feat: support ce install with linux script

2022-04-07 20:51:42 +05:30 · 2022-04-07 20:49:38 +05:30
2682 changed files with 24298 additions and 147136 deletions
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@ -7,7 +7,7 @@ defaults: &defaults
  working_directory: ~/build
  docker:
    # specify the version you desire here
-    - image: cimg/ruby:3.0.4-browsers
+    - image: cimg/ruby:3.0.2-browsers

    # Specify service dependencies here if necessary
    # CircleCI maintains a library of pre-built images
@ -15,12 +15,8 @@ defaults: &defaults
    - image: cimg/postgres:14.1
    - image: cimg/redis:6.2.6
  environment:
+      - CC_TEST_REPORTER_ID: b1b5c4447bf93f6f0b06a64756e35afd0810ea83649f03971cbf303b4449456f
      - RAILS_LOG_TO_STDOUT: false
-      - COVERAGE: true
-      - LOG_LEVEL: warn
-  parallelism: 4
-  resource_class: large
-
 jobs:
  build:
    <<: *defaults
@ -44,13 +40,14 @@ jobs:

      - restore_cache:
          keys:
-            - chatwoot-bundle-{{ .Environment.CACHE_VERSION }}-v20220524-{{ checksum "Gemfile.lock" }}
+            - chatwoot-bundle-{{ .Environment.CACHE_VERSION }}-{{ checksum "Gemfile.lock" }}
+            - chatwoot-bundle

      - run: bundle install --frozen --path ~/.bundle
      - save_cache:
          paths:
            - ~/.bundle
-          key: chatwoot-bundle-{{ .Environment.CACHE_VERSION }}-v20220524-{{ checksum "Gemfile.lock" }}
+          key: chatwoot-bundle-{{ .Environment.CACHE_VERSION }}-{{ checksum "Gemfile.lock" }}


      # Only necessary if app uses webpacker or yarn in some other way
@ -92,7 +89,6 @@ jobs:
            fi
            curl -L https://repo1.maven.org/maven2/org/openapitools/openapi-generator-cli/5.3.0/openapi-generator-cli-5.3.0.jar > ~/tmp/openapi-generator-cli-5.3.0.jar
            java -jar ~/tmp/openapi-generator-cli-5.3.0.jar validate -i swagger/swagger.json
-            
      # Database setup
      - run: yarn install --check-files
      - run: bundle exec rake db:create
@ -105,10 +101,6 @@ jobs:
      - run:
          name: Rubocop
          command: bundle exec rubocop
-      
-      # - run:
-      #     name: Brakeman
-      #     command: bundle exec brakeman

      - run:
          name: eslint
@ -118,79 +110,34 @@ jobs:
      - run:
          name: Run backend tests
          command: |
-            mkdir -p ~/tmp/test-results/rspec
-            mkdir -p ~/tmp/test-artifacts
-            mkdir -p coverage
-            ~/tmp/cc-test-reporter before-build
-            TESTFILES=$(circleci tests glob "spec/**/*_spec.rb" | circleci tests split --split-by=timings)
-            bundle exec rspec --format progress \
-                              --format RspecJunitFormatter \
-                              --out ~/tmp/test-results/rspec.xml \
-                              -- ${TESTFILES}
-          no_output_timeout: 30m
-      - run:
-          name: Code Climate Test Coverage
-          command: |
-            ~/tmp/cc-test-reporter format-coverage -t simplecov -o "coverage/codeclimate.$CIRCLE_NODE_INDEX.json"
+            bundle exec rspec $(circleci tests glob "spec/**/*_spec.rb" | circleci tests split --split-by=timings) --profile=10 --format documentation
+            ~/tmp/cc-test-reporter format-coverage -t simplecov -o ~/tmp/codeclimate.backend.json coverage/backend/.resultset.json
+      - persist_to_workspace:
+          root: ~/tmp
+          paths:
+            - codeclimate.backend.json

      - run:
          name: Run frontend tests
          command: |
-            mkdir -p ~/tmp/test-results/frontend_specs
-            ~/tmp/cc-test-reporter before-build
-            TESTFILES=$(circleci tests glob **/specs/*.spec.js | circleci tests split --split-by=timings)
-            yarn test:coverage --profile 10 \
-                               --out ~/tmp/test-results/yarn.xml \
-                               -- ${TESTFILES}
-      - run:
-          name: Code Climate Test Coverage
-          command: |
-            ~/tmp/cc-test-reporter format-coverage -t lcov -o coverage/codeclimate.frontend_$CIRCLE_NODE_INDEX.json buildreports/lcov.info    
-            
+            yarn test:coverage
+            ~/tmp/cc-test-reporter format-coverage -t lcov -o ~/tmp/codeclimate.frontend.json buildreports/lcov.info
      - persist_to_workspace:
-          root: coverage
+          root: ~/tmp
          paths:
-            - codeclimate.*.json
+            - codeclimate.frontend.json
+
      # collect reports
      - store_test_results:
          path: ~/tmp/test-results
      - store_artifacts:
-          path: ~/tmp/test-artifacts
+          path: ~/tmp/test-results
+          destination: test-results
      - store_artifacts:
          path: log

-  upload-coverage:
-    working_directory: ~/build
-    docker:
-      # specify the version you desire here
-      - image: circleci/ruby:3.0.2-node-browsers
-    environment:
-      - CC_TEST_REPORTER_ID: caf26a895e937974a90860cfadfded20891cfd1373a5aaafb3f67406ab9d433f
-    steps:
-      - attach_workspace:
-          at: ~/build
-      - run:
-          name:  Download cc-test-reporter
-          command: |
-            mkdir -p ~/tmp
-            curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ~/tmp/cc-test-reporter
-            chmod +x ~/tmp/cc-test-reporter
-      - persist_to_workspace:
-          root: ~/tmp
-          paths:
-            - cc-test-reporter
      - run:
          name: Upload coverage results to Code Climate
          command: |
-            ~/tmp/cc-test-reporter sum-coverage --output - codeclimate.*.json |  ~/tmp/cc-test-reporter upload-coverage --debug --input -
-
-workflows:
-  version: 2
-
-  commit:
-    jobs:
-      - build
-      - upload-coverage:
-          requires:
-             - build
-
+            ~/tmp/cc-test-reporter sum-coverage ~/tmp/codeclimate.*.json -p 2 -o ~/tmp/codeclimate.total.json
+            ~/tmp/cc-test-reporter upload-coverage -i ~/tmp/codeclimate.total.json
--- a/.codeclimate.yml
+++ b/.codeclimate.yml
@ -53,6 +53,3 @@ exclude_patterns:
  - 'app/javascript/dashboard/i18n/index.js'
  - 'app/javascript/widget/i18n/index.js'
  - 'app/javascript/survey/i18n/index.js'
-  - 'app/javascript/shared/constants/locales.js'
-  - 'app/javascript/dashboard/helper/specs/macrosFixtures.js'
-  - 'app/javascript/dashboard/routes/dashboard/settings/macros/constants.js'
--- a/.devcontainer/Dockerfile
+++ b/.devcontainer/Dockerfile
@ -5,4 +5,4 @@ FROM ghcr.io/chatwoot/chatwoot_codespace:latest
 # Do the set up required for chatwoot app 
 WORKDIR /workspace
 COPY . /workspace
-RUN yarn && gem install bundler && bundle install
+RUN yarn && gem install bundler && bundle install 
--- a/.devcontainer/Dockerfile.base
+++ b/.devcontainer/Dockerfile.base
@ -1,6 +1,6 @@
-
-ARG VARIANT=ubuntu-20.04
-FROM mcr.microsoft.com/vscode/devcontainers/base:${VARIANT}
+# pre-build stage
+ARG VARIANT=3
+FROM mcr.microsoft.com/vscode/devcontainers/ruby:${VARIANT}

 # Update args in docker-compose.yaml to set the UID/GID of the "vscode" user.
 ARG USER_UID=1000
@ -11,36 +11,23 @@ RUN if [ "$USER_GID" != "1000" ] || [ "$USER_UID" != "1000" ]; then \
        && chmod -R $USER_UID:$USER_GID /home/vscode; \
    fi

+# [Option] Install Node.js
+ARG INSTALL_NODE="true"
+ARG NODE_VERSION="lts/*"
+RUN if [ "${INSTALL_NODE}" = "true" ]; then su vscode -c "source /usr/local/share/nvm/nvm.sh && nvm install ${NODE_VERSION} 2>&1"; fi
+
 RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
  && apt-get -y install --no-install-recommends \
-    build-essential \
    libssl-dev \
-    zlib1g-dev \
-    gnupg2 \
    tar \
    tzdata \
    postgresql-client \
-    libpq-dev \
    yarn \
    git \
    imagemagick \
    tmux \
-    zsh \
-    git-flow \
-    npm
+    zsh

-# Install rbenv and ruby
-ARG RUBY_VERSION="3.0.4"
-RUN git clone https://github.com/rbenv/rbenv.git ~/.rbenv \
-    &&  echo 'export PATH="$HOME/.rbenv/bin:$PATH"' >> ~/.bashrc \
-    &&  echo 'eval "$(rbenv init -)"' >> ~/.bashrc
-ENV PATH "/root/.rbenv/bin/:/root/.rbenv/shims/:$PATH"
-RUN git clone https://github.com/rbenv/ruby-build.git && \
-    PREFIX=/usr/local ./ruby-build/install.sh
-
-RUN rbenv install $RUBY_VERSION && \
-    rbenv global $RUBY_VERSION && \
-    rbenv versions

 # Install overmind
 RUN curl -L https://github.com/DarthSim/overmind/releases/download/v2.1.0/overmind-v2.1.0-linux-amd64.gz > overmind.gz \
@ -48,25 +35,11 @@ RUN curl -L https://github.com/DarthSim/overmind/releases/download/v2.1.0/overmi
  && sudo mv overmind /usr/local/bin \
  && chmod +x /usr/local/bin/overmind 

-
-# Install gh
-RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | sudo dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg \
-   && echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | sudo tee /etc/apt/sources.list.d/github-cli.list > /dev/null \
-   && sudo apt update \
-   && sudo apt install gh
-
-
 # Do the set up required for chatwoot app 
 WORKDIR /workspace
 COPY . /workspace
+RUN yarn

-# set up ruby
 COPY Gemfile Gemfile.lock ./
 RUN gem install bundler && bundle install

-# set up node js
-RUN npm install npm@latest -g && \
-    npm install n -g && \
-    n latest
-RUN npm install --global yarn
-RUN yarn
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@ -23,18 +23,17 @@
  // 5432 postgres
  // 6379 redis
  // 1025,8025 mailhog
-  "forwardPorts": [8025, 3000, 3035],
+  "forwardPorts": [8025],
+  //your application may need to listen on all interfaces (0.0.0.0) not just localhost for it to be available externally. Defaults to []
+  "appPort": [3000, 3035],

  "postCreateCommand": ".devcontainer/scripts/setup.sh && bundle exec rake db:chatwoot_prepare && yarn",
  "portsAttributes": {
    "3000": {
      "label": "Rails Server"
    },
-    "3035": {
-      "label": "Webpack Dev Server"
-    },
    "8025": {
      "label": "Mailhog UI"
    }
-  }
+  },
 }
--- a/.devcontainer/scripts/setup.sh
+++ b/.devcontainer/scripts/setup.sh
@ -6,8 +6,3 @@ sed -i -e "/FRONTEND_URL/ s/=.*/=https:\/\/$CODESPACE_NAME-3000.githubpreview.de
 sed -i -e "/WEBPACKER_DEV_SERVER_PUBLIC/ s/=.*/=https:\/\/$CODESPACE_NAME-3035.githubpreview.dev/" .env
 # uncomment the webpacker env variable
 sed -i -e '/WEBPACKER_DEV_SERVER_PUBLIC/s/^# //' .env
-# fix the error with webpacker
-echo 'export NODE_OPTIONS=--openssl-legacy-provider' >> ~/.zshrc
-
-# codespaces make the ports public
-gh codespace ports visibility 3000:public 3035:public 8025:public -c $CODESPACE_NAME
--- a/.editorconfig
+++ b/.editorconfig
@ -7,8 +7,8 @@ end_of_line = lf
 charset = utf-8
 trim_trailing_whitespace = true
 insert_final_newline = true
-indent_style = space
+indent_style = spaces
 tab_width = 2

-[*.{rb,erb,js,coffee,json,yml,css,scss,sh,markdown,md,html}]
+[{*.{rb,erb,js,coffee,json,yml,css,scss,sh,markdown,md,html}]
 indent_size = 2
--- a/.env.example
+++ b/.env.example
@ -3,8 +3,6 @@ SECRET_KEY_BASE=replace_with_lengthy_secure_hex

 # Replace with the URL you are planning to use for your app
 FRONTEND_URL=http://0.0.0.0:3000
-# To use a dedicated URL for help center pages
-# HELPCENTER_URL=http://0.0.0.0:3000

 # If the variable is set, all non-authenticated pages would fallback to the default locale.
 # Whenever a new account is created, the default language will be DEFAULT_LOCALE instead of en
@ -34,20 +32,12 @@ REDIS_SENTINELS=
 # You can find list of master using "SENTINEL masters" command
 REDIS_SENTINEL_MASTER_NAME=

-# By default Chatwoot will pass REDIS_PASSWORD as the password value for sentinels
-# Use the following environment variable to customize passwords for sentinels. 
-# Use empty string if sentinels are configured with out passwords
-# REDIS_SENTINEL_PASSWORD=
-
 # Redis premium breakage in heroku fix
 # enable the following configuration
 # ref: https://github.com/chatwoot/chatwoot/issues/2420
 # REDIS_OPENSSL_VERIFY_MODE=none

 # Postgres Database config variables
-# You can leave POSTGRES_DATABASE blank. The default name of 
-# the database in the production environment is chatwoot_production
-# POSTGRES_DATABASE=
 POSTGRES_HOST=postgres
 POSTGRES_USERNAME=postgres
 POSTGRES_PASSWORD=
@ -56,14 +46,14 @@ RAILS_MAX_THREADS=5

 # The email from which all outgoing emails are sent
 # could user either  `email@yourdomain.com` or `BrandName <email@yourdomain.com>`
-MAILER_SENDER_EMAIL=Chatwoot <accounts@chatwoot.com>
+MAILER_SENDER_EMAIL="Chatwoot <accounts@chatwoot.com>"
+

 #SMTP domain key is set up for HELO checking
 SMTP_DOMAIN=chatwoot.com
-# Set the value to "mailhog" if using docker-compose for development environments,
+# the default value is set "mailhog" and is used by docker-compose for development environments,
 # Set the value as "localhost" or your SMTP address in other environments
-# If SMTP_ADDRESS is empty, Chatwoot would try to use sendmail(postfix)
-SMTP_ADDRESS=
+SMTP_ADDRESS=mailhog
 SMTP_PORT=1025
 SMTP_USERNAME=
 SMTP_PASSWORD=
@ -103,6 +93,7 @@ AWS_ACCESS_KEY_ID=
 AWS_SECRET_ACCESS_KEY=
 AWS_REGION=

+
 # Log settings
 # Disable if you want to write logs to a file
 RAILS_LOG_TO_STDOUT=true
@ -139,6 +130,7 @@ ANDROID_BUNDLE_ID=com.chatwoot.app
 # https://developers.google.com/android/guides/client-auth (use keytool to print the fingerprint in the first section)
 ANDROID_SHA256_CERT_FINGERPRINT=AC:73:8E:DE:EB:56:EA:CC:10:87:02:A7:65:37:7B:38:D4:5D:D4:53:F8:3B:FB:D3:C6:28:64:1D:AA:08:1E:D8

+
 ### Smart App Banner
 # https://developer.apple.com/library/archive/documentation/AppleApplications/Reference/SafariWebContent/PromotingAppswithAppBanners/PromotingAppswithAppBanners.html
 # You can find your app-id in https://itunesconnect.apple.com
@ -155,12 +147,8 @@ ANDROID_SHA256_CERT_FINGERPRINT=AC:73:8E:DE:EB:56:EA:CC:10:87:02:A7:65:37:7B:38:
 ## Bot Customizations
 USE_INBOX_AVATAR_FOR_BOT=true

-### APM and Error Monitoring configurations
-## Elastic APM
-## https://www.elastic.co/guide/en/apm/agent/ruby/current/getting-started-rails.html
-# ELASTIC_APM_SERVER_URL=
-# ELASTIC_APM_SECRET_TOKEN=

+### APM and Error Monitoring configurations
 ## Sentry
 # SENTRY_DSN=

@ -173,14 +161,13 @@ USE_INBOX_AVATAR_FOR_BOT=true
 ## NewRelic
 # https://docs.newrelic.com/docs/agents/ruby-agent/configuration/ruby-agent-configuration/
 # NEW_RELIC_LICENSE_KEY=
-# Set this to true to allow newrelic apm to send logs.
-# This is turned off by default.
-# NEW_RELIC_APPLICATION_LOGGING_ENABLED=

 ## Datadog
 ## https://github.com/DataDog/dd-trace-rb/blob/master/docs/GettingStarted.md#environment-variables
 # DD_TRACE_AGENT_URL=

+
+
 ## IP look up configuration
 ## ref https://github.com/alexreisner/geocoder/blob/master/README_API_GUIDE.md
 ## works only on accounts with ip look up feature enabled
@ -192,6 +179,7 @@ USE_INBOX_AVATAR_FOR_BOT=true
 ## To prevent and throttle abusive requests
 # ENABLE_RACK_ATTACK=true

+
 ## Running chatwoot as an API only server
 ## setting this value to true will disable the frontend dashboard endpoints
 # CW_API_ONLY_SERVER=false
@ -205,11 +193,3 @@ USE_INBOX_AVATAR_FOR_BOT=true
 # If you want to use official mobile app,
 # the notifications would be relayed via a Chatwoot server
 ENABLE_PUSH_RELAY_SERVER=true
-
-# Stripe API key
-STRIPE_SECRET_KEY=
-STRIPE_WEBHOOK_SECRET=
-
-# Set to true if you want to upload files to cloud storage using the signed url
-# Make sure to follow https://edgeguides.rubyonrails.org/active_storage_overview.html#cross-origin-resource-sharing-cors-configuration on the cloud storage after setting this to true.
-DIRECT_UPLOADS_ENABLED=
--- a/.eslintrc.js
+++ b/.eslintrc.js
@ -1,10 +1,5 @@
 module.exports = {
-  extends: [
-    'airbnb-base/legacy',
-    'prettier',
-    'plugin:vue/recommended',
-    'plugin:storybook/recommended',
-  ],
+  extends: ['airbnb-base/legacy', 'prettier', 'plugin:vue/recommended'],
  parserOptions: {
    parser: 'babel-eslint',
    ecmaVersion: 2020,
@ -24,32 +19,18 @@ module.exports = {
    'jsx-a11y/label-has-for': 'off',
    'jsx-a11y/anchor-is-valid': 'off',
    'import/no-unresolved': 'off',
-    'vue/max-attributes-per-line': [
-      'error',
-      {
-        singleline: 20,
-        multiline: {
-          max: 1,
-          allowFirstLine: false,
-        },
+    'vue/max-attributes-per-line': ['error', {
+      'singleline': 20,
+      'multiline': {
+        'max': 1,
+        'allowFirstLine': false
      },
-    ],
-    'vue/html-self-closing': [
-      'error',
-      {
-        html: {
-          void: 'always',
-          normal: 'always',
-          component: 'always',
-        },
-        svg: 'always',
-        math: 'always',
-      },
-    ],
-    'vue/no-v-html': 'off',
+    }],
+    'vue/html-self-closing': 'off',
+    "vue/no-v-html": 'off',
    'vue/singleline-html-element-content-newline': 'off',
    'import/extensions': ['off'],
-    'no-console': 'error',
+    'no-console': 'error'
  },
  settings: {
    'import/resolver': {
@ -60,10 +41,12 @@ module.exports = {
  },
  env: {
    browser: true,
-    jest: true,
    node: true,
+    jest: true,
+    jasmine: true
  },
  globals: {
+    __WEBPACK_ENV__: true,
    bus: true,
  },
 };
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@ -6,7 +6,6 @@ labels: 'Bug'
 assignees: ''

 ---
-
 **Describe the bug**

 A clear and concise description of what the bug is.
@ -17,11 +16,11 @@ Steps to reproduce the behavior:
 1. Go to '...'
 2. Click on '....'
 3. Scroll down to '....'
-4. See the error
+4. See error

 **Expected behavior**

-Share a clear and concise description of what you expected to happen.
+A clear and concise description of what you expected to happen.

