')
+ .addClass('correspondence_delivery')
+ .addClass('correspondence_delivery--' + $toggle.attr('data-delivery-status'))
+ .hide()
+ .insertBefore( $correspondence.find('.correspondence_text') );
+
+ $toggle.addClass('toggle-delivery-log--loading');
+
+ $.ajax({
+ url: url,
+ dataType: "html"
+ }).done(function(html){
+ var $deliveryDiv = $(html).find('.controller_delivery_statuses');
+ $correspondence_delivery.html( $deliveryDiv.html() );
+ $correspondence_delivery.slideDown(200);
+ }).fail(function(){
+ var msgHtml = $('.js-delivery-log-ajax-error').html();
+ $correspondence_delivery.html( msgHtml );
+ $correspondence_delivery.slideDown(200);
+
+ }).always(function(){
+ $toggle.removeClass('toggle-delivery-log--loading');
+ });
+ }
+
+ var removeCorrespondenceDeliveryBox = function removeCorrespondenceDeliveryBox($correspondence_delivery){
+ $correspondence_delivery.slideUp(200, function(){
+ $correspondence_delivery.remove();
+ });
+ }
})
diff --git a/app/assets/stylesheets/application.css b/app/assets/stylesheets/application.css
index 097221b2f5..78b85d17c2 100644
--- a/app/assets/stylesheets/application.css
+++ b/app/assets/stylesheets/application.css
@@ -2,6 +2,6 @@
*= require_self
*= require main
*= require custom
-*= require jquery.ui.datepicker
-*= require jquery.ui.tabs
+*= require jquery-ui/datepicker
+*= require jquery-ui/tabs
*/
diff --git a/app/assets/stylesheets/main.scss b/app/assets/stylesheets/main.scss
index a465f2e2c9..bbbb5c6c0e 100644
--- a/app/assets/stylesheets/main.scss
+++ b/app/assets/stylesheets/main.scss
@@ -287,7 +287,7 @@ span.bottomline {
padding:10px 0 0 42px;
}
-/* full page request list only */
+/* full page request list only */
.request_listing span.bottomline {
width:35em;
background-repeat:no-repeat;
@@ -357,7 +357,7 @@ span.desc {
overflow:hidden;
}
-/* full page request list only */
+/* full page request list only */
.request_listing span.desc {
width:25em;
background-image:image-url('navimg/quote-open.png');
@@ -1913,3 +1913,11 @@ div.controller_help dt:hover > a:hover,div.controller_help h1:hover > a:hover,di
#notice.request-sent-message {
font-size: 1em;
}
+
+.show-with-keyboard-focus-only {
+ position: absolute;
+ left: -9999999px;
+ &:focus {
+ left: 0;
+ }
+}
diff --git a/app/assets/stylesheets/responsive/_frontpage_style.scss b/app/assets/stylesheets/responsive/_frontpage_style.scss
index b1f01c3018..a25c6d86d2 100644
--- a/app/assets/stylesheets/responsive/_frontpage_style.scss
+++ b/app/assets/stylesheets/responsive/_frontpage_style.scss
@@ -57,6 +57,16 @@
}
}
+.bodies-list {
+ li {
+ margin-bottom: 0.35em;
+ a {
+ font-weight: bold;
+ }
+ }
+
+}
+
.request-listing {
a {
font-weight: 600;
@@ -65,7 +75,11 @@
.request-listing__request-body {
p {
- line-height: 1.35em;
+ line-height: 1.55em;
+ @include respond-min($main_menu-mobile_menu_cutoff) {
+ line-height: 1.35em;
+ }
+
}
a {
&:hover,
diff --git a/app/assets/stylesheets/responsive/_global_style.scss b/app/assets/stylesheets/responsive/_global_style.scss
index 0a48e61336..855e3f53e0 100644
--- a/app/assets/stylesheets/responsive/_global_style.scss
+++ b/app/assets/stylesheets/responsive/_global_style.scss
@@ -78,9 +78,9 @@ dt {
margin-top: 1em;
font-weight: bold;
line-height: 1.5em;
- @include respond-min( $main_menu-mobile_menu_cutoff ){
+ @include respond-min( $main_menu-mobile_menu_cutoff ){
font-size: 1.3125em;
- }
+ }
}
dd {
@@ -228,3 +228,12 @@ div.pagination {
.highlight {
background:#FF0;
}
+
+/* Skip to links for keyboard users */
+.skip-to-link {
+ &:focus {
+ padding: 0.5em 0.8em;
+ background-color: #333;
+ color: #fff;
+ }
+}
diff --git a/app/assets/stylesheets/responsive/_new_request_layout.scss b/app/assets/stylesheets/responsive/_new_request_layout.scss
index 8195938beb..3492958b38 100644
--- a/app/assets/stylesheets/responsive/_new_request_layout.scss
+++ b/app/assets/stylesheets/responsive/_new_request_layout.scss
@@ -81,7 +81,7 @@
#request_header_body, #request_header_subject, #typeahead_response {
@include grid-column(12);
@include respond-min( $main_menu-mobile_menu_cutoff ){
- @include grid-column($columns:8, $last-column:true);
+ @include grid-column($columns:8);
@include ie8{
padding-right: 0.9375em;
}
@@ -113,7 +113,7 @@
#request_advice, .preview-advice {
@include grid-column(12);
@include respond-min( $main_menu-mobile_menu_cutoff ){
- @include grid-column($columns:4, $push:8, $last-column:true);
+ @include grid-column($columns:4, $push:8);
@include ie8{
padding-left: 0.9375em;
}
diff --git a/app/assets/stylesheets/responsive/_print_layout.scss b/app/assets/stylesheets/responsive/_print_layout.scss
index c8229ed832..345ad2b0c5 100644
--- a/app/assets/stylesheets/responsive/_print_layout.scss
+++ b/app/assets/stylesheets/responsive/_print_layout.scss
@@ -31,7 +31,8 @@ div#after_actions,
p#request_status {
page-break-after: avoid;
}
-div.correspondence {
+
+.correspondence {
page-break-before: avoid;
}
diff --git a/app/assets/stylesheets/responsive/_request_layout.scss b/app/assets/stylesheets/responsive/_request_layout.scss
index 5573d55ea4..e558b2679e 100644
--- a/app/assets/stylesheets/responsive/_request_layout.scss
+++ b/app/assets/stylesheets/responsive/_request_layout.scss
@@ -1,5 +1,5 @@
/* Layout for request page */
-div.correspondence {
+.correspondence {
word-wrap: break-word;
}
@@ -43,6 +43,20 @@ div.correspondence {
}
}
+.correspondence_delivery {
+ padding: 1em;
+ margin: 0 -1em;
+
+ @include respond-min( $main_menu-mobile_menu_cutoff ){
+ padding: 1.2em;
+ margin: 0 -1.2em;
+ }
+
+ & > :last-child {
+ margin-bottom: 0;
+ }
+}
+
/* Event history details */
#request_details {
diff --git a/app/assets/stylesheets/responsive/_request_style.scss b/app/assets/stylesheets/responsive/_request_style.scss
index 8d456db4b7..d30250052d 100644
--- a/app/assets/stylesheets/responsive/_request_style.scss
+++ b/app/assets/stylesheets/responsive/_request_style.scss
@@ -1,6 +1,10 @@
/* Style for request page */
-div.correspondence {
+$color-delivery-sent: #2688dc !default; // blue
+$color-delivery-delivered: #69952F !default; // green
+$color-delivery-failed: #D83838 !default; // red
+
+.correspondence {
border: 1px solid #ccc;
margin: 0 0 1em;
@@ -95,6 +99,113 @@ a img.attachment_image {
text-align: center;
}
+.correspondence_delivery {
+ background-color: #eee;
+
+ // Cruft that comes from the page we ajax in
+ h1 {
+ display: none;
+ }
+
+ // "This message has been delivered" etc
+ h2 {
+ text-align: inherit;
+ font-size: 1.2em;
+ }
+
+ pre {
+ font-size: 0.8em;
+ padding: 0.5em 1em;
+ background-color: #fff;
+ border: 1px solid #ddd;
+ }
+}
+
+.correspondence_delivery--sent {
+ background-color: mix(#fff, $color-delivery-sent, 85%);
+}
+
+.correspondence_delivery--delivered {
+ background-color: mix(#fff, $color-delivery-delivered, 85%);
+}
+
+.correspondence_delivery--failed {
+ background-color: mix(#fff, $color-delivery-failed, 85%);
+}
+
+.toggle-delivery-log {
+ padding-right: 8px + 16px;
+ margin-right: 4px; // remember also ~4px from whitespace character after inline element
+ background: transparent none 100% 50% no-repeat;
+ background-size: 16px 16px;
+
+ // Preload the spinner image, because the ajax request
+ // will likely block it from loading when we actually need it.
+ &:after {
+ content: "";
+ display: block;
+ width: 0;
+ height: 0;
+ position: absolute;
+ top: 0;
+ left: 0;
+ background: transparent image-url('loader-000-on-fff-16px.gif') 0 0 no-repeat;
+ background-size: 16px 16px;
+ }
+}
+
+.toggle-delivery-log--sent {
+ background-image: image-url('delivery-status/sent.png');
+
+ @media (-webkit-min-device-pixel-ratio: 1.5), (min-resolution: 144dpi) {
+ background-image: image-url('delivery-status/sent@2x.png');
+ }
+
+ &, &:link, &:visited {
+ color: $color-delivery-sent;
+ }
+
+ &:hover, &:focus {
+ color: darken($color-delivery-sent, 10%);
+ }
+}
+
+.toggle-delivery-log--delivered {
+ background-image: image-url('delivery-status/delivered.png');
+
+ @media (-webkit-min-device-pixel-ratio: 1.5), (min-resolution: 144dpi) {
+ background-image: image-url('delivery-status/delivered@2x.png');
+ }
+
+ &, &:link, &:visited {
+ color: $color-delivery-delivered;
+ }
+
+ &:hover, &:focus {
+ color: darken($color-delivery-delivered, 10%);
+ }
+}
+
+.toggle-delivery-log--failed {
+ background-image: image-url('delivery-status/failed.png');
+
+ @media (-webkit-min-device-pixel-ratio: 1.5), (min-resolution: 144dpi) {
+ background-image: image-url('delivery-status/failed@2x.png');
+ }
+
+ &, &:link, &:visited {
+ color: $color-delivery-failed;
+ }
+
+ &:hover, &:focus {
+ color: darken($color-delivery-failed, 10%);
+ }
+}
+
+.toggle-delivery-log--loading {
+ background-image: image-url('loader-000-on-fff-16px.gif');
+}
+
/* Event history details */
diff --git a/app/assets/stylesheets/responsive/_sidebar_style.scss b/app/assets/stylesheets/responsive/_sidebar_style.scss
index dd5d9bdb61..5bb697a1d5 100644
--- a/app/assets/stylesheets/responsive/_sidebar_style.scss
+++ b/app/assets/stylesheets/responsive/_sidebar_style.scss
@@ -42,6 +42,20 @@
display: inline-block;
}
+.act_link--facebook a {
+ background-image: image-url('facebook-16.png');
+ @media (-webkit-min-device-pixel-ratio: 1.5), (min-resolution: 144dpi) {
+ background-image: image-url('facebook-32.png');
+ }
+}
+
+.act_link--medium a {
+ background-image: image-url('medium-16.png');
+ @media (-webkit-min-device-pixel-ratio: 1.5), (min-resolution: 144dpi) {
+ background-image: image-url('medium-32.png');
+ }
+}
+
.act_link--twitter a {
background-image: image-url('twitter-16.png');
}
diff --git a/app/assets/stylesheets/responsive/_utils.scss b/app/assets/stylesheets/responsive/_utils.scss
index cdef6c37dd..af321565c4 100644
--- a/app/assets/stylesheets/responsive/_utils.scss
+++ b/app/assets/stylesheets/responsive/_utils.scss
@@ -60,3 +60,12 @@ body:hover .visually-hidden a, body:hover .visually-hidden input, body:hover .vi
display: none;
visibility: hidden;
}
+
+.show-with-keyboard-focus-only {
+ position: absolute;
+ left: -9999999px;
+ &:focus {
+ left: 0;
+ z-index: 100;
+ }
+}
diff --git a/app/assets/stylesheets/responsive/all.scss b/app/assets/stylesheets/responsive/all.scss
index ff34e4e1ce..9edcfb6475 100644
--- a/app/assets/stylesheets/responsive/all.scss
+++ b/app/assets/stylesheets/responsive/all.scss
@@ -2,7 +2,6 @@
@import "_settings";
@import "foundation/components/grid";
-@import "foundation/components/block-grid";
@import "foundation/components/forms";
@import "foundation/components/inline-lists";
diff --git a/app/assets/stylesheets/responsive/application-ie8.css b/app/assets/stylesheets/responsive/application-ie8.css
index 38cdf3b476..8cf8ef2178 100644
--- a/app/assets/stylesheets/responsive/application-ie8.css
+++ b/app/assets/stylesheets/responsive/application-ie8.css
@@ -2,6 +2,6 @@
*= require_self
*= require normalize
*= require responsive/ie8
-*= require jquery.ui.datepicker
-*= require jquery.ui.tabs
+*= require jquery-ui/datepicker
+*= require jquery-ui/tabs
*/
diff --git a/app/assets/stylesheets/responsive/application-lte-ie7.css b/app/assets/stylesheets/responsive/application-lte-ie7.css
index 5b8802cd5d..c2cd1eecbf 100644
--- a/app/assets/stylesheets/responsive/application-lte-ie7.css
+++ b/app/assets/stylesheets/responsive/application-lte-ie7.css
@@ -2,6 +2,6 @@
*= require_self
*= require normalize
*= require responsive/lte-ie7
-*= require jquery.ui.datepicker
-*= require jquery.ui.tabs
+*= require jquery-ui/datepicker
+*= require jquery-ui/tabs
*/
diff --git a/app/assets/stylesheets/responsive/application.css b/app/assets/stylesheets/responsive/application.css
index 0b5aa8d662..04fa50c3f0 100644
--- a/app/assets/stylesheets/responsive/application.css
+++ b/app/assets/stylesheets/responsive/application.css
@@ -2,6 +2,6 @@
*= require_self
*= require normalize
*= require responsive/main
-*= require jquery.ui.datepicker
-*= require jquery.ui.tabs
+*= require jquery-ui/datepicker
+*= require jquery-ui/tabs
*/
diff --git a/app/controllers/admin_general_controller.rb b/app/controllers/admin_general_controller.rb
index 2bd9586311..1c2c17bb6a 100644
--- a/app/controllers/admin_general_controller.rb
+++ b/app/controllers/admin_general_controller.rb
@@ -17,8 +17,9 @@ def index
where(:request_email => "").
order(:updated_at).
select { |pb| !pb.defunct? }
- @old_unclassified = InfoRequest.find_old_unclassified(:limit => 20,
- :conditions => ["prominence = 'normal'"])
+ @old_unclassified = InfoRequest.where_old_unclassified.
+ limit(20).
+ where(:prominence => 'normal')
@holding_pen_messages = InfoRequest.
includes(:incoming_messages => :raw_email).
holding_pen_request.
@@ -88,12 +89,12 @@ def timeline
end
end
# get all the models in the slice, eagerly loading the associations we use in the view
- public_body_versions = PublicBody.versioned_class.find(:all,
- :conditions => ['id in (?)', public_body_version_ids.keys],
- :include => [ { :public_body => :translations }])
- info_request_events = InfoRequestEvent.find(:all,
- :conditions => ['id in (?)', info_request_event_ids.keys],
- :include => [:info_request])
+ public_body_versions = PublicBody.versioned_class.
+ includes(:public_body => :translations).
+ find(public_body_version_ids.keys)
+ info_request_events = InfoRequestEvent.
+ includes(:info_request).
+ find(info_request_event_ids.keys)
@events = []
# drop the models into a combined array, ordered by their position in the timestamp slice
public_body_versions.each do |version|
diff --git a/app/controllers/admin_raw_email_controller.rb b/app/controllers/admin_raw_email_controller.rb
index 493857ef53..dac9526128 100644
--- a/app/controllers/admin_raw_email_controller.rb
+++ b/app/controllers/admin_raw_email_controller.rb
@@ -21,12 +21,12 @@ def show
# is associated with, so we can display that.
email = @raw_email.incoming_message.from_email
domain = PublicBody.extract_domain_from_email(email)
-
- if domain.nil?
- @public_bodies = []
+ @public_bodies = if domain.nil?
+ []
else
- @public_bodies = PublicBody.find(:all, :order => "name",
- :conditions => [ "lower(request_email) like lower('%'||?||'%')", domain ])
+ PublicBody.
