local-it/mitgliederverwaltung
2
3
Fork 0
Code Issues 72 Pull requests 3 Projects 4 Releases Packages 1 Activity Actions
811 commits 17 branches 0 tags 7.6 MiB
Commit graph

811 commits

This branch
This branch
All branches
Author SHA1 Message Date
Moritz
77ae5c4888
refactor: Use submit_form wrapper in all LiveView forms 
- Replace AshPhoenix.Form.submit with submit_form/3 wrapper
- Import current_actor and submit_form from LiveHelpers
- Consistent actor handling in all form submissions
 2026-01-13 15:17:06 +01:00
Moritz
897677a782
refactor: Replace actor option patterns with ash_actor_opts helper 
- Replace if actor, do: [actor: actor], else: [] with Mv.Helpers.ash_actor_opts/1
- Update email_sync/loader.ex, member validations, member.ex, cycle_generator.ex
- Consistent actor handling across non-LiveView modules
 2026-01-13 15:17:06 +01:00
Moritz
555ae15173
feat: Add shared helper functions for actor handling 
- Add Mv.Helpers module with ash_actor_opts/1 helper
- Add current_actor/1 with @spec to LiveHelpers
- Add ash_actor_opts/1 delegate and submit_form/3 wrapper to LiveHelpers
- Standardize actor access pattern across LiveViews
 2026-01-13 15:17:06 +01:00
Moritz
970c749a92
test: Add role tag support to ConnCase and fix test issues 
- Add role tag support (@tag role: :admin/:member/:unauthenticated) to ConnCase
- Fix Keyword.get -> Map.get for tags Map
- Remove duplicate test file index_display_name_test.exs
- Fix CustomField creation in tests (remove slug, use :string instead of :text)
- Fix CustomFieldValue value format to use _union_type/_union_value
 2026-01-13 15:17:06 +01:00
Moritz
351eac4c02
Fix error handling and actor access in MemberLive.Index 
Replace bang calls with proper error handling and use current_actor/1
helper for consistent actor access.
 2026-01-13 15:17:05 +01:00
Moritz
145a76348c
Pass actor parameter in seeds and update test setup 
Ensure cycle generation in seeds uses admin actor and update test
to use global admin_user from ConnCase setup.
 2026-01-13 15:17:05 +01:00
Moritz
9ecfe784db
Add missing Gettext translations for member deletion errors 
Add German and English translations for member deletion success and
error messages.
 2026-01-13 15:17:03 +01:00
Moritz
cd7e6b0843
Use current_actor/1 helper in all LiveViews 
Replace inconsistent actor access patterns with current_actor/1 helper
and ensure actor is passed to all Ash operations for proper authorization.
 2026-01-13 15:16:00 +01:00
Moritz
74fe60f768
Pass actor parameter to member email validation 
Extract actor from changeset context and pass it to Ash.read and
Ash.load calls in email uniqueness validation.
 2026-01-13 15:16:00 +01:00
Moritz
5ffd2b334e
Pass actor parameter through email sync operations 
Extract actor from changeset context and pass it to all email sync
loader functions to ensure proper authorization when loading linked
users and members.
 2026-01-13 15:16:00 +01:00
Moritz
dbd79075f5
Pass actor parameter through cycle generation 
Extract actor from changeset context in Member hooks and pass it
through all cycle generation functions to ensure proper authorization.
 2026-01-13 15:15:59 +01:00
Moritz
01cc5aa3a1
Add current_actor/1 helper for consistent actor access 
Provides a single function to access current_user from socket assigns
across all LiveViews, ensuring consistent access pattern.
 2026-01-13 15:15:59 +01:00
Moritz
075a06ba6f
Refactor test setup: use global setup and fix MembershipFees domain alias 
- Remove redundant setup blocks from member_live tests
- Add build_unauthenticated_conn helper for AuthController tests
- Add global setup in conn_case.ex
 2026-01-13 15:15:56 +01:00
Moritz
bc87893134
Integrate Member policies in LiveViews 
- Add on_mount hook to ensure user role is loaded in all Member LiveViews
- Pass actor parameter to all Ash operations (read, get, create, update, destroy, load)
 2026-01-13 15:12:24 +01:00
Moritz
dc3268cbf4
Fix: Update comment in auto_filter to reflect expr(false) usage 
Update comment from 'id IN [] = never matches' to 'expr(false) = match none'
to match the actual implementation of deny_filter().
 2026-01-13 15:01:56 +01:00
Moritz
c95a6fac69
Improve: Make deny_filter robust and add regression test 
- Change deny_filter from [id: {:in, []}] to expr(false)
- Add regression test to ensure deny-filter matches 0 records
 2026-01-13 15:01:55 +01:00
Moritz
42a463f422
Security: Fix critical deny-filter bug and improve authorization 
CRITICAL FIX: Deny-filter was allowing all records instead of denying
Fix: User validation in Member now uses actor from changeset.context
 2026-01-13 15:01:55 +01:00
Moritz
b3eb6c9223
Docs: Correct :linked scope documentation 2026-01-13 15:01:55 +01:00
Moritz
4fffeeaaa0
Fix: Seeds use admin actor instead of NoActor bypass 
This ensures seeds work correctly with the new fail-closed NoActor
policy in production, using proper authorization instead of bypass.
 2026-01-13 15:01:55 +01:00
Moritz
6846363132
Refactor: NoActor to SimpleCheck with compile-time environment check 
This prevents security issues where :create/:read without actor would
be allowed in production. Now all operations require an actor in production.
