From: Marius Balteanu
(.*?)}m, '') + when 'markdown', 'common_mark' + content = content.gsub(%r{(~~~|```)(.*?)(~~~|```)}m, '') + end + + users = content.scan(MENTION_PATTERN).flatten + end + + MENTION_PATTERN = / + (?:^|\W) # beginning of string or non-word char + @((?>[a-z0-9][a-z0-9-]*)) # @username + (?!\/) # without a trailing slash + (?= + \.+[ \t\W]| # dots followed by space or non-word character + \.+$| # dots at end of line + [^0-9a-zA-Z_.]| # non-word character except dot + $ # end of line + ) + /ix + end + end + end +end diff --git a/lib/redmine/preparation.rb b/lib/redmine/preparation.rb index 4c6b3afe6..2ba3b5447 100644 --- a/lib/redmine/preparation.rb +++ b/lib/redmine/preparation.rb @@ -21,6 +21,7 @@ module Redmine module Preparation def self.prepare ActiveRecord::Base.include Redmine::Acts::Positioned + ActiveRecord::Base.include Redmine::Acts::Mentionable ActiveRecord::Base.include Redmine::I18n Scm::Base.add "Subversion" @@ -71,9 +72,10 @@ module Redmine map.permission :view_private_notes, {}, :read => true, :require => :member map.permission :set_notes_private, {}, :require => :member map.permission :delete_issues, {:issues => :destroy}, :require => :member + map.permission :mention_users, {} # Watchers map.permission :view_issue_watchers, {}, :read => true - map.permission :add_issue_watchers, {:watchers => [:new, :create, :append, :autocomplete_for_user]} + map.permission :add_issue_watchers, {:watchers => [:new, :create, :append, :autocomplete_for_user, :autocomplete_for_mention]} map.permission :delete_issue_watchers, {:watchers => :destroy} map.permission :import_issues, {} # Issue categories @@ -123,7 +125,7 @@ module Redmine map.permission :delete_wiki_pages, {:wiki => [:destroy, :destroy_version]}, :require => :member map.permission :delete_wiki_pages_attachments, {} map.permission :view_wiki_page_watchers, {}, :read => true - map.permission :add_wiki_page_watchers, {:watchers => [:new, :create, :autocomplete_for_user]} + map.permission :add_wiki_page_watchers, {:watchers => [:new, :create, :autocomplete_for_user, :autocomplete_for_mention]} map.permission :delete_wiki_page_watchers, {:watchers => :destroy} map.permission :protect_wiki_pages, {:wiki => :protect}, :require => :member map.permission :manage_wiki, {:wikis => :destroy, :wiki => :rename}, :require => :member @@ -145,7 +147,7 @@ module Redmine map.permission :delete_messages, {:messages => :destroy}, :require => :member map.permission :delete_own_messages, {:messages => :destroy}, :require => :loggedin map.permission :view_message_watchers, {}, :read => true - map.permission :add_message_watchers, {:watchers => [:new, :create, :autocomplete_for_user]} + map.permission :add_message_watchers, {:watchers => [:new, :create, :autocomplete_for_user, :autocomplete_for_mention]} map.permission :delete_message_watchers, {:watchers => :destroy} map.permission :manage_boards, {:projects => :settings, :boards => [:new, :create, :edit, :update, :destroy]}, :require => :member end diff --git a/public/javascripts/application.js b/public/javascripts/application.js index 5552952cd..91da19229 100644 --- a/public/javascripts/application.js +++ b/public/javascripts/application.js @@ -1127,9 +1127,13 @@ function inlineAutoComplete(element) { if (element.dataset.tribute === 'true') {return}; const getDataSource = function(entity) { - const dataSources = JSON.parse(rm.AutoComplete.dataSources); + const dataSources = rm.AutoComplete.dataSources; - return dataSources[entity]; + if (dataSources[entity]) { + return dataSources[entity]; + } else { + return false; + } } const remoteSearch = function(url, cb) { @@ -1187,6 +1191,26 @@ function inlineAutoComplete(element) { menuItemTemplate: function (wikiPage) { return sanitizeHTML(wikiPage.original.label); } + }, + { + trigger: '@', + lookup: