Fix Rust widget renderer modal button initialization (#1924)

* Production release: Fix CX Collections export CSV error (#1911)

* Add Cargo caching and library linkage verification to CircleCI

- Add restore/save cache for Cargo target and registry directories
- Use Cargo.lock checksum for cache key to ensure proper invalidation
- Verify Rust library linkage with ldd before deploy
- Fail fast if library has unresolved dependencies
- Should significantly speed up Rust builds on subsequent runs

* Fix cx_collections export_csv 500 error

- Handle nil organization in User#cx_collections to prevent NoMethodError
- Add eager loading for service_provider.organization and cx_collection_details
- Add missing database indexes on cx_collections, cx_collection_details, cx_responses

Fixes the 'We're sorry, but something went wrong' error at:
/admin/cx_collections/export_csv

* Update schema.rb with new indexes for CircleCI

* Update schema version to include new migration

* Add tests for User#cx_collections method

* fix: use git URL for rust buildpack in production manifest

* fix: correct redis service name in production manifest

* Release: WidgetRenderer load fix (#1914)

* Add Cargo caching and library linkage verification to CircleCI

- Add restore/save cache for Cargo target and registry directories
- Use Cargo.lock checksum for cache key to ensure proper invalidation
- Verify Rust library linkage with ldd before deploy
- Fail fast if library has unresolved dependencies
- Should significantly speed up Rust builds on subsequent runs

* Fix cx_collections export_csv 500 error

- Handle nil organization in User#cx_collections to prevent NoMethodError
- Add eager loading for service_provider.organization and cx_collection_details
- Add missing database indexes on cx_collections, cx_collection_details, cx_responses

Fixes the 'We're sorry, but something went wrong' error at:
/admin/cx_collections/export_csv

* Update schema.rb with new indexes for CircleCI

* Update schema version to include new migration

* Add tests for User#cx_collections method

* Fix widget renderer load when native lib missing (#1913)

* Fix User#cx_collections specs for Service owner (#1915) (#1917)

* Release: set prod disk quota to 2G (#1919)

* Add Cargo caching and library linkage verification to CircleCI

- Add restore/save cache for Cargo target and registry directories
- Use Cargo.lock checksum for cache key to ensure proper invalidation
- Verify Rust library linkage with ldd before deploy
- Fail fast if library has unresolved dependencies
- Should significantly speed up Rust builds on subsequent runs

* Fix cx_collections export_csv 500 error

- Handle nil organization in User#cx_collections to prevent NoMethodError
- Add eager loading for service_provider.organization and cx_collection_details
- Add missing database indexes on cx_collections, cx_collection_details, cx_responses

Fixes the 'We're sorry, but something went wrong' error at:
/admin/cx_collections/export_csv

* Update schema.rb with new indexes for CircleCI

* Update schema version to include new migration

* Add tests for User#cx_collections method

* Fix widget renderer load when native lib missing (#1913)

* Fix User#cx_collections specs for Service owner (#1915)

* Fix production manifest for rust buildpack (#1918)

* fix: remove empty secret keys from manifest to prevent wiping env vars on deploy

Empty values in the manifest were overwriting secrets set via cf set-env.
Secrets should only be managed via cf set-env, not in the manifest.

* fix: Use fba-usa-modal class for USWDS Modal compatibility

* fix: Add CSS support to Rust widget renderer to fix modal positioning

* fix: Use parent_id instead of parent in Organization factory

* Increase Cloud Foundry start timeout to 180s and fix Sidekiq health check type

* Fix Sidekiq crash and optimize Rust build script

- Added rust-buildpack to Sidekiq deployment
- Updated build_widget_renderer.sh to handle workspace paths and avoid rebuilds
- Added rust-buildpack to touchpoints-demo manifest

* build(cf): simplify widget_renderer build script and ignore rules

Refactors the `.profile.d/build_widget_renderer.sh` script to remove complex logic for locating Rust dependencies, building from source, and checking library linkage. The script now focuses solely on setting `LD_LIBRARY_PATH` and ensuring the prebuilt `libwidget_renderer.so` is in the correct location.

Additionally, updates `.cfignore` to exclude the `target/` directory and specific release artifacts, while ensuring the root `libwidget_renderer.so` is preserved. This suggests a shift towards deploying a precompiled binary rather than building the Rust extension during the Cloud Foundry deployment process.

