](https://repocloud.io/details/?app_id=252) | |
-
#### Docker
```sh
@@ -101,3 +102,9 @@ At DocuSeal we have expertise and technologies to make documents creation, filli
Distributed under the AGPLv3 License. See [LICENSE](https://github.com/docusealco/docuseal/blob/master/LICENSE) for more information.
Unless otherwise noted, all files © 2023 DocuSeal LLC.
+
+## Tools
+
+- [Signature Maker](https://www.docuseal.co/online-signature)
+- [Sign Document Online](https://www.docuseal.co/sign-documents-online)
+- [Fill PDF Online](https://www.docuseal.co/fill-pdf)
diff --git a/app/controllers/account_configs_controller.rb b/app/controllers/account_configs_controller.rb
index 5d33a547..3bc36334 100644
--- a/app/controllers/account_configs_controller.rb
+++ b/app/controllers/account_configs_controller.rb
@@ -8,9 +8,12 @@ class AccountConfigsController < ApplicationController
AccountConfig::ALLOW_TYPED_SIGNATURE,
AccountConfig::FORCE_MFA,
AccountConfig::ALLOW_TO_RESUBMIT,
- AccountConfig::ESIGNING_PREFERENCE_KEY
+ AccountConfig::ESIGNING_PREFERENCE_KEY,
+ AccountConfig::FORM_WITH_CONFETTI_KEY
].freeze
+ InvalidKey = Class.new(StandardError)
+
def create
@account_config.update!(account_config_params)
@@ -20,7 +23,7 @@ class AccountConfigsController < ApplicationController
private
def load_account_config
- return head :not_found unless ALLOWED_KEYS.include?(account_config_params[:key])
+ raise InvalidKey unless ALLOWED_KEYS.include?(account_config_params[:key])
@account_config =
AccountConfig.find_or_initialize_by(account: current_account, key: account_config_params[:key])
diff --git a/app/controllers/api/active_storage_blobs_proxy_controller.rb b/app/controllers/api/active_storage_blobs_proxy_controller.rb
index 4f2968cc..0a9c68c1 100644
--- a/app/controllers/api/active_storage_blobs_proxy_controller.rb
+++ b/app/controllers/api/active_storage_blobs_proxy_controller.rb
@@ -10,9 +10,9 @@ module Api
before_action :set_cors_headers
def show
- blob_uuid, = ApplicationRecord.signed_id_verifier.verified(params[:signed_uuid])
+ blob_uuid, purp, exp = ApplicationRecord.signed_id_verifier.verified(params[:signed_uuid])
- if blob_uuid.blank?
+ if blob_uuid.blank? || (purp.present? && purp != 'blob') || (exp && exp < Time.current.to_i)
Rollbar.error('Blob not found') if defined?(Rollbar)
return head :not_found
diff --git a/app/controllers/api/active_storage_blobs_proxy_legacy_controller.rb b/app/controllers/api/active_storage_blobs_proxy_legacy_controller.rb
index fca401f1..54c3ed72 100644
--- a/app/controllers/api/active_storage_blobs_proxy_legacy_controller.rb
+++ b/app/controllers/api/active_storage_blobs_proxy_legacy_controller.rb
@@ -11,7 +11,9 @@ module Api
def show
Rollbar.info('Blob legacy') if defined?(Rollbar)
- blob = ActiveStorage::Blob.find_signed!(params[:signed_blob_id] || params[:signed_id])
+ blob = ActiveStorage::Blob.find_signed(params[:signed_blob_id] || params[:signed_id])
+
+ return head :not_found unless blob
is_permitted = blob.attachments.any? do |a|
(current_user && a.record.account.id == current_user.account_id) ||
diff --git a/app/controllers/api/api_base_controller.rb b/app/controllers/api/api_base_controller.rb
index b5375445..86ead819 100644
--- a/app/controllers/api/api_base_controller.rb
+++ b/app/controllers/api/api_base_controller.rb
@@ -19,6 +19,12 @@ module Api
render json: { error: e.message }, status: :unprocessable_entity
end
+ rescue_from RateLimit::LimitApproached do |e|
+ Rollbar.error(e) if defined?(Rollbar)
+
+ render json: { error: 'Too many requests' }, status: :too_many_requests
+ end
+
if Rails.env.production?
rescue_from CanCan::AccessDenied do |e|
Rollbar.warning(e) if defined?(Rollbar)
@@ -39,8 +45,8 @@ module Api
result = relation.order(id: :desc)
.limit([params.fetch(:limit, DEFAULT_LIMIT).to_i, MAX_LIMIT].min)
- result = result.where(relation.arel_table[:id].lt(params[:after])) if params[:after].present?
- result = result.where(relation.arel_table[:id].gt(params[:before])) if params[:before].present?
+ result = result.where(id: ...params[:after].to_i) if params[:after].present?
+ result = result.where(id: (params[:before].to_i + 1)...) if params[:before].present?
result
end
diff --git a/app/controllers/api/submitters_autocomplete_controller.rb b/app/controllers/api/submitters_autocomplete_controller.rb
index ff7dc2e6..e28e25c7 100644
--- a/app/controllers/api/submitters_autocomplete_controller.rb
+++ b/app/controllers/api/submitters_autocomplete_controller.rb
@@ -24,9 +24,9 @@ module Api
if SELECT_COLUMNS.include?(params[:field])
column = Submitter.arel_table[params[:field].to_sym]
- term = "%#{params[:q].downcase}%"
+ term = "#{params[:q].downcase}%"
- submitters.where(column.lower.matches(term))
+ submitters.where(column.matches(term, false, true))
else
Submitters.search(submitters, params[:q])
end
diff --git a/app/controllers/api/submitters_controller.rb b/app/controllers/api/submitters_controller.rb
index f69f43f3..3d2c3567 100644
--- a/app/controllers/api/submitters_controller.rb
+++ b/app/controllers/api/submitters_controller.rb
@@ -10,6 +10,7 @@ module Api
submitters = submitters.where(external_id: params[:application_key]) if params[:application_key].present?
submitters = submitters.where(external_id: params[:external_id]) if params[:external_id].present?
submitters = submitters.where(submission_id: params[:submission_id]) if params[:submission_id].present?
+ submitters = maybe_filder_by_completed_at(submitters, params)
submitters = paginate(
submitters.preload(:template, :submission, :submission_events,
@@ -81,6 +82,18 @@ module Api
private
+ def maybe_filder_by_completed_at(submitters, params)
+ if params[:completed_after].present?
+ submitters = submitters.where(completed_at: Time.zone.parse(params[:completed_after])..)
+ end
+
+ if params[:completed_before].present?
+ submitters = submitters.where(completed_at: ..Time.zone.parse(params[:completed_before]))
+ end
+
+ submitters
+ end
+
def assign_submitter_attrs(submitter, attrs)
submitter.email = Submissions.normalize_email(attrs[:email]) if attrs.key?(:email)
submitter.phone = attrs[:phone].to_s.gsub(/[^0-9+]/, '') if attrs.key?(:phone)
diff --git a/app/controllers/api/templates_clone_controller.rb b/app/controllers/api/templates_clone_controller.rb
index ebba87bb..a07fa310 100644
--- a/app/controllers/api/templates_clone_controller.rb
+++ b/app/controllers/api/templates_clone_controller.rb
@@ -20,16 +20,7 @@ module Api
Templates::CloneAttachments.call(template: cloned_template, original_template: @template)
- render json: cloned_template.as_json(serialize_params)
- end
-
- private
-
- def serialize_params
- {
- include: { author: { only: %i[id email first_name last_name] },
- documents: { only: %i[id uuid], methods: %i[url filename] } }
- }
+ render json: Templates::SerializeForApi.call(cloned_template)
end
end
end
diff --git a/app/controllers/api/templates_controller.rb b/app/controllers/api/templates_controller.rb
index 61d45a8b..8e35e1ae 100644
--- a/app/controllers/api/templates_controller.rb
+++ b/app/controllers/api/templates_controller.rb
@@ -7,10 +7,31 @@ module Api
def index
templates = filter_templates(@templates, params)
- templates = paginate(templates.preload(:author, documents_attachments: :blob))
+ templates = paginate(templates.preload(:author, :folder))
+
+ schema_documents =
+ ActiveStorage::Attachment.where(record_id: templates.map(&:id),
+ record_type: 'Template',
+ name: :documents,
+ uuid: templates.flat_map { |t| t.schema.pluck('attachment_uuid') })
+ .preload(:blob)
+
+ preview_image_attachments =
+ ActiveStorage::Attachment.joins(:blob)
+ .where(blob: { filename: '0.jpg' })
+ .where(record_id: schema_documents.map(&:id),
+ record_type: 'ActiveStorage::Attachment',
+ name: :preview_images)
+ .preload(:blob)
render json: {
- data: templates.as_json(serialize_params),
+ data: templates.map do |t|
+ Templates::SerializeForApi.call(
+ t,
+ schema_documents.select { |e| e.record_id == t.id },
+ preview_image_attachments
+ )
+ end,
pagination: {
count: templates.size,
next: templates.last&.id,
@@ -20,7 +41,7 @@ module Api
end
def show
- render json: @template.as_json(serialize_params)
+ render json: Templates::SerializeForApi.call(@template)
end
def update
@@ -61,22 +82,18 @@ module Api
templates
end
- def serialize_params
- {
- methods: %i[application_key],
- include: { author: { only: %i[id email first_name last_name] },
- documents: { only: %i[id uuid], methods: %i[url preview_image_url filename] } }
- }
- end
-
def template_params
permit_params = [
:name,
{ schema: [%i[attachment_uuid name]],
submitters: [%i[name uuid]],
- fields: [[:uuid, :submitter_uuid, :name, :type, :required, :readonly, :default_value,
+ fields: [[:uuid, :submitter_uuid, :name, :type,
+ :required, :readonly, :default_value,
+ :title, :description,
{ preferences: {},
+ conditions: [%i[field_uuid value action]],
options: [%i[value uuid]],
+ validation: %i[message pattern],
areas: [%i[x y w h cell_w attachment_uuid option_uuid page]] }]] }
]
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 19547214..0b3dd112 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -22,6 +22,12 @@ class ApplicationController < ActionController::Base
redirect_to request.path
end
+ rescue_from RateLimit::LimitApproached do |e|
+ Rollbar.error(e) if defined?(Rollbar)
+
+ redirect_to request.referer, alert: 'Too many requests', status: :too_many_requests
+ end
+
if Rails.env.production?
