Add to option to login with an emailadres (#1196)

* Initial commit of email login feature

* Update app/models/sofia_account.rb

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

* add case insensitive email lookup in find_by_login

* rename helper

* add some extra tests

* fix test

* fix some test

* changes tests

* reduce the amount of tests

* fix tests

* add end tokens

* fix lint

* fix some more tests

* make some changes to tests

* fix lint

* fix tests

* introduce fixes

* fix the seeding

* fix lint

* make a exception for rubocop

* make the emails simpeler

---------

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Author: lodewiges

app/controllers/sofia_accounts_controller.rb

@@ -126,7 +126,7 @@ def new_activation_link # rubocop:disable Metrics/AbcSize, Metrics/MethodLength,
 
   def forgot_password # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
     generic_message = 'Als dit account bestaat, is er een email verstuurd.'
-    sofia_account = SofiaAccount.find_by(username: params.require(:username))
+    sofia_account = SofiaAccount.find_for_login(params.require(:username))
     user = sofia_account&.user
 
     if user&.email.present?

app/models/sofia_account.rb

@@ -32,4 +32,15 @@ def reset_password_url(activation_token)
     default_options = Rails.application.config.action_mailer.default_url_options
     URI::Generic.build(default_options.merge(path: "/sofia_accounts/#{id}/reset_password", query: params.to_query)).to_s
   end
+
+  def self.find_for_login(identifier)
+    return nil if identifier.blank?
+
+    trimmed = identifier.to_s.strip
+    where('LOWER(username) = LOWER(?)', trimmed).first || User.find_by('LOWER(email) = LOWER(?)', trimmed)&.sofia_account
+  end
+
+  def self.resolve_login_identifier(identifier)
+    find_for_login(identifier)&.username
+  end
 end

app/views/sofia_accounts/forgot_password_view.html.erb

@@ -7,7 +7,7 @@
   <div class="card-body px-4 py-3 ">
     <%= simple_form_for :sofia_account, url: forgot_password_sofia_accounts_path, method: :post, wrapper: :vertical_form do |f| %>
       <p class="text-muted mb-4">Door dit formulier in te vullen ontvangt u een email met een link om een nieuw wachwoord in te stellen.</p>
-      <%= f.input :username, as: :string, label: "Gebruikersnaam", input_html: {name: 'username', class: 'sofia-account-input'} %>
+      <%= f.input :username, as: :string, label: "Gebruikersnaam of e-mailadres", input_html: {name: 'username', class: 'sofia-account-input'} %>
       <div class="d-grid mt-4">
         <%= f.button :submit, 'Link aanvragen', method: :post, class: 'btn btn-primary mt-1' %>
       </div>

app/views/sofia_accounts/login.html.erb

@@ -21,7 +21,7 @@
       <h4 class="card-title">Inloggen</h4>
     </div>
     <div class="card-body px-4 py-3">
-      <%= f.input :auth_key, as: :string, label: "Gebruikersnaam", input_html: {name: 'auth_key', class: 'sofia-account-input'} %>
+      <%= f.input :auth_key, as: :string, label: "Gebruikersnaam of e-mailadres", input_html: {name: 'auth_key', class: 'sofia-account-input'} %>
       <%= f.input :password, as: :password, label: "Wachtwoord", hint: 'Wachtwoord vergeten?', wrapper: :with_hint_link, input_html: {name: 'password', class: 'sofia-account-input'}, hint_html: {href: forgot_password_view_sofia_accounts_path} %>
       <div class="d-grid mt-4">
         <button class="btn btn-primary" type="submit" formaction='javascript:authenticate_login();' id="login_submit_button">Inloggen</button>

config/initializers/devise.rb

@@ -18,7 +18,10 @@
   config.omniauth :amber_oauth2, Rails.application.config.x.amber_client_id,
                   Rails.application.config.x.amber_client_secret
   config.omniauth :identity, model: SofiaAccount, fields: %i[username user_id],
-                             locate_conditions: ->(req) { { SofiaAccount.auth_key => req.params['auth_key'] } },
+                             locate_conditions: lambda { |req|
+                               resolved_username = SofiaAccount.resolve_login_identifier(req.params['auth_key'])
+                               { SofiaAccount.auth_key => resolved_username || req.params['auth_key'] }
+                             },
                              on_login: lambda { |e|
                                          SofiaAccountsController.action(:omniauth_redirect_login).call(e)
                                        },

