rodrigo/iachat - iachat - Gitea: Git with a cup of tea

rodrigo/iachat

Author	SHA1	Message	Date
gabrieljablonski	112385fd9e	Merge branch 'main' into chore/merge-4.13.0 Resolves 26 conflicts via manual review. Key decisions: - signature: kept fork's send-time architecture (PR #79), discarded upstream's editor-manipulation functions - WhatsApp incoming: combined fork's two-layer locking (source_id + contact phone) with upstream's blocked-contact drop. Fixed pre-existing regression where echoes were silently dropped - InstallationConfig: upstream's simplified coder (validated against legacy YAML-in-jsonb data) - schema.rb: regenerated, stripped kanban tables from other branches, restored f_unaccent SQL function	2026-04-17 16:23:47 -03:00
Gabriel Jablonski	3aca86aa43	feat(internal-chat): implement internal chat system for agents (#247 ) * feat(internal-chat): implement internal chat system for agents (Phase 1+2 MVP) Add a Slack/Discord-style internal messaging system for Chatwoot agents with text channels (public/private), direct messages, reactions, typing indicators, and real-time updates via ActionCable. Backend: - 6 database migrations (categories, channels, members, messages, attachments, reactions) - 6 models under InternalChat:: namespace with validations and associations - API controllers for categories, channels, messages, members, and reactions - Pundit policies for authorization (public/private/DM access control) - MessageCreateService, TypingStatusManager, DefaultChannelSetupService - InternalChatListener for real-time broadcasting to channel members - Event types for internal chat events - Default category/channel setup for new and existing accounts Frontend: - Vuex store modules for channels, messages, and typing status - API clients for channels and messages - Vue 3 components: InternalChatLayout, ChannelSidebar, ChannelView, ChannelHeader, MessageList, MessageBubble, MessageEditor, EmojiReactionPicker, ReactionDisplay, TypingIndicator - Sidebar integration with "Internal Chat" menu item - ActionCable handlers for real-time message/reaction/typing events - Route definitions and i18n translations Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * test(internal-chat): add comprehensive specs for models, controllers, policies, services, and listener - 6 model specs (74 examples) covering associations, validations, scopes, methods - 5 request specs for all API controllers (categories, channels, messages, members, reactions) - 4 policy specs testing authorization rules for all actions - 3 service specs (DefaultChannelSetupService, MessageCreateService, TypingStatusManager) - 1 listener spec testing real-time broadcasting for all event types - 6 FactoryBot factories with traits for all InternalChat models Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix dispatcher mock in service specs and cursor pagination test - Allow dispatcher.dispatch in service specs to handle Account.created callbacks from factory setup before asserting specific event dispatch - Fix after-cursor pagination test by adding 1 second offset to avoid timestamp precision issues with iso8601 rounding Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): address CodeRabbit review — 7 critical security/correctness fixes - Scope member creation through Current.account.users to prevent cross-account membership - Scope member_ids in DM creation through Current.account to prevent cross-account invites - Scope reaction message lookup through channel account to prevent cross-account access - Fix Vuex store to commit messages array instead of response envelope - Add UUID generation callback on Channel model (before_validation) - Add channel access check to reaction deletion policy - Validate parent_id belongs to same channel in MessageCreateService Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): address CodeRabbit round 2 + fix ChannelSidebar runtime error - Re-throw error in fetchMessages instead of swallowing with empty array - Wrap message + attachment creation in transaction for atomicity - Fix factory to derive account from message (prevent cross-account fixtures) - Guard listener against cross-account mismatch (not just missing records) - Add cross-account regression tests to listener spec - Fix ChannelSidebar computed properties to default to empty arrays Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): auto-setup default channels on account creation and migration - Add after_create_commit :setup_internal_chat callback on Account model - Add data migration to create default channels for existing accounts - Make DefaultChannelSetupService convergent (find_or_create) instead of bail-on-exists, so it can sync new members on subsequent runs - Fix specs to handle default category/channel created by callback Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): avoid Vuex state mutation in sort + align muted styling in fallback section Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix store module name mismatch — register as 'internalChat' not 'internalChatChannels' Components dispatch to 'internalChat/get' but the module was registered as 'internalChatChannels'. Also fix ActionCable handlers to use 'internalChat/messages/' nested module path. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * i18n(internal-chat): add pt-BR translations for internal chat feature Backend: default_category_name ('Canais') and default_channel_name ('Geral') Frontend: all 40+ keys translated to Brazilian Portuguese Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): handle ISO 8601 timestamps in MessageBubble and MessageList The API returns created_at as ISO strings but messageTimestamp() expects Unix seconds and MessageList used `* 1000`. Now handles both formats. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * docs(internal-chat): build swagger output for internal chat API endpoints Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * docs(internal-chat): register internal chat tags and paths in swagger index Add tag definitions and path entries for all 5 internal chat resource groups in swagger/index.yml and swagger/paths/index.yml. Rebuild output. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * i18n(internal-chat): add SIDEBAR.INTERNAL_CHAT key to pt-BR settings Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): comprehensive review fixes — backend and frontend Backend: - Add attachments to message API responses in both controllers - Add internal_chat_channel_updated listener handler - Include reactions in message event broadcast data Frontend: - Fix ActionCable dispatch paths to use correct action names (addMessageFromCable, updateMessageFromCable, deleteMessageFromCable) - Connect typingUsers to internalChatTypingStatus store getter - Fix message field references (edited → content_attributes.edited_at) - Fix channel type comparisons (use 'private_channel'/'dm' strings) - Add parent 'internal_chat' to sidebar activeOn array - Increment unread_count on ActionCable message receive - Add loadMore handler for cursor-based pagination - Remove unused is-direct-message prop from InternalChatLayout Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): implement phases 3-5 — threads, mentions, notifications, polls, drafts Phase 3 — Threads, Mentions, Notifications: - MentionService: parse @user mentions, @all (admin only), generate notifications - NotificationService: create notifications for channel messages (respects mute) - Add internal_chat_message/mention notification types to Notification model - ThreadPanel.vue: slide-out panel for threaded replies - Integrate mentions + notifications into MessageCreateService Phase 4 — Polls: - 3 new migrations: polls, poll_options, poll_votes tables - 3 new models: Poll, PollOption, PollVote with validations - PollsController: create poll, vote, unvote with routes - PollService: voting logic with multiple choice + revote support - PollCreator.vue: modal for creating polls with options - PollDisplay.vue: vote UI with progress bars and results - Polls Vuex store module - INTERNAL_CHAT_POLL_VOTED event type Phase 5 — Drafts: - 1 new migration: drafts table - Draft model with validations - DraftsController: full CRUD (replace stub) - DraftsList.vue: list all user drafts with navigation - Drafts Vuex store module with auto-save - Draft route and sidebar integration Phase 6 — Feature Flag: - Add INTERNAL_CHAT feature flag to features.yml and featureFlags.js Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix API routing for drafts and polls, add poll voting ActionCable handler - Fix draft API client to use channel-scoped PATCH/DELETE endpoints - Create dedicated polls API client with correct poll-based endpoints - Update polls store to use InternalChatPollsAPI with pollId-based voting - Add ActionCable handler for internal_chat.poll.voted events - Add thread and drafts routes to sidebar activeOn array - Fix drafts store to pass channelId to API calls Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix poll response format and API client routing (review round 2) - Return message with embedded poll data instead of raw poll response - Add poll data to message_response in messages controller - Create dedicated InternalChatPollsAPI client with correct endpoints - Update PollDisplay.vue to read from message.poll or content_attributes.poll - Use option.voted flag instead of checking voters array - Add missing PERCENTAGE i18n key to pt-BR - Remove unused currentUserId prop from PollDisplay Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix poll voting and draft lookup bugs (review round 3) - Fix draft getter to use internal_chat_channel_id field name - Split poll set_poll into vote/unvote variants — unvote doesn't need option_id - Unvote finds user's vote by user_id across all poll options - Fix ChannelView to extract pollId from message.poll before dispatching - Fix unvote handler to not require optionId Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 3) - Expose is_dm, favorited, muted on channel API responses - Normalize poll cable updates into message-shaped patch - Add file presence validation to MessageAttachment - Remove duplicate mention notifications from MentionService - Make data migration rollback safe (IrreversibleMigration) - Update factory to include file by default Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: return 201 for channel creation and optimize DM lookup - Return :created (201) instead of :ok (200) for channel creation - Replace O(n) Ruby scan with SQL-based DM lookup using ARRAY_AGG Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 5) - Broadcast channel event after create for real-time notifications - Separate create/update strong params to prevent channel_type transitions - Use strong params for typing_status input - Replace find_by with detect on preloaded collections to fix N+1 - Preload attachments with blobs in show response Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 6) - Serialize DM creation with advisory lock to prevent duplicates - Broadcast channel deletion event for real-time UI updates - Use strong params for mark_unread message_id - Batch unread count computation to eliminate N+1 in index Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: eliminate N+1 in compute_unread_counts with single JOIN query Replace per-membership COUNT loop with a single JOIN + GROUP BY query that returns all unread counts in one database call. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): quality fixes, missing tests, and Playwright E2E setup Addresses quality issues found during review and fills test coverage gaps for the internal chat feature. Backend fixes: - Return 201 for all create endpoints (messages, categories, polls, reactions, members) - Fix N+1 queries: replies.size, poll votes, category channels.count, votes.exists? - Fix pagination has_more logic to check page size instead of total count - Scope poll vote/unvote to current account (security fix) - Add internal_chat.messages.deleted i18n key - Use find_by! in mark_unread for proper 404 on non-members - Guard time param parsing with rescue ArgumentError - Align message response format between channels and messages controllers - Switch notification service to ActionCable-only (avoid push/email crashes) Frontend fixes: - Fix pinned message detection (content_attributes.pinned, not message.pinned) - Fix thread reply count key (replies_count, not thread_replies_count) - Fix markUnread to pass message_id parameter - Fix pagination: PREPEND_MESSAGES mutation instead of overwriting - Fix typing status to read Vuex reactive state, not stale closure - Fix deleteDraft argument shape (pass { channelId, draftId }) - Fix DM channel filtering (check both is_dm and channel_type) - Fix DraftsList navigation to use correct channel ID key - Wire PollCreator to poll button in MessageEditor - Wire settings event handler on ChannelHeader - Reset PollCreator isSubmitting on timeout New RSpec tests (67 examples): - Factories: polls, poll_options, poll_votes, drafts - Model specs: Poll, PollOption, PollVote, Draft - Controller specs: PollsController, DraftsController - Service specs: PollService, NotificationService, MentionService Playwright E2E setup (37 tests): - Install Playwright with Chromium - Auth helper with Devise Token Auth login flow - 8 test suites: navigation, channels, messaging, DMs, reactions, threads, polls, mark-read-unread Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 7) Backend: - Use lambda for UUID default in channels migration - Wrap poll creation in transaction for atomicity - Preload replies in thread action to avoid N+1 - Broadcast replies_count + attachments in listener (match REST shape) - Scope draft listing through accessible channels - Key draft upserts/deletes by parent_id for thread drafts Frontend: - Remove duplicate poll methods from internalChatMessages.js (use internalChatPolls.js) - Persist toggleMute/toggleFavorite to backend via updateMember API - Clear active channel on DELETE_CHANNEL mutation - Skip unread increment for active channel in ActionCable handler - Filter archived channels from sidebar getters - Fix ChannelHeader isArchived to check status === 'archived' - Prevent duplicate reactions in ADD_REACTION mutation - Merge poll data into existing content_attributes on cable updates - Guard infinite scroll against duplicate loads - Add response.ok() check in E2E auth helper, remove hardcoded account ID Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 8) - Remove unused nested typingStatus module from internalChat store - Add parent_id to draft uniqueness scope and migration index - Exclude reaction creator from reaction_created broadcast - Preload attachments and poll associations in thread/messages queries - Handle `after` fetches with APPEND_MESSAGES mutation - Wrap channel creation payloads under `channel` key in E2E helpers Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: rewrite Playwright E2E tests to use actual UI interactions Completely rewrote all 8 E2E test suites to work with the live app: - Test through actual UI interactions, not API bypass - Use correct Portuguese (pt_BR) locale strings - Use structural selectors matching real Vue component DOM - Dynamic account ID from login response (no hardcoded values) - 3 parallel workers, increased timeouts for reliability - API calls only for preconditions (seeding test data) 29 tests passing across navigation, channels, messaging, DMs, reactions, threads, polls, and mark-read-unread suites. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: use partial unique indexes for draft uniqueness with NULL parent_id PostgreSQL treats NULL as distinct in unique constraints, so a composite index on (user_id, channel_id, parent_id) allows duplicate root drafts. Split into two partial indexes: one for root drafts (WHERE parent_id IS NULL) and one for thread drafts (WHERE parent_id IS NOT NULL). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 9) - Remove duplicate index on internal_chat_polls.internal_chat_message_id (keep only unique index) - Add options validation in polls create (return 400 instead of 500) - Add expiration check to unvote action (match vote behavior) - Use strong params in messages update action Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 10) - Change channel associations from destroy_async to destroy (FK constraints are ON DELETE RESTRICT, blocking async deletion) - Remove unused internal_chat notification types and PRIMARY_ACTORS entry (notification service uses ActionCable only, no DB records) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 11) - Scope category_id to current account in channels controller (security) - Defer message-created event in poll creation until after transaction - Change message associations from destroy_async to destroy (FK compat) - Validate option belongs to poll in poll_service - Use strong params for emoji in reactions controller Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 12) Backend (9 fixes): - Gate message update/destroy by channel accessibility in policy - Guard content_attributes nil before merge in polls controller - Fix after-cursor pagination to use limit() instead of last() - Wrap revote in transaction for atomicity in poll service - Make unvote option-specific for multi-choice polls - Exclude own messages from unread count - Make channel activity update monotonic (only write if newer) - Include actor in message/reaction broadcasts (multi-tab support) - Return 400 for empty member create instead of 201 Frontend (8 fixes): - Show uncategorized channels even when categories exist - Clear editor on channel switch when no draft exists - Soft-delete messages in store (update in place, don't remove) - Guard ThreadPanel against out-of-order fetch responses - Replace hardcoded channel label with i18n key in DraftsList - Add accessible name to settings button in ChannelHeader - Add aria-label to search field in ChannelSidebar - Make MessageBubble actions keyboard-accessible via focus-within Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 13) - Fix keyword argument mismatch in reactions dispatch_reaction_event - Add user_id to reaction cable broadcast for shape consistency with REST Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): quality fixes, expanded RSpec + Playwright E2E tests Fix isArchived computed (checked .archived instead of .status), fix ReactionDisplay user identification (.user?.id vs .user_id), update 17 spec assertions from :success to :created on create endpoints, add 32 new RSpec examples (polls, drafts, services), and rewrite 8 Playwright E2E test files with correct selectors, proper test isolation, and dynamic user ID discovery. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 14) Prevent duplicate votes on same option in multi-choice polls with explicit BadRequest guard. Add internal_chat webhook events to ALLOWED_WEBHOOK_EVENTS so users can subscribe to them. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: include poll data in ActionCable broadcast for poll messages Extract base_message_data helper and enrich message_event_data with poll options when the message has an associated poll, ensuring realtime subscribers receive the same poll data as REST API clients. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 15) Backend: wrap single-choice revotes in transaction, capture member tokens before channel destroy, exclude own messages from unread count, strip attachments from deleted messages, enrich poll broadcast payload. Frontend: use getCurrentRole getter, fix public-results poll display, sync thread replies via store, add close button a11y, pass option_id to unvote API, pass parent_id to deleteDraft API. Models: handle nil last_read_at for new members, skip content validation for attachment-only messages, align PollService guards with controller, change category dependent to nullify. Swagger: add attachments to message schema, fix create status to 201. E2E: remove fragile waitForTimeout. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix 21 UX/functional issues Address 21 UX gaps discovered during product testing: Sidebar & Navigation: - Fix search icon overlap, extend search to description + DM members - Add create channel/DM/category buttons and modals - Show DM member names instead of null - Include members data in channel index API for DMs Message Interactions: - Add delete confirmation dialog - Implement inline message editing with cancel support - Toggle emoji reactions (add/remove) - Support multiple pinned messages with click-to-scroll - Prevent thread replies from appearing in main chat - Fix reply count live updates - Hide pin button on thread messages - Improve deleted message styling with greyed-out card - Replace spinner with skeleton loading - Add markdown toolbar (bold/italic/code) - Fix thread editing and add vote/unvote handlers Features & Polish: - Implement channel settings slide-over panel - Fix thread loading not affecting main channel spinner - Fix poll creation field name mismatch with backend API - Fix drafts: show channel names, handle DM navigation Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): use Dialog modal for delete confirmation Replace window.confirm with the project's Dialog component for message delete confirmation, providing a consistent UI experience. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 16) - Require content field in message update OpenAPI schema Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 17) - Sanitize advisory lock SQL with sanitize_sql_array - Use semantic button for pinned message banner - Add aria-label to ChannelSettings close button - Add type="button" to all ChannelSettings buttons - Gate channel/DM/category creation to admins - Replace hardcoded 'Direct Message' with i18n key Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: address CodeRabbit review feedback (round 18) - Wrap DM creation payload in channel key for consistency - Replace raw text in category select with i18n key - Add IME composition guard to prevent premature send Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): UX round 2, rich editor, team members, drag-and-drop - Reduce sidebar spacing between search bar and drafts - Fix search icon overlapping placeholder text - Replace inline category form with Dialog modal - Add collapsible sidebar sections with localStorage persistence - Add drag-and-drop channels across categories (admin-only, vuedraggable) - Replace textarea editor with WootWriter ProseMirror rich text editor - Replace regex markdown rendering with shared MessageFormatter - Wire draft auto-save pipeline with WootWriter (3s debounce watcher) - Add team + agent selection when creating private channels - Auto-add all agents when creating public channels - Sync team members to linked channels via TeamMember callback - Fix member list not loading on first settings panel open - Complete PT-BR translations for all internal chat strings Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): UX round 3, Enter-to-send, mentions, copy link, poll modal - Send with Enter (not Cmd+Enter), Shift+Enter for newlines - Enable @mentions via WootWriter suggestions plugin - Refocus editor after sending a message - Copy link to message button in hover toolbar - Poll creator refactored to Dialog with confirm-discard on close - Channel type uses Switch instead of dropdown - Category uses components-next Select instead of native select - Skeleton loading: only on initial load, spinner for pagination - Scroll position preserved when loading older messages - Mute/Favorite buttons fixed (store members updated after fetch) - Add/remove channel members after creation (admin-only) - Save draft immediately when switching channels - Settings sidebar remembers open/closed state via localStorage - Search icon overlap fixed (increased padding) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): DM settings, copy updates, input refocus, member UX Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): member edit for private only, emoji overflow, reaction tooltips Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): thread count sync, scroll loading, copy link, thread/settings exclusivity - Fix thread reply count doubling (remove duplicate INCREMENT_REPLY_COUNT from sendThreadReply, cable handles it) - Fix copy link button (use window.location.origin + pathname as fallback) - Hide poll button in thread editor - Add "Also send in #channel" checkbox for thread replies - Increase scroll threshold for loading older messages (100px instead of 0) - Track and stop loading when oldest message reached - Thread and settings panels are mutually exclusive - Refocus editor after send with delayed focus Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): scroll to linked message via ?messageId= query param Read messageId from route query on mount, scroll to and highlight the target message after messages load, then clean the query param. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): prevent editor from becoming unfocusable after send Root cause: passing disabled prop to WootWriter applies pointer-events-none and ProseMirror does not re-enable contenteditable when disabled returns to false. Fix: never disable the WootWriter, use a local isSending guard to prevent double-sends. Refocus 300ms after send for ProseMirror state reload. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): simplify send guard, no artificial timeout Content is cleared immediately before emit, so canSend naturally returns false (empty content). No isSending guard needed. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): align poll option remove buttons vertically Increase padding to p-1.5 and add flex-shrink-0 for consistent sizing. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): close poll modal after creating poll Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): poll option X button alignment, discard modal on submit - Button uses explicit 34px height matching input, no items-center - Reset form before closing dialog so hasUnsavedChanges is false Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): close settings sidebar when clicking reply Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): update poll UI after voting, fix re-vote error Vote/unvote actions now dispatch updateMessageFromCable with the API response to update poll state locally. Pass channelId to enable this. Clicking an already-voted option correctly triggers unvote. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): include poll data in message response, add timer and voters Backend: message_response now includes poll data (options, votes, voted status, voters for public polls) via eager-loaded poll association. This fixes polls not rendering after page reload. Frontend PollDisplay: - Countdown timer showing time remaining until poll closes - Read-only state when expired (div instead of button, no hover) - Voter names shown below each option (public polls or admin) - Prefer content_attributes.poll over message.poll for fresh data Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): include channel_id in poll voted cable broadcast The poll_event_data was missing internal_chat_channel_id, so the frontend cable handler could not route the update to the correct channel's message store. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): poll vote highlight, typing off, reaction broadcast, translations - Preserve per-user voted flags when merging cable poll broadcast - Send typing_off after 3s of no typing activity - Include internal_chat_channel_id in reaction event broadcasts - Fix reaction deleted handler to also check channel_id field - Simplify "also send in" copy (works for both channels and DMs) - Add PT-BR translation for ALSO_SEND_IN_CHANNEL Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): unified reaction popover with all emoji groups Clicking any reaction badge opens a single popover showing all reactions grouped by emoji with user names. Current user can remove their own reaction via X button. Replaces per-reaction popover with unified view. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): wire close DM button to archive and navigate home Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): close DM via hidden flag on channel membership Add hidden boolean to channel_members table. Close DM sets hidden=true via member update API. Sidebar filters out hidden DMs. New messages on a DM channel automatically unhide all members via listener callback. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): reaction popover, user names, file upload support - Include user name in reaction API response (was missing) - Redesign reaction popover: flat list with emoji + name per row, aligned X button for removing own reactions - Add file upload: paperclip button opens file picker, attached files shown as chips with remove, sent via FormData with message - Store action and API client support files parameter Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): reaction user names, unreact button, attachment rendering - Include user name in reactions across all endpoints (messages_controller, listener base_message_data) - Make unreact X button always visible (bg-n-alpha-2 background) - Render message attachments as downloadable links with paperclip icon Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): image preview for attachments in messages and editor Messages: images render inline with max-h-60, non-images as download links. Editor: image files show thumbnail preview, non-images show file icon + name. Remove button as floating circle on top-right corner of each attachment. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): attachment preview matches conversation pattern - File previews show name + size (e.g. "2 MB") in a horizontal card - Image thumbnails as 32px squares, non-images show document emoji - Remove button is a visible X icon (not a floating circle) - Layout matches AttachmentsPreview from conversation ReplyBox Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): auto-detect image file type from MIME on upload MessageCreateService now detects file type from content_type instead of defaulting to :file. Images are correctly tagged as :image so they render inline in message bubbles. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): include file_url in cable broadcast, fix filename display Listener attachment_event_data now includes file_url so attachments render correctly on real-time messages without page refresh. MessageBubble extracts filename from URL or falls back to file_type+ext. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): pin attachments, edit members modal, settings persistence - Skip content validation when pinning/unpinning (fixes pin on file-only messages) - Add EditMembersModal with search, add, and remove members for private channels - Fix settings sidebar always opening: @close now calls handleToggleSettings which updates localStorage, not just sets ref to false Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): fix X buttons for attachment remove and reaction unreact Replace Icon component with inline SVG cross for reliable rendering. Both attachment remove and reaction unreact buttons now show a visible X icon at all times with proper vertical alignment. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): allow any user to pin messages, not just sender/admin Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): restore Icon component for X buttons (size-4 in size-6 container) SVG inline approach didn't render. Reverted to Icon i-lucide-x with larger sizes (size-4 icon in size-6 button) which renders reliably. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): use p-1 + size-4 pattern for X buttons (matches message toolbar) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): thread indicator on messages from threads, allow pinning all - Show "Thread" badge with icon on messages that have parent_id, clicking it opens the parent thread - Remove parent_id restriction from canPin, any non-deleted message can be pinned Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): thread indicator, poll close loop, thread navigation - Hide thread indicator inside thread panel (inThread prop) - Open parent thread when clicking thread badge on messages with parent_id - Fix PollCreator infinite close loop (handleClose no longer calls dialogRef.close, since Dialog already triggered the close) - Look up parent message in store when opening thread from indicator Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(internal-chat): poll duration translations and clickable switch labels - Duration options use i18n keys (EN + PT-BR: 24 horas, 7 dias, etc.) - Multiple choice and Public results switches toggle by clicking label Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal_chat): enhance message handling and search functionality - Added broadcasting of typing off events in InternalChatListener. - Included member user IDs in channel data for better context. - Updated message model to allow optional sender association. - Implemented team mention expansion in MentionService to include team members. - Enhanced message creation service to store mentioned user IDs in content attributes. - Introduced a new SearchService for searching channels, DMs, and messages. - Updated API responses to include has_unread_mention flag for channels. - Added tests for user deletion behavior in internal chat, ensuring message preservation and reaction handling. - Improved draft model to allow coexistence of root and thread drafts. - Added unique indexes for drafts to prevent duplicate entries. - Implemented foreign key constraints with appropriate delete behaviors for internal chat models. * feat(internal-chat): swagger docs, webhook events, search UX improvements Add Swagger documentation for drafts, polls, and search endpoints. Wire internal_chat_message_deleted and internal_chat_channel_updated webhook events to the UI and listener. Improve search empty state with min-chars hint and friendly no-results message. Update CLAUDE.md to include pt_BR translations. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(internal-chat): add draft count display in channel sidebar * chore: remove playwright config and dependencies * feat(internal-chat): polish UX, swagger updates, and migration consolidation - Editor toolbar shortcuts (@ and #) with instant popover trigger, including accent-insensitive matching and wider conversation popover - Localized last activity time and inbox name on conversation preview cards - Thread + main interplay: also-send-in-channel mirror, parent_id filter, per-message conversation link, hidden buttons inside thread view, reactions update across both lists, scroll-to-message behavior - Search service uses f_unaccent for messages, channel names and user names via dedicated GIN trigram functional indexes - Renamed InternalChat::ProGating to InternalChat::Limits with neutral semantics - Consolidated 17 internal chat migrations into 3 (tables, default channels, unaccent search) and added a rake task to ensure the f_unaccent function exists before db:schema:load - Swagger paths and definitions updated to match the current state of the feature (also_send_in_channel, status codes, pro-required responses, hidden member flag, search meta fields, etc.) * fix(internal-chat): use Rake task augmentation for db:schema:load hook The previous `Rake::Task['db:schema:load'].enhance(...)` guarded by `task_defined?` silently no-op'd in CI when the rake file loaded before ActiveRecord's rake_tasks block ran. Re-opening `db:schema:load` via Rake's `task name => deps` DSL augments the existing task regardless of load order, ensuring the f_unaccent function is created before schema.rb references it. * fix(internal-chat): enhance db:schema:load from Rakefile after load_tasks Adding the prereq inside lib/tasks/internal_chat_search.rake (via either `Rake::Task#enhance` or task DSL augmentation) was being silently dropped in CI, presumably due to load order between application rake files and ActiveRecord's `rake_tasks` block. Moving the `enhance` to the Rakefile itself, after `Rails.application.load_tasks`, guarantees both `db:schema:load` and `db:internal_chat:ensure_search_functions` are defined before the prereq is added. Also leaves a debug `puts` in the task body so future regressions are visible from CI logs. * chore(internal-chat): add diagnostic logging to f_unaccent hook * fix(internal-chat): install f_unaccent on all envs iterated by db:schema:load Rails' `db:schema:load` in development env iterates over BOTH the development and test databases (see `ActiveRecord::Tasks::DatabaseTasks.each_current_environment`), but our hook was only installing the function on the currently-connected database. CI defaults to development env (no `RAILS_ENV` set), so the function landed on `chatwoot_dev` while `chatwoot_test` remained without it, causing the schema load to fail when creating the functional indexes against the test DB. The hook now mirrors the same iteration logic and installs the function on every relevant config, restoring the original AR connection afterwards. * fix(internal-chat): align listener spec with current broadcast payload - internal_chat_message_created now emits two broadcasts (the message itself plus an automatic typing_off), so the spec switches to `allow`/`have_received` to assert the message broadcast without caring about the additional typing_off call. - internal_chat_reaction_created payload uses `message_id`, not `internal_chat_message_id`. Update the spec expectation to match. * chore(internal-chat): remove redundant DSL augmentation in rake task * fix(internal-chat): harden gates, kill N+1s and reduce race risk Closes review findings raised on the internal chat PR: - Restrict role mass-assignment in ChannelMembersController so only account administrators can promote new members to channel admin. - Wrap private-channel create/unarchive in a Postgres advisory lock per account so concurrent requests can no longer bypass the freemium limit. - Replace `replies.size` and `votes.size` (per-broadcast queries) with `replies_count` / `votes_count` counter caches. - Make `update_channel_activity` an atomic compare-and-set update so concurrent message creates can never regress `last_activity_at`. - Optimize `Poll#total_votes_count` to use the cached column and eager- loaded options instead of a per-poll `votes.count` query. - Add `internal_chat_messages.account_id` foreign key (`ON DELETE CASCADE`) to prevent orphan rows. - Escape HTML in `ChannelSidebar.highlightMatch` to close a v-html XSS via incomplete tags in message search snippets. - Cleanup `typingOffTimer` on `ChannelView` unmount. - Add stable sort to `getChannelsByCategory` (alphabetical) and `getDMChannels` (last activity) to prevent UI reorder thrash. - Localize `PollDisplay` time-remaining strings (en + pt-BR). - Add specs covering the 90-day search history filter and the search controller endpoint, plus regenerate the consolidated migration with the new columns and FK. * docs(swagger): note role mass-assignment restriction on channel members Document that the `role` field on the channel member create payload is silently coerced to `member` for callers that are not account administrators, matching the controller behavior introduced in the previous commit. --------- Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-11 13:50:15 -03:00
Aakash Bakhle	fbe3560b7a	feat(captain): Add paywall and expose Custom Tools (#13977 ) # Pull Request Template ## Description Custom tools is now discoverable on all plans ## Type of change - [x] Bug fix (non-breaking change which fixes an issue) ## How Has This Been Tested? Before: <img width="390" height="446" alt="CleanShot 2026-04-02 at 13 40 11@2x" src="https://github.com/user-attachments/assets/0a751954-f3ad-47d6-85b8-1e2f1476a646" /> After: <img width="392" height="522" alt="CleanShot 2026-04-02 at 13 40 47@2x" src="https://github.com/user-attachments/assets/62a252f6-2551-47a9-b50c-be949f08c456" /> <img width="1826" height="638" alt="CleanShot 2026-04-02 at 13 37 39@2x" src="https://github.com/user-attachments/assets/77dc2a75-3d76-44cf-8579-8d3457879bd0" /> ## Checklist: - [x] My code follows the style guidelines of this project - [x] I have performed a self-review of my code - [x] I have commented on my code, particularly in hard-to-understand areas - [x] I have made corresponding changes to the documentation - [x] My changes generate no new warnings - [x] I have added tests that prove my fix is effective or that my feature works - [x] New and existing unit tests pass locally with my changes - [x] Any dependent changes have been merged and published in downstream modules --------- Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2026-04-07 10:58:29 +05:30
Aakash Bakhle	8daf6cf6cb	feat: captain custom tools v1 (#13890 ) # Pull Request Template ## Description Adds custom tool support to v1 ## Type of change - [x] New feature (non-breaking change which adds functionality) ## How Has This Been Tested? Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration. <img width="1816" height="958" alt="CleanShot 2026-03-24 at 11 37 33@2x" src="https://github.com/user-attachments/assets/2777a953-8b65-4a2d-88ec-39f395b3fb47" /> <img width="378" height="488" alt="CleanShot 2026-03-24 at 11 38 18@2x" src="https://github.com/user-attachments/assets/f6973c99-efd0-40e4-90fe-4472a2f63cea" /> <img width="1884" height="1452" alt="CleanShot 2026-03-24 at 11 38 32@2x" src="https://github.com/user-attachments/assets/9fba4fc4-0c33-46da-888a-52ec6bad6130" /> ## Checklist: - [x] My code follows the style guidelines of this project - [ ] I have performed a self-review of my code - [ ] I have commented on my code, particularly in hard-to-understand areas - [ ] I have made corresponding changes to the documentation - [ ] My changes generate no new warnings - [ ] I have added tests that prove my fix is effective or that my feature works - [ ] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules --------- Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2026-04-02 12:40:11 +05:30
Tanmay Deep Sharma	9ca03c1af3	chore: make all the deprecated feature flag reclaimable (#13646 ) ## Docs https://www.notion.so/chatwoot/Redeeming-a-depreciated-feature-flag-313a5f274c9280f381cdd811eab42019?source=copy_link ## Description Marks 8 unused feature flags as deprecated: true in features.yml, freeing their bit slots for future reuse. Removes dead code references from JS constants, help URLs, and enterprise billing config. ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) ## How Has This Been Tested? - Simulated the "claim a slot" workflow ## Checklist: - [ ] My code follows the style guidelines of this project - [ ] I have performed a self-review of my code - [ ] I have commented on my code, particularly in hard-to-understand areas - [ ] I have made corresponding changes to the documentation - [ ] My changes generate no new warnings - [ ] I have added tests that prove my fix is effective or that my feature works - [ ] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules	2026-02-26 18:01:13 +05:30