rescue_from CanCan::AccessDenied do |e|
Rollbar.warning(e) if defined?(Rollbar)
diff --git a/app/controllers/console_redirect_controller.rb b/app/controllers/console_redirect_controller.rb
index f6042225..84fc0c89 100644
--- a/app/controllers/console_redirect_controller.rb
+++ b/app/controllers/console_redirect_controller.rb
@@ -5,6 +5,10 @@ class ConsoleRedirectController < ApplicationController
skip_authorization_check
def index
+ if request.path == '/upgrade'
+ params[:redir] = Docuseal.multitenant? ? "#{Docuseal::CONSOLE_URL}/plans" : "#{Docuseal::CONSOLE_URL}/on_premise"
+ end
+
return redirect_to(new_user_session_path({ redir: params[:redir] }.compact)) if true_user.blank?
auth = JsonWebToken.encode(uuid: true_user.uuid,
diff --git a/app/controllers/dashboard_controller.rb b/app/controllers/dashboard_controller.rb
index 0f5ab590..4047dda3 100644
--- a/app/controllers/dashboard_controller.rb
+++ b/app/controllers/dashboard_controller.rb
@@ -54,10 +54,14 @@ class DashboardController < ApplicationController
rel = templates.active.preload(:author).order(id: :desc)
if params[:q].blank?
- shared_template_ids =
- TemplateSharing.where(account_id: [current_account.id, TemplateSharing::ALL_ID]).select(:template_id)
-
- rel = rel.where(folder_id: current_account.default_template_folder.id).or(rel.where(id: shared_template_ids))
+ if Docuseal.multitenant? && !current_account.testing?
+ rel = rel.where(folder_id: current_account.default_template_folder.id)
+ else
+ shared_template_ids =
+ TemplateSharing.where(account_id: [current_account.id, TemplateSharing::ALL_ID]).select(:template_id)
+
+ rel = rel.where(folder_id: current_account.default_template_folder.id).or(rel.where(id: shared_template_ids))
+ end
end
Templates.search(rel, params[:q])
diff --git a/app/controllers/errors_controller.rb b/app/controllers/errors_controller.rb
index 8d422205..b3619b70 100644
--- a/app/controllers/errors_controller.rb
+++ b/app/controllers/errors_controller.rb
@@ -22,6 +22,8 @@ class ErrorsController < ActionController::Base
respond_to do |f|
f.json do
+ set_cors_headers
+
render json: { status: error_status_code }, status: error_status_code
end
@@ -31,6 +33,14 @@ class ErrorsController < ActionController::Base
private
+ def set_cors_headers
+ headers['Access-Control-Allow-Origin'] = '*'
+ headers['Access-Control-Allow-Methods'] = 'POST, GET, PUT, PATCH, DELETE, OPTIONS'
+ headers['Access-Control-Allow-Headers'] = '*'
+ headers['Access-Control-Max-Age'] = '1728000'
+ headers['Access-Control-Allow-Credentials'] = true
+ end
+
def error_status_code
@error_status_code ||=
ActionDispatch::ExceptionWrapper.new(request.env,
diff --git a/app/controllers/personalization_settings_controller.rb b/app/controllers/personalization_settings_controller.rb
index 58a641de..76716fbd 100644
--- a/app/controllers/personalization_settings_controller.rb
+++ b/app/controllers/personalization_settings_controller.rb
@@ -1,26 +1,51 @@
# frozen_string_literal: true
class PersonalizationSettingsController < ApplicationController
+ ALLOWED_KEYS = [
+ AccountConfig::FORM_COMPLETED_BUTTON_KEY,
+ AccountConfig::SUBMITTER_INVITATION_EMAIL_KEY,
+ AccountConfig::SUBMITTER_DOCUMENTS_COPY_EMAIL_KEY,
+ AccountConfig::SUBMITTER_COMPLETED_EMAIL_KEY
+ ].freeze
+
+ InvalidKey = Class.new(StandardError)
+
+ before_action :load_and_authorize_account_config, only: :create
+
def show
authorize!(:read, AccountConfig)
end
def create
- account_config =
- current_account.account_configs.find_or_initialize_by(key: account_config_params[:key])
-
- authorize!(:create, account_config)
-
- account_config.update!(account_config_params)
+ if @account_config.value != false && @account_config.value.blank?
+ @account_config.destroy!
+ else
+ @account_config.save!
+ end
redirect_back(fallback_location: settings_personalization_path, notice: 'Settings have been saved.')
end
private
+ def load_and_authorize_account_config
+ @account_config =
+ current_account.account_configs.find_or_initialize_by(key: account_config_params[:key])
+
+ @account_config.assign_attributes(account_config_params)
+
+ authorize!(:create, @account_config)
+
+ raise InvalidKey unless ALLOWED_KEYS.include?(@account_config.key)
+
+ @account_config
+ end
+
def account_config_params
attrs = params.require(:account_config).permit!
+ return attrs if attrs[:value].is_a?(String)
+
attrs[:value]&.transform_values! do |value|
if value.in?(%w[true false])
value == 'true'
diff --git a/app/controllers/preview_document_page_controller.rb b/app/controllers/preview_document_page_controller.rb
index cfee948a..271d6169 100644
--- a/app/controllers/preview_document_page_controller.rb
+++ b/app/controllers/preview_document_page_controller.rb
@@ -8,7 +8,7 @@ class PreviewDocumentPageController < ActionController::API
def show
attachment_uuid = ApplicationRecord.signed_id_verifier.verified(params[:signed_uuid], purpose: :attachment)
- attachment = ActiveStorage::Attachment.find_by(uuid: attachment_uuid, name: :preview_images) if attachment_uuid
+ attachment = ActiveStorage::Attachment.find_by(uuid: attachment_uuid) if attachment_uuid
return head :not_found unless attachment
diff --git a/app/controllers/registrations_controller.rb b/app/controllers/registrations_controller.rb
deleted file mode 100644
index d0b4a403..00000000
--- a/app/controllers/registrations_controller.rb
+++ /dev/null
@@ -1,62 +0,0 @@
-# frozen_string_literal: true
-
-class RegistrationsController < Devise::RegistrationsController
- prepend_before_action :require_no_authentication, only: [:show]
- prepend_before_action :maybe_redirect_if_signed_in, only: [:show]
-
- def show; end
-
- def create
- super
-
- Accounts.create_default_template(resource.account) if resource.account.persisted?
- end
-
- private
-
- def after_sign_up_path_for(...)
- if params[:redir].present?
- return console_redirect_index_path(redir: params[:redir]) if params[:redir].starts_with?(Docuseal::CONSOLE_URL)
-
- return params[:redir]
- end
-
- super
- end
-
- def maybe_redirect_if_signed_in
- return unless signed_in?
