demarches-normaliennes/app/models/administrateur.rb

class Administrateur < ApplicationRecord
  self.ignored_columns = ['features', 'encrypted_password', 'reset_password_token', 'reset_password_sent_at', 'remember_created_at', 'sign_in_count', 'current_sign_in_at', 'last_sign_in_at', 'current_sign_in_ip', 'last_sign_in_ip', 'failed_attempts', 'unlock_token', 'locked_at']
  include EmailSanitizableConcern
  include ActiveRecord::SecureToken

  has_and_belongs_to_many :instructeurs
  has_many :administrateurs_procedures
  has_many :procedures, through: :administrateurs_procedures
  has_many :services
  has_many :dossiers, -> { state_not_brouillon }, through: :procedures

  has_one :user, dependent: :nullify

  before_validation -> { sanitize_email(:email) }

  scope :inactive, -> { joins(:user).where(users: { last_sign_in_at: nil }) }
  scope :with_publiees_ou_archivees, -> { joins(:procedures).where(procedures: { aasm_state: [:publiee, :archivee] }) }

  # validate :password_complexity, if: Proc.new { |a| Devise.password_length.include?(a.password.try(:size)) }

  def password_complexity
    if password.present? && ZxcvbnService.new(password).score < PASSWORD_COMPLEXITY_FOR_ADMIN
      errors.add(:password, :not_strong)
    end
  end

  def self.find_inactive_by_token(reset_password_token)
    self.inactive.with_reset_password_token(reset_password_token)
  end

  def self.find_inactive_by_id(id)
    self.inactive.find(id)
  end

  def renew_api_token
    api_token = Administrateur.generate_unique_secure_token
    encrypted_token = BCrypt::Password.create(api_token)
    update(encrypted_token: encrypted_token)
    api_token
  end

  def valid_api_token?(api_token)
    BCrypt::Password.new(encrypted_token) == api_token
  rescue BCrypt::Errors::InvalidHash
    false
  end

  def registration_state
    if active?
      'Actif'
    elsif user.reset_password_period_valid?
      'En attente'
    else
      'Expiré'
    end
  end

  def invitation_expired?
    !active? && !user.reset_password_period_valid?
  end

  def self.reset_password(reset_password_token, password)
    administrateur = self.reset_password_by_token({
      password: password,
      password_confirmation: password,
      reset_password_token: reset_password_token
    })

    administrateur
  end

  def owns?(procedure)
    procedure.administrateurs.include?(self)
  end

  def instructeur
    user.instructeur
  end

  def can_be_deleted?
    dossiers.state_instruction_commencee.none? && procedures.none?
  end

  def active?
    user.last_sign_in_at.present?
  end
end
Enable some Rails cops 2018-03-06 13:44:29 +01:00			`class Administrateur < ApplicationRecord`
Prepare to drop columns 2019-09-17 10:16:52 +02:00			`self.ignored_columns = ['features', 'encrypted_password', 'reset_password_token', 'reset_password_sent_at', 'remember_created_at', 'sign_in_count', 'current_sign_in_at', 'last_sign_in_at', 'current_sign_in_ip', 'last_sign_in_ip', 'failed_attempts', 'unlock_token', 'locked_at']`
[Fix #1479] Sanitize Administrateur email before validation 2018-02-28 14:30:59 +01:00			`include EmailSanitizableConcern`
Api Token: store token in an encrypted form 2018-08-24 16:45:43 +02:00			`include ActiveRecord::SecureToken`
[Fix #1479] Sanitize Administrateur email before validation 2018-02-28 14:30:59 +01:00
Rename gestionnaire in code to instructeur 2019-08-06 11:02:54 +02:00			`has_and_belongs_to_many :instructeurs`
[Ref #1626] Add the administrateurs_procedures table and associations 2018-03-23 11:39:36 +01:00			`has_many :administrateurs_procedures`
Check demarche ownership on multiple administrateurs 2019-02-26 16:18:04 +01:00			`has_many :procedures, through: :administrateurs_procedures`
Service: create model 2018-04-17 16:11:49 +02:00			`has_many :services`
Allow administrateur to try dossier info on aperçu page 2018-09-07 18:17:51 +02:00			`has_many :dossiers, -> { state_not_brouillon }, through: :procedures`
add api_token for admin 2015-12-14 17:28:36 +01:00
Fix admin deletion by an administration 2019-08-19 10:47:37 +02:00			`has_one :user, dependent: :nullify`
Link user and administrateur 2019-08-09 09:45:11 +02:00
[Fix #1479] Sanitize Administrateur email before validation 2018-02-28 14:30:59 +01:00			`before_validation -> { sanitize_email(:email) }`
Sync password after login 2017-02-07 16:56:21 +01:00
User: inactive user have never signed_in 2019-10-07 15:39:35 +02:00			`scope :inactive, -> { joins(:user).where(users: { last_sign_in_at: nil }) }`
Fix administration page 2019-03-12 15:34:30 +01:00			`scope :with_publiees_ou_archivees, -> { joins(:procedures).where(procedures: { aasm_state: [:publiee, :archivee] }) }`
Add invitation related methods to administrateur model 2018-01-11 14:17:50 +01:00
temporary remove password complexity check 2019-08-09 10:41:10 +02:00			`# validate :password_complexity, if: Proc.new { \|a\| Devise.password_length.include?(a.password.try(:size)) }`
[Fix #1285] Password strength is ensured when saving an administrateur 2018-01-25 10:50:06 +01:00
			`def password_complexity`
#3928 Zxcvbn service to compute password complexity 2019-06-20 00:30:49 +02:00			`if password.present? && ZxcvbnService.new(password).score < PASSWORD_COMPLEXITY_FOR_ADMIN`
			`errors.add(:password, :not_strong)`
[Fix #1285] Password strength is ensured when saving an administrateur 2018-01-25 10:50:06 +01:00			`end`
			`end`