* Increase deployment timeout and add widget_renderer fallback to resolve startup crashes

* fix(widget_renderer): restore LoadError and adjust app timeout

- Re-enable raising `LoadError` in `widget_renderer.rb` when the native library is missing, removing the previous fallback log message. This ensures the application fails fast if the required extension is absent.
- Reduce application timeout from 600 to 180 seconds in `touchpoints.yml` to better align with platform constraints or performance expectations.
- Remove the hardcoded `WEB_CONCURRENCY: 1` environment variable from `touchpoints.yml`, allowing the buildpack or platform defaults to manage concurrency.

* ci: increase deployment wait time and enable static files in dev

- Increase the `max_wait` time in `.circleci/deploy.sh` from 600 to 800 seconds to prevent timeouts during longer deployment processes.
- Update `config/environments/development.rb` to conditionally enable the public file server based on the `RAILS_SERVE_STATIC_FILES` environment variable, aligning development behavior with other environments when needed.

* ci(deploy): increase timeouts and enable static file serving

- Increase Cloud Foundry push timeout from 180s to 600s in deployment scripts and `touchpoints.yml` to prevent timeouts during startup.
- Enable `RAILS_SERVE_STATIC_FILES` in production configuration and manifest to allow the application to serve precompiled assets directly.
- Update `deploy.sh` to accept a manifest path argument and refactor retry logic for better error handling.

* Decouple db:migrate from deploy: migrations must be run separately to avoid CF 180s timeout

* Add automated pre-deploy migrations via cf run-task to avoid 180s timeout during app start

* Set health check type to process for sidekiq worker before rolling deploy

* Fix sidekiq worker timeout: explicitly set to 180s before rolling deploy

* Fix flaky logo upload test: add wait time to prevent Selenium stale element race condition

* Fix cf set-health-check: use --invocation-timeout instead of --timeout

* Fix Rack::Attack test: create actual form fixture to avoid 404 responses

* Scale sidekiq worker to 1 instance during rolling deploy to avoid org memory quota exceeded

* Stop sidekiq worker before push to free memory for staging (avoids org quota exceeded)

* Fix cf run-task syntax: add --command flag for migrations

* Skip WidgetRenderer load during migrations - library not built in task droplet

* Fix Rack::Attack test: add valid submission params to avoid 400 errors

* Temporarily disable pre-deploy migrations to unblock deployment

* Fix widget_renderer initializer - use simpler skip detection logic

* Fix deployment: restore db:migrate in manifest and enable migrations in deploy script

* Revert migrations to start command - Rust library not available in cf tasks

* Build Rust library at runtime in .profile.d script

* Revert to working widget_renderer script that copies prebuilt library

* Keep prebuilt Rust library during deployment to ensure correct linking with CF Ruby installation

* Fix deploy-sidekiq.sh: remove explicit buildpack flags to avoid re-installing Rust

- Remove -b flags from cf push in deploy-sidekiq.sh
- Let CF auto-detect buildpacks from app metadata like deploy.sh does
- Prevents unnecessary reinstallation of Rust during staging
- Matches web deployment behavior for consistency

* Fix touchpoints.yml: comment out buildpacks to prevent Rust reinstallation

- Comment out explicit buildpacks in manifest
- Let CF auto-detect buildpacks from app metadata
- Prevents re-running supply phase (Rust installation) during deployment
- Rust library already built in CircleCI via bundle install (gem extensions)
- Matches deploy-sidekiq.sh approach for consistency

* Fix flaky timing test in submission_digest mailer spec

Use a single time_threshold let variable to ensure consistent timestamp
comparison instead of calling days_ago.days.ago multiple times which can
result in 1-second differences in CI environments.

