Gemfile

source 'https://rubygems.org'
git_source(:github) { |repo| "https://github.com/#{repo}.git" }

ruby '3.0.6'

gem 'rake', '13.2.1'

gem 'rails', '6.1.7.9'

gem 'pg', '1.3.5'

gem 'puma', '5.6.9'

gem 'turbolinks', '5.2.1'

gem 'jbuilder', '2.11.5'

gem 'bootsnap', '1.12.0', require: false

# CSS
gem "cssbundling-rails", '1.1.2'

# JavaScript
gem 'jsbundling-rails', '1.1.1'

# HTTP requests
gem 'httparty', '0.21.0'

# Authentication
gem 'devise', '4.7.3'

# Authorization
gem 'pundit', '2.2.0'

# I18n (forward locales to JS)
gem 'i18n-js', '3.9.2'

# React
gem 'react-rails', '2.6.2'

# Pagination
gem 'kaminari', '1.2.2'

# DDoS protection
gem 'rack-attack', '6.7.0'

# Slugs
gem 'friendly_id', '5.5.1'

# Billing
gem 'stripe', '11.2.0'

# Serve swagger docs
gem 'rswag-api', '2.15.0'

# We need those gems here, so we can Swaggerize in production
gem 'rswag-specs', '2.15.0'
gem 'rspec-rails', '4.0.2'
gem 'capybara', '3.40.0'

# CORS policy
gem 'rack-cors', '2.0.2'

# ActiveJob backend
gem 'sidekiq', '7.3.5'

# Cron jobs with sidekiq
gem 'sidekiq-cron', '2.0.1'

# Template language
gem 'liquid', '5.5.1'

group :development, :test do
  gem 'byebug', platforms: [:mri, :mingw, :x64_mingw]
  
  gem 'factory_bot_rails', '5.0.2'
end

group :development do
  gem 'web-console', '>= 3.3.0'
  gem 'spring', '2.1.1'
  gem 'spring-watcher-listen', '2.0.1'
end

group :test do
  gem 'selenium-webdriver', '4.17.0'

  # Retry flaky Capybara tests
  gem 'rspec-retry', '0.6.2'
end

# If not bundled, webpack compilation in production fails
gem 'listen', '3.5.1'

# Windows does not include zoneinfo files, so bundle the tzinfo-data gem
gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby]
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`source 'https://rubygems.org'`
			`git_source(:github) { \|repo\| "https://github.com/#{repo}.git" }`

Bump ruby to 3.0.6 (#218) * Bump ruby to 2.7.8 * Bump listen to 3.5.1 (remove dependency on ruby_dep) * Bump ruby to 3.0.6 * Fix I18n.translate arguments: from hash to keyword arguments 2023-05-09 09:32:18 +02:00			`ruby '3.0.6'`

Add webhooks (#447) 2024-12-20 14:06:48 +01:00			`gem 'rake', '13.2.1'`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00
Bump rails to 6.1.7.9 (#433) 2024-11-08 17:19:14 +01:00			`gem 'rails', '6.1.7.9'`
Bump ruby to 2.6.6 and speed up docker build 2022-04-07 16:31:57 +02:00
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'pg', '1.3.5'`
Bump ruby to 2.6.6 and speed up docker build 2022-04-07 16:31:57 +02:00
Bump puma from 5.6.8 to 5.6.9 (#415) Bumps [puma](https://github.com/puma/puma) from 5.6.8 to 5.6.9. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/compare/v5.6.8...v5.6.9) --- updated-dependencies: - dependency-name: puma dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Riccardo Graziosi <31478034+riggraz@users.noreply.github.com> 2024-09-21 13:10:52 +02:00			`gem 'puma', '5.6.9'`
Bump ruby to 2.6.6 and speed up docker build 2022-04-07 16:31:57 +02:00
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'turbolinks', '5.2.1'`
Bump ruby to 2.6.6 and speed up docker build 2022-04-07 16:31:57 +02:00
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'jbuilder', '2.11.5'`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'bootsnap', '1.12.0', require: false`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00
Switch from webpacker to (css\|js)bundling-rails (#227) * Install jsbundling-rails, uninstall rails/webpacker * Remove outdated step from run-tests workflow * Use cssbundling-rails for CSS 2023-05-19 17:47:01 +02:00			`# CSS`
			`gem "cssbundling-rails", '1.1.2'`

