demarches-normaliennes/config/application.rb

require_relative "boot"

require "rails/all"

# Require the gems listed in Gemfile, including any gems
# you've limited to :test, :development, or :production.
Bundler.require(*Rails.groups)

Dotenv::Railtie.load

module TPS
  class Application < Rails::Application
    # Initialize configuration defaults for originally generated Rails version.
    config.load_defaults 6.0

    # Configuration for the application, engines, and railties goes here.
    #
    # These settings can be overridden in specific environments using the files
    # in config/environments, which are processed later.

    Rails.autoloaders.main.ignore(Rails.root.join('lib/cops'))
    Rails.autoloaders.main.ignore(Rails.root.join('lib/linters'))
    Rails.autoloaders.main.ignore(Rails.root.join('lib/tasks/task_helper.rb'))
    config.paths.add Rails.root.join('spec/mailers/previews').to_s, eager_load: true

    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
    config.time_zone = 'Paris'

    # The default locale is :fr and all translations from config/locales/*.rb,yml are auto loaded.
    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
    config.i18n.default_locale = :fr
    config.i18n.load_path += Dir[Rails.root.join('config', 'locales', '**', '*.{rb,yml}')]
    config.i18n.available_locales = [:fr, :en]
    config.i18n.fallbacks = [:fr]

    config.assets.paths << Rails.root.join('app', 'assets', 'javascript')
    config.assets.paths << Rails.root.join('app', 'assets', 'fonts')
    config.assets.precompile += ['.woff']

    # The default list used to be accessible through `ActionView::Base.sanitized_allowed_tags`,
    # but a regression in Rails 6.0 makes it unavailable.
    # It should be fixed in Rails 6.1.
    # See https://github.com/rails/rails/issues/39586
    # default_allowed_tags = ActionView::Base.sanitized_allowed_tags
    default_allowed_tags = ['strong', 'em', 'b', 'i', 'p', 'code', 'pre', 'tt', 'samp', 'kbd', 'var', 'sub', 'sup', 'dfn', 'cite', 'big', 'small', 'address', 'hr', 'br', 'div', 'span', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'ul', 'ol', 'li', 'dl', 'dt', 'dd', 'abbr', 'acronym', 'a', 'img', 'blockquote', 'del', 'ins']
    config.action_view.sanitized_allowed_tags = default_allowed_tags + ['u']

    # Some mobile browsers have a behaviour where, although they will delete the session
    # cookie when the browser shutdowns, they will still serve a cached version
    # of the page on relaunch.
    # The CSRF token in the HTML is then mismatched with the CSRF token in the session cookie
    # (because the session cookie has been cleared). This causes form submissions to fail with
    # a "ActionController::InvalidAuthenticityToken" exception.
    # To prevent this, tell browsers to never cache the HTML of a page.
    # (This doesn’t affect assets files, which are still sent with the proper cache headers).
    #
    # See https://github.com/rails/rails/issues/21948
    config.action_dispatch.default_headers['Cache-Control'] = 'no-store, no-cache'

    # ActionDispatch's IP spoofing detection is quite limited, and often rejects
    # legitimate requests from misconfigured proxies (such as mobile telcos).
    #
    # As we have our own proxy stack before reaching the Rails app, we can
    # disable the check performed by Rails.
    config.action_dispatch.ip_spoofing_check = false

    # Set the queue name for the mail delivery jobs to 'mailers'
    config.action_mailer.deliver_later_queue_name = :mailers

    # Set the queue name for the analysis jobs to 'active_storage_analysis'
    config.active_storage.queues.analysis = :active_storage_analysis

    config.to_prepare do
      # Make main application helpers available in administrate
      Administrate::ApplicationController.helper(TPS::Application.helpers)
    end

    config.middleware.use Rack::Attack
    config.middleware.use Flipper::Middleware::Memoizer, preload_all: true

    config.ds_env = ENV.fetch('DS_ENV', Rails.env)

    config.ds_weekly_overview = Rails.env.production? && config.ds_env != 'staging'

    config.ds_autosave = {
      debounce_delay: 3000,
      status_visible_duration: 6000
    }

    config.skylight.probes += [:graphql]
  end
end
-												app: update code to Rails 6.1

											
										
										
											2021-02-16 16:14:43 +01:00
+								require_relative "boot"
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
-												app: update code to Rails 6.1

											
										
										
											2021-02-16 16:14:43 +01:00
+								require "rails/all"
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
 								# Require the gems listed in Gemfile, including any gems
 								# you've limited to :test, :development, or :production.
 								Bundler.require(*Rails.groups)
-												Dotenv-rails should be defined a the very top of the gemfile

											
										
										
											2018-03-09 10:00:11 +01:00
+								Dotenv::Railtie.load
-												Changement nom admi_facile => TPS dans les sources.