* Fix custom-button-modal USWDS initialization

- Add try/catch error handling
- Add conditional checks for fbaUswds methods
- Initialize custom button element for custom-button-modal
- Prevents modal from appearing visible at page bottom

* Bump Cargo version to force Rust rebuild

* Bump widget_renderer version to force Cargo rebuild

* Force cargo clean before build to ensure recompilation

* Bump widget_renderer gem version to 0.1.2 to force rebuild

* Force Rust rebuild with BUILD_ID and version bump

* Bump widget_renderer to 0.1.2 to force CF to rebuild native extension

* Update Gemfile.lock for widget_renderer 0.1.2

* Add Rust library verification before CF push

* Prioritize workspace-level Rust library and bump to 0.1.3

* Invalidate CircleCI cargo cache to force fresh Rust build

* Fix Rust widget renderer modal button initialization

The Rust widget renderer was missing the USWDS Modal initialization
for the #fba-button element used in 'modal' delivery method forms.
This caused the toast/feedback button to not open the modal when clicked,
instead rendering the form inline at the bottom of the page.

Added initialization for #fba-button to match the ERB template behavior
in _fba.js.erb (lines 858-875).

Fixes Zendesk ticket #37620

* Fix breaking changes from PR review

1. Fix modal_class prefix logic: Now respects load_css setting
   - When load_css=true: uses 'fba-usa-modal' prefix
   - When load_css=false: uses 'usa-modal' (no prefix)
   - Matches ERB template behavior in _fba.js.erb line 110

2. Fix CSS backtick escaping: Added escape for backticks in CSS
   - Prevents JavaScript syntax errors when CSS contains backticks
   - CSS is inserted into JS template literals using backticks

3. Remove expired certificate file: tmp_expired_login_gov_cert.pem
   - Certificate expired Aug 2023
   - Added *.pem to .gitignore to prevent future accidental commits

Author: rileyseaburg

.cfignore

@@ -38,10 +38,7 @@
 /public/packs-test
 /node_modules
 
-# Ignore Rust build artifacts, but keep the prebuilt widget library
+# Ignore Rust build artifacts
 target/
 ext/widget_renderer/target/
-!ext/widget_renderer/target/
-!ext/widget_renderer/target/release/
-!ext/widget_renderer/target/release/libwidget_renderer.so
 !ext/widget_renderer/libwidget_renderer.so

.circleci/config.yml

@@ -57,8 +57,8 @@ jobs:
 
       - restore_cache:
           keys:
-            - v1-cargo-{{ checksum "ext/widget_renderer/Cargo.lock" }}
-            - v1-cargo-
+            - v2-cargo-{{ checksum "ext/widget_renderer/Cargo.lock" }}
+            - v2-cargo-
 
       - run:
           name: Build widget renderer (Rust)
@@ -89,7 +89,7 @@ jobs:
             - ext/widget_renderer/target
             - ~/.cargo/registry
             - ~/.cargo/git
-          key: v1-cargo-{{ checksum "ext/widget_renderer/Cargo.lock" }}
+          key: v2-cargo-{{ checksum "ext/widget_renderer/Cargo.lock" }}
 
       # Download and cache dependencies
       - restore_cache:
@@ -147,12 +147,11 @@ jobs:
               echo "Skipping Sidekiq deploy on parallel node ${CIRCLE_NODE_INDEX}"
               exit 0
             fi
-            # Remove prebuilt Rust library - it must be built on CF with the correct Ruby paths
-            # The library built on CircleCI links against /usr/local/lib/libruby.so.3.2
-            # but on CF, Ruby is in /home/vcap/deps/*/ruby/lib/
-            echo "Removing prebuilt Rust library (will be rebuilt on CF)..."
-            rm -rf ext/widget_renderer/target/release/libwidget_renderer.so 2>/dev/null || true
-            rm -f ext/widget_renderer/libwidget_renderer.so 2>/dev/null || true
+            # Keep prebuilt Rust library - extconf.rb builds it during bundle install with correct paths
+            # The library is built with rutie which properly links against the CF Ruby installation
+            # echo "Removing prebuilt Rust library (will be rebuilt on CF)..."
+            # rm -rf ext/widget_renderer/target/release/libwidget_renderer.so 2>/dev/null || true
+            # rm -f ext/widget_renderer/libwidget_renderer.so 2>/dev/null || true
             ./.circleci/deploy-sidekiq.sh
           no_output_timeout: 30m
 
