From 62a020c95fef0198591cfaa99429a52a2ed4c650 Mon Sep 17 00:00:00 2001
From: Stuart Langridge <sil@kryogenix.org>
Date: Sat, 17 Feb 2018 15:53:46 +0000
Subject: [PATCH] Add recent contributors report, and allow reports to require
 auth to view. Closes #73

---
 README.reports.md             |  11 ++++
 assets/css/main.css           |  17 +++++-
 assets/img/lock.svg           |  23 +++++++
 lib/reports.js                |  14 ++++-
 php/github-login.php          |   4 ++
 reports/recentContributors.js | 112 ++++++++++++++++++++++++++++++++++
 templates/report.tmpl         |  22 +++++++
 templates/reportlist.tmpl     |   9 ++-
 8 files changed, 208 insertions(+), 4 deletions(-)
 create mode 100644 README.reports.md
 create mode 100644 assets/img/lock.svg
 create mode 100644 reports/recentContributors.js

diff --git a/README.reports.md b/README.reports.md
new file mode 100644
index 0000000..1622dd7
--- /dev/null
+++ b/README.reports.md
@@ -0,0 +1,11 @@
+# How to write Measure reports
+
+Measure allows the creation of "reports"; full-page summaries of data. These are very free-form; basically, a report can display whatever it wants without restriction. 
+
+## Basic report creation
+
+Your widget is expected to be a Node.js module which exports one function. That function takes two parameters, `options` and `callback`. It should call the callback with an object with `title` and `html` keys. The `title` is displayed as the title of the report, and should be plain text; `html` is a block of HTML which is placed as-is, without escaping, into the body of the report page. Reports are automatically linked from the "Reports" summary page.
+
+## Authentication
+
+A report may contain restricted information. If so, it is possible to restrict the report to be viewed only by authenticated users. To do this, add a `requires_authentication: true` entry to the output object. Note that authentication has to be enabled in `config.yaml`, otherwise the report will not be generated at all (a warning is printed in this situation). It is not possible to restrict a report to _specific_ authenticated users; just authenticated or not.
diff --git a/assets/css/main.css b/assets/css/main.css
index 5dcbed5..2880480 100755
--- a/assets/css/main.css
+++ b/assets/css/main.css
@@ -140,7 +140,7 @@ body {
     font-weight: 300;
 }
 
-section button, section input, section select {
+section button, section input, section select, .report select {
   color: black;
 }
 
@@ -154,6 +154,20 @@ section button, section input, section select {
   display: block;
 }
 
+p.is-signed-in button { color: black; margin: 0 1em; display: inline-block; }
+
+.main.report li a.requires_authentication {
+  padding-right: 20px;
+  background: url(../img/lock.svg) center right no-repeat;
+  background-size: contain;
+}
+
+.main.report a.login-required-link {
+  padding: 0.5em;
+  background: white;
+  color: black;
+}
+
 .main.report table th {
   color: white;
   font-weight: 500;
@@ -369,6 +383,7 @@ https://thenounproject.com/latyshevaoksana/collection/vending-machine/?i=880796
 https://thenounproject.com/search/?q=error&i=560230
 https://thenounproject.com/search/?q=search&i=591162
 https://thenounproject.com/search/?q=close&i=392991
+https://thenounproject.com/term/lock/424/
 */
 nav + nav li a.nav-repos::before { background-image: url(../img/Dashboards.svg); height: 18px; width: 18px; }
 nav + nav li a.nav-orgs::before { background-image: url(../img/Groups.svg); }
diff --git a/assets/img/lock.svg b/assets/img/lock.svg
new file mode 100644
index 0000000..2bdfeaa
--- /dev/null
+++ b/assets/img/lock.svg
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   xmlns:dc="http://purl.org/dc/elements/1.1/"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   height="100"
+   width="68"
+   id="svg2"
+   xml:space="preserve"
+   enable-background="new 0 0 68 100"
+   viewBox="0 0 68 100"
+   y="0px"
+   x="0px"
+   version="1.1"><metadata
+     id="metadata14"><rdf:RDF><cc:Work
+         rdf:about=""><dc:format>image/svg+xml</dc:format><dc:type
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" /><dc:title></dc:title></cc:Work></rdf:RDF></metadata><defs
+     id="defs12" /><path
+     style="fill:#ffffff"
+     id="path4"
+     d="M 60.5,41.338 60.5,26.5 C 60.5,11.888 48.611,0 34,0 19.389,0 7.5,11.888 7.5,26.5 L 7.5,41.338 0,42 0,97 34,100 68,97 68,42 60.5,41.338 Z M 38,77.5 l -4,0 -4,0 2.291,-8.396 C 30.94,68.461 30,67.096 30,65.5 c 0,-2.21 1.791,-4 4,-4 2.21,0 4,1.79 4,4 0,1.596 -0.939,2.961 -2.289,3.603 L 38,77.5 Z M 52.5,40.633 34,39 15.5,40.633 15.5,26.5 C 15.5,16.299 23.799,8 34,8 44.201,8 52.5,16.299 52.5,26.5 l 0,14.133 z" /></svg>
\ No newline at end of file
diff --git a/lib/reports.js b/lib/reports.js
index dd84150..88ea6b6 100644
--- a/lib/reports.js
+++ b/lib/reports.js
@@ -1,6 +1,7 @@
 const fs = require('fs');
 const glob = require('glob');
 const path = require('path');
+const wrap = require('word-wrap');
 
