Fixes #35463 - Allow newer rdoc on Ruby 3.1

Ruby 3.1 ships rdoc 6.1 by default.

Refs #37065 - require at least apipie-dsl 2.6.2

It adds the `kwlist` macro

Fixes #36574 - Update fast_gettext to ~> 2.1

Fixes #37102 - webpack 5

Fixes #37010 - Support safe navigation operator in safemode

Safemode 1.4.0 has added support for this. This makes sure that version
is included.

Fixes #36575 - Use apipie-dsl default model descriptions

Fixes #36375 - allow apipie-rails 1.x

Fixes #35893 - Pin to audited 5.x

In eb15f5eab69325edbae1147a58c53e9ffe9e17d8 audited was pinned because
of a regression in 5.1.0. Version 5.2.0 fixes the regression introduced
in 5.1.0, so this should be safe again. It does mark it incompatible
with 5.1.0 to be sure it's not pulled in accidentally.

Refs #35893 - Pin to audited 5.0.x

Audited 5.1.0 released with a breaking change where audited_class
changed from a Class to a String. This pins to a compatible version
until Foreman is fixed or audited reverts the change.

Fixes #35462 - Depend on the rss gem (#9440)

Ruby 3.0 has moved rss from a default gem to a bundled gem. This means
it must be specified as a dependency.

Fixes #35758 - Allow latest Rails 6.1

Fixes #35663 - relax jwt pin to accept newer versions than 2.2.z

Fixes #32685 - update graphql to 1.13.x

GrapQL 1.13.x is a large update and can break plugins, but it is Ruby 3
compatible.

Co-authored-by: Oleh Fedorenko <ofedoren@redhat.com>

Fixes #35448 - Update roadie-rails to 3.x

This has formal Ruby 3 support, even though there are no code
differences. It's a major version because it drops Ruby < 2.6.

Fixes #35450 - Update rack-cors to 1.1.x

Fixes #35449 - Update sshkey to 2.x

This brings us to the latest version. It's a major due to dropping Ruby
1.9 support, which doesn't affect us.

Fixes #35447 - Update apipie-rails to 0.8.x

https://github.com/Apipie/apipie-rails/blob/master/CHANGELOG.md says:

• 0.6.0 gives us Ruby 3 support
• 0.7.2 upgrades the vendored bootstrap and jquery for security reasons
• 0.8.0 gives us Rails 7 support

There are some warnings about allow_blank changing.

Refs #35428 - Simplify i18n.fallbacks handling

This reverts commit 11bfc142561f1c69d2b8b5abc66df943a66b1672. Since
Rails 6.0 the value true is interpreted as `[I18n.default_locale]`
([Rails commit]). ActiveSupport 6.1 also pulls in at least version 1.6
so the specific requirement is also not needed....

Fixes #35428 - Update rails-i18n to version 7

Version 7 adds Rails 7 support. It is a major version due to dropping
Ruby 1.8, which is irrelevant for Foreman.

Fixes #35429 - Update oauth to version 1.x

It is backwards incompatible because it dropped Ruby < 2.7 support, but
that doesn't affect Foreman.

Fixes #35427 - Update scoped_search to at least 4.1.10

This fixes Rails 6.1 and Ruby 3 support.

Fixes #35423 - Update ancestry to version 4

Version 4.0.0 fixed Rails 6.1 support. 4.2.0 also adds Ruby 3 and Rails
7 support.

Fixes #35422 - Update audited to version 5

Version 5 has Rails 6.1 improvements and 5.0.2 supports Rails 7. The
major version bump is due to dropping Rails 4, but that doesn't matter
to Foreman.

Fixes #35420 - Drop boot_settings.rb for early settings

With Rails 7 require_relative no longer works in a Gemfile (maybe it's
Zeitwerk?). Currently we only support Rails 6.1 anyway and if we can't
use the mechanism for Rails 7 this mechanism should be removed....

Fixes #35421 - Pin will_paginate to at least 3.3.0

Version 3.3.0 fixes Ruby 2.7 warnings.

