Merge branch 'main' into codex/add-sitemap-generator-and-configuration

Signed-off-by: Robert Smith <[email protected]>

Author: rsmithlal

.env.dev

@@ -6,8 +6,8 @@
 ALLOWED_HOSTS='http://localhost:3000'
 APP_HOST='http://localhost:3000'
 APP_DEFAULT_LOCALE='en'
-APP_AVAILABLE_LOCALES='es,en,fr'
-APP_FALLBACK_LOCALES='es,en,fr'
+APP_AVAILABLE_LOCALES='en,fr,es,uk'
+APP_FALLBACK_LOCALES='en,fr,es,uk'
 
 ES_PORT='9200'
 ES_HOST='http://elasticsearch'

.github/copilot-instructions.md

@@ -92,6 +92,19 @@ This repository contains the **Better Together Community Engine** (an isolated R
 
 ## Coding Guidelines
 
+### Debugging and Development Practices
+- **Never use Rails console or runner for debugging** - These commands don't support our test-driven development approach
+- **Debug through comprehensive tests**: Write detailed test scenarios to reproduce, understand, and verify fixes for issues
+- **Use test-driven debugging workflow**:
+  - Create specific tests that reproduce the problematic behavior
+  - Add debugging assertions in tests to verify intermediate state
+  - Trace through code by reading files and using grep search
+  - Validate fixes by ensuring tests pass
+- **Leverage RSpec debugging tools**: Use `--format documentation` for detailed output, `fit` for focused testing, `puts` for temporary debug output in tests
+- **Analyze logs and error messages**: Examine Rails logs, test output, and stack traces for debugging information
+- **Read code systematically**: Use file reading tools to understand code paths and data flow
+- **Temporary debug output**: Add debug statements in application code if needed, but remove before committing
+
 ### Docker Environment Usage
 - **All database-dependent commands must use `bin/dc-run`**: This includes tests, generators, and any command that connects to PostgreSQL, Redis, or Elasticsearch
 - **Dummy app commands use `bin/dc-run-dummy`**: For Rails commands that need the dummy app context (console, migrations specific to dummy app)
@@ -102,10 +115,11 @@ This repository contains the **Better Together Community Engine** (an isolated R
   - RuboCop: `bin/dc-run bundle exec rubocop`
   - **IMPORTANT**: Never use `rspec -v` - this displays version info, not verbose output. Use `--format documentation` for detailed output.
 - **Examples of commands requiring `bin/dc-run-dummy`**:
-  - Rails console: `bin/dc-run-dummy rails console`
+  - Rails console: `bin/dc-run-dummy rails console` (for administrative tasks only, NOT for debugging)
   - Dummy app migrations: `bin/dc-run-dummy rails db:migrate`
   - Dummy app database operations: `bin/dc-run-dummy rails db:seed`
 - **Commands that don't require bin/dc-run**: File operations, documentation generation (unless database access needed), static analysis tools that don't connect to services
+- **CRITICAL**: Rails console and runner are NOT debugging tools in this project - use comprehensive test suites instead
 
 ### Security Requirements
 - **Run Brakeman before generating code**: `bin/dc-run bundle exec brakeman --quiet --no-pager` 

.github/instructions/view-helpers.instructions.md

@@ -80,6 +80,20 @@ end
 - `truncate`, `pluralize`, `excerpt`, `word_wrap`, `simple_format`.
 - For rich text (Action Text), use `record.body` and `to_plain_text` for indexing/search.
 
+### Privacy Display
+- Use `privacy_display_value(entity)` for consistent, translated privacy level display across the application.
+- This helper automatically looks up the proper translation from `attributes.privacy_list` and falls back to humanized values.
+- Supports all privacy levels: `public`, `private`, `community`, `unlisted`.
+
+```ruby
+# Instead of: entity.privacy.humanize or entity.privacy.capitalize
+<%= privacy_display_value(@event) %>      # "Public" / "Público" / "Public"
+<%= privacy_display_value(@community) %>  # "Private" / "Privado" / "Privé"
+
+# Works in badges too (automatically used)
+<%= privacy_badge(@entity) %>  # Uses privacy_display_value internally
+```
+
 ---
 
 ## 4. Navigation & Link Helpers

.github/workflows/rubyonrails.yml

@@ -14,8 +14,8 @@ jobs:
             rails: '7.2.2.2'
             allowed_failure: false   # ✅ required
           - ruby: '3.4.4'
-            rails: '8.0.2'
-            allowed_failure: true    # ⚠️ allowed to fail
+            rails: '8.0.3'
+            allowed_failure: false   # ✅ required
 
     env:
       RAILS_ENV: test
@@ -52,15 +52,15 @@ jobs:
           # Run the automatic bundle-install only on 7.2.
           # For 7.2 / 8.0 it just sets up Ruby *and* restores a cache layer
           # that we’ll reuse in the later manual install.
-          bundler-cache: ${{ matrix.rails == '7.2.2.2' }}
+          bundler-cache: ${{ matrix.rails == '8.0.3' }}
 
