Class: Wurk::Web::Config

Inherits:

Object

• Object
• Wurk::Web::Config

Extended by:

Forwardable

Defined in:

lib/wurk/web/config.rb

Overview

Web UI configuration. Holds the authorization callback documented in docs/target/sidekiq-ent.md §9.2 — a Rack-level hook called with ‘(env, method, path)` per request. Truthy return proceeds; falsey short-circuits to 403.

Wurk ships the Ent feature in the free gem. No license check; the block runs unconditionally when present.

Example:

Wurk::Web.configure do |c|
  c.authorization do |env, method, _path|
    user = env['warden']&.user
    method == 'GET' ? user&.support? || user&.admin? : user&.admin?
  end
end

When no block is registered, every request is authorized (matches Sidekiq’s default — no auth until the user opts in).

Constant Summary

FALSEY_STRINGS =

String forms that mean “off” — so ‘config.web.read_only = ENV` doesn’t flip on when the env var is “0”/“false”/empty.

['', '0', 'false', 'no', 'off'].freeze

PROFILE_VIEW_URL =

Firefox-profiler endpoints for the Profiles pane (spec §25.2). The dashboard uploads a stored profile to ‘profile_store_url` and redirects the operator to `profile_view_url % <returned-hash>`. Overridable for self-hosted profiler instances.

'https://profiler.firefox.com/public/%s'

PROFILE_STORE_URL =

'https://api.profiler.firefox.com/compressed-store'

OPTIONS =

Hash-style settings, same surface as Sidekiq::Web::Config (#204): gems and apps write ‘Sidekiq::Web.configure { |c| c = false }`. Seeded like upstream’s OPTIONS; unknown keys are stored verbatim so a setting wurk doesn’t consume still round-trips (e.g. :csrf — wurk’s extension POST guard is the Sec-Fetch-Site check in ExtensionsController, spec §25.1, not a token).

{
  profile_view_url: PROFILE_VIEW_URL,
  profile_store_url: PROFILE_STORE_URL
}.freeze

DEFAULT_TABS =

Sidekiq’s built-in dashboard tabs (spec §25.3). The ‘tabs` hash starts as a copy of this; extensions add to it via `register_extension` or by mutating `tabs` directly — the same surface third-party gems use.

{
  'Dashboard' => '', 'Busy' => 'busy', 'Queues' => 'queues',
  'Retries' => 'retries', 'Scheduled' => 'scheduled', 'Dead' => 'morgue',
  'Metrics' => 'metrics', 'Profiles' => 'profiles'
}.freeze

NATIVE_TAB_PATHS =

Tab paths the SPA already renders natively (Sidekiq DEFAULT_TABS plus wurk’s Pro/Ent extras). A gem re-registering one of these — e.g. sidekiq-cron’s “cron” — must not produce a duplicate nav item, so ‘custom_tabs` filters them out.

%w[
  busy queues retries scheduled dead morgue metrics profiles
  batches limiters cron search
].freeze

Instance Attribute Summary

• #app_url ⇒ Object

  Returns the value of attribute app_url.

• #assets_path ⇒ Object

  Returns the value of attribute assets_path.

• #custom_job_info_rows ⇒ Object

  Returns the value of attribute custom_job_info_rows.

• #extensions ⇒ Object readonly

  Web-extension surface (spec §25.2).

• #locales ⇒ Object readonly

  Web-extension surface (spec §25.2).

• #middlewares ⇒ Object readonly

  Host-app Rack middleware stacked in front of the dashboard, newest last.

• #read_only_message ⇒ Object

  Optional banner copy shown by the dashboard in read-only mode.

• #tabs ⇒ Object readonly

  Web-extension surface (spec §25.2).

Instance Method Summary

• #authorization(&block) ⇒ Object

  Registers a ‘(env, method, path) -> truthy/falsey` block.

• #authorized?(env, method, path) ⇒ Boolean

  Returns true when no block is registered, otherwise the block’s truthiness.

• #custom_tabs ⇒ Object

  Tabs the SPA should render in the nav: everything registered beyond the Sidekiq defaults and wurk’s own native pages, as ‘{ name:, path:, ext_name: }`.

• #extension_for_index(path) ⇒ Object

  The registered extension whose ‘index` covers `path` (“locks/” and “locks” are the same index).

