lino.jorzick
/
greenlight
forked from External/greenlight
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

GRN2-155: Begin preparing for removal of Twitter accounts (#615) 

* Add twitter deprecation message

* Fix rspec test

* Extract room switch to its own method

* update method name
This commit is contained in:
shawn-higgins1 2019-07-09 13:06:07 -04:00 committed by Jesus Federico
parent a3158b5872
commit 40b05b1626
8 changed files with 180 additions and 49 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
app/controllers/sessions_controller.rb
View File

@ -51,6 +51,10 @@ class SessionsController < ApplicationController
@auth = request.env['omniauth.auth'] @auth = request.env['omniauth.auth']
@user_exists = check_user_exists @user_exists = check_user_exists
if !@user_exists && @auth['provider'] == "twitter"
return redirect_to root_path, flash: { alert: I18n.t("registration.deprecated.twitter_signup") }
end
# If using invitation registration method, make sure user is invited # If using invitation registration method, make sure user is invited
return redirect_to root_path, flash: { alert: I18n.t("registration.invite.no_invite") } unless passes_invite_reqs return redirect_to root_path, flash: { alert: I18n.t("registration.invite.no_invite") } unless passes_invite_reqs
@ -70,6 +74,16 @@ class SessionsController < ApplicationController
invite_registration && !@user_exists invite_registration && !@user_exists
login(user) login(user)
if @auth['provider'] == "twitter"
flash[:alert] = if allow_user_signup? && allow_greenlight_accounts?
I18n.t("registration.deprecated.twitter_signin",
link: signup_path(old_twitter_user_id: user.id))
else
I18n.t("registration.deprecated.twitter_signin",
link: signin_path(old_twitter_user_id: user.id))
end
end
rescue => e rescue => e
logger.error "Error authenticating via omniauth: #{e}" logger.error "Error authenticating via omniauth: #{e}"
omniauth_fail omniauth_fail

12
app/controllers/users_controller.rb
View File

@ -62,6 +62,10 @@ class UsersController < ApplicationController
# GET /signin # GET /signin
def signin def signin
unless params[:old_twitter_user_id].nil? && session[:old_twitter_user_id].nil?
flash[:alert] = I18n.t("registration.deprecated.new_signin")
session[:old_twitter_user_id] = params[:old_twitter_user_id] unless params[:old_twitter_user_id].nil?
end
end end
# GET /signup # GET /signup
@ -75,6 +79,12 @@ class UsersController < ApplicationController
session[:invite_token] = params[:invite_token] session[:invite_token] = params[:invite_token]
end end
unless params[:old_twitter_user_id].nil? && session[:old_twitter_user_id].nil?
logout
flash.now[:alert] = I18n.t("registration.deprecated.new_signin")
session[:old_twitter_user_id] = params[:old_twitter_user_id] unless params[:old_twitter_user_id].nil?
end
@user = User.new @user = User.new
end end
@ -175,7 +185,7 @@ class UsersController < ApplicationController
end end
def ensure_unauthenticated def ensure_unauthenticated
redirect_to current_user.main_room if current_user redirect_to current_user.main_room if current_user && params[:old_twitter_user_id].nil?
end end
def user_params def user_params

6
app/helpers/application_helper.rb
View File

@ -33,7 +33,11 @@ module ApplicationHelper
# Determines which providers can show a login button in the login modal. # Determines which providers can show a login button in the login modal.
def iconset_providers def iconset_providers
configured_providers & [:google, :twitter, :microsoft_office365] providers = configured_providers & [:google, :twitter, :microsoft_office365]
providers.delete(:twitter) if session[:old_twitter_user_id]
providers
end end
# Generates the login URL for a specific provider. # Generates the login URL for a specific provider.

22
app/helpers/sessions_helper.rb
View File

@ -19,6 +19,8 @@
module SessionsHelper module SessionsHelper
# Logs a user into GreenLight. # Logs a user into GreenLight.
def login(user) def login(user)
migrate_twitter_user(user)
session[:user_id] = user.id session[:user_id] = user.id
# If there are not terms, or the user has accepted them, check for email verification # If there are not terms, or the user has accepted them, check for email verification
@ -97,4 +99,24 @@ module SessionsHelper
hd_opts hd_opts
end end
end end
def migrate_twitter_user(user)
if !session["old_twitter_user_id"].nil? && user.provider != "twitter"
old_user = User.find(session["old_twitter_user_id"])
old_user.rooms.each do |room|
room.owner = user
room.name = "Old " + room.name if room.id == old_user.main_room.id
room.save!
end
# Query for the old user again so the migrated rooms don't get deleted
old_user.reload
old_user.destroy!
session["old_twitter_user_id"] = nil
end
end
end end

