baarkerlounger
/
submit-social-housing-lettings-and-sales-data
mirror of https://github.com/communitiesuk/submit-social-housing-lettings-and-sales-data.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Submit social housing lettings and sales data (CORE)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1064 Commits
224 Branches
251 Tags
75 MiB
Tree: d9338984f5
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'd9338984f5'
${ noResults }
submit-social-housing-letti.../app/models/user.rb

92 lines
2.3 KiB
Raw Normal View History Unescape

Add devise gem and a first test for user login Devise is a commonly used gem for user authentication and management. Using rails generators and Devise allows us to get a lot of boilerplate code for user authentication and management and means we don't have to revinvent the wheel. Styling will need to be done for the necessary pages and there are likely to be bits of generated code that can be deleted. This will act as a starting point to be built up from using TDD.
3 years ago
class User < ApplicationRecord
# Include default devise modules. Others available are:
CLDC-996 Login lockout (#377)
3 years ago
# :confirmable, :timeoutable and :omniauthable
CLDC-673: Organisation Page frontend (#122) * Add basic info read page * Header * Better org seed * Use gem component * Tabs * Users * Users is a table rather than a summary list * Table rows * User is trackable * Date format * View component init * Add pages and routes to render * Partials * Match the prototype design * Nested layout is nicer * Except of course they're not the same width * Add button with wrong link * Add user routes * Don't move account route for now * Add component test * Rubocop * Request spec * Test views * Add a feature spec for tab switching * Move styling methods into helper * PR suggestions * PR comments
3 years ago
devise :database_authenticatable, :recoverable, :rememberable, :validatable,
CLDC-1100: Add a Customer Support user role (#454) * A support role exists that can see all case logs * Support role requires 2FA * Support user sees 2FA code screen on login * Use email for OTP code * Ensure resend paths work * Support user can see additional organisation columns on logs page * Simpler test * Remove spec description spaces
3 years ago
:trackable, :lockable, :two_factor_authenticatable
CLDC-673: Organisation page (#114) * Add organisation model and user association * Add user admin panel * email * Update seeds * Update spec * Case logs belong to organisations * Org case log association * Add user case log association * User case log helper methods * Org case log relation helpers * Case log index page only shows your organisations case logs * No access to tasklist page for logs that aren't associated with your org * No access to form pages for case logs that aren't owned or managed by your org * Check answers access * Submit form access * Refactor out not found methods * Allow user admin update without password * Update feature specs * Rubocop * Update case log specs * Test admin user update without password * Spec grammar
3 years ago
belongs_to :organisation
has_many :owned_case_logs, through: :organisation
has_many :managed_case_logs, through: :organisation
Devise fields don't need versioning (#455)
3 years ago
has_paper_trail ignore: %w[last_sign_in_at
current_sign_in_at
current_sign_in_ip
last_sign_in_ip
failed_attempts
unlock_token
locked_at
reset_password_token
reset_password_sent_at
remember_created_at
sign_in_count
updated_at]
CLDC-961: Model data versioning (#277) * Replace Discard with Paper Trail * Track who created or changed records via UI * Track model updates by AdminUsers
3 years ago
CLDC-1100: Add a Customer Support user role (#454) * A support role exists that can see all case logs * Support role requires 2FA * Support user sees 2FA code screen on login * Use email for OTP code * Ensure resend paths work * Support user can see additional organisation columns on logs page * Simpler test * Remove spec description spaces
3 years ago
has_one_time_password(encrypted: true)
Refactor enums (#321) * Remove enums * Add some convenience methods to make validations more readable * Gender chars instead of ints * Remove incorrect API doc info for now * More convenience methods * Rename label from value method * Wrapper hbrentshortfall * Please the cop
3 years ago
ROLES = {
data_accessor: 0,
data_provider: 1,
data_coordinator: 2,
CLDC-1100: Add a Customer Support user role (#454) * A support role exists that can see all case logs * Support role requires 2FA * Support user sees 2FA code screen on login * Use email for OTP code * Ensure resend paths work * Support user can see additional organisation columns on logs page * Simpler test * Remove spec description spaces
3 years ago
support: 99,
Refactor enums (#321) * Remove enums * Add some convenience methods to make validations more readable * Gender chars instead of ints * Remove incorrect API doc info for now * More convenience methods * Rename label from value method * Wrapper hbrentshortfall * Please the cop
3 years ago
}.freeze
User roles (#138) * Users have roles * Add role to active admin * Add role to users table * Redirect organisation show to details * Remove users tab for data providers
3 years ago
enum role: ROLES
CLDC-673: Organisation page (#114) * Add organisation model and user association * Add user admin panel * email * Update seeds * Update spec * Case logs belong to organisations * Org case log association * Add user case log association * User case log helper methods * Org case log relation helpers * Case log index page only shows your organisations case logs * No access to tasklist page for logs that aren't associated with your org * No access to form pages for case logs that aren't owned or managed by your org * Check answers access * Submit form access * Refactor out not found methods * Allow user admin update without password * Update feature specs * Rubocop * Update case log specs * Test admin user update without password * Spec grammar
3 years ago
def case_logs
CLDC-1100: Add a Customer Support user role (#454) * A support role exists that can see all case logs * Support role requires 2FA * Support user sees 2FA code screen on login * Use email for OTP code * Ensure resend paths work * Support user can see additional organisation columns on logs page * Simpler test * Remove spec description spaces
3 years ago
if support?
