3xl font-bold tracking-tight text-gray-900">Sign in to your account</h2>
-    </div>
-    <div class="mt-4">
-    <% @resources.each do |resource| %>
-    <a href="<%=send("new_#{resource.to_s}_session_path")%>" class="mt-2 flex w-full justify-center rounded-md border border-transparent bg-tybo-600 py-2 px-4 text-sm font-medium text-white shadow-sm hover:bg-tybo-700 focus:outline-none focus:ring-2 focus:ring-tybo-500 focus:ring-offset-2">
-       <%=I18n.t("bo.sign_in_as.#{resource.to_s}")%>
-    </a>
-    <% end %>
-    </div>
-  </div>
-</div>
-<%= render(CoverComponent.new) %>

data/app/views/devise/shared/_devise_errors.html.erb

@@ -1,26 +0,0 @@
-
-<% if notice || alert %>
-  <div class="rounded-md bg-red-50 p-4 my-3" data-controller="flash">
-    <div class="flex">
-      <div class="flex-shrink-0">
-        <svg class="h-5 w-5 text-red-400" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
-          <path fill-rule="evenodd" d="M8.485 3.495c.673-1.167 2.357-1.167 3.03 0l6.28 10.875c.673 1.167-.17 2.625-1.516 2.625H3.72c-1.347 0-2.189-1.458-1.515-2.625L8.485 3.495zM10 6a.75.75 0 01.75.75v3.5a.75.75 0 01-1.5 0v-3.5A.75.75 0 0110 6zm0 9a1 1 0 100-2 1 1 0 000 2z" clip-rule="evenodd"/>
-        </svg>
-      </div>
-      <div class="ml-3">
-        <p class="text-sm font-medium text-tybo-800"><%= notice %></p> 
-        <p class="text-sm font-medium text-red-800"><%= alert %></p> 
-      </div>
-      <div class="ml-auto pl-3">
-        <div class="-mx-1.5 -my-1.5">
-          <button type="button" data-action="flash#dismiss" class="inline-flex bg-red-50 rounded-md p-1.5 text-red-500 hover:bg-red-100 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-offset-red-50 focus:ring-red-600">
-            <span class="sr-only">Dismiss</span>
-            <svg class="h-5 w-5" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor" aria-hidden="true">
-              <path d="M6.28 5.22a.75.75 0 00-1.06 1.06L8.94 10l-3.72 3.72a.75.75 0 101.06 1.06L10 11.06l3.72 3.72a.75.75 0 101.06-1.06L11.06 10l3.72-3.72a.75.75 0 00-1.06-1.06L10 8.94 6.28 5.22z"/>
-            </svg>
-          </button>
-        </div>
-      </div>
-    </div>
-  </div>
-<% end %>

data/app/views/devise/shared/_error_messages.html.erb

@@ -1,15 +0,0 @@
-<% if resource.errors.any? %>
-  <div id="error_explanation">
-    <h2>
-      <%= I18n.t("errors.messages.not_saved",
-                 count: resource.errors.count,
-                 resource: resource.class.model_name.human.downcase)
-       %>
-    </h2>
-    <ul>
-      <% resource.errors.full_messages.each do |message| %>
-        <li><%= message %></li>
-      <% end %>
-    </ul>
-  </div>
-<% end %>