Restructure omni services and add Chatwoot research snapshot

2026-02-21 11:11:27 +07:00
parent edea7a0034
commit b73babbbf6
7732 changed files with 978203 additions and 32 deletions
--- a/research/chatwoot/app/models/installation_config.rb
+++ b/research/chatwoot/app/models/installation_config.rb
@@ -0,0 +1,65 @@
+# == Schema Information
+#
+# Table name: installation_configs
+#
+#  id               :bigint           not null, primary key
+#  locked           :boolean          default(TRUE), not null
+#  name             :string           not null
+#  serialized_value :jsonb            not null
+#  created_at       :datetime         not null
+#  updated_at       :datetime         not null
+#
+# Indexes
+#
+#  index_installation_configs_on_name                 (name) UNIQUE
+#  index_installation_configs_on_name_and_created_at  (name,created_at) UNIQUE
+#
+class InstallationConfig < ApplicationRecord
+  # https://stackoverflow.com/questions/72970170/upgrading-to-rails-6-1-6-1-causes-psychdisallowedclass-tried-to-load-unspecif
+  # https://discuss.rubyonrails.org/t/cve-2022-32224-possible-rce-escalation-bug-with-serialized-columns-in-active-record/81017
+  # FIX ME : fixes breakage of installation config. we need to migrate.
+  # Fix configuration in application.rb
+  serialize :serialized_value, coder: YAML, type: ActiveSupport::HashWithIndifferentAccess
+
+  before_validation :set_lock
+  validates :name, presence: true
+  validate :saml_sso_users_check, if: -> { name == 'ENABLE_SAML_SSO_LOGIN' }
+
+  # TODO: Get rid of default scope
+  # https://stackoverflow.com/a/1834250/939299
+  default_scope { order(created_at: :desc) }
+  scope :editable, -> { where(locked: false) }
+
+  after_commit :clear_cache
+
+  def value
+    # This is an extra hack again cause of the YAML serialization, in case of new object initialization in super admin
+    # It was throwing error as the default value of column '{}' was failing in deserialization.
+    return {}.with_indifferent_access if new_record? && @attributes['serialized_value']&.value_before_type_cast == '{}'
+
+    serialized_value[:value]
+  end
+
+  def value=(value_to_assigned)
+    self.serialized_value = {
+      value: value_to_assigned
+    }.with_indifferent_access
+  end
+
+  private
+
+  def set_lock
+    self.locked = true if locked.nil?
+  end
+
+  def clear_cache
+    GlobalConfig.clear_cache
+  end
+
+  def saml_sso_users_check
+    return unless value == false || value == 'false'
+    return unless User.exists?(provider: 'saml')
+
+    errors.add(:base, 'Cannot disable SAML SSO login while users are using SAML authentication')
+  end
+end