submit-social-housing-letti.../app/mailers/devise_notify_mailer.rb

class DeviseNotifyMailer < Devise::Mailer
  require "notifications/client"

  def notify_client
    @notify_client ||= ::Notifications::Client.new(ENV["GOVUK_NOTIFY_API_KEY"])
  end

  def send_email(email, template_id, personalisation)
    return true if intercept_send?(email)

    notify_client.send_email(
      email_address: email,
      template_id:,
      personalisation:,
    )
  end

  def personalisation(record, token, url)
    {
      name: record.name || record.email,
      email: record.email,
      organisation: record.respond_to?(:organisation) ? record.organisation.name : "",
      link: "#{url}#{token}",
    }
  end

  def reset_password_instructions(record, token, _opts = {})
    base = public_send("edit_#{record.class.name.underscore}_password_url")
    url = "#{base}?reset_password_token="
    send_email(
      record.email,
      record.reset_password_notify_template,
      personalisation(record, token, url),
    )
  end

  def confirmation_instructions(record, token, _opts = {})
    url = "#{user_confirmation_url}?confirmation_token="
    send_email(
      record.email,
      record.confirmable_template,
      personalisation(record, token, url),
    )
  end

  def intercept_send?(email)
    email_domain = email.split("@").last.downcase
    !(Rails.env.production? || Rails.env.test?) && email_allowlist.exclude?(email_domain)
  end

  def email_allowlist
    Rails.application.credentials[:email_allowlist]
  end

  # def unlock_instructions(record, token, opts = {})
  #   super
  # end
  #
  # def email_changed(record, opts = {})
  #   super
  # end
  #
  # def password_change(record, opts = {})
  #   super
  # end
end
Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`class DeviseNotifyMailer < Devise::Mailer`
			`require "notifications/client"`

			`def notify_client`
			`@notify_client \|\|= ::Notifications::Client.new(ENV["GOVUK_NOTIFY_API_KEY"])`
			`end`

			`def send_email(email, template_id, personalisation)`
Email allowlist (#603) * Email allowlist * Set rails master key in deploy pipelines 2 years ago			`return true if intercept_send?(email)`

Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`notify_client.send_email(`
			`email_address: email,`
Ruby 3.1 syntax rubocop 3 years ago			`template_id:,`
			`personalisation:,`
Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`)`
			`end`

Confirmable (#580) * Confirmable * Remove obsolete rake task * Skip confirmation for inactive users * Send beta onboarding template if migrated from Softwire * Default controller * Use correct link * Redirect confirmation to set password * Confirm account within 3 days * Only redirect to set password if not previously set * Rubocop * Confirm factory bot users * Set password condition * Changing email requires reconfirming * No need to explicitly trigger email, devise does that for us now * Remove flash banner * Mock notify * Mock in the right spec * Test redirect and text * User is confirmable * Rubocop * Redirect to url so we don't bypass authenticity token * Update content * Add test for resend invite flow * Update link to resend confirmation email * Rename password reset resend confirmation partial * Expired link error page * Remove resend confirmation link * Update seed * Expory contact * Time zone Co-authored-by: Paul Robert Lloyd <me+git@paulrobertlloyd.com> 2 years ago			`def personalisation(record, token, url)`
			`{`
Fix sending reset email for admins (#313) * Fix sending reset email for admins * Reset does not let you bypass 2FA * Trigger SMS on admin password reset * Update flash message for 2FA * Update Admin Login header * Rubocop * 422 * Revert unused view 3 years ago			`name: record.name \|\| record.email,`
Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`email: record.email,`
Fix sending reset email for admins (#313) * Fix sending reset email for admins * Reset does not let you bypass 2FA * Trigger SMS on admin password reset * Update flash message for 2FA * Update Admin Login header * Rubocop * 422 * Revert unused view 3 years ago			`organisation: record.respond_to?(:organisation) ? record.organisation.name : "",`
Confirmable (#580) * Confirmable * Remove obsolete rake task * Skip confirmation for inactive users * Send beta onboarding template if migrated from Softwire * Default controller * Use correct link * Redirect confirmation to set password * Confirm account within 3 days * Only redirect to set password if not previously set * Rubocop * Confirm factory bot users * Set password condition * Changing email requires reconfirming * No need to explicitly trigger email, devise does that for us now * Remove flash banner * Mock notify * Mock in the right spec * Test redirect and text * User is confirmable * Rubocop * Redirect to url so we don't bypass authenticity token * Update content * Add test for resend invite flow * Update link to resend confirmation email * Rename password reset resend confirmation partial * Expired link error page * Remove resend confirmation link * Update seed * Expory contact * Time zone Co-authored-by: Paul Robert Lloyd <me+git@paulrobertlloyd.com> 2 years ago			`link: "#{url}#{token}",`
Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`}`
			`end`

Confirmable (#580) * Confirmable * Remove obsolete rake task * Skip confirmation for inactive users * Send beta onboarding template if migrated from Softwire * Default controller * Use correct link * Redirect confirmation to set password * Confirm account within 3 days * Only redirect to set password if not previously set * Rubocop * Confirm factory bot users * Set password condition * Changing email requires reconfirming * No need to explicitly trigger email, devise does that for us now * Remove flash banner * Mock notify * Mock in the right spec * Test redirect and text * User is confirmable * Rubocop * Redirect to url so we don't bypass authenticity token * Update content * Add test for resend invite flow * Update link to resend confirmation email * Rename password reset resend confirmation partial * Expired link error page * Remove resend confirmation link * Update seed * Expory contact * Time zone Co-authored-by: Paul Robert Lloyd <me+git@paulrobertlloyd.com> 2 years ago			`def reset_password_instructions(record, token, _opts = {})`
			`base = public_send("edit_#{record.class.name.underscore}_password_url")`
			`url = "#{base}?reset_password_token="`
			`send_email(`
			`record.email,`
			`record.reset_password_notify_template,`
			`personalisation(record, token, url),`
			`)`
			`end`

			`def confirmation_instructions(record, token, _opts = {})`
			`url = "#{user_confirmation_url}?confirmation_token="`
			`send_email(`
			`record.email,`
			`record.confirmable_template,`
			`personalisation(record, token, url),`
			`)`
			`end`

Email allowlist (#603) * Email allowlist * Set rails master key in deploy pipelines 2 years ago			`def intercept_send?(email)`
			`email_domain = email.split("@").last.downcase`
			`!(Rails.env.production? \|\| Rails.env.test?) && email_allowlist.exclude?(email_domain)`
			`end`

			`def email_allowlist`
			`Rails.application.credentials[:email_allowlist]`
			`end`

Use Notify rather than Gmail for devise emails (#241) * Use Notify rather than Gmail for devise emails * Remove Devise mailer views * Use real account template IDs 3 years ago			`# def unlock_instructions(record, token, opts = {})`
			`# super`
			`# end`
			`#`
			`# def email_changed(record, opts = {})`
			`# super`
			`# end`
			`#`
			`# def password_change(record, opts = {})`
			`# super`
			`# end`
			`end`