+ where("lower(request_email) like lower('%'||?||'%')", domain).
+ order('name')
end
# 2. Match the email address in the message without matching the hash
diff --git a/app/controllers/admin_user_controller.rb b/app/controllers/admin_user_controller.rb
index bb83381dea..81cfde0a57 100644
--- a/app/controllers/admin_user_controller.rb
+++ b/app/controllers/admin_user_controller.rb
@@ -88,7 +88,8 @@ def user_params
:ban_text,
:about_me,
:no_limit,
- :can_make_batch_requests)
+ :can_make_batch_requests,
+ :confirmed_not_spam)
else
{}
end
diff --git a/app/controllers/api_controller.rb b/app/controllers/api_controller.rb
index ceabe2fffe..e4b9ae223b 100644
--- a/app/controllers/api_controller.rb
+++ b/app/controllers/api_controller.rb
@@ -196,11 +196,11 @@ def body_request_events
event_type_clause = "event_type in ('sent', 'followup_sent', 'resent', 'followup_resent')"
- @events = InfoRequestEvent.where(event_type_clause) \
- .joins(:info_request) \
- .where("public_body_id = ?", @public_body.id) \
- .includes([{:info_request => :user}, :outgoing_message]) \
- .order('info_request_events.created_at DESC')
+ @events = InfoRequestEvent.where(event_type_clause).
+ joins(:info_request).
+ where("public_body_id = ?", @public_body.id).
+ includes([{:info_request => :user}, :outgoing_message]).
+ order('info_request_events.created_at DESC')
if since_date_str
begin
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index f6ae361e5e..df612ccc99 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -20,9 +20,6 @@ class RouteNotFound < StandardError
# assign our own handler method for non-local exceptions
rescue_from Exception, :with => :render_exception
- # Add some security-related headers (see config/initializers/secure_headers.rb)
- ensure_security_headers
-
# Standard headers, footers and navigation for whole site
layout "default"
include FastGettext::Translation # make functions like _, n_, N_ etc available)
@@ -172,7 +169,7 @@ def render_exception(exception)
message << " " << backtrace.join("\n ")
Rails.logger.fatal("#{message}\n\n")
if !AlaveteliConfiguration.exception_notifications_from.blank? && !AlaveteliConfiguration.exception_notifications_to.blank?
- ExceptionNotifier::Notifier.exception_notification(request.env, exception).deliver
+ ExceptionNotifier.notify_exception(exception, :env => request.env)
end
@status = 500
end
@@ -182,11 +179,13 @@ def render_exception(exception)
end
end
- def render_hidden(template='request/hidden')
+ def render_hidden(template='request/hidden', opts = {})
+ response_code = opts.delete(:response_code) { 403 } # forbidden
+ options = { :template => template, :status => response_code }.merge(opts)
+
respond_to do |format|
- response_code = 403 # forbidden
- format.html{ render :template => template, :status => response_code }
- format.any{ render :nothing => true, :status => response_code }
+ format.html { render(options) }
+ format.any { render :nothing => true, :status => response_code }
end
false
end
@@ -344,9 +343,15 @@ def authentication_check
#
def check_read_only
if !AlaveteliConfiguration::read_only.empty?
- flash[:notice] = _("
{{site_name}} is currently in maintenance. You can only view existing requests. You cannot make new ones, add followups or annotations, or otherwise change the database.
{{read_only}}
",
- :site_name => site_name,
- :read_only => AlaveteliConfiguration::read_only)
+ if AlaveteliConfiguration::enable_annotations
+ flash[:notice] = _("
{{site_name}} is currently in maintenance. You can only view existing requests. You cannot make new ones, add followups or annotations, or otherwise change the database.
{{read_only}}
",
+ :site_name => site_name,
+ :read_only => AlaveteliConfiguration::read_only)
+ else
+ flash[:notice] = _("
{{site_name}} is currently in maintenance. You can only view existing requests. You cannot make new ones, add followups or otherwise change the database.
{{read_only}}
",
+ :site_name => site_name,
+ :read_only => AlaveteliConfiguration::read_only)
+ end
redirect_to frontpage_url
end
diff --git a/app/controllers/comment_controller.rb b/app/controllers/comment_controller.rb
index 93eacd8242..118bf8030f 100644
--- a/app/controllers/comment_controller.rb
+++ b/app/controllers/comment_controller.rb
@@ -90,12 +90,13 @@ def create_track_thing
@track_thing = TrackThing.create_track_for_request(@info_request)
end
- # Are comments disabled on this request?
+ # Are comments disabled on this request, or globally?
#
# There is no “add comment” link when comments are disabled, so users should
- # not usually hit this unless they are explicitly attempting to avoid the comment block
+ # not usually hit this unless they are explicitly attempting to avoid the
+ # comment block.
def reject_unless_comments_allowed
- unless @info_request.comments_allowed?
+ unless AlaveteliConfiguration.enable_annotations && @info_request.comments_allowed?
redirect_to request_url(@info_request), :notice => "Comments are not allowed on this request"
end
end
diff --git a/app/controllers/general_controller.rb b/app/controllers/general_controller.rb
index 518f88fcbe..3365a5442a 100644
--- a/app/controllers/general_controller.rb
+++ b/app/controllers/general_controller.rb
@@ -24,6 +24,8 @@ def frontpage
@feed_autodetect = [ { :url => do_track_url(@track_thing, 'feed'),
:title => _('Successful requests'),
:has_json => true } ]
+
+ respond_to :html
end
# Display blog entries
@@ -53,6 +55,8 @@ def blog
end
end
@twitter_user = AlaveteliConfiguration::twitter_username
+
+ respond_to :html
end
# Just does a redirect from ?query= search to /query
@@ -77,6 +81,13 @@ def search_redirect
def search
# TODO: Why is this so complicated with arrays and stuff? Look at the route
# in config/routes.rb for comments.
+
+ # respond with a 404 and do not execute the search if request was not for html
+ if request.format && !request.format.html?
+ respond_to { |format| format.any { head :not_found } }
+ return
+ end
+
combined = params[:combined].split("/")
@sortby = nil
@bodies = @requests = @users = true
diff --git a/app/controllers/help_controller.rb b/app/controllers/help_controller.rb
index a36db0f26b..b20714ae19 100644
--- a/app/controllers/help_controller.rb
+++ b/app/controllers/help_controller.rb
@@ -79,8 +79,10 @@ def contact
private
def catch_spam
- if request.post? && !params[:contact][:comment].empty?
- redirect_to frontpage_url
+ if request.post? && params[:contact]
+ if !params[:contact][:comment].blank? || !params[:contact].key?(:comment)
+ redirect_to frontpage_url
+ end
end
end
diff --git a/app/controllers/outgoing_messages/delivery_statuses_controller.rb b/app/controllers/outgoing_messages/delivery_statuses_controller.rb
new file mode 100644
index 0000000000..14c32f91be
--- /dev/null
+++ b/app/controllers/outgoing_messages/delivery_statuses_controller.rb
@@ -0,0 +1,35 @@
+# -*- encoding : utf-8 -*-
+class OutgoingMessages::DeliveryStatusesController < ApplicationController
+ before_filter :set_outgoing_message, :check_prominence
+
+ def show
+ @title = _('Delivery Status for Outgoing Message #{{id}}',
+ :id => @outgoing_message.id)
+
+ @delivery_status = @outgoing_message.delivery_status
+
+ @show_mail_server_logs = @outgoing_message.is_owning_user?(@user)
+
+ if @show_mail_server_logs
+ @mail_server_logs = @outgoing_message.mail_server_logs.map do |log|
+ log.line(:redact_idhash => !@user.super?)
+ end
+ end
+
+ respond_to :html
+ end
+
+ protected
+
+ def set_outgoing_message
+ @outgoing_message = OutgoingMessage.find(params[:outgoing_message_id])
+ end
+
+ def check_prominence
+ unless @outgoing_message.user_can_view?(@user) &&
+ @outgoing_message.info_request.user_can_view?(@user)
+ return render_hidden('request/_hidden_correspondence',
+ :locals => { :message => @outgoing_message })
+ end
+ end
+end
diff --git a/app/controllers/password_changes_controller.rb b/app/controllers/password_changes_controller.rb
index b5236a7168..5d93cb6ef5 100644
--- a/app/controllers/password_changes_controller.rb
+++ b/app/controllers/password_changes_controller.rb
@@ -16,6 +16,12 @@ def new
end
def create
+ unless @user || params[:password_change_user]
+ @email_field_options = {}
+ render :new
+ return
+ end
+
email = @user ? @user.email : params[:password_change_user][:email]
unless MySociety::Validate.is_valid_email(email)
diff --git a/app/controllers/public_body_controller.rb b/app/controllers/public_body_controller.rb
index a0b5535aa9..052862c6aa 100644
--- a/app/controllers/public_body_controller.rb
+++ b/app/controllers/public_body_controller.rb
@@ -158,19 +158,6 @@ def list
where_parameters.concat [@tag]
end
- if @tag == 'all'
- @description = ''
- elsif @tag.size == 1
- @description = _("beginning with ‘{{first_letter}}’", :first_letter => @tag)
- else
- category_name = PublicBodyCategory.get.by_tag[@tag]
- if category_name.nil?
- @description = _("matching the tag ‘{{tag_name}}’", :tag_name => @tag)
- else
- @description = _("in the category ‘{{category_name}}’", :category_name => category_name)
- end
- end
-
I18n.with_locale(@locale) do
if AlaveteliConfiguration::public_body_list_fallback_to_default_locale
@@ -224,6 +211,41 @@ def list
end
end
+ @description =
+ if @tag == 'all'
+ n_('Found {{count}} public authority',
+ 'Found {{count}} public authorities',
+ @public_bodies.total_entries,
+ :count => @public_bodies.total_entries)
+ elsif @tag.size == 1
+ n_('Found {{count}} public authority beginning with ' \
+ '‘{{first_letter}}’',
+ 'Found {{count}} public authorities beginning with ' \
+ '‘{{first_letter}}’',
+ @public_bodies.total_entries,
+ :count => @public_bodies.total_entries,
+ :first_letter => @tag)
+ else
+ category_name = PublicBodyCategory.get.by_tag[@tag]
+ if category_name.nil?
+ n_('Found {{count}} public authority matching the tag ' \
+ '‘{{tag_name}}’',
+ 'Found {{count}} public authorities matching the tag ' \
+ '‘{{tag_name}}’',
+ @public_bodies.total_entries,
+ :count => @public_bodies.total_entries,
+ :tag_name => @tag)
+ else
+ n_('Found {{count}} public authority in the category ' \
+ '‘{{category_name}}’',
+ 'Found {{count}} public authorities in the category ' \
+ '‘{{category_name}}’',
+ @public_bodies.total_entries,
+ :count => @public_bodies.total_entries,
+ :category_name => category_name)
+ end
+ end
+
respond_to do |format|
format.html { render :template => 'public_body/list' }
end
diff --git a/app/controllers/request_controller.rb b/app/controllers/request_controller.rb
index c47d70bba6..12133cb3c0 100644
--- a/app/controllers/request_controller.rb
+++ b/app/controllers/request_controller.rb
@@ -167,6 +167,12 @@ def similar
end
def list
+ # respond with a 404 without a database lookup if request was not for html
+ if request.format && !request.format.html?
+ respond_to { |format| format.any { head :not_found } }
+ return
+ end
+
medium_cache
@view = params[:view]
@locale = I18n.locale.to_s
@@ -782,6 +788,7 @@ def assign_variables_for_show_template(info_request)
@new_responses_count = info_request.events_needing_description.select {|i| i.event_type == 'response'}.size
# For send followup link at bottom
@last_response = info_request.get_last_public_response
+ @follower_count = @info_request.track_things.count + 1
end
def make_request_zip(info_request, file_path)
@@ -925,12 +932,12 @@ def render_new_preview
"request in order to get a reply, as we will ask " \
"for it on the next screen (
" \
"details).",
- :url => (help_privacy_path+"#email_address").html_safe)
+ :url => (help_privacy_path(:anchor => "email_address")).html_safe)
else
message += _("
You do not need to include your email in the " \
"request in order to get a reply (" \
"details).
",
- :url => (help_privacy_path+"#email_address").html_safe)
+ :url => (help_privacy_path(:anchor => "email_address")).html_safe)
end
message += _("
We recommend that you edit your request and remove " \
"the email address. If you leave it, the email address " \
diff --git a/app/controllers/request_game_controller.rb b/app/controllers/request_game_controller.rb
index 5b22561e0b..b48f99708f 100644
--- a/app/controllers/request_game_controller.rb
+++ b/app/controllers/request_game_controller.rb
@@ -10,16 +10,23 @@ class RequestGameController < ApplicationController
def play
session[:request_game] = Time.now
- @missing = InfoRequest.count_old_unclassified(:conditions => ["prominence = 'normal'"])
+ @missing = InfoRequest.
+ where_old_unclassified.
+ where(:prominence => 'normal').
+ count
@total = InfoRequest.count
@done = @total - @missing
@percentage = (@done.to_f / @total.to_f * 10000).round / 100.0
- @requests = InfoRequest.includes(:public_body, :user).get_random_old_unclassified(3, :conditions => ["prominence = 'normal'"])
-
+ @requests = InfoRequest.
+ includes(:public_body, :user).
+ where_old_unclassified.
+ limit(3).
+ where(:prominence => 'normal').
+ order('random()')
if @missing == 0
flash[:notice] = _('
All done! Thank you very much for your help.
There are more things you can do to help {{site_name}}.
',
- :helpus_url => help_credits_path+"#helpus",
+ :helpus_url => help_credits_path(:anchor => "helpus"),
:site_name => site_name)
end
diff --git a/app/controllers/track_controller.rb b/app/controllers/track_controller.rb
index 264f9f1f09..17aaf5cd09 100644
--- a/app/controllers/track_controller.rb
+++ b/app/controllers/track_controller.rb
@@ -220,10 +220,9 @@ def delete_all_type
track_type = params[:track_type]
flash[:notice] = _("You will no longer be emailed updates for those alerts")
- for track_thing in TrackThing.find(:all, :conditions => [ "track_type = ? and tracking_user_id = ?", track_type, user_id ])
- track_thing.destroy
- end
-
+ TrackThing.
+ where(:track_type => track_type, :tracking_user_id => user_id).
+ destroy_all
redirect_to URI.parse(params[:r]).path
end
diff --git a/app/controllers/user_controller.rb b/app/controllers/user_controller.rb
index 8a074faf50..80b0d1be31 100644
--- a/app/controllers/user_controller.rb
+++ b/app/controllers/user_controller.rb
@@ -62,7 +62,10 @@ def wall
# All tracks for the user
if @is_you
- @track_things = TrackThing.find(:all, :conditions => ["tracking_user_id = ? and track_medium = ?", @display_user.id, 'email_daily'], :order => 'created_at desc')
+ @track_things = TrackThing.
+ where(:tracking_user_id => @display_user.id,
+ :track_medium => 'email_daily').
+ order('created_at desc')
@track_things.each do |track_thing|
# TODO: factor out of track_mailer.rb
xapian_object = ActsAsXapian::Search.new([InfoRequestEvent], track_thing.track_query,
@@ -133,10 +136,10 @@ def signin
# Create new account form
def signup
work_out_post_redirect
- @request_from_foreign_country = country_from_ip != AlaveteliConfiguration::iso_country_code
# Make the user and try to save it
@user_signup = User.new(user_params(:user_signup))
error = false
+ @request_from_foreign_country = country_from_ip != AlaveteliConfiguration::iso_country_code
if @request_from_foreign_country && !verify_recaptcha
flash.now[:error] = _("There was an error with the words you entered, please try again.")
error = true
@@ -390,7 +393,7 @@ def set_profile_photo
flash[:notice] = _("
Thanks for updating your profile photo.
" \
"
Next... You can put some text about " \
"you and your research on your profile.
")
- redirect_to set_profile_about_me_url
+ redirect_to edit_profile_about_me_url
else
flash[:notice] = _("Thank you for updating your profile photo")
redirect_to user_url(@user)
@@ -401,9 +404,6 @@ def set_profile_photo
end
def clear_profile_photo
- unless request.post?
- raise "Can only clear profile photo from POST request"
- end
# check they are logged in (the upload photo option is anyway only available when logged in)
if authenticated_user.nil?