 2026-01-13 15:01:54 +01:00
Moritz
70729bdd73
Fix: HasPermission auto_filter and strict_check implementation 
Fixes security issue where auto_filter returned nil instead of proper
filter expressions, which could lead to incorrect authorization behavior.
 2026-01-13 15:01:54 +01:00
Moritz
4192922fd3
feat: implement authorization policies for Member resource 2026-01-13 15:01:53 +01:00
Moritz
93190d558f
test: add Member resource policy tests 2026-01-13 15:01:53 +01:00
carla
22d50d6c46 Merge pull request 'add CSV teplate closes #329' (#347) from feature/329_csv_specification into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #347
 2026-01-13 11:02:52 +01:00
carla
469c4c0c1d i18n: update translations
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-01-13 10:55:09 +01:00
carla
6fe75db56d formatting
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-13 10:50:33 +01:00
carla
35895ac7fd fix tests
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-13 10:48:44 +01:00
carla
720a43a38c feat: added csv templates
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-12 17:36:15 +01:00
Simon
3fd6410bb4
style: fix linting
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-12 15:37:58 +01:00
simon
a1b0f65233 Merge pull request 'Add sidebar' (#260) from sidebar into main
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Reviewed-on: #260
 2026-01-12 15:17:28 +01:00
Simon
8a1b14fc79
fix: fix tests and remove navbar remainings
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-12 15:16:31 +01:00
Simon
30805b07ca
chore: remove compose incompatibility with wsl2
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-12 14:16:08 +01:00
Simon
e7515b5450
Merge remote-tracking branch 'origin/main' into sidebar 2026-01-12 14:15:12 +01:00
carla
06a05fcaad Merge pull request 'Implements settings for member fields closes #223' (#300) from feature/223_memberfields_settings into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #300
 2026-01-12 13:24:52 +01:00
carla
922f9f93d0 Merge branch 'main' into feature/223_memberfields_settings
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-01-12 13:15:40 +01:00
carla
77908a1467 fix tests
All checks were successful
continuous-integration/drone/push Build is passing
Details
2026-01-12 11:45:44 +01:00
carla
e38de7d690 chore: rename custom to data field in the UI
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-01-12 09:50:51 +01:00
moritz
35aff50bea Merge pull request 'Custom Policy Check - HasPermission closes #343' (#344) from feature/343_haspermission into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #344
 2026-01-08 18:05:14 +01:00
Moritz
db0a187058
fix: correct relationship filter paths in HasPermission check
All checks were successful
continuous-integration/drone/push Build is passing
Details 
- Use user.id instead of user_id for Member linked scope
- Use member.user.id for CustomFieldValue linked scope
- Add lazy logger evaluation
- Improve action nil handling
- Add integration tests for filter expressions
 2026-01-08 17:45:02 +01:00
Moritz
288002f404 feat: implement HasPermission policy check
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Implement custom Ash Policy Check that reads permissions from
PermissionSets module and applies scope filters to Ash queries.
 2026-01-08 16:48:43 +01:00
Moritz
cba471dcac test: add tests for HasPermission policy check 
Add comprehensive test suite for the HasPermission Ash Policy Check
covering permission lookup, scope application, error handling, and logging.
 2026-01-08 16:48:42 +01:00
moritz
05b611d880 Merge pull request 'Role CRUD LiveViews closes #325' (#326) from feature/325_role_view into main
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Reviewed-on: #326
 2026-01-08 16:21:40 +01:00
Moritz
68c09b761e
perf: optimize load_user_counts with DB-side aggregation
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Replace Elixir-side counting with Ecto GROUP BY COUNT query for
better performance. This avoids loading all users into memory and
performs the aggregation directly in the database.
 2026-01-08 16:20:27 +01:00
Moritz
5ac9ab7ff9
refactor: add opts_with_actor helper and improve error formatting 
Add opts_with_actor helper function to reduce duplication when building
Ash options with actor and domain. Improve format_error documentation
and ensure consistent error message formatting.
 2026-01-08 16:20:27 +01:00
Moritz
34afe798ec
fix: use verified routes in navbar and improve can_access_page? 
Use ~p verified routes instead of string paths in navbar template.
Update can_access_page? to handle both string and verified route paths
for better type safety.
 2026-01-08 16:20:27 +01:00
Moritz
ad0a3cd458
fix: add ensure_user_role_loaded to router live_session globally 2026-01-08 16:20:27 +01:00
Moritz
675ab14fce
fix: correct German translations for role management 
Fix incorrect translations:
- 'Listing Roles' -> 'Rollen auflisten' (was 'Benutzer*innen auflisten')
- 'Custom' -> 'Benutzerdefiniert' (was 'Benutzerdefinierte Felder')
 2026-01-08 16:20:27 +01:00
Moritz
59d656a07c
fix: add authorization check for Roles link in navbar 
Only show Roles link in Settings dropdown for users with admin
permissions, preventing unauthorized access attempts.
 2026-01-08 16:20:26 +01:00
Moritz
32296625fe
refactor: extract shared helpers for RoleLive modules 
Extract format_error and permission_set_badge_class functions into
MvWeb.RoleLive.Helpers module to eliminate code duplication between
Index and Show LiveViews.
 2026-01-08 16:20:26 +01:00
Moritz
e3cd400899
fix: add actor parameter to Ash.load in LiveHelpers 
Use self as actor when loading user role relationship to ensure
proper authorization and policy enforcement.
 2026-01-08 16:20:26 +01:00