 **Screenshots**

@ -29,50 +28,27 @@ If applicable, add screenshots to help explain your problem.

 **Browser logs**

-Share the browser logs to debug the issue further.
+Share the browser logs to debug the issue further

 **Server logs**

-Share the server logs to debug the issue further.
+Share the server logs to debug the issue further

 **Environment**

-Describe whether you are using Chatwoot Cloud (app.chatwoot.com) or a self-hosted installation of Chatwoot. If you are using a self-hosted installation of Chatwoot, describe the type of deployment (Docker/Linux VM installation/Heroku/Kubernetes/Other).
+Describe whether you are using Chatwoot Cloud (app.chatwoot.com) or a self hosted installation of Chatwoot. If you are using a self hosted installation of Chatwoot describe the type of deployment (Docker/Linux VM installation/Heroku)

- [ ] app.chatwoot.com (Chatwoot Cloud)
- [ ] Self-hosted
- - [ ] Linux VM
- - [ ] Docker
- - [ ] Kubernetes
- - [ ] Heroku
- - [ ] Other (Please specify)
-
-
-**Desktop (please complete the following information)** (If applicable)
- - OS: [e.g. Linux, Windows, MacOS]
- - Browser [e.g. chrome, firefox, safari]
+**Desktop (please complete the following information):**
+ - OS: [e.g. iOS]
+ - Browser [e.g. chrome, safari]
 - Version [e.g. 22]

-**Smartphone (please complete the following information)** (If applicable)
- - Device: [e.g. iPhone6, Pixel7]
+**Smartphone (please complete the following information):**
+ - Device: [e.g. iPhone6]
 - OS: [e.g. iOS8.1]
- - Browser [e.g. stock browser, firefox, safari]
+ - Browser [e.g. stock browser, safari]
 - Version [e.g. 22]

-**Docker** (If applicable)
-
-Please share the output of the following.
- `docker version`
- `docker info`
- `docker-compose version`
-
-**Cloud Provider** (If applicable)
- [ ] AWS
- [ ] GCP
- [ ] Azure
- [ ] DigitalOcean
- [ ] Others
-
 **Additional context**

 Add any other context about the problem here.
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@ -2,7 +2,8 @@

 ## Description

-Please include a summary of the change and issue(s) fixed. Also, mention relevant motivation, context, and any dependencies that this change requires.
+Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change.
+
 Fixes # (issue)

 ## Type of change
@ -11,18 +12,18 @@ Please delete options that are not relevant.

 - [ ] Bug fix (non-breaking change which fixes an issue)
 - [ ] New feature (non-breaking change which adds functionality)
- [ ] Breaking change (fix or feature that would cause existing functionality not to work as expected)
+- [ ] Breaking change (fix or feature that would cause existing functionality to not work as expected)
 - [ ] This change requires a documentation update

 ## How Has This Been Tested?

-Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration.
+Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration


 ## Checklist:

 - [ ] My code follows the style guidelines of this project
- [ ] I have performed a self-review of my code
+- [ ] I have performed a self-review of my own code
 - [ ] I have commented on my code, particularly in hard-to-understand areas
 - [ ] I have made corresponding changes to the documentation
 - [ ] My changes generate no new warnings
--- a/.github/workflows/lock.yml
+++ b/.github/workflows/lock.yml
@ -1,36 +0,0 @@
-# We often have cases where users would comment over stale closed Github Issues.
-# This creates unnecessary noise for the original reporter and makes it harder for triaging.
-# This action locks the closed threads once it is inactive for over a month.
-
-name: 'Lock Threads'
-
-on:
-  schedule:
-    - cron: '0 * * * *'
-  workflow_dispatch:
-
-permissions:
-  issues: write
-  pull-requests: write
-
-concurrency:
-  group: lock
-
-jobs:
-  action:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: dessant/lock-threads@v3
-        with: 
-          issue-inactive-days: '30'
-          issue-lock-reason: 'resolved'
-          issue-comment: >
-            This issue has been automatically locked since there
-            has not been any recent activity after it was closed.
-            Please open a new issue for related bugs.
-          pr-inactive-days: '30'
-          pr-lock-reason: 'resolved'
-          pr-comment: >
-            This pull request has been automatically locked since there
-            has not been any recent activity after it was closed.
-            Please open a new issue for related bugs.
--- a/.github/workflows/nightly_installer.yml
+++ b/.github/workflows/nightly_installer.yml
@ -1,46 +0,0 @@
-# #
-# #
-# # Linux nightly installer action
-# # This action will try to install and setup
-# # chatwoot on an Ubuntu 20.04 machine using
-# # the linux installer script.
-# # 
-# # This is set to run daily at midnight.
-# #
-
-name: Run Linux nightly installer
-on:
-  schedule:
-    - cron: "0 0 * * *"
-  workflow_dispatch:
-
-jobs:
-  nightly:
-    runs-on: ubuntu-20.04
-    steps:
-
-    - name: get installer
-      run: |
-        wget https://get.chatwoot.app/linux/install.sh
-        chmod +x install.sh
-        #fix for postgtres not starting automatically in gh action env
-        sed -i '/function configure_db() {/a sudo service postgresql start' install.sh
-
-    - name: create input file
-      run: |
-        echo "no" > input
-        echo "yes" >> input
-
-    - name: Run the installer
-      run: |
-        sudo ./install.sh --install < input
-
-        #  disabling http verify for now as http 
-        #  access to port 3000 fails in gh action env
-        #    - name: Verify
-        #      if: always()
-        #      run: |
-        #        sudo netstat -ntlp | grep 3000
-        #        sudo systemctl restart chatwoot.target
-        #        curl http://localhost:3000/api
-
--- a/.github/workflows/publish_foss_docker.yml
+++ b/.github/workflows/publish_foss_docker.yml
@ -1,7 +1,7 @@
 # #
 # # This action will publish Chatwoot CE docker image.
 # # This is set to run against merges to develop, master
-# # and when tags are created.
+# # when tags are created.
 # #

 name: Publish Chatwoot CE docker images
@ -20,10 +20,8 @@ jobs:
    env:
      GIT_REF: ${{ github.head_ref || github.ref_name }} # ref_name to get tags/branches
    steps:
-      - name: Checkout
-        uses: actions/checkout@v2
-
-      - name: Set up QEMU
+      -
+        name: Set up QEMU
        uses: docker/setup-qemu-action@v1

      - name: Set up Docker Buildx
@ -34,10 +32,6 @@ jobs:
          rm -rf enterprise
          rm -rf spec/enterprise

-      - name: Set Chatwoot edition
-        run: |
-          echo -en '\nENV CW_EDITION="ce"' >> docker/Dockerfile
-
      - name: set docker tag
        run: |
          echo "DOCKER_TAG=chatwoot/chatwoot:$GIT_REF-ce" >> $GITHUB_ENV
@ -56,8 +50,6 @@ jobs:
      - name: Build and push
        uses: docker/build-push-action@v2
        with:
-          context: .
          file: docker/Dockerfile
-          platforms: linux/amd64
          push: true
          tags: ${{ env.DOCKER_TAG }}
--- a/.github/workflows/run_foss_spec.yml
+++ b/.github/workflows/run_foss_spec.yml
@ -42,12 +42,11 @@ jobs:
    steps:
    - uses: actions/checkout@v3
      with:
-        ref: ${{ github.event.pull_request.head.ref }}
-        repository: ${{ github.event.pull_request.head.repo.full_name }}
+        ref: ${{ github.head_ref }}

    - uses: ruby/setup-ruby@v1
      with:
-        ruby-version: 3.0.4 # Not needed with a .ruby-version file
+        ruby-version: 3.0.2 # Not needed with a .ruby-version file
        bundler-cache: true # runs 'bundle install' and caches installed gems automatically

    - name: yarn
--- a/.gitignore
+++ b/.gitignore
@ -39,6 +39,9 @@ public/packs*
 *.un~
 .jest-cache

+#VS Code files
+.vscode
+
 # ignore jetbrains IDE files
 .idea

@ -59,6 +62,4 @@ package-lock.json
 test/cypress/videos/*

 /config/master.key
-/config/*.enc
-
-.vscode/settings.json
+/config/*.enc
--- a/.rubocop.yml
+++ b/.rubocop.yml
@ -183,5 +183,3 @@ AllCops:
    - db/migrate/20200503151130_add_account_feature_flag.rb
    - db/migrate/20200927135222_add_last_activity_at_to_conversation.rb
    - db/migrate/20210306170117_add_last_activity_at_to_contacts.rb
-    - db/migrate/20220809104508_revert_cascading_indexes.rb
-    
--- a/.ruby-version
+++ b/.ruby-version
@ -1 +1 @@
-3.0.4
+3.0.2
--- a/.storybook/preview.js
+++ b/.storybook/preview.js
@ -4,7 +4,6 @@ import Vuex from 'vuex';
 import VueI18n from 'vue-i18n';
 import Vuelidate from 'vuelidate';
 import Multiselect from 'vue-multiselect';
-import FluentIcon from 'shared/components/FluentIcon/DashboardIcon';

 import WootUiKit from '../app/javascript/dashboard/components';
 import i18n from '../app/javascript/dashboard/i18n';
@ -16,7 +15,6 @@ Vue.use(Vuelidate);
 Vue.use(WootUiKit);
 Vue.use(Vuex);
 Vue.component('multiselect', Multiselect);
-Vue.component('fluent-icon', FluentIcon);

 const store = new Vuex.Store({});
 const i18nConfig = new VueI18n({
--- a/.vscode/extensions.json
+++ b/.vscode/extensions.json
@ -1,32 +0,0 @@
-{
-  "recommendations": [
-    // Spell check
-    "streetsidesoftware.code-spell-checker",
-    // Better Comments
-    "aaron-bond.better-comments",
-    // Rails Test Runner
-    "davidpallinder.rails-test-runner",
-    // Eslint
-    "dbaeumer.vscode-eslint",
-    // Auto Close Tag
-    "formulahendry.auto-close-tag",
-    // Auto Rename Tag
-    "formulahendry.auto-rename-tag",
-    // Hight light colors
-    "naumovs.color-highlight",
-    // GitLens
-    "eamodio.gitlens",
-    // Ruby
-    "rebornix.ruby",
-    // Vue
-    "octref.vetur",
-    // Prettier
-    "esbenp.prettier-vscode",
-    // Dot Env
-    "mikestead.dotenv",
-    // HTML CSS Support
-    "ecmel.vscode-html-css",
-    // Tailwind CSS Intellisense
-    "bradlc.vscode-tailwindcss",
-  ]
-}
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@ -1 +0,0 @@
-{}
--- a/46
+++ b/46
@ -1,10 +1,10 @@
 source 'https://rubygems.org'

-ruby '3.0.4'
+ruby '3.0.2'

 ##-- base gems for rails --##
 gem 'rack-cors', require: 'rack/cors'
-gem 'rails', '~> 6.1', '>= 6.1.6.1'
+gem 'rails'
 # Reduces boot times through caching; required in config/boot.rb
 gem 'bootsnap', require: false

@ -56,7 +56,7 @@ gem 'activerecord-import'
 gem 'dotenv-rails'
 gem 'foreman'
 gem 'puma'
-gem 'webpacker', '~> 5.4', '>= 5.4.3'
+gem 'webpacker', '~> 5.x'
 # metrics on heroku
 gem 'barnes'

@ -78,7 +78,7 @@ gem 'wisper', '2.0.0'
 # TODO: bump up gem to 2.0
 gem 'facebook-messenger'
 gem 'line-bot-api'
-gem 'twilio-ruby', '~> 5.66'
+gem 'twilio-ruby', '~> 5.32.0'
 # twitty will handle subscription of twitter account events
 # gem 'twitty', git: 'https://github.com/chatwoot/twitty'
 gem 'twitty'
@ -89,19 +89,22 @@ gem 'slack-ruby-client'
 # for dialogflow integrations
 gem 'google-cloud-dialogflow'

+##--- gems for debugging and error reporting ---##
+# static analysis
+gem 'brakeman'
+
 ##-- apm and error monitoring ---#
 gem 'ddtrace'
-gem 'elastic-apm'
 gem 'newrelic_rpm'
 gem 'scout_apm'
-gem 'sentry-rails', '~> 5.3', '>= 5.3.1'
-gem 'sentry-ruby', '~> 5.3'
-gem 'sentry-sidekiq', '~> 5.3'
+gem 'sentry-rails'
+gem 'sentry-ruby'
+gem 'sentry-sidekiq'

 ##-- background job processing --##
 gem 'sidekiq', '~> 6.4.0'
 # We want cron jobs
-gem 'sidekiq-cron', '~> 1.3'
+gem 'sidekiq-cron'

 ##-- Push notification service --##
 gem 'fcm'
@ -122,19 +125,6 @@ gem 'procore-sift'
 gem 'email_reply_trimmer'
 gem 'html2text'

-# to calculate working hours
-gem 'working_hours'
-
-# full text search for articles
-gem 'pg_search'
-
-# Subscriptions, Billing
-gem 'stripe'
-
-## - helper gems --##
-## to populate db with sample data
-gem 'faker'
-
 group :production, :staging do
  # we dont want request timing out in development while using byebug
  gem 'rack-timeout'
@ -163,19 +153,21 @@ group :test do
 end