@@ -441,6 +441,10 @@ def get_profile_photo
# Change about me text on your profile page
def set_profile_about_me
+ warn %q([DEPRECATION] UserController#set_profile_about_me has been replaced
+ with UserProfile::AboutMeController and will be removed in Alaveteli
+ release 0.26).squish
+
if authenticated_user.nil?
flash[:error] = _("You need to be logged in to change the text about you on your profile.")
redirect_to frontpage_url
diff --git a/app/controllers/user_profile/about_me_controller.rb b/app/controllers/user_profile/about_me_controller.rb
new file mode 100644
index 0000000000..0c2da6be6b
--- /dev/null
+++ b/app/controllers/user_profile/about_me_controller.rb
@@ -0,0 +1,56 @@
+# -*- encoding : utf-8 -*-
+class UserProfile::AboutMeController < ApplicationController
+ before_filter :set_title
+ before_filter :check_user_logged_in
+
+ def edit ; end
+
+ def update
+ if @user.banned?
+ flash[:error] = _('Banned users cannot edit their profile')
+ redirect_to edit_profile_about_me_path
+ return
+ end
+
+ # TODO: Use strong params to require :user key
+ return redirect_to user_url(@user) unless params[:user]
+ @user.about_me = params[:user][:about_me]
+
+ unless @user.confirmed_not_spam?
+ if UserSpamScorer.new.spam?(@user)
+ flash[:error] = _("You can't update your profile text at this time.")
+ redirect_to user_url(@user)
+ return
+ end
+ end
+
+ if @user.save
+ if @user.profile_photo
+ flash[:notice] = _("You have now changed the text about you on your profile.")
+ redirect_to user_url(@user)
+ else
+ flash[:notice] = _("
Thanks for changing the text about you on your " \
+ "profile.
Next... You can " \
+ "upload a profile photograph too.
")
+ redirect_to set_profile_photo_url
+ end
+ else
+ render :edit
+ end
+ end
+
+ private
+
+ def check_user_logged_in
+ if authenticated_user.nil?
+ flash[:error] = _("You need to be logged in to change the text about you on your profile.")
+ redirect_to frontpage_url
+ return
+ end
+ end
+
+ def set_title
+ @title = _('Change the text about you on your profile at {{site_name}}',
+ :site_name => site_name)
+ end
+end
diff --git a/app/controllers/widgets_controller.rb b/app/controllers/widgets_controller.rb
index 1ff706ab3e..3ea14bd10a 100644
--- a/app/controllers/widgets_controller.rb
+++ b/app/controllers/widgets_controller.rb
@@ -8,9 +8,9 @@
class WidgetsController < ApplicationController
before_filter :check_widget_config, :find_info_request, :check_prominence
- skip_before_filter :set_x_frame_options_header, :only => [:show]
def show
+ use_secure_headers_override(:allow_frames)
medium_cache
@track_thing = TrackThing.create_track_for_request(@info_request)
@status = @info_request.calculate_status
diff --git a/app/helpers/analytics_helper.rb b/app/helpers/analytics_helper.rb
new file mode 100644
index 0000000000..40dc3bc971
--- /dev/null
+++ b/app/helpers/analytics_helper.rb
@@ -0,0 +1,101 @@
+# -*- encoding : utf-8 -*-
+module AnalyticsHelper
+
+ # helpers for embedding Google Analytics code
+ #
+ # Event categories and actions should be drawn from the list in the
+ # lib/analytics_events.rb file (add your own there when making new ones)
+
+
+ # Public: Constructs a String consisting of a Google Analytics (GA) tracking
+ # event function call with the (mandatory) event category and action params
+ # and optional label and value params.
+ #
+ # event_category - The String to be sent to GA as the tracking event category.
+ # Ideally this should be an AnalyticsEvent::Category::THING
+ # to avoid having magic strings everywhere
+ # event_action - The String to be sent to GA as the tracking event action.
+ # Ideally this should be an AnalyticsEvent::Action::THING
+ # to avoid having magic strings everywhere
+ # options - Hash of optional values, expects:
+ # label - String, an optional label for the event
+ # label_is_script - Boolean, whether to treat the label
+ # String as literal or browser-
+ # interpreted (Javascript)
+ # value - Integer, Google insists that a numerical
+ # value param is supplied if label is used;
+ # if you don't care about this value and
+ # don't want to set it, leave it blank
+ # and a default of 1 will be sent
+ # Any other supplied options will be ignored
+ #
+ # Examples
+ #
+ # track_analytics_event("test", "button clicked")
+ # # => "if (ga) { ga('send','event','test','button clicked') };"
+ #
+ # track_analytics_event("test", "vote button", :label => "sidebar")
+ # # => "if (ga) { ga('send','event','test','vote button','sidebar',1) };"
+ #
+ # track_analytics_event("test", "Points Scored", :label => "Bonus", :value => 100)
+ # # => "if (ga) { ga('send','event','test','Points Scored','Bonus',100) };"
+ #
+ # track_analytics_event("test",
+ # "Embedded",
+ # :label => "window.location.href",
+ # :label_is_script => true)
+ # # => "if (ga) { ga('send','event','test','Embedded',window.location.href,1) };"
+ #
+ # Returns a string of a GA JavaScript function to drop into an :onclick handler
+ def track_analytics_event(event_category, event_action, options={})
+ begin
+ value = if options[:value].nil?
+ 1
+ else
+ Integer(options[:value])
+ end
+ rescue ArgumentError
+ raise ArgumentError, %Q(:value option must be an Integer: "#{ options[:value] }")
+ end
+
+ label_is_script = options[:label_is_script] == true
+ label = options[:label]
+ if label
+ label_string = ",#{format_event_label(label, label_is_script)},#{value}"
+ end
+ event_args = "'#{event_category}','#{event_action}'#{label_string}"
+ "if (ga) { ga('send','event',#{event_args}) };"
+ end
+
+ private
+
+ # Private: Format the event label by wrapping in single quotes if it is
+ # going to be used as a String literal (e.g. "'Button clicked'") or without if
+ # it is a JavaScript string (e.g. "window.location.href") that needs to be run
+ # and interpreted by the browser.
+ #
+ # label - The label text (String) to by used
+ # is_script - Boolean indicating whether the supplied label text is intended
+ # to be interpreted as JavaScript by the browser (defaults
+ # to false)
+ #
+ # Examples
+ #
+ # format_event_label("Vote Button Clicked", false)
+ # # => "'Vote Button Clicked'"
+ #
+ # format_event_label("window.top.location.href", true)
+ # # => "window.top.location.href"
+ #
+ # Returns the label String with or without containing single quotes,
+ # depending on the value of the is_script param default behaviour:
+ # is_script is evaluated as false, string returned wrapped in single quotes)
+ def format_event_label(label, is_script=false)
+ if is_script
+ label
+ else
+ "'#{label}'"
+ end
+ end
+
+end
diff --git a/app/helpers/link_to_helper.rb b/app/helpers/link_to_helper.rb
index 79c8f8ab6b..07ea585bbc 100755
--- a/app/helpers/link_to_helper.rb
+++ b/app/helpers/link_to_helper.rb
@@ -16,7 +16,7 @@ def request_url(info_request, options = {})
end
def request_path(info_request, options = {})
- request_url(info_request, {:only_path => true}.merge(options))
+ request_url(info_request, options.merge(:only_path => true))
end
def request_link(info_request, cls=nil)
@@ -32,24 +32,24 @@ def incoming_message_url(incoming_message, options = {})
message_url(incoming_message, options)
end
- def incoming_message_path(incoming_message)
- message_path(incoming_message)
+ def incoming_message_path(incoming_message, options = {})
+ message_path(incoming_message, options)
end
def outgoing_message_url(outgoing_message, options = {})
message_url(outgoing_message, options)
end
- def outgoing_message_path(outgoing_message)
- message_path(outgoing_message)
+ def outgoing_message_path(outgoing_message, options = {})
+ message_path(outgoing_message, options)
end
def comment_url(comment, options = {})
request_url(comment.info_request, options.merge(:anchor => "comment-#{comment.id}"))
end
- def comment_path(comment)
- comment_url(comment, :only_path => true)
+ def comment_path(comment, options = {})
+ comment_url(comment, options.merge(:only_path => true))
end
# Respond to request
@@ -62,8 +62,8 @@ def respond_to_last_url(info_request, options = {})
end
end
- def respond_to_last_path(info_request)
- respond_to_last_url(info_request, :only_path => true)
+ def respond_to_last_path(info_request, options = {})
+ respond_to_last_url(info_request, options.merge(:only_path => true))
end
# Public bodies
@@ -71,8 +71,8 @@ def public_body_url(public_body, options = {})
public_body.url_name.nil? ? '' : show_public_body_url(options.merge(:url_name => public_body.url_name))
end
- def public_body_path(public_body)
- public_body_url(public_body, :only_path => true)
+ def public_body_path(public_body, options = {})
+ public_body_url(public_body, options.merge(:only_path => true))
end
def public_body_link_short(public_body)
@@ -92,8 +92,8 @@ def user_url(user, options = {})
show_user_url(options.merge(:url_name => user.url_name))
end
- def user_path(user)
- user_url(user, :only_path => true)
+ def user_path(user, options = {})
+ user_url(user, options.merge(:only_path => true))
end
def user_link(user, cls=nil)
@@ -201,12 +201,12 @@ def do_track_url(track_thing, feed = 'track', options = {})
end
end
- def do_track_path(track_thing, feed = 'track')
- do_track_url(track_thing, feed, :only_path => true)
+ def do_track_path(track_thing, feed = 'track', options = {})
+ do_track_url(track_thing, feed, options.merge(:only_path => true))
end
# General pages.
- def search_url(query, params = nil)
+ def search_url(query, options = nil)
if query.kind_of?(Array)
query = query - ["", nil]
query = query.join("/")
@@ -215,8 +215,8 @@ def search_url(query, params = nil)
:action => 'search',
:combined => query,
:view => nil}
- if !params.nil?
- routing_info = params.merge(routing_info)
+ if !options.nil?
+ routing_info = options.merge(routing_info)
end
url = url_for(routing_info)
# Here we can't escape the slashes, as RFC 2396 doesn't allow slashes
@@ -242,15 +242,15 @@ def search_link(query)
end
# About page URLs
- def about_url
- return help_general_url(:action => 'about')
+ def about_url(options = {})
+ help_general_url(options.merge(:action => 'about'))
end
- def unhappy_url(info_request = nil)
+ def unhappy_url(info_request = nil, options = {})
if info_request.nil?
- return help_general_url(:action => 'unhappy')
+ return help_general_url(options.merge(:action => 'unhappy'))
else
- return help_unhappy_url(:url_title => info_request.url_title)
+ return help_unhappy_url(options.merge(:url_title => info_request.url_title))
end
end
@@ -269,8 +269,8 @@ def message_url(message, options = {})
request_url(message.info_request, options.merge(default_options))
end
- def message_path(message)
- message_url(message, :only_path => true)
+ def message_path(message, options = {})
+ message_url(message, options.merge(:only_path => true))
end
end
diff --git a/app/helpers/public_body_helper.rb b/app/helpers/public_body_helper.rb
index f097e47aa2..62f3a14972 100644
--- a/app/helpers/public_body_helper.rb
+++ b/app/helpers/public_body_helper.rb
@@ -47,7 +47,7 @@ def type_of_authority(public_body)
if index.zero?
desc = desc.sub(/\S/) { |m| Unicode.upcase(m) }
end
- link_to(desc, list_public_bodies_path(category.category_tag))
+ link_to(desc, list_public_bodies_by_tag_path(category.category_tag))
end
if types.any?
diff --git a/app/mailers/contact_mailer.rb b/app/mailers/contact_mailer.rb
index 3caf812c95..82184d01c2 100644
--- a/app/mailers/contact_mailer.rb
+++ b/app/mailers/contact_mailer.rb
@@ -11,9 +11,11 @@ def to_admin_message(name, email, subject, message, logged_in_user, last_request
@message, @logged_in_user, @last_request, @last_body = message, logged_in_user, last_request, last_body
# Return path is an address we control so that SPF checks are done on it.
- headers('Return-Path' => blackhole_email, 'Reply-To' => MailHandler.address_from_name_and_email(name, email))
+ headers('Return-Path' => blackhole_email,
+ 'Reply-To' => MailHandler.address_from_name_and_email(name, email))
- mail(:from => MailHandler.address_from_name_and_email(name, email),
+ # From is an address we control so that strict DMARC senders don't get refused
+ mail(:from => MailHandler.address_from_name_and_email(name, blackhole_email),
:to => contact_from_name_and_email,
:subject => subject)
end
@@ -32,7 +34,7 @@ def user_message(from_user, recipient_user, from_user_url, subject, message)
# someone's email addresses from transitory bounce messages.
headers('Return-Path' => blackhole_email, 'Reply-To' => from_user.name_and_email)
- mail(:from => from_user.name_and_email,
+ mail(:from => MailHandler.address_from_name_and_email(from_user.name, blackhole_email),
:to => recipient_user.name_and_email,
:subject => subject)
end
@@ -50,7 +52,21 @@ def from_admin_message(recipient_name, recipient_email, subject, message)
# Send a request to the administrator to add an authority
def add_public_body(change_request)
@change_request = change_request
- mail(:from => MailHandler.address_from_name_and_email(@change_request.get_user_name, @change_request.get_user_email),
+
+
+ # Return path is an address we control so that SPF checks are done on it.
+ headers('Return-Path' => blackhole_email,
+ 'Reply-To' => MailHandler.address_from_name_and_email(
+ @change_request.get_user_name,
+ @change_request.get_user_email
+ )
+ )
+
+ # From is an address we control so that strict DMARC senders don't get refused
+ mail(:from => MailHandler.address_from_name_and_email(
+ @change_request.get_user_name,
+ blackhole_email
+ ),
:to => contact_from_name_and_email,
:subject => _('Add authority - {{public_body_name}}',
:public_body_name => @change_request.get_public_body_name))
@@ -59,7 +75,20 @@ def add_public_body(change_request)
# Send a request to the administrator to update an authority email address
def update_public_body_email(change_request)
@change_request = change_request
- mail(:from => MailHandler.address_from_name_and_email(@change_request.get_user_name, @change_request.get_user_email),
+
+ # Return path is an address we control so that SPF checks are done on it.
+ headers('Return-Path' => blackhole_email,
+ 'Reply-To' => MailHandler.address_from_name_and_email(
+ @change_request.get_user_name,
+ @change_request.get_user_email
+ )
+ )
+
+ # From is an address we control so that strict DMARC senders don't get refused
+ mail(:from => MailHandler.address_from_name_and_email(
+ @change_request.get_user_name,
+ blackhole_email
+ ),
:to => contact_from_name_and_email,
:subject => _('Update email address - {{public_body_name}}',
:public_body_name => @change_request.get_public_body_name))
diff --git a/app/mailers/outgoing_mailer.rb b/app/mailers/outgoing_mailer.rb
index 5d6e0e55c4..8a83aa5466 100644
--- a/app/mailers/outgoing_mailer.rb
+++ b/app/mailers/outgoing_mailer.rb
@@ -16,22 +16,27 @@
class OutgoingMailer < ApplicationMailer
# Email to public body requesting info
def initial_request(info_request, outgoing_message)
- @info_request, @outgoing_message, @contact_email = info_request, outgoing_message, AlaveteliConfiguration::contact_email
- headers["message-id"] = OutgoingMailer.id_for_message(outgoing_message)
+ @info_request = info_request
+ @outgoing_message = outgoing_message
+ @contact_email = AlaveteliConfiguration.contact_email
+ headers["message-id"] = OutgoingMailer.id_for_message(@outgoing_message)
- mail(:from => info_request.incoming_name_and_email,
- :to => info_request.recipient_name_and_email,
- :subject => info_request.email_subject_request(:html => false))
+ mail(:from => @outgoing_message.from,
+ :to => @outgoing_message.to,
+ :subject => @outgoing_message.subject)
end
# Later message to public body regarding existing request
def followup(info_request, outgoing_message, incoming_message_followup)
- @info_request, @outgoing_message, @incoming_message_followup, @contact_email = info_request, outgoing_message, incoming_message_followup, AlaveteliConfiguration::contact_email
- headers["message-id"] = OutgoingMailer.id_for_message(outgoing_message)
+ @info_request = info_request
+ @outgoing_message = outgoing_message
+ @incoming_message_followup = incoming_message_followup
+ @contact_email = AlaveteliConfiguration.contact_email
+ headers["message-id"] = OutgoingMailer.id_for_message(@outgoing_message)
- mail(:from => info_request.incoming_name_and_email,
- :to => OutgoingMailer.name_and_email_for_followup(info_request, incoming_message_followup),
- :subject => OutgoingMailer.subject_for_followup(info_request, outgoing_message, :html => false))
+ mail(:from => @outgoing_message.from,
+ :to => @outgoing_message.to,
+ :subject => @outgoing_message.subject)
end
# TODO: the condition checking valid_to_reply_to? also appears in views/request/_followup.html.erb,
diff --git a/app/mailers/request_mailer.rb b/app/mailers/request_mailer.rb
index 6c1e561b52..8c0fc8bc42 100644
--- a/app/mailers/request_mailer.rb
+++ b/app/mailers/request_mailer.rb
@@ -67,7 +67,11 @@ def requires_admin(info_request, set_by = nil, message = "")
headers('Return-Path' => blackhole_email,
'Reply-To' => user.name_and_email)
- mail(:from => user.name_and_email,
+ # From is an address we control so that strict DMARC senders don't get refused
+ mail(:from => MailHandler.address_from_name_and_email(
+ user.name,
+ blackhole_email
+ ),
:to => contact_from_name_and_email,
:subject => _("FOI response requires admin ({{reason}}) - " \
"{{request_title}}",
@@ -97,10 +101,10 @@ def new_response(info_request, incoming_message)
# Tell the requester that the public body is late in replying
def overdue_alert(info_request, user)
- respond_url = respond_to_last_url(info_request) + "#followup"
+ respond_url = respond_to_last_url(info_request, :anchor => "followup")
post_redirect = PostRedirect.new(
- :uri => respond_to_last_url(info_request) + "#followup",
+ :uri => respond_to_last_url(info_request, :anchor => "followup"),
:user_id => user.id)
post_redirect.save!
url = confirm_url(:email_token => post_redirect.email_token)
@@ -118,10 +122,10 @@ def overdue_alert(info_request, user)
# Tell the requester that the public body is very late in replying
def very_overdue_alert(info_request, user)
- respond_url = respond_to_last_url(info_request) + "#followup"
+ respond_url = respond_to_last_url(info_request, :anchor => "followup")
post_redirect = PostRedirect.new(
- :uri => respond_to_last_url(info_request) + "#followup",
+ :uri => respond_to_last_url(info_request, :anchor => "followup"),
:user_id => user.id)
post_redirect.save!