- return if params[:redir].blank?
-
- redirect_to after_sign_up_path_for(current_user), allow_other_host: true
- end
-
- def set_flash_message(key, kind, options = {})
- return if key == :alert && kind == 'already_authenticated'
-
- super
- end
-
- def build_resource(_hash = {})
- account = Account.new(account_params)
- account.timezone = Accounts.normalize_timezone(account.timezone)
-
- self.resource = account.users.new(user_params)
-
- account.name ||= resource.full_name if params[:action] == 'create'
- end
-
- def user_params
- return {} if params[:user].blank?
-
- params.require(:user).permit(:first_name, :last_name, :email, :password).compact_blank.tap do |attrs|
- attrs[:password] ||= SecureRandom.hex if params[:action] == 'create'
- end
- end
-
- def account_params
- return {} if params[:account].blank?
-
- params.require(:account).permit(:name, :timezone).compact_blank
- end
-end
diff --git a/app/controllers/send_submission_email_controller.rb b/app/controllers/send_submission_email_controller.rb
index 28e2a364..8e74c348 100644
--- a/app/controllers/send_submission_email_controller.rb
+++ b/app/controllers/send_submission_email_controller.rb
@@ -12,13 +12,18 @@ class SendSubmissionEmailController < ApplicationController
def create
@submitter =
if params[:template_slug]
- Submitter.joins(submission: :template).find_by!(email: params[:email],
+ Submitter.joins(submission: :template).find_by!(email: params[:email].to_s.downcase,
template: { slug: params[:template_slug] })
+ elsif params[:submission_slug]
+ Submitter.joins(:submission).find_by!(email: params[:email].to_s.downcase,
+ submission: { slug: params[:submission_slug] })
else
Submitter.find_by!(slug: params[:submitter_slug])
end
- SubmitterMailer.documents_copy_email(@submitter).deliver_later!
+ RateLimit.call("send-email-#{@submitter.id}", limit: 2, ttl: 5.minutes)
+
+ SubmitterMailer.documents_copy_email(@submitter, sig: true).deliver_later!
respond_to do |f|
f.html { redirect_to success_send_submission_email_index_path }
diff --git a/app/controllers/submissions_controller.rb b/app/controllers/submissions_controller.rb
index fcc7b90b..69f3aa49 100644
--- a/app/controllers/submissions_controller.rb
+++ b/app/controllers/submissions_controller.rb
@@ -6,23 +6,8 @@ class SubmissionsController < ApplicationController
load_and_authorize_resource :submission, only: %i[show destroy]
- PRELOAD_ALL_PAGES_AMOUNT = 200
-
def show
- ActiveRecord::Associations::Preloader.new(
- records: [@submission],
- associations: [:template, { template_schema_documents: :blob }]
- ).call
-
- total_pages =
- @submission.template_schema_documents.sum { |e| e.metadata.dig('pdf', 'number_of_pages').to_i }
-
- if total_pages < PRELOAD_ALL_PAGES_AMOUNT
- ActiveRecord::Associations::Preloader.new(
- records: @submission.template_schema_documents,
- associations: [:blob, { preview_images_attachments: :blob }]
- ).call
- end
+ @submission = Submissions.preload_with_pages(@submission)
render :show, layout: 'plain'
end
diff --git a/app/controllers/submissions_download_controller.rb b/app/controllers/submissions_download_controller.rb
index e9ce7adc..334204f8 100644
--- a/app/controllers/submissions_download_controller.rb
+++ b/app/controllers/submissions_download_controller.rb
@@ -4,10 +4,20 @@ class SubmissionsDownloadController < ApplicationController
skip_before_action :authenticate_user!
skip_authorization_check
- TTL = 20.minutes
+ TTL = 40.minutes
+ FILES_TTL = 5.minutes
def index
- submitter = Submitter.find_by!(slug: params[:submitter_slug])
+ submitter = Submitter.find_signed(params[:sig], purpose: :download_completed) if params[:sig].present?
+
+ signature_valid =
+ if submitter&.slug == params[:submitter_slug]
+ true
+ else
+ submitter = nil
+ end
+
+ submitter ||= Submitter.find_by!(slug: params[:submitter_slug])
Submissions::EnsureResultGenerated.call(submitter)
@@ -17,18 +27,24 @@ class SubmissionsDownloadController < ApplicationController
return head :not_found unless last_submitter.completed_at?
- if last_submitter.completed_at < TTL.ago &&
- (current_user.nil? || !current_user.account.submitters.exists?(id: last_submitter.id))
+ if last_submitter.completed_at < TTL.ago && !signature_valid && !current_user_submitter?(last_submitter)
Rollbar.info("TTL: #{last_submitter.id}") if defined?(Rollbar)
return head :not_found
end
- urls =
- Submitters.select_attachments_for_download(last_submitter).map do |attachment|
- ActiveStorage::Blob.proxy_url(attachment.blob)
- end
+ render json: build_urls(last_submitter)
+ end
- render json: urls
+ private
+
+ def current_user_submitter?(submitter)
+ current_user && current_user.account.submitters.exists?(id: submitter.id)
+ end
+
+ def build_urls(submitter)
+ Submitters.select_attachments_for_download(submitter).map do |attachment|
+ ActiveStorage::Blob.proxy_url(attachment.blob, expires_at: FILES_TTL.minutes.from_now.to_i)
+ end
end
end
diff --git a/app/controllers/submissions_preview_controller.rb b/app/controllers/submissions_preview_controller.rb
index 12db79cf..dbf29294 100644
--- a/app/controllers/submissions_preview_controller.rb
+++ b/app/controllers/submissions_preview_controller.rb
@@ -4,37 +4,31 @@ class SubmissionsPreviewController < ApplicationController
skip_before_action :authenticate_user!
skip_authorization_check
- PRELOAD_ALL_PAGES_AMOUNT = 200
-
- TTL = 20.minutes
+ TTL = 40.minutes
def show
- @submission = Submission.find_by!(slug: params[:slug])
+ submitter = Submitter.find_signed(params[:sig], purpose: :download_completed) if params[:sig].present?
+
+ signature_valid =
+ if submitter && submitter.submission.slug == params[:slug]
+ @submission = submitter.submission
+
+ true
+ end
+
+ @submission ||= Submission.find_by!(slug: params[:slug])
if !@submission.submitters.all?(&:completed_at?) && current_user.blank?
