openproject/app/helpers/password_helper.rb

#-- encoding: UTF-8

#-- copyright
# OpenProject is an open source project management software.
# Copyright (C) 2012-2021 the OpenProject GmbH
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License version 3.
#
# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:
# Copyright (C) 2006-2013 Jean-Philippe Lang
# Copyright (C) 2010-2013 the ChiliProject Team
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
#
# See docs/COPYRIGHT.rdoc for more details.
#++

module PasswordHelper
  include PasswordConfirmation

  ##
  # Decorate the form_for helper with the request-for-confirmation directive
  # when the user is internally authenticated.
  def password_confirmation_form_for(record, options = {}, &block)
    if password_confirmation_required?
      options.reverse_merge!(html: {})
      data = options[:html].fetch(:data, {})
      options[:html][:data] = password_confirmation_data_attribute(data)
    end

    form_for(record, options, &block)
  end

  ##
  # Decorate the form_tag helper with the request-for-confirmation directive
  # when the user is internally authenticated.
  def password_confirmation_form_tag(url_for_options = {}, options = {}, &block)
    if password_confirmation_required?
      data = options.fetch(:data, {})
      options[:data] = password_confirmation_data_attribute(data)
    end

    form_tag(url_for_options, options, &block)
  end

  def password_confirmation_data_attribute(with_data = {})
    if password_confirmation_required?
      with_data.merge('request-for-confirmation': true)
    else
      with_data
    end
  end

  def render_password_complexity_hint
    rules = password_rules_description

    s = OpenProject::Passwords::Evaluator.min_length_description
    s += "<br> #{rules}" if rules.present?

    s.html_safe
  end

  private

  # Return a HTML list with active password complexity rules
  def password_active_rules
    rules = OpenProject::Passwords::Evaluator.active_rules_list
    content_tag :ul do
      rules.map { |item| concat(content_tag(:li, item)) }
    end
  end

  # Returns a text describing the active password complexity rules,
  # the minimum number of rules to adhere to and the total number of rules.
  def password_rules_description
    return '' if OpenProject::Passwords::Evaluator.min_adhered_rules == 0

    OpenProject::Passwords::Evaluator.rules_description_locale(password_active_rules)
  end
end
Create custom tooltip that support html 9 years ago			`#-- encoding: UTF-8`
safe automatic fixes by rubocop (#8994) 4 years ago
Create custom tooltip that support html 9 years ago			`#-- copyright`
Update copyright notice 5 years ago			`# OpenProject is an open source project management software.`
update copyright to 2021 (#8925) Updates the copyright to 2021 for all files that have a copyright. Files in our source code without the copyright header still do not receive one automatically. Additionally, backlisted files are also excluded. Previously the copyright of chiliproject which references redmine stated a copyright of redmine up to and including 2017 which is not true for the code we have in here. Because of that I changed that to 2013 4 years ago			`# Copyright (C) 2012-2021 the OpenProject GmbH`
Create custom tooltip that support html 9 years ago			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License version 3.`
			`#`
			`# OpenProject is a fork of ChiliProject, which is a fork of Redmine. The copyright follows:`
update copyright to 2021 (#8925) Updates the copyright to 2021 for all files that have a copyright. Files in our source code without the copyright header still do not receive one automatically. Additionally, backlisted files are also excluded. Previously the copyright of chiliproject which references redmine stated a copyright of redmine up to and including 2017 which is not true for the code we have in here. Because of that I changed that to 2013 4 years ago			`# Copyright (C) 2006-2013 Jean-Philippe Lang`
Create custom tooltip that support html 9 years ago			`# Copyright (C) 2010-2013 the ChiliProject Team`
			`#`
			`# This program is free software; you can redistribute it and/or`
			`# modify it under the terms of the GNU General Public License`
			`# as published by the Free Software Foundation; either version 2`
			`# of the License, or (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program; if not, write to the Free Software`
			`# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`#`
Bump copyright to 2018 (#6171) [ci skip] 7 years ago			`# See docs/COPYRIGHT.rdoc for more details.`
Create custom tooltip that support html 9 years ago			`#++`