@url = confirm_url(:email_token => post_redirect.email_token)
@@ -141,7 +145,7 @@ def new_response_reminder_alert(info_request, incoming_message)
# Make a link going to the form to describe state, and which logs the
# user in.
post_redirect = PostRedirect.new(
- :uri => request_url(info_request) + "#describe_state_form_1",
+ :uri => request_url(info_request, :anchor => "describe_state_form_1"),
:user_id => info_request.user.id)
post_redirect.save!
@url = confirm_url(:email_token => post_redirect.email_token)
@@ -166,9 +170,8 @@ def old_unclassified_updated(info_request)
# Tell the requester that they need to clarify their request
def not_clarified_alert(info_request, incoming_message)
respond_url = new_request_incoming_followup_url(:request_id => info_request.id,
- :incoming_message_id => incoming_message.id)
- respond_url = respond_url + "#followup"
-
+ :incoming_message_id => incoming_message.id,
+ :anchor => 'followup')
post_redirect = PostRedirect.new(
:uri => respond_url,
:user_id => info_request.user.id)
@@ -269,9 +272,7 @@ def receive(email, raw_email)
# Send email alerts for overdue requests
def self.alert_overdue_requests
- info_requests = InfoRequest.find(:all,
- :conditions => [
- "described_state = 'waiting_response'
+ info_requests = InfoRequest.where("described_state = 'waiting_response'
AND awaiting_description = ?
AND user_id is not null
AND (SELECT id
@@ -286,10 +287,7 @@ def self.alert_overdue_requests
'resent',
'followup_resent')
AND info_request_id = info_requests.id)
- ) IS NULL", false
- ],
- :include => [ :user ]
- )
+ ) IS NULL", false).includes(:user)
for info_request in info_requests
alert_event_id = info_request.last_event_forming_initial_request.id
@@ -306,17 +304,15 @@ def self.alert_overdue_requests
# For now, just to the user who created the request
sent_already = UserInfoRequestSentAlert.
- find(:first,
- :conditions =>
- [ "alert_type = ? " \
- "AND user_id = ? " \
- "AND info_request_id = ? " \
- "AND info_request_event_id = ?",
- alert_type,
- info_request.user_id,
- info_request.id,
- alert_event_id
- ])
+ where("alert_type = ? " \
+ "AND user_id = ? " \
+ "AND info_request_id = ? " \
+ "AND info_request_event_id = ?",
+ alert_type,
+ info_request.user_id,
+ info_request.id,
+ alert_event_id).
+ first
if sent_already.nil?
# Alert not yet sent for this user, so send it
store_sent = UserInfoRequestSentAlert.new
@@ -349,9 +345,10 @@ def self.alert_new_response_reminders
end
end
def self.alert_new_response_reminders_internal(days_since, type_code)
- info_requests = InfoRequest.find_old_unclassified(:order => 'info_requests.id',
- :include => [:user],
- :age_in_days => days_since)
+ info_requests = InfoRequest.
+ where_old_unclassified(days_since).
+ order('info_requests.id').
+ includes(:user)
info_requests.each do |info_request|
alert_event_id = info_request.get_last_public_response_event_id
@@ -362,17 +359,15 @@ def self.alert_new_response_reminders_internal(days_since, type_code)
end
# To the user who created the request
sent_already = UserInfoRequestSentAlert.
- find(:first,
- :conditions => [
- "alert_type = ? " \
- "AND user_id = ? " \
- "AND info_request_id = ? " \
- "AND info_request_event_id = ?",
- type_code,
- info_request.user_id,
- info_request.id,
- alert_event_id
- ])
+ where("alert_type = ? " \
+ "AND user_id = ? " \
+ "AND info_request_id = ? " \
+ "AND info_request_event_id = ?",
+ type_code,
+ info_request.user_id,
+ info_request.id,
+ alert_event_id).
+ first
if sent_already.nil?
# Alert not yet sent for this user
store_sent = UserInfoRequestSentAlert.new
@@ -391,16 +386,13 @@ def self.alert_new_response_reminders_internal(days_since, type_code)
# after last update of event.
def self.alert_not_clarified_request
info_requests = InfoRequest.
- find(:all,
- :conditions =>
- [
- "awaiting_description = ?
- AND described_state = 'waiting_clarification'
- AND info_requests.updated_at < ?",
- false,
- Time.now - 3.days
- ],
- :include => [ :user ], :order => "info_requests.id")
+ where("awaiting_description = ?
+ AND described_state = 'waiting_clarification'
+ AND info_requests.updated_at < ?",
+ false,
+ Time.now - 3.days
+ ).
+ includes(:user).order("info_requests.id")
for info_request in info_requests
alert_event_id = info_request.get_last_public_response_event_id
last_response_message = info_request.get_last_public_response
@@ -410,17 +402,14 @@ def self.alert_not_clarified_request
end
# To the user who created the request
sent_already = UserInfoRequestSentAlert.
- find(:first,
- :conditions =>
- [
- "alert_type = 'not_clarified_1'
- AND user_id = ?
- AND info_request_id = ?
- AND info_request_event_id = ?",
- info_request.user_id,
- info_request.id,
- alert_event_id
- ])
+ where("alert_type = 'not_clarified_1'
+ AND user_id = ?
+ AND info_request_id = ?
+ AND info_request_event_id = ?",
+ info_request.user_id,
+ info_request.id,
+ alert_event_id).
+ first
if sent_already.nil?
# Alert not yet sent for this user
store_sent = UserInfoRequestSentAlert.new
@@ -487,7 +476,11 @@ def self.alert_comment_on_request
if e.event_type == 'comment' && e.comment.user_id != info_request.user_id
last_comment_event = e if last_comment_event.nil?
- alerted_for = e.user_info_request_sent_alerts.find(:first, :conditions => [ "alert_type = 'comment_1' and user_id = ?", info_request.user_id])
+ alerted_for = e.user_info_request_sent_alerts.
+ where("alert_type = 'comment_1'
+ AND user_id = ?",
+ info_request.user_id).
+ first
if alerted_for.nil?
count = count + 1
earliest_unalerted_comment_event = e
@@ -534,12 +527,6 @@ def auto_generated_headers
})
end
- def mail_user_with_info_request_title(user, subject, info_request)
- warn %q([DEPRECATION] RequestMailer#mail_user_with_info_request_title
- will be removed in Alaveteli release 0.25).squish
- mail_user(user, subject + info_request.title.html_safe)
- end
-
def mail_user(user, subject)
mail({
:from => contact_from_name_and_email,
diff --git a/app/mailers/track_mailer.rb b/app/mailers/track_mailer.rb
index 9924a94147..22b7702e30 100644
--- a/app/mailers/track_mailer.rb
+++ b/app/mailers/track_mailer.rb
@@ -10,8 +10,8 @@ def event_digest(user, email_about_things)
@user, @email_about_things = user, email_about_things
post_redirect = PostRedirect.new(
- :uri => user_url(user) + "#email_subscriptions",
- :user_id => user.id)
+ :uri => user_url(user, :anchor => "email_subscriptions"),
+ :user_id => user.id)
post_redirect.save!
@unsubscribe_url = confirm_url(:email_token => post_redirect.email_token)
@@ -36,7 +36,7 @@ def contact_from_name_and_email
# weeks.
# Useful query to run by hand to see how many alerts are due:
- # User.find(:all, :conditions => [ "last_daily_track_email < ?", Time.now - 1.day ]).size
+ # User.where("last_daily_track_email < ?", Time.now - 1.day).size
def self.alert_tracks
done_something = false
now = Time.now
@@ -46,7 +46,8 @@ def self.alert_tracks
next if !user.should_be_emailed? || !user.receive_email_alerts
email_about_things = []
- track_things = TrackThing.find(:all, :conditions => [ "tracking_user_id = ? and track_medium = ?", user.id, 'email_daily' ])
+ track_things = TrackThing.where(:tracking_user_id => user.id,
+ :track_medium => 'email_daily')
for track_thing in track_things
# What have we alerted on already?
#
@@ -56,7 +57,7 @@ def self.alert_tracks
# earlier, so this is safe (with a week long margin of error). If the alerts break
# for a whole week, then they will miss some items. Tough.
done_info_request_events = {}
- tt_sent = track_thing.track_things_sent_emails.find(:all, :conditions => ['created_at > ?', now - 14.days])
+ tt_sent = track_thing.track_things_sent_emails.where('created_at > ?', now - 14.days)
for t in tt_sent
if not t.info_request_event_id.nil?
done_info_request_events[t.info_request_event_id] = 1
diff --git a/app/models/about_me_validator.rb b/app/models/about_me_validator.rb
index 46c5f6ad4c..8776973137 100644
--- a/app/models/about_me_validator.rb
+++ b/app/models/about_me_validator.rb
@@ -13,6 +13,8 @@ class AboutMeValidator
validates_length_of :about_me, :maximum => 500, :message => _("Please keep it shorter than 500 characters")
def initialize(attributes = {})
+ warn %q([DEPRECATION] AboutMeValidator has been deprecated and will be
+ removed in Alaveteli release 0.26).squish
attributes.each do |name, value|
send("#{name}=", value)
end
diff --git a/app/models/censor_rule.rb b/app/models/censor_rule.rb
index 34fb5e34bf..d730c21769 100644
--- a/app/models/censor_rule.rb
+++ b/app/models/censor_rule.rb
@@ -28,17 +28,6 @@ class CensorRule < ActiveRecord::Base
belongs_to :user
belongs_to :public_body
- # a flag to allow the require_user_request_or_public_body
- # validation to be skipped
- def allow_global
- warn %q([DEPRECATION] CensorRule#allow_global will be removed in 0.25)
- @allow_global
- end
-
- def allow_global=(value)
- warn %q([DEPRECATION] CensorRule#allow_global= will be removed in 0.25)
- @allow_global = value
- end
validate :require_valid_regexp, :if => proc { |rule| rule.regexp? == true }
@@ -47,34 +36,22 @@ def allow_global=(value)
:last_edit_comment,
:last_edit_editor
- scope :global, { :conditions => { :info_request_id => nil,
- :user_id => nil,
- :public_body_id => nil } }
+ scope :global, -> {
+ where(info_request_id: nil,
+ user_id: nil,
+ public_body_id: nil)
+ }
def apply_to_text(text_to_censor)
return nil if text_to_censor.nil?
text_to_censor.gsub(to_replace('UTF-8'), replacement)
end
- def apply_to_text!(text_to_censor)
- warn %q([DEPRECATION] CensorRule#apply_to_text! will be removed in 0.25.
- Use the non-destructive CensorRule#apply_to_text instead).squish
- return nil if text_to_censor.nil?
- text_to_censor.gsub!(to_replace('UTF-8'), replacement)
- end
-
def apply_to_binary(binary_to_censor)
return nil if binary_to_censor.nil?
binary_to_censor.gsub(to_replace('ASCII-8BIT')) { |match| match.gsub(single_char_regexp, 'x') }
end
- def apply_to_binary!(binary_to_censor)
- warn %q([DEPRECATION] CensorRule#apply_to_binary! will be removed in 0.25.
- Use the non-destructive CensorRule#apply_to_binary instead).squish
- return nil if binary_to_censor.nil?
- binary_to_censor.gsub!(to_replace('ASCII-8BIT')) { |match| match.gsub(single_char_regexp, 'x') }
- end
-
def is_global?
info_request_id.nil? && user_id.nil? && public_body_id.nil?
end
diff --git a/app/models/comment.rb b/app/models/comment.rb
index 1998db64bb..a5c70bc15f 100644
--- a/app/models/comment.rb
+++ b/app/models/comment.rb
@@ -24,7 +24,7 @@ class Comment < ActiveRecord::Base
include AdminColumn
strip_attributes :allow_empty => true
- belongs_to :user
+ belongs_to :user, :counter_cache => true
belongs_to :info_request
has_many :info_request_events # in practice only ever has one
@@ -33,7 +33,7 @@ class Comment < ActiveRecord::Base
validate :check_body_has_content,
:check_body_uses_mixed_capitals
- scope :visible, lambda {
+ scope :visible, -> {
joins(:info_request).merge(InfoRequest.visible).where(:visible => true)
}
diff --git a/app/models/concerns/admin_column.rb b/app/models/concerns/admin_column.rb
index c39468e70a..fe11c89372 100644
--- a/app/models/concerns/admin_column.rb
+++ b/app/models/concerns/admin_column.rb
@@ -12,7 +12,7 @@ class << self
def for_admin_column
self.class.content_columns.reject { |c| self.class.non_admin_columns.include?(c.name) }.each do |column|
- yield(column.human_name, send(column.name), column.type.to_s, column.name)
+ yield(column.name.humanize, send(column.name), column.type.to_s, column.name)
end
end
end
diff --git a/app/models/holiday.rb b/app/models/holiday.rb
index 03965d452e..baac01ceb4 100644
--- a/app/models/holiday.rb
+++ b/app/models/holiday.rb
@@ -26,7 +26,7 @@ class Holiday < ActiveRecord::Base
validates_presence_of :day
def self.holidays
- @@holidays ||= all.collect { |h| h.day }.to_set
+ @@holidays ||= uniq.pluck(:day)
end
def self.weekend_or_holiday?(date)
diff --git a/app/models/holiday_import.rb b/app/models/holiday_import.rb
index 89f7dfc345..6bccfabf47 100644
--- a/app/models/holiday_import.rb
+++ b/app/models/holiday_import.rb
@@ -63,8 +63,13 @@ def all_holidays_valid
def populate_from_ical_feed
begin
cal_file = open(ical_feed_url)
- cals = Icalendar.parse(cal_file, strict=false)
+ cal_parser = Icalendar::Parser.new(cal_file)
+ cals = cal_parser.parse
cal = cals.first
+ unless cal
+ errors.add(:ical_feed_url, "Sorry, there's a problem with the format of that feed.")
+ return
+ end
cal.events.each{ |cal_event| populate_from_ical_event(cal_event) }
rescue Errno::ENOENT, Exception => e
if e.message == 'Invalid line in calendar string!'
diff --git a/app/models/incoming_message.rb b/app/models/incoming_message.rb
index e7cf4eaa2f..5473b93ad4 100644
--- a/app/models/incoming_message.rb
+++ b/app/models/incoming_message.rb
@@ -39,6 +39,9 @@
class IncomingMessage < ActiveRecord::Base
include AdminColumn
extend MessageProminence
+
+ MAX_ATTACHMENT_TEXT_CLIPPED = 1000000 # 1Mb ish
+
belongs_to :info_request
validates_presence_of :info_request
@@ -146,39 +149,105 @@ def destroy_email_file
raw_email.destroy_file_representation!
end
- def valid_to_reply_to?