           # One cache bucket per Rails version so they don’t clobber each other.
           cache-version: rails-${{ matrix.rails }}
 
       # Updating Rails can legitimately blow up on the experimental tracks,
       # so we allow that *step* to error out without failing the job.
       - name: Update Rails & install gems
-        if: matrix.rails != '7.2.2.2'
+        if: matrix.rails != '8.0.3'
         id: update
         run: |
           # turn off deployment mode
@@ -72,21 +72,21 @@ jobs:
         continue-on-error: ${{ matrix.allowed_failure }}
 
       - name: Prepare DB schema
-        if: (matrix.rails == '7.2.2.2') || steps.update.outcome == 'success'
+        if: (matrix.rails == '8.0.3') || steps.update.outcome == 'success'
         run: |
           rm -f spec/dummy/tmp/pids/server.pid
           bundle exec rake -f spec/dummy/Rakefile db:schema:load
         continue-on-error: ${{ matrix.allowed_failure }}
 
       - name: Wait for Elasticsearch
-        if: (matrix.rails == '7.2.2.2') || steps.update.outcome == 'success'
+        if: (matrix.rails == '8.0.3') || steps.update.outcome == 'success'
         run: |
           echo "Waiting for Elasticsearch to be healthy..."
           curl -s "http://localhost:9200/_cluster/health?wait_for_status=yellow&timeout=60s" || (echo "Elasticsearch not healthy" && exit 1)
 
 
       - name: Run RSpec
-        if: (matrix.rails == '7.2.2.2') || steps.update.outcome == 'success'
+        if: (matrix.rails == '8.0.3') || steps.update.outcome == 'success'
         env:
           RAILS_MASTER_KEY: ${{ secrets.RAILS_MASTER_KEY }}
         run: |

.rubocop.yml

@@ -1,3 +1,5 @@
+inherit_from: .rubocop_todo.yml
+
 AllCops:
   Exclude:
     - 'bin/*'
@@ -13,6 +15,21 @@ plugins:
   - rubocop-rspec_rails
   - rubocop-capybara
   - rubocop-factory_bot
+
+# Disable all RSpec cops that affect test quality but not production code
+RSpec/ExampleLength:
+  Enabled: false
+RSpec/MultipleExpectations:
+  Enabled: false
+RSpec/MultipleMemoizedHelpers:
+  Enabled: false
+RSpec/ContextWording:
+  Enabled: false
+RSpec/MessageSpies:
+  Enabled: false
+RSpec/LetSetup:
+  Enabled: false
+
 Style/StringLiterals:
   Exclude:
     - 'db/migrate/*'

.rubocop_todo.yml

@@ -0,0 +1,43 @@
+# This configuration was generated by
+# `rubocop --auto-gen-config`
+# on 2025-11-04 02:06:37 UTC using RuboCop version 1.81.6.
+# The point is for the user to remove these configuration records
+# one by one as the offenses are removed from the code base.
+# Note that changes in the inspected code, or installation of new
+# versions of RuboCop, may require this file to be generated again.
+
+# Offense count: 52
+# This cop supports safe autocorrection (--autocorrect).
+Lint/RedundantCopDisableDirective:
+  Enabled: false
+
+# Offense count: 2
+# Configuration parameters: CountComments, CountAsOne, AllowedMethods, AllowedPatterns.
+Metrics/MethodLength:
+  Max: 14
+
+# Offense count: 1
+# This cop supports safe autocorrection (--autocorrect).
+# Configuration parameters: EnforcedStyle, SingleLineConditionsOnly, IncludeTernaryExpressions.
+# SupportedStyles: assign_to_condition, assign_inside_condition
+Style/ConditionalAssignment:
+  Exclude:
+    - 'app/controllers/better_together/joatu/hub_controller.rb'
+
+# Offense count: 29
+# This cop supports safe autocorrection (--autocorrect).
+Style/IfUnlessModifier:
+  Enabled: false
+
+# Offense count: 1
+# Configuration parameters: Max.
+Style/SafeNavigationChainLength:
+  Exclude:
+    - 'spec/features/devise/registration_spec.rb'
+
+# Offense count: 1
+# This cop supports safe autocorrection (--autocorrect).
+# Configuration parameters: AllowHeredoc, AllowURI, AllowQualifiedName, URISchemes, IgnoreCopDirectives, AllowedPatterns, SplitStrings.
+# URISchemes: http, https
+Layout/LineLength:
+  Max: 145

AGENTS.md

@@ -19,6 +19,17 @@ Instructions for GitHub Copilot and other automated contributors working in this
   - test: `community_engine_test`
 - Use `DATABASE_URL` to connect (overrides fallback host in `config/database.yml`).
 