@@ -166,10 +165,10 @@ jobs:
             fi
             # Wait for Sidekiq deployment to complete before starting web deploy
             sleep 120
-            # Remove prebuilt Rust library - it must be built on CF with the correct Ruby paths
-            echo "Removing prebuilt Rust library (will be rebuilt on CF)..."
-            rm -rf ext/widget_renderer/target/release/libwidget_renderer.so 2>/dev/null || true
-            rm -f ext/widget_renderer/libwidget_renderer.so 2>/dev/null || true
+            # Keep prebuilt Rust library - extconf.rb builds it during bundle install with correct paths
+            # echo "Removing prebuilt Rust library (will be rebuilt on CF)..."
+            # rm -rf ext/widget_renderer/target/release/libwidget_renderer.so 2>/dev/null || true
+            # rm -f ext/widget_renderer/libwidget_renderer.so 2>/dev/null || true
             ./.circleci/deploy.sh
           no_output_timeout: 30m
 

.circleci/deploy-sidekiq.sh

@@ -102,10 +102,43 @@ cf_push_with_retry() {
   # Wait for any in-progress deployment
   wait_for_deployment "$app_name"
 
+  # Update app to use 180s invocation timeout and process health check before rolling deploy
+  echo "Updating health check configuration for $app_name..."
+  cf set-health-check "$app_name" process --invocation-timeout 180 || true
+  sleep 2
+  
+  # Get current instance count and scale down to 1 to avoid memory quota issues during rolling deploy
+  echo "Checking current instance count for $app_name..."
+  local current_instances=$(cf app "$app_name" | grep "^instances:" | awk '{print $2}' | cut -d'/' -f2 || echo "1")
+  echo "Current instances: $current_instances"
+  
+  if [ "$current_instances" -gt 1 ]; then
+    echo "Scaling down to 1 instance to free memory for rolling deploy..."
+    cf scale "$app_name" -i 1 || true
+    sleep 5
+  fi
+  
   for i in $(seq 1 $max_retries); do
     echo "Attempt $i of $max_retries to push $app_name..."
-    if cf push "$app_name" --strategy rolling; then
+    
+    # Stop the app first to free memory for staging
+    echo "Stopping $app_name to free memory for staging..."
+    cf stop "$app_name" || true
+    sleep 5
+    
+    # Push without rolling strategy (direct replacement since we stopped it)
+    # Let CF auto-detect buildpacks to avoid re-running supply phase (Rust already built in CircleCI)
+    if cf push "$app_name" \
+      -t 180 \
+      --health-check-type process; then
       echo "Successfully pushed $app_name"
+      
+      # Scale back up to original instance count
+      if [ "$current_instances" -gt 1 ]; then
+        echo "Scaling up to $current_instances instances..."
+        cf scale "$app_name" -i "$current_instances" || true
+      fi
+      
       release_deploy_lock "$app_name"
       trap - EXIT  # Clear the trap
       return 0
@@ -120,6 +153,12 @@ cf_push_with_retry() {
     fi
   done
 
+  # If we failed, try to scale back up anyway
+  if [ "$current_instances" -gt 1 ]; then
+    echo "Deploy failed, attempting to scale back up to $current_instances instances..."
+    cf scale "$app_name" -i "$current_instances" || true
+  fi
+  
   release_deploy_lock "$app_name"
   trap - EXIT  # Clear the trap
   echo "Failed to push $app_name after $max_retries attempts"
@@ -132,6 +171,8 @@ then
   # Log into CF and push
   cf login -a $CF_API_ENDPOINT -u $CF_PRODUCTION_SPACE_DEPLOYER_USERNAME -p $CF_PRODUCTION_SPACE_DEPLOYER_PASSWORD -o $CF_ORG -s prod
   echo "PUSHING to PRODUCTION..."
+  echo "Syncing Login.gov environment variables..."
+  ./.circleci/sync-login-gov-env.sh touchpoints-production-sidekiq-worker
   cf_push_with_retry touchpoints-production-sidekiq-worker
   echo "Push to Production Complete."
 else

.circleci/deploy.sh

@@ -63,7 +63,7 @@ release_deploy_lock() {
 # Wait for any in-progress deployments to complete before starting
 wait_for_deployment() {
   local app_name="$1"
-  local max_wait=600  # 10 minutes max
+  local max_wait=800  # 13 minutes and 20 seconds max
   local wait_interval=15
   local waited=0
 