Add invitation related methods to administrateur model 2018-01-11 14:17:50 +01:00			`def self.find_inactive_by_token(reset_password_token)`
			`self.inactive.with_reset_password_token(reset_password_token)`
			`end`

			`def self.find_inactive_by_id(id)`
			`self.inactive.find(id)`
			`end`

add api_token for admin 2015-12-14 17:28:36 +01:00			`def renew_api_token`
Api Token: store token in an encrypted form 2018-08-24 16:45:43 +02:00			`api_token = Administrateur.generate_unique_secure_token`
			`encrypted_token = BCrypt::Password.create(api_token)`
Administrateur: do not save api_token in clear text anymore 2018-09-26 17:22:36 +02:00			`update(encrypted_token: encrypted_token)`
Api Token: store token in an encrypted form 2018-08-24 16:45:43 +02:00			`api_token`
add api_token for admin 2015-12-14 17:28:36 +01:00			`end`

ApiController: check token validity for a given admin 2018-09-26 15:39:45 +02:00			`def valid_api_token?(api_token)`
			`BCrypt::Password.new(encrypted_token) == api_token`
			`rescue BCrypt::Errors::InvalidHash`
			`false`
			`end`

Add invitation related methods to administrateur model 2018-01-11 14:17:50 +01:00			`def registration_state`
			`if active?`
			`'Actif'`
fix_manager_reset_password 2019-08-19 09:48:55 +02:00			`elsif user.reset_password_period_valid?`
Add invitation related methods to administrateur model 2018-01-11 14:17:50 +01:00			`'En attente'`
			`else`
			`'Expiré'`
			`end`
			`end`

			`def invitation_expired?`
[fix #4361] administrateur active 2019-10-24 11:21:12 +02:00			`!active? && !user.reset_password_period_valid?`
Add invitation related methods to administrateur model 2018-01-11 14:17:50 +01:00			`end`

			`def self.reset_password(reset_password_token, password)`
			`administrateur = self.reset_password_by_token({`
			`password: password,`
			`password_confirmation: password,`
			`reset_password_token: reset_password_token`
			`})`

			`administrateur`
			`end`

procedure AASM callbacks 2018-05-17 15:39:37 +02:00			`def owns?(procedure)`
Check demarche ownership on multiple administrateurs 2019-02-26 16:18:04 +01:00			`procedure.administrateurs.include?(self)`
procedure AASM callbacks 2018-05-17 15:39:37 +02:00			`end`
Spec Factory: an administrateur always has a gestionnaire 2019-01-07 15:11:55 +01:00
Rename gestionnaire in code to instructeur 2019-08-06 11:02:54 +02:00			`def instructeur`
instructeurs: replace calls to `Instructeur.find_by(email: …)` 2019-10-15 17:44:59 +02:00			`user.instructeur`
Spec Factory: an administrateur always has a gestionnaire 2019-01-07 15:11:55 +01:00			`end`
ajout d'un bouton de suppression des admin dans le manager 2019-07-22 15:33:58 +02:00
			`def can_be_deleted?`
			`dossiers.state_instruction_commencee.none? && procedures.none?`
			`end`
[fix #4361] administrateur active 2019-10-24 11:21:12 +02:00
			`def active?`
			`user.last_sign_in_at.present?`
			`end`
Add Administrateurs role and his connexion is ok. 2015-10-23 16:19:55 +02:00			`end`