 group :development, :test do
+  # TODO: is this needed ?
+  # errors thrown by devise password gem
+  gem 'flay'
+  gem 'rspec'
+  # for error thrown by devise password gem
  gem 'active_record_query_trace'
-  ##--- gems for debugging and error reporting ---##
-  # static analysis
-  gem 'brakeman'
  gem 'bundle-audit', require: false
  gem 'byebug', platform: :mri
  gem 'climate_control'
  gem 'factory_bot_rails'
+  gem 'faker'
  gem 'listen'
  gem 'mock_redis'
  gem 'pry-rails'
-  gem 'rspec_junit_formatter'
-  gem 'rspec-rails', '~> 5.0.3'
+  gem 'rspec-rails', '~> 5.0.0'
  gem 'rubocop', require: false
  gem 'rubocop-performance', require: false
  gem 'rubocop-rails', require: false
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -1,6 +1,6 @@
 GIT
  remote: https://github.com/chatwoot/devise-secure_password
-  revision: d777b04f12652d576b1272b8f39857e3e0b3fc26
+  revision: de11e8765654b8242d42101ee9c8ffc8126f7975
  specs:
    devise-secure_password (2.0.1)
      devise (>= 4.0.0, < 5.0.0)
@ -9,63 +9,63 @@ GIT
 GEM
  remote: https://rubygems.org/
  specs:
-    actioncable (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actioncable (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      nio4r (~> 2.0)
      websocket-driver (>= 0.6.1)
-    actionmailbox (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      activejob (= 6.1.6.1)
-      activerecord (= 6.1.6.1)
-      activestorage (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actionmailbox (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      activejob (= 6.1.4.7)
+      activerecord (= 6.1.4.7)
+      activestorage (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      mail (>= 2.7.1)
-    actionmailer (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      actionview (= 6.1.6.1)
-      activejob (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actionmailer (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      actionview (= 6.1.4.7)
+      activejob (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      mail (~> 2.5, >= 2.5.4)
      rails-dom-testing (~> 2.0)
-    actionpack (6.1.6.1)
-      actionview (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actionpack (6.1.4.7)
+      actionview (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      rack (~> 2.0, >= 2.0.9)
      rack-test (>= 0.6.3)
      rails-dom-testing (~> 2.0)
      rails-html-sanitizer (~> 1.0, >= 1.2.0)
-    actiontext (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      activerecord (= 6.1.6.1)
-      activestorage (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actiontext (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      activerecord (= 6.1.4.7)
+      activestorage (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      nokogiri (>= 1.8.5)
-    actionview (6.1.6.1)
-      activesupport (= 6.1.6.1)
+    actionview (6.1.4.7)
+      activesupport (= 6.1.4.7)
      builder (~> 3.1)
      erubi (~> 1.4)
      rails-dom-testing (~> 2.0)
      rails-html-sanitizer (~> 1.1, >= 1.2.0)
    active_record_query_trace (1.8)
-    activejob (6.1.6.1)
-      activesupport (= 6.1.6.1)
+    activejob (6.1.4.7)
+      activesupport (= 6.1.4.7)
      globalid (>= 0.3.6)
-    activemodel (6.1.6.1)
-      activesupport (= 6.1.6.1)
-    activerecord (6.1.6.1)
-      activemodel (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
-    activerecord-import (1.4.0)
+    activemodel (6.1.4.7)
+      activesupport (= 6.1.4.7)
+    activerecord (6.1.4.7)
+      activemodel (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
+    activerecord-import (1.3.0)
      activerecord (>= 4.2)
-    activestorage (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      activejob (= 6.1.6.1)
-      activerecord (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
-      marcel (~> 1.0)
+    activestorage (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      activejob (= 6.1.4.7)
+      activerecord (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
+      marcel (~> 1.0.0)
      mini_mime (>= 1.1.0)
-    activesupport (6.1.6.1)
+    activesupport (6.1.4.7)
      concurrent-ruby (~> 1.0, >= 1.0.2)
      i18n (>= 1.6, < 2)
      minitest (>= 5.1)
@ -91,20 +91,20 @@ GEM
    ast (2.4.2)
    attr_extras (6.2.5)
    aws-eventstream (1.2.0)
-    aws-partitions (1.605.0)
-    aws-sdk-core (3.131.2)
+    aws-partitions (1.556.0)
+    aws-sdk-core (3.126.2)
      aws-eventstream (~> 1, >= 1.0.2)
      aws-partitions (~> 1, >= 1.525.0)
      aws-sigv4 (~> 1.1)
-      jmespath (~> 1, >= 1.6.1)
-    aws-sdk-kms (1.57.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
+      jmespath (~> 1.0)
+    aws-sdk-kms (1.54.0)
+      aws-sdk-core (~> 3, >= 3.126.0)
      aws-sigv4 (~> 1.1)
-    aws-sdk-s3 (1.114.0)
-      aws-sdk-core (~> 3, >= 3.127.0)
+    aws-sdk-s3 (1.112.0)
+      aws-sdk-core (~> 3, >= 3.126.0)
      aws-sdk-kms (~> 1)
      aws-sigv4 (~> 1.4)
-    aws-sigv4 (1.5.0)
+    aws-sigv4 (1.4.0)
      aws-eventstream (~> 1, >= 1.0.2)
    azure-storage-blob (2.0.3)
      azure-storage-common (~> 2.0)
@ -117,31 +117,31 @@ GEM
    barnes (0.0.9)
      multi_json (~> 1)
      statsd-ruby (~> 1.1)
-    bcrypt (3.1.18)
+    bcrypt (3.1.16)
    bindex (0.8.1)
-    bootsnap (1.12.0)
+    bootsnap (1.10.3)
      msgpack (~> 1.2)
-    brakeman (5.2.3)
+    brakeman (5.2.1)
    browser (5.3.1)
    builder (3.2.4)
-    bullet (7.0.2)
+    bullet (7.0.1)
      activesupport (>= 3.0.0)
      uniform_notifier (~> 1.11)
    bundle-audit (0.1.0)
      bundler-audit
-    bundler-audit (0.9.1)
+    bundler-audit (0.9.0.1)
      bundler (>= 1.2.0, < 3)
      thor (~> 1.0)
    byebug (11.1.3)
-    climate_control (1.1.1)
+    climate_control (1.0.1)
    coderay (1.1.3)
-    commonmarker (0.23.6)
-    concurrent-ruby (1.1.10)
+    commonmarker (0.23.4)
+    concurrent-ruby (1.1.9)
    connection_pool (2.2.5)
    crack (0.4.5)
      rexml
    crass (1.0.6)
-    cypress-on-rails (1.13.1)
+    cypress-on-rails (1.12.1)
      rack
    database_cleaner (2.0.1)
      database_cleaner-active_record (~> 2.0.0)
@ -151,12 +151,10 @@ GEM
    database_cleaner-core (2.0.1)
    datetime_picker_rails (0.0.7)
      momentjs-rails (>= 2.8.1)
-    ddtrace (1.2.0)
-      debase-ruby_core_source (= 0.10.16)
-      libddprof (~> 0.6.0.1.0)
-      libddwaf (~> 1.3.0.2.0)
+    ddtrace (0.54.2)
+      debase-ruby_core_source (<= 0.10.14)
      msgpack
-    debase-ruby_core_source (0.10.16)
+    debase-ruby_core_source (0.10.14)
    declarative (0.0.20)
    devise (4.8.1)
      bcrypt (~> 3.0)
@ -178,78 +176,54 @@ GEM
    dotenv-rails (2.7.6)
      dotenv (= 2.7.6)
      railties (>= 3.2)
-    down (5.3.1)
+    down (5.3.0)
      addressable (~> 2.8)
    ecma-re-validator (0.4.0)
      regexp_parser (~> 2.2)
-    elastic-apm (4.5.1)
-      concurrent-ruby (~> 1.0)
-      http (>= 3.0)
    email_reply_trimmer (0.1.13)
    erubi (1.10.0)
-    et-orbi (1.2.7)
+    erubis (2.7.0)
+    et-orbi (1.2.6)
      tzinfo
    execjs (2.8.1)
    facebook-messenger (2.0.1)
      httparty (~> 0.13, >= 0.13.7)
      rack (>= 1.4.5)
-    factory_bot (6.2.1)
+    factory_bot (6.2.0)
      activesupport (>= 5.0.0)
    factory_bot_rails (6.2.0)
      factory_bot (~> 6.2.0)
      railties (>= 5.0.0)
-    faker (2.21.0)
-      i18n (>= 1.8.11, < 2)
-    faraday (1.10.0)
-      faraday-em_http (~> 1.0)
-      faraday-em_synchrony (~> 1.0)
-      faraday-excon (~> 1.1)
-      faraday-httpclient (~> 1.0)
-      faraday-multipart (~> 1.0)
-      faraday-net_http (~> 1.0)
-      faraday-net_http_persistent (~> 1.0)
-      faraday-patron (~> 1.0)
-      faraday-rack (~> 1.0)
-      faraday-retry (~> 1.0)
-      ruby2_keywords (>= 0.0.4)
-    faraday-em_http (1.0.0)
-    faraday-em_synchrony (1.0.0)
-    faraday-excon (1.1.0)
-    faraday-httpclient (1.0.1)
-    faraday-multipart (1.0.4)
-      multipart-post (~> 2)
-    faraday-net_http (1.0.1)
-    faraday-net_http_persistent (1.2.0)
-    faraday-patron (1.0.0)
-    faraday-rack (1.0.0)
-    faraday-retry (1.0.3)
+    faker (2.19.0)
+      i18n (>= 1.6, < 2)
+    faraday (1.0.1)
+      multipart-post (>= 1.2, < 3)
    faraday_middleware (1.2.0)
      faraday (~> 1.0)
-    fcm (1.0.8)
-      faraday (>= 1.0.0, < 3.0)
-      googleauth (~> 1)
+    fcm (1.0.5)
+      faraday (~> 1)
    ffi (1.15.5)
-    ffi-compiler (1.0.1)
-      ffi (>= 1.0.0)
-      rake
    flag_shih_tzu (0.3.23)
+    flay (2.12.1)
+      erubis (~> 2.7.0)
+      path_expander (~> 1.0)
+      ruby_parser (~> 3.0)
+      sexp_processor (~> 4.0)
    foreman (0.87.2)
-    fugit (1.5.3)
-      et-orbi (~> 1, >= 1.2.7)
+    fugit (1.5.2)
+      et-orbi (~> 1.1, >= 1.1.8)
      raabro (~> 1.4)
-    gapic-common (0.10.0)
-      faraday (>= 1.9, < 3.a)
-      faraday-retry (>= 1.0, < 3.a)
-      google-protobuf (~> 3.14)
-      googleapis-common-protos (>= 1.3.12, < 2.a)
-      googleapis-common-protos-types (>= 1.3.1, < 2.a)
-      googleauth (~> 1.0)
-      grpc (~> 1.36)
-    geocoder (1.8.0)
+    gapic-common (0.3.4)
+      google-protobuf (~> 3.12, >= 3.12.2)
+      googleapis-common-protos (>= 1.3.9, < 2.0)
+      googleapis-common-protos-types (>= 1.0.4, < 2.0)
+      googleauth (~> 0.9)
+      grpc (~> 1.25)
+    geocoder (1.7.3)
    gli (2.21.0)
    globalid (1.0.0)
      activesupport (>= 5.0)
-    google-apis-core (0.7.0)
+    google-apis-core (0.4.2)
      addressable (~> 2.5, >= 2.5.1)
      googleauth (>= 0.16.2, < 2.a)
      httpclient (>= 2.8.1, < 3.a)
@ -258,27 +232,23 @@ GEM
      retriable (>= 2.0, < 4.a)
      rexml
      webrick
-    google-apis-iamcredentials_v1 (0.13.0)
-      google-apis-core (>= 0.7, < 2.a)
-    google-apis-storage_v1 (0.18.0)
-      google-apis-core (>= 0.7, < 2.a)
+    google-apis-iamcredentials_v1 (0.10.0)
+      google-apis-core (>= 0.4, < 2.a)
+    google-apis-storage_v1 (0.11.0)
+      google-apis-core (>= 0.4, < 2.a)
    google-cloud-core (1.6.0)
      google-cloud-env (~> 1.0)
      google-cloud-errors (~> 1.0)
-    google-cloud-dialogflow (1.5.0)
-      google-cloud-core (~> 1.6)
-      google-cloud-dialogflow-v2 (>= 0.15, < 2.a)
-    google-cloud-dialogflow-v2 (0.17.0)
-      gapic-common (>= 0.10, < 2.a)
+    google-cloud-dialogflow (1.2.0)
+      google-cloud-core (~> 1.5)
+      google-cloud-dialogflow-v2 (~> 0.1)
+    google-cloud-dialogflow-v2 (0.6.4)
+      gapic-common (~> 0.3)
      google-cloud-errors (~> 1.0)
-      google-cloud-location (>= 0.0, < 2.a)
-    google-cloud-env (1.6.0)
-      faraday (>= 0.17.3, < 3.0)
+    google-cloud-env (1.5.0)
+      faraday (>= 0.17.3, < 2.0)
    google-cloud-errors (1.2.0)
-    google-cloud-location (0.2.0)
-      gapic-common (>= 0.10, < 2.a)
-      google-cloud-errors (~> 1.0)
-    google-cloud-storage (1.37.0)
+    google-cloud-storage (1.36.1)
      addressable (~> 2.8)
      digest-crc (~> 0.4)
      google-apis-iamcredentials_v1 (~> 0.1)
@ -286,32 +256,32 @@ GEM
      google-cloud-core (~> 1.6)
      googleauth (>= 0.16.2, < 2.a)
      mini_mime (~> 1.0)
-    google-protobuf (3.21.7)
-    google-protobuf (3.21.7-x86_64-darwin)
-    google-protobuf (3.21.7-x86_64-linux)
+    google-protobuf (3.19.4)
+    google-protobuf (3.19.4-x86_64-darwin)
+    google-protobuf (3.19.4-x86_64-linux)
    googleapis-common-protos (1.3.12)
      google-protobuf (~> 3.14)
      googleapis-common-protos-types (~> 1.2)
      grpc (~> 1.27)
-    googleapis-common-protos-types (1.3.2)
+    googleapis-common-protos-types (1.3.0)
      google-protobuf (~> 3.14)
-    googleauth (1.2.0)
-      faraday (>= 0.17.3, < 3.a)
+    googleauth (0.17.1)
+      faraday (>= 0.17.3, < 2.0)
      jwt (>= 1.4, < 3.0)
      memoist (~> 0.16)
      multi_json (~> 1.11)
      os (>= 0.9, < 2.0)
-      signet (>= 0.16, < 2.a)
-    groupdate (6.1.0)
+      signet (~> 0.15)
+    groupdate (6.0.1)
      activesupport (>= 5.2)
-    grpc (1.47.0)
-      google-protobuf (~> 3.19)
+    grpc (1.43.1)
+      google-protobuf (~> 3.18)
      googleapis-common-protos-types (~> 1.0)
-    grpc (1.47.0-x86_64-darwin)
-      google-protobuf (~> 3.19)
+    grpc (1.43.1-universal-darwin)
+      google-protobuf (~> 3.18)
      googleapis-common-protos-types (~> 1.0)
-    grpc (1.47.0-x86_64-linux)
-      google-protobuf (~> 3.19)
+    grpc (1.43.1-x86_64-linux)
+      google-protobuf (~> 3.18)
      googleapis-common-protos-types (~> 1.0)
    haikunator (1.1.1)
    hairtrigger (0.2.25)
@ -324,20 +294,14 @@ GEM
    hkdf (0.3.0)
    html2text (0.2.1)
      nokogiri (~> 1.6)
-    http (5.1.0)
-      addressable (~> 2.8)
-      http-cookie (~> 1.0)
-      http-form_data (~> 2.2)
-      llhttp-ffi (~> 0.4.0)
    http-accept (1.7.0)
-    http-cookie (1.0.5)
+    http-cookie (1.0.4)
      domain_name (~> 0.5)
-    http-form_data (2.3.0)
    httparty (0.20.0)
      mime-types (~> 3.0)
      multi_xml (>= 0.5.2)
    httpclient (2.8.3)
-    i18n (1.11.0)
+    i18n (1.10.0)
      concurrent-ruby (~> 1.0)
    image_processing (1.12.2)
      mini_magick (>= 4.9.5, < 5)
@ -345,20 +309,20 @@ GEM
    jbuilder (2.11.5)
      actionview (>= 5.0.0)
      activesupport (>= 5.0.0)
-    jmespath (1.6.1)
-    jquery-rails (4.5.0)
+    jmespath (1.6.0)
+    jquery-rails (4.4.0)
      rails-dom-testing (>= 1, < 3)
      railties (>= 4.2.0)
      thor (>= 0.14, < 2.0)
-    json (2.6.2)
+    json (2.6.1)
    json_refs (0.1.7)
      hana
-    json_schemer (0.2.21)
+    json_schemer (0.2.19)
      ecma-re-validator (~> 0.3)
      hana (~> 1.3)
      regexp_parser (~> 2.0)
      uri_template (~> 0.7)
-    jwt (2.4.1)
+    jwt (2.3.0)
    kaminari (1.2.2)
      activesupport (>= 4.1.0)
      kaminari-actionview (= 1.2.2)
@ -371,34 +335,21 @@ GEM
      activerecord
      kaminari-core (= 1.2.2)
    kaminari-core (1.2.2)
-    koala (3.2.0)
+    koala (3.1.0)
      addressable
      faraday (< 2)
      json (>= 1.8)
      rexml
    launchy (2.5.0)
      addressable (~> 2.7)
-    letter_opener (1.8.1)
-      launchy (>= 2.2, < 3)
-    libddprof (0.6.0.1.0)
-    libddprof (0.6.0.1.0-x86_64-linux)
-    libddwaf (1.3.0.2.0)
-      ffi (~> 1.0)
-    libddwaf (1.3.0.2.0-arm64-darwin)
-      ffi (~> 1.0)
-    libddwaf (1.3.0.2.0-x86_64-darwin)
-      ffi (~> 1.0)
-    libddwaf (1.3.0.2.0-x86_64-linux)
-      ffi (~> 1.0)
-    line-bot-api (1.25.0)
-    liquid (5.3.0)
+    letter_opener (1.7.0)
+      launchy (~> 2.2)
+    line-bot-api (1.23.0)
+    liquid (5.1.0)
    listen (3.7.1)
      rb-fsevent (~> 0.10, >= 0.10.3)
      rb-inotify (~> 0.9, >= 0.9.10)
-    llhttp-ffi (0.4.0)
-      ffi-compiler (~> 1.0)
-      rake (~> 13.0)
-    loofah (2.19.1)
+    loofah (2.14.0)
      crass (~> 1.0.2)
      nokogiri (>= 1.5.9)
    mail (2.7.1)
@ -413,39 +364,37 @@ GEM
    mini_magick (4.11.0)
    mini_mime (1.1.2)
    mini_portile2 (2.8.0)
-    minitest (5.16.2)
-    mock_redis (0.32.0)
+    minitest (5.15.0)
+    mock_redis (0.30.0)
      ruby2_keywords
    momentjs-rails (2.29.1.1)
      railties (>= 3.1)
-    msgpack (1.5.3)
+    msgpack (1.4.5)
    multi_json (1.15.0)
    multi_xml (0.6.0)
-    multipart-post (2.2.3)
+    multipart-post (2.1.1)
    net-http-persistent (4.0.1)
      connection_pool (~> 2.2)
    netrc (0.11.0)
-    newrelic_rpm (8.9.0)
+    newrelic_rpm (8.4.0)
    nio4r (2.5.8)
-    nokogiri (1.13.10)
+    nokogiri (1.13.3)
      mini_portile2 (~> 2.8.0)
      racc (~> 1.4)
-    nokogiri (1.13.10-arm64-darwin)
+    nokogiri (1.13.3-arm64-darwin)
      racc (~> 1.4)
-    nokogiri (1.13.10-x86_64-darwin)
+    nokogiri (1.13.3-x86_64-darwin)
      racc (~> 1.4)
-    nokogiri (1.13.10-x86_64-linux)
+    nokogiri (1.13.3-x86_64-linux)
      racc (~> 1.4)
-    oauth (0.5.10)
+    oauth (0.5.8)
    orm_adapter (0.5.0)
    os (1.1.4)
-    parallel (1.22.1)
-    parser (3.1.2.0)
+    parallel (1.21.0)
+    parser (3.1.1.0)
      ast (~> 2.4.1)
-    pg (1.4.1)
-    pg_search (2.3.6)
-      activerecord (>= 5.2)
-      activesupport (>= 5.2)
+    path_expander (1.1.0)
+    pg (1.3.2)
    procore-sift (0.16.0)
      rails (> 4.2.0)
    pry (0.14.1)
@ -453,59 +402,59 @@ GEM
      method_source (~> 1.0)
    pry-rails (0.3.9)
      pry (>= 0.10.4)
-    public_suffix (4.0.7)
+    public_suffix (4.0.6)
    puma (5.6.4)
      nio4r (~> 2.0)
    pundit (2.2.0)
      activesupport (>= 3.0.0)
    raabro (1.4.0)
-    racc (1.6.1)
-    rack (2.2.4)
-    rack-attack (6.6.1)
+    racc (1.6.0)
+    rack (2.2.3)
+    rack-attack (6.6.0)
      rack (>= 1.0, < 3)
    rack-cors (1.1.1)
      rack (>= 2.0.0)
    rack-proxy (0.7.2)
      rack
-    rack-test (2.0.2)
-      rack (>= 1.3)
-    rack-timeout (0.6.3)
-    rails (6.1.6.1)
-      actioncable (= 6.1.6.1)
-      actionmailbox (= 6.1.6.1)
-      actionmailer (= 6.1.6.1)
-      actionpack (= 6.1.6.1)
-      actiontext (= 6.1.6.1)
-      actionview (= 6.1.6.1)
-      activejob (= 6.1.6.1)
-      activemodel (= 6.1.6.1)
-      activerecord (= 6.1.6.1)
-      activestorage (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    rack-test (1.1.0)
+      rack (>= 1.0, < 3)
+    rack-timeout (0.6.0)
+    rails (6.1.4.7)
+      actioncable (= 6.1.4.7)
+      actionmailbox (= 6.1.4.7)
+      actionmailer (= 6.1.4.7)
+      actionpack (= 6.1.4.7)
+      actiontext (= 6.1.4.7)
+      actionview (= 6.1.4.7)
+      activejob (= 6.1.4.7)
+      activemodel (= 6.1.4.7)
+      activerecord (= 6.1.4.7)
+      activestorage (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      bundler (>= 1.15.0)
-      railties (= 6.1.6.1)
+      railties (= 6.1.4.7)
      sprockets-rails (>= 2.0.0)
    rails-dom-testing (2.0.3)
      activesupport (>= 4.2.0)
      nokogiri (>= 1.6)
-    rails-html-sanitizer (1.4.4)
-      loofah (~> 2.19, >= 2.19.1)
-    railties (6.1.6.1)
-      actionpack (= 6.1.6.1)
-      activesupport (= 6.1.6.1)
+    rails-html-sanitizer (1.4.2)
+      loofah (~> 2.3)
+    railties (6.1.4.7)
+      actionpack (= 6.1.4.7)
+      activesupport (= 6.1.4.7)
      method_source
-      rake (>= 12.2)
+      rake (>= 0.13)
      thor (~> 1.0)
    rainbow (3.1.1)
    rake (13.0.6)
    rb-fsevent (0.11.1)
    rb-inotify (0.10.1)
      ffi (~> 1.0)
-    redis (4.7.1)
-    redis-namespace (1.8.2)
+    redis (4.6.0)
+    redis-namespace (1.8.1)
      redis (>= 3.0.4)
-    regexp_parser (2.5.0)
-    representable (3.2.0)
+    regexp_parser (2.2.1)
+    representable (3.1.1)
      declarative (< 0.1.0)
      trailblazer-option (>= 0.1.1, < 0.2.0)
      uber (< 0.2.0)
@ -519,12 +468,16 @@ GEM
      netrc (~> 0.8)
    retriable (3.1.2)
    rexml (3.2.5)
+    rspec (3.11.0)
+      rspec-core (~> 3.11.0)
+      rspec-expectations (~> 3.11.0)
+      rspec-mocks (~> 3.11.0)
    rspec-core (3.11.0)
      rspec-support (~> 3.11.0)
    rspec-expectations (3.11.0)
      diff-lcs (>= 1.2.0, < 2.0)
      rspec-support (~> 3.11.0)
-    rspec-mocks (3.11.1)
+    rspec-mocks (3.11.0)
      diff-lcs (>= 1.2.0, < 2.0)
      rspec-support (~> 3.11.0)
    rspec-rails (5.0.3)
@ -536,29 +489,26 @@ GEM
      rspec-mocks (~> 3.10)
      rspec-support (~> 3.10)
    rspec-support (3.11.0)
-    rspec_junit_formatter (0.6.0)
-      rspec-core (>= 2, < 4, != 2.12.0)
-    rubocop (1.31.2)
-      json (~> 2.3)
+    rubocop (1.25.1)
      parallel (~> 1.10)
      parser (>= 3.1.0.0)
      rainbow (>= 2.2.2, < 4.0)
      regexp_parser (>= 1.8, < 3.0)
-      rexml (>= 3.2.5, < 4.0)
-      rubocop-ast (>= 1.18.0, < 2.0)
+      rexml
+      rubocop-ast (>= 1.15.1, < 2.0)
      ruby-progressbar (~> 1.7)
      unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.19.1)
+    rubocop-ast (1.16.0)
      parser (>= 3.1.1.0)
-    rubocop-performance (1.14.2)
+    rubocop-performance (1.13.2)
      rubocop (>= 1.7.0, < 2.0)
      rubocop-ast (>= 0.4.0)
-    rubocop-rails (2.15.2)
+    rubocop-rails (2.13.2)
      activesupport (>= 4.2.0)
      rack (>= 1.1)
      rubocop (>= 1.7.0, < 2.0)
-    rubocop-rspec (2.12.1)
-      rubocop (~> 1.31)
+    rubocop-rspec (2.8.0)
+      rubocop (~> 1.19)
    ruby-progressbar (1.11.0)
    ruby-vips (2.1.4)
      ffi (~> 1.12)
@ -566,7 +516,7 @@ GEM
    ruby2ruby (2.4.4)
      ruby_parser (~> 3.1)
      sexp_processor (~> 4.6)
-    ruby_parser (3.19.1)
+    ruby_parser (3.18.1)
      sexp_processor (~> 4.16)
    sassc (2.4.0)
      ffi (~> 1.9)
@ -576,37 +526,37 @@ GEM
      sprockets (> 3.0)
      sprockets-rails
      tilt
-    scout_apm (5.2.0)
+    scout_apm (5.1.1)
      parser
    seed_dump (3.3.1)
      activerecord (>= 4)
      activesupport (>= 4)
    selectize-rails (0.12.6)
    semantic_range (3.0.0)
-    sentry-rails (5.3.1)
+    sentry-rails (5.1.0)
      railties (>= 5.0)
-      sentry-ruby-core (~> 5.3.1)
-    sentry-ruby (5.3.1)
+      sentry-ruby-core (~> 5.1.0)
+    sentry-ruby (5.1.0)
      concurrent-ruby (~> 1.0, >= 1.0.2)
-      sentry-ruby-core (= 5.3.1)
-    sentry-ruby-core (5.3.1)
+      sentry-ruby-core (= 5.1.0)
+    sentry-ruby-core (5.1.0)
      concurrent-ruby
-    sentry-sidekiq (5.3.1)
-      sentry-ruby-core (~> 5.3.1)
+    sentry-sidekiq (5.1.0)
+      sentry-ruby-core (~> 5.1.0)
      sidekiq (>= 3.0)
-    sexp_processor (4.16.1)
+    sexp_processor (4.16.0)
    shoulda-matchers (5.1.0)
      activesupport (>= 5.2.0)
-    sidekiq (6.4.2)
+    sidekiq (6.4.1)
      connection_pool (>= 2.2.2)
      rack (~> 2.0)
      redis (>= 4.2.0)
-    sidekiq-cron (1.6.0)
-      fugit (~> 1)
+    sidekiq-cron (1.2.0)
+      fugit (~> 1.1)
      sidekiq (>= 4.2.1)
-    signet (0.17.0)
+    signet (0.16.0)
      addressable (~> 2.8)
-      faraday (>= 0.17.5, < 3.a)
+      faraday (>= 0.17.3, < 2.0)
      jwt (>= 1.5, < 3.0)
      multi_json (~> 1.10)
    simplecov (0.17.1)
@ -624,7 +574,7 @@ GEM
    spring-watcher-listen (2.0.1)
      listen (>= 2.7, < 4.0)
      spring (>= 1.2, < 3.0)
-    sprockets (4.1.1)
+    sprockets (4.0.3)
      concurrent-ruby (~> 1.0)
      rack (> 1, < 3)
    sprockets-rails (3.4.2)
@ -633,32 +583,31 @@ GEM
      sprockets (>= 3.0.0)
    squasher (0.6.2)
    statsd-ruby (1.5.0)
-    stripe (6.5.0)
-    telephone_number (1.4.16)
+    telephone_number (1.4.13)
    thor (1.2.1)
    tilt (2.0.10)
    time_diff (0.3.0)
      activesupport
      i18n
    trailblazer-option (0.1.2)
-    twilio-ruby (5.68.0)
-      faraday (>= 0.9, < 3.0)
+    twilio-ruby (5.32.0)
+      faraday (~> 1.0.0)
      jwt (>= 1.5, <= 2.5)
      nokogiri (>= 1.6, < 2.0)
    twitty (0.1.4)
      oauth
    tzinfo (2.0.4)
      concurrent-ruby (~> 1.0)
-    tzinfo-data (1.2022.1)
+    tzinfo-data (1.2021.5)
      tzinfo (>= 1.0.0)
    uber (0.1.0)
    uglifier (4.2.0)
      execjs (>= 0.3.0, < 3)
    unf (0.1.4)
      unf_ext
-    unf_ext (0.0.8.2)
-    unicode-display_width (2.2.0)
-    uniform_notifier (1.16.0)
+    unf_ext (0.0.8)
+    unicode-display_width (2.1.0)
+    uniform_notifier (1.14.2)
    uri_template (0.7.0)
    valid_email2 (4.0.3)
      activemodel (>= 3.2)
@ -687,10 +636,7 @@ GEM
      websocket-extensions (>= 0.1.0)
    websocket-extensions (0.1.5)
    wisper (2.0.0)
-    working_hours (1.4.1)
-      activesupport (>= 3.2)
-      tzinfo
-    zeitwerk (2.6.0)
+    zeitwerk (2.5.4)

