Merge admin and api users

app/models/admin_user.rb

@@ -0,0 +1,32 @@
+class AdminUser < User
+  devise :trackable, :timeoutable
+  # TODO: Foreign user will get email with activation link,email,temp-password.
+  # After activisation, system should require to change temp password.
+  # TODO: Estonian id validation
+
+  validates :username, :password, :country_code, presence: true
+  validates :identity_code, uniqueness: true, allow_blank: true
+  validates :identity_code, presence: true, if: -> { country_code == 'EE' }
+  validates :email, presence: true, if: -> { country_code != 'EE' }
+
+  validate :validate_identity_code
+  belongs_to :country_deprecated, foreign_key: :country_id
+
+  ROLES = %w(user customer_service admin)
+
+  def to_s
+    username
+  end
+
+  def country
+    Country.new(country_code)
+  end
+
+  private
+
+  def validate_identity_code
+    return unless identity_code.present?
+    code = Isikukood.new(identity_code)
+    errors.add(:identity_code, :invalid) unless code.valid?
+  end
+end

app/models/api_user.rb

@@ -1,8 +1,7 @@
 require 'open3'
 
 # rubocop: disable Metrics/ClassLength
-class ApiUser < ActiveRecord::Base
-  include Versions # version/api_user_version.rb
+class ApiUser < User
   # TODO: should have max request limit per day
   belongs_to :registrar
   has_many :contacts

app/models/api_user_deprecated.rb

@@ -0,0 +1,52 @@
+require 'open3'
+
+# rubocop: disable Metrics/ClassLength
+class ApiUserDeprecated < ActiveRecord::Base
+  self.table_name = "api_users"
+  # TODO: should have max request limit per day
+  belongs_to :registrar
+  has_many :contacts
+
+  validates :username, :password, :registrar, presence: true
+  validates :username, uniqueness: true
+
+  before_save :create_crt, if: -> (au) { au.csr_changed? }
+
+  attr_accessor :registrar_typeahead
+
+  def registrar_typeahead
+    @registrar_typeahead || registrar || nil
+  end
+
+  def to_s
+    username
+  end
+
+  def queued_messages
+    registrar.messages.queued
+  end
+
+  def create_crt
+    csr_file = Tempfile.new('client_csr')
+    csr_file.write(csr)
+    csr_file.rewind
+
+    crt_file = Tempfile.new('client_crt')
+    _out, err, _st = Open3.capture3("openssl ca -keyfile #{APP_CONFIG['ca_key_path']} \
+    -cert #{APP_CONFIG['ca_cert_path']} \
+    -extensions usr_cert -notext -md sha256 \
+    -in #{csr_file.path} -out #{crt_file.path} -key '#{APP_CONFIG['ca_key_password']}' -batch")
+
+    if err.match(/Data Base Updated/)
+      crt_file.rewind
+      self.crt = crt_file.read
+      return true
+    else
+      errors.add(:base, I18n.t('failed_to_create_certificate'))
+      logger.error('FAILED TO CREATE CLIENT CERTIFICATE')
+      logger.error(err)
+      return false
+    end
+  end
+end
+# rubocop: enable Metrics/ClassLength

app/models/user.rb

@@ -1,35 +1,3 @@
 class User < ActiveRecord::Base
   include Versions # version/user_version.rb
-  # Include default devise modules. Others available are:
-  # :confirmable, :lockable, :timeoutable and :omniauthable
-  devise :trackable, :timeoutable
-  # TODO: Foreign user will get email with activation link,email,temp-password.
-  # After activisation, system should require to change temp password.
-  # TODO: Estonian id validation
-
-  validates :username, :password, :country_code, presence: true
-  validates :identity_code, uniqueness: true, allow_blank: true
-  validates :identity_code, presence: true, if: -> { country_code == 'EE' }
-  validates :email, presence: true, if: -> { country_code != 'EE' }
-
-  validate :validate_identity_code
-  belongs_to :country_deprecated, foreign_key: :country_id
-
-  ROLES = %w(user customer_service admin)
-
-  def to_s
-    username
-  end
-
-  def country
-    Country.new(country_code)
-  end
-
-  private
-
-  def validate_identity_code
-    return unless identity_code.present?
-    code = Isikukood.new(identity_code)
-    errors.add(:identity_code, :invalid) unless code.valid?
-  end
 end