- return self.valid_to_reply_to
- end
-
# The cached fields mentioned in the previous comment
- # TODO: there must be a nicer way to do this without all that
- # repetition. I tried overriding method_missing but got some
- # unpredictable results.
+
+ # Public: Can this message be replied to?
+ # Caches the value set by _calculate_valid_to_reply_to in #parse_raw_email!
+ # #valid_to_reply_to overrides the ActiveRecord provided #valid_to_reply_to
+ #
+ # Returns a Boolean
def valid_to_reply_to
parse_raw_email!
super
end
+
+ alias_method :valid_to_reply_to?, :valid_to_reply_to
+
+ # Public: The date and time the email was sent. Uses the Date header if
+ # present in the email, otherwise uses the record's created_at attribute.
+ # #sent_at overrides the ActiveRecord provided #sent_at
+ #
+ # Returns an ActiveSupport::TimeWithZone
def sent_at
parse_raw_email!
super
end
+ # Public: The subject of an email.
+ # #subject overrides the ActiveRecord provided #subject
+ #
+ # Examples:
+ #
+ # # Subject: A response to your FOI request
+ # incoming_message.subject
+ # # => 'A response to your FOI request'
+ #
+ # # No subject header
+ # incoming_message.subject
+ # # => nil
+ #
+ # Returns a String or nil
def subject
parse_raw_email!
super
end
+ # Public: The display name of the email sender.
+ # #mail_from overrides the ActiveRecord provided #mail_from
+ #
+ # Examples:
+ #
+ # # From: John Doe
+ # incoming_message.mail_from
+ # # => 'John Doe'
+ #
+ # # From: john@example.com
+ # incoming_message.mail_from
+ # # => nil
+ #
+ # Returns a String or nil
def mail_from
parse_raw_email!
super
end
+ # Public: The display name of the email sender with the associated
+ # InfoRequest's censor rules applied.
+ #
+ # Example:
+ #
+ # # Given a CensorRule that redacts the word 'Person':
+ #
+ # incoming_message.mail_from
+ # # => FOI Person
+ #
+ # incoming_message.safe_mail_from
+ # # => FOI [REDACTED]
+ #
+ # Returns a String
def safe_mail_from
if mail_from
info_request.apply_censor_rules_to_text(mail_from)
end
end
+ # Public: The domain part of the email address in the From header.
+ # #mail_from_domain overrides the ActiveRecord provided #mail_from_domain
+ #
+ # # From: John Doe
+ # incoming_message.mail_from_domain
+ # # => 'example.com'
+ #
+ # # No From header
+ # incoming_message.mail_from_domain
+ # # => ''
+ #
+ # Returns a String
+ def mail_from_domain
+ parse_raw_email!
+ super
+ end
+
def specific_from_name?
!safe_mail_from.nil? && safe_mail_from.strip != info_request.public_body.name.strip
end
@@ -187,11 +256,6 @@ def from_public_body?
safe_mail_from.nil? || (mail_from_domain == info_request.public_body.request_email_domain)
end
- def mail_from_domain
- parse_raw_email!
- super
- end
-
# This method updates the cached column of the InfoRequest that
# stores the last created_at date of relevant events
# when updating an IncomingMessage associated with the request
@@ -230,14 +294,6 @@ def apply_masks(text, content_type)
AlaveteliTextMasker.apply_masks(text, content_type, mask_options)
end
- def apply_masks!(text, content_type)
- warn %q([DEPRECATION] IncomingMessage#apply_masks! will be removed in 0.25.
- Use the non-destructive IncomingMessage#apply_masks instead).squish
- mask_options = { :censor_rules => info_request.applicable_censor_rules,
- :masks => info_request.masks }
- AlaveteliTextMasker.apply_masks!(text, content_type, mask_options)
- end
-
# Lotus notes quoting yeuch!
def remove_lotus_quoting(text, replacement = "FOLDED_QUOTED_SECTION")
text = text.dup
@@ -583,9 +639,8 @@ def get_body_for_html_display(collapse_quoted_sections = true)
end
text.strip!
- text = text.gsub(/\n/, '
')
- text = text.gsub(/(?:
\s*){2,}/, '
') # remove excess linebreaks that unnecessarily space it out
- return text.html_safe
+ text = ActionController::Base.helpers.simple_format(text)
+ text.html_safe
end
@@ -599,8 +654,6 @@ def get_body_for_quoting
return text
end
- MAX_ATTACHMENT_TEXT_CLIPPED = 1000000 # 1Mb ish
-
# Returns text version of attachment text
def get_attachment_text_full
text = self._get_attachment_text_internal
@@ -658,7 +711,7 @@ def recently_arrived
# Search all info requests for
def self.find_all_unknown_mime_types
- for incoming_message in IncomingMessage.find(:all)
+ IncomingMessage.find_each do |incoming_message|
for attachment in incoming_message.get_attachments_for_display
raise "internal error incoming_message " + incoming_message.id.to_s if attachment.content_type.nil?
if AlaveteliFileTypes.mimetype_to_extension(attachment.content_type).nil?
diff --git a/app/models/info_request.rb b/app/models/info_request.rb
index f73e6395f5..c28a5d9389 100644
--- a/app/models/info_request.rb
+++ b/app/models/info_request.rb
@@ -1,6 +1,5 @@
# -*- encoding : utf-8 -*-
# == Schema Information
-# Schema version: 20151104131702
#
# Table name: info_requests
#
@@ -24,6 +23,8 @@
# comments_allowed :boolean default(TRUE), not null
# info_request_batch_id :integer
# last_public_response_at :datetime
+# reject_incoming_at_mta :boolean default(FALSE), not null
+# rejected_incoming_count :integer default(0)
#
require 'digest/sha1'
@@ -59,14 +60,14 @@ class InfoRequest < ActiveRecord::Base
'email. You can use a phrase, rather than a full sentence.')
}
- belongs_to :user
+ belongs_to :user, :counter_cache => true
validate :must_be_internal_or_external
belongs_to :public_body, :counter_cache => true
belongs_to :info_request_batch
validates_presence_of :public_body_id, :unless => Proc.new { |info_request| info_request.is_batch_request_template? }
- has_many :info_request_events, :order => 'created_at', :dependent => :destroy
+ has_many :info_request_events, :order => 'created_at, id', :dependent => :destroy
has_many :outgoing_messages, :order => 'created_at', :dependent => :destroy
has_many :incoming_messages, :order => 'created_at', :dependent => :destroy
has_many :user_info_request_sent_alerts, :dependent => :destroy
@@ -80,7 +81,7 @@ class InfoRequest < ActiveRecord::Base
has_tag_string
- scope :visible, :conditions => {:prominence => "normal"}
+ scope :visible, -> { where(prominence: "normal") }
# user described state (also update in info_request_event, admin_request/edit.rhtml)
validate :must_be_valid_state
@@ -425,17 +426,25 @@ def self._extract_id_hash_from_email(incoming_email)
# TODO: this *should* also check outgoing message joined to is an initial
# request (rather than follow up)
def self.find_existing(title, public_body_id, body)
- InfoRequest.find(:first, :conditions => [ "title = ? and public_body_id = ? and outgoing_messages.body = ?", title, public_body_id, body ], :include => [ :outgoing_messages ] )
+ InfoRequest.where("title = ?
+ AND public_body_id = ?
+ AND outgoing_messages.body = ?",
+ title, public_body_id, body).
+ includes(:outgoing_messages).
+ first
end
def find_existing_outgoing_message(body)
# TODO: can add other databases here which have regexp_replace
if ActiveRecord::Base.connection.adapter_name == "PostgreSQL"
# Exclude spaces from the body comparison using regexp_replace
- outgoing_messages.find(:first, :conditions => [ "regexp_replace(outgoing_messages.body, '[[:space:]]', '', 'g') = regexp_replace(?, '[[:space:]]', '', 'g')", body ])
+ outgoing_messages.where("regexp_replace(outgoing_messages.body,
+ '[[:space:]]', '', 'g') =
+ regexp_replace(?, '[[:space:]]', '', 'g')",
+ body).first
else
# For other databases (e.g. SQLite) not the end of the world being space-sensitive for this check
- outgoing_messages.find(:first, :conditions => [ "outgoing_messages.body = ?", body ])
+ outgoing_messages.where("outgoing_messages.body = ?", body).first
end
end
@@ -504,7 +513,7 @@ def self.holding_pen_request
:title => 'Holding pen',
:described_state => 'waiting_response',
:awaiting_description => false,
- :prominence => 'backpage'
+ :prominence => 'hidden'
)
om = OutgoingMessage.new({
:status => 'ready',
@@ -653,24 +662,25 @@ def calculate_event_states
end
end
- # Find last outgoing message which was:
+ # Find last InfoRequestEvent which was:
# -- sent at all
# -- OR the same message was resent
# -- OR the public body requested clarification, and a follow up was sent
def last_event_forming_initial_request
last_sent = nil
expecting_clarification = false
- for event in info_request_events
+
+ info_request_events.each do |event|
if event.described_state == 'waiting_clarification'
expecting_clarification = true
end
- if [ 'sent', 'resent', 'followup_sent', 'followup_resent' ].include?(event.event_type)
+ if %w(sent resent followup_sent followup_resent).include?(event.event_type)
if last_sent.nil?
last_sent = event
elsif event.event_type == 'resent'
last_sent = event
- elsif expecting_clarification and event.event_type == 'followup_sent'
+ elsif expecting_clarification && event.event_type == 'followup_sent'
# TODO: this needs to cope with followup_resent, which it doesn't.
# Not really easy to do, and only affects cases where followups
# were resent after a clarification.
@@ -679,9 +689,14 @@ def last_event_forming_initial_request
end
end
end
+
if last_sent.nil?
- raise "internal error, last_event_forming_initial_request gets nil for request " + id.to_s + " outgoing messages count " + outgoing_messages.size.to_s + " all events: " + info_request_events.to_yaml
+ raise "internal error, last_event_forming_initial_request gets nil for " \
+ "request #{ id } outgoing messages count " \
+ "#{ outgoing_messages.size } all events: " \
+ "#{ info_request_events.to_yaml }"
end
+
last_sent
end
@@ -921,28 +936,16 @@ def self.last_event_time_clause(event_type=nil, join_table=nil, join_clause=nil)
end
def self.last_public_response_clause
- # TODO: Deprecate this method
+ warn %q([DEPRECATION] InfoRequest#last_public_response_clause will be removed
+ in 0.26).squish
join_clause = "incoming_messages.id = info_request_events.incoming_message_id
AND incoming_messages.prominence = 'normal'"
last_event_time_clause('response', 'incoming_messages', join_clause)
end
- def self.old_unclassified_params_old(extra_params, include_last_response_time=false)
- # TODO: Remove this method post benchmark testing
- last_response_created_at = last_public_response_clause
- age = extra_params[:age_in_days] ? extra_params[:age_in_days].days : OLD_AGE_IN_DAYS
- params = { :conditions => ["awaiting_description = ?
- AND last_public_response_at < ?
- AND url_title != 'holding_pen'
- AND user_id IS NOT NULL",
- true, Time.zone.now - age] }
- if include_last_response_time
- params[:order] = 'last_public_response_at'
- end
- return params
- end
-
def self.old_unclassified_params(extra_params, include_last_response_time=false)
+ warn %q([DEPRECATION] InfoRequest#old_unclassified_params will be removed
+ in 0.26).squish
age = extra_params[:age_in_days] ? extra_params[:age_in_days].days : OLD_AGE_IN_DAYS
params = { :conditions => ["awaiting_description = ?
AND last_public_response_at < ?
@@ -955,26 +958,27 @@ def self.old_unclassified_params(extra_params, include_last_response_time=false)
return params
end
- def self.old_unclassified_params(extra_params, include_last_response_time=false)
- age = extra_params[:age_in_days] ? extra_params[:age_in_days].days : OLD_AGE_IN_DAYS
- params = { :conditions => ["awaiting_description = ?
- AND last_public_response_at < ?
- AND url_title != 'holding_pen'
- AND user_id IS NOT NULL",
- true, Time.zone.now - age] }
- if include_last_response_time
- params[:order] = 'last_public_response_at'
- end
- return params
+
+ def self.where_old_unclassified(age_in_days=nil)
+ age_in_days ||= OLD_AGE_IN_DAYS
+ where("awaiting_description = ?
+ AND last_public_response_at < ?
+ AND url_title != 'holding_pen'
+ AND user_id IS NOT NULL",
+ true, Time.zone.now - age_in_days)
end
def self.count_old_unclassified(extra_params={})
+ warn %q([DEPRECATION] InfoRequest#count_old_unclassified will be removed
+ in 0.26).squish
params = old_unclassified_params(extra_params)
add_conditions_from_extra_params(params, extra_params)
count(:all, params)
end
def self.get_random_old_unclassified(limit, extra_params)
+ warn %q([DEPRECATION] InfoRequest#get_random_old_unclassified will be removed
+ in 0.26).squish
params = old_unclassified_params({})
add_conditions_from_extra_params(params, extra_params)
params[:limit] = limit
@@ -983,6 +987,8 @@ def self.get_random_old_unclassified(limit, extra_params)
end
def self.find_old_unclassified(extra_params={})
+ warn %q([DEPRECATION] InfoRequest#find_old_unclassified will be removed
+ in 0.26).squish
params = old_unclassified_params(extra_params, include_last_response_time=true)
[:limit, :include, :offset].each do |extra|
params[extra] = extra_params[extra] if extra_params[extra]
@@ -995,20 +1001,6 @@ def self.find_old_unclassified(extra_params={})
find(:all, params)
end
- def self.find_old_unclassified_old(extra_params={})
- # TODO: Remove this method post benchmark testing
- params = old_unclassified_params_old(extra_params, include_last_response_time=true)
- [:limit, :include, :offset].each do |extra|
- params[extra] = extra_params[extra] if extra_params[extra]
- end
- if extra_params[:order]
- params[:order] = extra_params[:order]
- params.delete(:select)
- end
- add_conditions_from_extra_params(params, extra_params)
- find(:all, params)
- end
-
def self.download_zip_dir
File.join(Rails.root, "cache", "zips", "#{Rails.env}")
end
@@ -1125,9 +1117,7 @@ def applicable_censor_rules
unless is_batch_request_template?
applicable_rules << public_body.censor_rules
end
- if user && !user.censor_rules.empty?
- applicable_rules << user.censor_rules
- end
+ applicable_rules << user.censor_rules if user
applicable_rules.flatten
end
@@ -1136,30 +1126,15 @@ def apply_censor_rules_to_text(text)
reduce(text) { |text, rule| rule.apply_to_text(text) }
end
- # Call groups of censor rules
- def apply_censor_rules_to_text!(text)
- warn %q([DEPRECATION] InfoRequest#apply_censor_rules_to_text! will be
- removed in 0.25. Use the non-destructive
- InfoRequest#apply_censor_rules_to_text instead).squish
- applicable_censor_rules.each do |censor_rule|
- censor_rule.apply_to_text!(text)
- end
- text
- end
-
def apply_censor_rules_to_binary(text)
applicable_censor_rules.
reduce(text) { |text, rule| rule.apply_to_binary(text) }
end
- def apply_censor_rules_to_binary!(binary)
- warn %q([DEPRECATION] InfoRequest#apply_censor_rules_to_binary! will be
- removed in 0.25. Use the non-destructive
- InfoRequest#apply_censor_rules_to_binary instead).squish
- applicable_censor_rules.each do |censor_rule|
- censor_rule.apply_to_binary!(binary)
- end
- binary
+ def apply_masks(text, content_type)
+ mask_options = { :censor_rules => applicable_censor_rules,
+ :masks => masks }
+ AlaveteliTextMasker.apply_masks(text, content_type, mask_options)
end
# Masks we apply to text associated with this request convert email addresses
@@ -1210,6 +1185,24 @@ def indexed_by_search?
true
end
+ def self.reject_incoming_at_mta(options)
+ query = InfoRequest.where(["updated_at < (now() -
+ interval ?)
+ AND allow_new_responses_from = 'nobody'
+ AND rejected_incoming_count >= ?
+ AND reject_incoming_at_mta = ?
+ AND url_title <> 'holding_pen'",
+ "#{options[:age_in_months]} months",
+ options[:rejection_threshold], false])
+ yield query.pluck(:id) if block_given?