 PLATFORMS
  arm64-darwin-20
@ -726,13 +672,13 @@ DEPENDENCIES
  devise_token_auth
  dotenv-rails
  down (~> 5.0)
-  elastic-apm
  email_reply_trimmer
  facebook-messenger
  factory_bot_rails
  faker
  fcm
  flag_shih_tzu
+  flay
  foreman
  geocoder
  google-cloud-dialogflow
@ -757,7 +703,6 @@ DEPENDENCIES
  mock_redis
  newrelic_rpm
  pg
-  pg_search
  procore-sift
  pry-rails
  puma
@ -765,47 +710,45 @@ DEPENDENCIES
  rack-attack
  rack-cors
  rack-timeout
-  rails (~> 6.1, >= 6.1.6.1)
+  rails
  redis
  redis-namespace
  responders
  rest-client
-  rspec-rails (~> 5.0.3)
-  rspec_junit_formatter
+  rspec
+  rspec-rails (~> 5.0.0)
  rubocop
  rubocop-performance
  rubocop-rails
  rubocop-rspec
  scout_apm
  seed_dump
-  sentry-rails (~> 5.3, >= 5.3.1)
-  sentry-ruby (~> 5.3)
-  sentry-sidekiq (~> 5.3)
+  sentry-rails
+  sentry-ruby
+  sentry-sidekiq
  shoulda-matchers
  sidekiq (~> 6.4.0)
-  sidekiq-cron (~> 1.3)
+  sidekiq-cron
  simplecov (= 0.17.1)
  slack-ruby-client
  spring
  spring-watcher-listen
  squasher
-  stripe
  telephone_number
  time_diff
-  twilio-ruby (~> 5.66)
+  twilio-ruby (~> 5.32.0)
  twitty
  tzinfo-data
  uglifier
  valid_email2
  web-console
  webmock
-  webpacker (~> 5.4, >= 5.4.3)
+  webpacker (~> 5.x)
  webpush
  wisper (= 2.0.0)
-  working_hours

 RUBY VERSION
-   ruby 3.0.4p208
+   ruby 3.0.2p107

 BUNDLED WITH
-   2.3.16
+   2.3.8
--- a/README.md
+++ b/README.md
@ -16,7 +16,7 @@
 ___

 <p align="center">
-  <a href="https://codeclimate.com/github/chatwoot/chatwoot/maintainability"><img src="https://api.codeclimate.com/v1/badges/e6e3f66332c91e5a4c0c/maintainability" alt="Maintainability"></a>
+  <a href="https://codeclimate.com/github/chatwoot/chatwoot/maintainability"><img src="https://api.codeclimate.com/v1/badges/80f9e1a7c72d186289ad/maintainability" alt="Maintainability"></a>
  <img src="https://img.shields.io/circleci/build/github/chatwoot/chatwoot" alt="CircleCI Badge">
    <a href="https://hub.docker.com/r/chatwoot/chatwoot/"><img src="https://img.shields.io/docker/pulls/chatwoot/chatwoot" alt="Docker Pull Badge"></a>
  <a href="https://hub.docker.com/r/chatwoot/chatwoot/"><img src="https://img.shields.io/docker/cloud/build/chatwoot/chatwoot" alt="Docker Build Badge"></a>
@ -26,7 +26,6 @@ ___
  <a href="https://huntr.dev/bounties/disclose"><img src="https://cdn.huntr.dev/huntr_security_badge_mono.svg" alt="Huntr"></a>
  <a href="https://status.chatwoot.com"><img src="https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fchatwoot%2Fstatus%2Fmaster%2Fapi%2Fchatwoot%2Fuptime.json" alt="uptime"></a>
  <a href="https://status.chatwoot.com"><img src="https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Fchatwoot%2Fstatus%2Fmaster%2Fapi%2Fchatwoot%2Fresponse-time.json" alt="response time"></a>
-  <a href="https://artifacthub.io/packages/helm/chatwoot/chatwoot"><img src="https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/artifact-hub" alt="Artifact HUB"></a>
 </p>

 <img src="https://chatwoot-public-assets.s3.amazonaws.com/github/screenshot.png" width="100%" alt="Chat dashboard"/>
--- a/SECURITY.md
+++ b/SECURITY.md
@ -1,55 +1,30 @@
-Chatwoot is looking forward to working with security researchers worldwide to keep Chatwoot and our users safe. If you have found an issue in our systems/applications, please reach out to us.
+# Security Policy
+Chatwoot is looking forward to working with security researchers across the world to keep Chatwoot and our users safe. If you have found an issue in our systems/applications, please reach out to us.

 ## Reporting a Vulnerability

-We use [huntr.dev](https://huntr.dev/) for security issues that affect our project. If you believe you have found a vulnerability, please disclose it via this [form](https://huntr.dev/bounties/disclose). This will enable us to review the vulnerability, fix it promptly, and reward you for your efforts.
+We use [huntr.dev](https://huntr.dev/) for security issues that affect our project. If you believe you have found a vulnerability, please disclose it via this [form](https://huntr.dev/bounties/disclose). 

-If you have any questions about the process, contact security@chatwoot.com. 
+This will enable us to review the vulnerability, fix it promptly, and reward you for your efforts.

-Please try your best to describe a clear and realistic impact for your report, and please don't open any public issues on GitHub or social media; we're doing our best to respond through Huntr as quickly as possible.
-
-> Note: Please use the email for questions related to the process. Disclosures should be done via [huntr.dev](https://huntr.dev/)
-## Supported versions
-
-| Version | Supported        |
-| ------- | --------------   |
-| latest   | ️✅               |
-| <latest   | ❌               |
+If you have any questions about the process, feel free to reach out to security@chatwoot.com.


-## Vulnerabilities we care about 🫣
-> Note: Please do not perform testing against Chatwoot production services. Use a `self-hosted instance` to perform tests.
- Remote command execution
- SQL Injection
- Authentication bypass
- Privilege Escalation
- Cross-site scripting (XSS)
- Performing limited admin actions without authorization
- CSRF
+## Out of scope

-You can learn more about our triaging process [here](https://www.chatwoot.com/docs/contributing-guide/security-reports).
+Please do not perform testing against Chatwoot production services. Use a self hosted instance to perform tests.

-## Non-Qualifying Vulnerabilities
-
-We consider the following out of scope, though there may be exceptions.
+We consider the following to be out of scope, though there may be exceptions.

 - Missing HTTP security headers
- Incomplete/Missing SPF/DKIM
- Reports from automated tools or scanners
- Theoretical attacks without proof of exploitability
- Social engineering
- Reflected file download
- Physical attacks
- Weak SSL/TLS/SSH algorithms or protocols
- Attacks involving physical access to a user's device or a device or network that's already seriously compromised (e.g., man-in-the-middle).
- The user attacks themselves
+- Self XSS
+- HTTP Host Header XSS without working proof-of-concept
 - Incomplete/Missing SPF/DKIM
 - Denial of Service attacks
- Brute force attacks
 - DNSSEC
+- Social Engineering attacks

-If you are unsure about the scope, please create a [report](https://huntr.dev/repos/chatwoot/chatwoot/).
-
+If you are not sure about the scope, please create a report.

 ## Thanks

--- a/1
+++ b/1
@ -1 +0,0 @@
-2.2.0
--- a/1
+++ b/1
@ -1 +0,0 @@
-2.1.0
--- a/app.json
+++ b/app.json
@ -41,24 +41,15 @@
  "formation": {
    "web": {
      "quantity": 1,
-      "size": "basic"
+      "size": "FREE"
    },
    "worker": {
      "quantity": 1,
-      "size": "basic"
+      "size": "FREE"
    }
  },
-  "stack": "heroku-20",
  "image": "heroku/ruby",
-  "addons": [
-    {
-      "plan": "heroku-redis:mini"
-    },
-    {
-      "plan": "heroku-postgresql:mini"
-    }
-  ],
-  "stack": "heroku-20",
+  "addons": [ "heroku-redis", "heroku-postgresql"],
  "buildpacks": [
    {
      "url": "heroku/ruby"
--- a/app/actions/contact_identify_action.rb
+++ b/app/actions/contact_identify_action.rb
@ -1,16 +1,7 @@
-# retain_original_contact_name: false / true
-# In case of setUser we want to update the name of the identified contact,
-# which is the default behaviour
-#
-# But, In case of contact merge during prechat form contact update.
-# We don't want to update the name of the identified original contact.
-
 class ContactIdentifyAction
-  pattr_initialize [:contact!, :params!, { retain_original_contact_name: false, discard_invalid_attrs: false }]
+  pattr_initialize [:contact!, :params!]

  def perform
-    @attributes_to_update = [:identifier, :name, :email, :phone_number]
-
    ActiveRecord::Base.transaction do
      merge_if_existing_identified_contact
      merge_if_existing_email_contact
@ -27,89 +18,49 @@ class ContactIdentifyAction
  end

  def merge_if_existing_identified_contact
-    return unless merge_contacts?(existing_identified_contact, :identifier)
-
-    process_contact_merge(existing_identified_contact)
+    @contact = merge_contact(existing_identified_contact, @contact) if merge_contacts?(existing_identified_contact, @contact)
  end

  def merge_if_existing_email_contact
-    return unless merge_contacts?(existing_email_contact, :email)
-
-    process_contact_merge(existing_email_contact)
+    @contact = merge_contact(existing_email_contact, @contact) if merge_contacts?(existing_email_contact, @contact)
  end

  def merge_if_existing_phone_number_contact
-    return unless merge_contacts?(existing_phone_number_contact, :phone_number)
-    return unless mergable_phone_contact?
-
-    process_contact_merge(existing_phone_number_contact)
-  end
-
-  def process_contact_merge(mergee_contact)
-    @contact = merge_contact(mergee_contact, @contact)
-    @attributes_to_update.delete(:name) if retain_original_contact_name
+    @contact = merge_contact(existing_phone_number_contact, @contact) if merge_contacts?(existing_phone_number_contact, @contact)
  end

  def existing_identified_contact
    return if params[:identifier].blank?

-    @existing_identified_contact ||= account.contacts.find_by(identifier: params[:identifier])
+    @existing_identified_contact ||= Contact.where(account_id: account.id).find_by(identifier: params[:identifier])
  end

  def existing_email_contact
    return if params[:email].blank?

-    @existing_email_contact ||= account.contacts.find_by(email: params[:email])
+    @existing_email_contact ||= Contact.where(account_id: account.id).find_by(email: params[:email])
  end

  def existing_phone_number_contact
    return if params[:phone_number].blank?

-    @existing_phone_number_contact ||= account.contacts.find_by(phone_number: params[:phone_number])
+    @existing_phone_number_contact ||= Contact.where(account_id: account.id).find_by(phone_number: params[:phone_number])
  end

-  def merge_contacts?(existing_contact, key)
-    return if existing_contact.blank?
-
-    return true if params[:identifier].blank?
-
-    # we want to prevent merging contacts with different identifiers
-    if existing_contact.identifier.present? && existing_contact.identifier != params[:identifier]
-      # we will remove attribute from update list
-      @attributes_to_update.delete(key)
-      return false
-    end
-
-    true
-  end
-
-  # case: contact 1: email: 1@test.com, phone: 123456789
-  # params: email: 2@test.com, phone: 123456789
-  # we don't want to overwrite 1@test.com since email parameter takes higer priority
-  def mergable_phone_contact?
-    return true if params[:email].blank?
-
-    if existing_phone_number_contact.email.present? && existing_phone_number_contact.email != params[:email]
-      @attributes_to_update.delete(:phone_number)
-      return false
-    end
-    true
+  def merge_contacts?(existing_contact, _contact)
+    existing_contact && existing_contact.id != @contact.id
  end

  def update_contact
-    @contact.attributes = params.slice(*@attributes_to_update).reject do |_k, v|
-      v.blank?
-    end.merge({ custom_attributes: custom_attributes, additional_attributes: additional_attributes })
    # blank identifier or email will throw unique index error
    # TODO: replace reject { |_k, v| v.blank? } with compact_blank when rails is upgraded
-    @contact.discard_invalid_attrs if discard_invalid_attrs
-    @contact.save!
-    Avatar::AvatarFromUrlJob.perform_later(@contact, params[:avatar_url]) if params[:avatar_url].present?
+    @contact.update!(params.slice(:name, :email, :identifier, :phone_number).reject do |_k, v|
+                       v.blank?
+                     end.merge({ custom_attributes: custom_attributes, additional_attributes: additional_attributes }))
+    ContactAvatarJob.perform_later(@contact, params[:avatar_url]) if params[:avatar_url].present?
  end

  def merge_contact(base_contact, merge_contact)
-    return base_contact if base_contact.id == merge_contact.id
-
    ContactMergeAction.new(
      account: account,
      base_contact: base_contact,
@ -118,14 +69,14 @@ class ContactIdentifyAction
  end

  def custom_attributes
-    return @contact.custom_attributes if params[:custom_attributes].blank?
-
-    (@contact.custom_attributes || {}).deep_merge(params[:custom_attributes].stringify_keys)
+    params[:custom_attributes] ? @contact.custom_attributes.deep_merge(params[:custom_attributes].stringify_keys) : @contact.custom_attributes
  end

  def additional_attributes
-    return @contact.additional_attributes if params[:additional_attributes].blank?
-
-    (@contact.additional_attributes || {}).deep_merge(params[:additional_attributes].stringify_keys)
+    if params[:additional_attributes]
+      @contact.additional_attributes.deep_merge(params[:additional_attributes].stringify_keys)
+    else
+      @contact.additional_attributes
+    end
  end
 end
--- a/app/builders/account_builder.rb
+++ b/app/builders/account_builder.rb
@ -2,7 +2,7 @@

 class AccountBuilder
  include CustomExceptions::Account
-  pattr_initialize [:account_name!, :email!, :confirmed, :user, :user_full_name, :user_password, :super_admin, :locale]
+  pattr_initialize [:account_name!, :email!, :confirmed, :user, :user_full_name, :user_password, :super_admin]

  def perform
    if @user.nil?
--- a/app/builders/campaigns/campaign_conversation_builder.rb
+++ b/app/builders/campaigns/campaign_conversation_builder.rb
@ -1,5 +1,5 @@
 class Campaigns::CampaignConversationBuilder
-  pattr_initialize [:contact_inbox_id!, :campaign_display_id!, :conversation_additional_attributes, :custom_attributes]
+  pattr_initialize [:contact_inbox_id!, :campaign_display_id!, :conversation_additional_attributes]

  def perform
    @contact_inbox = ContactInbox.find(@contact_inbox_id)
@ -9,23 +9,19 @@ class Campaigns::CampaignConversationBuilder
      @contact_inbox.lock!

      # We won't send campaigns if a conversation is already present
-      raise 'Conversation alread present' if @contact_inbox.reload.conversations.present?
+      return if @contact_inbox.reload.conversations.present?

