Genealogy website software - work in progress. This is under development and it is not intended to be used in a production environment yet.
click on the photo to view a short demo in compatible browsers
If you are using this project please consult the changelog on every update.
The documentation is available here. Note that most sections have short demo clips.
-
Download the project with
git clone https://github.com/laravel-genealogy/genealogy.git
-
Run in the project folder
composer install
-
Configure the
.env
file. Runphp artisan key:generate
-
Run
php artisan migrate
-
Login into the project with user:
[email protected]
, password:password
-
(optional) Setup the configuration files as needed, in
config/enso/*.php
-
(optional)
npm install
/npm run dev
/hmr
/...
Enjoy!
IMPORTANT NOTE: Due to laravel mix limitations, when using hmr
,
you need to comment lines 3-to-7 inside webpack.mix.js
in order for it to work correctly.
Don't forget to uncomment them back when building without hot module replacement.
- Follow the steps above to install & setup
- If you find Enso suited for building a project with it, delete the .git folder, run
git init
, and use a dedicated repo for your custom project - Develop
- To update run
composer update
/npm update
and compile - Breaking changes in the dependencies? Update your custom code then update the new versions in
composer.json
and runcomposer update
- Need another new project ? Start again from the first step
Note: When we must make breaking changes to the packages, we increase the minor version. Due to how dependencies are defined, composer will not update the dependencies for you in that case, that's why you need to look at the changelog, be aware of the changes, update your code and then manually update the dependencies' minor version, so that you can continue to receive updates.
A solid starting project, based on Laravel 5.6, VueJS 2, Bulma, integrated themes from Bulmaswatch, all the VueJS goodies such as VueEx and VueRouter, with features like:
-
Customizable and powerful datatables:
- JSON templates
- server side
- multi-argument full column search
- customizable column visibility
- state save in localStorage for each table
- automatic action buttons generation, depending on user permissions
- custom action buttons as needed
- beautiful tag rendering for boolean flag columns
- easy display of flag/type columns values
- server-side excel export for every table
-
- JSON templates
- server side
- validation
- customizable
-
Vue select - server side builder with parameter conditioning, including pivot parameters, built as a wrapper for Vue-multiselect
-
Advanced owners / roles / permissions structure
-
Log management - view, download, clear
-
User action logger, so you can keep track of who's done what
-
User impersonation for easy support and debugging
-
Application interface tutorials based on the awesome Intro.js
-
Charts component with server side data builder, based on Chart.js
-
Comments component with support for tagging users
-
Documents component with upload, download and inline view
-
Ability to track who created, updated and deleted models, using traits
-
File uploader and file management library
-
Avatar functionality for all users
-
Ability to track the different versions of a model through its lifetime
-
Front-end date-picker and time-picker, based on Flatpickr
-
Server-side type-ahead
-
User, application-wide preferences - every user has the ability to choose his theme (from 10 variants), set the menu style, app language and more
-
Queueable jobs
-
Push notifications - working out of the box (requires Pusher)
-
Beautiful email notifications, that can published and customized to your heart's desire
-
Automatic breadcrumbs generation
-
Application-wide timestamp formatting customization through the configuration file
-
Separate front-end state support, so that it's easier to keep your application's logic and data separated from enso's
-
Optimistic concurrency control with versioning, via the Versioning package
-
many more helpers and hidden gems
fully working in less than 5 minutes!
- the standard Laravel authentication is used, via email & password
Since we wanted to log data about our users and their requests, as well as check various permissions, the concept of a 'truly' stateless and secure API backend becomes impossible.
From a security standpoint we did not feel that a RESTful would not be more secure but probably even less safe.
Finally, from our own internal tests we concluded that we had no performance issues related to having the application stateful, especially since we don't aim to build applications of Twitter's scale.
In conclusion, even though at a point during the development we had the back-end set up as an API using JWT, in the end we designed it stateful since session is stored in the DB or in files, depending on your chosen setup.
