AppConfig refactor #870

Animesh-Ghosh · 2025-09-08T21:40:14Z

Why

Currently, AppConfig holds a lot of integration-specific configuration, which feels like a data-modelling smell. This modelling also makes it harder to develop certain code paths for AppVariants.
Moving the integration-specific configurations to the apt integration providable should simplify our data modelling and allow further features to be built on top of these changes.

This addresses

Enter the details of what all this covers, include screenshots, demos, thought processes etc.

Making Integration providables own their integration-specific configuration by adding schema migrations.

We also enable dedicated write paths for each Integration's configuration which closely models AppConfig's write path, while also modifying existing read paths to use persisted configuration from the Integrations' providables, rather than the global AppConfig. This involved the following UI changes on the app's Integrations tab:

Before	After
(the configure button was at the integration list level)	(the configure button is now on the integration card level)

We also try to ensure the app setup wizard behaves as it did when the configuration values were being read from AppConfig.

Scenario	Screenshot
When required integrations are not connected yet
When connected integrations are not configured yet

App.Finishing.Up.Integration.Configuration.mp4

Due to the fact that Integration providables can now own their own config, an edge case had to be handled where if a CI/CD integration is attempted to be connected, rather than re-used, the repository config would not be present on the integration, and vice-versa for version control integrations. This would disallow train creation. Thus, the following CI/CD integrations were made to be further configurable:

BitbucketIntegration
GithubIntegration
GitlabIntegration

This edge-case should not surface if the integration is re-used instead.

CI/CD Integration	New	Configuration pop-up
Bitrise	No
Bitbucket	Yes
Github	Yes
Gitlab	Yes

Scenarios tested

Summary by CodeRabbit

New Features
- In-app configuration UIs for Version Control, CI/CD, Build Channel, Monitoring, and Project Management with Turbo Frame edit workflows and selector forms; new update flows and success messages.
Improvements
- Integration cards now offer an optional “further setup” (cog) modal alongside connect/disconnect; streamlined disconnect confirmation and updated layout.
- App readiness and integration status reflect per-category configuration.
Bug Fixes
- Release tag links now point to the correct repository URL.

coderabbitai · 2025-09-08T21:40:21Z

Walkthrough

Adds JSONB-backed per-integration configuration, new namespaced config controllers and Turbo Frame edit views, integration-level accessors/validations, routes and migrations, component/UI updates to surface per-category setup, and updates App readiness logic to use integration-based readiness.

Changes

Cohort / File(s)	Summary
Components – Cards & Lists `app/components/integration_card_component.html.erb`, `app/components/integration_card_component.rb`, `app/components/integration_list_component.html.erb`, `app/components/integration_list_component.rb`	Adds optional configure modal (Turbo Frame) and `pre_open_category` support; exposes edit_config_path helpers; shows configure + disconnect side-by-side; removes `connected_integrations?` and updates constructor usage.
Controllers – Config editors `app/controllers/version_control/_configs_controller.rb`, `app/controllers/ci_cd/_configs_controller.rb`, `app/controllers/build_channel/google_firebase_configs_controller.rb`, `app/controllers/monitoring/bugsnag_configs_controller.rb`, `app/controllers/project_management/*_configs_controller.rb`	New namespaced controllers with `edit`/`update`: load app+integration, preload repos/projects/workspaces, parse nested JSON params (safe_json_parse), persist integration-level JSON (`repository_config`, `project_config`, `android_config`/`ios_config`), handle Turbo Frame/Stream responses and redirects.
Views – Config forms & frames `app/views/version_control/`, `app/views/ci_cd/`, `app/views/build_channel/`, `app/views/monitoring/`, `app/views/project_management/`, `app/views/jira_integration/`, `app/views/linear_integration/*`	Add EnhancedTurboFrame-backed edit templates and partials for selecting repos/projects/teams/apps; switch nested form scope from `*_config` to `project_config` for Jira/Linear; add partials for Firebase, Bitbucket, Bitrise, Bugsnag, etc.
Models – Integrations & readiness `app/models/integration.rb`, `app/models/github_integration.rb`, `app/models/gitlab_integration.rb`, `app/models/bitbucket_integration.rb`, `app/models/bitrise_integration.rb`, `app/models/bugsnag_integration.rb`, `app/models/google_firebase_integration.rb`, `app/models/jira_integration.rb`, `app/models/linear_integration.rb`	Add `repository_config` / `project_config` / platform configs and accessors; migrate many accessors from `app_config` to integration-level JSON; add validations (release_filters), add readiness helpers and `further_setup_by_category`, change `further_setup?` semantics for several providers.
Models – App & AppConfig `app/models/app.rb`, `app/models/app_config.rb`, `app/models/concerns/app_configurable.rb`	App.ready? and setup instructions now use integration-based readiness; AppConfig removes many legacy helpers and disconnect logic; small comments added to concern.
Libs – Webhooks / Coordinators `app/libs/coordinators/webhooks/pull_request.rb`, `app/libs/coordinators/webhooks/push.rb`	Repo/branch validation now reads repository metadata via `app.vcs_provider.` instead of `app.config.`.
Controllers – Apps `app/controllers/apps_controller.rb`	`show` action now conditionally sets view variables based on `@app.ready?` (either `@train_in_creation` or `@app_setup_instructions`).
Routes & Locales `config/routes.rb`, `config/locales/en.yml`	Add singleton config routes under apps for version_control, ci_cd, build_channel, monitoring, project_management; add update.success locale keys.
DB – Migrations & Schema `db/migrate/*`, `db/schema.rb`	Add JSONB columns: `repository_config` (VCS), `project_config` (Bitrise/Jira/Linear), `android_config`/`ios_config` (Firebase/Bugsnag); add `workspace` to `bitbucket_integrations`; schema version bump.
Specs & Factories `spec/factories/`, `spec/libs/`, `spec/models/*`	Update factories to include `repository_config`/`project_config`; tests updated to read repo/config data from integrations; add validations tests for release_filters.
Components – Live Release `app/components/live_release/finalize_component.rb`	Tag link now sources repo URL from `release.app.vcs_provider.code_repo_url` instead of `app.config`.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor U as User
  participant Page as Integrations Page
  participant Card as IntegrationCardComponent
  participant Modal as ModalComponent
  participant TF as Turbo Frame
  participant C as ConfigsController
  participant I as Integration(Model)
  participant App as App