6
app/views/shared/_flash_messages.html.erb
View File

@ -17,17 +17,17 @@
<% if key.eql? "success" %> <% if key.eql? "success" %>
<div class="alert alert-success alert-dismissible text-center mb-0"> <div class="alert alert-success alert-dismissible text-center mb-0">
<button type="button" class="close" data-dismiss="alert">&times</button> <button type="button" class="close" data-dismiss="alert">&times</button>
<%= value %> <%= value.html_safe %>
</div> </div>
<% elsif key.eql? "alert" %> <% elsif key.eql? "alert" %>
<div class="alert alert-danger alert-dismissible text-center mb-0"> <div class="alert alert-danger alert-dismissible text-center mb-0">
<button type="button" class="close" data-dismiss="alert">&times</button> <button type="button" class="close" data-dismiss="alert">&times</button>
<%= value %> <%= value.html_safe %>
</div> </div>
<% elsif key.eql? "info" %> <% elsif key.eql? "info" %>
<div class="alert alert-info alert-dismissible text-center mb-0"> <div class="alert alert-info alert-dismissible text-center mb-0">
<button type="button" class="close" data-dismiss="alert">&times</button> <button type="button" class="close" data-dismiss="alert">&times</button>
<%= value %> <%= value.html_safe %>
</div> </div>
<% end %> <% end %>
<% end %> <% end %>

2
config/environments/test.rb
View File

@ -49,4 +49,6 @@ Rails.application.configure do
# Use standalone BigBlueButton server. # Use standalone BigBlueButton server.
config.bigbluebutton_endpoint = config.bigbluebutton_endpoint_default config.bigbluebutton_endpoint = config.bigbluebutton_endpoint_default
config.bigbluebutton_secret = config.bigbluebutton_secret_default config.bigbluebutton_secret = config.bigbluebutton_secret_default
config.loadbalanced_configuration = false
end end

4
config/locales/en.yml
View File

@ -331,6 +331,10 @@ en:
signup: Your account was successfully created. It has been sent to an administrator for approval. signup: Your account was successfully created. It has been sent to an administrator for approval.
banned: banned:
fail: You do not have access to this application. If you believe this is a mistake, please contact your administrator. fail: You do not have access to this application. If you believe this is a mistake, please contact your administrator.
deprecated:
new_signin: Select a new login method for you account. All your rooms from your old account will be migrated to the new account
twitter_signin: Signing in via Twitter has been deprecated and will be removed in the next release. Click <a href="%{link}"> here </a> to move your account to a new authentication method
twitter_signup: Sign up via Twitter has been deprecated. Please use a different sign up method
invite: invite:
fail: Your token is either invalid or has expired. If you believe this is a mistake, please contact your administrator. fail: Your token is either invalid or has expired. If you believe this is a mistake, please contact your administrator.
no_invite: You do not have an invitation to join. Please contact your administrator to receive one. no_invite: You do not have an invitation to join. Please contact your administrator to receive one.