			`module PasswordHelper`
rename and inflect according to zeitwerk 5 years ago			`include PasswordConfirmation`
Make global setting for password confirmation Implements a check to request password confirmation only when: 1. `Setting.internal_password_confirmation` is set 2. The user is internally authenticated (`user.uses_external_authentication?` is false) [ci skip] 8 years ago
			`##`
			`# Decorate the form_for helper with the request-for-confirmation directive`
			`# when the user is internally authenticated.`
			`def password_confirmation_form_for(record, options = {}, &block)`
			`if password_confirmation_required?`
			`options.reverse_merge!(html: {})`
			`data = options[:html].fetch(:data, {})`
Only request password confirmation when it has been activated https://community.openproject.com/wp/27385 6 years ago			`options[:html][:data] = password_confirmation_data_attribute(data)`
Make global setting for password confirmation Implements a check to request password confirmation only when: 1. `Setting.internal_password_confirmation` is set 2. The user is internally authenticated (`user.uses_external_authentication?` is false) [ci skip] 8 years ago			`end`

			`form_for(record, options, &block)`
			`end`

			`##`
			`# Decorate the form_tag helper with the request-for-confirmation directive`
			`# when the user is internally authenticated.`
			`def password_confirmation_form_tag(url_for_options = {}, options = {}, &block)`
			`if password_confirmation_required?`
			`data = options.fetch(:data, {})`
Only request password confirmation when it has been activated https://community.openproject.com/wp/27385 6 years ago			`options[:data] = password_confirmation_data_attribute(data)`
Make global setting for password confirmation Implements a check to request password confirmation only when: 1. `Setting.internal_password_confirmation` is set 2. The user is internally authenticated (`user.uses_external_authentication?` is false) [ci skip] 8 years ago			`end`

			`form_tag(url_for_options, options, &block)`
			`end`

Only request password confirmation when it has been activated https://community.openproject.com/wp/27385 6 years ago			`def password_confirmation_data_attribute(with_data = {})`
			`if password_confirmation_required?`
			`with_data.merge('request-for-confirmation': true)`
			`else`
			`with_data`
			`end`
			`end`

Move asset pipeline javascripts to frontend (#8482) * ove reporting and reporting_engine js to frontend page * Replace webhook assets javascript * Add path augment service to dynamically load scripts * Remove JS-Files that are not used/not needed any more * Include AugmentingModule correctly * Remove special handling for checkbox selection which is outdated and two jquery libs that are not used any more * Load scripts dynamically that are not needed globally * Move plugin JS to frontend * Move toggable fieldsets to global listeners * Move top-menu to global listeners and convert to TS * Move action_menu to frontend and port to TS * Move settings listener to frontend * Remove global js assets that were not used anyway * Move date range to timelog dynamic script where it's still used until removed * Move colors to global-listeners and port to TS * Replace tooltip with simple form instructions on the one place used Tooltips were only used at the one place in our application, when changing a users password. We can simply remove it there and use a modern solution the next time we need a tooltip * Move danger zone validation to frontend and port to TS * Move colorcontrast to backlogs vendor where it's used now * Remove contents of application.js.erb * Move project and user scripts to dynamically loaded * Move onboarding tour to dynamically loaded * Use correct syntax for jQuery so that $ is known keyword within this function * Fix onboarding tour * Fix onboarding tour for scrum tour * Fix specs after moving JS * Remove application.js.erb * Move locales and ckeditor to the frontend to dynamically load * Remove bundles caches These are no longer being used since angular cli * Ensure locales are exported before angular Co-authored-by: Henriette Darge <h.darge@openproject.com> 4 years ago			`def render_password_complexity_hint`
Create custom tooltip that support html 9 years ago			`rules = password_rules_description`

Fix change password form Make fields required. Adapt fields to the attribute aria-describedby. 9 years ago			`s = OpenProject::Passwords::Evaluator.min_length_description`
			`s += "<br> #{rules}" if rules.present?`
Fix change-password form Fix render_password_complexity_tooltip when the rules present. Fix sandwiched labels on change-password form. 9 years ago
Fix change password form Make fields required. Adapt fields to the attribute aria-describedby. 9 years ago			`s.html_safe`
Create custom tooltip that support html 9 years ago			`end`

			`private`

			`# Return a HTML list with active password complexity rules`
			`def password_active_rules`
			`rules = OpenProject::Passwords::Evaluator.active_rules_list`
			`content_tag :ul do`
			`rules.map { \|item\| concat(content_tag(:li, item)) }`
			`end`
			`end`

			`# Returns a text describing the active password complexity rules,`
			`# the minimum number of rules to adhere to and the total number of rules.`
			`def password_rules_description`
			`return '' if OpenProject::Passwords::Evaluator.min_adhered_rules == 0`
safe automatic fixes by rubocop (#8994) 4 years ago
Create custom tooltip that support html 9 years ago			`OpenProject::Passwords::Evaluator.rules_description_locale(password_active_rules)`
			`end`
			`end`