db/seeds.rb

@@ -24,9 +24,10 @@
 ]
 
 users = dutch_names.map do |name|
-  FactoryBot.create(:user, name:)
+  email = "#{name.downcase.gsub(/ van der | de | van /i, ' ').tr(' ', '.')}@example.com"
+  FactoryBot.create(:user, name:, email:)
 end
-users << FactoryBot.create(:user, name: 'Benjamin Knopje', birthday: 16.years.ago)
+users << FactoryBot.create(:user, name: 'Benjamin Knopje', email: 'benjamin.knopje@example.com', birthday: 16.years.ago)
 
 p 'Seeding activities...'
 # Recente activiteiten
@@ -44,16 +45,18 @@
   { title: 'Dies Natalis', days_ago: 90 }
 ]
 
-historical_activities.each do |hist_act|
-  start_time = hist_act[:days_ago].days.ago.beginning_of_hour
-  end_time = (hist_act[:days_ago] - 1).days.ago.beginning_of_hour
+historical_activities_list = historical_activities.map do |hist_act|
+  past_start_time = hist_act[:days_ago].days.ago.beginning_of_hour
+  past_end_time = (hist_act[:days_ago] - 1).days.ago.beginning_of_hour
+
+  # Create activity with future times first to pass validation
   activity = FactoryBot.create(:activity,
                                title: hist_act[:title],
-                               start_time:,
-                               end_time:,
                                price_list: price_lists.sample,
                                created_by: users.sample)
+
   activities << activity
+  { activity:, past_start_time:, past_end_time: }
 end
 
 p 'Seeding orders...'
@@ -88,6 +91,14 @@
   end
 end
 
+# Lock historical activities at the very end after all orders and credit mutations are created
+p 'Locking historical activities...'
+historical_activities_list.each do |hist_act|
+  # rubocop:disable Rails/SkipsModelValidations
+  hist_act[:activity].update_columns(start_time: hist_act[:past_start_time], end_time: hist_act[:past_end_time])
+  # rubocop:enable Rails/SkipsModelValidations
+end
+
 p 'Seeding invoices'
 FactoryBot.create_list(:invoice, 3, :with_rows)
 
@@ -102,17 +113,17 @@
 p 'Seeding Sofia accounts...'
 # Use environment variable for password or fallback to default for development
 
-treasurer_user = FactoryBot.create(:user, :sofia_account, name: 'Penningmeester Test')
+treasurer_user = FactoryBot.create(:user, :sofia_account, name: 'Penningmeester Test', email: 'penningmeester@example.com')
 SofiaAccount.create!(username: 'penningmeester', password: 'password1234', user: treasurer_user)
 treasurer_role = Role.create(role_type: :treasurer)
 treasurer_user.roles << treasurer_role
 
-main_bartender_user = FactoryBot.create(:user, :sofia_account, name: 'Hoofdtapper Test')
+main_bartender_user = FactoryBot.create(:user, :sofia_account, name: 'Hoofdtapper Test', email: 'hoofdtapper@example.com')
 SofiaAccount.create!(username: 'hoofdtapper', password: 'password1234', user: main_bartender_user)
 main_bartender_role = Role.create(role_type: :main_bartender)
 main_bartender_user.roles << main_bartender_role
 
-renting_manager_user = FactoryBot.create(:user, :sofia_account, name: 'Verhuur Test')
+renting_manager_user = FactoryBot.create(:user, :sofia_account, name: 'Verhuur Test', email: 'verhuur@example.com')
 SofiaAccount.create!(username: 'verhuur', password: 'password1234', user: renting_manager_user)
 renting_manager_role = Role.create(role_type: :renting_manager)
 renting_manager_user.roles << renting_manager_role

spec/controllers/callbacks_controller/sofia_account_spec.rb

@@ -31,6 +31,7 @@
       end
 
       it 'sends a json response' do
+        expect(response).to have_http_status(:ok)
         expect(response.content_type).to eq 'application/json; charset=utf-8'
         expect(response.parsed_body['state']).to eq 'password_prompt'
         expect(response.parsed_body['error_message']).to eq 'Inloggen mislukt. De ingevulde gegevens zijn incorrect.'