											
										
										
											2015-09-01 14:17:12 +02:00
+								module TPS
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
+								  class Application < Rails::Application
-												app: update code to Rails 6.1

											
										
										
											2021-02-16 16:14:43 +01:00
+								    # Initialize configuration defaults for originally generated Rails version.
-												config: use Rails 6.0 config defaults

We already flipped the new defaults, so this is a no-op.

											
										
										
											2020-08-05 17:00:06 +02:00
+								    config.load_defaults 6.0
-												config: explicitely use the classic autoloader

I'm sure we can use zeitwerk in the future, but let's retain the classic
loader until the config issues are proved to be safe.

											
										
										
											2020-08-05 16:58:18 +02:00
-												app: update code to Rails 6.1

											
										
										
											2021-02-16 16:14:43 +01:00
+								    # Configuration for the application, engines, and railties goes here.
 								    #
 								    # These settings can be overridden in specific environments using the files
 								    # in config/environments, which are processed later.
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
-												config: enable zeitwerk

Check that everything works using
bin/rails zeitwerk:check

											
										
										
											2021-02-09 12:17:01 +01:00
+								    Rails.autoloaders.main.ignore(Rails.root.join('lib/cops'))
 								    Rails.autoloaders.main.ignore(Rails.root.join('lib/linters'))
 								    Rails.autoloaders.main.ignore(Rails.root.join('lib/tasks/task_helper.rb'))
 								    config.paths.add Rails.root.join('spec/mailers/previews').to_s, eager_load: true
-												config: explicitely use the classic autoloader

I'm sure we can use zeitwerk in the future, but let's retain the classic
loader until the config issues are proved to be safe.

											
										
										
											2020-08-05 16:58:18 +02:00
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
+								    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
 								    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
-												Config: setup Paris time_zone

											
										
										
											2018-10-25 15:32:48 +02:00
+								    config.time_zone = 'Paris'
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
-												gem http_accept_language installed and (de)activable with feature flag

											
										
										
											2020-08-27 11:37:03 +02:00
+								    # The default locale is :fr and all translations from config/locales/*.rb,yml are auto loaded.
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
+								    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
-												move check email params in validator
											
										
										
											2015-08-21 11:37:13 +02:00
+								    config.i18n.default_locale = :fr
 								    config.i18n.load_path += Dir[Rails.root.join('config', 'locales', '**', '*.{rb,yml}')]
-												gem http_accept_language installed and (de)activable with feature flag

											
										
										
											2020-08-27 11:37:03 +02:00
+								    config.i18n.available_locales = [:fr, :en]
 								    config.i18n.fallbacks = [:fr]
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
 								    config.assets.paths << Rails.root.join('app', 'assets', 'javascript')
-												Add the Muli Regular and Bold fonts

											
										
										
											2017-04-04 14:37:50 +02:00
+								    config.assets.paths << Rails.root.join('app', 'assets', 'fonts')
-												Enable Style/WordArray

											
										
										
											2018-10-01 13:55:12 +02:00
+								    config.assets.precompile += ['.woff']
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
-												config: fix missing default list of allowed HTML tags

See https://github.com/rails/rails/issues/39586

											
										
										
											2020-06-30 17:22:26 +02:00
+								    # The default list used to be accessible through `ActionView::Base.sanitized_allowed_tags`,
 								    # but a regression in Rails 6.0 makes it unavailable.
 								    # It should be fixed in Rails 6.1.
 								    # See https://github.com/rails/rails/issues/39586
 								    # default_allowed_tags = ActionView::Base.sanitized_allowed_tags
 								    default_allowed_tags = ['strong', 'em', 'b', 'i', 'p', 'code', 'pre', 'tt', 'samp', 'kbd', 'var', 'sub', 'sup', 'dfn', 'cite', 'big', 'small', 'address', 'hr', 'br', 'div', 'span', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'ul', 'ol', 'li', 'dl', 'dt', 'dd', 'abbr', 'acronym', 'a', 'img', 'blockquote', 'del', 'ins']
 								    config.action_view.sanitized_allowed_tags = default_allowed_tags + ['u']
-												Rails app:update

											
										
										
											2020-01-28 12:02:06 +01:00
-												config: never cache rails-generated pages

This instruct browsers to never cache content directly generated by the
controllers. This includes HTML pages, JSON responses, PDF files, etc.