 const utils = require('./utils');
 const NICE_ERRORS = require('./nice_errors');
@@ -40,6 +41,12 @@ function executeReportModule(mod, options, in_params) {
                     console.warn("Skipping report which threw an error", err, mod.filename);
                     return resolve(null);
                 }
+                if (result.requires_authentication && !options.userConfig.authentication) {
+                    console.warn(wrap("WARNING: we skipped the report '" + result.title + 
+                        "' because it requires authentication to view and there is no " +
+                        "authentication key defined in config.yaml.", {width:65}));
+                    return resolve(null);
+                }
                 return resolve({result: result, module: mod});
             });
         } catch(e) {
@@ -50,7 +57,8 @@ function executeReportModule(mod, options, in_params) {
 }
 function writeReport(result, options) {
     return new Promise((resolve, reject) => {
-        const outputFile = path.join(options.userConfig.output_directory, "reports", result.module.name + ".html");
+        var extension = result.result.requires_authentication ? "php" : "html";
+        const outputFile = path.join(options.userConfig.output_directory, "reports", result.module.name + "." + extension);
         var tmplvars = Object.assign(result.result, {isReport: true, subtitle: result.result.title, pageTitle: result.result.title});
         options.templates.report(tmplvars, (err, output) => {
             if (err) return reject(err);
@@ -61,7 +69,9 @@ function writeReport(result, options) {
                 }
                 return resolve({
                     slug: result.module.name,
-                    title: result.result.title
+                    title: result.result.title,
+                    extension: extension,
+                    requires_authentication: result.result.requires_authentication
                 });
             })
         });
diff --git a/php/github-login.php b/php/github-login.php
index 4f5b72f..1a5584b 100644
--- a/php/github-login.php
+++ b/php/github-login.php
@@ -67,6 +67,10 @@ function do_code() {
         $inorg = FALSE;
     }
     $auth = github_create_token($userdata["data"]->login, $at);
+    
+    // set the auth token as a cookie
+    setcookie("MeasureAuth", $auth);
+    // and return it so it can be set in JS
     showError(signed_in_with("GitHub", $userdata["data"]->login, $auth));
 }
 