+
+ if options[:dryrun]
+ 0
+ else
+ query.update_all(:reject_incoming_at_mta => true)
+ end
+ end
+
# This is called from cron regularly.
def self.stop_new_responses_on_old_requests
old = AlaveteliConfiguration.restrict_new_responses_on_old_requests_after_months
@@ -1223,7 +1216,7 @@ def self.stop_new_responses_on_old_requests
AND url_title <> 'holding_pen'
EOF
- # 'very_old' months since last change requests, don't allow any new
+ # 'very_old' months since last change to request, don't allow any new
# incoming messages
InfoRequest.update_all <<-EOF.strip_heredoc.delete("\n")
allow_new_responses_from = 'nobody'
@@ -1437,8 +1430,9 @@ def accept_incoming?(email, raw_email_data)
end
will_be_rejected = (response_rejector && response_rejection) ? true : false
-
if will_be_rejected && response_rejection.reject(response_rejector.reason)
+ # update without changing the updated_at field
+ self.update_column(:rejected_incoming_count, self.rejected_incoming_count.next)
logger.info "Rejected incoming mail: #{ response_rejector.reason } request: #{ id }"
false
else
diff --git a/app/models/info_request_batch.rb b/app/models/info_request_batch.rb
index 33916958f1..dc89089be6 100644
--- a/app/models/info_request_batch.rb
+++ b/app/models/info_request_batch.rb
@@ -14,7 +14,7 @@
class InfoRequestBatch < ActiveRecord::Base
has_many :info_requests
- belongs_to :user
+ belongs_to :user, :counter_cache => true
has_and_belongs_to_many :public_bodies
validates_presence_of :user
@@ -23,12 +23,12 @@ class InfoRequestBatch < ActiveRecord::Base
# When constructing a new batch, use this to check user hasn't double submitted.
def self.find_existing(user, title, body, public_body_ids)
- find(:first, :conditions => ['user_id = ?
- AND title = ?
- AND body = ?
- AND info_request_batches_public_bodies.public_body_id in (?)',
- user, title, body, public_body_ids],
- :include => :public_bodies)
+ where('user_id = ?
+ AND title = ?
+ AND body = ?
+ AND info_request_batches_public_bodies.public_body_id in (?)',
+ user, title, body, public_body_ids).
+ includes(:public_bodies).first
end
# Create a batch of information requests, returning a list of public bodies
diff --git a/app/models/info_request_event.rb b/app/models/info_request_event.rb
index be5f6dd450..7a58ed4d73 100644
--- a/app/models/info_request_event.rb
+++ b/app/models/info_request_event.rb
@@ -25,6 +25,27 @@ class InfoRequestEvent < ActiveRecord::Base
include AdminColumn
extend XapianQueries
+ EVENT_TYPES = [
+ 'sent',
+ 'resent',
+ 'followup_sent',
+ 'followup_resent',
+
+ 'edit', # title etc. edited (in admin interface)
+ 'edit_outgoing', # outgoing message edited (in admin interface)
+ 'edit_comment', # comment edited (in admin interface)
+ 'destroy_incoming', # deleted an incoming message (in admin interface)
+ 'destroy_outgoing', # deleted an outgoing message (in admin interface)
+ 'redeliver_incoming', # redelivered an incoming message elsewhere (in admin interface)
+ 'edit_incoming', # incoming message edited (in admin interface)
+ 'move_request', # changed user or public body (in admin interface)
+ 'hide', # hid a request (in admin interface)
+ 'manual', # you did something in the db by hand
+ 'response',
+ 'comment',
+ 'status_update'
+ ].freeze
+
belongs_to :info_request
validates_presence_of :info_request
@@ -42,29 +63,12 @@ class InfoRequestEvent < ActiveRecord::Base
after_create :update_request, :if => :response?
def self.enumerate_event_types
- [
- 'sent',
- 'resent',
- 'followup_sent',
- 'followup_resent',
-
- 'edit', # title etc. edited (in admin interface)
- 'edit_outgoing', # outgoing message edited (in admin interface)
- 'edit_comment', # comment edited (in admin interface)
- 'destroy_incoming', # deleted an incoming message (in admin interface)
- 'destroy_outgoing', # deleted an outgoing message (in admin interface)
- 'redeliver_incoming', # redelivered an incoming message elsewhere (in admin interface)
- 'edit_incoming', # incoming message edited (in admin interface)
- 'move_request', # changed user or public body (in admin interface)
- 'hide', # hid a request (in admin interface)
- 'manual', # you did something in the db by hand
- 'response',
- 'comment',
- 'status_update'
- ]
- end
-
- validates_inclusion_of :event_type, :in => enumerate_event_types
+ warn %q([DEPRECATION] InfoRequestEvent.enumerate_event_types will be removed
+ in 0.26. Use InfoRequestEvent::EVENT_TYPES instead).squish
+ EVENT_TYPES
+ end
+
+ validates_inclusion_of :event_type, :in => EVENT_TYPES
# user described state (also update in info_request)
validate :must_be_valid_state
@@ -222,9 +226,10 @@ def search_text_main(clipped = false)
def title
if event_type == 'sent'
- return info_request.title
+ info_request.title
+ else
+ ''
end
- ''
end
def filetype
@@ -232,9 +237,11 @@ def filetype
unless incoming_message
raise "event type is 'response' but no incoming message for event id #{id}"
end
- return incoming_message.get_present_file_extensions
+
+ incoming_message.get_present_file_extensions
+ else
+ ''
end
- ''
end
def tags
@@ -267,9 +274,10 @@ def variety
def visible
if event_type == 'comment'
- return comment.visible
+ comment.visible
+ else
+ true
end
- true
end
# We store YAML version of parameters in the database
diff --git a/app/models/mail_server_log.rb b/app/models/mail_server_log.rb
index 64d869a556..12caf79197 100644
--- a/app/models/mail_server_log.rb
+++ b/app/models/mail_server_log.rb
@@ -165,15 +165,24 @@ def self.check_recent_requests_have_been_sent
# Get all requests sent for from 2 to 10 days ago. The 2 day gap is
# because we load mail server log lines via cron at best an hour after they
# are made)
- irs = InfoRequest.find(:all, :conditions => [ "created_at < ? and created_at > ? and user_id is not null", Time.now - 2.day, Time.now - 10.days ] )
+ info_requests = InfoRequest.where("created_at < ?
+ AND created_at > ?
+ AND user_id IS NOT null",
+ Time.now - 2.days,
+ Time.now - 10.days)
# Go through each request and check it
ok = true
- irs.each do |ir|
- unless request_sent?(ir)
+ info_requests.each do |info_request|
+ unless request_sent?(info_request)
# It's very important the envelope from is set for avoiding spam filter reasons - this
# effectively acts as a check for that.
- $stderr.puts("failed to find request sending in MTA logs for request id " + ir.id.to_s + " " + ir.url_title + " (check envelope from is being set to request address in Ruby, and load-mail-server-logs crontab is working)") # *** don't comment out this STDERR line, it is the point of the function!
+
+ # *** don't comment out this STDERR line, it is the point of the function!
+ $stderr.puts("failed to find request sending in MTA logs for request " \
+ "id #{info_request.id} #{info_request.url_title} (check " \
+ "envelope from is being set to request address in Ruby, " \
+ "and load-mail-server-logs crontab is working)")
ok = false
end
end
@@ -186,6 +195,26 @@ def self.create_exim_log_line(line, done, order = 1)
create_mail_server_logs(emails, sanitised_line, order, done)
end
+ def is_owning_user?(user)
+ info_request.is_owning_user?(user)
+ end
+
+ # Public: Overrides the ActiveRecord attribute accessor
+ #
+ # opts = Hash of options (default: {})
+ # :redact_idhash - Redacts instances of the InfoRequest#idhash
+ # :decorate - Wrap the line in a decorator appropriate to the MTA
+ #
+ # Returns a String, EximLine or PostfixLine
+ def line(opts = {})
+ line = read_attribute(:line).dup
+ if opts[:redact_idhash] && info_request && info_request.idhash
+ line.gsub!(info_request.idhash, _('[REDACTED]'))
+ end
+ line = line_decorator.new(line) if opts[:decorate]
+ line
+ end
+
private
def self.create_mail_server_logs(emails, line, order, done)
@@ -199,4 +228,16 @@ def self.create_mail_server_logs(emails, line, order, done)
end
end
+ def line_decorator
+ mta = AlaveteliConfiguration.mta_log_type.to_sym
+ case mta
+ when :exim
+ EximLine
+ when :postfix
+ PostfixLine
+ else
+ raise "Unexpected MTA type: #{ mta }"
+ end
+ end
+
end
diff --git a/app/models/mail_server_log/exim_delivery_status.rb b/app/models/mail_server_log/exim_delivery_status.rb
new file mode 100644
index 0000000000..07543a4657
--- /dev/null
+++ b/app/models/mail_server_log/exim_delivery_status.rb
@@ -0,0 +1,89 @@
+# -*- encoding : utf-8 -*-
+class MailServerLog::EximDeliveryStatus
+ include Comparable
+
+ HUMANIZED = {
+ :delivered => _('This message has been delivered.'),
+ :failed => _('This message could not be delivered.'),
+ :sent => _('This message has been sent.')
+ }.freeze
+
+ DELIVERED_FLAGS = [
+ :normal_message_delivery,
+ :additional_address_in_same_delivery,
+ :cutthrough_message_delivery
+ ].freeze
+
+ SENT_FLAGS = [
+ :message_arrival,
+ :delivery_deferred_temporary_problem
+ ].freeze
+
+ FAILED_FLAGS = [
+ :bounce_arrival,
+ :delivery_suppressed_by_N,
+ :delivery_failed_address_bounced
+ ].freeze
+
+ MTA_FLAGS = (DELIVERED_FLAGS | SENT_FLAGS | FAILED_FLAGS).freeze
+
+ def initialize(status)
+ @status = assert_valid_status(status)
+ end
+
+ def delivered?
+ simple == :delivered
+ end
+
+ def sent?
+ simple == :sent
+ end
+
+ def failed?
+ simple == :failed
+ end
+
+ def simple
+ case status
+ when *DELIVERED_FLAGS
+ :delivered
+ when *SENT_FLAGS
+ :sent
+ when *FAILED_FLAGS
+ :failed
+ end
+ end
+
+ def humanize
+ HUMANIZED[simple]
+ end
+
+ def <=>(other)
+ to_sym <=> other.to_sym
+ end
+
+ def to_sym
+ status
+ end
+
+ def to_s
+ status.to_s
+ end
+
+ def inspect
+ obj_id = "0x00%x" % (object_id << 1)
+ %Q(#<#{self.class}:#{obj_id} @status=:#{ status }>)
+ end
+
+ private
+
+ attr_reader :status
+
+ def assert_valid_status(status)
+ if MTA_FLAGS.include?(status)
+ status
+ else
+ raise ArgumentError, "Invalid MTA status: #{ status }"
+ end
+ end
+end
diff --git a/app/models/mail_server_log/exim_line.rb b/app/models/mail_server_log/exim_line.rb
new file mode 100644
index 0000000000..5db97ab2f1
--- /dev/null
+++ b/app/models/mail_server_log/exim_line.rb
@@ -0,0 +1,46 @@
+# -*- encoding : utf-8 -*-
+class MailServerLog::EximLine
+ include Comparable
+
+ # http://www.exim.org/exim-html-current/doc/html/spec_html/ch-log_files.html#SECID250
+ # WARNING: The order of the :bounce_arrival and :message_arrival keys is
+ # important. A :bounce_arrival can incorrectly get parsed as a
+ # :message_arrival given that it includes the <= symbol.
+ # TODO: Make parsing of EximLine flag more intelligent
+ LOG_LINE_FLAGS = {
+ '<= <>' => :bounce_arrival,
+ '<=' => :message_arrival,
+ '=>' => :normal_message_delivery,
+ '->' => :additional_address_in_same_delivery,
+ '>>' => :cutthrough_message_delivery,
+ '*>' => :delivery_suppressed_by_N,
+ '**' => :delivery_failed_address_bounced,
+ '==' => :delivery_deferred_temporary_problem
+ }.freeze
+
+ def initialize(line)
+ @line = line.to_s
+ end
+
+ def <=>(other)
+ self.class <=> other.class && to_s <=> other.to_s
+ end
+
+ def to_s
+ line
+ end
+
+ def inspect
+ %Q(#<#{self.class}:#{"0x00%x" % (object_id << 1)} @line="#{ line }">)
+ end
+
+ def delivery_status
+ flag = LOG_LINE_FLAGS.keys.find { |flag| to_s.include?(flag) }
+ status = LOG_LINE_FLAGS[flag]
+ MailServerLog::EximDeliveryStatus.new(status) if status
+ end
+
+ private
+
+ attr_reader :line
+end
diff --git a/app/models/mail_server_log/postfix_delivery_status.rb b/app/models/mail_server_log/postfix_delivery_status.rb
new file mode 100644
index 0000000000..3be4c390c7
--- /dev/null
+++ b/app/models/mail_server_log/postfix_delivery_status.rb
@@ -0,0 +1,85 @@
+# -*- encoding : utf-8 -*-
+class MailServerLog::PostfixDeliveryStatus
+ include Comparable
+
+ HUMANIZED = {
+ :delivered => _('This message has been delivered.'),
+ :failed => _('This message could not be delivered.'),
+ :sent => _('This message has been sent.')
+ }.freeze
+
+ DELIVERED_FLAGS = [
+ :sent
+ ].freeze
+
+ SENT_FLAGS = [
+ :deferred
+ ].freeze
+
+ FAILED_FLAGS = [
+ :bounced,
+ :expired
+ ].freeze
+
+ MTA_FLAGS = (DELIVERED_FLAGS | SENT_FLAGS | FAILED_FLAGS).freeze
+
+ def initialize(status)
+ @status = assert_valid_status(status)
+ end
+
+ def delivered?
+ simple == :delivered
+ end
+
+ def sent?
+ simple == :sent
+ end
+
+ def failed?
+ simple == :failed
+ end
+
+ def simple
+ case status
+ when *DELIVERED_FLAGS
+ :delivered
+ when *SENT_FLAGS
+ :sent
+ when *FAILED_FLAGS
+ :failed
+ end
+ end
+
+ def humanize
+ HUMANIZED[simple]
+ end
+
+ def <=>(other)
+ to_sym <=> other.to_sym
+ end
+
+ def to_sym
+ status
+ end
+
+ def to_s
+ status.to_s
+ end
+
+ def inspect
+ obj_id = "0x00%x" % (object_id << 1)
+ %Q(#<#{self.class}:#{obj_id} @status=:#{status}>)
+ end
+
+ private
+
+ attr_reader :status
+
+ def assert_valid_status(status)
+ if MTA_FLAGS.include?(status)
+ status
+ else
+ raise ArgumentError, "Invalid MTA status: #{ status }"
+ end
+ end
+end
diff --git a/app/models/mail_server_log/postfix_line.rb b/app/models/mail_server_log/postfix_line.rb
new file mode 100644
index 0000000000..8e18a8e580
--- /dev/null
+++ b/app/models/mail_server_log/postfix_line.rb
@@ -0,0 +1,37 @@
+# -*- encoding : utf-8 -*-
+class MailServerLog::PostfixLine
+ include Comparable
+
+ LOG_LINE_FLAGS = {
+ 'status=sent' => :sent,
+ 'status=deferred' => :deferred,
+ 'status=bounced' => :bounced,
+ 'status=expired' => :expired
+ }.freeze
+
+ def initialize(line)
+ @line = line.to_s
+ end
+
+ def <=>(other)
+ self.class <=> other.class && to_s <=> other.to_s
+ end
+
+ def to_s
+ line
+ end
+
+ def delivery_status
+ flag = LOG_LINE_FLAGS.keys.find { |flag| to_s.include?(flag) }
+ status = LOG_LINE_FLAGS[flag]
+ MailServerLog::PostfixDeliveryStatus.new(status) if status
+ end
+
+ def inspect
+ %Q(#<#{self.class}:#{"0x00%x" % (object_id << 1)} @line="#{ line }">)
+ end
+
+ private
+
+ attr_reader :line
+end
diff --git a/app/models/outgoing_message.rb b/app/models/outgoing_message.rb
index d795a2cfe5..2102cf8293 100644
--- a/app/models/outgoing_message.rb
+++ b/app/models/outgoing_message.rb
@@ -31,15 +31,23 @@ class OutgoingMessage < ActiveRecord::Base
include Rails.application.routes.url_helpers
include LinkToHelper
- WHAT_DOING_VALUES = %w(normal_sort internal_review new_information)
+ STATUS_TYPES = %w(ready sent failed).freeze
+ MESSAGE_TYPES = %w(initial_request followup).freeze
+ WHAT_DOING_VALUES = %w(normal_sort
+ internal_review
+ external_review
+ new_information).freeze
# To override the default letter
attr_accessor :default_letter
validates_presence_of :info_request
- validates_inclusion_of :status, :in => ['ready', 'sent', 'failed']
- validates_inclusion_of :message_type, :in => ['initial_request', 'followup']
- validate :format_of_body
+ validates_inclusion_of :status, :in => STATUS_TYPES
+ validates_inclusion_of :message_type, :in => MESSAGE_TYPES
+ validate :template_changed
+ validate :body_uses_mixed_capitals
+ validate :body_has_signature
+ validate :what_doing_value
belongs_to :info_request
belongs_to :incoming_message_followup, :foreign_key => 'incoming_message_followup_id', :class_name => 'IncomingMessage'
@@ -67,14 +75,6 @@ def self.default_salutation(public_body)
_("Dear {{public_body_name}},", :public_body_name => public_body.name)
end
- def self.placeholder_salutation
- warn %q([DEPRECATION] OutgoingMessage.placeholder_salutation will be
- replaced with
- OutgoingMessage::Template::BatchRequest.placeholder_salutation as of
- 0.25).squish
- Template::BatchRequest.placeholder_salutation
- end
-
def self.fill_in_salutation(text, public_body)
text.gsub(Template::BatchRequest.placeholder_salutation,
default_salutation(public_body))
@@ -95,6 +95,46 @@ def set_signature_name(name)
end
end
+ # Public: The value to be used in the From: header of an OutgoingMailer
+ # message.
