docuseal

Commit Graph

Author	SHA1	Message	Date
Wabo	977a98a5da	Sync to upstream 3.0.2 — integrate 28 upstream commits with WaboSign rebrand	3 weeks ago
Wabo	dca4a705ce	Merge upstream/master (tag 3.0.1) via sync/upstream-3.0.1 Upstream highlights (17 commits, DocuSeal 3.0.1): - convert images on upload (JPEG for opaque images, PNG for alpha) - security headers - handle dangerous file extensions - isolate editor nodes - gem updates - image autorotation fix WaboSign conflict resolutions: - Kept per-account branded_product_name() calls throughout PDF generation - Took upstream's smarter image format selection (JPEG/PNG based on alpha) - Kept deleted SaaS-only controllers (newsletters, enquiries, console_redirect) - Kept deleted docs/api/ (intentionally removed in WaboSign 1.0.0) - Took upstream convert-upload custom element for template upload button - Removed vendor/bundle (upstream added in 3.0.1; fork excludes /vendor) - Applied encoding-error fix to bin/rebrand-sync Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	3 weeks ago
Wabo	5282ea43fe	Apply WaboSign rebrand sweep to upstream 3.0.1 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	3 weeks ago
Pete Matsyburka	89bf83febb	adjust autorot	4 weeks ago
Pete Matsyburka	29d3a80d3f	fix rubocop	4 weeks ago
Pete Matsyburka	07841722ac	adjust image load	4 weeks ago
Wabo	53e677417f	Per-account product-name branding Account admins can now replace "WaboSign" in the UI, emails, audit-trail PDFs, and authenticator-app issuer with their own product name. The brand override is stored as an AccountConfig row (brand_name key), managed from /settings/personalization above the logo upload. Resolution flows through Wabosign.branded_product_name(account = nil): 1. account&.brand_name if a record is passed 2. else the deployment's oldest non-archived account's brand_name (so anonymous surfaces like the landing page, PWA manifest, and og:title get the operator's brand on single-tenant installs) 3. else Wabosign::PRODUCT_NAME ("WaboSign") AGPL §7(b) DocuSeal attribution stays untouched: - _powered_by.html.erb second line keeps Wabosign::UPSTREAM_NAME - _email_attribution.html.erb second paragraph keeps it - completed.vue keeps its hardcoded DocuSeal link The Wabosign::UPSTREAM_NAME and UPSTREAM_URL constants stay constants — they are never overridable. Swapped 41 direct Wabosign.product_name callers to pass the most-local account in scope (current_account, @template.account, @submitter.submission.account, submission.account, or nil for chrome without account context). Mailers' default `from:` is now a lambda that reads @current_account per message. SIGN_REASON constant in generate_result_attachments became sign_reason_template(account) so PDF signature reasons reflect the brand. The two i18n keys actually rendered with literal "WaboSign" (welcome_to_wabosign in templates_dashboard, connect_to_wabosign_mcp in mcp_settings) are parameterized to %{product_name} across the 7 locales that defined them. The other ~9 WaboSign-branded i18n keys are unreferenced dead code from the Pro paywall and stay as-is. Specs: spec/models/account_spec.rb (new) — Account#brand_name spec/lib/wabosign_spec.rb (new) — branded_product_name precedence spec/requests/personalization_settings_spec.rb (new) — end-to-end Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Pete Matsyburka	7fe56941fd	optimize pdf images	1 month ago
Wabo	a9a61c7979	Custom account logo with SVG sanitization Replaces the disabled "logo upload not bundled in OSS" placeholder with a real upload flow. Logos attach to the Account via ActiveStorage (`has_one_attached :logo`) and replace the default WaboSign mark at every render site that previously rendered `shared/_logo`. Accepted formats: PNG, JPEG, and SVG. SVGs go through `AccountLogo.sanitize_upload` before storage: - `<script>` and `<foreignObject>` elements removed - every `on*` attribute stripped (onclick, onload, onerror, …) - `href` / `xlink:href` dropped unless the value starts with `#` (in-doc fragment) or `data:` (inert in <img> context) Raster uploads pass through unchanged. 2 MB upload cap on all formats. Dispatch is a new `shared/_account_logo.html.erb` partial — takes an optional `account:` local and emits either `<img>` (logo attached) or falls back to the existing inline `shared/_logo.html.erb` SVG. All swapped render sites pass the right account expression: - shared/_title.html.erb → current_account - start_form/_brand_logo.html.erb → @template.account - submit_form/_brand_logo.html.erb → @submitter.submission.account - templates_uploads/show.html.erb → current_account - submissions/_logo.html.erb → @submission \|\| @submitter accounts - templates_share_link_qr/_logo.html.erb → @template.account The landing page stays on the default mark (no account context). Static favicon/PWA manifest/preview.png stay on the default brand. Audit-trail PDF (`lib/submissions/generate_audit_trail.rb#add_logo`) now calls `PdfIcons.account_logo_io(submission.account)`. SVG logos are rasterized to PNG via ActiveStorage variants (libvips + librsvg, both present in the production image via the `vips` Alpine pkg). On any failure path the helper logs and falls back to `PdfIcons.logo_io` so audit-trail generation never crashes on a bad logo. Routes: `resource :account_logo, only: %i[create destroy]` nested under `/settings`. AccountLogoController authorizes via `authorize!