  U->>Page: open app integrations
  Page->>Card: render for each integration
  Card->>I: query further_setup? / pre_open_category?
  alt configure available
    U->>Card: click Configure (cog)
    Card->>Modal: open modal (light action)
    Modal->>TF: load frame (category_config_turbo_frame_id)
    TF->>C: GET edit (app + integration category)
    C->>I: load config data (repos/projects/apps)
    C-->>TF: render form partial
    U->>TF: submit Update (PATCH)
    TF->>C: update (parsed JSON params)
    C->>I: persist config JSON
    alt success
      C-->>U: redirect to app_path with success notice
    else failure
      C-->>U: redirect back with error flash
    end
  else only disconnect
    U->>Card: click Disconnect
    Card->>I: send DELETE (Turbo default)
  end

sequenceDiagram
  autonumber
  participant AppsCtrl as AppsController
  participant App as App
  participant Integrations as Integration

  AppsCtrl->>App: call ready?
  App->>Integrations: Integration.configured?
  Integrations->>Integrations: further_setup_by_category (aggregate readiness)
  alt ready
    AppsCtrl-->>View: set @train_in_creation
  else not ready
    AppsCtrl-->>View: set @app_setup_instructions
  end

Estimated code review effort

🎯 5 (Critical) | ⏱️ ~120 minutes

Possibly related PRs

Get GitLab up to speed #847 — Overlaps GitLab integration changes and repository_config usage; likely related at model/controller level.
feat: support for outgoing webhooks via Svix #855 — Overlaps IntegrationCardComponent and UI/constructor adjustments; likely related to component-level changes.

Suggested reviewers

kitallis

Poem

A rabbit taps the JSON drum, thump-thump, config tune!
Frames pop open, repos bloom beneath a crescent moon.
Jira queues and Linear teams hop into neat arrays,
Firebase and Bugsnag hum through platform-configured days.
Click update, little button — hop along the build highway! 🐇✨

Pre-merge checks and finishing touches

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 4.35% which is insufficient. The required threshold is 80.00%.	You can run `@coderabbitai generate docstrings` to improve docstring coverage.
Description Check	⚠️ Warning	The pull request description is missing the required “Closes:” line linking to an issue and still contains the placeholder text under the “## This addresses” section instead of being fully replaced with the actual details, so it does not conform to the repository’s description template.	Please add the “Closes: https://github.com/tramlinehq/site/issues/” line at the top of the description and remove or replace the placeholder text under “## This addresses” with the actual explanation and details of what the PR covers.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Title Check	✅ Passed	The title succinctly refers to the primary change of refactoring the AppConfig component and captures the core intent of the PR without extraneous details.

✨ Finishing touches

📝 Generate docstrings

🧪 Generate unit tests (beta)

Create PR with unit tests
Post copyable unit tests in a comment
Commit unit tests in branch chore/app-config-refactor

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

…grations Update the read path on `AppConfig#further_setup_by_category?` for `code_repository`. This set of changes has a few TODO items that should be resolved once the remaining configurable integrations are brought under the fold of the refactor.

Bitbucket version control configuration requires the user to select a workspace to select the code repository. The workspace dropdown is supposed work by re-rendering the configuration form via Turbo stream. However, the partial for the TURBO_STREAM format was missing, which would break the interaction, along with raising a server-side error. These changes refactor the HTML partial to render the form in both the HTML and the TURBO_STREAM formats, to make the drop-down UX work.

Update read path on `AppConfig#further_setup_by_category?` for `ci_cd`. Fix config update translations.

Update read path on `AppConfig#further_setup_by_category?` for `build_channel`.

The persisted config value, when serialized, could generate a JSON string that could be different from the one generated by the view helper for the drop-down options' values, which would make it so that the persisted config value is not pre-selected by default. Thus, we explicitly find the correct config and use that as the default, rather than using the persisted value.

Simplify some config read paths in `AppConfig`.

Update read paths for `monitoring` config in `AppConfig` for: - `#further_setup_by_category?` - bugsnag related attributes

…ntegrations Update read path for `project_management` config in `AppConfig#further_setup_by_category?`. Remove unnecessary code and markup from `IntegrationCard` and `IntegrationList` components. Remove unused strong params method in `Monitoring::BugsnagConfigsController` controller.

Removing model validations from `AppConfig` has to be done as part of deprecating the model.

…tions TODO: fix failing specs.

…ions

Since factoring out the `code_repository` to individual integration providers, creating trains would fail since CI/CD integrations wouldn't have the necessary `repository_config` present. This was observed only for Github, Gitlab and Bitbucket integrations. Thus, we now allow CI/CD integrations to now be configurable.

