upgrade ci workflow

Author: fabianekc

.github/workflows/publish.yml

@@ -12,7 +12,7 @@ on:
 jobs:
   main:
     name: Build, Validate and Deploy
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-24.04
     steps:
       - uses: actions/checkout@v2
       - uses: w3c/spec-prod@v2

cli/docker/Dockerfile-local

@@ -28,7 +28,7 @@ COPY docker/local-gem/*.gem /tmp/
 
 RUN addgroup -S user && \
     adduser -S user -G user && \
-    apk add --no-cache vim libsodium-dev git make gcc musl-dev jq npm openjdk8 bash curl py3-pip && \
+    apk add --no-cache vim libsodium-dev git make gcc musl-dev jq npm openjdk8 bash curl py3-pip openssl openssl-dev build-base ruby-dev && \
     gem install /tmp/*.gem && \
     gem install httparty ed25519 multibases multihashes multicodecs json-canonicalization optparse rbnacl dag uri && \
     gem install securerandom -v 0.1.1 && \

repo2/app/controllers/api/v1/resources_controller.rb

@@ -70,7 +70,6 @@ def info
             end
 
             def idaustria
-
                 STDOUT.sync = true
                 logger = Logger.new(STDOUT)
                 level ||= LOGLEVELS.index ENV.fetch("LOG_LEVEL","INFO")

repo2/app/controllers/api/v1/soya_controller.rb

@@ -15,20 +15,18 @@ def read
                            status: 404
                 else
                     if @store.soya_tag == "current"
-                        retval = {
-                          content: @store.item,
-                          "id": @store.id,
-                          "dri": @store.soya_name,
-                          "soya_name": @store.soya_name,
-                        }
+                        dri = @store.soya_name
                     else
-                        retval = {
-                          content: @store.item,
-                          "id": @store.id,
-                          "dri": @store.soya_dri,
-                          "soya_name": @store.soya_name,
-                        }
-                    end                        
+                        dri = @store.soya_dri
+                    end
+                    retval = {
+                      data: @store.item,
+                      meta: @store.meta,
+                      "id": @store.id,
+                      "dri": dri,
+                      "soya_name": @store.soya_name,
+                      "soya_yaml": @store.soya_yaml
+                    }
                     render json: retval.to_json,
                            status: 200
                 end

repo2/app/controllers/api_controller.rb

@@ -0,0 +1,12 @@
+class ApiController < ApplicationController
+    def doorkeeper_unauthorized_render_options(error: nil)
+        { json: { error: "Not authorized" } }
+    end
+
+    if !(ENV["AUTH"].to_s == "" || ENV["AUTH"].to_s.downcase == "false")
+        # !!!fix-me ENV["AUTH"] == "optional" handling !!!
+        if ENV["AUTH"].to_s.downcase != "optional"
+            before_action -> { doorkeeper_authorize! :read, :write, :admin }, except: [:active, :idaustria]
+        end
+    end
+end

repo2/app/controllers/dri_controller.rb

@@ -67,6 +67,19 @@ def read_yaml
     end
 
     def delete
+        # only logged-in users can delete
+        @at = Doorkeeper::AccessToken.find_by_token(doorkeeper_token.token) rescue nil
+        if @at.nil?
+            render json: {"error": "not authorized"},
+                   status: 401
+            return
+        end
+        case ENV['AUTH'].to_s.downcase
+        when "optional", "delete"
+            # only users of the same organisation can delete
+        else
+            # only admin users can delete
+        end
         store_id, msg = get_soya(params[:dri])
         if store_id.nil?
             render json: {"error": "not found"},

