feature/ github oauth integration

.rubocop.yml

@@ -2,7 +2,7 @@ AllCops:
   Exclude:
     - 'bin/*'
     - 'node_modules/**/*'
-    - 'spec/dummy/db/schema.rb'
+    # - 'spec/dummy/db/schema.rb'
     - 'vendor/**/*'
   NewCops: enable
   TargetRubyVersion: 3.4

Gemfile.lock

@@ -24,6 +24,7 @@ PATH
       active_storage_validations
       activerecord-import
       activerecord-postgis-adapter
+      acts_as_tenant
       bootstrap (~> 5.3.2)
       dartsass-sprockets (~> 3.1)
       devise
@@ -46,6 +47,10 @@ PATH
       mobility (>= 1.0.1, < 2.0)
       mobility-actiontext (~> 1.1)
       noticed
+      octokit
+      omniauth
+      omniauth-github (~> 2.0.0)
+      omniauth-rails_csrf_protection
       premailer-rails
       public_activity
       pundit (>= 2.1, < 2.6)
@@ -158,6 +163,8 @@ GEM
       mutex_m
       securerandom (>= 0.3)
       tzinfo (~> 2.0)
+    acts_as_tenant (1.0.1)
+      rails (>= 6.0)
     addressable (2.8.7)
       public_suffix (>= 2.0.2, < 7.0)
     asset_sync (2.19.2)
@@ -468,6 +475,8 @@ GEM
       mobility (~> 1.2)
     msgpack (1.8.0)
     multi_json (1.17.0)
+    multi_xml (0.7.1)
+      bigdecimal (~> 3.1)
     multipart-post (2.4.1)
     mutex_m (0.3.0)
     net-http (0.6.0)
@@ -490,6 +499,29 @@ GEM
       racc (~> 1.4)
     noticed (2.8.0)
       rails (>= 6.1.0)
+    oauth2 (2.0.9)
+      faraday (>= 0.17.3, < 3.0)
+      jwt (>= 1.0, < 3.0)
+      multi_xml (~> 0.5)
+      rack (>= 1.2, < 4)
+      snaky_hash (~> 2.0)
+      version_gem (~> 1.1)
+    octokit (9.1.0)
+      faraday (>= 1, < 3)
+      sawyer (~> 0.9)
+    omniauth (2.1.2)
+      hashie (>= 3.4.6)
+      rack (>= 2.2.3)
+      rack-protection
+    omniauth-github (2.0.1)
+      omniauth (~> 2.0)
+      omniauth-oauth2 (~> 1.8)
+    omniauth-oauth2 (1.8.0)
+      oauth2 (>= 1.4, < 3)
+      omniauth (~> 2.0)
+    omniauth-rails_csrf_protection (1.0.2)
+      actionpack (>= 4.2)
+      omniauth (~> 2.0)
     optimist (3.2.1)
     orm_adapter (0.5.0)
     parallel (1.27.0)
@@ -710,6 +742,9 @@ GEM
       ffi (~> 1.9)
     sassc-embedded (1.80.4)
       sass-embedded (~> 1.80)
+    sawyer (0.9.2)
+      addressable (>= 2.3.5)
+      faraday (>= 0.17.3, < 3)
     securerandom (0.4.1)
     selenium-webdriver (4.35.0)
       base64 (~> 0.2)
@@ -741,6 +776,9 @@ GEM
       simplecov_json_formatter (~> 0.1)
     simplecov-html (0.13.1)
     simplecov_json_formatter (0.1.4)
+    snaky_hash (2.0.1)
+      hashie
+      version_gem (~> 1.1, >= 1.1.1)
     spring (4.4.0)
     spring-watcher-listen (2.1.0)
       listen (>= 2.7, < 4.0)
@@ -785,6 +823,7 @@ GEM
       unicode-emoji (~> 4.0, >= 4.0.4)
     unicode-emoji (4.0.4)
     uri (1.0.3)
+    version_gem (1.1.4)
     virtus (2.0.0)
       axiom-types (~> 0.1)
       coercible (~> 1.0)

app/assets/stylesheets/better_together/theme.scss

@@ -1,3 +1,24 @@
+// New to NL colour palette
+$blue-1: #004BA8;
+$blue-2: #3E78B2;
+$beige:  #EAF0CE;
+$teal:  #5a8f9b;
+$beige-light: lighten($beige, 10%);
+$green-2: #70A288;
+$green-1: #42b983; // variant
+
+// Override the color variables in the host application
+$primary: $green-1; /* Change to a different blue */
+$secondary: $green-2; /* Change to a different green */
+$success: $green-2;
+$info: $green-1;
+$warning: #C9B947;
+$danger: #BF4A47;
+$text-opposite-theme-color: #222; /* Darker text */
+$background-opposite-theme-color: #f0f0f0; /* Lighter background */
+$light-background-text-color: #222;
+$dark-background-text-color: #f0f0f0;
+
 @import "bootstrap/functions";
 @import "bootstrap/mixins";
 @import "bootstrap/variables";