91
spec/controllers/sessions_controller_spec.rb
View File

@ -156,6 +156,29 @@ describe SessionsController, type: :controller do
expect(@request.session[:user_id]).to eql(user.id) expect(@request.session[:user_id]).to eql(user.id)
expect(response).to redirect_to(admins_path) expect(response).to redirect_to(admins_path)
end end
it "should migrate old rooms from the twitter account to the new user" do
twitter_user = User.create(name: "Twitter User", email: "user@twitter.com", image: "example.png",
username: "twitteruser", email_verified: true, provider: 'twitter', social_uid: "twitter-user")
room = Room.new(name: "Test")
room.owner = twitter_user
room.save!
post :create, params: {
session: {
email: @user1.email,
password: 'example',
},
}, session: {
old_twitter_user_id: twitter_user.id
}
@user1.reload
expect(@user1.rooms.count).to eq(3)
expect(@user1.rooms.find { |r| r.name == "Old Home Room" }).to_not be_nil
expect(@user1.rooms.find { |r| r.name == "Test" }).to_not be_nil
end
end end
describe "GET/POST #omniauth" do describe "GET/POST #omniauth" do
@ -173,6 +196,18 @@ describe SessionsController, type: :controller do
}, },
) )
OmniAuth.config.mock_auth[:google] = OmniAuth::AuthHash.new(
provider: "google",
uid: "google-user",
info: {
email: "user@google.com",
name: "Google User",
nickname: "googleuser",
image: "touch.png",
customer: 'customer1',
}
)
OmniAuth.config.mock_auth[:bn_launcher] = OmniAuth::AuthHash.new( OmniAuth.config.mock_auth[:bn_launcher] = OmniAuth::AuthHash.new(
provider: "bn_launcher", provider: "bn_launcher",
uid: "bn-launcher-user", uid: "bn-launcher-user",
@ -190,14 +225,13 @@ describe SessionsController, type: :controller do
} }
end end
unless Rails.configuration.omniauth_bn_launcher it "should create and login user with omniauth google" do
it "should create and login user with omniauth twitter" do request.env["omniauth.auth"] = OmniAuth.config.mock_auth[:google]
request.env["omniauth.auth"] = OmniAuth.config.mock_auth[:twitter] get :omniauth, params: { provider: :google }
get :omniauth, params: { provider: :twitter }
u = User.last u = User.last
expect(u.provider).to eql("twitter") expect(u.provider).to eql("google")
expect(u.email).to eql("user@twitter.com") expect(u.email).to eql("user@google.com")
expect(@request.session[:user_id]).to eql(u.id) expect(@request.session[:user_id]).to eql(u.id)
end end
@ -213,7 +247,7 @@ describe SessionsController, type: :controller do
it "should redirect to root on invalid omniauth login" do it "should redirect to root on invalid omniauth login" do
request.env["omniauth.auth"] = :invalid_credentials request.env["omniauth.auth"] = :invalid_credentials
get :omniauth, params: { provider: :twitter } get :omniauth, params: { provider: :google }
expect(response).to redirect_to(root_path) expect(response).to redirect_to(root_path)
end end
@ -224,6 +258,48 @@ describe SessionsController, type: :controller do
expect(response).to redirect_to(root_path) expect(response).to redirect_to(root_path)
end end
context 'twitter deprecation' do
it "should not allow new user sign up with omniauth twitter" do
request.env["omniauth.auth"] = OmniAuth.config.mock_auth[:twitter]
get :omniauth, params: { provider: :twitter }
expect(response).to redirect_to(root_path)
expect(flash[:alert]).to eq(I18n.t("registration.deprecated.twitter_signup"))
end
it "should notify twitter users that twitter is deprecated" do
allow(Rails.configuration).to receive(:allow_user_signup).and_return(true)
twitter_user = User.create(name: "Twitter User", email: "user@twitter.com", image: "example.png",
username: "twitteruser", email_verified: true, provider: 'twitter', social_uid: "twitter-user")
request.env["omniauth.auth"] = OmniAuth.config.mock_auth[:twitter]
get :omniauth, params: { provider: :twitter }
expect(flash[:alert]).to eq(I18n.t("registration.deprecated.twitter_signin",
link: signup_path(old_twitter_user_id: twitter_user.id)))
end
it "should migrate rooms from the twitter account to the google account" do
twitter_user = User.create(name: "Twitter User", email: "user@twitter.com", image: "example.png",
username: "twitteruser", email_verified: true, provider: 'twitter', social_uid: "twitter-user")
room = Room.new(name: "Test")
room.owner = twitter_user
room.save!
request.env["omniauth.auth"] = OmniAuth.config.mock_auth[:google]
get :omniauth, params: { provider: :google }, session: { old_twitter_user_id: twitter_user.id }
u = User.last
expect(u.provider).to eql("google")
expect(u.email).to eql("user@google.com")
expect(@request.session[:user_id]).to eql(u.id)
expect(u.rooms.count).to eq(3)
expect(u.rooms.find { |r| r.name == "Old Home Room" }).to_not be_nil
expect(u.rooms.find { |r| r.name == "Test" }).to_not be_nil
end
end
context 'registration notification emails' do context 'registration notification emails' do
before do before do
allow(Rails.configuration).to receive(:enable_email_verification).and_return(true) allow(Rails.configuration).to receive(:enable_email_verification).and_return(true)
@ -253,7 +329,6 @@ describe SessionsController, type: :controller do
.to change { ActionMailer::Base.deliveries.count }.by(1) .to change { ActionMailer::Base.deliveries.count }.by(1)
end end
end end
end
it "should not create session without omniauth env set for bn_launcher" do it "should not create session without omniauth env set for bn_launcher" do
get :omniauth, params: { provider: 'bn_launcher' } get :omniauth, params: { provider: 'bn_launcher' }