      @conversation = ::Conversation.create!(conversation_params)
      Messages::MessageBuilder.new(@campaign.sender, @conversation, message_params).perform
    end
    @conversation
-  rescue StandardError => e
-    Rails.logger.info(e.message)
-    nil
  end

  private

  def message_params
    ActionController::Parameters.new({
-                                       content: @campaign.message,
-                                       campaign_id: @campaign.id
+                                       content: @campaign.message
                                     })
  end

@ -36,8 +32,7 @@ class Campaigns::CampaignConversationBuilder
      contact_id: @contact_inbox.contact_id,
      contact_inbox_id: @contact_inbox.id,
      campaign_id: @campaign.id,
-      additional_attributes: conversation_additional_attributes,
-      custom_attributes: custom_attributes || {}
+      additional_attributes: conversation_additional_attributes
    }
  end
 end
--- a/app/builders/contact_builder.rb
+++ b/app/builders/contact_builder.rb
@ -0,0 +1,77 @@
+class ContactBuilder
+  pattr_initialize [:source_id!, :inbox!, :contact_attributes!, :hmac_verified]
+
+  def perform
+    contact_inbox = inbox.contact_inboxes.find_by(source_id: source_id)
+    return contact_inbox if contact_inbox
+
+    build_contact_inbox
+  end
+
+  private
+
+  def account
+    @account ||= inbox.account
+  end
+
+  def create_contact_inbox(contact)
+    ::ContactInbox.create!(
+      contact_id: contact.id,
+      inbox_id: inbox.id,
+      source_id: source_id,
+      hmac_verified: hmac_verified || false
+    )
+  end
+
+  def update_contact_avatar(contact)
+    ::ContactAvatarJob.perform_later(contact, contact_attributes[:avatar_url]) if contact_attributes[:avatar_url]
+  end
+
+  def create_contact
+    account.contacts.create!(
+      name: contact_attributes[:name] || ::Haikunator.haikunate(1000),
+      phone_number: contact_attributes[:phone_number],
+      email: contact_attributes[:email],
+      identifier: contact_attributes[:identifier],
+      additional_attributes: contact_attributes[:additional_attributes],
+      custom_attributes: contact_attributes[:custom_attributes]
+    )
+  end
+
+  def find_contact
+    contact = find_contact_by_identifier(contact_attributes[:identifier])
+    contact ||= find_contact_by_email(contact_attributes[:email])
+    contact ||= find_contact_by_phone_number(contact_attributes[:phone_number])
+    contact
+  end
+
+  def find_contact_by_identifier(identifier)
+    return if identifier.blank?
+
+    account.contacts.find_by(identifier: identifier)
+  end
+
+  def find_contact_by_email(email)
+    return if email.blank?
+
+    account.contacts.find_by(email: email.downcase)
+  end
+
+  def find_contact_by_phone_number(phone_number)
+    return if phone_number.blank?
+
+    account.contacts.find_by(phone_number: phone_number)
+  end
+
+  def build_contact_inbox
+    ActiveRecord::Base.transaction do
+      contact = find_contact || create_contact
+      contact_inbox = create_contact_inbox(contact)
+      update_contact_avatar(contact)
+      contact_inbox
+    rescue StandardError => e
+      Rails.logger.error e
+      raise e
+    end
+  end
+end
--- a/app/builders/contact_inbox_builder.rb
+++ b/app/builders/contact_inbox_builder.rb
@ -1,12 +1,13 @@
-# This Builder will create a contact inbox with specified attributes. If the contact inbox already exists, it will be returned.
-# For Specific Channels like whatsapp, email etc . it smartly generated appropriate the source id when none is provided.
-
 class ContactInboxBuilder
-  pattr_initialize [:contact, :inbox, :source_id, { hmac_verified: false }]
+  pattr_initialize [:contact_id!, :inbox_id!, :source_id]

  def perform
-    @source_id ||= generate_source_id
-    create_contact_inbox if source_id.present?
+    @contact = Contact.find(contact_id)
+    @inbox = @contact.account.inboxes.find(inbox_id)
+    return unless ['Channel::TwilioSms', 'Channel::Sms', 'Channel::Email', 'Channel::Api', 'Channel::Whatsapp'].include? @inbox.channel_type
+
+    source_id = @source_id || generate_source_id
+    create_contact_inbox(source_id) if source_id.present?
  end

  private
@ -18,37 +19,23 @@ class ContactInboxBuilder
    when 'Channel::Whatsapp'
      wa_source_id
    when 'Channel::Email'
-      email_source_id
+      @contact.email
    when 'Channel::Sms'
-      phone_source_id
-    when 'Channel::Api', 'Channel::WebWidget'
+      @contact.phone_number
+    when 'Channel::Api'
      SecureRandom.uuid
-    else
-      raise "Unsupported operation for this channel: #{@inbox.channel_type}"
    end
  end

-  def email_source_id
-    raise ActionController::ParameterMissing, 'contact email' unless @contact.email
-
-    @contact.email
-  end
-
-  def phone_source_id
-    raise ActionController::ParameterMissing, 'contact phone number' unless @contact.phone_number
-
-    @contact.phone_number
-  end
-
  def wa_source_id
-    raise ActionController::ParameterMissing, 'contact phone number' unless @contact.phone_number
+    return unless @contact.phone_number

    # whatsapp doesn't want the + in e164 format
-    @contact.phone_number.delete('+').to_s
+    "#{@contact.phone_number}.delete('+')"
  end

  def twilio_source_id
-    raise ActionController::ParameterMissing, 'contact phone number' unless @contact.phone_number
+    return unless @contact.phone_number

    case @inbox.channel.medium
    when 'sms'
@ -58,11 +45,11 @@ class ContactInboxBuilder
    end
  end

-  def create_contact_inbox
-    ::ContactInbox.create_with(hmac_verified: hmac_verified || false).find_or_create_by!(
+  def create_contact_inbox(source_id)
+    ::ContactInbox.find_or_create_by!(
      contact_id: @contact.id,
      inbox_id: @inbox.id,
-      source_id: @source_id
+      source_id: source_id
    )
  end
 end
--- a/app/builders/contact_inbox_with_contact_builder.rb
+++ b/app/builders/contact_inbox_with_contact_builder.rb
@ -1,86 +0,0 @@
-# This Builder will create a contact and contact inbox with specified attributes.
-# If an existing identified contact exisits, it will be returned.
-# for contact inbox logic it uses the contact inbox builder
-
-class ContactInboxWithContactBuilder
-  pattr_initialize [:inbox!, :contact_attributes!, :source_id, :hmac_verified]
-
-  def perform
-    find_or_create_contact_and_contact_inbox
-  # in case of race conditions where contact is created by another thread
-  # we will try to find the contact and create a contact inbox
-  rescue ActiveRecord::RecordNotUnique
-    find_or_create_contact_and_contact_inbox
-  end
-
-  def find_or_create_contact_and_contact_inbox
-    @contact_inbox = inbox.contact_inboxes.find_by(source_id: source_id) if source_id.present?
-    return @contact_inbox if @contact_inbox
-
-    ActiveRecord::Base.transaction(requires_new: true) do
-      build_contact_with_contact_inbox
-      update_contact_avatar(@contact) unless @contact.avatar.attached?
-      @contact_inbox
-    end
-  end
-
-  private
-
-  def build_contact_with_contact_inbox
-    @contact = find_contact || create_contact
-    @contact_inbox = create_contact_inbox
-  end
-
-  def account
-    @account ||= inbox.account
-  end
-
-  def create_contact_inbox
-    ContactInboxBuilder.new(
-      contact: @contact,
-      inbox: @inbox,
-      source_id: @source_id,
-      hmac_verified: hmac_verified
-    ).perform
-  end
-
-  def update_contact_avatar(contact)
-    ::Avatar::AvatarFromUrlJob.perform_later(contact, contact_attributes[:avatar_url]) if contact_attributes[:avatar_url]
-  end
-
-  def create_contact
-    account.contacts.create!(
-      name: contact_attributes[:name] || ::Haikunator.haikunate(1000),
-      phone_number: contact_attributes[:phone_number],
-      email: contact_attributes[:email],
-      identifier: contact_attributes[:identifier],
-      additional_attributes: contact_attributes[:additional_attributes],
-      custom_attributes: contact_attributes[:custom_attributes]
-    )
-  end
-
-  def find_contact
-    contact = find_contact_by_identifier(contact_attributes[:identifier])
-    contact ||= find_contact_by_email(contact_attributes[:email])
-    contact ||= find_contact_by_phone_number(contact_attributes[:phone_number])
-    contact
-  end
-
-  def find_contact_by_identifier(identifier)
-    return if identifier.blank?
-
-    account.contacts.find_by(identifier: identifier)
-  end
-
-  def find_contact_by_email(email)
-    return if email.blank?
-
-    account.contacts.find_by(email: email.downcase)
-  end
-
-  def find_contact_by_phone_number(phone_number)
-    return if phone_number.blank?
-
-    account.contacts.find_by(phone_number: phone_number)
-  end
-end
--- a/app/builders/conversation_builder.rb
+++ b/app/builders/conversation_builder.rb
@ -1,40 +0,0 @@
-class ConversationBuilder
-  pattr_initialize [:params!, :contact_inbox!]
-
-  def perform
-    look_up_exising_conversation || create_new_conversation
-  end
-
-  private
-
-  def look_up_exising_conversation
-    return unless @contact_inbox.inbox.lock_to_single_conversation?
-
-    @contact_inbox.conversations.last
-  end
-
-  def create_new_conversation
-    ::Conversation.create!(conversation_params)
-  end
-
-  def conversation_params
-    additional_attributes = params[:additional_attributes]&.permit! || {}
-    custom_attributes = params[:custom_attributes]&.permit! || {}
-    status = params[:status].present? ? { status: params[:status] } : {}
-
-    # TODO: temporary fallback for the old bot status in conversation, we will remove after couple of releases
-    # commenting this out to see if there are any errors, if not we can remove this in subsequent releases
-    # status = { status: 'pending' } if status[:status] == 'bot'
-    {
-      account_id: @contact_inbox.inbox.account_id,
-      inbox_id: @contact_inbox.inbox_id,
-      contact_id: @contact_inbox.contact_id,
-      contact_inbox_id: @contact_inbox.id,
-      additional_attributes: additional_attributes,
-      custom_attributes: custom_attributes,
-      snoozed_until: params[:snoozed_until],
-      assignee_id: params[:assignee_id],
-      team_id: params[:team_id]
-    }.merge(status)
-  end
-end
--- a/app/builders/messages/facebook/message_builder.rb
+++ b/app/builders/messages/facebook/message_builder.rb
@ -22,24 +22,28 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
    return if @inbox.channel.reauthorization_required?

    ActiveRecord::Base.transaction do
-      build_contact_inbox
+      build_contact
      build_message
    end
+    ensure_contact_avatar
  rescue Koala::Facebook::AuthenticationError
-    @inbox.channel.authorization_error!
+    Rails.logger.error "Facebook Authorization expired for Inbox #{@inbox.id}"
  rescue StandardError => e
-    ChatwootExceptionTracker.new(e, account: @inbox.account).capture_exception
+    Sentry.capture_exception(e)
    true
  end

  private

-  def build_contact_inbox
-    @contact_inbox = ::ContactInboxWithContactBuilder.new(
-      source_id: @sender_id,
-      inbox: @inbox,
-      contact_attributes: contact_params
-    ).perform
+  def contact
+    @contact ||= @inbox.contact_inboxes.find_by(source_id: @sender_id)&.contact
+  end
+
+  def build_contact
+    return if contact.present?
+
+    @contact = Contact.create!(contact_params.except(:remote_avatar_url))
+    @contact_inbox = ContactInbox.create(contact: contact, inbox: @inbox, source_id: @sender_id)
  end

  def build_message
@ -50,11 +54,19 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
    end
  end

+  def ensure_contact_avatar
+    return if contact_params[:remote_avatar_url].blank?
+    return if @contact.avatar.attached?
+
+    ContactAvatarJob.perform_later(@contact, contact_params[:remote_avatar_url])
+  end
+
  def conversation
    @conversation ||= Conversation.find_by(conversation_params) || build_conversation
  end

  def build_conversation
+    @contact_inbox ||= contact.contact_inboxes.find_by!(source_id: @sender_id)
    Conversation.create!(conversation_params.merge(
                           contact_inbox_id: @contact_inbox.id
                         ))
@ -82,7 +94,7 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
    {
      account_id: @inbox.account_id,
      inbox_id: @inbox.id,
-      contact_id: @contact_inbox.contact_id
+      contact_id: contact.id
    }
  end

@ -93,7 +105,7 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
      message_type: @message_type,
      content: response.content,
      source_id: response.identifier,
-      sender: @outgoing_echo ? nil : @contact_inbox.contact
+      sender: @outgoing_echo ? nil : contact
    }
  end

@ -101,7 +113,7 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
    {
      name: "#{result['first_name'] || 'John'} #{result['last_name'] || 'Doe'}",
      account_id: @inbox.account_id,
-      avatar_url: result['profile_pic']
+      remote_avatar_url: result['profile_pic'] || ''
    }
  end

@ -116,10 +128,10 @@ class Messages::Facebook::MessageBuilder < Messages::Messenger::MessageBuilder
      result = {}
      # OAuthException, code: 100, error_subcode: 2018218, message: (#100) No profile available for this user
      # We don't need to capture this error as we don't care about contact params in case of echo messages
-      ChatwootExceptionTracker.new(e, account: @inbox.account).capture_exception unless @outgoing_echo
+      Sentry.capture_exception(e) unless @outgoing_echo
    rescue StandardError => e
      result = {}
-      ChatwootExceptionTracker.new(e, account: @inbox.account).capture_exception
+      Sentry.capture_exception(e)
    end
    process_contact_params_result(result)
  end
--- a/app/builders/messages/instagram/message_builder.rb
+++ b/app/builders/messages/instagram/message_builder.rb
@ -24,7 +24,7 @@ class Messages::Instagram::MessageBuilder < Messages::Messenger::MessageBuilder
    @inbox.channel.authorization_error!
    raise
  rescue StandardError => e
-    ChatwootExceptionTracker.new(e, account: @inbox.account).capture_exception
+    Sentry.capture_exception(e)
    true
  end

@ -72,7 +72,6 @@ class Messages::Instagram::MessageBuilder < Messages::Messenger::MessageBuilder

  def build_message
    return if @outgoing_echo && already_sent_from_chatwoot?
-    return if message_content.blank? && all_unsupported_files?

    @message = conversation.messages.create!(message_params)

@ -118,13 +117,6 @@ class Messages::Instagram::MessageBuilder < Messages::Messenger::MessageBuilder
    cw_message.present?
  end

-  def all_unsupported_files?
-    return if attachments.empty?
-
-    attachments_type = attachments.pluck(:type).uniq.first
-    unsupported_file_type?(attachments_type)
-  end
-
  ### Sample response
  # {
  #   "object": "instagram",
--- a/app/builders/messages/message_builder.rb
+++ b/app/builders/messages/message_builder.rb
@ -9,7 +9,6 @@ class Messages::MessageBuilder
    @user = user
    @message_type = params[:message_type] || 'outgoing'
    @attachments = params[:attachments]
-    @automation_rule = @params&.dig(:content_attributes, :automation_rule_id)
    return unless params.instance_of?(ActionController::Parameters)

    @in_reply_to = params.to_unsafe_h&.dig(:content_attributes, :in_reply_to)
@ -35,13 +34,7 @@ class Messages::MessageBuilder
        file: uploaded_attachment
      )

-      attachment.file_type = if uploaded_attachment.is_a?(String)
-                               file_type_by_signed_id(
-                                 uploaded_attachment
-                               )
-                             else
-                               file_type(uploaded_attachment&.content_type)
-                             end
+      attachment.file_type = file_type(uploaded_attachment&.content_type) if uploaded_attachment.is_a?(ActionDispatch::Http::UploadedFile)
    end
  end

@ -71,18 +64,6 @@ class Messages::MessageBuilder
    @params[:external_created_at].present? ? { external_created_at: @params[:external_created_at] } : {}
  end

-  def automation_rule_id
-    @automation_rule.present? ? { content_attributes: { automation_rule_id: @automation_rule } } : {}
-  end
-
-  def campaign_id
-    @params[:campaign_id].present? ? { additional_attributes: { campaign_id: @params[:campaign_id] } } : {}
-  end
-
-  def template_params
-    @params[:template_params].present? ? { additional_attributes: { template_params: JSON.parse(@params[:template_params].to_json) } } : {}
-  end
-
  def message_sender
    return if @params[:sender_type] != 'AgentBot'

@ -101,6 +82,6 @@ class Messages::MessageBuilder
      items: @items,
      in_reply_to: @in_reply_to,
      echo_id: @params[:echo_id]
-    }.merge(external_created_at).merge(automation_rule_id).merge(campaign_id).merge(template_params)
+    }.merge(external_created_at)
  end
 end
--- a/app/builders/messages/messenger/message_builder.rb
+++ b/app/builders/messages/messenger/message_builder.rb
@ -2,8 +2,7 @@ class Messages::Messenger::MessageBuilder
  include ::FileTypeHelper

  def process_attachment(attachment)
-    # This check handles very rare case if there are multiple files to attach with only one usupported file
-    return if unsupported_file_type?(attachment['type'])
+    return if attachment['type'].to_sym == :template

    attachment_obj = @message.attachments.new(attachment_params(attachment).except(:remote_file_url))
    attachment_obj.save!
@ -46,7 +45,6 @@ class Messages::Messenger::MessageBuilder
  end

  def update_attachment_file_type(attachment)
-    return if @message.reload.attachments.blank?
    return unless attachment.file_type == 'share' || attachment.file_type == 'story_mention'

    attachment.file_type = file_type(attachment.file&.content_type)
@ -55,39 +53,21 @@ class Messages::Messenger::MessageBuilder

  def fetch_story_link(attachment)
    message = attachment.message
-    result = get_story_object_from_source_id(message.source_id)
-
-    return if result.blank?
-
+    begin
+      k = Koala::Facebook::API.new(@inbox.channel.page_access_token) if @inbox.facebook?
+      result = k.get_object(message.source_id, fields: %w[story from]) || {}
+    rescue Koala::Facebook::AuthenticationError
+      @inbox.channel.authorization_error!
+      raise
+    rescue StandardError => e
+      result = {}
+      Sentry.capture_exception(e)
+    end
    story_id = result['story']['mention']['id']
    story_sender = result['from']['username']
    message.content_attributes[:story_sender] = story_sender
    message.content_attributes[:story_id] = story_id
-    message.content_attributes[:image_type] = 'story_mention'
    message.content = I18n.t('conversations.messages.instagram_story_content', story_sender: story_sender)
    message.save!
  end
-
-  def get_story_object_from_source_id(source_id)
-    k = Koala::Facebook::API.new(@inbox.channel.page_access_token) if @inbox.facebook?
-    k.get_object(source_id, fields: %w[story from]) || {}
-  rescue Koala::Facebook::AuthenticationError
-    @inbox.channel.authorization_error!
-    raise
-  rescue Koala::Facebook::ClientError => e
-    # The exception occurs when we are trying fetch the deleted story or blocked story.
-    @message.attachments.destroy_all
-    @message.update(content: I18n.t('conversations.messages.instagram_deleted_story_content'))
-    Rails.logger.error e
-    {}
-  rescue StandardError => e
-    ChatwootExceptionTracker.new(e, account: @inbox.account).capture_exception
-    {}
-  end
-
-  private
-
-  def unsupported_file_type?(attachment_type)
-    [:template, :unsupported_type].include? attachment_type.to_sym
-  end
 end
--- a/app/builders/notification_builder.rb
+++ b/app/builders/notification_builder.rb
@ -15,9 +15,6 @@ class NotificationBuilder

  def user_subscribed_to_notification?
    notification_setting = user.notification_settings.find_by(account_id: account.id)
-    # added for the case where an assignee might be removed from the account but remains in conversation
-    return if notification_setting.blank?
-
    return true if notification_setting.public_send("email_#{notification_type}?")
    return true if notification_setting.public_send("push_#{notification_type}?")