spec/models/sofia_account_spec.rb

@@ -96,4 +96,124 @@
   describe 'reset_password_url' do
     it { expect(sofia_account.reset_password_url(sofia_account.user.activation_token)).to eq "http://testhost:1337/sofia_accounts/#{sofia_account.id}/reset_password?activation_token=#{sofia_account.user.activation_token}" }
   end
+
+  describe '.find_for_login' do
+    let!(:account) { create(:sofia_account, username: 'testuser', password: 'password1234') }
+    let!(:account_with_email) { create(:sofia_account, password: 'password1234') }
+
+    context 'when searching by username' do
+      it 'finds account by exact username match' do
+        result = described_class.find_for_login('testuser')
+        expect(result).to eq(account)
+      end
+
+      it 'finds account by username regardless of case' do
+        result = described_class.find_for_login('TESTUSER')
+        expect(result).to eq(account)
+      end
+
+      it 'finds account by username with whitespace trimmed' do
+        result = described_class.find_for_login('  testuser  ')
+        expect(result).to eq(account)
+      end
+    end
+
+    context 'when searching by email' do
+      before do
+        account_with_email.user.update!(email: 'user@example.com')
+      end
+
+      it 'finds account by exact email match' do
+        result = described_class.find_for_login('user@example.com')
+        expect(result).to eq(account_with_email)
+      end
+
+      it 'finds account by email regardless of case' do
+        result = described_class.find_for_login('USER@EXAMPLE.COM')
+        expect(result).to eq(account_with_email)
+      end
+
+      it 'finds account by email with whitespace trimmed' do
+        result = described_class.find_for_login('  user@example.com  ')
+        expect(result).to eq(account_with_email)
+      end
+
+      it 'prefers username match over email match' do
+        account_with_email.update!(username: 'user@example.com')
+        result = described_class.find_for_login('user@example.com')
+        expect(result).to eq(account_with_email)
+      end
+    end
+
+    context 'when handling nil or blank input' do
+      it 'returns nil for nil or blank identifier' do
+        expect(described_class.find_for_login(nil)).to be_nil
+        expect(described_class.find_for_login('')).to be_nil
+        expect(described_class.find_for_login('   ')).to be_nil
+      end
+    end
+
+    context 'when no account matches' do
+      it 'returns nil for non-existent username' do
+        result = described_class.find_for_login('nonexistent')
+        expect(result).to be_nil
+      end
+
+      it 'returns nil for non-existent email' do
+        result = described_class.find_for_login('nonexistent@example.com')
+        expect(result).to be_nil
+      end
+    end
+  end
+
+  describe '.resolve_login_identifier' do
+    context 'when identifier resolves to an account' do
+      let(:email_resolve_account) { create(:sofia_account, username: 'emailuser', password: 'password1234') }
+
+      before do
+        create(:sofia_account, username: 'resolveuser', password: 'password1234')
+        email_resolve_account.user.update!(email: 'resolve@example.com')
+      end
+
+      it 'returns username when searched by username' do
+        result = described_class.resolve_login_identifier('resolveuser')
+        expect(result).to eq('resolveuser')
+      end
+
+      it 'returns username when searched by email' do
+        result = described_class.resolve_login_identifier('resolve@example.com')
+        expect(result).to eq(email_resolve_account.username)
+      end
+
+      it 'normalizes case for username lookup' do
+        result = described_class.resolve_login_identifier('RESOLVEUSER')
+        expect(result).to eq('resolveuser')
+      end
+
+      it 'normalizes case for email lookup' do
+        result = described_class.resolve_login_identifier('RESOLVE@EXAMPLE.COM')
+        expect(result).to eq(email_resolve_account.username)
+      end
+
+      it 'trims whitespace for username lookup' do
+        result = described_class.resolve_login_identifier('  resolveuser  ')
+        expect(result).to eq('resolveuser')
+      end
+
+      it 'trims whitespace for email lookup' do
+        result = described_class.resolve_login_identifier('  resolve@example.com  ')
+        expect(result).to eq(email_resolve_account.username)
+      end
+    end
+
+    context 'when identifier does not resolve to an account' do
+      it 'returns nil for nil, empty or non-existent identifiers' do
+        expect(described_class.resolve_login_identifier(nil)).to be_nil
+        expect(described_class.resolve_login_identifier('')).to be_nil
+        expect(described_class.resolve_login_identifier('   ')).to be_nil
+        expect(described_class.resolve_login_identifier('nonexistentuser')).to be_nil
+        expect(described_class.resolve_login_identifier('nonexistent@example.com')).to be_nil
+      end
+    end
+  end
 end