			`# JavaScript`
			`gem 'jsbundling-rails', '1.1.1'`

Add OAuth2 authentication (#147) - Added Site settings > Authentication section - Create/edit/delete your custom oauth2 configurations - Login or signup with oauth2 2022-08-05 18:15:17 +02:00			`# HTTP requests`
Upgrade Ruby dependencies (#214) * Bump rack from 2.2.3.1 to 2.2.6.3 (#204) Bumps [rack](https://github.com/rack/rack) from 2.2.3.1 to 2.2.6.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/main/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.2.3.1...v2.2.6.3) --- updated-dependencies: - dependency-name: rack dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump globalid from 1.0.0 to 1.0.1 (#188) Bumps [globalid](https://github.com/rails/globalid) from 1.0.0 to 1.0.1. - [Release notes](https://github.com/rails/globalid/releases) - [Commits](https://github.com/rails/globalid/compare/v1.0.0...v1.0.1) --- updated-dependencies: - dependency-name: globalid dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump rails-html-sanitizer from 1.4.3 to 1.4.4 (#180) Bumps [rails-html-sanitizer](https://github.com/rails/rails-html-sanitizer) from 1.4.3 to 1.4.4. - [Release notes](https://github.com/rails/rails-html-sanitizer/releases) - [Changelog](https://github.com/rails/rails-html-sanitizer/blob/master/CHANGELOG.md) - [Commits](https://github.com/rails/rails-html-sanitizer/compare/v1.4.3...v1.4.4) --- updated-dependencies: - dependency-name: rails-html-sanitizer dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Riccardo Graziosi <31478034+riggraz@users.noreply.github.com> * Bump loofah from 2.18.0 to 2.19.1 (#179) Bumps [loofah](https://github.com/flavorjones/loofah) from 2.18.0 to 2.19.1. - [Release notes](https://github.com/flavorjones/loofah/releases) - [Changelog](https://github.com/flavorjones/loofah/blob/main/CHANGELOG.md) - [Commits](https://github.com/flavorjones/loofah/compare/v2.18.0...v2.19.1) --- updated-dependencies: - dependency-name: loofah dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Riccardo Graziosi <31478034+riggraz@users.noreply.github.com> * Bump nokogiri from 1.13.6 to 1.13.9 (#156) Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.13.6 to 1.13.9. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.13.6...v1.13.9) --- updated-dependencies: - dependency-name: nokogiri dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Riccardo Graziosi <31478034+riggraz@users.noreply.github.com> * Bump httparty from 0.18.0 to 0.21.0 (#181) Bumps [httparty](https://github.com/jnunemaker/httparty) from 0.18.0 to 0.21.0. - [Release notes](https://github.com/jnunemaker/httparty/releases) - [Changelog](https://github.com/jnunemaker/httparty/blob/master/Changelog.md) - [Commits](https://github.com/jnunemaker/httparty/compare/v0.18.0...v0.21.0) --- updated-dependencies: - dependency-name: httparty dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Riccardo Graziosi <31478034+riggraz@users.noreply.github.com> * Fix Dockerfile * Fix post system spec * revert * comment out post deletion system spec --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2023-05-07 11:40:27 +02:00			`gem 'httparty', '0.21.0'`
Add OAuth2 authentication (#147) - Added Site settings > Authentication section - Create/edit/delete your custom oauth2 configurations - Login or signup with oauth2 2022-08-05 18:15:17 +02:00
Add admin panel and make it work for user resource 2019-08-21 16:13:39 +02:00			`# Authentication`
Update ruby gems with vulnerabilities (#96) * Bump color-string from 1.5.3 to 1.9.0 (#93) Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.9.0. - [Release notes](https://github.com/Qix-/color-string/releases) - [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md) - [Commits](https://github.com/Qix-/color-string/commits/1.9.0) --- updated-dependencies: - dependency-name: color-string dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump ajv from 6.10.2 to 6.12.6 (#94) Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.10.2 to 6.12.6. - [Release notes](https://github.com/ajv-validator/ajv/releases) - [Commits](https://github.com/ajv-validator/ajv/compare/v6.10.2...v6.12.6) --- updated-dependencies: - dependency-name: ajv dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update rails, devise and administrate gems Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2022-03-23 21:29:54 +01:00			`gem 'devise', '4.7.3'`
Install and set up Devise 2019-08-18 18:51:25 +02:00
Improve rails controllers (#118) 2022-06-10 12:03:33 +02:00			`# Authorization`
			`gem 'pundit', '2.2.0'`