Tanmay Deep Sharma	7b512bd00e	fix: V2 Assignment service enhancements (#13036 ) ## Linear Ticket: https://linear.app/chatwoot/issue/CW-6081/review-feedback ## Description Assignment V2 Service Enhancements - Enable Assignment V2 on plan upgrade - Fix UI issue with fair distribution policy display - Add advanced assignment feature flag and enhance Assignment V2 capabilities ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) ## How Has This Been Tested? This has been tested using the UI. ## Checklist: - [ ] My code follows the style guidelines of this project - [ ] I have performed a self-review of my code - [ ] I have commented on my code, particularly in hard-to-understand areas - [ ] I have made corresponding changes to the documentation - [ ] My changes generate no new warnings - [ ] I have added tests that prove my fix is effective or that my feature works - [ ] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules <!-- CURSOR_SUMMARY --> --- > [!NOTE] > Medium Risk > Changes auto-assignment execution paths, rate limiting defaults, and feature-flag gating (including premium plan behavior), which could affect which conversations get assigned and when. UI rewires inbox settings and policy flows, so regressions are possible around navigation/linking and feature visibility. > > Overview > Adds a new premium `advanced_assignment` feature flag and uses it to gate capacity/balanced assignment features in the UI (sidebar entry, settings routes, assignment-policy landing cards) and backend (Enterprise balanced selector + capacity filtering). `advanced_assignment` is marked premium, included in Business plan entitlements, and auto-synced in Enterprise accounts when `assignment_v2` is toggled. > > Improves Assignment V2 policy UX by adding an inbox-level “Conversation Assignment” section (behind `assignment_v2`) that can link/unlink an assignment policy, navigate to create/edit policy flows with `inboxId` query context, and show an inbox-link prompt after creating a policy. The policy form now defaults to enabled, disables the `balanced` option with a premium badge/message when unavailable, and inbox lists support click-to-navigate. > > Tightens/adjusts auto-assignment behavior: bulk assignment now requires `inbox.enable_auto_assignment?`, conversation ordering uses the attached `assignment_policy` priority, and rate limiting uses `assignment_policy` config with an infinite default limit while still tracking assignments. Tests and i18n strings are updated accordingly. > > <sup>Written by [Cursor Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit 23bc03bf75ee4376071e4d7fc7cd564c601d33d7. This will update automatically on new commits. Configure [here](https://cursor.com/dashboard?tab=bugbot).</sup> <!-- /CURSOR_SUMMARY --> --------- Co-authored-by: Pranav <pranav@chatwoot.com> Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com> Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2026-02-11 12:24:45 +05:30
Muhsin Keloth	04b2901e1f	feat: Conversation workflows(EE) (#13040 ) We are expanding Chatwoot’s automation capabilities by introducing Conversation Workflows, a dedicated section in settings where teams can configure rules that govern how conversations are closed and what information agents must fill before resolving. This feature helps teams enforce data consistency, collect structured resolution information, and ensure downstream reporting is accurate. Instead of having auto‑resolution buried inside Account Settings, we introduced a new sidebar item: - Auto‑resolve conversations (existing behaviour) - Required attributes on resolution (new) This groups all conversation‑closing logic into a single place. #### Required Attributes on Resolve Admins can now pick which custom conversation attributes must be filled before an agent can resolve a conversation. How it works - Admin selects one or more attributes from the list of existing conversation level custom attributes. - These selected attributes become mandatory during resolution. - List all the attributes configured via Required Attributes (Text, Number, Link, Date, List, Checkbox) - When an agent clicks Resolve Conversation: If attributes already have values → the conversation resolves normally. If attributes are missing → a modal appears prompting the agent to fill them. <img width="1554" height="1282" alt="CleanShot 2025-12-10 at 11 42 23@2x" src="https://github.com/user-attachments/assets/4cd5d6e1-abe8-4999-accd-d4a08913b373" /> #### Custom Attributes Integration On the Custom Attributes page, we will surfaced indicators showing how each attribute is being used. Each attribute will show badges such as: - Resolution → used in the required‑on‑resolve workflow - Pre‑chat form → already existing <img width="2390" height="1822" alt="CleanShot 2025-12-10 at 11 43 42@2x" src="https://github.com/user-attachments/assets/b92a6eb7-7f6c-40e6-bf23-6a5310f2d9c5" /> #### Admin Flow - Navigate to Settings → Conversation Workflows. - Under Required attributes on resolve, click Add Required Attribute. - Pick from the dropdown list of conversation attributes. - Save changes. Agents will now be prompted automatically whenever they resolve. <img width="2434" height="872" alt="CleanShot 2025-12-10 at 11 44 42@2x" src="https://github.com/user-attachments/assets/632fc0e5-767c-4a1c-8cf4-ffe3d058d319" /> #### NOTES - The Required Attributes on Resolve modal should only appear when values are missing. - Required attributes must block the resolution action until satisfied. - Bulk‑resolve actions should follow the same rules — any conversation missing attributes cannot be bulk‑resolved, rest will be resolved, show a notification that the resolution cannot be done. - API resolution does not respect the attributes. --------- Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: Pranav <pranav@chatwoot.com>	2026-01-27 11:36:20 +04:00
Shivam Mishra	6a482926b4	feat: new Captain Editor (#13235 ) Co-authored-by: Aakash Bakhle <48802744+aakashb95@users.noreply.github.com> Co-authored-by: Vishnu Narayanan <iamwishnu@gmail.com> Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: aakashb95 <aakashbakhle@gmail.com>	2026-01-21 13:39:07 +05:30
Vinay Keerthi	59cbf57e20	feat: Advanced Search Backend (#12917 ) ## Description Implements comprehensive search functionality with advanced filtering capabilities for Chatwoot (Linear: CW-5956). This PR adds: 1. Time-based filtering for contacts and conversations (SQL-based search) 2. Advanced message search with multiple filters (OpenSearch/Elasticsearch-based) - `from` filter: Filter messages by sender (format: `contact:42` or `agent:5`) - `inbox_id` filter: Filter messages by specific inbox - Time range filters: Filter messages using `since` and `until` parameters (Unix timestamps in seconds) - 90-day limit enforcement: Automatically limits searches to the last 90 days to prevent performance issues The implementation extends the existing `Enterprise::SearchService` module for advanced features and adds time filtering to the base `SearchService` for SQL-based searches. ## API Documentation ### Base URL All search endpoints follow this pattern: ``` GET /api/v1/accounts/{account_id}/search/{resource} ``` ### Authentication All requests require authentication headers: ``` api_access_token: YOUR_ACCESS_TOKEN ``` --- ## 1. Search All Resources Endpoint: `GET /api/v1/accounts/{account_id}/search` Returns results from all searchable resources (contacts, conversations, messages, articles). ### Parameters \| Parameter \| Type \| Description \| Required \| \|-----------\|------\|-------------\|----------\| \| `q` \| string \| Search query \| Yes \| \| `page` \| integer \| Page number (15 items per page) \| No \| \| `since` \| integer \| Unix timestamp (contacts/conversations only) \| No \| \| `until` \| integer \| Unix timestamp (contacts/conversations only) \| No \| ### Example Request ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search?q=customer" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` ### Example Response ```json { "payload": { "contacts": [...], "conversations": [...], "messages": [...], "articles": [...] } } ``` --- ## 2. Search Contacts Endpoint: `GET /api/v1/accounts/{account_id}/search/contacts` Search contacts by name, email, phone number, or identifier with optional time filtering. ### Parameters \| Parameter \| Type \| Description \| Required \| \|-----------\|------\|-------------\|----------\| \| `q` \| string \| Search query \| Yes \| \| `page` \| integer \| Page number (15 items per page) \| No \| \| `since` \| integer \| Unix timestamp - filter by last_activity_at \| No \| \| `until` \| integer \| Unix timestamp - filter by last_activity_at \| No \| ### Example Requests Basic search: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/contacts?q=john" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search contacts active in the last 7 days: ```bash SINCE=$(date -v-7d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/contacts?q=john&since=${SINCE}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search contacts active between 30 and 7 days ago: ```bash SINCE=$(date -v-30d +%s) UNTIL=$(date -v-7d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/contacts?q=john&since=${SINCE}&until=${UNTIL}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` ### Example Response ```json { "payload": { "contacts": [ { "id": 42, "email": "john@example.com", "name": "John Doe", "phone_number": "+1234567890", "identifier": "user_123", "additional_attributes": {}, "created_at": 1701234567 } ] } } ``` --- ## 3. Search Conversations Endpoint: `GET /api/v1/accounts/{account_id}/search/conversations` Search conversations by display ID, contact name, email, phone number, or identifier with optional time filtering. ### Parameters \| Parameter \| Type \| Description \| Required \| \|-----------\|------\|-------------\|----------\| \| `q` \| string \| Search query \| Yes \| \| `page` \| integer \| Page number (15 items per page) \| No \| \| `since` \| integer \| Unix timestamp - filter by last_activity_at \| No \| \| `until` \| integer \| Unix timestamp - filter by last_activity_at \| No \| ### Example Requests Basic search: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/conversations?q=billing" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search conversations active in the last 24 hours: ```bash SINCE=$(date -v-1d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/conversations?q=billing&since=${SINCE}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search conversations from last month: ```bash SINCE=$(date -v-30d +%s) UNTIL=$(date +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/conversations?q=billing&since=${SINCE}&until=${UNTIL}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` ### Example Response ```json { "payload": { "conversations": [ { "id": 123, "display_id": 45, "inbox_id": 1, "status": "open", "messages": [...], "meta": {...