+ #
+ # Returns a String
+ def from
+ info_request.incoming_name_and_email
+ end
+
+ # Public: The value to be used in the To: header of an OutgoingMailer message.
+ #
+ # Returns a String
+ def to
+ if replying_to_incoming_message?
+ # calling safe_mail_from from so censor rules are run
+ MailHandler.address_from_name_and_email(incoming_message_followup.safe_mail_from,
+ incoming_message_followup.from_email)
+ else
+ info_request.recipient_name_and_email
+ end
+ end
+
+ # Public: The value to be used in the Subject: header of an OutgoingMailer
+ # message.
+ #
+ # Returns a String
+ def subject
+ if message_type == 'followup'
+ if what_doing == 'internal_review'
+ _("Internal review of {{email_subject}}",
+ :email_subject => info_request.email_subject_request(:html => false))
+ else
+ info_request.
+ email_subject_followup(:incoming_message => incoming_message_followup,
+ :html => false)
+ end
+ else
+ info_request.email_subject_request(:html => false)
+ end
+ end
+
# Public: The body text of the OutgoingMessage. The text is cleaned and
# CensorRules are applied.
#
@@ -123,6 +163,10 @@ def raw_body
read_attribute(:body)
end
+ def apply_masks(text, content_type)
+ info_request.apply_masks(text, content_type)
+ end
+
# Used to give warnings when writing new messages
def contains_email?
MySociety::Validate.email_find_regexp.match(body)
@@ -132,6 +176,10 @@ def contains_postcode?
MySociety::Validate.contains_postcode?(body)
end
+ def is_owning_user?(user)
+ info_request.is_owning_user?(user)
+ end
+
def record_email_delivery(to_addrs, message_id, log_event_type = 'sent')
self.last_sent_at = Time.now
self.status = 'sent'
@@ -169,11 +217,13 @@ def smtp_message_ids
info_request_events.
order('created_at ASC').
map { |event| event.params[:smtp_message_id] }.
- compact
+ compact.
+ map do |smtp_id|
+ smtp_id.match(/<(.*)>/) { |m| m.captures.first } || smtp_id
+ end
end
# Public: Return logged MTA IDs for this OutgoingMessage.
- # Currently only implemented for exim.
#
# Returns an Array
def mta_ids
@@ -181,14 +231,13 @@ def mta_ids
when :exim
exim_mta_ids
when :postfix
- []
+ postfix_mta_ids
else
raise 'Unexpected MTA type'
end
end
# Public: Return the MTA logs for this message.
- # Currently only implemented for exim.
#
# Returns an Array.
def mail_server_logs
@@ -196,15 +245,22 @@ def mail_server_logs
when :exim
exim_mail_server_logs
when :postfix
- []
+ postfix_mail_server_logs
else
raise 'Unexpected MTA type'
end
end
+ def delivery_status
+ mail_server_logs.
+ map { |log| log.line(:decorate => true).delivery_status }.
+ compact.
+ last
+ end
+
# An admin function
def prepare_message_for_resend
- if ['initial_request', 'followup'].include?(message_type) and status == 'sent'
+ if MESSAGE_TYPES.include?(message_type) and status == 'sent'
self.status = 'ready'
else
raise "Message id #{id} has type '#{message_type}' status " \
@@ -273,56 +329,6 @@ def xapian_reindex_after_update
end
end
- # How the default letter starts and ends
- def get_salutation
- warn %q([DEPRECATION] OutgoingMessage#get_salutation will be replaced with
- OutgoingMessage::Template classes in 0.25).squish
-
- if info_request.is_batch_request_template?
- return OutgoingMessage.placeholder_salutation
- end
-
- ret = ""
- if replying_to_incoming_message?
- ret += OutgoingMailer.name_for_followup(info_request, incoming_message_followup)
- else
- return OutgoingMessage.default_salutation(info_request.public_body)
- end
- salutation = _("Dear {{public_body_name}},", :public_body_name => ret)
- end
-
- def get_signoff
- warn %q([DEPRECATION] OutgoingMessage#get_signoff will be replaced with
- OutgoingMessage::Template classes in 0.25).squish
-
- if replying_to_incoming_message?
- _("Yours sincerely,")
- else
- _("Yours faithfully,")
- end
- end
-
- def get_default_letter
- warn %q([DEPRECATION] OutgoingMessage#get_default_letter will be replaced
- with OutgoingMessage::Template classes in 0.25).squish
-
- return default_letter if default_letter
-
- if what_doing == 'internal_review'
- letter = _("Please pass this on to the person who conducts Freedom of Information reviews.")
- letter += "\n\n"
- letter += _("I am writing to request an internal review of {{public_body_name}}'s handling of my FOI request '{{info_request_title}}'.",
- :public_body_name => info_request.public_body.name,
- :info_request_title => info_request.title)
- letter += "\n\n\n\n [ #{ get_internal_review_insert_here_note } ] \n\n\n\n"
- letter += _("A full history of my FOI request and all correspondence is available on the Internet at this address: {{url}}",
- :url => request_url(info_request))
- letter += "\n"
- else
- ""
- end
- end
-
private
def set_info_request_described_state
@@ -384,7 +390,19 @@ def replying_to_incoming_message?
end
def format_of_body
- if body.empty? || body =~ /\A#{Regexp.escape(letter_template.salutation(default_message_replacements))}\s+#{Regexp.escape(letter_template.signoff(default_message_replacements))}/ || body =~ /#{Regexp.escape(Template::InternalReview.details_placeholder)}/
+ warn %q([DEPRECATION] OutgoingMessage#format_of_body will be removed in
+ 0.26. It has been broken up in to OutgoingMessage#template_changed,
+ OutgoingMessage#body_uses_mixed_capitals,
+ OutgoingMessage#body_has_signature and
+ OutgoingMessage#what_doing_value).squish
+ template_changed
+ body_uses_mixed_capitals
+ body_has_signature
+ what_doing_value
+ end
+
+ def template_changed
+ if body.empty? || HTMLEntities.new.decode(raw_body) =~ /\A#{template_regex(letter_template.body(default_message_replacements))}/
if message_type == 'followup'
if what_doing == 'internal_review'
errors.add(:body, _("Please give details explaining why you want a review"))
@@ -397,15 +415,30 @@ def format_of_body
raise "Message id #{id} has type '#{message_type}' which validate can't handle"
end
end
+ end
- if body =~ /#{letter_template.signoff(default_message_replacements)}\s*\Z/m
+ def template_regex(template_text)
+ text = template_text.gsub("\r", "\n") # in case we have '\r\n' or even '\r's all the way down
+ # feels like this should need a gsub(/\//, '\/') but doesn't seem to
+ Regexp.escape(text.squeeze("\n")).
+ gsub("\\n", '\s*').
+ gsub('\ \s*', '\s*').
+ gsub('\s*\ ', '\s*')
+ end
+
+ def body_has_signature
+ if raw_body =~ /#{template_regex(letter_template.signoff(default_message_replacements))}\s*\Z/m
errors.add(:body, _("Please sign at the bottom with your name, or alter the \"{{signoff}}\" signature", :signoff => letter_template.signoff(default_message_replacements)))
end
+ end
+ def body_uses_mixed_capitals
unless MySociety::Validate.uses_mixed_capitals(body)
errors.add(:body, _('Please write your message using a mixture of capital and lower case letters. This makes it easier for others to read.'))
end
+ end
+ def what_doing_value
if what_doing.nil? || !WHAT_DOING_VALUES.include?(what_doing)
errors.add(:what_doing_dummy, _('Please choose what sort of reply you are making.'))
end
@@ -432,6 +465,25 @@ def exim_mail_server_logs
end
end
+ def postfix_mta_ids
+ lines = smtp_message_ids.map do |smtp_message_id|
+ info_request.
+ mail_server_logs.
+ where("line ILIKE :q", q: "%#{ smtp_message_id }%").
+ last.
+ try(:line)
+ end
+ lines.compact.map { |line| line.split(' ')[5].strip.chomp(':') }
+ end
+
+ def postfix_mail_server_logs
+ mta_ids.flat_map do |mta_id|
+ info_request.
+ mail_server_logs.
+ where('line ILIKE :mta_id', mta_id: "%#{ mta_id }%")
+ end
+ end
+
# remove excess linebreaks that unnecessarily space it out
def clean_text(text)
text.strip.gsub(/(?:\n\s*){2,}/, "\n\n")
diff --git a/app/models/public_body.rb b/app/models/public_body.rb
index 58c52a88e1..77a0f193ae 100644
--- a/app/models/public_body.rb
+++ b/app/models/public_body.rb
@@ -1,6 +1,5 @@
# -*- encoding : utf-8 -*-
# == Schema Information
-# Schema version: 20131024114346
#
# Table name: public_bodies
#
@@ -25,7 +24,7 @@
# info_requests_not_held_count :integer
# info_requests_overdue_count :integer
# info_requests_visible_classified_count :integer
-# info_requests_visible_count :integer
+# info_requests_visible_count :integer default(0), not null
#
require 'csv'
@@ -149,7 +148,7 @@ def compare(previous = nil)
unless %w(version last_edit_editor last_edit_comment updated_at).include?(c.name)
from = previous.send(c.name)
to = self.send(c.name)
- memo << { :name => c.human_name, :from => from, :to => to } if from != to
+ memo << { :name => c.name.humanize, :from => from, :to => to } if from != to
end
memo
}
@@ -237,12 +236,6 @@ def eir_only?
has_tag?('eir_only')
end
- # Schools are allowed more time in holidays, so we change some wordings
- def is_school?
- warn %q([DEPRECATION] PublicBody#is_school? will be removed in 0.25)
- has_tag?('school')
- end
-
def site_administration?
has_tag?('site_administration')
end
@@ -358,7 +351,7 @@ def self.import_csv_from_file(csv_filename, tag, tag_behaviour, dry_run, editor,
set_of_existing = Set.new
internal_admin_body_id = PublicBody.internal_admin_body.id
I18n.with_locale(I18n.default_locale) do
- bodies = (tag.nil? || tag.empty?) ? PublicBody.find(:all, :include => :translations) : PublicBody.find_by_tag(tag)
+ bodies = (tag.nil? || tag.empty?) ? PublicBody.includes(:translations) : PublicBody.find_by_tag(tag)
for existing_body in bodies
# Hide InternalAdminBody from import notes
next if existing_body.id == internal_admin_body_id
@@ -631,7 +624,10 @@ def self.get_request_percentages(column, n, highest, minimum_requests)
y_value_column = "(cast(#{column} as float) / #{total_column})"
where_clause = where_clause_for_stats minimum_requests, total_column
where_clause += " AND #{column} IS NOT NULL"
- public_bodies = PublicBody.select("*, #{y_value_column} AS y_value").order(ordering).where(where_clause).limit(n)
+ public_bodies = PublicBody.select("*, #{y_value_column} AS y_value").
+ order(ordering).
+ where(where_clause).
+ limit(n)
public_bodies.reverse! if highest
y_values = public_bodies.map { |pb| pb.y_value.to_f }
@@ -668,23 +664,22 @@ def self.popular_bodies(locale)
# get some example searches and public bodies to display
# either from config, or based on a (slow!) query if not set
body_short_names = AlaveteliConfiguration::frontpage_publicbody_examples.split(/\s*;\s*/)
- locale_condition = 'public_body_translations.locale = ?'
underscore_locale = locale.gsub '-', '_'
- conditions = [locale_condition, underscore_locale]
bodies = []
I18n.with_locale(locale) do
if body_short_names.empty?
# This is too slow
- bodies = visible.find(:all,
- :order => "info_requests_visible_count desc",
- :limit => 32,
- :conditions => conditions,
- :joins => :translations
- )
+ bodies = visible.
+ where('public_body_translations.locale = ?',
+ underscore_locale).
+ order("info_requests_visible_count desc").
+ limit(32).
+ joins(:translations)
else
- conditions[0] += " and public_bodies.url_name in (?)"
- conditions << body_short_names
- bodies = find(:all, :conditions => conditions, :joins => :translations)
+ bodies = where("public_body_translations.locale = ?
+ AND public_bodies.url_name in (?)",
+ underscore_locale, body_short_names).
+ joins(:translations)
end
end
return bodies
diff --git a/app/models/public_body_change_request.rb b/app/models/public_body_change_request.rb
index 267c58717c..0b892d9673 100644
--- a/app/models/public_body_change_request.rb
+++ b/app/models/public_body_change_request.rb
@@ -19,7 +19,7 @@
class PublicBodyChangeRequest < ActiveRecord::Base
- belongs_to :user
+ belongs_to :user, :counter_cache => true
belongs_to :public_body
validates_presence_of :public_body_name,
:message => N_("Please enter the name of the authority"),
@@ -33,9 +33,13 @@ class PublicBodyChangeRequest < ActiveRecord::Base
validate :user_email_format, :unless => proc{ |change_request| change_request.user_email.blank? }
validate :body_email_format, :unless => proc{ |change_request| change_request.public_body_email.blank? }
- scope :new_body_requests, :conditions => ['public_body_id IS NULL'], :order => 'created_at'
- scope :body_update_requests, :conditions => ['public_body_id IS NOT NULL'], :order => 'created_at'
- scope :open, :conditions => ['is_open = ?', true]
+ scope :new_body_requests, -> {
+ where(public_body_id: nil).order("created_at")
+ }
+ scope :body_update_requests, -> {
+ where("public_body_id IS NOT NULL").order("created_at")
+ }
+ scope :open, -> { where(is_open: true) }
def self.from_params(params, user)
change_request = new
diff --git a/app/models/public_body_heading.rb b/app/models/public_body_heading.rb
index 73648b464e..06979d6717 100644
--- a/app/models/public_body_heading.rb
+++ b/app/models/public_body_heading.rb
@@ -13,7 +13,7 @@ class PublicBodyHeading < ActiveRecord::Base
has_many :public_body_category_links, :dependent => :destroy
has_many :public_body_categories, :order => :category_display_order, :through => :public_body_category_links
- default_scope order('display_order ASC')
+ default_scope -> { order("display_order ASC") }
translates :name
diff --git a/app/models/request_classification.rb b/app/models/request_classification.rb
index a70b89cac4..bef81fdb71 100644
--- a/app/models/request_classification.rb
+++ b/app/models/request_classification.rb
@@ -11,20 +11,20 @@
#
class RequestClassification < ActiveRecord::Base
- belongs_to :user
+ belongs_to :user, :counter_cache => true
belongs_to :info_request_event
# return classification instances representing the top n
# users, with a 'cnt' attribute representing the number
# of classifications the user has made.
- def self.league_table(size, conditions=[])
- find(:all,
- :select => 'user_id, count(*) as cnt',
- :conditions => conditions,
- :group => 'user_id',
- :order => 'cnt desc',
- :limit => size,
- :include => :user)
+ def self.league_table(size, conditions=nil)
+ query = select('user_id, count(*) as cnt').
+ group('user_id').
+ order('cnt desc').
+ limit(size).