raise ActionController::RoutingError, 'Not Found'
end
- unless submission_valid_ttl?(@submission)
+ if !submission_valid_ttl?(@submission) && !signature_valid
Rollbar.info("TTL: #{@submission.id}") if defined?(Rollbar)
return redirect_to submissions_preview_completed_path(@submission.slug)
end
- ActiveRecord::Associations::Preloader.new(
- records: [@submission],
- associations: [:template, { template_schema_documents: :blob }]
- ).call
-
- total_pages =
- @submission.template_schema_documents.sum { |e| e.metadata.dig('pdf', 'number_of_pages').to_i }
-
- if total_pages < PRELOAD_ALL_PAGES_AMOUNT
- ActiveRecord::Associations::Preloader.new(
- records: @submission.template_schema_documents,
- associations: [:blob, { preview_images_attachments: :blob }]
- ).call
- end
+ @submission = Submissions.preload_with_pages(@submission)
render 'submissions/show', layout: 'plain'
end
@@ -42,7 +36,7 @@ class SubmissionsPreviewController < ApplicationController
def completed
@submission = Submission.find_by!(slug: params[:submissions_preview_slug])
- render :completed, layout: 'plain'
+ render :completed, layout: 'form'
end
private
diff --git a/app/controllers/user_configs_controller.rb b/app/controllers/user_configs_controller.rb
new file mode 100644
index 00000000..834cc1d9
--- /dev/null
+++ b/app/controllers/user_configs_controller.rb
@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+class UserConfigsController < ApplicationController
+ before_action :load_user_config
+ authorize_resource :user_config
+
+ ALLOWED_KEYS = [
+ UserConfig::RECEIVE_COMPLETED_EMAIL
+ ].freeze
+
+ InvalidKey = Class.new(StandardError)
+
+ def create
+ @user_config.update!(user_config_params)
+
+ head :ok
+ end
+
+ private
+
+ def load_user_config
+ raise InvalidKey unless ALLOWED_KEYS.include?(user_config_params[:key])
+
+ @user_config =
+ UserConfig.find_or_initialize_by(user: current_user, key: user_config_params[:key])
+ end
+
+ def user_config_params
+ params.required(:user_config).permit!.tap do |attrs|
+ attrs[:value] = attrs[:value] == '1' if attrs[:value].in?(%w[1 0])
+ end
+ end
+end
diff --git a/app/javascript/application.js b/app/javascript/application.js
index dc2df889..0a9629fa 100644
--- a/app/javascript/application.js
+++ b/app/javascript/application.js
@@ -20,6 +20,7 @@ import FolderAutocomplete from './elements/folder_autocomplete'
import SignatureForm from './elements/signature_form'
import SubmitForm from './elements/submit_form'
import PromptPassword from './elements/prompt_password'
+import EmailsTextarea from './elements/emails_textarea'
import * as TurboInstantClick from './lib/turbo_instant_click'
@@ -53,6 +54,7 @@ window.customElements.define('folder-autocomplete', FolderAutocomplete)
window.customElements.define('signature-form', SignatureForm)
window.customElements.define('submit-form', SubmitForm)
window.customElements.define('prompt-password', PromptPassword)
+window.customElements.define('emails-textarea', EmailsTextarea)
document.addEventListener('turbo:before-fetch-request', encodeMethodIntoRequestBody)
document.addEventListener('turbo:submit-end', async (event) => {
@@ -90,6 +92,8 @@ window.customElements.define('template-builder', class extends HTMLElement {
withLogo: this.dataset.withLogo !== 'false',
editable: this.dataset.editable !== 'false',
withPayment: this.dataset.withPayment === 'true',
+ withFormula: this.dataset.withFormula === 'true',
+ withConditions: this.dataset.withConditions === 'true',
currencies: (this.dataset.currencies || '').split(',').filter(Boolean),
acceptFileTypes: this.dataset.acceptFileTypes,
isDirectUpload: this.dataset.isDirectUpload === 'true'
diff --git a/app/javascript/application.scss b/app/javascript/application.scss
index 9a220258..f0d6429a 100644
--- a/app/javascript/application.scss
+++ b/app/javascript/application.scss
@@ -75,16 +75,16 @@ button[disabled] .enabled {
@apply select base-input w-full font-normal;
}
-.tooltip-bottom-start:before {
- transform: translateX(-30%);
+.tooltip-bottom-end:before {
+ transform: translateX(-95%);
top: var(--tooltip-offset);
left: 100%;
right: auto;
bottom: auto;
}
-.tooltip-bottom-start:after {
- transform: translateX(-75%);
+.tooltip-bottom-end:after {
+ transform: translateX(-25%);
border-color: transparent transparent var(--tooltip-color) transparent;
top: var(--tooltip-tail-offset);
left: 50%;
@@ -125,3 +125,7 @@ button[disabled] .enabled {
outline-offset: 3px;
outline-color: hsl(var(--bc) / 0.2);
}
+
+select:required:invalid {
+ color: gray !important;
+}
diff --git a/app/javascript/elements/emails_textarea.js b/app/javascript/elements/emails_textarea.js
new file mode 100644
index 00000000..dde8109f
--- /dev/null
+++ b/app/javascript/elements/emails_textarea.js
@@ -0,0 +1,56 @@
+const emailRegexp = /([^@;,<>\s]+@[^@;,<>\s]+)/g
+
+export default class extends HTMLElement {
+ connectedCallback () {
+ if (this.dataset.limit) {
+ this.textarea.addEventListener('input', () => {
+ const emails = this.textarea.value.match(emailRegexp) || []
+
+ this.updateCounter(emails.length)
+ })
+ }
+ }
+
+ updateCounter (count) {
+ let counter = document.getElementById('emails_counter')
+ let bulkMessage = document.getElementById('bulk_message')
+
+ if (count < 2) {
+ counter?.remove()
+
+ return
+ }
+
+ if ((count + 10) > this.dataset.limit) {
+ if (!counter) {
+ counter = document.createElement('span')
+
+ counter.id = 'emails_counter'
+ counter.classList.add('text-xs', 'right-0', 'absolute')
+ counter.style.bottom = '-15px'
+
+ this.textarea.parentNode.append(counter)
+ }
+
+ counter.innerText = `${count} / ${this.dataset.limit}`
+ }
+
+ if (this.dataset.bulkEnabled !== 'true') {
+ if (!bulkMessage) {
+ bulkMessage = document.createElement('span')
+
+ bulkMessage.id = 'bulk_message'
+ bulkMessage.classList.add('text-xs', 'left-0', 'absolute')
+ bulkMessage.style.bottom = '-15px'
+
+ this.textarea.parentNode.append(bulkMessage)
+ }
+
+ bulkMessage.innerHTML = '
+
<% end %>
Update Signature
-
+
import FileDropzone from './dropzone'
import { IconReload } from '@tabler/icons-vue'
+import MarkdownContent from './markdown_content'
export default {
name: 'ImageStep',
components: {
FileDropzone,
- IconReload
+ IconReload,
+ MarkdownContent
},
inject: ['t'],
props: {
diff --git a/app/javascript/submission_form/initials_step.vue b/app/javascript/submission_form/initials_step.vue
index 6ee5b2bf..274a7401 100644
--- a/app/javascript/submission_form/initials_step.vue
+++ b/app/javascript/submission_form/initials_step.vue
@@ -1,9 +1,20 @@
diff --git a/app/views/profile/index.html.erb b/app/views/profile/index.html.erb
index 3bfb055e..4cb89d76 100644
--- a/app/views/profile/index.html.erb
+++ b/app/views/profile/index.html.erb
@@ -31,40 +31,42 @@
+
-
+
+ + {{ item }} + + + + + + diff --git a/app/javascript/submission_form/multi_select_step.vue b/app/javascript/submission_form/multi_select_step.vue index b3368e04..ba9d07b0 100644 --- a/app/javascript/submission_form/multi_select_step.vue +++ b/app/javascript/submission_form/multi_select_step.vue @@ -1,10 +1,23 @@ + class="label text-2xl" + :class="{ 'mb-2': !field.description }" + >
+ >
+
+
+
+ + {{ item }} + + + + + + diff --git a/app/javascript/submission_form/multi_select_step.vue b/app/javascript/submission_form/multi_select_step.vue index b3368e04..ba9d07b0 100644 --- a/app/javascript/submission_form/multi_select_step.vue +++ b/app/javascript/submission_form/multi_select_step.vue @@ -1,10 +1,23 @@ + class="label text-2xl" + :class="{ 'mb-2': !field.description }" + >
+
diff --git a/app/javascript/submission_form/phone_step.vue b/app/javascript/submission_form/phone_step.vue
index 01281351..df3b04fd 100644
--- a/app/javascript/submission_form/phone_step.vue
+++ b/app/javascript/submission_form/phone_step.vue
@@ -2,10 +2,25 @@
+
+
+
+
+
@@ -366,7 +512,10 @@
import Contenteditable from './contenteditable'
import FieldType from './field_type'
import PaymentSettings from './payment_settings'
-import { IconShape, IconNewSection, IconTrashX, IconCopy, IconSettings } from '@tabler/icons-vue'
+import FormulaModal from './formula_modal'
+import ConditionsModal from './conditions_modal'
+import DescriptionModal from './description_modal'