function (user, mentionText) { + return user.name + user.firstname + user.lastname + user.login; + }, + values: function (text, cb) { + const url = getDataSource('users'); + if (url) { + remoteSearch(url + text, function (users) { + return cb(users); + }); + } + }, + menuItemTemplate: function (user) { + return user.original.name; + }, + selectTemplate: function (user) { + return '@' + user.original.login; + } } ], noMatchTemplate: "" diff --git a/test/functional/auto_completes_controller_test.rb b/test/functional/auto_completes_controller_test.rb index adda40422..33da211a5 100644 --- a/test/functional/auto_completes_controller_test.rb +++ b/test/functional/auto_completes_controller_test.rb @@ -79,7 +79,7 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_include "Bug #13", response.body end - def test_auto_complete_with_scope_all_should_search_other_projects + def test_issues_with_scope_all_should_search_other_projects get( :issues, :params => { @@ -92,13 +92,13 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_include "Bug #13", response.body end - def test_auto_complete_without_project_should_search_all_projects + def test_issues_without_project_should_search_all_projects get(:issues, :params => {:q => '13'}) assert_response :success assert_include "Bug #13", response.body end - def test_auto_complete_without_scope_all_should_not_search_other_projects + def test_issues_without_scope_all_should_not_search_other_projects get( :issues, :params => { @@ -128,7 +128,7 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_equal 'Bug #13: Subproject issue two', issue['label'] end - def test_auto_complete_with_status_o_should_return_open_issues_only + def test_issues_with_status_o_should_return_open_issues_only get( :issues, :params => { @@ -142,7 +142,7 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_not_include "closed", response.body end - def test_auto_complete_with_status_c_should_return_closed_issues_only + def test_issues_with_status_c_should_return_closed_issues_only get( :issues, :params => { @@ -156,7 +156,7 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_not_include "Issue due today", response.body end - def test_auto_complete_with_issue_id_should_not_return_that_issue + def test_issues_with_issue_id_should_not_return_that_issue get( :issues, :params => { @@ -182,7 +182,7 @@ class AutoCompletesControllerTest < Redmine::ControllerTest assert_include 'application/json', response.headers['Content-Type'] end - def test_auto_complete_without_term_should_return_last_10_issues + def test_issue_without_term_should_return_last_10_issues # There are 9 issues generated by fixtures # and we need two more to test the 10 limit %w(1..2).each do diff --git a/test/unit/journal_test.rb b/test/unit/journal_test.rb index 0e0177917..f9c269291 100644 --- a/test/unit/journal_test.rb +++ b/test/unit/journal_test.rb @@ -236,4 +236,12 @@ class JournalTest < ActiveSupport::TestCase assert_equal "image#{i}.png", attachment.filename end end + + def test_notified_mentions_should_not_include_users_who_cannot_view_private_notes + journal = Journal.generate!(journalized: Issue.find(2), user: User.find(1), private_notes: true, notes: 'Hello @dlopper, @jsmith and @admin.') + + # User "dlopper" has "Developer" role on project "eCookbook" + # Role "Developer" does not have the "View private notes" permission + assert_equal [1, 2], journal.notified_mentions.map(&:id) + end end diff --git a/test/unit/lib/redmine/acts/mentionable_test.rb b/test/unit/lib/redmine/acts/mentionable_test.rb new file mode 100644 index 000000000..9badcd6d2 --- /dev/null +++ b/test/unit/lib/redmine/acts/mentionable_test.rb @@ -0,0 +1,146 @@ +# frozen_string_literal: true + +# Redmine - project management software +# Copyright (C) 2006-2022 Jean-Philippe Lang +# +# This program is free