} } ] } } ``` --- ## 4. Search Messages (Advanced) Endpoint: `GET /api/v1/accounts/{account_id}/search/messages` Advanced message search with multiple filters powered by OpenSearch/Elasticsearch. ### Prerequisites - OpenSearch/Elasticsearch must be running (`OPENSEARCH_URL` env var configured) - Account must have `advanced_search` feature flag enabled - Messages must be indexed in OpenSearch ### Parameters \| Parameter \| Type \| Description \| Required \| \|-----------\|------\|-------------\|----------\| \| `q` \| string \| Search query \| Yes \| \| `page` \| integer \| Page number (15 items per page) \| No \| \| `from` \| string \| Filter by sender: `contact:{id}` or `agent:{id}` \| No \| \| `inbox_id` \| integer \| Filter by specific inbox ID \| No \| \| `since` \| integer \| Unix timestamp - searches from this time (max 90 days ago) \| No \| \| `until` \| integer \| Unix timestamp - searches until this time \| No \| ### Important Notes - 90-Day Limit: If `since` is not provided, searches default to the last 90 days - If `since` exceeds 90 days, returns `422` error: "Search is limited to the last 90 days" - All time filters use message `created_at` timestamp ### Example Requests Basic message search: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search messages from a specific contact: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&from=contact:42" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search messages from a specific agent: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&from=agent:5" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search messages in a specific inbox: ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&inbox_id=3" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search messages from the last 7 days: ```bash SINCE=$(date -v-7d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&since=${SINCE}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Search messages between specific dates: ```bash SINCE=$(date -v-30d +%s) UNTIL=$(date -v-7d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&since=${SINCE}&until=${UNTIL}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Combine all filters: ```bash SINCE=$(date -v-14d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&from=contact:42&inbox_id=3&since=${SINCE}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` Attempt to search beyond 90 days (returns error): ```bash SINCE=$(date -v-120d +%s) curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/messages?q=refund&since=${SINCE}" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` ### Example Response (Success) ```json { "payload": { "messages": [ { "id": 789, "content": "I need a refund for my purchase", "message_type": "incoming", "created_at": 1701234567, "conversation_id": 123, "inbox_id": 3, "sender": { "id": 42, "type": "contact" } } ] } } ``` ### Example Response (90-day limit exceeded) ```json { "error": "Search is limited to the last 90 days" } ``` Status Code: `422 Unprocessable Entity` --- ## 5. Search Articles Endpoint: `GET /api/v1/accounts/{account_id}/search/articles` Search help center articles by title or content. ### Parameters \| Parameter \| Type \| Description \| Required \| \|-----------\|------\|-------------\|----------\| \| `q` \| string \| Search query \| Yes \| \| `page` \| integer \| Page number (15 items per page) \| No \| ### Example Request ```bash curl -X GET "https://app.chatwoot.com/api/v1/accounts/1/search/articles?q=installation" \ -H "api_access_token: YOUR_ACCESS_TOKEN" ``` ### Example Response ```json { "payload": { "articles": [ { "id": 456, "title": "Installation Guide", "slug": "installation-guide", "portal_slug": "help", "account_id": 1, "category_name": "Getting Started", "status": "published", "updated_at": 1701234567 } ] } } ``` --- ## Technical Implementation ### SQL-Based Search (Contacts, Conversations, Articles) - Uses PostgreSQL `ILIKE` queries by default - Optional GIN index support via `search_with_gin` feature flag for better performance - Time filtering uses `last_activity_at` for contacts/conversations - Returns paginated results (15 per page) ### Advanced Search (Messages) - Powered by OpenSearch/Elasticsearch via Searchkick gem - Requires `OPENSEARCH_URL` environment variable - Requires `advanced_search` account feature flag - Enforces 90-day lookback limit via `Limits::MESSAGE_SEARCH_TIME_RANGE_LIMIT_DAYS` - Validates inbox access permissions before filtering - Returns paginated results (15 per page) --- ## Type of change - [x] New feature (non-breaking change which adds functionality) - [x] Enhancement (improves existing functionality) --- ## How Has This Been Tested? ### Unit Tests - Contact Search Tests: 3 new test cases for time filtering (`since`, `until`, combined) - Conversation Search Tests: 3 new test cases for time filtering - Message Search Tests: 10+ test cases covering: - Individual filters (`from`, `inbox_id`, time range) - Combined filters - Permission validation for inbox access - Feature flag checks - 90-day limit enforcement - Error handling for exceeded time limits ### Test Commands ```bash # Run all search controller tests bundle exec rspec spec/controllers/api/v1/accounts/search_controller_spec.rb # Run search service tests (includes enterprise specs) bundle exec rspec spec/services/search_service_spec.rb ``` ### Manual Testing Setup A rake task is provided to create 50,000 test messages across multiple inboxes: ```bash # 1. Create test data bundle exec rake search:setup_test_data # 2. Start OpenSearch mise elasticsearch-start # 3. Reindex messages rails runner "Message.search_index.import Message.all" # 4. Enable feature flag rails runner "Account.first.enable_features('advanced_search')" # 5. Test via API or Rails console ``` --- ## Checklist - [x] My code follows the style guidelines of this project - [x] I have performed a self-review of my code - [x] I have commented on my code, particularly in hard-to-understand areas - [x] I have made corresponding changes to the documentation (this PR description) - [x] My changes generate no new warnings - [x] I have added tests that prove my fix is effective or that my feature works - [x] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules --- ## Additional Notes ### Requirements - OpenSearch/Elasticsearch: Required for advanced message search - Set `OPENSEARCH_URL` environment variable - Example: `export OPENSEARCH_URL=http://localhost:9200` - Feature Flags: - `advanced_search`: Account-level flag for message advanced search - `search_with_gin` (optional): Account-level flag for GIN-based SQL search ### Performance Considerations - 90-day limit prevents expensive long-range queries on large datasets - GIN indexes recommended for high-volume search on SQL-based resources - OpenSearch/Elasticsearch provides faster full-text search for messages ### Breaking Changes - None. All new parameters are optional and backward compatible. ### Frontend Integration - Frontend PR tracking advanced search UI will consume these endpoints - Time range pickers should convert JavaScript `Date` to Unix timestamps (seconds) - Date conversion: `Math.floor(date.getTime() / 1000)` ### Error Handling - Invalid `from` parameter format is silently ignored (filter not applied) - Time range exceeding 90 days returns `422` with error message - Missing `q` parameter returns `422` (existing behavior) - Unauthorized inbox access is filtered out (no error, just excluded from results) --------- Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Pranav <pranav@chatwoot.com> Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com>	2026-01-07 15:30:49 +05:30
Mazen Khalil	ca5e112a8c	feat: TikTok channel (#12741 ) fixes: #11834 This pull request introduces TikTok channel integration, enabling users to connect and manage TikTok business accounts similarly to other supported social channels. The changes span backend API endpoints, authentication helpers, webhook handling, configuration, and frontend components to support TikTok as a first-class channel. Key Notes * This integration is only compatible with TikTok Business Accounts * Special permissions are required to access the TikTok [Business Messaging API](https://business-api.tiktok.com/portal/docs?id=1832183871604753). * The Business Messaging API is region-restricted and is currently unavailable to users in the EU. * Only TEXT, IMAGE, and POST_SHARE messages are currently supported due to limitations in the TikTok Business Messaging API * A message will be successfully sent only if it contains text alone or one image attachment. Messages with multiple attachments or those combining text and attachments will fail and receive a descriptive error status. * Messages sent directly from the TikTok App will be synced into the system * Initiating a new conversation from the system is not permitted due to limitations from the TikTok Business Messaging API. Backend: TikTok Channel Integration * Added `Api::V1::Accounts::Tiktok::AuthorizationsController` to handle TikTok OAuth authorization initiation, returning the TikTok authorization URL. * Implemented `Tiktok::CallbacksController` to handle TikTok OAuth callback, process authorization results, create or update channel/inbox, and handle errors or denied scopes. * Added `Webhooks::TiktokController` to receive and verify TikTok webhook events, including signature verification and event dispatching. * Created `Tiktok::IntegrationHelper` module for JWT-based token generation and verification for secure TikTok OAuth state management. Configuration and Feature Flags * Added TikTok app credentials (`TIKTOK_APP_ID`, `TIKTOK_APP_SECRET`) to allowed configs and app config, and registered TikTok as a feature in the super admin features YAML. [[1]](diffhunk://#diff-5e46e1d248631a1147521477d84a54f8ba6846ea21c61eca5f70042d960467f4R43) [[2]](diffhunk://#diff-8bf37a019cab1dedea458c437bd93e34af1d6e22b1672b1d43ef6eaa4dcb7732R69) [[3]](diffhunk://#diff-123164bea29f3c096b0d018702b090d5ae670760c729141bd4169a36f5f5c1caR74-R79) Frontend: TikTok Channel UI and Messaging Support * Added `TiktokChannel` API client for frontend TikTok authorization requests. * Updated channel icon mappings and tests to include TikTok (`Channel::Tiktok`). [[1]](diffhunk://#diff-b852739ed45def61218d581d0de1ba73f213f55570aa5eec52aaa08f380d0e16R16) [[2]](diffhunk://#diff-3cd3ae32e94ef85f1f2c4435abf0775cc0614fb37ee25d97945cd51573ef199eR64-R69) * Enabled TikTok as a supported channel in contact forms, channel widgets, and feature toggles. [[1]](diffhunk://#diff-ec59c85e1403aaed1a7de35971fe16b7033d5cd763be590903ebf8f1ca25a010R47) [[2]](diffhunk://#diff-ec59c85e1403aaed1a7de35971fe16b7033d5cd763be590903ebf8f1ca25a010R69) [[3]](diffhunk://#diff-725b90ca7e3a6837ec8291e9f57094f6a46b3ee00e598d16564f77f32cf354b0R26-R29) [[4]](diffhunk://#diff-725b90ca7e3a6837ec8291e9f57094f6a46b3ee00e598d16564f77f32cf354b0R51-R54) [[5]](diffhunk://#diff-725b90ca7e3a6837ec8291e9f57094f6a46b3ee00e598d16564f77f32cf354b0R68) * Updated message meta logic to support TikTok-specific message statuses (sent, delivered, read). [[1]](diffhunk://#diff-e41239cf8dda36c1bd1066dbb17588ae8868e56289072c74b3a6d7ef5abdd696R23) [[2]](diffhunk://#diff-e41239cf8dda36c1bd1066dbb17588ae8868e56289072c74b3a6d7ef5abdd696L63-R65) [[3]](diffhunk://#diff-e41239cf8dda36c1bd1066dbb17588ae8868e56289072c74b3a6d7ef5abdd696L81-R84) [[4]](diffhunk://#diff-e41239cf8dda36c1bd1066dbb17588ae8868e56289072c74b3a6d7ef5abdd696L103-R107) * Added support for embedded message attachments (e.g., TikTok embeds) with a new `EmbedBubble` component and updated message rendering logic. [[1]](diffhunk://#diff-c3d701caf27d9c31e200c6143c11a11b9d8826f78aa2ce5aa107470e6fdb9d7fR31) [[2]](diffhunk://#diff-047859f9368a46d6d20177df7d6d623768488ecc38a5b1e284f958fad49add68R1-R19) [[3]](diffhunk://#diff-c3d701caf27d9c31e200c6143c11a11b9d8826f78aa2ce5aa107470e6fdb9d7fR316) [[4]](diffhunk://#diff-cbc85e7c4c8d56f2a847d0b01cd48ef36e5f87b43023bff0520fdfc707283085R52) * Adjusted reply policy and UI messaging for TikTok's 48-hour reply window. [[1]](diffhunk://#diff-0d691f6a983bd89502f91253ecf22e871314545d1e3d3b106fbfc76bf6d8e1c7R208-R210) [[2]](diffhunk://#diff-0d691f6a983bd89502f91253ecf22e871314545d1e3d3b106fbfc76bf6d8e1c7R224-R226) These changes collectively enable end-to-end TikTok channel support, from configuration and OAuth flow to webhook processing and frontend message handling. ------------ # TikTok App Setup & Configuration 1. Grant access to the Business Messaging API ([Documentation](https://business-api.tiktok.com/portal/docs?id=1832184145137922)) 2. Set the app authorization redirect URL to `https://FRONTEND_URL/tiktok/callback` 3. Update the installation config with TikTok App ID and Secret 4. Create a Business Messaging Webhook configuration and set the callback url to `https://FRONTEND_URL/webhooks/tiktok` ([Documentation](https://business-api.tiktok.com/portal/docs?id=1832190670631937)) . You can do this by calling `Tiktok::AuthClient.update_webhook_callback` from rails console once you finish Tiktok channel configuration in super admin ( will be automated in future ) 5. Enable TikTok channel feature in an account --------- Co-authored-by: Sojan Jose <sojan@pepalo.com> Co-authored-by: iamsivin <iamsivin@gmail.com>	2025-12-17 07:54:50 -08:00
