Organization onboarding

app/avo/actions/onboard_organization.rb

@@ -0,0 +1,16 @@
+class Avo::Actions::OnboardOrganization < Avo::Actions::ApplicationAction
+  self.name = "Onboard Organization"
+  self.visible = lambda {
+    current_user.team_member?("rubygems-org") && view == :show
+  }
+
+  self.message = lambda {
+    "Are you sure you would like to onboard this organization?"
+  }
+
+  self.confirm_button_label = "Onboard"
+
+  def handle(query:, **_)
+    query.each(&:onboard!)
+  end
+end

app/avo/resources/organization_onboarding.rb

@@ -0,0 +1,27 @@
+class Avo::Resources::OrganizationOnboarding < Avo::BaseResource
+  self.title = :organization_name
+  self.includes = [:invites]
+
+  def actions
+    action Avo::Actions::OnboardOrganization
+  end
+
+  def fields
+    field :id, as: :id
+    field :status, as: :select, enum: OrganizationOnboarding.statuses
+    field :organization_name, as: :text
+    field :organization_handle, as: :text
+    field :created_by, as: :belongs_to
+    field :error, as: :text
+
+    field :onboarded_at, as: :date_time
+    field :created_at, as: :date_time
+    field :updated_at, as: :date_time
+
+    tabs style: :pills do
+      field :users, as: :has_many, through: :invites
+      field :invites, as: :has_many, use_resource: Avo::Resources::OrganizationOnboardingInvite
+      field :organization, as: :has_one
+    end
+  end
+end

app/avo/resources/organization_onboarding_invite.rb

@@ -0,0 +1,11 @@
+class Avo::Resources::OrganizationOnboardingInvite < Avo::BaseResource
+  self.title = :id
+  self.includes = [:organization_onboarding]
+
+  def fields
+    field :id, as: :id
+    field :organization_onboarding, as: :belongs_to
+    field :user, as: :belongs_to
+    field :role, as: :select, enum: OrganizationOnboardingInvite.roles
+  end
+end

app/controllers/application_controller.rb

@@ -70,6 +70,7 @@ def breadcrumbs
   def add_breadcrumb(name, link = nil)
     breadcrumbs << [name, link]
   end
+  helper_method :add_breadcrumb
 
   protected
 

app/controllers/avo/organization_onboarding_invites_controller.rb

@@ -0,0 +1,4 @@
+# This controller has been generated to enable Rails' resource routes.
+# More information on https://docs.avohq.io/2.0/controllers.html
+class Avo::OrganizationOnboardingInvitesController < Avo::ResourcesController
+end

app/controllers/avo/organization_onboardings_controller.rb

@@ -0,0 +1,4 @@
+# This controller has been generated to enable Rails' resource routes.
+# More information on https://docs.avohq.io/2.0/controllers.html
+class Avo::OrganizationOnboardingsController < Avo::ResourcesController
+end

app/controllers/organizations/onboarding/base_controller.rb

@@ -0,0 +1,28 @@
+class Organizations::Onboarding::BaseController < ApplicationController
+  before_action :redirect_to_signin, unless: :signed_in?
+  before_action :redirect_to_new_mfa, if: :mfa_required_not_yet_enabled?
+  before_action :find_or_initialize_onboarding
+  before_action :set_breadcrumbs
+
+  def find_or_initialize_onboarding
+    @organization_onboarding = OrganizationOnboarding.find_or_initialize_by(created_by: Current.user, status: :pending)
+  end
+
+  def set_breadcrumbs
+    add_breadcrumb t("breadcrumbs.dashboard"), dashboard_path
+    add_breadcrumb "Create Org"
+  end
+
+  def available_rubygems
+    @available_rubygems ||= @organization_onboarding.available_rubygems.to_a.tap do |gems|
+      namesake_rubygem = @organization_onboarding.namesake_rubygem
+      gems.unshift gems.delete(namesake_rubygem) if namesake_rubygem
+    end
+  end
+  helper_method :available_rubygems
+
+  def approved_invites
+    @approved_invites ||= @organization_onboarding.approved_invites
+  end
+  helper_method :approved_invites
+end