Update the new integration config controllers to redirect to the app's show page. Separate integration connection-readiness and integration config-readiness checks so that the wizard isn't stuck at just showing the "Complete your app setup" section. Update CI/CD integration readiness check.

coderabbitai

Actionable comments posted: 20

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (5)

app/views/linear_integration/_release_filter_form.html.erb (1)

4-10: Add nested attributes configuration to LinearIntegration model
The LinearIntegration model is missing accepts_nested_attributes_for :release_filters, allow_destroy: true, so the _destroy hidden field in the form won’t work as intended.

app/models/jira_integration.rb (1)

98-102: Fix undefined variable in complete_access (resource is nil).

resource is not defined in this branch, leading to a NameError. Use resources.first.

-    if resources.length == 1
-      self.cloud_id = resources.first["id"]
-      self.organization_url = resource["url"]
-      self.organization_name = resource["name"]
-      true
+    if resources.length == 1
+      resource = resources.first
+      self.cloud_id = resource["id"]
+      self.organization_url = resource["url"]
+      self.organization_name = resource["name"]
+      true

app/models/integration.rb (1)

177-215: Use connected. for provider lookups to avoid stale/disconnected picks*

Provider helpers should align with readiness checks and only consider connected integrations.

- def vcs_provider
-   kept.version_control.first&.providable
- end
+ def vcs_provider
+   connected.version_control.first&.providable
+ end

- def ci_cd_provider
-   kept.ci_cd.first&.providable
- end
+ def ci_cd_provider
+   connected.ci_cd.first&.providable
+ end

- def bitrise_ci_cd_provider
-   kept.ci_cd.find(&:bitrise_integration?)&.providable
- end
+ def bitrise_ci_cd_provider
+   connected.ci_cd.find(&:bitrise_integration?)&.providable
+ end

- def monitoring_provider
-   kept.monitoring.first&.providable
- end
+ def monitoring_provider
+   connected.monitoring.first&.providable
+ end

- def android_store_provider
-   kept.build_channel.find(&:google_play_store_integration?)&.providable
- end
+ def android_store_provider
+   connected.build_channel.find(&:google_play_store_integration?)&.providable
+ end

- def ios_store_provider
-   kept.build_channel.find(&:app_store_integration?)&.providable
- end
+ def ios_store_provider
+   connected.build_channel.find(&:app_store_integration?)&.providable
+ end

- def slack_build_channel_provider
-   kept.build_channel.find(&:slack_integration?)&.providable
- end
+ def slack_build_channel_provider
+   connected.build_channel.find(&:slack_integration?)&.providable
+ end

- def firebase_build_channel_provider
-   kept.build_channel.find(&:google_firebase_integration?)&.providable
- end
+ def firebase_build_channel_provider
+   connected.build_channel.find(&:google_firebase_integration?)&.providable
+ end

- def project_management_provider
-   kept.project_management.first&.providable
- end
+ def project_management_provider
+   connected.project_management.first&.providable
+ end

app/models/bitbucket_integration.rb (1)

218-220: Fix URL encoding: CGI.escapeURIComponent does not exist in Ruby

This will raise at runtime. Use ERB::Util.url_encode (or CGI.escape) instead.

Apply this diff:
-  def compare_url(to_branch, from_branch)
-    "https://bitbucket.org/#{code_repository_name}/branch/#{from_branch}?dest=#{CGI.escapeURIComponent(to_branch)}"
-  end
+  def compare_url(to_branch, from_branch)
+    "https://bitbucket.org/#{code_repository_name}/branch/#{from_branch}?dest=#{ERB::Util.url_encode(to_branch)}"
+  end

app/models/app_config.rb (1)

76-94: Project management readiness short-circuits when both Jira and Linear exist

If Jira is present but not ready, Linear readiness isn’t checked. Either rely on the app’s project_management_provider or OR-combine readiness.

-  if jira
-    return jira.project_config.present? &&
-        jira.project_config["selected_projects"].present? &&
-        jira.project_config["selected_projects"].any? &&
-        jira.project_config["project_configs"].present?
-  end
-
-  if linear
-    return linear.project_config.present? &&
-        linear.project_config["selected_teams"].present? &&
-        linear.project_config["selected_teams"].any? &&
-        linear.project_config["team_configs"].present?
-  end
+  if jira || linear
+    jira_ready = jira && jira.project_config.present? &&
+      jira.project_config["selected_projects"].present? &&
+      jira.project_config["selected_projects"].any? &&
+      jira.project_config["project_configs"].present?
+
+    linear_ready = linear && linear.project_config.present? &&
+      linear.project_config["selected_teams"].present? &&
+      linear.project_config["selected_teams"].any? &&
+      linear.project_config["team_configs"].present?
+
+    return jira_ready || linear_ready
+  end

♻️ Duplicate comments (1)

app/views/version_control/gitlab_configs/edit.html+turbo_frame.erb (1)
8-15: Duplicate repository selection logic.

This view duplicates the same complex repository selection logic from app/views/ci_cd/github_configs/edit.html+turbo_frame.erb (lines 9-16).