@@ -87,12 +87,87 @@ wait_for_deployment() {
   return 0
 }
 
+# Run migrations as a CF task and wait for completion
+run_migrations() {
+  local app_name="$1"
+  local max_wait=1800  # 30 minutes max for migrations
+  local wait_interval=10
+  local waited=0
+  
+  echo "Running database migrations for $app_name..."
+  
+  # Start migration task
+  local task_output=$(cf run-task "$app_name" --command "bundle exec rails db:migrate" --name "pre-deploy-migrations" 2>&1)
+  echo "$task_output"
+  
+  # Extract task ID from output
+  local task_id=$(echo "$task_output" | grep -oE 'task id:[[:space:]]+[0-9]+' | grep -oE '[0-9]+' || echo "")
+  
+  if [ -z "$task_id" ]; then
+    echo "Warning: Could not determine task ID, checking tasks list..."
+    sleep 5
+    task_id=$(cf tasks "$app_name" | grep "pre-deploy-migrations" | grep "RUNNING" | head -1 | awk '{print $1}')
+  fi
+  
+  if [ -z "$task_id" ]; then
+    echo "Error: Failed to start migration task"
+    return 1
+  fi
+  
+  echo "Migration task started with ID: $task_id"
+  echo "Waiting for migrations to complete..."
+  
+  # Wait for task to complete
+  while [ $waited -lt $max_wait ]; do
+    local task_state=$(cf tasks "$app_name" | grep "^$task_id " | awk '{print $3}')
+    
+    if [ "$task_state" == "SUCCEEDED" ]; then
+      echo "✓ Migrations completed successfully"
+      return 0
+    elif [ "$task_state" == "FAILED" ]; then
+      echo "✗ Migration task failed. Checking logs..."
+      cf logs "$app_name" --recent | grep "pre-deploy-migrations" | tail -50
+      return 1
+    fi
+    
+    if [ $((waited % 30)) -eq 0 ]; then
+      echo "Migration task still running (state: $task_state, waited ${waited}s)..."
+    fi
+    
+    sleep $wait_interval
+    waited=$((waited + wait_interval))
+  done
+  
+  echo "Error: Migration task did not complete within ${max_wait}s"
+  cf logs "$app_name" --recent | grep "pre-deploy-migrations" | tail -50
+  return 1
+}
+
 # Retry function to handle staging and deployment conflicts
 cf_push_with_retry() {
   local app_name="$1"
+  local manifest_path="${2:-}"
+  local run_migrations="${3:-false}"
   local max_retries=5
   local retry_delay=90
 
+  # Run migrations first if requested
+  if [ "$run_migrations" == "true" ]; then
+    if ! run_migrations "$app_name"; then
+      echo "Error: Migrations failed, aborting deployment"
+      return 1
+    fi
+  fi
+  
+  # Ensure CircleCI-built Rust library is present
+  if [ -f "ext/widget_renderer/target/release/libwidget_renderer.so" ]; then
+    echo "CircleCI-built Rust library found, will be included in deployment"
+    file ext/widget_renderer/target/release/libwidget_renderer.so
+    readelf -n ext/widget_renderer/target/release/libwidget_renderer.so | grep "Build ID" || true
+  else
+    echo "WARNING: No CircleCI-built Rust library found at ext/widget_renderer/target/release/libwidget_renderer.so"
+  fi
+  
   # Acquire lock first
   acquire_deploy_lock "$app_name"
 
@@ -104,19 +179,30 @@ cf_push_with_retry() {
 
   for i in $(seq 1 $max_retries); do
     echo "Attempt $i of $max_retries to push $app_name..."
-    if cf push "$app_name" --strategy rolling; then
+    local exit_code=0
+
+    set +e
+    if [ -n "$manifest_path" ]; then
+      echo "Using manifest: $manifest_path"
+      cf push "$app_name" -f "$manifest_path" --strategy rolling -t 180
+    else
+      cf push "$app_name" --strategy rolling -t 180
+    fi
+    exit_code=$?
+    set -e
+
+    if [ $exit_code -eq 0 ]; then
       echo "Successfully pushed $app_name"
       release_deploy_lock "$app_name"
       trap - EXIT  # Clear the trap
       return 0
-    else
-      local exit_code=$?
-      if [ $i -lt $max_retries ]; then
-        echo "Push failed (exit code: $exit_code), waiting ${retry_delay}s before retry..."
-        sleep $retry_delay
-        # Re-check for in-progress deployments before retrying
-        wait_for_deployment "$app_name"
-      fi
+    fi
+
+    if [ $i -lt $max_retries ]; then
+      echo "Push failed (exit code: $exit_code), waiting ${retry_delay}s before retry..."
+      sleep $retry_delay
+      # Re-check for in-progress deployments before retrying
+      wait_for_deployment "$app_name"
     fi
   done
 
