mirror of
https://github.com/we-promise/sure.git
synced 2026-04-19 12:04:08 +00:00
b803ddac96
* OAuth * Add API test routes and update Doorkeeper token handling for test environment - Introduced API namespace with test routes for controller testing in the test environment. - Updated Doorkeeper configuration to allow fallback to plain tokens in the test environment for easier testing. - Modified schema to change resource_owner_id type from bigint to string. * Implement API key authentication and enhance access control - Replaced Doorkeeper OAuth authentication with a custom method supporting both OAuth and API keys in the BaseController. - Added methods for API key authentication, including validation and logging. - Introduced scope-based authorization for API keys in the TestController. - Updated routes to include API key management endpoints. - Enhanced logging for API access to include authentication method details. - Added tests for API key functionality, including validation, scope checks, and access control enforcement. * Add API key rate limiting and usage tracking - Implemented rate limiting for API key authentication in BaseController. - Added methods to check rate limits, render appropriate responses, and include rate limit headers in responses. - Updated routes to include a new usage resource for tracking API usage. - Enhanced tests to verify rate limit functionality, including exceeding limits and per-key tracking. - Cleaned up Redis data in tests to ensure isolation between test cases. * Add Jbuilder for JSON rendering and refactor AccountsController - Added Jbuilder gem for improved JSON response handling. - Refactored index action in AccountsController to utilize Jbuilder for rendering JSON. - Removed manual serialization of accounts and streamlined response structure. - Implemented a before_action in BaseController to enforce JSON format for all API requests. * Add transactions resource to API routes - Added routes for transactions, allowing index, show, create, update, and destroy actions. - This enhancement supports comprehensive transaction management within the API. * Enhance API authentication and onboarding handling - Updated BaseController to skip onboarding requirements for API endpoints and added manual token verification for OAuth authentication. - Improved error handling and logging for invalid access tokens. - Introduced a method to set up the current context for API requests, ensuring compatibility with session-like behavior. - Excluded API paths from onboarding redirects in the Onboardable concern. - Updated database schema to change resource_owner_id type from bigint to string for OAuth access grants. * Fix rubocop offenses - Fix indentation and spacing issues - Convert single quotes to double quotes - Add spaces inside array brackets - Fix comment alignment - Add missing trailing newlines - Correct else/end alignment 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> * Fix API test failures and improve test reliability - Fix ApiRateLimiterTest by removing mock users method and using fixtures - Fix UsageControllerTest by removing mock users method and using fixtures - Fix BaseControllerTest by using different users for multiple API keys - Use unique display_key values with SecureRandom to avoid conflicts - Fix double render issue in UsageController by returning after authorize_scope\! - Specify controller name in routes for usage resource - Remove trailing whitespace and empty lines per Rubocop All tests now pass and linting is clean. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> * Add API transactions controller warning to brakeman ignore The account_id parameter in the API transactions controller is properly validated on line 79: family.accounts.find(transaction_params[:account_id]) This ensures users can only create transactions in accounts belonging to their family, making this a false positive. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> --------- Signed-off-by: Josh Pigford <josh@joshpigford.com> Co-authored-by: Claude <noreply@anthropic.com>
98 lines
3.6 KiB
YAML
98 lines
3.6 KiB
YAML
---
|
|
en:
|
|
settings:
|
|
billings:
|
|
show:
|
|
page_title: Billing
|
|
subscription_subtitle: Update your subscription and billing details
|
|
subscription_title: Manage subscription
|
|
preferences:
|
|
show:
|
|
country: Country
|
|
currency: Currency
|
|
date_format: Date format
|
|
general_subtitle: Configure your preferences
|
|
general_title: General
|
|
default_period: Default Period
|
|
language: Language
|
|
page_title: Preferences
|
|
theme_dark: Dark
|
|
theme_light: Light
|
|
theme_subtitle: Choose a preferred theme for the app
|
|
theme_system: System
|
|
theme_title: Theme
|
|
timezone: Timezone
|
|
profiles:
|
|
destroy:
|
|
cannot_remove_self: You cannot remove yourself from the account.
|
|
member_removal_failed: There was a problem removing the member.
|
|
member_removed: Member was successfully removed.
|
|
not_authorized: You are not authorized to remove members.
|
|
show:
|
|
confirm_delete:
|
|
body: Are you sure you want to permanently delete your account? This action
|
|
is irreversible.
|
|
title: Delete account?
|
|
confirm_reset:
|
|
body: Are you sure you want to reset your account? This will delete all your accounts, categories, merchants, tags, and other data. This action cannot be undone.
|
|
title: Reset account?
|
|
confirm_remove_invitation:
|
|
body: Are you sure you want to remove the invitation for %{email}?
|
|
title: Remove Invitation
|
|
confirm_remove_member:
|
|
body: Are you sure you want to remove %{name} from your account?
|
|
title: Remove Member
|
|
danger_zone_title: Danger Zone
|
|
delete_account: Delete account
|
|
delete_account_warning: Deleting your account will permanently remove all
|
|
your data and cannot be undone.
|
|
reset_account: Reset account
|
|
reset_account_warning: Resetting your account will delete all your accounts, categories, merchants, tags, and other data, but keep your user account intact.
|
|
email: Email
|
|
first_name: First Name
|
|
household_form_input_placeholder: Enter household name
|
|
household_form_label: Household name
|
|
household_subtitle: Invite family members, partners and other inviduals. Invitees
|
|
can login to your household and access your shared accounts.
|
|
household_title: Household
|
|
invitation_link: Invitation link
|
|
invite_member: Add member
|
|
last_name: Last Name
|
|
page_title: Account
|
|
pending: Pending
|
|
profile_subtitle: Customize how you appear on Maybe
|
|
profile_title: Profile
|
|
remove_invitation: Remove Invitation
|
|
remove_member: Remove Member
|
|
save: Save
|
|
securities:
|
|
show:
|
|
page_title: Security
|
|
settings_nav:
|
|
accounts_label: Accounts
|
|
api_key_label: API Key
|
|
billing_label: Billing
|
|
categories_label: Categories
|
|
feedback_label: Feedback
|
|
general_section_title: General
|
|
imports_label: Imports
|
|
logout: Logout
|
|
merchants_label: Merchants
|
|
other_section_title: More
|
|
preferences_label: Preferences
|
|
profile_label: Account
|
|
rules_label: Rules
|
|
security_label: Security
|
|
self_hosting_label: Self hosting
|
|
tags_label: Tags
|
|
transactions_section_title: Transactions
|
|
whats_new_label: What's new
|
|
settings_nav_link_large:
|
|
next: Next
|
|
previous: Back
|
|
user_avatar_field:
|
|
accepted_formats: JPG or PNG. 5MB max.
|
|
choose: Upload photo
|
|
choose_label: (optional)
|
|
change: Change photo
|