--- a/app/builders/notification_subscription_builder.rb
+++ b/app/builders/notification_subscription_builder.rb
@ -25,7 +25,7 @@ class NotificationSubscriptionBuilder
  end

  def build_identifier_subscription
-    @identifier_subscription = user.notification_subscriptions.create!(params.merge(identifier: identifier))
+    @identifier_subscription = user.notification_subscriptions.create(params.merge(identifier: identifier))
  end

  def update_identifier_subscription
--- a/app/builders/v2/report_builder.rb
+++ b/app/builders/v2/report_builder.rb
@ -4,7 +4,6 @@ class V2::ReportBuilder
  attr_reader :account, :params

  DEFAULT_GROUP_BY = 'day'.freeze
-  AGENT_RESULTS_PER_PAGE = 25

  def initialize(account, params)
    @account = account
@ -46,7 +45,7 @@ class V2::ReportBuilder
    if params[:type].equal?(:account)
      conversations
    else
-      agent_metrics.sort_by { |hash| hash[:metric][:open] }.reverse
+      agent_metrics
    end
  end

@ -80,23 +79,20 @@ class V2::ReportBuilder
  end

  def agent_metrics
-    account_users = @account.account_users.page(params[:page]).per(AGENT_RESULTS_PER_PAGE)
-    account_users.each_with_object([]) do |account_user, arr|
-      @user = account_user.user
+    users = @account.users
+    users = users.where(id: params[:user_id]) if params[:user_id].present?
+    users.each_with_object([]) do |user, arr|
+      @user = user
      arr << {
-        id: @user.id,
-        name: @user.name,
-        email: @user.email,
-        thumbnail: @user.avatar_url,
-        availability: account_user.availability_status,
+        user: { id: user.id, name: user.name, thumbnail: user.avatar_url },
        metric: conversations
      }
    end
  end

  def conversations
-    @open_conversations = scope.conversations.where(account_id: @account.id).open
-    first_response_count = @account.reporting_events.where(name: 'first_response', conversation_id: @open_conversations.pluck('id')).count
+    @open_conversations = scope.conversations.open
+    first_response_count = scope.reporting_events.where(name: 'first_response', conversation_id: @open_conversations.pluck('id')).count
    metric = {
      open: @open_conversations.count,
      unattended: @open_conversations.count - first_response_count
--- a/app/channels/room_channel.rb
+++ b/app/channels/room_channel.rb
@ -45,8 +45,6 @@ class RoomChannel < ApplicationCable::Channel
  end

  def current_account
-    return if current_user.blank?
-
    @current_account ||= if @current_user.is_a? Contact
                           @current_user.account
                         else
--- a/app/controllers/api/v1/accounts/agent_bots_controller.rb
+++ b/app/controllers/api/v1/accounts/agent_bots_controller.rb
@ -30,6 +30,6 @@ class Api::V1::Accounts::AgentBotsController < Api::V1::Accounts::BaseController
  end

  def permitted_params
-    params.permit(:name, :description, :outgoing_url, :bot_type, bot_config: [:csml_content])
+    params.permit(:name, :description, :outgoing_url)
  end
 end
--- a/app/controllers/api/v1/accounts/agents_controller.rb
+++ b/app/controllers/api/v1/accounts/agents_controller.rb
@ -39,7 +39,7 @@ class Api::V1::Accounts::AgentsController < Api::V1::Accounts::BaseController
  # TODO: move this to a builder and combine the save account user method into a builder
  # ensure the account user association is also created in a single transaction
  def create_user
-    return @user.send_confirmation_instructions if @user
+    return if @user

    @user = User.create!(new_agent_params.slice(:email, :name, :password, :password_confirmation))
  end
@ -72,6 +72,6 @@ class Api::V1::Accounts::AgentsController < Api::V1::Accounts::BaseController
  end

  def validate_limit
-    render_payment_required('Account limit exceeded. Please purchase more licenses') if agents.count >= Current.account.usage_limits[:agents]
+    render_payment_required('Account limit exceeded. Upgrade to a higher plan') if agents.count >= Current.account.usage_limits[:agents]
  end
 end
--- a/app/controllers/api/v1/accounts/articles_controller.rb
+++ b/app/controllers/api/v1/accounts/articles_controller.rb
@ -1,58 +0,0 @@
-class Api::V1::Accounts::ArticlesController < Api::V1::Accounts::BaseController
-  before_action :portal
-  before_action :check_authorization
-  before_action :fetch_article, except: [:index, :create]
-  before_action :set_current_page, only: [:index]
-
-  def index
-    @portal_articles = @portal.articles
-    @all_articles = @portal_articles.search(list_params)
-    @articles_count = @all_articles.count
-    @articles = @all_articles.page(@current_page)
-  end
-
-  def create
-    @article = @portal.articles.create!(article_params)
-    @article.associate_root_article(article_params[:associated_article_id])
-    @article.draft!
-    render json: { error: @article.errors.messages }, status: :unprocessable_entity and return unless @article.valid?
-  end
-
-  def edit; end
-
-  def show; end
-
-  def update
-    @article.update!(article_params)
-  end
-
-  def destroy
-    @article.destroy!
-    head :ok
-  end
-
-  private
-
-  def fetch_article
-    @article = @portal.articles.find(params[:id])
-  end
-
-  def portal
-    @portal ||= Current.account.portals.find_by!(slug: params[:portal_id])
-  end
-
-  def article_params
-    params.require(:article).permit(
-      :title, :slug, :content, :description, :position, :category_id, :author_id, :associated_article_id, :status, meta: [:title, :description,
-                                                                                                                          { tags: [] }]
-    )
-  end
-
-  def list_params
-    params.permit(:locale, :query, :page, :category_slug, :status, :author_id)
-  end
-
-  def set_current_page
-    @current_page = params[:page] || 1
-  end
-end
--- a/app/controllers/api/v1/accounts/assignable_agents_controller.rb
+++ b/app/controllers/api/v1/accounts/assignable_agents_controller.rb
@ -1,24 +0,0 @@
-class Api::V1::Accounts::AssignableAgentsController < Api::V1::Accounts::BaseController
-  before_action :fetch_inboxes
-
-  def index
-    agent_ids = @inboxes.map do |inbox|
-      authorize inbox, :show?
-      member_ids = inbox.members.pluck(:user_id)
-      member_ids
-    end
-    agent_ids = agent_ids.inject(:&)
-    agents = Current.account.users.where(id: agent_ids)
-    @assignable_agents = (agents + Current.account.administrators).uniq
-  end
-
-  private
-
-  def fetch_inboxes
-    @inboxes = Current.account.inboxes.find(permitted_params[:inbox_ids])
-  end
-
-  def permitted_params
-    params.permit(inbox_ids: [])
-  end
-end
--- a/app/controllers/api/v1/accounts/automation_rules_controller.rb
+++ b/app/controllers/api/v1/accounts/automation_rules_controller.rb
@ -9,7 +9,6 @@ class Api::V1::Accounts::AutomationRulesController < Api::V1::Accounts::BaseCont
  def create
    @automation_rule = Current.account.automation_rules.new(automation_rules_permit)
    @automation_rule.actions = params[:actions]
-    @automation_rule.conditions = params[:conditions]

    render json: { error: @automation_rule.errors.messages }, status: :unprocessable_entity and return unless @automation_rule.valid?

@ -18,27 +17,12 @@ class Api::V1::Accounts::AutomationRulesController < Api::V1::Accounts::BaseCont
    @automation_rule
  end

-  def attach_file
-    file_blob = ActiveStorage::Blob.create_and_upload!(
-      key: nil,
-      io: params[:attachment].tempfile,
-      filename: params[:attachment].original_filename,
-      content_type: params[:attachment].content_type
-    )
-    render json: { blob_key: file_blob.key, blob_id: file_blob.id }
-  end
-
  def show; end

  def update
-    ActiveRecord::Base.transaction do
-      automation_rule_update
-      process_attachments
-
-    rescue StandardError => e
-      Rails.logger.error e
-      render json: { error: @automation_rule.errors.messages }.to_json, status: :unprocessable_entity
-    end
+    @automation_rule.update(automation_rules_permit)
+    process_attachments
+    @automation_rule
  end

  def destroy
@ -49,34 +33,24 @@ class Api::V1::Accounts::AutomationRulesController < Api::V1::Accounts::BaseCont
  def clone
    automation_rule = Current.account.automation_rules.find_by(id: params[:automation_rule_id])
    new_rule = automation_rule.dup
-    new_rule.save!
+    new_rule.save
    @automation_rule = new_rule
  end

-  def process_attachments
-    actions = @automation_rule.actions.filter_map { |k, _v| k if k['action_name'] == 'send_attachment' }
-    return if actions.blank?
-
-    actions.each do |action|
-      blob_id = action['action_params']
-      blob = ActiveStorage::Blob.find_by(id: blob_id)
-      @automation_rule.files.attach(blob)
-    end
-  end
-
  private

-  def automation_rule_update
-    @automation_rule.update!(automation_rules_permit)
-    @automation_rule.actions = params[:actions] if params[:actions]
-    @automation_rule.conditions = params[:conditions] if params[:conditions]
-    @automation_rule.save!
+  def process_attachments
+    return if params[:attachments].blank?
+
+    params[:attachments].each do |uploaded_attachment|
+      @automation_rule.files.attach(uploaded_attachment)
+    end
  end

  def automation_rules_permit
    params.permit(
      :name, :description, :event_name, :account_id, :active,
-      conditions: [:attribute_key, :filter_operator, :query_operator, :custom_attribute_type, { values: [] }],
+      conditions: [:attribute_key, :filter_operator, :query_operator, { values: [] }],
      actions: [:action_name, { action_params: [] }]
    )
  end
--- a/app/controllers/api/v1/accounts/callbacks_controller.rb
+++ b/app/controllers/api/v1/accounts/callbacks_controller.rb
@ -15,7 +15,7 @@ class Api::V1::Accounts::CallbacksController < Api::V1::Accounts::BaseController
      set_instagram_id(page_access_token, facebook_channel)
      set_avatar(@facebook_inbox, page_id)
    rescue StandardError => e
-      ChatwootExceptionTracker.new(e).capture_exception
+      Sentry.capture_exception(e)
    end
  end

@ -60,7 +60,7 @@ class Api::V1::Accounts::CallbacksController < Api::V1::Accounts::BaseController
      set_instagram_id(access_token, fb_page)
      fb_page&.reauthorized!
    rescue StandardError => e
-      ChatwootExceptionTracker.new(e).capture_exception
+      Sentry.capture_exception(e)
    end
  end

@ -90,7 +90,9 @@ class Api::V1::Accounts::CallbacksController < Api::V1::Accounts::BaseController
  end

  def set_avatar(facebook_inbox, page_id)
-    avatar_url = "https://graph.facebook.com/#{page_id}/picture?type=large"
-    Avatar::AvatarFromUrlJob.perform_later(facebook_inbox, avatar_url)
+    avatar_file = Down.download(
+      "http://graph.facebook.com/#{page_id}/picture?type=large"
+    )
+    facebook_inbox.avatar.attach(io: avatar_file, filename: avatar_file.original_filename, content_type: avatar_file.content_type)
  end
 end
--- a/app/controllers/api/v1/accounts/categories_controller.rb
+++ b/app/controllers/api/v1/accounts/categories_controller.rb
@ -1,58 +0,0 @@
-class Api::V1::Accounts::CategoriesController < Api::V1::Accounts::BaseController
-  before_action :portal
-  before_action :check_authorization
-  before_action :fetch_category, except: [:index, :create]
-  before_action :set_current_page, only: [:index]
-
-  def index
-    @current_locale = params[:locale]
-    @categories = @portal.categories.search(params)
-  end
-
-  def create
-    @category = @portal.categories.create!(category_params)
-    @category.related_categories << related_categories_records
-    render json: { error: @category.errors.messages }, status: :unprocessable_entity and return unless @category.valid?
-
-    @category.save!
-  end
-
-  def show; end
-
-  def update
-    @category.update!(category_params)
-    @category.related_categories = related_categories_records if related_categories_records.any?
-    render json: { error: @category.errors.messages }, status: :unprocessable_entity and return unless @category.valid?
-
-    @category.save!
-  end
-
-  def destroy
-    @category.destroy!
-    head :ok
-  end
-
-  private
-
-  def fetch_category
-    @category = @portal.categories.find(params[:id])
-  end
-
-  def portal
-    @portal ||= Current.account.portals.find_by(slug: params[:portal_id])
-  end
-
-  def related_categories_records
-    @portal.categories.where(id: params[:category][:related_category_ids])
-  end
-
-  def category_params
-    params.require(:category).permit(
-      :name, :description, :position, :slug, :locale, :parent_category_id, :associated_category_id
-    )
-  end
-
-  def set_current_page
-    @current_page = params[:page] || 1
-  end
-end
--- a/app/controllers/api/v1/accounts/channels/twilio_channels_controller.rb
+++ b/app/controllers/api/v1/accounts/channels/twilio_channels_controller.rb
@ -7,6 +7,7 @@ class Api::V1::Accounts::Channels::TwilioChannelsController < Api::V1::Accounts:
      build_inbox
      setup_webhooks if @twilio_channel.sms?
    rescue StandardError => e
+      Sentry.capture_exception(e)
      render_could_not_create_error(e.message)
    end
  end
@ -27,8 +28,6 @@ class Api::V1::Accounts::Channels::TwilioChannelsController < Api::V1::Accounts:
  end

  def phone_number
-    return if permitted_params[:phone_number].blank?
-
    medium == 'sms' ? permitted_params[:phone_number] : "whatsapp:#{permitted_params[:phone_number]}"
  end

@ -40,11 +39,10 @@ class Api::V1::Accounts::Channels::TwilioChannelsController < Api::V1::Accounts:
    @twilio_channel = Current.account.twilio_sms.create!(
      account_sid: permitted_params[:account_sid],
      auth_token: permitted_params[:auth_token],
-      messaging_service_sid: permitted_params[:messaging_service_sid].presence,
      phone_number: phone_number,
      medium: medium
    )
-    @inbox = Current.account.inboxes.create!(
+    @inbox = Current.account.inboxes.create(
      name: permitted_params[:name],
      channel: @twilio_channel
    )
@ -52,7 +50,7 @@ class Api::V1::Accounts::Channels::TwilioChannelsController < Api::V1::Accounts:

  def permitted_params
    params.require(:twilio_channel).permit(
-      :account_id, :messaging_service_sid, :phone_number, :account_sid, :auth_token, :name, :medium
+      :account_id, :phone_number, :account_sid, :auth_token, :name, :medium
    )
  end
 end
--- a/app/controllers/api/v1/accounts/contacts/contact_inboxes_controller.rb
+++ b/app/controllers/api/v1/accounts/contacts/contact_inboxes_controller.rb
@ -2,11 +2,8 @@ class Api::V1::Accounts::Contacts::ContactInboxesController < Api::V1::Accounts:
  before_action :ensure_inbox, only: [:create]

  def create
-    @contact_inbox = ContactInboxBuilder.new(
-      contact: @contact,
-      inbox: @inbox,
-      source_id: params[:source_id]
-    ).perform
+    source_id = params[:source_id] || SecureRandom.uuid
+    @contact_inbox = ContactInbox.create!(contact: @contact, inbox: @inbox, source_id: source_id)
  end

  private
--- a/app/controllers/api/v1/accounts/contacts/conversations_controller.rb
+++ b/app/controllers/api/v1/accounts/contacts/conversations_controller.rb
@ -2,7 +2,7 @@ class Api::V1::Accounts::Contacts::ConversationsController < Api::V1::Accounts::
  def index
    @conversations = Current.account.conversations.includes(
      :assignee, :contact, :inbox, :taggings
-    ).where(inbox_id: inbox_ids, contact_id: @contact.id).order(id: :desc).limit(20)
+    ).where(inbox_id: inbox_ids, contact_id: @contact.id)
  end

  private
--- a/app/controllers/api/v1/accounts/contacts_controller.rb
+++ b/app/controllers/api/v1/accounts/contacts_controller.rb
@ -12,7 +12,7 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController

  before_action :check_authorization
  before_action :set_current_page, only: [:index, :active, :search, :filter]
-  before_action :fetch_contact, only: [:show, :update, :destroy, :avatar, :contactable_inboxes, :destroy_custom_attributes]
+  before_action :fetch_contact, only: [:show, :update, :destroy, :contactable_inboxes, :destroy_custom_attributes]
  before_action :set_include_contact_inboxes, only: [:index, :search, :filter]

  def index
@ -25,7 +25,7 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController

    contacts = resolved_contacts.where(
      'name ILIKE :search OR email ILIKE :search OR phone_number ILIKE :search OR contacts.identifier LIKE :search',
-      search: "%#{params[:q].strip}%"
+      search: "%#{params[:q]}%"
    )
    @contacts_count = contacts.count
    @contacts = fetch_contacts_with_conversation_count(contacts)
@ -72,17 +72,15 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController

  def create
    ActiveRecord::Base.transaction do
-      @contact = Current.account.contacts.new(permitted_params.except(:avatar_url))
+      @contact = Current.account.contacts.new(contact_params)
      @contact.save!
      @contact_inbox = build_contact_inbox
-      process_avatar
    end
  end

  def update
    @contact.assign_attributes(contact_update_params)
    @contact.save!
-    process_avatar if permitted_params[:avatar].present? || permitted_params[:avatar_url].present?
  end

  def destroy
@ -97,11 +95,6 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController
    head :ok
  end

-  def avatar
-    @contact.avatar.purge if @contact.avatar.attached?
-    @contact
-  end
-
  private

  # TODO: Move this to a finder class
@ -134,26 +127,23 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController
    return if params[:inbox_id].blank?

    inbox = Current.account.inboxes.find(params[:inbox_id])
-    ContactInboxBuilder.new(
-      contact: @contact,
-      inbox: inbox,
-      source_id: params[:source_id]
-    ).perform
+    source_id = params[:source_id] || SecureRandom.uuid
+    ContactInbox.create(contact: @contact, inbox: inbox, source_id: source_id)
  end

-  def permitted_params
-    params.permit(:name, :identifier, :email, :phone_number, :avatar, :avatar_url, additional_attributes: {}, custom_attributes: {})
+  def contact_params
+    params.require(:contact).permit(:name, :identifier, :email, :phone_number, additional_attributes: {}, custom_attributes: {})
  end

  def contact_custom_attributes
-    return @contact.custom_attributes.merge(permitted_params[:custom_attributes]) if permitted_params[:custom_attributes]
+    return @contact.custom_attributes.merge(contact_params[:custom_attributes]) if contact_params[:custom_attributes]

    @contact.custom_attributes
  end

  def contact_update_params
    # we want the merged custom attributes not the original one
-    permitted_params.except(:custom_attributes, :avatar_url).merge({ custom_attributes: contact_custom_attributes })
+    contact_params.except(:custom_attributes).merge({ custom_attributes: contact_custom_attributes })
  end

  def set_include_contact_inboxes
@ -168,10 +158,6 @@ class Api::V1::Accounts::ContactsController < Api::V1::Accounts::BaseController
    @contact = Current.account.contacts.includes(contact_inboxes: [:inbox]).find(params[:id])
  end