CaseLog.all
else
CaseLog.for_organisation(organisation)
end
CLDC-673: Organisation page (#114) * Add organisation model and user association * Add user admin panel * email * Update seeds * Update spec * Case logs belong to organisations * Org case log association * Add user case log association * User case log helper methods * Org case log relation helpers * Case log index page only shows your organisations case logs * No access to tasklist page for logs that aren't associated with your org * No access to form pages for case logs that aren't owned or managed by your org * Check answers access * Submit form access * Refactor out not found methods * Allow user admin update without password * Update feature specs * Rubocop * Update case log specs * Test admin user update without password * Spec grammar
3 years ago
end
def completed_case_logs
case_logs.completed
end
def not_completed_case_logs
case_logs.not_completed
end
Fix sending reset email for admins (#313) * Fix sending reset email for admins * Reset does not let you bypass 2FA * Trigger SMS on admin password reset * Update flash message for 2FA * Update Admin Login header * Rubocop * 422 * Revert unused view
3 years ago
CLDC-1063: Key Contacts (#435) * Add data field * Add field to views * Only data coordinators can change role, dpo, keycontact * Import key contact field * Rubocop * Import data accessors * Handle non-unqiue email imports
3 years ago
def is_key_contact?
is_key_contact
end
def is_key_contact!
update(is_key_contact: true)
end
CLDC-771: Allow Data Coordinator to change details for users in their organisation (#428) * Update controller auth * Change data protection officer from role to attribute * Allow changing DPO * Update wording * Use radio buttons rather than check box * Add some integration tests * Make hidden text dynamic
3 years ago
def is_data_protection_officer?
is_dpo
end
def is_data_protection_officer!
update!(is_dpo: true)
end
CLDC-1100: Add a Customer Support user role (#454) * A support role exists that can see all case logs * Support role requires 2FA * Support user sees 2FA code screen on login * Use email for OTP code * Ensure resend paths work * Support user can see additional organisation columns on logs page * Simpler test * Remove spec description spaces
3 years ago
MFA_TEMPLATE_ID = "6bdf5ee1-8e01-4be1-b1f9-747061d8a24c".freeze
RESET_PASSWORD_TEMPLATE_ID = "2c410c19-80a7-481c-a531-2bcb3264f8e6".freeze
SET_PASSWORD_TEMPLATE_ID = "257460a6-6616-4640-a3f9-17c3d73d9e91".freeze
def reset_password_notify_template
last_sign_in_at ? RESET_PASSWORD_TEMPLATE_ID : SET_PASSWORD_TEMPLATE_ID
end
def need_two_factor_authentication?(_request)
support?
end
def send_two_factor_authentication_code(code)
template_id = MFA_TEMPLATE_ID
personalisation = { otp: code }
DeviseNotifyMailer.new.send_email(email, template_id, personalisation)
end
Don't allow data coordinators to assign support role
3 years ago
def assignable_roles
return {} unless data_coordinator? || support?
return ROLES if support?
ROLES.except(:support)
end
Add devise gem and a first test for user login Devise is a commonly used gem for user authentication and management. Using rails generators and Devise allows us to get a lot of boilerplate code for user authentication and management and means we don't have to revinvent the wheel. Styling will need to be done for the necessary pages and there are likely to be bits of generated code that can be deleted. This will act as a starting point to be built up from using TDD.
3 years ago
end