+import { IconInfoCircle, IconRouteAltLeft, IconMathFunction, IconShape, IconNewSection, IconTrashX, IconCopy, IconSettings } from '@tabler/icons-vue'
import { v4 } from 'uuid'
export default {
@@ -377,7 +526,13 @@ export default {
IconShape,
PaymentSettings,
IconNewSection,
+ IconInfoCircle,
+ FormulaModal,
+ DescriptionModal,
+ ConditionsModal,
+ IconRouteAltLeft,
IconTrashX,
+ IconMathFunction,
IconCopy,
FieldType
},
@@ -403,11 +558,29 @@ export default {
return {
isNameFocus: false,
showPaymentModal: false,
+ isShowFormulaModal: false,
+ isShowConditionsModal: false,
+ isShowDescriptionModal: false,
renderDropdown: false
}
},
computed: {
fieldNames: FieldType.computed.fieldNames,
+ schemaAttachmentsIndexes () {
+ return (this.template.schema || []).reduce((acc, item, index) => {
+ acc[item.attachment_uuid] = index
+
+ return acc
+ }, {})
+ },
+ sortedAreas () {
+ return (this.field.areas || []).sort((a, b) => {
+ return this.schemaAttachmentsIndexes[a.attachment_uuid] - this.schemaAttachmentsIndexes[b.attachment_uuid]
+ })
+ },
+ modalContainerEl () {
+ return this.$el.getRootNode().querySelector('#docuseal_modal_container')
+ },
dateFormats () {
return [
'MM/DD/YYYY',
@@ -422,22 +595,7 @@ export default {
]
},
defaultName () {
- if (this.field.type === 'payment' && this.field.preferences?.price) {
- const { price, currency } = this.field.preferences || {}
-
- const formattedPrice = new Intl.NumberFormat([], {
- style: 'currency',
- currency
- }).format(price)
-
- return `${this.fieldNames[this.field.type]} ${formattedPrice}`
- } else {
- const typeIndex = this.template.fields.filter((f) => f.type === this.field.type).indexOf(this.field)
-
- const suffix = { multiple: this.t('select'), radio: this.t('group') }[this.field.type] || this.t('field')
-
- return `${this.fieldNames[this.field.type]} ${suffix} ${typeIndex + 1}`
- }
+ return this.buildDefaultName(this.field, this.template.fields)
},
areas () {
return this.field.areas || []
@@ -452,6 +610,24 @@ export default {
}
},
methods: {
+ buildDefaultName (field, fields) {
+ if (field.type === 'payment' && field.preferences?.price) {
+ const { price, currency } = field.preferences || {}
+
+ const formattedPrice = new Intl.NumberFormat([], {
+ style: 'currency',
+ currency
+ }).format(price)
+
+ return `${this.fieldNames[field.type]} ${formattedPrice}`
+ } else {
+ const typeIndex = fields.filter((f) => f.type === field.type).indexOf(field)
+
+ const suffix = { multiple: this.t('select'), radio: this.t('group') }[field.type] || this.t('field')
+
+ return `${this.fieldNames[field.type]} ${suffix} ${typeIndex + 1}`
+ }
+ },
formatDate (date, format) {
const monthFormats = {
M: 'numeric',
@@ -485,11 +661,13 @@ export default {
const areaString = JSON.stringify(field.areas[0])
this.template.documents.forEach((attachment) => {
- attachment.preview_images.forEach((page) => {
- if (!field.areas.find((area) => area.attachment_uuid === attachment.uuid && area.page === parseInt(page.filename))) {
- field.areas.push({ ...JSON.parse(areaString), attachment_uuid: attachment.uuid, page: parseInt(page.filename) })
+ const numberOfPages = attachment.metadata?.pdf?.number_of_pages || attachment.preview_images.length
+
+ for (let page = 0; page <= numberOfPages - 1; page++) {
+ if (!field.areas.find((area) => area.attachment_uuid === attachment.uuid && area.page === page)) {
+ field.areas.push({ ...JSON.parse(areaString), attachment_uuid: attachment.uuid, page })
}
- })
+ }
})
this.$nextTick(() => {
@@ -515,7 +693,7 @@ export default {
}
},
scrollToFirstArea () {
- return this.field.areas?.[0] && this.$emit('scroll-to', this.field.areas[0])
+ return this.sortedAreas[0] && this.$emit('scroll-to', this.sortedAreas[0])
},
closeDropdown () {
document.activeElement.blur()
@@ -533,7 +711,12 @@ export default {
},
removeOption (option) {
this.field.options.splice(this.field.options.indexOf(option), 1)
- this.field.areas.splice(this.field.areas.findIndex((a) => a.option_uuid === option.uuid), 1)
+
+ const optionIndex = this.field.areas.findIndex((a) => a.option_uuid === option.uuid)
+
+ if (optionIndex !== -1) {
+ this.field.areas.splice(this.field.areas.findIndex((a) => a.option_uuid === option.uuid), 1)
+ }
this.save()
},
diff --git a/app/javascript/template_builder/field_type.vue b/app/javascript/template_builder/field_type.vue
index 207f556f..58edd755 100644
--- a/app/javascript/template_builder/field_type.vue
+++ b/app/javascript/template_builder/field_type.vue
@@ -50,7 +50,7 @@
diff --git a/app/javascript/template_builder/i18n.js b/app/javascript/template_builder/i18n.js
index 05e42d32..4b3d3b1b 100644
--- a/app/javascript/template_builder/i18n.js
+++ b/app/javascript/template_builder/i18n.js
@@ -1,4 +1,21 @@
const en = {
+ align: 'Align',
+ left: 'Left',
+ right: 'Right',
+ center: 'Center',
+ description: 'Description',
+ display_title: 'Display title',
+ with_logo: 'With logo',
+ unchecked: 'Unchecked',
+ equal: 'Equal',
+ not_equal: 'Not equal',
+ contains: 'Contains',
+ does_not_contain: 'Does not contain',
+ not_empty: 'Not empty',
+ empty: 'Empty',
+ select_field_: 'Select field...',
+ select_value_: 'Select value...',
+ remove_condition: 'Remove condition',
are_you_sure: 'Are you sure?',
sign_yourself: 'Sign Yourself',
set_signing_date: 'Set signing date',
@@ -13,6 +30,7 @@ const en = {
cancel: 'Cancel',
any: 'Any',
drawn: 'Drawn',
+ formula: 'Formula',
typed: 'Typed',
draw_field_on_the_document: 'Draw {field} field on the document',
click_to_upload: 'Click to upload',
@@ -30,6 +48,7 @@ const en = {
copy_to_all_pages: 'Copy to All Pages',
add_option: 'Add option',
option: 'Option',
+ condition: 'Condition',
first_party: 'First Party',
second_party: 'Second Party',
third_party: 'Third Party',
@@ -54,6 +73,7 @@ const en = {
add: 'Add',
or_add_field_without_drawing: 'Or add field without drawing',
text: 'Text',
+ number: 'Number',
signature: 'Signature',
initials: 'Initials',
date: 'Date',
diff --git a/app/javascript/template_builder/page.vue b/app/javascript/template_builder/page.vue
index 88bcc9be..a97d8fbf 100644
--- a/app/javascript/template_builder/page.vue
+++ b/app/javascript/template_builder/page.vue
@@ -39,7 +39,7 @@
/>
+
@@ -68,6 +82,8 @@
diff --git a/app/javascript/template_builder/description_modal.vue b/app/javascript/template_builder/description_modal.vue
new file mode 100644
index 00000000..2234f8a0
--- /dev/null
+++ b/app/javascript/template_builder/description_modal.vue
@@ -0,0 +1,107 @@
+
+
+
+
+
+
+
+
+
diff --git a/app/javascript/template_builder/field.vue b/app/javascript/template_builder/field.vue
index a70937c6..dd8e264a 100644
--- a/app/javascript/template_builder/field.vue
+++ b/app/javascript/template_builder/field.vue
@@ -1,6 +1,6 @@
+
+
+
+ {{ field.name || buildDefaultName(field, template.fields) }}
+
+ ×
+
+
+
+
+ {
this.newArea = {
- initialX: e.layerX / this.$refs.mask.clientWidth,
- initialY: e.layerY / this.$refs.mask.clientHeight,
- x: e.layerX / this.$refs.mask.clientWidth,
- y: e.layerY / this.$refs.mask.clientHeight,
+ initialX: e.offsetX / this.$refs.mask.clientWidth,
+ initialY: e.offsetY / this.$refs.mask.clientHeight,
+ x: e.offsetX / this.$refs.mask.clientWidth,
+ y: e.offsetY / this.$refs.mask.clientHeight,
w: 0,
h: 0
}
@@ -197,19 +197,19 @@ export default {
},
onPointermove (e) {
if (this.newArea) {
- const dx = e.layerX / this.$refs.mask.clientWidth - this.newArea.initialX
- const dy = e.layerY / this.$refs.mask.clientHeight - this.newArea.initialY
+ const dx = e.offsetX / this.$refs.mask.clientWidth - this.newArea.initialX
+ const dy = e.offsetY / this.$refs.mask.clientHeight - this.newArea.initialY
if (dx > 0) {
this.newArea.x = this.newArea.initialX
} else {
- this.newArea.x = e.layerX / this.$refs.mask.clientWidth
+ this.newArea.x = e.offsetX / this.$refs.mask.clientWidth
}
if (dy > 0) {
this.newArea.y = this.newArea.initialY
} else {
- this.newArea.y = e.layerY / this.$refs.mask.clientHeight
+ this.newArea.y = e.offsetY / this.$refs.mask.clientHeight
}
if (this.drawField?.type === 'cells') {
diff --git a/app/jobs/send_form_completed_webhook_request_job.rb b/app/jobs/send_form_completed_webhook_request_job.rb