Sivin Varghese	e33f28dc33	feat: Companies page (#12842 ) # Pull Request Template ## Description This PR introduces a new Companies section in the Chatwoot dashboard. It lists all companies associated with the account and includes features such as search, sorting, and pagination to enable easier navigation and efficient management. Fixes https://linear.app/chatwoot/issue/CW-5928/add-companies-tab-to-dashboard ## Type of change - [x] New feature (non-breaking change which adds functionality) ## How Has This Been Tested? ### Screenshot <img width="1619" height="1200" alt="image" src="https://github.com/user-attachments/assets/21f0a666-c3d6-4dec-bd02-1e38e0cd9542" /> ## Checklist: - [x] My code follows the style guidelines of this project - [x] I have performed a self-review of my code - [x] I have commented on my code, particularly in hard-to-understand areas - [ ] I have made corresponding changes to the documentation - [x] My changes generate no new warnings - [ ] I have added tests that prove my fix is effective or that my feature works - [x] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules --------- Co-authored-by: Vinay Keerthi <11478411+stonecharioteer@users.noreply.github.com> Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2025-11-18 15:29:15 +05:30
Shivam Mishra	3a71829b46	feat: Improve captain conversation handling (#12599 ) Co-authored-by: Pranav <pranavrajs@gmail.com>	2025-10-06 10:51:58 -07:00
Shivam Mishra	21366e1c3b	feat: allow quoted email thread in reply (#12545 ) This PR adds the ability to include the thread history as a quoted text ## Preview https://github.com/user-attachments/assets/c96a85e5-8ac8-4021-86ca-57509b4eea9f	2025-09-30 17:47:09 +05:30
Shivam Mishra	d3cd647e49	feat: SAML feedback changes [CW-5666] (#12511 )	2025-09-24 16:07:07 +05:30
Shivam Mishra	fc92e118ed	feat: remove SAML from premium feature list (#12443 )	2025-09-15 21:41:34 +05:30
Muhsin Keloth	458ed1e26d	chore: Enable flexible whatsapp onboarding (Manual + Embedded Signup) options (#12344 ) We recently introduced the WhatsApp Embedded Signup flow in Chatwoot to simplify onboarding. However, we discovered two important limitations: Some customers’ numbers are already linked to an Embedded Signup, which blocks re-use. Tech providers cannot onboard their own numbers via Embedded Signup. As a result, we need to support both Manual and Embedded Signup flows to cover all scenarios. ### Problem - Current UI only offers the Embedded Signup option. - Customers who need to reuse existing numbers (already connected to WABA) or tech providers testing their own numbers get stuck. - Manual flow exists but is no longer exposed in the UX Current Embedded Signup screen <img width="2564" height="1250" alt="CleanShot 2025-08-21 at 21 58 07@2x" src="https://github.com/user-attachments/assets/c3de4cf1-cae6-4a0e-aa9c-5fa4e2249c0e" /> Current Manual Setup screen <img width="2568" height="1422" alt="CleanShot 2025-08-21 at 22 00 25@2x" src="https://github.com/user-attachments/assets/96408f97-3ffe-42d1-9019-a511e808f5ac" /> ### Solution - Design a dual-path UX in the Create WhatsApp Inbox step that: - Offers Embedded Signup (default/recommended) for new numbers and businesses. - Offers Manual Setup for advanced users, existing linked numbers, and tech providers. <img width="2030" height="1376" alt="CleanShot 2025-09-01 at 14 13 16@2x" src="https://github.com/user-attachments/assets/6f17e5a2-a2fd-40fb-826a-c9ee778be795" /> --------- Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: iamsivin <iamsivin@gmail.com>	2025-09-15 19:59:56 +05:30
Shivam Mishra	300d68f3f7	feat: SAML UI [CW-2958] (#12345 ) Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com>	2025-09-15 19:33:54 +05:30
Sivin Varghese	ce1690eeb1	feat: Agent assignment index page (#12364 )	2025-09-04 12:02:35 +05:30
Aman Kumar	0ea616a6ea	feat: WhatsApp campaigns (#11910 ) # Pull Request Template ## Description This PR adds support for WhatsApp campaigns to Chatwoot, allowing businesses to reach their customers through WhatsApp. The implementation includes backend support for WhatsApp template messages, frontend UI components, and integration with the existing campaign system. Fixes #8465 Fixes https://linear.app/chatwoot/issue/CW-3390/whatsapp-campaigns ## Type of change - [x] New feature (non-breaking change which adds functionality) - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] Breaking change (fix or feature that would cause existing functionality not to work as expected) - [ ] This change requires a documentation update ## How Has This Been Tested? - Tested WhatsApp campaign creation UI flow - Verified backend API endpoints for campaign creation - Tested campaign service integration with WhatsApp templates - Validated proper filtering of WhatsApp campaigns in the store ## Checklist: - [x] My code follows the style guidelines of this project - [x] I have performed a self-review of my code - [x] I have commented on my code, particularly in hard-to-understand areas - [ ] I have made corresponding changes to the documentation - [x] My changes generate no new warnings - [ ] I have added tests that prove my fix is effective or that my feature works - [ ] New and existing unit tests pass locally with my changes - [ ] Any dependent changes have been merged and published in downstream modules ## What we have changed: We have added support for WhatsApp campaigns as requested in the discussion. Ref: https://github.com/orgs/chatwoot/discussions/8465 Note: This implementation doesn't exactly match the maintainer's specification and variable support is missing. This is an initial implementation that provides the core WhatsApp campaign functionality. ### Changes included: Backend: - Added `template_params` column to campaigns table (migration + schema) - Created `Whatsapp::OneoffCampaignService` for WhatsApp campaign execution - Updated campaign model to support WhatsApp inbox types - Added template_params support to campaign controller and API Frontend: - Added WhatsApp campaign page, dialog, and form components - Updated campaign store to filter WhatsApp campaigns separately - Added WhatsApp-specific routes and empty state - Updated i18n translations for WhatsApp campaigns - Modified sidebar to include WhatsApp campaigns navigation This provides a foundation for WhatsApp campaigns that can be extended with variable support and other enhancements in future iterations. --------- Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-07-16 09:04:02 +05:30
Tanmay Deep Sharma	61d10044a0	feat: Whatsapp embedded signup (#11612 ) ## Description This PR introduces WhatsApp Embedded Signup functionality, enabling users to connect their WhatsApp Business accounts through Meta's streamlined OAuth flow without manual webhook configuration. This significantly improves the user experience by automating the entire setup process. Key Features: - Embedded signup flow using Facebook SDK and Meta's OAuth 2.0 - Automatic webhook registration and phone number configuration - Enhanced provider selection UI with card-based design - Real-time progress tracking during signup process - Comprehensive error handling and user feedback ## Required Configuration The following environment variables must be configured by administrators before this feature can be used: Super Admin Configuration (via super_admin/app_config?config=whatsapp_embedded) - `WHATSAPP_APP_ID`: The Facebook App ID for WhatsApp Business API integration - `WHATSAPP_CONFIGURATION_ID`: The Configuration ID for WhatsApp Embedded Signup flow (obtained from Meta Developer Portal) - `WHATSAPP_APP_SECRET`: The App Secret for WhatsApp Embedded Signup flow (required for token exchange) ![Screenshot 2025-06-09 at 11 21 08 AM](https://github.com/user-attachments/assets/1615fb0d-27fc-4d9e-b193-9be7894ea93a) ## How Has This Been Tested? #### Backend Tests (RSpec): - Authentication validation for embedded signup endpoints - Authorization code validation and error handling - Missing business parameter validation - Proper response format for configuration endpoint - Unauthorized access prevention #### Manual Test Cases: - Complete embedded signup flow (happy path) - Provider selection UI navigation - Facebook authentication popup handling - Error scenarios (cancelled auth, invalid business data, API failures) - Configuration presence/absence behavior ## Related Screenshots: ![Screenshot 2025-06-09 at 7 48 18 PM](https://github.com/user-attachments/assets/34001425-df11-4d78-9424-334461e3178f) ![Screenshot 2025-06-09 at 7 48 22 PM](https://github.com/user-attachments/assets/c09f4964-3aba-4c39-9285-d1e8e37d0e33) ![Screenshot 2025-06-09 at 7 48 32 PM](https://github.com/user-attachments/assets/a34d5382-7a91-4e1c-906e-dc2d570c864a) ![Screenshot 2025-06-09 at 10 43 05 AM](https://github.com/user-attachments/assets/a15840d8-8223-4513-82e4-b08f23c95927) ![Screenshot 2025-06-09 at 10 42 56 AM](https://github.com/user-attachments/assets/8c345022-38b5-44c4-aba2-0cda81389c69) Fixes https://linear.app/chatwoot/issue/CW-2131/spec-for-whatsapp-cloud-channels-sign-in-with-facebook --------- Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Sojan Jose <sojan@pepalo.com>	2025-07-14 21:37:06 -07:00
Sivin Varghese	18eb53acf4	feat: New Assistants Edit Page (#11920 ) # Pull Request Template ## Description Fixes https://linear.app/chatwoot/issue/CW-4602/assistants-edit-page ### Screenshots <img width="1650" height="890" alt="image" src="https://github.com/user-attachments/assets/f9834cd3-9cf3-4173-8d33-1aad04d8991e" /> <img width="1650" height="890" alt="image" src="https://github.com/user-attachments/assets/a628328a-fdfd-4ee7-86b5-2a1945e0c114" /> --------- Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com>	2025-07-12 17:02:10 +05:30