app/controllers/organizations/onboarding/confirm_controller.rb

@@ -0,0 +1,16 @@
+class Organizations::Onboarding::ConfirmController < Organizations::Onboarding::BaseController
+  layout "onboarding"
+
+  def edit
+  end
+
+  def update
+    @organization_onboarding.onboard!
+
+    flash[:notice] = I18n.t("organization_onboardings.confirm.success")
+    redirect_to organization_path(@organization_onboarding.organization)
+  rescue ActiveRecord::ActiveRecordError
+    flash.now[:error] = "Onboarding error: #{@organization_onboarding.error}"
+    render :edit, status: :unprocessable_entity
+  end
+end

app/controllers/organizations/onboarding/gems_controller.rb

@@ -0,0 +1,20 @@
+class Organizations::Onboarding::GemsController < Organizations::Onboarding::BaseController
+  layout "onboarding"
+
+  def edit
+  end
+
+  def update
+    if @organization_onboarding.update(onboarding_gems_params)
+      redirect_to organization_onboarding_users_path
+    else
+      render :edit, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def onboarding_gems_params
+    params.permit(organization_onboarding: { rubygems: [] }).fetch(:organization_onboarding, {})
+  end
+end

app/controllers/organizations/onboarding/name_controller.rb

@@ -0,0 +1,20 @@
+class Organizations::Onboarding::NameController < Organizations::Onboarding::BaseController
+  layout "onboarding"
+
+  def new
+  end
+
+  def create
+    if @organization_onboarding.update(onboarding_name_params)
+      redirect_to organization_onboarding_gems_path
+    else
+      render :new, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def onboarding_name_params
+    params.require(:organization_onboarding).permit(:organization_name, :organization_handle)
+  end
+end

app/controllers/organizations/onboarding/users_controller.rb

@@ -0,0 +1,27 @@
+class Organizations::Onboarding::UsersController < Organizations::Onboarding::BaseController
+  layout "onboarding"
+
+  def edit
+  end
+
+  def update
+    if @organization_onboarding.update(onboarding_user_params)
+      redirect_to organization_onboarding_confirm_path
+    else
+      render :edit, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def role_options
+    @role_options ||= OrganizationOnboardingInvite.roles.map do |k, _|
+      [Membership.human_attribute_name("role.#{k}"), k]
+    end
+  end
+  helper_method :role_options
+
+  def onboarding_user_params
+    params.require(:organization_onboarding).permit(invites_attributes: %i[id role])
+  end
+end

app/controllers/organizations/onboarding_controller.rb

@@ -0,0 +1,10 @@
+class Organizations::OnboardingController < ApplicationController
+  before_action :redirect_to_signin, unless: :signed_in?
+  before_action :redirect_to_new_mfa, if: :mfa_required_not_yet_enabled?
+
+  def destroy
+    OrganizationOnboarding.destroy_by(created_by: Current.user, status: %i[pending failed])
+
+    redirect_to dashboard_path
+  end
+end

app/controllers/organizations_controller.rb

@@ -0,0 +1,10 @@
+class OrganizationsController < ApplicationController
+  def show
+    render plain: flash[:notice] # HACK: for tests until this view is ready
+  end
+
+  private
+
+  def organization_params
+  end
+end

app/controllers/sessions_controller.rb

@@ -73,6 +73,12 @@ def webauthn_authenticate
     end
   end
 
+  def development_log_in_as
+    user = User.find(params[:user_id])
+    sign_in(user)
+    redirect_back_or_to dashboard_path
+  end
+
   private
 
   def mark_verified

app/javascript/controllers/application.js

@@ -1,10 +1,12 @@
 import { Application } from "@hotwired/stimulus"
 import Clipboard from '@stimulus-components/clipboard'
+import CheckboxSelectAll from '@stimulus-components/checkbox-select-all'
 
 const application = Application.start()
 
 // Add vendored controllers
 application.register('clipboard', Clipboard)
+application.register('checkbox-select-all', CheckboxSelectAll)
 
