docuseal

Commit Graph

Author	SHA1	Message	Date
Wabo	53e677417f	Per-account product-name branding Account admins can now replace "WaboSign" in the UI, emails, audit-trail PDFs, and authenticator-app issuer with their own product name. The brand override is stored as an AccountConfig row (brand_name key), managed from /settings/personalization above the logo upload. Resolution flows through Wabosign.branded_product_name(account = nil): 1. account&.brand_name if a record is passed 2. else the deployment's oldest non-archived account's brand_name (so anonymous surfaces like the landing page, PWA manifest, and og:title get the operator's brand on single-tenant installs) 3. else Wabosign::PRODUCT_NAME ("WaboSign") AGPL §7(b) DocuSeal attribution stays untouched: - _powered_by.html.erb second line keeps Wabosign::UPSTREAM_NAME - _email_attribution.html.erb second paragraph keeps it - completed.vue keeps its hardcoded DocuSeal link The Wabosign::UPSTREAM_NAME and UPSTREAM_URL constants stay constants — they are never overridable. Swapped 41 direct Wabosign.product_name callers to pass the most-local account in scope (current_account, @template.account, @submitter.submission.account, submission.account, or nil for chrome without account context). Mailers' default `from:` is now a lambda that reads @current_account per message. SIGN_REASON constant in generate_result_attachments became sign_reason_template(account) so PDF signature reasons reflect the brand. The two i18n keys actually rendered with literal "WaboSign" (welcome_to_wabosign in templates_dashboard, connect_to_wabosign_mcp in mcp_settings) are parameterized to %{product_name} across the 7 locales that defined them. The other ~9 WaboSign-branded i18n keys are unreferenced dead code from the Pro paywall and stay as-is. Specs: spec/models/account_spec.rb (new) — Account#brand_name spec/lib/wabosign_spec.rb (new) — branded_product_name precedence spec/requests/personalization_settings_spec.rb (new) — end-to-end Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	8dbf5b6cab	Fix CI lint + flaky dashboard test on first fork-Actions run Previously CI had never run on the wabolabs/wabosign fork (Actions gated until owner consent). Now that the gate is lifted, run rubocop / erblint / brakeman / rspec against current master uncovered backlog: - rubocop: 97 auto-corrected across the WaboSign-fork files (account logo, SMS, SSO, ability specs, role auth specs, omniauth callbacks). Remaining 8 fixed by hand: * lib/wabosign.rb chained map collapsed to filter_map; `hd` param renamed to `hosted_domain` (Naming/MethodParameterName) * app/models/user.rb default_sso_account split for line length + SafeNavigation * spec/rails_helper.rb abort calls marked `# rubocop:disable Rails/Exit` (upstream pattern, intentional) * spec/requests/users/omniauth_callbacks_spec.rb let! used for side-effect-only setup -> moved into before blocks - erblint: 21 auto-corrected (mostly Style/StringLiterals from a sed substitution that picked double quotes) + a missing autocomplete attribute added to the SMS test-message input. - brakeman: clean. Removed one obsolete ignore entry (was for the deleted enquiries controller) and added one new ignore for the MCP-settings token preview (HighlightCode returns escaped HTML). - rspec: dashboard "shows the list of templates" was flaky because other_template's Faker::Book.title could randomly collide with one of the 5 in-account templates. Pin the name to a unique suffix. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	5d1422d37b	Enable Editor and Viewer user roles Splits the previously single-role Ability class along role boundaries. Admin keeps full account management. Editor gets CRUD on templates, folders, submissions, submitters, and template sharings, but cannot touch users, account settings, encrypted configs, webhooks, or MCP. Viewer gets read-only access to the same content surface. Every role keeps self-service on their own User / UserConfig / AccessToken. UsersController#index gains a one-line admin guard so non-admins cannot reach the user list via the self-manage rule's class-level CanCan check. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago

Author

SHA1

Message

Date

Wabo

53e677417f

Per-account product-name branding

Account admins can now replace "WaboSign" in the UI, emails, audit-trail
PDFs, and authenticator-app issuer with their own product name. The
brand override is stored as an AccountConfig row (brand_name key),
managed from /settings/personalization above the logo upload.