Muhsin Keloth	d827e66453	feat: Instagram Inbox using Instagram Business Login (#11054 ) This PR introduces basic minimum version of Instagram Business Login, making Instagram inbox setup more straightforward by removing the Facebook Page dependency. This update enhances user experience and aligns with Meta’s recommended best practices. Fixes https://linear.app/chatwoot/issue/CW-3728/instagram-login-how-to-implement-the-changes ## Why Introduce Instagram as a Separate Inbox? Currently, our Instagram integration requires linking an Instagram account to a Facebook Page, making setup complex. To simplify this process, Instagram now offers Instagram Business Login, which allows users to authenticate directly with their Instagram credentials. The Instagram API with Instagram Login enables businesses and creators to send and receive messages without needing a Facebook Page connection. While an Instagram Business or Creator account is still required, this approach provides a more straightforward integration process. \| Existing Approach (Facebook Login for Business) \| New Approach (Instagram Business Login) \| \| --- \| --- \| \| Requires linking Instagram to a Facebook Page \| No Facebook Page required \| \| Users log in via Facebook credentials \| Users log in via Instagram credentials \| \| Configuration is more complex \| Simpler setup \| Meta recommends using Instagram Business Login as the preferred authentication method due to its easier configuration and improved developer experience. --- ## Implementation Plan The core messaging functionality is already in place, but the transition to Instagram Business Login requires adjustments. ### Changes & Considerations - API Adjustments: The Instagram API uses `graph.instagram`, whereas Koala (our existing library) interacts with `graph.facebook`. We may need to modify API calls accordingly. - Three Main Modules: 1. Instagram Business Login – Handle authentication flow. 2. Permissions & Features – Ensure necessary API scopes are granted. 3. Webhooks – Enable real-time message retrieval. ![CleanShot 2025-03-10 at 21 32 28@2x](https://github.com/user-attachments/assets/1b019001-8d16-4e59-aca2-ced81e98f538) --- ## Instagram Login Flow 1. User clicks "Create Inbox" for Instagram. 2. App redirects to the [Instagram Authorization URL](https://developers.facebook.com/docs/instagram-platform/instagram-api-with-instagram-login/business-login#embed-the-business-login-url). 3. After authentication, Instagram returns an authorization code. 5. The app exchanges the code for a long-lived token (valid for 60 days). 6. Tokens are refreshed periodically to maintain access. 7. Once completed, the app creates an inbox and redirects to the Chatwoot dashboard. --- ## How to Test the Instagram Inbox 1. Create a new app on [Meta's Developer Portal](https://developers.facebook.com/apps/). 2. Select Business as the app type and configure it. 3. Add the Instagram product and connect a business account. 4. Copy Instagram app ID and Instagram app secret 5. Add the Instagram app ID and Instagram app secret to your app config via `{Chatwoot installation url}/super_admin/app_config?config=instagram` 6. Configure Webhooks: - Callback URL: `{your_chatwoot_url}/webhooks/instagram` - Verify Token: `INSTAGRAM_VERIFY_TOKEN` - Subscribe to `messages`, `messaging_seen`, and `message_reactions` events. 7. Set up Instagram Business Login: - Redirect URL: `{your_chatwoot_url}/instagram/callback` 8. Test inbox creation via the Chatwoot dashboard. ## Troubleshooting & Common Errors ### Insufficient Developer Role Error - Ensure the Instagram user is added as a developer: - Meta Dashboard → App Roles → Roles → Add People → Enter Instagram ID ### API Access Deactivated - Ensure the Privacy Policy URL is valid and correctly set. ### Invalid request: Request parameters are invalid: Invalid redirect_uri - Please configure the Frontend URL. The Frontend URL does not match the authorization URL. --- ## To-Do List - [x] Basic integration setup completed. - [x] Enable sending messages via [Messaging API](https://developers.facebook.com/docs/instagram-platform/instagram-api-with-instagram-login/messaging-api). - [x] Implement automatic webhook subscriptions on inbox creation. - [x] Handle canceled authorization errors. - [x] Handle all the errors https://developers.facebook.com/docs/instagram-platform/instagram-graph-api/reference/error-codes - [x] Dynamically fetch account IDs instead of hardcoding them. - [x] Prevent duplicate Instagram channel creation for the same account. - [x] Use Global Config instead of environment variables. - [x] Explore Human Agent feature for message handling. - [x] Write and refine test cases for all scenarios. - [x] Implement token refresh mechanism (tokens expire after 60 days). Fixes https://github.com/chatwoot/chatwoot/issues/10440 --------- Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2025-04-08 10:47:41 +05:30
Shivam Mishra	161024db9d	feat: Add visibility checks for installation types (#10773 ) This pull request includes multiple changes to the sidebar and route metas to configure visibility of features on the dashboard. Here's a summary of the changes 1. Added `installationTypes`, field to routes `meta`, this works along side `permissions` and `featureFlags` This allows us to decide weather a particular feature is accessible on a particular type. For instance, the Billing pages should only be available on Cloud 2. Updated `usePolicy` and `policy.vue` to use the new `installationTypes` config 3. Updated Sidebar related components to remove `showOnlyOnCloud` to use the new policy updates. Testing the PR Here's the matrix of cases: https://docs.google.com/spreadsheets/d/15AAJntJZoyudaby77BOnRcC4435FGuT7PXbUXoTyU50/edit?usp=sharing --------- Co-authored-by: Pranav <pranav@chatwoot.com> Co-authored-by: Sojan Jose <sojan@pepalo.com> Co-authored-by: Pranav <pranavrajs@gmail.com>	2025-02-21 14:48:31 -08:00
Sojan Jose	3b141fca28	chore: Add internal feature flags for Chatwoot Cloud (#10902 ) This PR introduces internal feature flags for testing purposes. These flags will not be displayed on regular instances to prevent customer confusion. Additionally, a new feature flag, `contact_chatwoot_support_team`, has been added for Chatwoot Cloud. This flag disables contact support for third-party onboarded accounts, as support will be handled by the original affiliate team. Co-authored-by: Pranav <pranav@chatwoot.com>	2025-02-15 16:21:46 -08:00
Pranav	cb42be8e65	feat(v4): Update the report pages to show aggregate values (#10766 ) This PR updates the report pages for agents, inboxes, and teams by replacing charts with aggregate values (under a feature flag). Users can click on any item to view more details if needed. Most users seem to prefer aggregate values, so this change will likely stay. The PR also includes a few fixes: - The summary reports now use the same logic for both the front-end and CSV exports. - Fixed an issue where a single quote was being added to values with hyphens in CSV files. Now, ‘n/a’ is used when no value is available. - Fixed a bug where the average value was calculated incorrectly when multiple accounts were present. These changes should make reports easier to use and more consistent. ### Agents: <img width="1438" alt="Screenshot 2025-01-26 at 10 47 18 AM" src="https://github.com/user-attachments/assets/bf2fcebc-6207-4701-9703-5c2110b7b8a0" /> ### Inboxes <img width="1438" alt="Screenshot 2025-01-26 at 10 47 10 AM" src="https://github.com/user-attachments/assets/b83e1cf2-fd14-4e8e-8dcd-9033404a9f22" /> ### Teams: <img width="1436" alt="Screenshot 2025-01-26 at 10 47 01 AM" src="https://github.com/user-attachments/assets/96b1ce07-f557-42ca-8143-546a111d6458" /> --------- Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Shivam Mishra <scm.mymail@gmail.com>	2025-01-28 09:19:18 +05:30
Shivam Mishra	6d3ecfe3c1	feat: Add new sidebar for Chatwoot V4 (#10291 ) This PR has the initial version of the new sidebar targeted for the next major redesign of the app. This PR includes the following changes - Components in the `layouts-next` and `base-next` directories in `dashboard/components` - Two generic components `Avatar` and `Icon` - `SidebarGroup` component to manage expandable sidebar groups with nested navigation items. This includes handling active states, transitions, and permissions. - `SidebarGroupHeader` component to display the header of each navigation group with optional icons and active state indication. - `SidebarGroupLeaf` component for individual navigation items within a group, supporting icons and active state. - `SidebarGroupSeparator` component to visually separate nested navigation items. (They look a lot like header) - `SidebarGroupEmptyLeaf` component to render empty state of any navigation groups. ---- Co-authored-by: Pranav <pranav@chatwoot.com> Co-authored-by: Pranav <pranavrajs@gmail.com>	2024-10-23 18:32:37 -07:00
Sojan Jose	58e78621ba	chore: Custom Roles to manage permissions [ UI ] (#9865 ) In admin settings, this Pr will add the UI for managing custom roles ( ref: https://github.com/chatwoot/chatwoot/pull/9995 ). It also handles the routing logic changes to accommodate fine-tuned permissions. --------- Co-authored-by: Pranav <pranavrajs@gmail.com> Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: iamsivin <iamsivin@gmail.com> Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com>	2024-09-17 11:40:11 -07:00
Pranav	73d448a203	fix: Remove feature flag for insert article into editor (#10114 ) Fixes #10107	2024-09-16 12:25:49 +05:30
Sojan Jose	829bb842fd	feat: Generate SSO URL in Chatwoot, move Captain to primary tab (#9871 ) - Generate SSO URL in Chatwoot, move Captain to the primary tab Co-authored-by: Pranav <pranavrajs@gmail.com>	2024-08-01 19:22:34 -07:00
Muhsin Keloth	35508feaae	feat: Linear front end (#9491 ) Co-authored-by: Shivam Mishra <scm.mymail@gmail.com> Co-authored-by: iamsivin <iamsivin@gmail.com>	2024-05-23 11:58:24 +05:30
Shivam Mishra	e94b276f64	feat: Add help URLs for features in features.yml (#9134 ) Co-authored-by: Pranav <pranav@chatwoot.com>	2024-03-21 10:30:46 -07:00
Sojan Jose	89d0b2cb6e	feat: Add the bot performance reports UI (#9036 ) Co-authored-by: Pranav <pranav@chatwoot.com> Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com>	2024-03-14 23:04:14 -07:00
Vishnu Narayanan	cc47ccaa2c	feat(ee): Add SLA management UI (#8777 ) Co-authored-by: Sivin Varghese <64252451+iamsivin@users.noreply.github.com> Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com> Co-authored-by: Pranav <pranav@chatwoot.com>	2024-02-20 23:03:22 -08:00
Muhsin Keloth	f2115b15f7	feat: Add inbox view page (#8814 ) * feat: Add inbox view page * Update accounts.js * Update index.js	2024-01-30 13:55:20 +05:30
Shivam Mishra	b411b6ca21	feat: remove feature flag checks for message reply to (#8352 )	2023-11-15 13:05:58 +05:30
Nithin David Thomas	39d0748a5b	feat: Lets users insert connected portal article into replies [CW-2282] (#8117 ) - Lets users insert connected portal articles into replies https://linear.app/chatwoot/issue/CW-2282/list-all-the-top-articles-from-the-connected-help-center https://linear.app/chatwoot/issue/CW-1453/container-view-for-showing-search-input-and-result-items	2023-11-04 02:57:25 -07:00
Shivam Mishra	1b63adfb2e	feat: add option for reply to in context menu (#8043 ) Co-authored-by: Muhsin Keloth <muhsinkeramam@gmail.com>	2023-10-05 20:01:20 +05:30
Shivam Mishra	2b88ecdfc4	feat: Add a feature flag for Audit Log UI (#7035 ) Co-authored-by: Pranav Raj S <pranav@chatwoot.com>	2023-05-08 12:44:15 -07:00
Pranav Raj S	2dfe38ae4d	chore: Cleanup feature flags (#6096 ) - Add more feature flags for CRM, auto_resolution, and reports - Add a SuperAdmin link in the sidebar if the user is a super-admin - SuperAdmin could view all the features on an account irrespective of whether the feature is enabled.	2022-12-19 22:38:30 +05:30
Pranav Raj S	20b4a91122	chore: Add feature flags in the settings console (#5657 )	2022-10-17 14:59:44 -07:00