app/controllers/better_together/omniauth_callbacks_controller.rb

@@ -0,0 +1,64 @@
+# frozen_string_literal: true
+
+module BetterTogether
+  class OmniauthCallbacksController < Devise::OmniauthCallbacksController # rubocop:todo Style/Documentation
+    # See https://github.com/omniauth/omniauth/wiki/FAQ#rails-session-is-clobbered-after-callback-on-developer-strategy
+    before_action :verify_oauth_state, only: %i[github]
+
+    before_action :set_person_platform_integration, except: [:failure]
+    before_action :set_user, except: [:failure]
+    before_action :generate_oauth_state, only: %i[github]
+
+    attr_reader :person_platform_integration, :user
+
+    def github
+      handle_auth 'Github'
+    end
+
+    private
+
+    def verify_oauth_state
+      return unless params[:state] != session[:oauth_state]
+
+      flash[:alert] = 'Invalid OAuth state parameter'
+      redirect_to new_user_registration_path
+    end
+
+    def handle_auth(kind) # rubocop:todo Metrics/AbcSize
+      if user.present?
+        flash[:success] = t 'devise_omniauth_callbacks.success', kind: kind if is_navigational_format?
+        sign_in_and_redirect user, event: :authentication
+        redirect_to edit_user_registration_path
+      else
+        flash[:alert] =
+          t 'devise_omniauth_callbacks.failure', kind:, reason: "#{auth.info.email} is not authorized"
+        redirect_to new_user_registration_path
+      end
+    end
+
+    def auth
+      request.env['omniauth.auth']
+    end
+
+    def set_person_platform_integration
+      @person_platform_integration = PersonPlatformIntegration.find_by(provider: auth.provider, uid: auth.uid)
+    end
+
+    def set_user
+      @user = ::BetterTogether.user_class.from_omniauth(
+        person_platform_integration:,
+        auth:,
+        current_user:
+      )
+    end
+
+    def generate_oauth_state
+      session[:oauth_state] = SecureRandom.hex(24)
+    end
+
+    def failure
+      flash[:error] = 'There was a problem signing you in. Please register or try signing in later.'
+      redirect_to helpers.base_url
+    end
+  end
+end

app/controllers/better_together/pages_controller.rb

@@ -4,6 +4,8 @@ module BetterTogether
   # Responds to requests for pages
   class PagesController < FriendlyResourceController # rubocop:todo Metrics/ClassLength
     before_action :set_page, only: %i[show edit update destroy]
+    skip_before_action :check_platform_setup, unless: -> { ::BetterTogether::Platform.where(host: true).any? }
+
     before_action only: %i[new edit], if: -> { Rails.env.development? } do
       # Make sure that all BLock subclasses are loaded in dev to generate new block buttons
       BetterTogether::Content::Block.load_all_subclasses

app/controllers/better_together/person_platform_integrations_controller.rb

@@ -0,0 +1,63 @@
+# frozen_string_literal: true
+
+module BetterTogether
+  # Allows for the management of PersonPlatformIntegrations
+  class PersonPlatformIntegrationsController < ApplicationController
+    before_action :set_person_platform_integration, only: %i[show edit update destroy]
+
+    # GET /better_together/person_platform_integrations
+    def index
+      @person_platform_integrations = BetterTogether::PersonPlatformIntegration.all
+    end
+
+    # GET /better_together/person_platform_integrations/1
+    def show; end
+
+    # GET /better_together/person_platform_integrations/new
+    def new
+      @person_platform_integration = BetterTogether::PersonPlatformIntegration.new
+    end
+
+    # GET /better_together/person_platform_integrations/1/edit
+    def edit; end
+
+    # POST /better_together/person_platform_integrations
+    def create
+      @better_together_person_platform_integration = BetterTogether::PersonPlatformIntegration.new(person_platform_integration_params)
+      if @person_platform_integration.save
+        redirect_to @person_platform_integration, notice: 'PersonPlatformIntegration was successfully created.'
+      else
+        render :new, status: :unprocessable_entity
+      end
+    end
+
+    # PATCH/PUT /better_together/person_platform_integrations/1
+    def update
+      if @person_platform_integration.update(person_platform_integration_params)
+        redirect_to @person_platform_integration, notice: 'PersonPlatformIntegration was successfully updated.',
+                                                  status: :see_other
+      else
+        render :edit, status: :unprocessable_entity
+      end
+    end
+
+    # DELETE /better_together/person_platform_integrations/1
+    def destroy
+      @person_platform_integration.destroy!
+      redirect_to person_platform_integrations_url, notice: 'PersonPlatformIntegration was successfully destroyed.',
+                                                    status: :see_other
+    end
+
+    private
+
+    # Use callbacks to share common setup or constraints between actions.
+    def set_person_platform_integration
+      @person_platform_integration = BetterTogether::PersonPlatformIntegration.find(params[:id])
+    end
+
+    # Only allow a list of trusted parameters through.
+    def person_platform_integration_params
+      params.require(:person_platform_integration).permit(:provider, :uid, :token, :secret, :profile_url, :user_id)
+    end
+  end
+end