-  def process_avatar
-    ::Avatar::AvatarFromUrlJob.perform_later(@contact, params[:avatar_url]) if params[:avatar_url].present?
-  end
-
  def render_error(error, error_status)
    render json: error, status: error_status
  end
--- a/app/controllers/api/v1/accounts/conversations/base_controller.rb
+++ b/app/controllers/api/v1/accounts/conversations/base_controller.rb
@ -5,7 +5,7 @@ class Api::V1::Accounts::Conversations::BaseController < Api::V1::Accounts::Base
  private

  def conversation
-    @conversation ||= Current.account.conversations.find_by!(display_id: params[:conversation_id])
+    @conversation ||= Current.account.conversations.find_by(display_id: params[:conversation_id])
    authorize @conversation.inbox, :show?
  end
 end
--- a/app/controllers/api/v1/accounts/conversations_controller.rb
+++ b/app/controllers/api/v1/accounts/conversations_controller.rb
@ -3,7 +3,7 @@ class Api::V1::Accounts::ConversationsController < Api::V1::Accounts::BaseContro
  include DateRangeHelper

  before_action :conversation, except: [:index, :meta, :search, :create, :filter]
-  before_action :inbox, :contact, :contact_inbox, only: [:create]
+  before_action :contact_inbox, only: [:create]

  def index
    result = conversation_finder.perform
@ -24,7 +24,7 @@ class Api::V1::Accounts::ConversationsController < Api::V1::Accounts::BaseContro

  def create
    ActiveRecord::Base.transaction do
-      @conversation = ConversationBuilder.new(params: params, contact_inbox: @contact_inbox).perform
+      @conversation = ::Conversation.create!(conversation_params)
      Messages::MessageBuilder.new(Current.user, @conversation, params[:message]).perform if params[:message].present?
    end
  end
@ -75,13 +75,10 @@ class Api::V1::Accounts::ConversationsController < Api::V1::Accounts::BaseContro
  end

  def update_last_seen
-    update_last_seen_on_conversation(DateTime.now.utc, assignee?)
-  end
-
-  def unread
-    last_incoming_message = @conversation.messages.incoming.last
-    last_seen_at = last_incoming_message.created_at - 1.second if last_incoming_message.present?
-    update_last_seen_on_conversation(last_seen_at, true)
+    # rubocop:disable Rails/SkipsModelValidations
+    @conversation.update_column(:agent_last_seen_at, DateTime.now.utc)
+    @conversation.update_column(:assignee_last_seen_at, DateTime.now.utc) if assignee?
+    # rubocop:enable Rails/SkipsModelValidations
  end

  def custom_attributes
@ -91,18 +88,9 @@ class Api::V1::Accounts::ConversationsController < Api::V1::Accounts::BaseContro

  private

-  def update_last_seen_on_conversation(last_seen_at, update_assignee)
-    # rubocop:disable Rails/SkipsModelValidations
-    @conversation.update_column(:agent_last_seen_at, last_seen_at)
-    @conversation.update_column(:assignee_last_seen_at, last_seen_at) if update_assignee.present?
-    # rubocop:enable Rails/SkipsModelValidations
-  end
-
  def set_conversation_status
-    # TODO: temporary fallback for the old bot status in conversation, we will remove after couple of releases
-    # commenting this out to see if there are any errors, if not we can remove this in subsequent releases
-    # status = params[:status] == 'bot' ? 'pending' : params[:status]
-    @conversation.status = params[:status]
+    status = params[:status] == 'bot' ? 'pending' : params[:status]
+    @conversation.status = status
    @conversation.snoozed_until = parse_date_time(params[:snoozed_until].to_s) if params[:snoozed_until]
  end

@ -121,44 +109,51 @@ class Api::V1::Accounts::ConversationsController < Api::V1::Accounts::BaseContro
    authorize @conversation.inbox, :show?
  end

-  def inbox
-    return if params[:inbox_id].blank?
-
-    @inbox = Current.account.inboxes.find(params[:inbox_id])
-    authorize @inbox, :show?
-  end
-
-  def contact
-    return if params[:contact_id].blank?
-
-    @contact = Current.account.contacts.find(params[:contact_id])
-  end
-
  def contact_inbox
    @contact_inbox = build_contact_inbox

-    # fallback for the old case where we do look up only using source id
-    # In future we need to change this and make sure we do look up on combination of inbox_id and source_id
-    # and deprecate the support of passing only source_id as the param
    @contact_inbox ||= ::ContactInbox.find_by!(source_id: params[:source_id])
    authorize @contact_inbox.inbox, :show?
  end

  def build_contact_inbox
-    return if @inbox.blank? || @contact.blank?
+    return if params[:contact_id].blank? || params[:inbox_id].blank?
+
+    inbox = Current.account.inboxes.find(params[:inbox_id])
+    authorize inbox, :show?

    ContactInboxBuilder.new(
-      contact: @contact,
-      inbox: @inbox,
+      contact_id: params[:contact_id],
+      inbox_id: inbox.id,
      source_id: params[:source_id]
    ).perform
  end

+  def conversation_params
+    additional_attributes = params[:additional_attributes]&.permit! || {}
+    custom_attributes = params[:custom_attributes]&.permit! || {}
+    status = params[:status].present? ? { status: params[:status] } : {}
+
+    # TODO: temporary fallback for the old bot status in conversation, we will remove after couple of releases
+    status = { status: 'pending' } if status[:status] == 'bot'
+    {
+      account_id: Current.account.id,
+      inbox_id: @contact_inbox.inbox_id,
+      contact_id: @contact_inbox.contact_id,
+      contact_inbox_id: @contact_inbox.id,
+      additional_attributes: additional_attributes,
+      custom_attributes: custom_attributes,
+      snoozed_until: params[:snoozed_until],
+      assignee_id: params[:assignee_id],
+      team_id: params[:team_id]
+    }.merge(status)
+  end
+
  def conversation_finder
-    @conversation_finder ||= ConversationFinder.new(Current.user, params)
+    @conversation_finder ||= ConversationFinder.new(current_user, params)
  end

  def assignee?
-    @conversation.assignee_id? && Current.user == @conversation.assignee
+    @conversation.assignee_id? && current_user == @conversation.assignee
  end
 end
--- a/app/controllers/api/v1/accounts/csat_survey_responses_controller.rb
+++ b/app/controllers/api/v1/accounts/csat_survey_responses_controller.rb
@ -5,7 +5,7 @@ class Api::V1::Accounts::CsatSurveyResponsesController < Api::V1::Accounts::Base
  RESULTS_PER_PAGE = 25

  before_action :check_authorization
-  before_action :set_csat_survey_responses, only: [:index, :metrics, :download]
+  before_action :set_csat_survey_responses, only: [:index, :metrics]
  before_action :set_current_page, only: [:index]
  before_action :set_current_page_surveys, only: [:index]
  before_action :set_total_sent_messages_count, only: [:metrics]
@ -19,12 +19,6 @@ class Api::V1::Accounts::CsatSurveyResponsesController < Api::V1::Accounts::Base
    @ratings_count = @csat_survey_responses.group(:rating).count
  end

-  def download
-    response.headers['Content-Type'] = 'text/csv'
-    response.headers['Content-Disposition'] = 'attachment; filename=csat_report.csv'
-    render layout: false, template: 'api/v1/accounts/csat_survey_responses/download', formats: [:csv]
-  end
-
  private

  def set_total_sent_messages_count
--- a/app/controllers/api/v1/accounts/dashboard_apps_controller.rb
+++ b/app/controllers/api/v1/accounts/dashboard_apps_controller.rb
@ -1,44 +0,0 @@
-class Api::V1::Accounts::DashboardAppsController < Api::V1::Accounts::BaseController
-  before_action :fetch_dashboard_apps, except: [:create]
-  before_action :fetch_dashboard_app, only: [:show, :update, :destroy]
-
-  def index; end
-
-  def show; end
-
-  def create
-    @dashboard_app = Current.account.dashboard_apps.create!(
-      permitted_payload.merge(user_id: Current.user.id)
-    )
-  end
-
-  def update
-    @dashboard_app.update!(permitted_payload)
-  end
-
-  def destroy
-    @dashboard_app.destroy!
-    head :no_content
-  end
-
-  private
-
-  def fetch_dashboard_apps
-    @dashboard_apps = Current.account.dashboard_apps
-  end
-
-  def fetch_dashboard_app
-    @dashboard_app = @dashboard_apps.find(permitted_params[:id])
-  end
-
-  def permitted_payload
-    params.require(:dashboard_app).permit(
-      :title,
-      content: [:url, :type]
-    )
-  end
-
-  def permitted_params
-    params.permit(:id)
-  end
-end
--- a/app/controllers/api/v1/accounts/inboxes_controller.rb
+++ b/app/controllers/api/v1/accounts/inboxes_controller.rb
@ -12,7 +12,6 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController

  def show; end

-  # Deprecated: This API will be removed in 2.7.0
  def assignable_agents
    @assignable_agents = (Current.account.users.where(id: @inbox.members.select(:user_id)) + Current.account.administrators).uniq
  end
@ -42,19 +41,15 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
  end

  def update
-    @inbox.update!(permitted_params.except(:channel))
-    update_inbox_working_hours
+    @inbox.update(permitted_params.except(:channel))
+    @inbox.update_working_hours(params.permit(working_hours: Inbox::OFFISABLE_ATTRS)[:working_hours]) if params[:working_hours]
    channel_attributes = get_channel_attributes(@inbox.channel_type)

    # Inbox update doesn't necessarily need channel attributes
    return if permitted_params(channel_attributes)[:channel].blank?

    if @inbox.inbox_type == 'Email'
-      begin
-        validate_email_channel(channel_attributes)
-      rescue StandardError => e
-        render json: { message: e }, status: :unprocessable_entity and return
-      end
+      validate_email_channel(channel_attributes)
      @inbox.channel.reauthorized!
    end

@ -62,10 +57,6 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
    update_channel_feature_flags
  end

-  def update_inbox_working_hours
-    @inbox.update_working_hours(params.permit(working_hours: Inbox::OFFISABLE_ATTRS)[:working_hours]) if params[:working_hours]
-  end
-
  def agent_bot
    @agent_bot = @inbox.agent_bot
  end
@ -97,6 +88,12 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
    @agent_bot = AgentBot.find(params[:agent_bot]) if params[:agent_bot]
  end

+  def inbox_name(channel)
+    return channel.try(:bot_name) if channel.is_a?(Channel::Telegram)
+
+    permitted_params[:name]
+  end
+
  def create_channel
    return unless %w[web_widget api email line telegram whatsapp sms].include?(permitted_params[:channel][:type])

@ -111,15 +108,10 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
    @inbox.channel.save!
  end

-  def inbox_attributes
-    [:name, :avatar, :greeting_enabled, :greeting_message, :enable_email_collect, :csat_survey_enabled,
-     :enable_auto_assignment, :working_hours_enabled, :out_of_office_message, :timezone, :allow_messages_after_resolved,
-     :lock_to_single_conversation]
-  end
-
  def permitted_params(channel_attributes = [])
    params.permit(
-      *inbox_attributes,
+      :name, :avatar, :greeting_enabled, :greeting_message, :enable_email_collect, :csat_survey_enabled,
+      :enable_auto_assignment, :working_hours_enabled, :out_of_office_message, :timezone, :allow_messages_after_resolved,
      channel: [:type, *channel_attributes]
    )
  end
@ -136,6 +128,18 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
    }[permitted_params[:channel][:type]]
  end

+  def account_channels_method
+    {
+      'web_widget' => Current.account.web_widgets,
+      'api' => Current.account.api_channels,
+      'email' => Current.account.email_channels,
+      'line' => Current.account.line_channels,
+      'telegram' => Current.account.telegram_channels,
+      'whatsapp' => Current.account.whatsapp_channels,
+      'sms' => Current.account.sms_channels
+    }[permitted_params[:channel][:type]]
+  end
+
  def get_channel_attributes(channel_type)
    if channel_type.constantize.const_defined?(:EDITABLE_ATTRS)
      channel_type.constantize::EDITABLE_ATTRS.presence
@ -143,6 +147,10 @@ class Api::V1::Accounts::InboxesController < Api::V1::Accounts::BaseController
      []
    end
  end
-end

-Api::V1::Accounts::InboxesController.prepend_mod_with('Api::V1::Accounts::InboxesController')
+  def validate_limit
+    return unless Current.account.inboxes.count >= Current.account.usage_limits[:inboxes]
+
+    render_payment_required('Account limit exceeded. Upgrade to a higher plan')
+  end
+end
--- a/app/controllers/api/v1/accounts/kbase/base_controller.rb
+++ b/app/controllers/api/v1/accounts/kbase/base_controller.rb
@ -0,0 +1,9 @@
+class Api::V1::Accounts::Kbase::BaseController < Api::V1::Accounts::BaseController
+  before_action :portal
+
+  private
+
+  def portal
+    @portal ||= Current.account.kbase_portals.find_by(id: params[:portal_id])
+  end
+end
--- a/app/controllers/api/v1/accounts/kbase/categories_controller.rb
+++ b/app/controllers/api/v1/accounts/kbase/categories_controller.rb
@ -0,0 +1,32 @@
+class Api::V1::Accounts::Kbase::CategoriesController < Api::V1::Accounts::Kbase::BaseController
+  before_action :fetch_category, except: [:index, :create]
+
+  def index
+    @categories = @portal.categories
+  end
+
+  def create
+    @category = @portal.categories.create!(category_params)
+  end
+
+  def update
+    @category.update!(category_params)
+  end
+
+  def destroy
+    @category.destroy!
+    head :ok
+  end
+
+  private
+
+  def fetch_category
+    @category = @portal.categories.find(params[:id])
+  end
+
+  def category_params
+    params.require(:category).permit(
+      :name, :description, :position
+    )
+  end
+end
--- a/app/controllers/api/v1/accounts/kbase/portals_controller.rb
+++ b/app/controllers/api/v1/accounts/kbase/portals_controller.rb
@ -0,0 +1,32 @@
+class Api::V1::Accounts::Kbase::PortalsController < Api::V1::Accounts::Kbase::BaseController
+  before_action :fetch_portal, except: [:index, :create]
+
+  def index
+    @portals = Current.account.kbase_portals
+  end
+
+  def create
+    @portal = Current.account.kbase_portals.create!(portal_params)
+  end
+
+  def update
+    @portal.update!(portal_params)
+  end
+
+  def destroy
+    @portal.destroy!
+    head :ok
+  end
+
+  private
+
+  def fetch_portal
+    @portal = current_account.kbase_portals.find(params[:id])
+  end
+
+  def portal_params
+    params.require(:portal).permit(
+      :account_id, :color, :custom_domain, :header_text, :homepage_link, :name, :page_title, :slug
+    )
+  end
+end
--- a/app/controllers/api/v1/accounts/macros_controller.rb
+++ b/app/controllers/api/v1/accounts/macros_controller.rb
@ -1,89 +0,0 @@
-class Api::V1::Accounts::MacrosController < Api::V1::Accounts::BaseController
-  before_action :fetch_macro, only: [:show, :update, :destroy, :execute]
-  before_action :check_authorization, only: [:show, :update, :destroy, :execute]
-
-  def index
-    @macros = Macro.with_visibility(current_user, params)
-  end
-
-  def create
-    @macro = Current.account.macros.new(macros_with_user.merge(created_by_id: current_user.id))
-    @macro.set_visibility(current_user, permitted_params)
-    @macro.actions = params[:actions]
-
-    render json: { error: @macro.errors.messages }, status: :unprocessable_entity and return unless @macro.valid?
-
-    @macro.save!
-    process_attachments
-    @macro
-  end
-
-  def show
-    head :not_found if @macro.nil?
-  end
-
-  def destroy
-    @macro.destroy!
-    head :ok
-  end
-
-  def attach_file
-    file_blob = ActiveStorage::Blob.create_and_upload!(
-      key: nil,
-      io: params[:attachment].tempfile,
-      filename: params[:attachment].original_filename,
-      content_type: params[:attachment].content_type
-    )
-    render json: { blob_key: file_blob.key, blob_id: file_blob.id }
-  end
-
-  def update
-    ActiveRecord::Base.transaction do
-      @macro.update!(macros_with_user)
-      @macro.set_visibility(current_user, permitted_params)
-      process_attachments
-      @macro.save!
-    rescue StandardError => e
-      Rails.logger.error e
-      render json: { error: @macro.errors.messages }.to_json, status: :unprocessable_entity
-    end
-  end
-
-  def execute
-    ::MacrosExecutionJob.perform_later(@macro, conversation_ids: params[:conversation_ids], user: Current.user)
-
-    head :ok
-  end
-
-  private
-
-  def process_attachments
-    actions = @macro.actions.filter_map { |k, _v| k if k['action_name'] == 'send_attachment' }
-    return if actions.blank?
-
-    actions.each do |action|
-      blob_id = action['action_params']
-      blob = ActiveStorage::Blob.find_by(id: blob_id)
-      @macro.files.attach(blob)
-    end
-  end
-
-  def permitted_params
-    params.permit(
-      :name, :account_id, :visibility,
-      actions: [:action_name, { action_params: [] }]
-    )
-  end
-
-  def macros_with_user
-    permitted_params.merge(updated_by_id: current_user.id)
-  end
-
-  def fetch_macro
-    @macro = Current.account.macros.find_by(id: params[:id])
-  end
-
-  def check_authorization
-    authorize(@macro) if @macro.present?
-  end
-end
--- a/app/controllers/api/v1/accounts/portals_controller.rb
+++ b/app/controllers/api/v1/accounts/portals_controller.rb
@ -1,83 +0,0 @@
-class Api::V1::Accounts::PortalsController < Api::V1::Accounts::BaseController
-  include ::FileTypeHelper
-
-  before_action :fetch_portal, except: [:index, :create]
-  before_action :check_authorization
-  before_action :set_current_page, only: [:index]
-
-  def index
-    @portals = Current.account.portals
-  end
-
-  def add_members
-    agents = Current.account.agents.where(id: portal_member_params[:member_ids])
-    @portal.members << agents
-  end
-
-  def show
-    @all_articles = @portal.articles
-    @articles = @all_articles.search(locale: params[:locale])
-  end
-
-  def create
-    @portal = Current.account.portals.build(portal_params)
-    @portal.custom_domain = parsed_custom_domain
-    @portal.save!
-    process_attached_logo
-  end
-
-  def update
-    ActiveRecord::Base.transaction do
-      @portal.update!(portal_params) if params[:portal].present?
-      # @portal.custom_domain = parsed_custom_domain
-      process_attached_logo
-    rescue StandardError => e
-      Rails.logger.error e
-      render json: { error: @portal.errors.messages }.to_json, status: :unprocessable_entity
-    end
-  end
-
-  def destroy
-    @portal.destroy!
-    head :ok
-  end
-
-  def archive
-    @portal.update(archive: true)
-    head :ok
-  end
-
-  def process_attached_logo
-    @portal.logo.attach(params[:logo])
-  end
-
-  private
-
-  def fetch_portal
-    @portal = Current.account.portals.find_by(slug: permitted_params[:id])
-  end
-
-  def permitted_params
-    params.permit(:id)
-  end
-
-  def portal_params
-    params.require(:portal).permit(
-      :account_id, :color, :custom_domain, :header_text, :homepage_link, :name, :page_title, :slug, :archived, { config: [:default_locale,
-                                                                                                                          { allowed_locales: [] }] }
-    )
-  end
-
-  def portal_member_params
-    params.require(:portal).permit(:account_id, member_ids: [])
-  end
-
-  def set_current_page
-    @current_page = params[:page] || 1
-  end
-
-  def parsed_custom_domain
-    domain = URI.parse(@portal.custom_domain)
-    domain.is_a?(URI::HTTP) ? domain.host : @portal.custom_domain
-  end
-end
--- a/app/controllers/api/v1/accounts/team_members_controller.rb
+++ b/app/controllers/api/v1/accounts/team_members_controller.rb
@ -1,7 +1,6 @@
 class Api::V1::Accounts::TeamMembersController < Api::V1::Accounts::BaseController
  before_action :fetch_team
  before_action :check_authorization
-  before_action :validate_member_id_params, only: [:create, :update, :destroy]

  def index
    @team_members = @team.team_members.map(&:user)
@ -46,10 +45,4 @@ class Api::V1::Accounts::TeamMembersController < Api::V1::Accounts::BaseControll
  def fetch_team
    @team = Current.account.teams.find(params[:team_id])
  end
-
-  def validate_member_id_params
-    invalid_ids = params[:user_ids].map(&:to_i) - @team.account.user_ids
-
-    render json: { error: 'Invalid User IDs' }, status: :unauthorized and return if invalid_ids.present?
-  end
 end
--- a/app/controllers/api/v1/accounts/webhooks_controller.rb
+++ b/app/controllers/api/v1/accounts/webhooks_controller.rb
@ -23,7 +23,7 @@ class Api::V1::Accounts::WebhooksController < Api::V1::Accounts::BaseController
  private

  def webhook_params
-    params.require(:webhook).permit(:inbox_id, :url, subscriptions: [])
+    params.require(:webhook).permit(:inbox_id, :url)
  end

  def fetch_webhook
--- a/app/controllers/api/v1/accounts_controller.rb
+++ b/app/controllers/api/v1/accounts_controller.rb
@ -19,12 +19,11 @@ class Api::V1::AccountsController < Api::BaseController
      user_full_name: account_params[:user_full_name],
      email: account_params[:email],
      user_password: account_params[:password],
-      locale: account_params[:locale],
      user: current_user
    ).perform
    if @user
      send_auth_headers(@user)
-      render 'api/v1/accounts/create', format: :json, locals: { resource: @user }
+      render 'api/v1/accounts/create.json', locals: { resource: @user }
    else
      render_error_response(CustomExceptions::Account::SignupFailed.new({}))
    end
@ -32,7 +31,7 @@ class Api::V1::AccountsController < Api::BaseController

  def show
    @latest_chatwoot_version = ::Redis::Alfred.get(::Redis::Alfred::LATEST_CHATWOOT_VERSION)
-    render 'api/v1/accounts/show', format: :json
+    render 'api/v1/accounts/show.json'
  end

  def update
--- a/app/controllers/api/v1/notification_subscriptions_controller.rb
+++ b/app/controllers/api/v1/notification_subscriptions_controller.rb
@ -9,7 +9,7 @@ class Api::V1::NotificationSubscriptionsController < Api::BaseController

  def destroy
    notification_subscription = NotificationSubscription.where(["subscription_attributes->>'push_token' = ?", params[:push_token]]).first
-    notification_subscription.destroy! if notification_subscription.present?
+    notification_subscription.destroy!
    head :ok
  end