• #initialize ⇒ Config constructor

  A new instance of Config.

• #job_info_pairs(job) ⇒ Object

  Evaluate the registered ‘custom_job_info_rows` against a job (spec §25.2), returning `[[label, value], …]` for the SPA’s job-detail modal.

• #profile_store_url ⇒ Object
• #profile_store_url=(value) ⇒ Object
• #profile_view_url ⇒ Object

  Firefox-profiler URLs — named views over the same @options keys the bracket surface exposes, so ‘c = …` and `c.profile_view_url = …` can’t drift apart.

• #profile_view_url=(value) ⇒ Object
• #rack_app(inner) ⇒ Object

  Builds the host-middleware chain wrapping ‘inner`, memoized against the middleware list it was built from — `middlewares` is the live array (upstream surface), so direct mutation after the first request triggers a rebuild instead of silently serving the stale chain.

• #read_only=(value) ⇒ Object

  Read-only mode.

• #read_only? ⇒ Boolean
• #register_extension(extension, name:, tab:, index:, root_dir: nil, cache_for: 86_400, asset_paths: nil) {|_self| ... } ⇒ Object (also: #register)

  Matches Sidekiq::Web::Config#register_extension (aliased ‘register`, spec §25.2): `tab` is the label(s), `index` the path(s), `name` the asset namespace.

• #reset! ⇒ Object
• #use(middleware, *args, &block) ⇒ Object

  Sidekiq-compatible (‘Sidekiq::Web.use`).

Constructor Details

#initialize ⇒ Config

Returns a new instance of Config.

# File 'lib/wurk/web/config.rb', line 77

def initialize
  @options = OPTIONS.dup
  @authorization = nil
  @read_only = env_read_only?
  @read_only_message = nil
  @middlewares = []
  @rack_app = nil
  init_extensions!
end

Instance Attribute Details

#app_url ⇒ Object

Returns the value of attribute app_url.

# File 'lib/wurk/web/config.rb', line 126

def app_url
  @app_url
end

#assets_path ⇒ Object

Returns the value of attribute assets_path.

# File 'lib/wurk/web/config.rb', line 126

def assets_path
  @assets_path
end

#custom_job_info_rows ⇒ Object

Returns the value of attribute custom_job_info_rows.

# File 'lib/wurk/web/config.rb', line 126

def custom_job_info_rows
  @custom_job_info_rows
end

#extensions ⇒ Object (readonly)

Web-extension surface (spec §25.2). Third-party gems (sidekiq-cron, sidekiq-unique-jobs, sidekiq-status, …) register dashboard tabs at load time. ‘tabs` is a mutable name→path hash seeded from DEFAULT_TABS; `custom_job_info_rows` collects callables that add rows to the job detail view; `app_url` / `assets_path` mirror Sidekiq’s accessors. ‘locales` is the mutable locale-directory list extensions append to (`Sidekiq::Web.configure.locales << dir`) — the Extension renderer’s ‘t()` reads en.yml from every listed dir. Wurk’s own SPA i18n is separate, so it starts empty.

# File 'lib/wurk/web/config.rb', line 125

def extensions
  @extensions
end

#locales ⇒ Object (readonly)

Web-extension surface (spec §25.2). Third-party gems (sidekiq-cron, sidekiq-unique-jobs, sidekiq-status, …) register dashboard tabs at load time. ‘tabs` is a mutable name→path hash seeded from DEFAULT_TABS; `custom_job_info_rows` collects callables that add rows to the job detail view; `app_url` / `assets_path` mirror Sidekiq’s accessors. ‘locales` is the mutable locale-directory list extensions append to (`Sidekiq::Web.configure.locales << dir`) — the Extension renderer’s ‘t()` reads en.yml from every listed dir. Wurk’s own SPA i18n is separate, so it starts empty.

# File 'lib/wurk/web/config.rb', line 125

def locales
  @locales
end

#middlewares ⇒ Object (readonly)

Host-app Rack middleware stacked in front of the dashboard, newest last. Each entry is ‘[middleware, args, block]`. The LIVE array, like Sidekiq::Web::Config#middlewares — callers mutate it directly (sidekiq-cron’s tests do ‘c.middlewares.clear`), so `#rack_app` detects drift instead of this returning a frozen copy.