See the helper extraction suggestion in the GitHub config view review. The same helper method would simplify this view as well:
-        <%= section.F.labeled_select :repository_config,
-              "Code Repository",
-              options_for_select(
-                display_channels(@code_repositories) { |repo| repo[:full_name] },
-                @code_repositories.find { |repo| repo[:id] == @gitlab_integration.repository_config&.dig("id") }&.to_json
-              ) %>
+        <%= section.F.labeled_select :repository_config,
+              "Code Repository",
+              repository_selection_options(@code_repositories, @gitlab_integration.repository_config) %>

🧹 Nitpick comments (34)

app/components/integration_card_component.html.erb (1)

64-65: LGTM; consider i18n for the button label.

Looks good. Optionally wrap "Connect" with I18n.
app/components/integration_card_component.rb (4)
83-90: Minor: consider i18n for the "Configure" prefix.

Use a translation key so UI is localizable.

91-104: Base routing switch on @category for consistency.

Avoid relying on integration.category if @category is the source of truth for this card:
-def edit_config_path
-  case integration.category
+def edit_config_path
+  case @category.to_s
     when "version_control" then edit_app_version_control_config_path
     when "ci_cd" then edit_app_ci_cd_config_path
     when "build_channel" then edit_app_build_channel_config_path
     when "monitoring" then edit_app_monitoring_config_path
     when "project_management" then edit_app_project_management_config_path
     else unsupported_integration_category
   end
 end
Ensure @category always matches integration.category in callers.

108-147: Route mapping via large case trees is brittle; push to integration/providable.

Define an API on integration/providable (e.g., integration.edit_config_path_for(@category, app: @app)) and delegate here. This removes per-type branching from the component and centralizes ownership.

I can draft the interface and a stepwise refactor if helpful.

149-155: Use ArgumentError for unsupported inputs (optional).

Raising ArgumentError better communicates invalid input than TypeError here:
-def unsupported_integration_category
-  raise TypeError, "Unsupported integration category: #{integration.category}"
+def unsupported_integration_category
+  raise ArgumentError, "Unsupported integration category: #{integration.category}"
 end

-def unsupported_integration_type
-  raise TypeError, "Unsupported integration type: #{integration.providable_type}"
+def unsupported_integration_type
+  raise ArgumentError, "Unsupported integration type: #{integration.providable_type}"
 end
app/models/concerns/app_configurable.rb (1)

4-5: Acknowledge the noted refactoring opportunity.

The comments correctly identify that firebase_app could be moved to GoogleFirebaseIntegration to further align with the integration-specific configuration pattern established in this PR.

Would you like me to help refactor this method into GoogleFirebaseIntegration, or should this be tracked as a follow-up task?
app/views/ci_cd/github_configs/edit.html+turbo_frame.erb (1)
9-16: Consider extracting repository selection logic into a helper.

The repository selection logic (finding and preselecting the repository) is complex and will be duplicated across similar views (GitLab, Bitbucket).

Consider extracting this into a view helper method:
# app/helpers/integration_configs_helper.rb
def repository_selection_options(repositories, selected_repository_config)
  options = display_channels(repositories) { |repo| repo[:full_name] }
  selected = repositories.find { |repo| repo[:id] == selected_repository_config&.dig("id") }&.to_json
  options_for_select(options, selected)
end
Then simplify the view to:
-        <%= section.F.labeled_select :repository_config,
-              "Code Repository",
-              options_for_select(
-                display_channels(@code_repositories) { |repo| repo[:full_name] },
-                @code_repositories.find { |repo| repo[:id] == @github_integration.repository_config&.dig("id") }&.to_json
-              ) %>
+        <%= section.F.labeled_select :repository_config,
+              "Code Repository",
+              repository_selection_options(@code_repositories, @github_integration.repository_config) %>
app/controllers/ci_cd/bitrise_configs_controller.rb (1)

1-53: Consider extracting the common controller pattern.

This controller follows the same structure as other CI/CD config controllers (GitHub, GitLab, Bitbucket). Consider extracting the common pattern into a concern or base class to reduce duplication while allowing integration-specific behavior.

For example, a concern could provide:

Standard set_app and redirect error handling

Parameter parsing pattern with safe_json_parse

Standard update flow with redirect paths

Each controller would then only need to define integration-specific methods like set_ci_cd_projects.

spec/factories/apps.rb (1)

9-11: Track the TODO for removing app_config.

The comment indicates this line can be removed, suggesting it's technical debt left during the gradual migration from AppConfig to per-integration configs.

Would you like me to open a new issue to track the removal of app.config from the factory once all integration-specific configurations have been fully migrated?
app/views/project_management/linear_configs/edit.html+turbo_frame.erb (1)
2-2: Prefer safe navigation for nil checks.

The conditional @linear_data && @linear_data[:teams].present? works but could be more idiomatic.

Consider using safe navigation:
-  <% if @linear_data && @linear_data[:teams].present? %>
+  <% if @linear_data&.dig(:teams).present? %>
app/models/jira_integration.rb (1)

65-65: Release filters validation: solid, consider reuse with Linear.

Validation logic is correct. Given identical logic in LinearIntegration, consider extracting a small concern/helper to DRY it up while keeping per‑integration VALID_FILTER_TYPES.

Also applies to: 268-274

app/models/bitrise_integration.rb (1)

64-68: Good: read project from project_config; add nil guards at call sites.

Accessor is fine. When project_config is unset, project is nil; downstream calls like workflows, trigger_workflow_run!, and artifact_url may break.

Add early returns (e.g., return [] if project.blank?) in read paths and clear errors/raise in write/trigger paths when not configured.

Verify current API methods safely handle nil app id.

app/views/project_management/jira_configs/edit.html+turbo_frame.erb (1)

13-14: Name consistency: current_jira_config vs project_config.