index ff098e53..134cefb9 100644
--- a/app/jobs/send_form_completed_webhook_request_job.rb
+++ b/app/jobs/send_form_completed_webhook_request_job.rb
@@ -15,21 +15,25 @@ class SendFormCompletedWebhookRequestJob < ApplicationJob
ActiveStorage::Current.url_options = Docuseal.default_url_options
- resp = Faraday.post(config.value,
- {
- event_type: 'form.completed',
- timestamp: Time.current,
- data: Submitters::SerializeForWebhook.call(submitter)
- }.to_json,
- 'Content-Type' => 'application/json',
- 'User-Agent' => USER_AGENT)
-
- if resp.status.to_i >= 400 && attempt <= MAX_ATTEMPTS &&
+ resp = begin
+ Faraday.post(config.value,
+ {
+ event_type: 'form.completed',
+ timestamp: Time.current,
+ data: Submitters::SerializeForWebhook.call(submitter)
+ }.to_json,
+ 'Content-Type' => 'application/json',
+ 'User-Agent' => USER_AGENT)
+ rescue Faraday::Error
+ nil
+ end
+
+ if (resp.nil? || resp.status.to_i >= 400) && attempt <= MAX_ATTEMPTS &&
(!Docuseal.multitenant? || submitter.account.account_configs.exists?(key: :plan))
SendFormCompletedWebhookRequestJob.set(wait: (2**attempt).minutes)
.perform_later(submitter, {
attempt: attempt + 1,
- last_status: resp.status.to_i
+ last_status: resp&.status.to_i
})
end
end
diff --git a/app/jobs/send_form_started_webhook_request_job.rb b/app/jobs/send_form_started_webhook_request_job.rb
index 61a992f2..bc0168f4 100644
--- a/app/jobs/send_form_started_webhook_request_job.rb
+++ b/app/jobs/send_form_started_webhook_request_job.rb
@@ -13,21 +13,25 @@ class SendFormStartedWebhookRequestJob < ApplicationJob
ActiveStorage::Current.url_options = Docuseal.default_url_options
- resp = Faraday.post(config.value,
- {
- event_type: 'form.started',
- timestamp: Time.current,
- data: Submitters::SerializeForWebhook.call(submitter)
- }.to_json,
- 'Content-Type' => 'application/json',
- 'User-Agent' => USER_AGENT)
+ resp = begin
+ Faraday.post(config.value,
+ {
+ event_type: 'form.started',
+ timestamp: Time.current,
+ data: Submitters::SerializeForWebhook.call(submitter)
+ }.to_json,
+ 'Content-Type' => 'application/json',
+ 'User-Agent' => USER_AGENT)
+ rescue Faraday::Error
+ nil
+ end
- if resp.status.to_i >= 400 && attempt <= MAX_ATTEMPTS &&
+ if (resp.nil? || resp.status.to_i >= 400) && attempt <= MAX_ATTEMPTS &&
(!Docuseal.multitenant? || submitter.account.account_configs.exists?(key: :plan))
SendFormStartedWebhookRequestJob.set(wait: (2**attempt).minutes)
.perform_later(submitter, {
attempt: attempt + 1,
- last_status: resp.status.to_i
+ last_status: resp&.status.to_i
})
end
end
diff --git a/app/jobs/send_form_viewed_webhook_request_job.rb b/app/jobs/send_form_viewed_webhook_request_job.rb
index 25496a94..31360c5c 100644
--- a/app/jobs/send_form_viewed_webhook_request_job.rb
+++ b/app/jobs/send_form_viewed_webhook_request_job.rb
@@ -13,21 +13,25 @@ class SendFormViewedWebhookRequestJob < ApplicationJob
ActiveStorage::Current.url_options = Docuseal.default_url_options
- resp = Faraday.post(config.value,
- {
- event_type: 'form.viewed',
- timestamp: Time.current,
- data: Submitters::SerializeForWebhook.call(submitter)
- }.to_json,
- 'Content-Type' => 'application/json',
- 'User-Agent' => USER_AGENT)
+ resp = begin
+ Faraday.post(config.value,
+ {
+ event_type: 'form.viewed',
+ timestamp: Time.current,
+ data: Submitters::SerializeForWebhook.call(submitter)
+ }.to_json,
+ 'Content-Type' => 'application/json',
+ 'User-Agent' => USER_AGENT)
+ rescue Faraday::Error
+ nil
+ end
- if resp.status.to_i >= 400 && attempt <= MAX_ATTEMPTS &&
+ if (resp.nil? || resp.status.to_i >= 400) && attempt <= MAX_ATTEMPTS &&
(!Docuseal.multitenant? || submitter.account.account_configs.exists?(key: :plan))
SendFormViewedWebhookRequestJob.set(wait: (2**attempt).minutes)
.perform_later(submitter, {
attempt: attempt + 1,
- last_status: resp.status.to_i
+ last_status: resp&.status.to_i
})
end
end
diff --git a/app/mailers/submitter_mailer.rb b/app/mailers/submitter_mailer.rb
index d7304070..c3fe43a4 100644
--- a/app/mailers/submitter_mailer.rb
+++ b/app/mailers/submitter_mailer.rb
@@ -2,6 +2,7 @@
class SubmitterMailer < ApplicationMailer
MAX_ATTACHMENTS_SIZE = 10.megabytes
+ SIGN_TTL = 1.hour + 20.minutes
DEFAULT_INVITATION_SUBJECT = 'You are invited to submit a form'
@@ -61,9 +62,10 @@ class SubmitterMailer < ApplicationMailer
subject:)
end
- def documents_copy_email(submitter, to: nil)
+ def documents_copy_email(submitter, to: nil, sig: false)
@current_account = submitter.submission.template.account
@submitter = submitter
+ @sig = submitter.signed_id(expires_in: SIGN_TTL, purpose: :download_completed) if sig
Submissions::EnsureResultGenerated.call(@submitter)
diff --git a/app/models/account.rb b/app/models/account.rb
index f6893244..70c6d472 100644
--- a/app/models/account.rb
+++ b/app/models/account.rb
@@ -20,7 +20,7 @@ class Account < ApplicationRecord
has_many :template_folders, dependent: :destroy
has_one :default_template_folder, -> { where(name: TemplateFolder::DEFAULT_NAME) },
class_name: 'TemplateFolder', dependent: :destroy, inverse_of: :account
- has_many :submissions, through: :templates
+ has_many :submissions, dependent: :destroy
has_many :submitters, through: :submissions
has_many :account_linked_accounts, dependent: :destroy
has_many :account_testing_accounts, -> { testing }, dependent: :destroy,
diff --git a/app/models/submission_event.rb b/app/models/submission_event.rb
index 783c2a25..17392d3d 100644
--- a/app/models/submission_event.rb
+++ b/app/models/submission_event.rb
@@ -15,6 +15,7 @@
#
# Indexes
#
+# index_submission_events_on_created_at (created_at)
# index_submission_events_on_submission_id (submission_id)
# index_submission_events_on_submitter_id (submitter_id)
#
diff --git a/app/views/devise/registrations/new.html.erb b/app/views/devise/registrations/new.html.erb
deleted file mode 100644
index ca60bd9f..00000000
--- a/app/views/devise/registrations/new.html.erb
+++ /dev/null
@@ -1,47 +0,0 @@
-
diff --git a/app/views/personalization_settings/show.html.erb b/app/views/personalization_settings/show.html.erb
index a0ddf2be..1f06f239 100644
--- a/app/views/personalization_settings/show.html.erb
+++ b/app/views/personalization_settings/show.html.erb
@@ -9,8 +9,9 @@
-
diff --git a/app/views/devise/registrations/show.html.erb b/app/views/devise/registrations/show.html.erb
deleted file mode 100644
index 80490699..00000000
--- a/app/views/devise/registrations/show.html.erb
+++ /dev/null
@@ -1,45 +0,0 @@
-Profile Details
- <%= form_for('', as: resource_name, html: { class: 'space-y-6' }, data: { turbo: params[:redir].blank? }, url: new_registration_path) do |f| %> - <% if params[:redir].present? %> - <%= hidden_field_tag :redir, params[:redir] %> - <% end %> -
- <%= render 'devise/shared/error_messages', resource: %>
- <%= f.fields_for resource do |ff| %>
-
-
-
- <% end %>
- <%= f.fields_for resource do |ff| %>
-
- <%= ff.label :first_name, class: 'label' %>
- <%= ff.text_field :first_name, required: true, class: 'base-input' %>
-
-
- <%= ff.label :last_name, class: 'label' %>
- <%= ff.text_field :last_name, required: true, class: 'base-input' %>
-
-
- <%= ff.label :email, class: 'label' %>
- <%= ff.email_field :email, value: EmailTypo.call(resource.email), required: true, class: 'base-input' %>
-
- <% end %>
- <%= f.fields_for resource.account do |ff| %>
-
- <%= ff.label :name, 'Company name (optional)', class: 'label' %>
- <%= ff.text_field :name, class: 'base-input' %>
-
- <% end %>
- <%= f.fields_for resource do |ff| %>
-
- <%= ff.label :password, class: 'label' %>
- <%= ff.password_field :password, required: !params[:oauth_callback], class: 'base-input' %>
-
- <% end %>
-
- <%= f.button button_title(title: 'Sign up', disabled_with: 'Signing up'), class: 'base-button' %>
-
- <% end %>
- <%= render 'devise/shared/links' %>
-
- <% if params[:redir].to_s.ends_with?('on_premise') %>
-
diff --git a/app/views/email_smtp_settings/index.html.erb b/app/views/email_smtp_settings/index.html.erb
index ab5f561f..08327544 100644
--- a/app/views/email_smtp_settings/index.html.erb
+++ b/app/views/email_smtp_settings/index.html.erb
@@ -38,7 +38,7 @@
DocuSeal Console
-
- Sign up in DocuSeal Console to upgrade.