Fixes #35264 - Unpin net-ssh dependency

Since 14e90094305a29440923a8fc21af1afde3173314 net-ssh is pinned to
4.2.0 but since f8ba14cb0a890ec62e44c9c887c008c48b9538a0 a newer
fog-core is allowed. fog-core 2.2.1 can deal with a newer net-ssh so it
can be unpinned....

Fixes #30659 - Allow friendly_id 5.4 again

Version 5.4.2 reverts the behavior introduced in 5.4.0. 5.4.0 also fixes
a Ruby 2.7 deprecation warning so it now pins to >= 5.4.2.

Refs #34526 - Drop Rails 6.0 support code

When Foreman switched to Rails 6.1, Rails 6.0 compatibility was dropped.
This makes it fail hard when it is attempted to be used. it also removes
a stray backslash.

Fixes: 1cf4147a06420842d3818f4edb6e22892f40a939...

Fixes #35210 - Allow symbols and hashes in YAML columns

Refs #32686 - relax fog-core pin, we support newer fog-google now

Refs #34526 - Update Rails to 6.1.6

Fixes #34526 - Switch Rails version to 6.1

Changes overview:
- Set default Rails version to 6.1
- Required dynfow >= 1.6.5
- Cleanup deprecation warnings in config/as_deprecation_whitelist.yaml
- ActiveSupport::ParameterFilter instead of ActionDispatch::Http::ParameterFilter...

Fixes #34939: Use rabl 0.15.0 or greater

Fixes #34649 - Upgrade Rails to 6.0.4.7

Fixes #34500 - Add Rails 6.1 support

Adds support for Rails 6.1 and allows it to be enabled from settings.

Fixes #34212 - pin rdoc < 6.4 to avoid psych dependency

rdoc 6.4+ requires Psych > 4, which breaks with Rails 6.0.

So we need to upgrade Rails and then resolve what needs resolving.
Pinning rdoc for now.

Fixes #28571 - move away from record_tag_helper

Revert "Fixes #32952 - Set upper version of rake to avoid failures"

This reverts commit 9ca7c1e572dc52b59453d1844a801bf5b8ece443. Rake
13.0.5 should be released and fix it.

Fixes #32952 - Set upper version of rake to avoid failures

Setting version of rake to <13.0.4 to avoid test failures

Fixes #32440: Update activerecord-session_store to 2.0+

Version 2.0.0 includes a fix that addresses CVE-2019-25025

Fixes #32118 - remove legacy code and update version for jwt gem

Fixes #31517 - do not use deprecated Net::LDAP:LdapError

`Net::LDAP::LdapError` has been deprecated in favor of `Net::LDAP::Error` since https://github.com/ruby-ldap/ruby-net-ldap/commit/c9d36cdf919e01996da5c61838c10c1bc59f3e81#diff-8e534ef69e7fb9fbb691ec029ba3883243f8ffec6c89f9fadfa13a73d5b737fb....

Fixes #31533 - drop Rake pin again

13.0.2 was a broken release which fails to properly load tests.
13.0.1 and 13.0.3 are fine, so let's ignore it now

Refs #31533 - pin rake to < 13.0.2 to avoid test failures

Tests currently fail to run with Rake 13.0.2 with

uninitialized constant ApplicationRecord::ApipieDSL (NameError)

Pin Rake until we know how to properly fix that.

Fixes #30905 - do not use ancestry 3.2.0

Do not install ancestry 3.2.0 as it has bad require.
Details in https://github.com/stefankroes/ancestry/issues/510

Fixes #29257 - Remove x-editable-rails

Refs #30659 - pin friendly_id to < 5.4

The new release causes a breaking change to friendly.find methods.
Pinning for now until a new version is released fixing this change.

Refs #30151 - incorporate review feedback

Fixes #28226 - upgrade to sprockets 4

Fixes #29988 - Upgrade Rails to 6.0.3.1

Fixes #15628 - Require rdoc for apipie-rails

apipie-rails has rdoc optional, however, its default markup generator is
RDoc. rdoc seems to be found on most of the default OS installations
through inclusion from rubygems.

This fixes (development) setup when rdoc is missing:...