The partial now binds to project_config; consider renaming current_jira_config to current_project_config for clarity.

app/models/linear_integration.rb (1)

63-63: Same release_filters validator duplication as Jira.

Works as intended; consider extracting to a small shared concern to avoid drift.

Also applies to: 246-252
app/views/monitoring/_bugsnag_project_form.html.erb (2)
10-10: Escape JSON for data attribute

Embed JSON safely to avoid breaking the attribute and to prevent injection. Use json_escape (or j) on to_json.
-       data-nested-select-options-value="<%= projects.to_json %>"
+       data-nested-select-options-value="<%= json_escape(projects.to_json) %>"
14-21: *Avoid using full JSON as option value for _project_id

The select name suggests it expects an ID, but the option values look like JSON blobs. Prefer using the project id as the option value and keep the JSON in data-* attributes (or via the nested-select controller state). This simplifies params handling and reduces payload size.
config/locales/en.yml (1)

780-821: Reduce duplication via shared i18n key

These per-provider update.success messages are identical. Consider referencing a shared message (e.g., config.update.success) to reduce duplication and future drift.

db/schema.rb (1)

382-390: Legacy app_id column still present

Model ignores google_firebase_integrations.app_id. Consider a follow-up migration to drop this column to reduce confusion and risk of stale data.
app/models/github_integration.rb (2)
138-141: Wrap external call in retries for resiliency

Align with other providers (e.g., GitLab/Bitbucket) and wrap list_repos with with_api_retries.
-def repos(_ = nil)
-  installation.list_repos(REPOS_TRANSFORMATIONS)
-end
+def repos(_ = nil)
+  with_api_retries { installation.list_repos(REPOS_TRANSFORMATIONS) }
+end
382-384: Handle missing namespace in namespaced_branch

Avoid generating ":branch" when namespace is absent.
-def namespaced_branch(branch_name)
-  [code_repo_namespace, ":", branch_name].join
-end
+def namespaced_branch(branch_name)
+  return branch_name if code_repo_namespace.blank?
+  "#{code_repo_namespace}:#{branch_name}"
+end
app/controllers/version_control/github_configs_controller.rb (1)
45-51: Make repository_config parsing type-safe

Handle both String and Hash inputs to avoid NoMethodError on Hash.
- github_config_params = params.require(:github_integration)
-   .permit(:repository_config)
- github_config_params.merge(
-   repository_config: github_config_params[:repository_config]&.safe_json_parse
- )
+ github_config_params = params.require(:github_integration).permit(:repository_config)
+ repo_cfg = github_config_params[:repository_config]
+ repo_cfg = repo_cfg.is_a?(String) ? repo_cfg.safe_json_parse : repo_cfg
+ github_config_params.merge(repository_config: repo_cfg)
app/models/integration.rb (1)
164-171: Tighten configured? to connected scope

Use connected.exists? and avoid relying on Relation#none? semantics.
- def configured?
-   return false if none? # need at least one integration
-
-   further_setup_by_category
-     .values
-     .pluck(:ready)
-     .all?
- end
+ def configured?
+   return false unless connected.exists?
+   further_setup_by_category.values.pluck(:ready).all?
+ end
app/controllers/ci_cd/gitlab_configs_controller.rb (1)
45-51: Type-safe parsing for repository_config

Accept both String and Hash inputs.
- gitlab_config_params = params.require(:gitlab_integration)
-   .permit(:repository_config)
- gitlab_config_params.merge(
-   repository_config: gitlab_config_params[:repository_config]&.safe_json_parse
- )
+ gitlab_config_params = params.require(:gitlab_integration).permit(:repository_config)
+ repo_cfg = gitlab_config_params[:repository_config]
+ repo_cfg = repo_cfg.is_a?(String) ? repo_cfg.safe_json_parse : repo_cfg
+ gitlab_config_params.merge(repository_config: repo_cfg)
app/controllers/ci_cd/github_configs_controller.rb (1)
12-16: Consider adding turbo_stream response for consistency

Other CI/CD config controllers support turbo_stream. Add if desired for uniform UX.

Apply this diff:
     respond_to do |format|
       format.html do |variant|
         variant.turbo_frame { render :edit }
       end
+      format.turbo_stream { render :edit }
     end
app/controllers/project_management/linear_configs_controller.rb (1)

64-65: Side effects on GET

Persisting defaults in edit (save! if changed?) writes on GET. Consider deferring to update or a background init.
app/controllers/ci_cd/bitbucket_configs_controller.rb (1)
42-46: Handle empty workspace list gracefully

If there are no workspaces, repos(nil) may fail. Default to empty repos.

Apply this diff:
   def set_code_repositories
     @workspaces = @bitbucket_integration.workspaces || []
-    workspace = params[:workspace] || @workspaces.first
-    @code_repositories = @bitbucket_integration.repos(workspace)
+    workspace = params[:workspace] || @workspaces.first
+    @code_repositories = workspace.present? ? @bitbucket_integration.repos(workspace) : []
   end
app/models/app_config.rb (4)
60-62: Prefer dig over fetch for project_config id

Simpler and avoids potential KeyError semantics.
-  app.ci_cd_provider&.project_config&.fetch("id", nil).present?
+  app.ci_cd_provider&.project_config&.dig("id").present?
64-68: Add safe-nav to Bugsnag readiness; keep provider access consistent

Minor safety/consistency improvement.
-  monitoring_provider = app.monitoring_provider
-  configs_ready?(monitoring_provider.ios_config, monitoring_provider.android_config)
+  monitoring_provider = app.monitoring_provider
+  configs_ready?(monitoring_provider&.ios_config, monitoring_provider&.android_config)
70-74: Deduplicate configs_ready? with Integration-level helper

This duplicates Integration.configs_ready? with a different signature, inviting drift. Centralize and delegate to the canonical helper.