software; you can redistribute it and/or +# modify it under the terms of the GNU General Public License +# as published by the Free Software Foundation; either version 2 +# of the License, or (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. + +require File.expand_path('../../../../../test_helper', __FILE__) + +class Redmine::Acts::MentionableTest < ActiveSupport::TestCase + fixtures :projects, :users, :email_addresses, :members, :member_roles, :roles, + :groups_users, + :trackers, :projects_trackers, + :enabled_modules, + :issue_statuses, :issue_categories, :issue_relations, :workflows, + :enumerations, + :issues + + def test_mentioned_users_with_user_mention + issue = Issue.generate!(project_id: 1, description: '@dlopper') + + assert_equal [User.find(3)], issue.mentioned_users + end + + def test_mentioned_users_with_multiple_mentions + issue = Issue.generate!(project_id: 1, description: 'Hello @dlopper, @jsmith.') + + assert_equal [User.find(2), User.find(3)], issue.mentioned_users + end + + def test_mentioned_users_should_not_mention_same_user_multiple_times + issue = Issue.generate!(project_id: 1, description: '@dlopper @jsmith @dlopper') + + assert_equal [User.find(2), User.find(3)], issue.mentioned_users + end + + def test_mentioned_users_should_include_only_active_users + # disable dlopper account + user = User.find(3) + user.status = User::STATUS_LOCKED + user.save + + issue = Issue.generate!(project_id: 1, description: '@dlopper @jsmith') + + assert_equal [User.find(2)], issue.mentioned_users + end + + def test_mentioned_users_should_include_only_visible_users + User.current = nil + Role.non_member.update! users_visibility: 'members_of_visible_projects' + Role.anonymous.update! users_visibility: 'members_of_visible_projects' + user = User.generate! + + issue = Issue.generate!(project_id: 1, description: "@jsmith @#{user.login}") + + assert_equal [User.find(2)], issue.mentioned_users + end + + def test_mentioned_users_should_not_include_mentioned_users_in_existing_content + issue = Issue.generate!(project_id: 1, description: 'Hello @dlopper') + + assert issue.save + assert_equal [User.find(3)], issue.mentioned_users + + issue.description = 'Hello @dlopper and @jsmith' + issue.save + + assert_equal [User.find(2)], issue.mentioned_users + end + + def test_mentioned_users_should_not_include_users_wrapped_in_pre_tags_for_textile + description = <<~STR +
+ Hello @jsmith ++ STR + + with_settings text_formatting: 'textile' do + issue = Issue.generate!(project_id: 1, description: description) + + assert_equal [], issue.mentioned_users + end + end + + def test_mentioned_users_should_not_include_users_wrapped_in_pre_tags_for_markdown + description = <<~STR + ``` + Hello @jsmith + ``` + STR + + with_settings text_formatting: 'markdown' do + issue = Issue.generate!(project_id: 1, description: description) + + assert_equal [], issue.mentioned_users + end + end + + def test_mentioned_users_should_not_include_users_wrapped_in_pre_tags_for_common_mark + description = <<~STR + ``` + Hello @jsmith + ``` + STR + + with_settings text_formatting: 'common_mark' do + issue = Issue.generate!(project_id: 1, description: description) + + assert_equal [], issue.mentioned_users + end + end + + def test_notified_mentions + issue = Issue.generate!(project_id: 1, description: 'Hello @dlopper, @jsmith.') + + assert_equal [User.find(2), User.find(3)], issue.notified_mentions + end + + def test_notified_mentions_should_not_include_users_who_out_of_all_email + User.find(3).update!(mail_notification: :none) + issue = Issue.generate!(project_id: 1, description: "Hello @dlopper, @jsmith.") + + assert_equal [User.find(2)], issue.notified_mentions + end + + def test_notified_mentions_should_not_include_users_who_cannot_view_the_object + user = User.find(3) + + # User dlopper does not have access to project "Private child of eCookbook" + issue = Issue.generate!