+## Debugging Guidelines
+- **Never use Rails console or runner for debugging** - These commands don't align with our test-driven development approach
+- **Use comprehensive test suites instead**: Write detailed tests to understand and verify system behavior
+- **Debug through tests**: Create specific test scenarios to reproduce and validate fixes for issues
+- **Use log analysis**: Examine Rails logs, test output, and error messages for debugging information
+- **Add temporary debugging assertions in tests**: Use `expect()` statements to verify intermediate state in tests
+- **Use RSpec debugging tools**: Use `--format documentation` for detailed test output, `fit` for focused testing
+- **Trace through code by reading files**: Use file reading and grep search to understand code paths
+- **Add debug output in application code temporarily** if needed, but remove before committing
+- **Validate fixes through test success**: Confirm that issues are resolved by having tests pass
+
 ## Commands
 - **Tests:** `bin/dc-run bin/ci`
   (Equivalent: `bin/dc-run bash -c "cd spec/dummy && bundle exec rspec"`)
@@ -29,7 +40,7 @@ Instructions for GitHub Copilot and other automated contributors working in this
   - Multiple specific lines: `bin/dc-run bundle exec rspec spec/file1_spec.rb:123 spec/file2_spec.rb:456`
   - **Important**: RSpec does NOT support hyphenated line numbers (e.g., `spec/file_spec.rb:123-456` is INVALID)
   - **Do NOT use `-v` flag**: The `-v` flag displays RSpec version information, NOT verbose output. Use `--format documentation` for detailed test descriptions.
-- **Rails Console:** `bin/dc-run-dummy rails console` (runs console in the dummy app context)
+- **Rails Console:** `bin/dc-run-dummy rails console` (for administrative tasks only - NOT for debugging. Use comprehensive tests for debugging instead)
 - **Rails Commands in Dummy App:** `bin/dc-run-dummy rails [command]` for any Rails commands that need the dummy app environment
 - **Lint:** `bin/dc-run bundle exec rubocop`
 - **Security:** `bin/dc-run bundle exec brakeman --quiet --no-pager` and `bin/dc-run bundle exec bundler-audit --update`

Dockerfile.docs

@@ -0,0 +1,35 @@
+# syntax=docker/dockerfile:1.7
+
+# Minimal toolchain for generating the documentation PDF (pandoc + LaTeX).
+FROM debian:12-slim
+
+ARG DEBIAN_FRONTEND=noninteractive
+
+RUN set -eux; \
+  apt-get update -qq; \
+  apt-get install -y --no-install-recommends \
+    ca-certificates \
+    curl \
+    lmodern \
+    fonts-noto-core \
+    fonts-noto-mono \
+    fonts-noto-cjk \
+    fonts-noto-color-emoji \
+    pandoc \
+    texlive-latex-base \
+    texlive-latex-recommended \
+    texlive-fonts-recommended \
+    texlive-xetex \
+    fontconfig \
+    fonts-dejavu-core; \
+  rm -rf /var/lib/apt/lists/*
+
+# Drop root for runtime safety
+RUN groupadd --system docs \
+  && useradd --system --create-home --gid docs --shell /bin/bash docs
+
+WORKDIR /workspace
+USER docs
+
+ENV LANG=C.UTF-8 \
+    LC_ALL=C.UTF-8

Gemfile

@@ -20,22 +20,22 @@ gem 'fog-aws'
 # Database adapter for PostgreSQL
 gem 'pg', '>= 0.18', '< 2.0'
 # Puma as the app server
-gem 'puma', '~> 6.6'
+gem 'puma', '~> 7.1'
 
 # Pundit for authorization, custom fork for Better Together
 gem 'pundit-resources', '~> 1.1.4', github: 'better-together-org/pundit-resources'
 
 # Core Rails gem
 gem 'rack-protection'
-gem 'rails', ENV.fetch('RAILS_VERSION', '7.2.2.2')
+gem 'rails', ENV.fetch('RAILS_VERSION', '8.0.3')
 
 # Redis for ActionCable and background jobs
 gem 'redis', '~> 5.4'
 
 gem 'rswag'
 
 # Sidekiq for background processing
-gem 'sidekiq', '~> 8.0.7'
+gem 'sidekiq', '~> 8.0.9'
 
 # Error and performance monitoring with Sentry
 gem 'sentry-rails'
@@ -65,7 +65,7 @@ group :development, :test do
   # Fuubar for fancy test progress bar
   gem 'fuubar'
   # Help with managing translation databasde
-  gem 'i18n-tasks', '~> 1.0.15'
+  gem 'i18n-tasks', '~> 1.1.2'
   # Pry for a powerful shell alternative to IRB
   gem 'pry'
   # RuboCop for static code analysis
@@ -101,6 +101,8 @@ group :test do
   # Capybara for integration testing
   gem 'capybara', '>= 2.15'
   gem 'capybara-screenshot'
+  # WebMock for stubbing external HTTP requests in specs
+  gem 'webmock'
   # Coveralls for test coverage reporting
   gem 'coveralls_reborn', require: false
   # Database cleaner for test database cleaning