- since Enso is built on top of a Laravel back-end, we are using the provided session management
- since Laravel is using HttpOnly cookies and an additional CSRF token, this should provide protection against both XSS and CSRF attacks
- remember that when working with VueJS, the v-html directive is XSS vulnerable, so it should be used only with sanitized/safe data
- application wide, checking user status: active/inactive. The check is made for every request, via a middleware. The inactive status prevents the user from logging in and making requests. If an user becomes inactive while he's still logged in, at his next request he'll be logged out and redirected to the login page with a notification
- application-section wide, via the menu's visibility, depending on the user's role. The users that don't have access to a certain menu, can't see it. This level doesn't block access to the routes, it just affects the visibility of the menus
- application-section wide, depending on permitted access to routes, which is tied to the user's role and the associated permissions for that role. The check is made for each request, via a middleware. If the user is not allowed on a route a 403 response is given back and a
laravel.log
entry is made. - content specific, via gates & policies. The check is made locally, when and where gates & policies are used
- for the routes within the application, the 'core' middleware group is applied
- the 'core' group contains the middleware below, presented in the order they're applied:
verify-active-state
- checks users's status (active/inactive)action-logger
- logs for each request the user's id, route, url, the HTTP verb and the timestampsverify-route-access
- authorizes the access to a routeimpersonate
- starts and stops the impersonation of a user, when neededset-language
- sets the user's chosen language (localisation)
Owners, Roles & Users
- users represent the operators using the application
- roles are collections of permissions
- owners are user groups, and can represent departments, types, and even companies
- an owner can have many users
- an owner can have many roles
- an user has just one owner and just one role
- the role of a user may only be one of the roles available for its owner
- users have an active or inactive status, where inactive users cannot login or make requests in the application (but can set/reset their password)
The mechanism allows saving and loading of the user's preferences for several aspects of the application.
- the preferences can be updated from the right-hand sidebar. From there the user can also reset the preferences to default.
- the user's preferences are stored in the
preferences
table, undervalue
column, in JSON format. - list of preferences
lang
- the user's languagetheme
- the currently selected theme
Are loaded at application load, and refreshed as needed
- config
- within the configuration enso folder
config/enso
you'll find configuration files for the various laravel-enso packages - inside 'config.php' various options may be set, such as the folders used for storing uploads, avatars, etc. the caching duration and the timestamps format when displaying them, the app version displayed in the footer and more
- within the configuration enso folder
- the implicit
login
event that Laravel fires on a user's login triggers a listener that stores the user's ip, user-agent and timestamps inside thelogins
table
- when needed, the exceptions thrown are as specific as possible
- since requests are supposed to be ajax, JSON responses are given back
Please note that because we want to keep the compiled size down, throughout the Enso ecosystem, icons are imported selectively.
What this means for you is that the necessary icons should be imported inside your components/pages. If you want to import FA icons globally (not recommended) the place to include them is:
resources/assets/js/app.js
For menus, icons should be imported in:
assest/js/pages/layout/sidebar/icons/app.js
For languages, flag icons should be imported in:
resources/assets/sass/app.scss
(you may use flags.scss
as a reference)
If you want to add a new language, there are a few steps involved, so please check out the relevant section of the localisation package.
By default, Enso comes with a few templates for the email notifications used out of the box.
If you need to create other templates or change the existing ones, a good starting point is to publish
the existing templates, using the php artisan vendor:publish --tag=enso-mail
artisan command.
The blade templates will be published in the resources/views/vendor/laravel-enso
folder.
You'll find the template layout and partials in the core
folder and sub-folders.
By default, the Mailtrap token variable is used for the unsubscribe link. You may customize the footer partial to use the desired token.
When developing an application on top of Enso, it makes sense to keep your app state data separate from the core Enso state. In order to achieve this, you need to customize just 2 files, one for each layer.
- you need a
StateBuilder
implementation class, that should be given as a value for theenso.config.stateBuilder
configuration parameter - by default, the
App\Classes\LocalState
is provided as blank template - the additional state data is returned to the front end via the same response (
/core/api
) as the core Enso state data
As you may need to initialize or otherwise process the local state data received from the back-end,
resources/assets/js/localState.js
holds the entry point method you can customize and add logic to.
Here you'll have access to the Vuex context
object and your local state
data, received from the back-end.
When updating Enso and introducing possibly breaking changes, we might make available various Artisan commands,
meant to make the update easier.
You can see the list of currently available commands by running php artisan enso
and remember to always consult the changelog.
Built with with ❤️, crafted on Laravel 5.6.x, Bulma 0.6.x, Vuejs 2.5.x and:
Vue Router, Vuex, Axios, Font awesome 5, Animate.css, Bulmaswatch, Bulma-Extensions, Nprogress.js, Vue-multiselect, Intro.js, Chart.js, Flatpickr,
Special thanks to Laravel Enso Taylor Otwell, Jeffrey Way, Evan You and Jeremy Thomas.
are welcome. Pull requests are great, but issues are good too.
This package is released under the MIT license.