@@ -132,7 +218,9 @@ then
   # Log into CF and push
   cf login -a $CF_API_ENDPOINT -u $CF_PRODUCTION_SPACE_DEPLOYER_USERNAME -p $CF_PRODUCTION_SPACE_DEPLOYER_PASSWORD -o $CF_ORG -s prod
   echo "PUSHING web servers to Production..."
-  cf_push_with_retry touchpoints
+  echo "Syncing Login.gov environment variables..."
+  ./.circleci/sync-login-gov-env.sh touchpoints
+  cf_push_with_retry touchpoints touchpoints.yml false
   echo "Push to Production Complete."
 else
   echo "Not on the production branch."
@@ -144,7 +232,7 @@ then
   # Log into CF and push
   cf login -a $CF_API_ENDPOINT -u $CF_USERNAME -p $CF_PASSWORD -o $CF_ORG -s $CF_SPACE
   echo "Pushing web servers to Demo..."
-  cf_push_with_retry touchpoints-demo
+  cf_push_with_retry touchpoints-demo "" true
   echo "Push to Demo Complete."
 else
   echo "Not on the main branch."
@@ -156,7 +244,7 @@ then
   # Log into CF and push
   cf login -a $CF_API_ENDPOINT -u $CF_USERNAME -p $CF_PASSWORD -o $CF_ORG -s $CF_SPACE
   echo "Pushing web servers to Staging..."
-  cf_push_with_retry touchpoints-staging
+  cf_push_with_retry touchpoints-staging "" true
   echo "Push to Staging Complete."
 else
   echo "Not on the develop branch."

.circleci/sync-login-gov-env.sh

@@ -0,0 +1,42 @@
+#!/usr/bin/env bash
+
+set -euo pipefail
+
+require_env() {
+  local var_name="$1"
+  if [ -z "${!var_name:-}" ]; then
+    echo "Missing required env var: ${var_name}" >&2
+    exit 1
+  fi
+}
+
+escape_private_key() {
+  ruby -e 'print STDIN.read.gsub("\r\n", "\n").gsub("\n", "\\n")'
+}
+
+sync_login_gov_env() {
+  local app_name="$1"
+
+  require_env LOGIN_GOV_CLIENT_ID
+  require_env LOGIN_GOV_IDP_BASE_URL
+  require_env LOGIN_GOV_REDIRECT_URI
+  require_env LOGIN_GOV_PRIVATE_KEY
+
+  local private_key_escaped
+  private_key_escaped="$(printf "%s" "${LOGIN_GOV_PRIVATE_KEY}" | escape_private_key)"
+
+  cf set-env "$app_name" LOGIN_GOV_CLIENT_ID "$LOGIN_GOV_CLIENT_ID" >/dev/null
+  cf set-env "$app_name" LOGIN_GOV_IDP_BASE_URL "$LOGIN_GOV_IDP_BASE_URL" >/dev/null
+  cf set-env "$app_name" LOGIN_GOV_REDIRECT_URI "$LOGIN_GOV_REDIRECT_URI" >/dev/null
+  cf set-env "$app_name" LOGIN_GOV_PRIVATE_KEY "$private_key_escaped" >/dev/null
+
+  echo "Synced Login.gov env to ${app_name}"
+}
+
+if [ "${1:-}" == "" ]; then
+  echo "Usage: $0 <app-name>" >&2
+  exit 2
+fi
+
+sync_login_gov_env "$1"
+

.gitignore

@@ -53,3 +53,6 @@ ext/widget_renderer/Makefile
 ext/widget_renderer/*.dylib
 # Keep the prebuilt Linux .so for Cloud Foundry deployment
 !ext/widget_renderer/libwidget_renderer.so
+
+# Certificate files (avoid accidental commits of sensitive keys/certs)
+*.pem