			`# I18n (forward locales to JS)`
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'i18n-js', '3.9.2'`
Improve rails controllers (#118) 2022-06-10 12:03:33 +02:00
Add React and TS to webpacker; add react-rails gem 2019-08-25 14:34:20 +02:00			`# React`
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'react-rails', '2.6.2'`
Add React and TS to webpacker; add react-rails gem 2019-08-25 14:34:20 +02:00
Add infinite scroll to post list 2019-09-04 21:12:07 +02:00			`# Pagination`
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`gem 'kaminari', '1.2.2'`
Add infinite scroll to post list 2019-09-04 21:12:07 +02:00
Add DDoS protection (#308) * Add and configure rack-attack gem * Limit number of tenant registrations with same email address * Limit requests to tenants#create by IP 2024-03-14 22:43:37 +01:00			`# DDoS protection`
			`gem 'rack-attack', '6.7.0'`

Add slugs for Posts, Boards and OAuths (#321) 2024-04-05 18:23:31 +02:00			`# Slugs`
			`gem 'friendly_id', '5.5.1'`

Add billing (#329) 2024-05-03 18:11:07 +02:00			`# Billing`
			`gem 'stripe', '11.2.0'`

Add API (#427) 2024-11-08 16:40:53 +01:00			`# Serve swagger docs`
			`gem 'rswag-api', '2.15.0'`

			`# We need those gems here, so we can Swaggerize in production`
			`gem 'rswag-specs', '2.15.0'`
			`gem 'rspec-rails', '4.0.2'`
			`gem 'capybara', '3.40.0'`

			`# CORS policy`
			`gem 'rack-cors', '2.0.2'`

Add sidekiq as a possible ActiveJob backend (#436) 2024-11-16 14:25:27 +01:00			`# ActiveJob backend`
			`gem 'sidekiq', '7.3.5'`

Send recap emails for new feedback (#440) 2024-11-19 17:17:05 +01:00			`# Cron jobs with sidekiq`
			`gem 'sidekiq-cron', '2.0.1'`

Add webhooks (#447) 2024-12-20 14:06:48 +01:00			`# Template language`
			`gem 'liquid', '5.5.1'`

Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`group :development, :test do`
			`gem 'byebug', platforms: [:mri, :mingw, :x64_mingw]`
Add API (#427) 2024-11-08 16:40:53 +01:00
Fix system specs (#206) 2023-03-19 19:57:53 +01:00			`gem 'factory_bot_rails', '5.0.2'`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`end`

			`group :development do`
			`gem 'web-console', '>= 3.3.0'`
Bump ruby to 3.0.6 (#218) * Bump ruby to 2.7.8 * Bump listen to 3.5.1 (remove dependency on ruby_dep) * Bump ruby to 3.0.6 * Fix I18n.translate arguments: from hash to keyword arguments 2023-05-09 09:32:18 +02:00			`gem 'spring', '2.1.1'`
			`gem 'spring-watcher-listen', '2.0.1'`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`end`

			`group :test do`
Add API (#427) 2024-11-08 16:40:53 +01:00			`gem 'selenium-webdriver', '4.17.0'`

			`# Retry flaky Capybara tests`
			`gem 'rspec-retry', '0.6.2'`
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`end`

Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00			`# If not bundled, webpack compilation in production fails`
Bump ruby to 3.0.6 (#218) * Bump ruby to 2.7.8 * Bump listen to 3.5.1 (remove dependency on ruby_dep) * Bump ruby to 3.0.6 * Fix I18n.translate arguments: from hash to keyword arguments 2023-05-09 09:32:18 +02:00			`gem 'listen', '3.5.1'`
Improve Docker installation (#152) 2022-09-15 17:15:12 +02:00
Setup Rails project and dockerize 2019-08-18 14:51:37 +02:00			`# Windows does not include zoneinfo files, so bundle the tzinfo-data gem`
Switch from webpacker to (css\|js)bundling-rails (#227) * Install jsbundling-rails, uninstall rails/webpacker * Remove outdated step from run-tests workflow * Use cssbundling-rails for CSS 2023-05-19 17:47:01 +02:00			`gem 'tzinfo-data', platforms: [:mingw, :mswin, :x64_mingw, :jruby]`