- On-premises app is completely standalone, Console is used only to manage your license.
-
- <% else %>
- <%= render 'devise/shared/select_server' if Docuseal.multitenant? %>
- Create Free Account
- <% end %> - <%= form_for(User.new, html: { class: 'space-y-6' }, url: new_registration_path, data: { turbo: params[:redir].blank? }, method: :get) do |f| %> - <% if params[:redir].present? %> - <%= hidden_field_tag :redir, params[:redir] %> - <% end %> -
-
-
- <%= f.label :email, class: 'label' %>
- <%= f.email_field :email, autofocus: true, autocomplete: 'email', class: 'base-input', placeholder: 'Enter email to continue' %>
-
-
- <%= f.button button_title(title: 'Sign up', disabled_with: 'Sign up'), name: 'sign_up', value: true, class: 'base-button' %>
-
- <% end %>
- <% if devise_mapping.omniauthable? %>
-
- <% if User.omniauth_providers.include?(:google_oauth2) %>
- <%= form_for '', url: omniauth_authorize_path(resource_name, :google_oauth2), data: { turbo: false }, method: :post do |f| %>
-
- <% end %>
- <%= render 'devise/shared/links' %>
-
<%= ff.label :security_label, 'SMTP Security', class: 'label' %>
diff --git a/app/views/notifications_settings/index.html.erb b/app/views/notifications_settings/index.html.erb
index bd880f00..632c145d 100644
--- a/app/views/notifications_settings/index.html.erb
+++ b/app/views/notifications_settings/index.html.erb
@@ -2,6 +2,20 @@
<%= render 'shared/settings_nav' %>
- <% [%w[None none], %w[SSL ssl], %w[TLS tls]].each do |(label, val)| %>
+ <% [%w[Auto none], %w[SSL ssl], %w[TLS tls]].each do |(label, val)| %>
<%= ff.label :security, value: val, for: "#{val}_radio", class: 'label' do %>
<%= ff.radio_button :security, val, checked: (value['security'].blank? && val == 'none') || value['security'] == val, id: "#{val}_radio", class: 'base-radio mr-2' %>
<%= label %>
diff --git a/app/views/esign_settings/show.html.erb b/app/views/esign_settings/show.html.erb
index 6f6571c3..85f58b2e 100644
--- a/app/views/esign_settings/show.html.erb
+++ b/app/views/esign_settings/show.html.erb
@@ -110,7 +110,7 @@
Timeserver URL
-
+
<%= svg_icon('info_circle', class: 'w-4 h-4') %>
diff --git a/app/views/layouts/mailer.html.erb b/app/views/layouts/mailer.html.erb
index 0a27fddf..62b825ff 100644
--- a/app/views/layouts/mailer.html.erb
+++ b/app/views/layouts/mailer.html.erb
@@ -3,10 +3,9 @@
Send automatic email reminders to your recipients.
- ">Learn More
+ " data-turbo="false">Learn More
Email Notifications
+
+ <% user_config = UserConfig.find_or_initialize_by(user: current_user, key: UserConfig::RECEIVE_COMPLETED_EMAIL) %>
+ <% if can?(:manage, user_config) %>
+ <%= form_for user_config, url: user_configs_path, method: :post do |f| %>
+ <%= f.hidden_field :key %>
+
<%= render 'email_stats' %>
<%= render 'bcc_form', config: @bcc_config %>
+
+ Receive notification emails on completed submission
+
+ <%= f.check_box :value, class: 'toggle', checked: user_config.value != false, onchange: 'this.form.requestSubmit()' %>
+
+ <% end %>
+ <% end %>
+
diff --git a/app/views/personalization_settings/_form_customization_settings.html.erb b/app/views/personalization_settings/_form_customization_settings.html.erb
new file mode 100644
index 00000000..7faa402a
--- /dev/null
+++ b/app/views/personalization_settings/_form_customization_settings.html.erb
@@ -0,0 +1 @@
+<%= render 'form_toggle_options' %>
diff --git a/app/views/personalization_settings/_form_toggle_options.html.erb b/app/views/personalization_settings/_form_toggle_options.html.erb
new file mode 100644
index 00000000..a83d4b3f
--- /dev/null
+++ b/app/views/personalization_settings/_form_toggle_options.html.erb
@@ -0,0 +1,14 @@
+<% account_config = AccountConfig.where(account: current_account, key: AccountConfig::FORM_WITH_CONFETTI_KEY).first_or_initialize(value: true) %>
+<% if can?(:manage, account_config) %>
+
+ <%= form_for account_config, url: account_configs_path, method: :post do |f| %>
+ <%= f.hidden_field :key %>
+
+<% end %>
diff --git a/app/views/personalization_settings/_logo_placeholder.html.erb b/app/views/personalization_settings/_logo_placeholder.html.erb
index b469ae9a..59e3103e 100644
--- a/app/views/personalization_settings/_logo_placeholder.html.erb
+++ b/app/views/personalization_settings/_logo_placeholder.html.erb
@@ -5,7 +5,7 @@
+
+ Show confetti on successful completion
+
+ <%= f.check_box :value, { class: 'toggle', checked: account_config.value != false, onchange: 'this.form.requestSubmit()' }, '1', '0' %>
+
+ <% end %>
+
Display your company name and logo when signing documents.