This is because Some mobile browsers have a behaviour where, although
they will delete the session cookie when the browser shutdowns, they
will still serve a cached version of the page on relaunch.

The CSRF token in the HTML is then mismatched with the CSRF token in the
session cookie (because the session cookie has been cleared). This
causes form submissions to fail with an
"ActionController::InvalidAuthenticityToken" exception.

To prevent this, tell browsers to never cache the HTML of a page.
(This doesn’t affect assets files, which are still sent with the proper
cache headers).

See https://github.com/rails/rails/issues/21948

											
										
										
											2020-04-14 18:28:15 +02:00
+								    # Some mobile browsers have a behaviour where, although they will delete the session
 								    # cookie when the browser shutdowns, they will still serve a cached version
 								    # of the page on relaunch.
 								    # The CSRF token in the HTML is then mismatched with the CSRF token in the session cookie
 								    # (because the session cookie has been cleared). This causes form submissions to fail with
 								    # a "ActionController::InvalidAuthenticityToken" exception.
 								    # To prevent this, tell browsers to never cache the HTML of a page.
 								    # (This doesn’t affect assets files, which are still sent with the proper cache headers).
 								    #
 								    # See https://github.com/rails/rails/issues/21948
 								    config.action_dispatch.default_headers['Cache-Control'] = 'no-store, no-cache'
-												config: avoid blocking legitimate requests from mobile ISPs
											
										
										
											2021-03-11 18:28:10 +01:00
+								    # ActionDispatch's IP spoofing detection is quite limited, and often rejects
 								    # legitimate requests from misconfigured proxies (such as mobile telcos).
 								    #
 								    # As we have our own proxy stack before reaching the Rails app, we can
 								    # disable the check performed by Rails.
 								    config.action_dispatch.ip_spoofing_check = false
-												config: make the queue names explicit

With Rails 6.1, the default queue is now the global application queue.

We want to retain our custom queues in some cases, so configure them
epxlicitely.
											
										
										
											2021-03-30 12:26:44 +02:00
+								    # Set the queue name for the mail delivery jobs to 'mailers'
 								    config.action_mailer.deliver_later_queue_name = :mailers
 								    # Set the queue name for the analysis jobs to 'active_storage_analysis'
 								    config.active_storage.queues.analysis = :active_storage_analysis
-												Fix link to procedure brouillon in manager

											
										
										
											2019-03-01 17:54:17 +01:00
+								    config.to_prepare do
 								      # Make main application helpers available in administrate
 								      Administrate::ApplicationController.helper(TPS::Application.helpers)
 								    end
-												Stop using Flipflop as switch for weekly_overview

											
										
										
											2019-07-31 12:26:07 +02:00
-												add Gem rack_attack for prevent attack brute-force

											
										
										
											2019-07-03 15:22:31 +02:00
+								    config.middleware.use Rack::Attack
-												Migrate to flipper

											
										
										
											2019-07-04 12:36:17 +02:00
+								    config.middleware.use Flipper::Middleware::Memoizer, preload_all: true
-												autosave: add feature test

											
										
										
											2019-11-19 14:40:28 +01:00
-												detect staging env

											
										
										
											2021-03-24 15:05:24 +01:00
+								    config.ds_env = ENV.fetch('DS_ENV', Rails.env)
 								    config.ds_weekly_overview = Rails.env.production? && config.ds_env != 'staging'
-												autosave: add feature test

											
										
										
											2019-11-19 14:40:28 +01:00
 								    config.ds_autosave = {
 								      debounce_delay: 3000,
 								      status_visible_duration: 6000
 								    }
-												[GraphQL] use official skylight support

											
										
										
											2019-12-05 08:48:51 +01:00
 								    config.skylight.probes += [:graphql]
-												First Commit

											
										
										
											2015-08-10 11:05:06 +02:00
+								  end
 								end