(project_id: 5, description: "Hello @dlopper, @jsmith.") + + assert !issue.notified_mentions.include?(user) + end +end diff --git a/test/unit/mailer_test.rb b/test/unit/mailer_test.rb index 7ee682c06..3e214b47d 100644 --- a/test/unit/mailer_test.rb +++ b/test/unit/mailer_test.rb @@ -464,6 +464,19 @@ class MailerTest < ActiveSupport::TestCase assert_not_include user.mail, recipients end + def test_issue_add_should_notify_mentioned_users_in_issue_description + User.find(1).mail_notification = 'only_my_events' + + issue = Issue.generate!(project_id: 1, description: 'Hello @dlopper and @admin.') + + assert Mailer.deliver_issue_add(issue) + # @jsmith and @dlopper are members of the project + # admin is mentioned + # @dlopper won't receive duplicated notifications + assert_equal 3, ActionMailer::Base.deliveries.size + assert_include User.find(1).mail, recipients + end + def test_issue_add_should_include_enabled_fields issue = Issue.find(2) assert Mailer.deliver_issue_add(issue) @@ -608,6 +621,39 @@ class MailerTest < ActiveSupport::TestCase end end + def test_issue_edit_should_notify_mentioned_users_in_issue_updated_description + User.find(1).mail_notification = 'only_my_events' + + issue = Issue.find(3) + issue.init_journal(User.current) + issue.update(description: "Hello @admin") + journal = issue.journals.last + + ActionMailer::Base.deliveries.clear + Mailer.deliver_issue_edit(journal) + + # @jsmith and @dlopper are members of the project + # admin is mentioned in the updated description + # @dlopper won't receive duplicated notifications + assert_equal 3, ActionMailer::Base.deliveries.size + assert_include User.find(1).mail, recipients + end + + def test_issue_edit_should_notify_mentioned_users_in_notes + User.find(1).mail_notification = 'only_my_events' + + journal = Journal.generate!(journalized: Issue.find(3), user: User.find(1), notes: 'Hello @admin.') + + ActionMailer::Base.deliveries.clear + Mailer.deliver_issue_edit(journal) + + # @jsmith and @dlopper are members of the project + # admin is mentioned in the notes + # @dlopper won't receive duplicated notifications + assert_equal 3, ActionMailer::Base.deliveries.size + assert_include User.find(1).mail, recipients + end + def test_issue_should_send_email_notification_with_suppress_empty_fields ActionMailer::Base.deliveries.clear with_settings :notified_events => %w(issue_added) do @@ -703,6 +749,20 @@ class MailerTest < ActiveSupport::TestCase end end + def test_wiki_content_added_should_notify_mentioned_users_in_content + content = WikiContent.new(text: 'Hello @admin.', author_id: 1, page_id: 1) + content.save! + + ActionMailer::Base.deliveries.clear + Mailer.deliver_wiki_content_added(content) + + # @jsmith and @dlopper are members of the project + # admin is mentioned in the notes + # @dlopper won't receive duplicated notifications + assert_equal 3, ActionMailer::Base.deliveries.size + assert_include User.find(1).mail, recipients + end + def test_wiki_content_updated content = WikiContent.find(1) assert Mailer.deliver_wiki_content_updated(content) @@ -713,6 +773,21 @@ class MailerTest < ActiveSupport::TestCase end end + def test_wiki_content_updated_should_notify_mentioned_users_in_updated_content + content = WikiContent.find(1) + content.update(text: 'Hello @admin.') + content.save! + + ActionMailer::Base.deliveries.clear + Mailer.deliver_wiki_content_updated(content) + + # @jsmith and @dlopper are members of the project + # admin is mentioned in the notes + # @dlopper won't receive duplicated notifications + assert_equal 3, ActionMailer::Base.deliveries.size + assert_include User.find(1).mail, recipients + end + def test_register token = Token.find(1) assert Mailer.deliver_register(token.user, token)