Fixes #29429 - Bump dependency on Dynflow

Fixes #29676 - explicitly use Rails 6.0 compatible gems

Fixes #29673 - Upgrade to Rails 6.0.2.2

Also clean up Rails 5 leftovers in gemfiles and initializers.

Fixes #29434 - Add basic documentation for template macros (#7537)

Fixes #29532 - Require scoped_search to 4.1.8

Fixes #19896 - Fix Style/RedundantSelf cop

Fixes #28872 - Raise minium secure_headers version

Fixes #27098 - Update scoped search descriptions

Fixes #28217 - drop turbolinks

Fixes #28586 - Add application setting to use Rails 6.0

Fixes #28002 - drop Ruby < 2.5

Fixes #28169 - pin validates_lengths_from_database on Ruby 2.3

Refs #28064 - add sidekiq configs

Fixes #25809 - JWT auth for external users

Fixes #27999 - Require responders 3.x

Fixes #27956 - update deep_cloneable to 3.x

Fixes #27359 - Bump audited to 4.9.0

Fixes #27347 - Pin audited to < 4.9.0 (#6915)

Audited 4.9.0 was released on 18.7.2019. This release changed
audited_changes from hash with indifferent access to hash, where keys
are strings. This change made all tests which accessed parts of the hash
using symbols as keys fail.

fixes #27154 - bump net-ldap

CVE-2017-17718 More information
moderate severity
Vulnerable versions: < 0.16.0
Patched version: 0.16.0
The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL Certificate Validation.

Fixes #26757 - respect current user timezone in search

Fixes #23765 - bcrypt hash password instead sha1

Fixes #26024,#26025 - removed fog & updated fog-google ~> 1.8.2 (#6475)

Locked version of 'fog-core' to '2.1.0' and 'net-ssh' to 4.2.0
as in latest version of net-ssh values of options
i.e paranoid/verify_host_key are changed but fog-core
still using old values....

Fixes #26020 - report templates in background process (#6503)

Fixes #26404 - update will_paginate to 3.1.7

fixes #23678 - add graphql scaffolding

fixes #22388 - jwt token auth

Fixes #26062 - update roadie-rails

fixes #26002 - set cors header via env variable

Fixes #25806 - bumps dependency in Gemfile

Fixes #25693 - Update fallback config for i18n 1.1 gem

Fixes #25666 - unpin daemons gem

This reverts commit db2eae404317e62248b3e7b500c6ade0c4a75cff.

Refs #25666 - pin daemons gem

Fixes #24874 - update secure_headers to 6.x

Fixes #22612 - Switch Rails to 5.2

Fixes #23806 - explicitly use Rails 5.2 compatible gems

Fixes #22601 - Update Rails to 5.1.6

Fixes #21997 - make http_proxy extension excon >0.59 compatible (#5526)

excon 0.60 defines it's own "logger", which conflicts here.

Fixes #23443 - relax pinning of rails-i18n

Fixes #23444 - update secure_headers to 5.x

Fixes #23273 - use safemode which allows .freeze

Fixes #23100 - Simplify gem requirements syntax (#5394)

This changes to an equivalent syntax that's slightly easier to handle in
a script that I'm working on to generate RPM dependencies.

Fixes #22888 - remove code around dynflow db_pool_size

Remove the code in favor of the Dynfow, where we can handle all the
logic at one place.

Fixes #22817 - update scoped search to 4.1.3

Fixes #22096 - Make Audits taxable (#5269)

Fixes #17964 - Add list of search fields in api docs (#4735)

Fixes #22334 - Update safemode, remove ruby2ruby pin

Refs #20325 - Fix pinning on ruby2ruby

2.4.0 is a known bad version, but that doesn't mean we explicitly need
2.3.2.

Fixes #22208, #21920 - Refactor password auditing (#5162)

Recent changes in Rails 5.1 and audited gem cause our method of auditing
passwords to break. This PR refactors password auditing, so that instead
of recording a change to attribute `password_changed`, we will now...

Refs #22208 - pin audited to 4.5

4.6.0 versions causes test failures on models trying to prevent saved
passwords from being saved in the audit log. This is due to hacks we
added to core along with changes in rails 5.1 change tracking.
This should be fixed to work correctly in the code, but pinning for now...