# File 'lib/wurk/web/config.rb', line 75

def middlewares
  @middlewares
end

#read_only_message ⇒ Object

Optional banner copy shown by the dashboard in read-only mode. Nil →the SPA falls back to its localized default (“Read-only mode”). Lets a host explain why it’s read-only — e.g. the public demo sets “This is a public demo — actions are disabled.”

# File 'lib/wurk/web/config.rb', line 107

def read_only_message
  @read_only_message
end

#tabs ⇒ Object (readonly)

Web-extension surface (spec §25.2). Third-party gems (sidekiq-cron, sidekiq-unique-jobs, sidekiq-status, …) register dashboard tabs at load time. ‘tabs` is a mutable name→path hash seeded from DEFAULT_TABS; `custom_job_info_rows` collects callables that add rows to the job detail view; `app_url` / `assets_path` mirror Sidekiq’s accessors. ‘locales` is the mutable locale-directory list extensions append to (`Sidekiq::Web.configure.locales << dir`) — the Extension renderer’s ‘t()` reads en.yml from every listed dir. Wurk’s own SPA i18n is separate, so it starts empty.

# File 'lib/wurk/web/config.rb', line 125

def tabs
  @tabs
end

Instance Method Details

#authorization(&block) ⇒ Object

Registers a ‘(env, method, path) -> truthy/falsey` block. Re-calling overwrites; the spec exposes a single hook, not a chain.

# File 'lib/wurk/web/config.rb', line 111

def authorization(&block)
  @authorization = block if block
  @authorization
end

#authorized?(env, method, path) ⇒ Boolean

Returns true when no block is registered, otherwise the block’s truthiness. The ‘path` argument is the engine-relative path so a consumer mounting under `/wurk` sees `/api/stats`, not the host’s absolute path — that matches Sidekiq’s contract.

Returns:

• (Boolean)

# File 'lib/wurk/web/config.rb', line 242

def authorized?(env, method, path)
  return true if @authorization.nil?

  !!@authorization.call(env, method, path)
end

#custom_tabs ⇒ Object

Tabs the SPA should render in the nav: everything registered beyond the Sidekiq defaults and wurk’s own native pages, as ‘{ name:, path:, ext_name: }`. `ext_name` ties the tab back to a registered extension so the Extension page can fetch its server-rendered view from `ext/:ext_name/*`; nil for tabs added by bare `tabs[]=` mutation (the SPA falls back to the iframe embed for those).

# File 'lib/wurk/web/config.rb', line 159

def custom_tabs
  @tabs.filter_map do |name, path|
    # Same trailing-slash normalization as extension_for_index, so a
    # native path registered as "cron/" doesn't duplicate the native tab.
    next if DEFAULT_TABS.key?(name) || NATIVE_TAB_PATHS.include?(path.to_s.delete_suffix('/'))

    { name: name, path: path.to_s, ext_name: extension_for_index(path)&.dig(:name)&.to_s }
  end
end

#extension_for_index(path) ⇒ Object

The registered extension whose ‘index` covers `path` (“locks/” and “locks” are the same index).

# File 'lib/wurk/web/config.rb', line 171

def extension_for_index(path)
  norm = path.to_s.delete_suffix('/')
  @extensions.find { |e| Array(e[:index]).any? { |i| i.to_s.delete_suffix('/') == norm } }
end

#job_info_pairs(job) ⇒ Object

Evaluate the registered ‘custom_job_info_rows` against a job (spec §25.2), returning `[[label, value], …]` for the SPA’s job-detail modal. Each row is a callable (‘call(job)`) or a Sidekiq-style `add_pair(job)` object; a row that raises or returns a non-pair is skipped so one bad extension can’t break the job views.

# File 'lib/wurk/web/config.rb', line 181

def job_info_pairs(job)
  return [] if @custom_job_info_rows.empty?

  @custom_job_info_rows.filter_map { |row| job_info_pair(row, job) }
end

#profile_store_url ⇒ Object

# File 'lib/wurk/web/config.rb', line 93

def profile_store_url = @options[:profile_store_url]

#profile_store_url=(value) ⇒ Object

# File 'lib/wurk/web/config.rb', line 99

def profile_store_url=(value)
  @options[:profile_store_url] = value
end

#profile_view_url ⇒ Object

Firefox-profiler URLs — named views over the same @options keys the bracket surface exposes, so ‘c = …` and `c.profile_view_url = …` can’t drift apart.