diff --git a/reports/recentContributors.js b/reports/recentContributors.js
new file mode 100644
index 0000000..2008a99
--- /dev/null
+++ b/reports/recentContributors.js
@@ -0,0 +1,112 @@
+/*
+"Recent Contributors report" 
+Report with name, org, and email address of everyone who's made a
+contribution in the last ___ where ___ is a dropdown with say
+week/month/quarter/year. Should not show if not authenticated.
+(https://github.com/MeasureOSS/Measure/issues/73)
+*/
+var moment = require("moment");
+var async = require("async");
+
+module.exports = function(options, callback) {
+    var people2Org = {};
+    for (var orgname in options.org2People) {
+        options.org2People[orgname].forEach(p => {
+            if (p.left != "") return; 
+            if (!people2Org[p.login]) people2Org[p.login] = new Set();
+            people2Org[p.login].add(orgname);
+        });
+    }
+
+    var mostRecentUserAction = {};
+
+    options.db.issue.find({}, {"user.login": 1, "closed_by.login": 1, created_at: 1, closed_at: 1}).toArray().then(issues => {
+        issues.forEach(function(i) {
+            if (i.closed_at) {
+                var ca = moment(i.closed_at);
+                var mr = mostRecentUserAction[i.closed_by.login];
+                if (mr) {
+                    mr = moment(mr);
+                    if (ca.isAfter(mr)) {
+                        mostRecentUserAction[i.closed_by.login] = ca;
+                    }
+                } else {
+                    mostRecentUserAction[i.closed_by.login] = ca;
+                }
+            }
+
+            var oa = moment(i.created_at);
+            var mr = mostRecentUserAction[i.user.login];
+            if (mr) {
+                mr = moment(mr);
+                if (oa.isAfter(mr)) {
+                    mostRecentUserAction[i.user.login] = oa;
+                }
+            } else {
+                mostRecentUserAction[i.user.login] = oa;
+            }
+        })
+
+        var peopleList = [];
+        for (var k in mostRecentUserAction) {
+            peopleList.push({
+                login: k, 
+                date: mostRecentUserAction[k],
+                yyyymmdd: mostRecentUserAction[k].format("YYYY-MM-DD"),
+                org: people2Org[k] || [],
+                ts: mostRecentUserAction[k].unix()
+            })
+        }
+        peopleList.sort(function(b, a) { 
+            return a.ts - b.ts;
+        });
+
+        var trs = peopleList.map(function(p) {
+            var orglist = Array.from(p.org).map(function(o) {
+                return '<a href="' + options.url("org", o) + '">' + o + '</a>';
+            }).join("/");
+            var contributor = '<a href="' + options.url("contributor", p.login) + '">' + p.login + "</a>";
+            return "<tr><td>" + contributor + "</td><td>" + orglist + 
+                "</td><td sorttable_customkey='"+p.ts+"'>" + p.yyyymmdd + "</td></tr>";
+        })
+
+        var table = '<table id="report_t" class="sortable">' +
+            '<thead>\n<tr><th>Contributor</th><th>Organisations</th>' +
+            '<th>Most recent contribution</th></tr>\n</thead>\n<tbody>' +
+            trs.join("\n") + "<tbody></table>";
+
+        var dropdown = '<p>Show contributors from last ' +
+            '<select id="report_dd" onchange="report_filter()"><option value="365">year</option>' +
+            '<option value="90">quarter</option><option value="30">month</option>' +
+            '<option value="7">week</option></select></p>';
+        var filter_script = `<script>
+            var report_dd = document.getElementById("report_dd");
+            var report_t = document.getElementById("report_t");
+            function report_filter() {
+                var days = report_dd.options[report_dd.selectedIndex].value;
+                var ts = new Date().getTime();
+                var then = ts - (days * 24 * 60 * 60 * 1000);
+                var then_yyyymmdd = (new Date(then)).toISOString().substring(0, 10);
+                console.log("looking for dates bigger than", then_yyyymmdd);
+                Array.prototype.slice.call(report_t.rows).forEach(function(r) {
+                    var dval = r.cells[2].textContent;
+                    if (dval > then_yyyymmdd) {
+                        r.style.display = ""
+                    } else {
+                        r.style.display = "none";
+                    }
+                });
+            }
+            report_filter();
+            </script>
+            `;
+
+        var html = dropdown + table + filter_script;
+
+        return callback(null, {
+            title: "Recent Contributors",
+            html: html,
+            requires_authentication: true
+        })
+    })
+}
\ No newline at end of file
diff --git a/templates/report.tmpl b/templates/report.tmpl
index 878dffe..b8cd843 100644
--- a/templates/report.tmpl
+++ b/templates/report.tmpl
@@ -1,5 +1,27 @@
 {{> mainlessheader.tmpl}}
             <div class="main wrapper clearfix report">
+{{#requires_authentication}}
+<?php
+require("../authlist.php");
+
+$report = <<<EOF
                 <h1>{{title}}</h1>
                 {{{html}}}
+EOF;
+$isok = generic_verify($_COOKIE["MeasureAuth"]);
+
+if ($isok) {
+    echo $report;
+} else {
+    echo '<p>This report is only available after logging in. Please ';
+    echo '<a href="../login.php" class="login-required-link">log in</a> to view.</p>';
+}
+?>
+
+{{/requires_authentication}}
+
+{{^requires_authentication}}
+                <h1>{{title}}</h1>
+                {{{html}}}
+{{/requires_authentication}}
 {{> footer.tmpl}}
diff --git a/templates/reportlist.tmpl b/templates/reportlist.tmpl
index f982876..c8297cf 100644
--- a/templates/reportlist.tmpl
+++ b/templates/reportlist.tmpl
@@ -2,7 +2,14 @@
             <div class="main wrapper clearfix report">
                 <ul>
                 {{#reports}}
-                    <li><a href="$$BASEURL$$/reports/{{slug}}.html">{{title}}</a></li>
+                    <li>
+                        <a 
+                            href="$$BASEURL$$/reports/{{slug}}.{{extension}}"
+                            {{#requires_authentication}}
+                            class="requires_authentication"
+                            {{/requires_authentication}}
+                        >{{title}}</a>
+                    </li>
                 {{/reports}}
                 </ul>
             </div>