Example:
def configs_ready?(ios, android)
  app.integrations.configs_ready?(app, android, ios)
end
31-40: Move remaining validations to integration models and remove from AppConfig

You already left a TODO. Recommend migrating these to JiraIntegration/LinearIntegration and deleting the AppConfig counterparts to avoid split validation logic.
app/controllers/project_management/jira_configs_controller.rb (4)
61-65: Heuristic for “done” statuses may be too strict

Matching name == "Done" likely misses custom “Done” categories. Prefer statusCategory key (e.g., status['statusCategory']['key'] == 'done') if available.

68-69: Avoid persisting defaults during GET edit

Saving in set_jira_projects causes side effects on GET. Prefer computing defaults in-memory and persisting only on update.

Possible approaches:

Move the default-initialization into update if config blank.

Or wrap save! in a non-GET guard.

2-2: Unused refinement import

RefinedString isn’t used here. Consider removing to reduce surface area.

90-91: Compact blanks in selected_projects

Prevents empty strings sneaking in.
-      selected_projects: Array(config_params[:selected_projects]),
+      selected_projects: Array(config_params[:selected_projects]).compact_blank,

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 91c8a1b and 43f8262.

📒 Files selected for processing (70)

app/components/integration_card_component.html.erb (2 hunks)
app/components/integration_card_component.rb (3 hunks)
app/components/integration_list_component.html.erb (1 hunks)
app/components/integration_list_component.rb (0 hunks)
app/components/live_release/finalize_component.rb (1 hunks)
app/controllers/apps_controller.rb (1 hunks)
app/controllers/build_channel/google_firebase_configs_controller.rb (1 hunks)
app/controllers/ci_cd/bitbucket_configs_controller.rb (1 hunks)
app/controllers/ci_cd/bitrise_configs_controller.rb (1 hunks)
app/controllers/ci_cd/github_configs_controller.rb (1 hunks)
app/controllers/ci_cd/gitlab_configs_controller.rb (1 hunks)
app/controllers/monitoring/bugsnag_configs_controller.rb (1 hunks)
app/controllers/project_management/jira_configs_controller.rb (1 hunks)
app/controllers/project_management/linear_configs_controller.rb (1 hunks)
app/controllers/version_control/bitbucket_configs_controller.rb (1 hunks)
app/controllers/version_control/github_configs_controller.rb (1 hunks)
app/controllers/version_control/gitlab_configs_controller.rb (1 hunks)
app/libs/coordinators/webhooks/pull_request.rb (1 hunks)
app/libs/coordinators/webhooks/push.rb (1 hunks)
app/models/app.rb (2 hunks)
app/models/app_config.rb (3 hunks)
app/models/bitbucket_integration.rb (3 hunks)
app/models/bitrise_integration.rb (2 hunks)
app/models/bugsnag_integration.rb (4 hunks)
app/models/concerns/app_configurable.rb (1 hunks)
app/models/github_integration.rb (4 hunks)
app/models/gitlab_integration.rb (5 hunks)
app/models/google_firebase_integration.rb (3 hunks)
app/models/integration.rb (3 hunks)
app/models/jira_integration.rb (4 hunks)
app/models/linear_integration.rb (4 hunks)
app/views/build_channel/_firebase_integration_form.html.erb (1 hunks)
app/views/build_channel/google_firebase_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/ci_cd/bitbucket_configs/_form.html.erb (1 hunks)
app/views/ci_cd/bitbucket_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/ci_cd/bitbucket_configs/edit.turbo_stream.erb (1 hunks)
app/views/ci_cd/bitrise_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/ci_cd/github_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/ci_cd/gitlab_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/jira_integration/_project_selection.html.erb (2 hunks)
app/views/jira_integration/_release_filter_form.html.erb (1 hunks)
app/views/linear_integration/_release_filter_form.html.erb (1 hunks)
app/views/linear_integration/_team_selection.html.erb (2 hunks)
app/views/monitoring/_bugsnag_project_form.html.erb (1 hunks)
app/views/monitoring/bugsnag_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/project_management/jira_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/project_management/linear_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/version_control/bitbucket_configs/_form.html.erb (1 hunks)
app/views/version_control/bitbucket_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/version_control/bitbucket_configs/edit.turbo_stream.erb (1 hunks)
app/views/version_control/github_configs/edit.html+turbo_frame.erb (1 hunks)
app/views/version_control/gitlab_configs/edit.html+turbo_frame.erb (1 hunks)
config/locales/en.yml (1 hunks)
config/routes.rb (1 hunks)
db/migrate/20250908020424_add_repository_config_to_vcs_integrations.rb (1 hunks)
db/migrate/20250909193500_add_project_config_to_bitrise_integration.rb (1 hunks)
db/migrate/20250918025642_add_config_to_google_firebase_integration.rb (1 hunks)
db/migrate/20250919124803_add_config_to_bugsnag_integration.rb (1 hunks)
db/migrate/20250924035033_add_config_to_project_management_integrations.rb (1 hunks)
db/schema.rb (6 hunks)
spec/factories/apps.rb (1 hunks)
spec/factories/bitbucket_integrations.rb (1 hunks)
spec/factories/github_integrations.rb (1 hunks)
spec/factories/gitlab_integrations.rb (1 hunks)
spec/factories/integrations.rb (1 hunks)
spec/factories/jira_integrations.rb (1 hunks)
spec/libs/triggers/pull_request_spec.rb (5 hunks)
spec/models/gitlab_integration_spec.rb (7 hunks)
spec/models/jira_integration_spec.rb (3 hunks)
spec/models/linear_integration_spec.rb (1 hunks)