- ">Learn More
+ " data-turbo="false">Learn More
Company Logo
<%= render 'logo_form' %> -Submitter Form
+Submission Form
<%= render 'form_completed_button_form' %> + <%= render 'form_customization_settings' %>Change Password
- <%= form_for current_user, url: update_password_settings_profile_index_path, method: :patch, html: { autocomplete: 'off', class: 'space-y-4' } do |f| %> -
- <%= f.label :password, 'New password', class: 'label' %>
- <%= f.password_field :password, autocomplete: 'off', class: 'base-input' %>
-
-
- <%= f.label :password_confirmation, 'Confirm new password', class: 'label' %>
- <%= f.password_field :password_confirmation, autocomplete: 'off', class: 'base-input' %>
-
-
- <%= f.button button_title(title: 'Update', disabled_with: 'Updating'), class: 'base-button' %>
+ <% if true_user == current_user && !current_account.testing? %>
+
diff --git a/app/views/shared/_settings_nav.html.erb b/app/views/shared/_settings_nav.html.erb
index daa73891..f27efffa 100644
--- a/app/views/shared/_settings_nav.html.erb
+++ b/app/views/shared/_settings_nav.html.erb
@@ -67,7 +67,7 @@
<% end %>
<%= render 'shared/settings_nav_extra' %>
- <% if !Docuseal.demo? && can?(:manage, EncryptedConfig) %>
+ <% if !Docuseal.demo? && can?(:manage, EncryptedConfig) && (current_user != true_user || !current_account.testing?) %>
Change Password
+ <%= form_for current_user, url: update_password_settings_profile_index_path, method: :patch, html: { autocomplete: 'off', class: 'space-y-4' } do |f| %> +
+ <%= f.label :password, 'New password', class: 'label' %>
+ <%= f.password_field :password, autocomplete: 'off', class: 'base-input' %>
+
+
+ <%= f.label :password_confirmation, 'Confirm new password', class: 'label' %>
+ <%= f.password_field :password_confirmation, autocomplete: 'off', class: 'base-input' %>
+
+
+ <%= f.button button_title(title: 'Update', disabled_with: 'Updating'), class: 'base-button' %>
+
+ <% end %>
+ Two-Factor Authentication
+
+ <% if current_user.otp_required_for_login %>
+
<% end %>
- + <%= svg_icon('circle_check', class: 'stroke-success inline flex-none w-5 h-5') %> + + 2FA has been configured. + +
+ 🔓 Remove 2FA + <% else %> ++ <%= svg_icon('info_circle', class: 'stroke-warning inline flex-none w-5 h-5') %> + + 2FA is not configured. + +
+ 🔒 Set up 2FA + <% end %>Two-Factor Authentication
-
- <% if current_user.otp_required_for_login %>
-
- <%= svg_icon('circle_check', class: 'stroke-success inline flex-none w-5 h-5') %> - - 2FA has been configured. - -
- 🔓 Remove 2FA - <% else %> -- <%= svg_icon('info_circle', class: 'stroke-warning inline flex-none w-5 h-5') %> - - 2FA is not configured. - -
- 🔒 Set up 2FA - <% end %> -
Unlock with DocuSeal Pro
- ">Learn More
+ " data-turbo="false">Learn More
Unlock with DocuSeal Pro
- ">Learn More
+ " data-turbo="false">Learn More
<%= TimeUtils.format_date_string(value, field.dig('preferences', 'format'), local_assigns[:locale]) %>
diff --git a/app/views/submissions/show.html.erb b/app/views/submissions/show.html.erb
index 5c6b3e2e..eae5be9e 100644
--- a/app/views/submissions/show.html.erb
+++ b/app/views/submissions/show.html.erb
@@ -6,7 +6,7 @@
+ <% if Accounts.can_send_emails?(@submission.account) %>
+ <%= form_for '', url: send_submission_email_index_path, method: :post, html: { class: 'space-y-4', onsubmit: 'event.submitter.disabled = true' } do |f| %>
+
<% if @submission.audit_trail.present? %>
-
+
<%= svg_icon('external_link', class: 'w-6 h-6') %>
Audit Log
@@ -14,7 +14,7 @@
<% end %>
<% if last_submitter = @submission.submitters.to_a.select(&:completed_at?).max_by(&:completed_at) %>
-
+
<%= svg_icon('download', class: 'w-6 h-6') %>
Download
@@ -121,7 +121,7 @@
<% end %>
<% if signed_in? && submitter && submitter.phone && !submitter.completed_at && can?(:update, submitter) %>
- <%= render 'send_sms_button', submitter: %>
+ <%= render 'submissions/send_sms_button', submitter: %>
<% end %>
<% if signed_in? && submitter && !submitter.completed_at? && can?(:create, submitter) %>
diff --git a/app/views/submissions_preview/completed.html.erb b/app/views/submissions_preview/completed.html.erb
index 0395982d..8b84c726 100644
--- a/app/views/submissions_preview/completed.html.erb
+++ b/app/views/submissions_preview/completed.html.erb
@@ -20,6 +20,21 @@
+ <%= f.hidden_field :submission_slug, value: @submission.slug %>
+ <%= f.label :email, t('email'), class: 'label' %>
+ <%= f.email_field :email, value: current_user&.email || params[:email], required: true, class: 'base-input', placeholder: t('send_copy_to_email') %>
+
+
+ <%= f.button button_title(title: t('send_copy_to_email'), disabled_with: t('starting')), class: 'base-button' %>
+
+ <% end %>
+ <% if Docuseal.multitenant? %>
+ <%= t('or') %>
+ <% end %>
+ <% end %>
<% if Docuseal.multitenant? %>
<%= link_to 'Create free account', registration_path, class: 'white-button w-full' %>
diff --git a/app/views/submit_form/completed.html.erb b/app/views/submit_form/completed.html.erb
index 2373f5f9..bb85b69d 100644
--- a/app/views/submit_form/completed.html.erb
+++ b/app/views/submit_form/completed.html.erb
@@ -25,7 +25,7 @@
<% end %>
<% end %>
- <% if @submitter.completed_at > 15.minutes.ago || (current_user && current_user.account.submitters.exists?(id: @submitter.id)) %>
+ <% if @submitter.completed_at > 30.minutes.ago || (current_user && current_user.account.submitters.exists?(id: @submitter.id)) %>
<%= svg_icon('download', class: 'w-6 h-6') %>
diff --git a/app/views/submit_form/show.html.erb b/app/views/submit_form/show.html.erb
index e1a2dd44..55692853 100644
--- a/app/views/submit_form/show.html.erb
+++ b/app/views/submit_form/show.html.erb
@@ -24,6 +24,7 @@
<% value = values[field['uuid']].presence || (field['readonly'] ? Submitters::SubmitValues.template_default_value_for_submitter(field['default_value'], @submitter.submission.submitters.find { |e| e.uuid == field['submitter_uuid'] }, with_time: false) : nil) %>
<% next if value.blank? %>
<% next if !field['readonly'] && field['submitter_uuid'] == @submitter.uuid %>
+ <% next if field.dig('preferences', 'formula') && field['submitter_uuid'] == @submitter.uuid %>
<%= render 'submissions/value', area:, field:, attachments_index:, value:, locale: @submitter.account.locale %>
<% end %>
diff --git a/app/views/submitter_mailer/_custom_content.html.erb b/app/views/submitter_mailer/_custom_content.html.erb
new file mode 100644
index 00000000..275ec3e4
--- /dev/null
+++ b/app/views/submitter_mailer/_custom_content.html.erb
@@ -0,0 +1 @@
+<%= auto_link(simple_format(h(ReplaceEmailVariables.call(local_assigns[:content], submitter: local_assigns[:submitter], sig: local_assigns[:sig])))) %>
diff --git a/app/views/submitter_mailer/completed_email.html.erb b/app/views/submitter_mailer/completed_email.html.erb
index df1be4b4..00dacf26 100644
--- a/app/views/submitter_mailer/completed_email.html.erb
+++ b/app/views/submitter_mailer/completed_email.html.erb
@@ -1,5 +1,5 @@
<% if @email_config %>
- <%= auto_link(simple_format(h(ReplaceEmailVariables.call(@email_config.value['body'], submitter: @submitter)))) %>
+ <%= render 'custom_content', content: @email_config.value['body'], submitter: @submitter %>
<% else %>
Hi there,
"<%= @submitter.submission.template.name %>" form has been completed by <%= @submitter.submission.submitters.order(:completed_at).map { |e| e.name || e.email || e.phone }.join(', ') %>.
diff --git a/app/views/submitter_mailer/documents_copy_email.html.erb b/app/views/submitter_mailer/documents_copy_email.html.erb index ac438e76..b0ede421 100644 --- a/app/views/submitter_mailer/documents_copy_email.html.erb +++ b/app/views/submitter_mailer/documents_copy_email.html.erb @@ -1,11 +1,11 @@ <% if @email_config %> - <%= auto_link(simple_format(h(ReplaceEmailVariables.call(@email_config.value['body'], submitter: @submitter)))) %> + <%= render 'custom_content', content: @email_config.value['body'], submitter: @submitter, sig: @sig %> <% else %>Hi there,
Please check the copy of your "<%= @submitter.submission.template.name %>" submission in the email attachments.
Alternatively, you can review and download your copy using:
- <%= link_to @submitter.template.name, submissions_preview_url(@submitter.submission.slug) %> + <%= link_to @submitter.template.name, submissions_preview_url(@submitter.submission.slug, { sig: @sig }.compact) %>
Thanks,
<%= @current_account.name %>
diff --git a/app/views/submitter_mailer/invitation_email.html.erb b/app/views/submitter_mailer/invitation_email.html.erb
index 91bf7279..98f71906 100644
--- a/app/views/submitter_mailer/invitation_email.html.erb
+++ b/app/views/submitter_mailer/invitation_email.html.erb
@@ -1,6 +1,6 @@
<% if @email_config || @body.present? %>
<% body = (@body.presence || @email_config.value['body']).to_s %>
- <%= auto_link(simple_format(h(ReplaceEmailVariables.call(body, submitter: @submitter)))) %>
+ <%= render 'custom_content', content: body, submitter: @submitter %>
<% if !body.include?(ReplaceEmailVariables::SUBMITTER_LINK) && !body.include?(ReplaceEmailVariables::SUBMITTER_ID) && !body.include?(ReplaceEmailVariables::SUBMISSION_LINK) && !body.include?(ReplaceEmailVariables::TEMPLATE_ID) && !@submitter.submission.source.in?(%w[api embed]) %>
<%= link_to nil, submit_form_url(slug: @submitter.slug, t: SubmissionEvents.build_tracking_param(@submitter, 'click_email')) %>
<% end %> diff --git a/app/views/templates_code_modal/_placeholder.html.erb b/app/views/templates_code_modal/_placeholder.html.erb index 9498f035..ad208c75 100644 --- a/app/views/templates_code_modal/_placeholder.html.erb +++ b/app/views/templates_code_modal/_placeholder.html.erb @@ -5,7 +5,7 @@
Unlock with DocuSeal Pro
- ">Learn More
+ " data-turbo="false">Learn More