+ includes(:user)
+ query = query.where(*conditions) if conditions
+ query
end
end
diff --git a/app/models/track_thing.rb b/app/models/track_thing.rb
index 004427677b..24eab2007f 100644
--- a/app/models/track_thing.rb
+++ b/app/models/track_thing.rb
@@ -38,7 +38,7 @@ class TrackThing < ActiveRecord::Base
belongs_to :info_request
belongs_to :public_body
- belongs_to :tracking_user, :class_name => 'User'
+ belongs_to :tracking_user, :class_name => 'User', :counter_cache => true
belongs_to :tracked_user, :class_name => 'User'
has_many :track_things_sent_emails, :dependent => :destroy
@@ -80,7 +80,7 @@ def self.create_track_for_all_successful_requests
def self.create_track_for_public_body(public_body, event_type = nil)
query = "requested_from:#{ public_body.url_name }"
- if InfoRequestEvent.enumerate_event_types.include?(event_type)
+ if InfoRequestEvent::EVENT_TYPES.include?(event_type)
query += " variety:#{ event_type }"
end
new(:track_type => 'public_body_updates',
diff --git a/app/models/user.rb b/app/models/user.rb
index 3bdd95620c..1ccd5d4358 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -3,28 +3,35 @@
#
# Table name: users
#
-# id :integer not null, primary key
-# email :string(255) not null
-# name :string(255) not null
-# hashed_password :string(255) not null
-# salt :string(255) not null
-# created_at :datetime not null
-# updated_at :datetime not null
-# email_confirmed :boolean default(FALSE), not null
-# url_name :text not null
-# last_daily_track_email :datetime default(Sat Jan 01 00:00:00 UTC 2000)
-# admin_level :string(255) default("none"), not null
-# ban_text :text default(""), not null
-# about_me :text default(""), not null
-# locale :string(255)
-# email_bounced_at :datetime
-# email_bounce_message :text default(""), not null
-# no_limit :boolean default(FALSE), not null
-# receive_email_alerts :boolean default(TRUE), not null
-# can_make_batch_requests :boolean default(FALSE), not null
-# otp_enabled :boolean default(FALSE)
-# otp_secret_key :string(255)
-# otp_counter :integer default(1)
+# id :integer not null, primary key
+# email :string(255) not null
+# name :string(255) not null
+# hashed_password :string(255) not null
+# salt :string(255) not null
+# created_at :datetime not null
+# updated_at :datetime not null
+# email_confirmed :boolean default(FALSE), not null
+# url_name :text not null
+# last_daily_track_email :datetime default(2000-01-01 00:00:00 UTC)
+# admin_level :string(255) default("none"), not null
+# ban_text :text default(""), not null
+# about_me :text default(""), not null
+# locale :string(255)
+# email_bounced_at :datetime
+# email_bounce_message :text default(""), not null
+# no_limit :boolean default(FALSE), not null
+# receive_email_alerts :boolean default(TRUE), not null
+# can_make_batch_requests :boolean default(FALSE), not null
+# otp_enabled :boolean default(FALSE), not null
+# otp_secret_key :string(255)
+# otp_counter :integer default(1)
+# confirmed_not_spam :boolean default(FALSE), not null
+# comments_count :integer default(0), not null
+# info_requests_count :integer default(0), not null
+# track_things_count :integer default(0), not null
+# request_classifications_count :integer default(0), not null
+# public_body_change_requests_count :integer default(0), not null
+# info_request_batches_count :integer default(0), not null
#
require 'digest/sha1'
@@ -37,9 +44,10 @@ class User < ActiveRecord::Base
has_many :info_requests, :order => 'created_at desc'
has_many :user_info_request_sent_alerts
- has_many :post_redirects
+ has_many :post_redirects, :order => 'created_at desc'
has_many :track_things, :foreign_key => 'tracking_user_id', :order => 'created_at desc'
has_many :comments, :order => 'created_at desc'
+ has_many :public_body_change_requests, :order => 'created_at desc'
has_one :profile_photo
has_many :censor_rules, :order => 'created_at desc'
has_many :info_request_batches, :order => 'created_at desc'
@@ -54,6 +62,10 @@ class User < ActiveRecord::Base
'super',
], :message => N_('Admin level is not included in list')
+ validates_length_of :about_me,
+ :maximum => 500,
+ :message => _("Please keep it shorter than 500 characters")
+
validates :email, :uniqueness => {
:case_sensitive => false,
:message => _("This email is already in use") }
@@ -106,7 +118,8 @@ def self.authenticate_from_form(params, specific_user_login = false)
# Case-insensitively find a user from their email
def self.find_user_by_email(email)
- self.find(:first, :conditions => [ 'lower(email) = lower(?)', email ] )
+ return nil if email.blank?
+ self.where('lower(email) = lower(?)', email.strip).first
end
# The "internal admin" is a special user for internal use.
@@ -157,7 +170,7 @@ def self.random_time_in_last_day
# This SQL statement is useful for seeing how spread out users are at the moment:
# select extract(hour from last_daily_track_email) as h, count(*) from users group by extract(hour from last_daily_track_email) order by h;
def self.spread_alert_times_across_day
- self.find(:all).each do |user|
+ self.find_each do |user|
user.last_daily_track_email = User.random_time_in_last_day
user.save!
end
@@ -182,6 +195,12 @@ def self.find_similar_named_users(user)
user.name, true, user.id).order(:created_at)
end
+ def transactions(*associations)
+ opts = {}
+ opts[:transaction_associations] = associations if associations.any?
+ TransactionCalculator.new(self, opts)
+ end
+
def created_at_numeric
# format it here as no datetime support in Xapian's value ranges
created_at.strftime("%Y%m%d%H%M%S")
@@ -299,17 +318,6 @@ def get_undescribed_requests
)
end
- # Can the user make new requests, without having to describe state of (most) existing ones?
- def can_leave_requests_undescribed?
- warn %q([DEPRECATION] User#can_leave_requests_undescribed? will be removed
- in Alaveteli release 0.25).squish
-
- if url_name == "heather_brooke" || url_name == "heather_brooke_2"
- return true
- end
- return false
- end
-
# Does the user magically gain powers as if they owned every request?
# e.g. Can classify it
def owns_every_request?
@@ -404,6 +412,10 @@ def set_profile_photo(new_profile_photo)
end
end
+ def about_me_already_exists?
+ self.class.where(:about_me => about_me).any?
+ end
+
# Return about me text for display as HTML
# TODO: Move this to a view helper
def get_about_me_for_html_display
@@ -459,7 +471,7 @@ def for_admin_column(complete = false)
end.compact
end
columns.each do |column|
- yield(column.human_name, send(column.name), column.type.to_s, column.name)
+ yield(column.name.humanize, send(column.name), column.type.to_s, column.name)
end
end
diff --git a/app/models/user/transaction_calculator.rb b/app/models/user/transaction_calculator.rb
new file mode 100644
index 0000000000..a6fd040aa9
--- /dev/null
+++ b/app/models/user/transaction_calculator.rb
@@ -0,0 +1,125 @@
+# -*- encoding : utf-8 -*-
+class User
+ class TransactionCalculator
+ DEFAULT_TRANSACTION_ASSOCIATIONS = [
+ :comments,
+ :info_requests,
+ :public_body_change_requests,
+ :request_classifications,
+ :track_things
+ ]
+
+ attr_reader :transaction_associations
+ attr_reader :user
+
+ def initialize(user, options = {})
+ @user = user
+ @transaction_associations =
+ options.
+ fetch(:transaction_associations) { DEFAULT_TRANSACTION_ASSOCIATIONS }
+
+ transaction_associations.each do |assoc|
+ unless user.respond_to?(assoc)
+ raise NoMethodError, "#{ user } does not respond to `#{ assoc }'"
+ end
+ end
+ end
+
+ # Public: Sum of the total transactions made by the User
+ #
+ # filter - Optionally filter by created_at during the Symbol named range or
+ # Range (default: :current)
+ #
+ # Returns an Integer
+ # Raises ArgumentError if the argument is an invalid named range or
+ # or otherwise invalid
+ def total(filter = :current)
+ case filter
+ when :current
+ transaction_associations.
+ reduce(0) { |accum, assoc| accum += user.send(assoc).count }
+ when Symbol
+ range_total_count(named_range(filter))
+ when Range
+ range_total_count(filter)
+ else
+ raise ArgumentError, "Invalid argument `#{ filter }'"
+ end
+ end
+
+ # Public: Hash of total transactions grouped by month.
+ # Months with no transactions are not included
+ #
+ # Returns a Hash
+ def total_per_month
+ results = transaction_associations.reduce({}) do |memo, assoc|
+ # Get the grouped counts for the association
+ assoc_results =
+ user.
+ send(assoc).
+ group("DATE_TRUNC('month', created_at)").
+ reorder("date_trunc_month_created_at").
+ count
+
+ # Add the counts to existing keys, or set new keys if they don't exist
+ assoc_results.each do |key, value|
+ memo[key] ||= 0
+ memo[key] += value
+ end
+
+ memo
+ end
+
+ # Convert DateTime keys to String keys
+ results.reduce({}) do |memo, pair|
+ memo[pair.first.to_date.to_s] = pair.last
+ memo
+ end
+ end
+
+ # Public: Returns the average transactions per month since the User was
+ # created.
+ #
+ # Returns a Float
+ def average_per_month
+ total / approx_user_age_in_months.to_f
+ end
+
+ def ==(other)
+ user == other.user &&
+ transaction_associations.sort == other.transaction_associations.sort
+ end
+
+ private
+
+ def range_total_count(range)
+ transaction_associations.
+ reduce(0) do |accum, assoc|
+ accum += user.send(assoc).where(:created_at => range).count
+ end
+ end
+
+ def named_range(symbol)
+ case symbol
+ when :last_7_days
+ 7.days.ago.beginning_of_day..Time.zone.now.end_of_day
+ when :last_30_days
+ 30.days.ago.beginning_of_day..Time.zone.now.end_of_day
+ when :last_30_days
+ 30.days.ago.beginning_of_day..Time.zone.now.end_of_day
+ when :last_quarter
+ end_of_last = Time.zone.now.beginning_of_quarter - 1.day
+ qstart = end_of_last.beginning_of_quarter
+ qend = end_of_last.end_of_quarter
+ qstart..qend
+ else
+ raise ArgumentError, "Invalid range `:#{ symbol }'"
+ end
+ end
+
+ def approx_user_age_in_months
+ difference_in_days = Time.zone.now.to_date - user.created_at.to_date
+ (difference_in_days / 30).floor
+ end
+ end
+end
diff --git a/app/models/widget_vote.rb b/app/models/widget_vote.rb
index dda77007f0..1d65b039ab 100644
--- a/app/models/widget_vote.rb
+++ b/app/models/widget_vote.rb
@@ -15,6 +15,6 @@ class WidgetVote < ActiveRecord::Base
validates :info_request, :presence => true
attr_accessible :cookie
- validates :cookie, :length => { :is => 20 }
- validates_uniqueness_of :cookie, :scope => :info_request_id
+ validates :cookie, length: { is: 20 }
+ validates :cookie, uniqueness: { scope: :info_request_id }
end
diff --git a/app/views/admin_censor_rule/_show.html.erb b/app/views/admin_censor_rule/_show.html.erb
index 04b79639a3..67b6f67e17 100644
--- a/app/views/admin_censor_rule/_show.html.erb
+++ b/app/views/admin_censor_rule/_show.html.erb
@@ -4,7 +4,7 @@
| Id |
<% CensorRule.content_columns.each do |column| %>
- <%= column.human_name %> |
+ <%= column.name.humanize %> |
<% end %>
Actions |
diff --git a/app/views/admin_censor_rule/edit.html.erb b/app/views/admin_censor_rule/edit.html.erb
index 37ffd51332..3aa97844f3 100644
--- a/app/views/admin_censor_rule/edit.html.erb
+++ b/app/views/admin_censor_rule/edit.html.erb
@@ -26,7 +26,7 @@
<%= form_tag admin_censor_rule_path(@censor_rule), :method => 'delete', :class => "form form-inline" do |f| %>
<%= submit_tag "Destroy censor rule",
:class => "btn btn-danger",
- :confirm => 'Are you sure?' %>
+ :data => { :confirm => 'Are you sure?' } %>
Destroying a censor rule permanently destroys the rule
diff --git a/app/views/admin_holidays/_edit_form.html.erb b/app/views/admin_holidays/_edit_form.html.erb
index aa5c9d88de..109bd602e0 100644
--- a/app/views/admin_holidays/_edit_form.html.erb
+++ b/app/views/admin_holidays/_edit_form.html.erb
@@ -7,7 +7,7 @@
<%= form_for @holiday, :url => admin_holiday_path(@holiday), :method => 'delete', :html => { :class => "form form-inline delete-holiday-form" } do |f| %>
<%= f.submit "Destroy",
:class => "btn btn-danger",
- :confirm => 'Are you sure you want to destroy this public holiday?' %>
+ :data => { :confirm => 'Are you sure you want to destroy this public holiday?' } %>
<% end %>
<%= hidden_field_tag 'incoming_message_id', incoming_message.id, :id => nil %>
- <%= submit_tag "Destroy message", :class => "btn btn-danger", :confirm => "This is permanent! Are you sure?", :id => "destroy_message_#{incoming_message.id}" %>
+ <%= submit_tag "Destroy message",
+ :class => "btn btn-danger",
+ :data => { :confirm => "This is permanent! Are you sure?" },
+ :id => "destroy_message_#{incoming_message.id}" %>
<% end %>
@@ -51,6 +54,15 @@
<%= link_to "View raw email", admin_raw_email_path(incoming_message.raw_email_id), :class => "btn" %>
+
- <%= submit_tag "Destroy outgoing message", :class => "btn btn-danger", :confirm => "This is permanent! Are you sure?" %>
+ <%= submit_tag "Destroy outgoing message",
+ :class => "btn btn-danger",
+ :data => { :confirm => "This is permanent! Are you sure?" } %>
<% end %>
diff --git a/app/views/admin_public_body_categories/edit.html.erb b/app/views/admin_public_body_categories/edit.html.erb
index fa74c09531..ce02d74d90 100644
--- a/app/views/admin_public_body_categories/edit.html.erb
+++ b/app/views/admin_public_body_categories/edit.html.erb
@@ -24,7 +24,7 @@
<%= f.submit "Destroy #{ @public_body_category.title }",
:title => @public_body_category.title,
:class => "btn btn-danger",
- :confirm => 'Are you sure?' %>
+ :data => { :confirm => 'Are you sure?' } %>
<% if not @is_owning_user %> - (You will be asked to sign in as <%= user_link(@info_request.user) %>) + <%= _("(You will be asked to sign in as {{user_name}})", + :user_name => user_link(@info_request.user)) %> <% end %>
<% end %> diff --git a/app/views/followups/new.html.erb b/app/views/followups/new.html.erb index a43f2b7ab8..54a6c9ba3d 100644 --- a/app/views/followups/new.html.erb +++ b/app/views/followups/new.html.erb @@ -28,7 +28,7 @@-- <%= _('Add an annotation to your request with choice quotes, ' \
- 'or a summary of the response.') %>
+ <% if AlaveteliConfiguration.enable_annotations %>
+ - <%= _('Add an annotation to your request with choice quotes, ' \
+ 'or a summary of the response.') %>
+ <% end %>
- <%= _('If you can, scan in or photograph the response, and ' \
'send us a copy to upload.') %>
diff --git a/app/views/followups/preview.html.erb b/app/views/followups/preview.html.erb index d6d2b4a1fa..beb2ce5fae 100644 --- a/app/views/followups/preview.html.erb +++ b/app/views/followups/preview.html.erb @@ -1,7 +1,11 @@ <% @title = _("Preview follow up to '") + h(@info_request.public_body.name) + "'" %><%= _('Now preview your message asking for an internal review') %>
diff --git a/app/views/general/_advanced_search_tips.html.erb b/app/views/general/_advanced_search_tips.html.erb index ce197bfb4a..701f15879f 100644 --- a/app/views/general/_advanced_search_tips.html.erb +++ b/app/views/general/_advanced_search_tips.html.erb @@ -9,7 +9,9 @@variety:to select type of thing to search for, see the table of varieties below.', :varieties_url => "#varieties") %>requested_from:home_officeto search requests from the Home Office, typing the name as in the URL.')%>requested_by:julian_toddto search requests made by Julian Todd, typing the name as in the URL.') %>commented_by:tony_bowdento search annotations made by Tony Bowden, typing the name as in the URL.')%>commented_by:tony_bowdento search annotations made by Tony Bowden, typing the name as in the URL.')%>request:to restrict to a specific request, typing the title as in the URL.')%>filetype:pdfto find all responses with PDF attachments. Or try these:{{list_of_file_extensions}}', :list_of_file_extensions => IncomingMessage.get_all_file_extensions)%>01/01/2008..14/01/2008to only show things that happened in the first two weeks of January.')%>