💤 Files with no reviewable changes (1)

app/components/integration_list_component.rb

🧰 Additional context used

🧬 Code graph analysis (31)

spec/models/jira_integration_spec.rb (2)

app/libs/installations/jira/api.rb (1)

include (2-150)

app/models/jira_integration.rb (1)

fetch_tickets_for_release (160-176)

app/libs/coordinators/webhooks/push.rb (6)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/bitbucket_integration.rb (1)

code_repository_name (33-35)

app/models/github_integration.rb (1)

code_repository_name (113-115)

app/models/gitlab_integration.rb (1)

code_repository_name (159-161)

app/libs/coordinators/webhooks/bitbucket/pull_request.rb (1)

repository_name (25-27)

app/libs/coordinators/webhooks/bitbucket/push.rb (2)

repository_name (35-37)

branch_name (31-33)

app/models/app.rb (1)

app/models/integration.rb (3)

ready? (160-162)

configured? (164-171)

further_setup_by_category (227-267)

spec/models/gitlab_integration_spec.rb (1)

app/models/gitlab_integration.rb (2)

installation (334-336)

code_repository_name (159-161)

app/controllers/monitoring/bugsnag_configs_controller.rb (4)

app/controllers/application_controller.rb (1)

current_organization (30-42)

app/models/integration.rb (1)

monitoring_provider (189-191)

app/models/bugsnag_integration.rb (1)

setup (83-85)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/models/github_integration.rb (2)

app/models/bitbucket_integration.rb (5)

code_repository_name (33-35)

code_repo_url (37-39)

code_repo_namespace (41-41)

code_repo_name_only (43-43)

repos (165-167)

app/models/gitlab_integration.rb (5)

code_repository_name (159-161)

code_repo_url (163-165)

code_repo_namespace (167-167)

code_repo_name_only (169-169)

repos (198-200)

app/components/integration_card_component.rb (2)

app/components/integration_list_component.rb (2)

initialize (1-15)

initialize (2-6)

app/models/application_record.rb (1)

human_enum_name (21-24)

app/controllers/ci_cd/github_configs_controller.rb (5)

app/controllers/ci_cd/bitbucket_configs_controller.rb (5)

using (1-55)

edit (9-18)

set_code_repositories (42-46)

update (20-27)

set_app (31-33)

app/controllers/ci_cd/gitlab_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

ci_cd_provider (181-183)

app/models/github_integration.rb (1)

repos (138-140)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

spec/factories/apps.rb (1)

app/models/app_variant.rb (1)

config (34-34)

app/components/live_release/finalize_component.rb (5)

app/models/bitbucket_integration.rb (2)

tag_url (214-216)

code_repo_url (37-39)

app/models/github_integration.rb (2)

tag_url (189-191)

code_repo_url (117-119)

app/models/gitlab_integration.rb (2)

tag_url (322-324)

code_repo_url (163-165)

app/models/release.rb (1)

tag_url (433-435)

app/models/integration.rb (1)

vcs_provider (177-179)

app/controllers/build_channel/google_firebase_configs_controller.rb (4)

app/controllers/application_controller.rb (1)

current_organization (30-42)

app/models/integration.rb (1)

firebase_build_channel_provider (209-211)

app/models/google_firebase_integration.rb (1)

setup (106-117)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/models/linear_integration.rb (1)

app/models/jira_integration.rb (1)

release_filters_are_valid (268-274)

app/models/jira_integration.rb (1)

app/models/linear_integration.rb (1)

release_filters_are_valid (246-252)

app/controllers/ci_cd/bitrise_configs_controller.rb (4)

app/controllers/application_controller.rb (1)

current_organization (30-42)

app/models/integration.rb (1)

ci_cd_provider (181-183)

app/models/bitrise_integration.rb (1)

setup (93-95)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/controllers/version_control/bitbucket_configs_controller.rb (4)

app/controllers/version_control/github_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/bitbucket_integration.rb (2)

workspaces (96-98)

repos (165-167)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/controllers/version_control/github_configs_controller.rb (5)

app/controllers/version_control/bitbucket_configs_controller.rb (5)

using (1-55)

edit (9-18)

set_code_repositories (42-46)

update (20-27)

set_app (31-33)

app/controllers/version_control/gitlab_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/github_integration.rb (1)

repos (138-140)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/models/google_firebase_integration.rb (1)

app/models/concerns/app_configurable.rb (1)

firebase_app (6-13)

app/controllers/project_management/linear_configs_controller.rb (4)

app/controllers/project_management/jira_configs_controller.rb (4)

using (1-109)

edit (9-17)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

project_management_provider (213-215)

app/models/linear_integration.rb (1)

setup (116-132)

app/libs/installations/linear/api.rb (1)

workflow_states (95-103)

spec/libs/triggers/pull_request_spec.rb (5)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/bitbucket_integration.rb (3)

code_repository_name (33-35)

code_repo_namespace (41-41)