repo2/app/controllers/frontend_controller.rb

@@ -0,0 +1,46 @@
+class FrontendController < ApplicationController
+    include ActionController::Cookies 
+
+    def register
+        output = "<html><head><title>SOyA</title></head>"
+        output +="<body><h1>SOyA - User Registration</h1></body>"
+        output +="</html>" 
+        render html: output.html_safe, 
+               status: 200
+    end
+
+    def user
+        token = cookies[:Authorization].split(' ').last rescue nil
+puts "token: " + token.to_s
+        if token.nil?
+            redirect '/'
+            return
+        end
+        @at = Doorkeeper::AccessToken.find_by_token(token) rescue nil
+puts "AccessToken: " + @at.to_s
+        if @at.nil?
+            redirect '/'
+            return
+        end
+        @oauth = Doorkeeper::Application.find(@at.application_id) rescue nil
+puts "OauthApp: " + @oauth.to_s
+        if @oauth.nil?
+            redirect '/'
+            return
+        end
+        @user = User.find_by_name(@oauth.name)
+puts "User: " + @user.to_s
+        if @user.nil?
+            redirect '/'
+            return
+        end
+
+        output = "<html><head><title>SOyA</title></head>"
+        output +="<body><h1>User Profile - " + @user.full_name.to_s + "</h1>"
+        # output +="<a href='/?APP_KEY=" + @oauth.uid + "&APP_SECRET=" + @oauth.secret + "'>back</a>"
+        output +="<a href='/'>back</a>"
+        output +="</body></html>" 
+        render html: output.html_safe, 
+               status: 200
+    end
+end

repo2/app/helpers/soya_helper.rb

@@ -56,7 +56,8 @@ def createDriVersion(input)
             base_url = input["@context"]["@base"] rescue ""
             input["@context"].delete("@base") rescue nil
             raw = input.to_json_c14n
-            dri = Multibases.pack("base58btc", Multihashes.encode(Digest::SHA256.digest(raw), "sha2-256").unpack('C*')).to_s
+            dri = Multibases.pack('base58btc', RbNaCl::Hash.sha256(raw).unpack('C*')).to_s
+            # dri = Multibases.pack("base58btc", Multihashes.encode(Digest::SHA256.digest(raw), "sha2-256").unpack('C*')).to_s
             raw = JSON.parse(raw)
             raw["@context"]["@base"] = base_url.split('/')[0..-2].join("/") + "/" + dri + "/"
         rescue => error

repo2/app/helpers/stores_helper.rb

@@ -8,8 +8,8 @@ def write_item(item_data, meta_data, schema, did_document, did_log)
 
 puts " - meta_data: " + meta_data.to_json
 
-        soya_json = item_data["content"]
-        soya_yaml = item_data["soya_yaml"]
+        soya_json = item_data
+        soya_yaml = meta_data.delete("soya_yaml")
         soya_name = getSoyaName(soya_json.deep_dup)
         soya_dri_json, soya_dri, msg = createDriVersion(soya_json.deep_dup)
         soya_tag = ""
@@ -23,6 +23,7 @@ def write_item(item_data, meta_data, schema, did_document, did_log)
             meta_data["soya_dri"] = soya_dri
             if !meta_data["soya_tag"].nil?
                 soya_tag = meta_data["soya_tag"].to_s
+puts " - soya_tag: " + soya_tag.to_s
             end
             if !meta_data["id"].nil?
                 provided_id = meta_data["id"].to_i rescue nil
@@ -165,9 +166,18 @@ def write_item(item_data, meta_data, schema, did_document, did_log)
                             @record.save
                             return_id = @record.id
 puts "return_id: " + return_id.to_s
+                            # create DRI version
+                            new_dri = create_soya(soya_name, soya_dri_json, soya_yaml, meta_data, soya_tag, soya_dri, item_dri)
+puts "DRI version: " + new_dri.to_s
                         else
-                            # copy record with new tag
+puts "soya_tag.to_s: " + soya_tag.to_s
+                            # record with new tag
                             return_id = create_soya(soya_name, soya_json, soya_yaml, meta_data, soya_tag, soya_dri, dri)
+puts "return_id: " + return_id.to_s
+                            # create DRI version
+                            new_dri = create_soya(soya_name, soya_dri_json, soya_yaml, meta_data, '', soya_dri, item_dri)
+puts "DRI version: " + new_dri.to_s
+
                         end
                     else
                         # copy record with new tag

repo2/app/models/organization.rb

@@ -0,0 +1,2 @@
+class Organization < ApplicationRecord
+end