# File 'lib/wurk/web/config.rb', line 92

def profile_view_url  = @options[:profile_view_url]

#profile_view_url=(value) ⇒ Object

# File 'lib/wurk/web/config.rb', line 95

def profile_view_url=(value)
  @options[:profile_view_url] = value
end

#rack_app(inner) ⇒ Object

Builds the host-middleware chain wrapping ‘inner`, memoized against the middleware list it was built from — `middlewares` is the live array (upstream surface), so direct mutation after the first request triggers a rebuild instead of silently serving the stale chain. Production builds exactly once at boot; the per-request comparison is an == over a handful of entries.

# File 'lib/wurk/web/config.rb', line 204

def rack_app(inner)
  return @rack_app if @rack_app && @rack_app_stack == @middlewares

  @rack_app_stack = @middlewares.dup
  stack = @middlewares
  @rack_app = ::Rack::Builder.new do
    stack.each { |middleware, args, block| use(middleware, *args, &block) }
    run inner
  end.to_app
end

#read_only=(value) ⇒ Object

Read-only mode. When on, the Authorization middleware blocks every non-GET request (retry/kill/requeue/delete/pause/resume/clear) with 403, and the SPA hides destructive actions via the /api/meta flag. Defaults from WURK_WEB_READ_ONLY=1 so a viewer-only deploy (e.g. the public demo) needs no Ruby config.

# File 'lib/wurk/web/config.rb', line 220

def read_only=(value)
  @read_only = value.is_a?(String) ? !FALSEY_STRINGS.include?(value.strip.downcase) : !!value
end

#read_only? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/wurk/web/config.rb', line 224

def read_only?
  @read_only
end

#register_extension(extension, name:, tab:, index:, root_dir: nil, cache_for: 86_400, asset_paths: nil) {|_self| ... } ⇒ Object Also known as: register

Matches Sidekiq::Web::Config#register_extension (aliased ‘register`, spec §25.2): `tab` is the label(s), `index` the path(s), `name` the asset namespace. `tab`/`index` are zipped into the `tabs` hash (label => path) so the tab surfaces in the SPA nav via /api/meta, and the extension’s ‘registered(app)` routes/ERB views are served by Wurk::Web::Extension::Renderer under `ext/:name/*` (#187) — the SPA’s Extension page embeds the rendered HTML. Yields self to an optional block for further config, and returns self. rubocop:disable Metrics/ParameterLists – signature matches Sidekiq::Web::Config#register_extension (spec §25.2)

Yields:

• (_self)

Yield Parameters:

• _self (Wurk::Web::Config) —

  the object that the method was called on

# File 'lib/wurk/web/config.rb', line 137

def register_extension(extension, name:, tab:, index:, root_dir: nil,
                       cache_for: 86_400, asset_paths: nil)
  Array(tab).zip(Array(index)).each { |label, path| @tabs[label] = path if label }
  # Upstream registers root_dir/locales automatically; extensions
  # without a root_dir append their dir to `locales` themselves.
  @locales << ::File.join(root_dir, 'locales') if root_dir
  @extensions << {
    extension: extension, name: name, tab: tab, index: index,
    root_dir: root_dir, cache_for: cache_for, asset_paths: asset_paths
  }
  yield self if block_given?
  self
end

#reset! ⇒ Object

# File 'lib/wurk/web/config.rb', line 228

def reset!
  @options = OPTIONS.dup
  @authorization = nil
  @read_only = env_read_only?
  @read_only_message = nil
  @middlewares = []
  @rack_app = nil
  init_extensions!
end

#use(middleware, *args, &block) ⇒ Object

Sidekiq-compatible (‘Sidekiq::Web.use`). Registers a Rack middleware that wraps the dashboard, in front of the authorization hook, so a host app can gate the UI with Devise/Warden/Sorcery/Rack::Auth::Basic without writing its own middleware. `args` and an optional block pass straight through to the middleware’s ‘new`. Call before the first request (i.e. from an initializer) — the chain is built once.

# File 'lib/wurk/web/config.rb', line 193

def use(middleware, *args, &block)
  @middlewares << [middleware, args, block]
  @rack_app = nil
end