(:manage, current_account)` and routes the form back to `/settings/personalization` on success or failure. Specs (11/11 pass in the Ruby 4.0.1 + Postgres-14 container): - spec/lib/account_logo_spec.rb — 6 sanitizer unit cases - spec/requests/account_logo_controller_spec.rb — 5 request cases Smoke-tested end-to-end in the built image: - PNG round-trips through attach/download. - Malicious SVG (`<script>` + onload + alert) saves with all three payloads scrubbed from the stored bytes. - SVG → PNG rasterization for the PDF path produces a 18 KB PNG with valid PNG magic — confirms libvips/librsvg is actually wired in the production Alpine image. - After purge, `PdfIcons.account_logo_io` is byte-identical to `PdfIcons.logo_io` (clean fallback). - /settings/personalization renders the new form with all expected fields. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Wabo	2796ddf424	Rebrand DocuSeal to WaboSign and unlock Pro features Renames the product to WaboSign across UI, mailers, locales, assets, and internal Ruby module. Keeps the upstream DocuSeal attribution required by AGPLv3 §7(b) in the powered-by footer, email attribution, README, and a new NOTICE file. Migration renames the AATL cert identifier in encrypted configs from docuseal_aatl to wabosign_aatl. Removes multitenant-gated Pro upsell UI (Plans/Console/Upgrade links, SMS/SSO/bulk-send/logo placeholders, reminder-duration restriction, the "DocuSeal Pro" email-attribution toggle, conditions/formula/payment pricing links) so every shipped feature is reachable on a self-hosted deployment. Multitenant routing logic is preserved. Drops Discord, Twitter, and ChatGPT/AI-assistant chrome. Embedding modal keeps the upstream <docuseal-form> / @docuseal/* SDK contract so existing embedded forms continue to work; documented in NOTICE. REBRANDING.md captures the change inventory for future maintainers. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	1 month ago
Pete Matsyburka	a9dd200919	add pdfium rotate	1 month ago
Pete Matsyburka	c7afe33c72	add time formats	2 months ago
Pete Matsyburka	4adb1001b0	add rotate incremental config	2 months ago
Pete Matsyburka	6b85c28944	add error message	2 months ago
Pete Matsyburka	1355d350c5	fix xlsx boolean value	2 months ago
Pete Matsyburka	8b59c0aaa0	adjust normalize values	2 months ago
Pete Matsyburka	eaedaa96bb	fix rubocop	3 months ago
Pete Matsyburka	38577c6235	fix dynamic doc fields assignment	3 months ago
Pete Matsyburka	6ffc88b4ed	fix n+1	3 months ago
Pete Matsyburka	3eb0b8a89f	allow to delegate	3 months ago
Pete Matsyburka	8d7c3f0e26	fix generation	3 months ago
Pete Matsyburka	0e5f949bcf	remove email from signing reason	3 months ago
Pete Matsyburka	37196ff89f	add dynamic documents	4 months ago
Pete Matsyburka	451f83421a	fix cell render	4 months ago
Pete Matsyburka	ba84741a64	invite party via field	4 months ago
Pete Matsyburka	118f4a231b	detailed time format	4 months ago
Pete Matsyburka	8f6f418f54	fix font size	4 months ago
Pete Matsyburka	2fc5e9cfb3	format cells	5 months ago
Pete Matsyburka	91bb25e8b6	fix reload	5 months ago
Pete Matsyburka	c3f4480cdc	add submitter index	5 months ago
Pete Matsyburka	b5e57e1f2f	add include fields	5 months ago
Pete Matsyburka	c82c8b2272	fix race condition	5 months ago
Pete Matsyburka	96530bd809	fix race condition	5 months ago
Alex Turchyn	7b5494468f	update rails to 8.1.2	5 months ago
Pete Matsyburka	264897bbd5	audit with sender	5 months ago
Pete Matsyburka	67d59ff1ba	fix invite by order	5 months ago
Pete Matsyburka	700ebc4727	render reason	5 months ago
Pete Matsyburka	b88d99afe0	merge preview docs	5 months ago
Pete Matsyburka	b3eb8a70bf	fix submitter uuid	5 months ago
Pete Matsyburka	b10ed46ccc	add kba	6 months ago
Pete Matsyburka	1cf9cc18f1	do not retry	6 months ago
Pete Matsyburka	0d8e2c5ff0	adjust signature size	6 months ago
Pete Matsyburka	d525e0597a	recipient fields config	6 months ago
Pete Matsyburka	178809dad7	fix field render	6 months ago
Pete Matsyburka	676d775544	fix generation	6 months ago
Pete Matsyburka	7a33444f9b	add invite_by	6 months ago
Alex Turchyn	6e43a42274	add email 2FA	6 months ago
Pete Matsyburka	7481d27822	add tsa timeout	7 months ago
Pete Matsyburka	c4fbcc103a	autocorrect pdf	7 months ago
Pete Matsyburka	4c1c70ff04	fix audit generation	7 months ago

1 2 3 4 5 ...

346 Commits (9c464f54abd9ceda0770400a815d28fef8922133)