app/controllers/better_together/seeds_controller.rb

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+
+module BetterTogether
+  # CRUD for Seed records
+  class SeedsController < ApplicationController
+    before_action :set_seed, only: %i[show edit update destroy]
+
+    # GET /seeds
+    def index
+      @seeds = Seed.all
+    end
+
+    # GET /seeds/1
+    def show; end
+
+    # GET /seeds/new
+    def new
+      @seed = Seed.new
+    end
+
+    # GET /seeds/1/edit
+    def edit; end
+
+    # POST /seeds
+    def create
+      @seed = Seed.new(seed_params)
+
+      if @seed.save
+        redirect_to @seed, notice: 'Seed was successfully created.'
+      else
+        render :new, status: :unprocessable_entity
+      end
+    end
+
+    # PATCH/PUT /seeds/1
+    def update
+      if @seed.update(seed_params)
+        redirect_to @seed, notice: 'Seed was successfully updated.', status: :see_other
+      else
+        render :edit, status: :unprocessable_entity
+      end
+    end
+
+    # DELETE /seeds/1
+    def destroy
+      @seed.destroy!
+      redirect_to seeds_url, notice: 'Seed was successfully destroyed.', status: :see_other
+    end
+
+    private
+
+    # Use callbacks to share common setup or constraints between actions.
+    def set_seed
+      @seed = Seed.find(params[:id])
+    end
+
+    # Only allow a list of trusted parameters through.
+    def seed_params
+      params.fetch(:seed, {})
+    end
+  end
+end

app/helpers/better_together/form_helper.rb

@@ -69,7 +69,7 @@ def language_select_field(form: nil, field_name: :locale, selected_locale: I18n.
 
     def locale_options_for_select(selected_locale = I18n.locale)
       options_for_select(
-        I18n.available_locales.map { |locale| [I18n.t("locales.#{locale}", locale:), locale] },
+        I18n.available_locales.map { |locale| [I18n.t("better_together.languages.#{locale}", locale:), locale] },
         selected_locale
       )
     end

app/helpers/better_together/person_platform_integrations_helper.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+module BetterTogether
+  # This module conains helper methods for PersonPLatformIntegrations
+  module PersonPlatformIntegrationsHelper
+  end
+end

app/helpers/better_together/seeds_helper.rb

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+
+module BetterTogether
+  module SeedsHelper # rubocop:todo Style/Documentation
+  end
+end

app/helpers/better_together/translatable_fields_helper.rb

@@ -40,7 +40,7 @@ def tab_button(locale, unique_locale_attribute, translation_present) # rubocop:t
                   type: 'button',
                   aria: { controls: "#{unique_locale_attribute}-field",
                           selected: locale.to_s == I18n.locale.to_s }) do
-        (t("locales.#{locale}") + translation_indicator(translation_present)).html_safe
+        (t("better_together.languages.#{locale}") + translation_indicator(translation_present)).html_safe
       end
     end
 
@@ -73,7 +73,7 @@ def dropdown_menu(_attribute, locale, unique_locale_attribute, base_url) # ruboc
       content_tag(:ul, class: 'dropdown-menu') do
         I18n.available_locales.reject { |available_locale| available_locale == locale }.map do |available_locale|
           content_tag(:li) do
-            link_to "AI Translate from #{I18n.t("locales.#{available_locale}")}", '#ai-translate',
+            link_to "AI Translate from #{I18n.t("better_together.languages.#{available_locale}")}", '#ai-translate',
                     class: 'dropdown-item',
                     data: {
                       'better_together--translation-target' => 'aiTranslate',