Resolution flows through Wabosign.branded_product_name(account = nil):
  1. account&.brand_name if a record is passed
  2. else the deployment's oldest non-archived account's brand_name
     (so anonymous surfaces like the landing page, PWA manifest, and
     og:title get the operator's brand on single-tenant installs)
  3. else Wabosign::PRODUCT_NAME ("WaboSign")

AGPL §7(b) DocuSeal attribution stays untouched:
  - _powered_by.html.erb second line keeps Wabosign::UPSTREAM_NAME
  - _email_attribution.html.erb second paragraph keeps it
  - completed.vue keeps its hardcoded DocuSeal link
The Wabosign::UPSTREAM_NAME and UPSTREAM_URL constants stay constants —
they are never overridable.

Swapped 41 direct Wabosign.product_name callers to pass the most-local
account in scope (current_account, @template.account,
@submitter.submission.account, submission.account, or nil for chrome
without account context). Mailers' default `from:` is now a lambda that
reads @current_account per message. SIGN_REASON constant in
generate_result_attachments became sign_reason_template(account) so
PDF signature reasons reflect the brand.

The two i18n keys actually rendered with literal "WaboSign"
(welcome_to_wabosign in templates_dashboard, connect_to_wabosign_mcp
in mcp_settings) are parameterized to %{product_name} across the 7
locales that defined them. The other ~9 WaboSign-branded i18n keys
are unreferenced dead code from the Pro paywall and stay as-is.

Specs:
  spec/models/account_spec.rb (new) — Account#brand_name
  spec/lib/wabosign_spec.rb (new) — branded_product_name precedence
  spec/requests/personalization_settings_spec.rb (new) — end-to-end

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

Wabo

8dbf5b6cab

Fix CI lint + flaky dashboard test on first fork-Actions run

Previously CI had never run on the wabolabs/wabosign fork (Actions
gated until owner consent). Now that the gate is lifted, run rubocop /
erblint / brakeman / rspec against current master uncovered backlog:

- rubocop: 97 auto-corrected across the WaboSign-fork files (account
  logo, SMS, SSO, ability specs, role auth specs, omniauth callbacks).
  Remaining 8 fixed by hand:
  * lib/wabosign.rb chained map collapsed to filter_map; `hd` param
    renamed to `hosted_domain` (Naming/MethodParameterName)
  * app/models/user.rb default_sso_account split for line length +
    SafeNavigation
  * spec/rails_helper.rb abort calls marked `# rubocop:disable
    Rails/Exit` (upstream pattern, intentional)
  * spec/requests/users/omniauth_callbacks_spec.rb let! used for
    side-effect-only setup -> moved into before blocks
- erblint: 21 auto-corrected (mostly Style/StringLiterals from a
  sed substitution that picked double quotes) + a missing
  autocomplete attribute added to the SMS test-message input.
- brakeman: clean. Removed one obsolete ignore entry (was for the
  deleted enquiries controller) and added one new ignore for the
  MCP-settings token preview (HighlightCode returns escaped HTML).
- rspec: dashboard "shows the list of templates" was flaky because
  other_template's Faker::Book.title could randomly collide with one
  of the 5 in-account templates. Pin the name to a unique suffix.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

Wabo

5d1422d37b

Enable Editor and Viewer user roles

Splits the previously single-role Ability class along role boundaries.
Admin keeps full account management. Editor gets CRUD on templates,
folders, submissions, submitters, and template sharings, but cannot
touch users, account settings, encrypted configs, webhooks, or MCP.
Viewer gets read-only access to the same content surface. Every role
keeps self-service on their own User / UserConfig / AccessToken.

UsersController#index gains a one-line admin guard so non-admins
cannot reach the user list via the self-manage rule's class-level
CanCan check.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

3 Commits (1edc41c9818e5948668f93821056ca8d0ade6f4e)