code_repo_name_only (43-43)

app/models/github_integration.rb (3)

code_repository_name (113-115)

code_repo_namespace (121-123)

code_repo_name_only (125-127)

app/models/gitlab_integration.rb (3)

code_repository_name (159-161)

code_repo_namespace (167-167)

code_repo_name_only (169-169)

app/libs/triggers/pull_request.rb (1)

repo_integration (129-131)

app/controllers/ci_cd/bitbucket_configs_controller.rb (5)

app/controllers/ci_cd/github_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/controllers/ci_cd/gitlab_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

ci_cd_provider (181-183)

app/models/bitbucket_integration.rb (2)

workspaces (96-98)

repos (165-167)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/controllers/project_management/jira_configs_controller.rb (3)

app/controllers/project_management/linear_configs_controller.rb (4)

using (1-100)

edit (9-17)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

project_management_provider (213-215)

app/models/jira_integration.rb (1)

setup (129-146)

app/controllers/ci_cd/gitlab_configs_controller.rb (7)

app/controllers/ci_cd/bitbucket_configs_controller.rb (5)

using (1-55)

edit (9-18)

set_code_repositories (42-46)

update (20-27)

set_app (31-33)

app/controllers/ci_cd/github_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/models/integration.rb (1)

ci_cd_provider (181-183)

app/models/bitbucket_integration.rb (1)

repos (165-167)

app/models/github_integration.rb (1)

repos (138-140)

app/models/gitlab_integration.rb (1)

repos (198-200)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/models/integration.rb (4)

app/models/app_config.rb (5)

firebase_ready? (53-57)

bugsnag_ready? (64-68)

project_management_ready? (76-97)

bitrise_ready? (59-62)

configs_ready? (70-74)

app/models/app.rb (2)

bitrise_connected? (109-111)

bugsnag_connected? (113-115)

app/models/bitrise_integration.rb (1)

bitrise_project (64-66)

app/models/concerns/integrable.rb (1)

firebase_connected? (14-16)

app/models/gitlab_integration.rb (3)

app/models/bitbucket_integration.rb (4)

code_repository_name (33-35)

code_repo_url (37-39)

with_api_retries (369-385)

installation (60-62)

app/libs/installations/github/api.rb (1)

get_commit (287-289)

app/libs/installations/gitlab/api.rb (1)

get_commit (111-115)

app/libs/coordinators/webhooks/pull_request.rb (6)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/bitbucket_integration.rb (1)

code_repository_name (33-35)

app/models/github_integration.rb (1)

code_repository_name (113-115)

app/models/gitlab_integration.rb (1)

code_repository_name (159-161)

app/libs/coordinators/webhooks/bitbucket/pull_request.rb (1)

repository_name (25-27)

app/libs/coordinators/webhooks/bitbucket/push.rb (1)

repository_name (35-37)

app/models/bitbucket_integration.rb (2)

app/models/github_integration.rb (4)

code_repository_name (113-115)

code_repo_url (117-119)

code_repo_namespace (121-123)

code_repo_name_only (125-127)

app/models/gitlab_integration.rb (4)

code_repository_name (159-161)

code_repo_url (163-165)

code_repo_namespace (167-167)

code_repo_name_only (169-169)

app/controllers/apps_controller.rb (2)

app/models/app.rb (3)

ready? (129-131)

train_in_creation (137-139)

app_setup_instructions (171-203)

app/models/integration.rb (1)

ready? (160-162)

app/controllers/version_control/gitlab_configs_controller.rb (6)

app/controllers/version_control/bitbucket_configs_controller.rb (5)

using (1-55)

edit (9-18)

set_code_repositories (42-46)

update (20-27)

set_app (31-33)

app/controllers/version_control/github_configs_controller.rb (5)

using (1-52)

edit (9-17)

set_code_repositories (41-43)

update (19-26)

set_app (30-32)

app/controllers/application_controller.rb (1)

current_organization (30-42)

app/models/integration.rb (1)

vcs_provider (177-179)

app/models/gitlab_integration.rb (1)

repos (198-200)

app/refinements/refined_string.rb (1)

safe_json_parse (42-46)

app/models/app_config.rb (3)

app/models/integration.rb (7)

monitoring_provider (189-191)

firebase_ready? (307-313)

firebase_build_channel_provider (209-211)

configs_ready? (346-350)

bitrise_ready? (296-301)

ci_cd_provider (181-183)

bugsnag_ready? (315-321)

app/models/concerns/integrable.rb (1)

firebase_connected? (14-16)

app/models/app.rb (2)

bitrise_connected? (109-111)

bugsnag_connected? (113-115)

app/models/bitrise_integration.rb (1)

app/models/integration.rb (1)

bitrise_project (303-305)

app/models/bugsnag_integration.rb (1)

app/models/app_config.rb (1)

set_bugsnag_config (45-51)

🪛 ast-grep (0.39.5)

spec/models/gitlab_integration_spec.rb

[warning] 16-16: Found the use of an hardcoded passphrase for RSA. The passphrase can be easily discovered, and therefore should not be stored in source-code. It is recommended to remove the passphrase from source-code, and use system environment variables or a restricted configuration file.
Context: expect(installation).to have_received(:create_release!).with(gitlab_integration.code_repository_name, "v1.0.0", "main", "Release notes")
Note: [CWE-798]: Use of Hard-coded Credentials [OWASP A07:2021]: Identification and Authentication Failures [REFERENCES]
https://cwe.mitre.org/data/definitions/522.html