 // Configure Stimulus development experience
 application.debug = false

app/javascript/controllers/counter_controller.js

@@ -0,0 +1,24 @@
+import { Controller } from "@hotwired/stimulus"
+
+export default class extends Controller {
+  static targets = ["counter", "checked"]
+
+  connect() {
+    this.update()
+  }
+
+  checkedTargetConnected(el) {
+    el.addEventListener("change", this.update.bind(this))
+    el.addEventListener("input", this.update.bind(this)) // input emitted by checkbox-select-all controller
+  }
+
+  checkedTargetdisconnected(el) {
+    el.removeEventListener("change", this.update.bind(this))
+    el.removeEventListener("input", this.update.bind(this))
+  }
+
+  update() {
+    const count = this.checkedTargets.filter(el => el.checked).length
+    this.counterTarget.textContent = count
+  }
+}

app/javascript/controllers/onboarding_name_controller.js

@@ -0,0 +1,74 @@
+import { Controller } from "@hotwired/stimulus"
+
+export default class extends Controller {
+  static targets = [
+    "radio",
+    "gemname",
+    "username",
+    "reveal",
+    "displayname",
+    "submit",
+  ]
+
+  connect() {
+    this.submitTarget.disabled = true
+    this.radioTargets.forEach((radio) => {
+      if (radio.checked) {
+        this[radio.value+"name"]()
+      }
+    })
+  }
+
+  gemnameField() {
+    return this.gemnameTarget.querySelector("select")
+  }
+
+  usernameField() {
+    return this.usernameTarget.querySelector("input")
+  }
+
+  gemname() {
+    this.usernameTarget.classList.add("hidden")
+
+    this.gemnameField().disabled = false
+    this.gemnameTarget.classList.remove("hidden")
+    this.revealTarget.classList.remove("hidden")
+
+    const inputElement = this.gemnameField()
+    inputElement.focus()
+    this.updateDisplaynameWith(inputElement.value)
+    if (inputElement.value === "") {
+      this.submitTarget.disabled = true
+    }
+    this.validate()
+  }
+
+  username() {
+    this.gemnameTarget.classList.add("hidden")
+    this.gemnameField().disabled = true
+
+    this.usernameTarget.classList.remove("hidden")
+    this.revealTarget.classList.remove("hidden")
+
+    this.updateDisplaynameWith(this.usernameField().value)
+    this.validate()
+  }
+
+  validate() {
+    if (this.element.checkValidity()) {
+      this.submitTarget.disabled = false
+    } else {
+      this.submitTarget.disabled = true
+    }
+  }
+
+  updateDisplayname(e) {
+    this.updateDisplaynameWith(e.currentTarget.value)
+    this.validate()
+  }
+
+  updateDisplaynameWith(value) {
+    // Replace dashes and underscores with spaces. Capitalize the first letter of each word.
+    this.displaynameTarget.value = value.replace(/[-_]/g, " ").replace(/\b\w/g, (char) => char.toUpperCase())
+  }
+}

app/javascript/controllers/radio_reveal_controller.js

@@ -0,0 +1,25 @@
+import { Controller } from "@hotwired/stimulus"
+
+export default class extends Controller {
+  static targets = [
+    "radio",
+    "item",
+  ]
+
+  connect() {
+    this.update()
+  }
+
+  update() {
+    this.itemTargets.forEach(item => {
+      item.classList.add("hidden")
+    })
+
+    this.radioTargets.forEach(radio => {
+      if (radio.checked) {
+        const item = this.itemTargets.find(item => item.dataset.name == radio.value)
+        item.classList.remove("hidden")
+      }
+    })
+  }
+}

app/javascript/controllers/scroll_controller.js

@@ -12,4 +12,8 @@ export default class extends Controller {
   scrollTargetConnected() {
     this.scrollTarget.scrollIntoView({ behavior: "smooth" })
   }
+
+  scroll(e) {
+    e.currentTarget.scrollIntoView({ behavior: "smooth" })
+  }
 }

app/models/membership.rb

@@ -5,7 +5,9 @@ class Membership < ApplicationRecord
   scope :unconfirmed, -> { where(confirmed_at: nil) }
   scope :confirmed, -> { where.not(confirmed_at: nil) }
 
-  enum :role, { owner: Access::OWNER, maintainer: Access::MAINTAINER, admin: Access::ADMIN }, validate: true, default: :maintainer
+  enum :role, { owner: Access::OWNER, admin: Access::ADMIN, maintainer: Access::MAINTAINER }, validate: true, default: :maintainer
+
+  scope :with_minimum_role, ->(role) { where(role: Access.flag_for_role(role)...) }
 
   def confirmed?
     !confirmed_at.nil?