--- a/app/controllers/api/v1/profiles_controller.rb
+++ b/app/controllers/api/v1/profiles_controller.rb
@ -18,19 +18,10 @@ class Api::V1::ProfilesController < Api::BaseController
    head :ok
  end

-  def auto_offline
-    @user.account_users.find_by!(account_id: auto_offline_params[:account_id]).update!(auto_offline: auto_offline_params[:auto_offline] || false)
-  end
-
  def availability
    @user.account_users.find_by!(account_id: availability_params[:account_id]).update!(availability: availability_params[:availability])
  end

-  def set_active_account
-    @user.account_users.find_by(account_id: profile_params[:account_id]).update(active_at: Time.now.utc)
-    head :ok
-  end
-
  private

  def set_user
@ -41,10 +32,6 @@ class Api::V1::ProfilesController < Api::BaseController
    params.require(:profile).permit(:account_id, :availability)
  end

-  def auto_offline_params
-    params.require(:profile).permit(:account_id, :auto_offline)
-  end
-
  def profile_params
    params.require(:profile).permit(
      :email,
@ -52,7 +39,6 @@ class Api::V1::ProfilesController < Api::BaseController
      :display_name,
      :avatar,
      :message_signature,
-      :account_id,
      ui_settings: {}
    )
  end
--- a/app/controllers/api/v1/webhooks_controller.rb
+++ b/app/controllers/api/v1/webhooks_controller.rb
@ -10,7 +10,7 @@ class Api::V1::WebhooksController < ApplicationController
    twitter_consumer.consume
    head :ok
  rescue StandardError => e
-    ChatwootExceptionTracker.new(e).capture_exception
+    Sentry.capture_exception(e)
    head :ok
  end

--- a/app/controllers/api/v1/widget/base_controller.rb
+++ b/app/controllers/api/v1/widget/base_controller.rb
@ -36,27 +36,32 @@ class Api::V1::Widget::BaseController < ApplicationController
      contact_id: @contact.id,
      contact_inbox_id: @contact_inbox.id,
      additional_attributes: {
-        browser_language: browser.accept_language&.first&.code,
        browser: browser_params,
-        initiated_at: timestamp_params,
-        referer: permitted_params[:message][:referer_url]
-      },
-      custom_attributes: permitted_params[:custom_attributes].presence || {}
+        referer: permitted_params[:message][:referer_url],
+        initiated_at: timestamp_params
+      }
    }
  end

+  def update_contact(email)
+    contact_with_email = @current_account.contacts.find_by(email: email)
+    if contact_with_email
+      @contact = ::ContactMergeAction.new(
+        account: @current_account,
+        base_contact: contact_with_email,
+        mergee_contact: @contact
+      ).perform
+    else
+      @contact.update!(email: email, name: contact_name)
+    end
+  end
+
  def contact_email
-    permitted_params.dig(:contact, :email)&.downcase
+    permitted_params[:contact][:email].downcase
  end

  def contact_name
-    return if @contact.email.present? || @contact.phone_number.present? || @contact.identifier.present?
-
-    permitted_params.dig(:contact, :name) || (contact_email.split('@')[0] if contact_email.present?)
-  end
-
-  def contact_phone_number
-    permitted_params.dig(:contact, :phone_number)
+    params[:contact][:name] || contact_email.split('@')[0]
  end

  def browser_params
--- a/app/controllers/api/v1/widget/contacts_controller.rb
+++ b/app/controllers/api/v1/widget/contacts_controller.rb
@ -1,27 +1,14 @@
 class Api::V1::Widget::ContactsController < Api::V1::Widget::BaseController
-  include WidgetHelper
-
-  before_action :validate_hmac, only: [:set_user]
+  before_action :process_hmac, only: [:update]

  def show; end

  def update
-    identify_contact(@contact)
-  end
-
-  def set_user
-    contact = nil
-
-    if a_different_contact?
-      @contact_inbox, @widget_auth_token = build_contact_inbox_with_token(@web_widget)
-      contact = @contact_inbox.contact
-    else
-      contact = @contact
-    end
-
-    @contact_inbox.update(hmac_verified: true) if should_verify_hmac? && valid_hmac?
-
-    identify_contact(contact)
+    contact_identify_action = ContactIdentifyAction.new(
+      contact: @contact,
+      params: permitted_params.to_h.deep_symbolize_keys
+    )
+    @contact = contact_identify_action.perform
  end

  # TODO : clean up this with proper routes delete contacts/custom_attributes
@ -33,23 +20,12 @@ class Api::V1::Widget::ContactsController < Api::V1::Widget::BaseController

  private

-  def identify_contact(contact)
-    contact_identify_action = ContactIdentifyAction.new(
-      contact: contact,
-      params: permitted_params.to_h.deep_symbolize_keys,
-      discard_invalid_attrs: true
-    )
-    @contact = contact_identify_action.perform
-  end
-
-  def a_different_contact?
-    @contact.identifier.present? && @contact.identifier != permitted_params[:identifier]
-  end
-
-  def validate_hmac
+  def process_hmac
    return unless should_verify_hmac?

    render json: { error: 'HMAC failed: Invalid Identifier Hash Provided' }, status: :unauthorized unless valid_hmac?
+
+    @contact_inbox.update(hmac_verified: true)
  end

  def should_verify_hmac?
--- a/app/controllers/api/v1/widget/conversations_controller.rb
+++ b/app/controllers/api/v1/widget/conversations_controller.rb
@ -7,21 +7,12 @@ class Api::V1::Widget::ConversationsController < Api::V1::Widget::BaseController

  def create
    ActiveRecord::Base.transaction do
-      process_update_contact
+      update_contact(contact_email) if @contact.email.blank? && contact_email.present?
      @conversation = create_conversation
-      conversation.messages.create!(message_params)
+      conversation.messages.create(message_params)
    end
  end

-  def process_update_contact
-    @contact = ContactIdentifyAction.new(
-      contact: @contact,
-      params: { email: contact_email, phone_number: contact_phone_number, name: contact_name },
-      retain_original_contact_name: true,
-      discard_invalid_attrs: true
-    ).perform
-  end
-
  def update_last_seen
    head :ok && return if conversation.nil?

@ -60,7 +51,7 @@ class Api::V1::Widget::ConversationsController < Api::V1::Widget::BaseController

    unless conversation.resolved?
      conversation.status = :resolved
-      conversation.save!
+      conversation.save
    end
    head :ok
  end
@ -72,8 +63,6 @@ class Api::V1::Widget::ConversationsController < Api::V1::Widget::BaseController
  end

  def permitted_params
-    params.permit(:id, :typing_status, :website_token, :email, contact: [:name, :email, :phone_number],
-                                                               message: [:content, :referer_url, :timestamp, :echo_id],
-                                                               custom_attributes: {})
+    params.permit(:id, :typing_status, :website_token, :email, contact: [:name, :email], message: [:content, :referer_url, :timestamp, :echo_id])
  end
 end
--- a/app/controllers/api/v1/widget/messages_controller.rb
+++ b/app/controllers/api/v1/widget/messages_controller.rb
@ -15,10 +15,7 @@ class Api::V1::Widget::MessagesController < Api::V1::Widget::BaseController
  def update
    if @message.content_type == 'input_email'
      @message.update!(submitted_email: contact_email)
-      ContactIdentifyAction.new(
-        contact: @contact,
-        params: { email: contact_email }
-      ).perform
+      update_contact(contact_email)
    else
      @message.update!(message_update_params[:message])
    end
--- a/app/controllers/api/v2/accounts/reports_controller.rb
+++ b/app/controllers/api/v2/accounts/reports_controller.rb
@ -1,5 +1,4 @@
 class Api::V2::Accounts::ReportsController < Api::V1::Accounts::BaseController
-  include Api::V2::Accounts::ReportsHelper
  before_action :check_authorization

  def index
@ -13,23 +12,27 @@ class Api::V2::Accounts::ReportsController < Api::V1::Accounts::BaseController
  end

  def agents
-    @report_data = generate_agents_report
-    generate_csv('agents_report', 'api/v2/accounts/reports/agents')
+    response.headers['Content-Type'] = 'text/csv'
+    response.headers['Content-Disposition'] = 'attachment; filename=agents_report.csv'
+    render layout: false, template: 'api/v2/accounts/reports/agents.csv.erb', format: 'csv'
  end

  def inboxes
-    @report_data = generate_inboxes_report
-    generate_csv('inboxes_report', 'api/v2/accounts/reports/inboxes')
+    response.headers['Content-Type'] = 'text/csv'
+    response.headers['Content-Disposition'] = 'attachment; filename=inboxes_report.csv'
+    render layout: false, template: 'api/v2/accounts/reports/inboxes.csv.erb', format: 'csv'
  end

  def labels
-    @report_data = generate_labels_report
-    generate_csv('labels_report', 'api/v2/accounts/reports/labels')
+    response.headers['Content-Type'] = 'text/csv'
+    response.headers['Content-Disposition'] = 'attachment; filename=labels_report.csv'
+    render layout: false, template: 'api/v2/accounts/reports/labels.csv.erb', format: 'csv'
  end

  def teams
-    @report_data = generate_teams_report
-    generate_csv('teams_report', 'api/v2/accounts/reports/teams')
+    response.headers['Content-Type'] = 'text/csv'
+    response.headers['Content-Disposition'] = 'attachment; filename=teams_report.csv'
+    render layout: false, template: 'api/v2/accounts/reports/teams.csv.erb', format: 'csv'
  end

  def conversations
@ -40,53 +43,46 @@ class Api::V2::Accounts::ReportsController < Api::V1::Accounts::BaseController

  private

-  def generate_csv(filename, template)
-    response.headers['Content-Type'] = 'text/csv'
-    response.headers['Content-Disposition'] = "attachment; filename=#{filename}.csv"
-    render layout: false, template: template, formats: [:csv]
-  end
-
  def check_authorization
    raise Pundit::NotAuthorizedError unless Current.account_user.administrator?
  end

-  def common_params
+  def current_summary_params
    {
      type: params[:type].to_sym,
      id: params[:id],
-      group_by: params[:group_by],
-      business_hours: ActiveModel::Type::Boolean.new.cast(params[:business_hours])
+      since: range[:current][:since],
+      until: range[:current][:until],
+      group_by: params[:group_by]
    }
  end

-  def current_summary_params
-    common_params.merge({
-                          since: range[:current][:since],
-                          until: range[:current][:until]
-                        })
-  end
-
  def previous_summary_params
-    common_params.merge({
-                          since: range[:previous][:since],
-                          until: range[:previous][:until]
-                        })
+    {
+      type: params[:type].to_sym,
+      id: params[:id],
+      since: range[:previous][:since],
+      until: range[:previous][:until],
+      group_by: params[:group_by]
+    }
  end

  def report_params
-    common_params.merge({
-                          metric: params[:metric],
-                          since: params[:since],
-                          until: params[:until],
-                          timezone_offset: params[:timezone_offset]
-                        })
+    {
+      metric: params[:metric],
+      type: params[:type].to_sym,
+      since: params[:since],
+      until: params[:until],
+      id: params[:id],
+      group_by: params[:group_by],
+      timezone_offset: params[:timezone_offset]
+    }
  end

  def conversation_params
    {
      type: params[:type].to_sym,
-      user_id: params[:user_id],
-      page: params[:page].presence || 1
+      user_id: params[:user_id]
    }
  end

--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@ -1,7 +1,7 @@
 class ApplicationController < ActionController::Base
  include DeviseTokenAuth::Concerns::SetUserByToken
  include RequestExceptionHandler
-  include Pundit::Authorization
+  include Pundit
  include SwitchLocale

  skip_before_action :verify_authenticity_token
@ -17,6 +17,10 @@ class ApplicationController < ActionController::Base
    Current.user = @user
  end

+  def current_subscription
+    @subscription ||= Current.account.subscription
+  end
+
  def pundit_user
    {
      user: Current.user,
--- a/app/controllers/concerns/ensure_current_account_helper.rb
+++ b/app/controllers/concerns/ensure_current_account_helper.rb
@ -8,8 +8,6 @@ module EnsureCurrentAccountHelper

  def ensure_current_account
    account = Account.find(params[:account_id])
-    ensure_account_is_active?(account)
-
    if current_user
      account_accessible_for_user?(account)
    elsif @resource.is_a?(AgentBot)
@ -27,8 +25,4 @@ module EnsureCurrentAccountHelper
  def account_accessible_for_bot?(account)
    render_unauthorized('You are not authorized to access this account') unless @resource.agent_bot_inboxes.find_by(account_id: account.id)
  end
-
-  def ensure_account_is_active?(account)
-    render_unauthorized('Account is suspended') unless account.active?
-  end
 end
--- a/app/controllers/concerns/meta_token_verify_concern.rb
+++ b/app/controllers/concerns/meta_token_verify_concern.rb
@ -1,20 +0,0 @@
-# services from Meta (Prev: Facebook) needs a token verification step for webhook subscriptions,
-# This concern handles the token verification step.
-
-module MetaTokenVerifyConcern
-  def verify
-    service = is_a?(Webhooks::WhatsappController) ? 'whatsapp' : 'instagram'
-    if valid_token?(params['hub.verify_token'])
-      Rails.logger.info("#{service.capitalize} webhook verified")
-      render json: params['hub.challenge']
-    else
-      render status: :unauthorized, json: { error: 'Error; wrong verify token' }
-    end
-  end
-
-  private
-
-  def valid_token?(_token)
-    raise 'Overwrite this method your controller'
-  end
-end
--- a/app/controllers/concerns/request_exception_handler.rb
+++ b/app/controllers/concerns/request_exception_handler.rb
@ -9,12 +9,11 @@ module RequestExceptionHandler

  def handle_with_exception
    yield
-  rescue ActiveRecord::RecordNotFound
+  rescue ActiveRecord::RecordNotFound => e
+    Sentry.capture_exception(e)
    render_not_found_error('Resource could not be found')
  rescue Pundit::NotAuthorizedError
    render_unauthorized('You are not authorized to do this action')
-  rescue ActionController::ParameterMissing => e
-    render_could_not_create_error(e.message)
  ensure
    # to address the thread variable leak issues in Puma/Thin webserver
    Current.reset
--- a/app/controllers/concerns/website_token_helper.rb
+++ b/app/controllers/concerns/website_token_helper.rb
@ -5,9 +5,7 @@ module WebsiteTokenHelper

  def set_web_widget
    @web_widget = ::Channel::WebWidget.find_by!(website_token: permitted_params[:website_token])
-    @current_account = @web_widget.inbox.account
-
-    render json: { error: 'Account is suspended' }, status: :unauthorized unless @current_account.active?
+    @current_account = @web_widget.account
  end

  def set_contact
--- a/app/controllers/dashboard_controller.rb
+++ b/app/controllers/dashboard_controller.rb
@ -4,7 +4,6 @@ class DashboardController < ActionController::Base
  before_action :set_global_config
  around_action :switch_locale
  before_action :ensure_installation_onboarding, only: [:index]
-  before_action :render_hc_if_custom_domain, only: [:index]

  layout 'vueapp'

@ -14,9 +13,11 @@ class DashboardController < ActionController::Base

  def set_global_config
    @global_config = GlobalConfig.get(
-      'LOGO', 'LOGO_THUMBNAIL',
+      'LOGO',
+      'LOGO_THUMBNAIL',
      'INSTALLATION_NAME',
-      'WIDGET_BRAND_URL', 'TERMS_URL',
+      'WIDGET_BRAND_URL',
+      'TERMS_URL',
      'PRIVACY_URL',
      'DISPLAY_MANIFEST',
      'CREATE_NEW_ACCOUNT_FROM_DASHBOARD',
@ -24,12 +25,11 @@ class DashboardController < ActionController::Base
      'API_CHANNEL_NAME',
      'API_CHANNEL_THUMBNAIL',
      'ANALYTICS_TOKEN',
+      'ANALYTICS_HOST',
      'DIRECT_UPLOADS_ENABLED',
      'HCAPTCHA_SITE_KEY',
      'LOGOUT_REDIRECT_LINK',
-      'DISABLE_USER_PROFILE_UPDATE',
-      'DEPLOYMENT_ENV',
-      'CSML_EDITOR_HOST'
+      'DISABLE_USER_PROFILE_UPDATE'
    ).merge(app_config)
  end

@ -37,25 +37,10 @@ class DashboardController < ActionController::Base
    redirect_to '/installation/onboarding' if ::Redis::Alfred.get(::Redis::Alfred::CHATWOOT_INSTALLATION_ONBOARDING)
  end

-  def render_hc_if_custom_domain
-    domain = request.host
-    return if domain == URI.parse(ENV.fetch('FRONTEND_URL', '')).host
-
-    @portal = Portal.find_by(custom_domain: domain)
-    return unless @portal
-
-    @locale = @portal.default_locale
-    render 'public/api/v1/portals/show', layout: 'portal', portal: @portal and return
-  end
-
  def app_config
-    {
-      APP_VERSION: Chatwoot.config[:version],
+    { APP_VERSION: Chatwoot.config[:version],
      VAPID_PUBLIC_KEY: VapidService.public_key,
      ENABLE_ACCOUNT_SIGNUP: GlobalConfigService.load('ENABLE_ACCOUNT_SIGNUP', 'false'),
-      FB_APP_ID: GlobalConfigService.load('FB_APP_ID', ''),
-      FACEBOOK_API_VERSION: 'v14.0',
-      IS_ENTERPRISE: ChatwootApp.enterprise?
-    }
+      FB_APP_ID: GlobalConfigService.load('FB_APP_ID', '') }
  end
 end
--- a/app/controllers/devise_overrides/confirmations_controller.rb
+++ b/app/controllers/devise_overrides/confirmations_controller.rb
@ -14,7 +14,7 @@ class DeviseOverrides::ConfirmationsController < Devise::ConfirmationsController

  def render_confirmation_success
    send_auth_headers(@confirmable)
-    render partial: 'devise/auth', formats: [:json], locals: { resource: @confirmable }
+    render partial: 'devise/auth.json', locals: { resource: @confirmable }
  end

  def render_confirmation_error
--- a/app/controllers/devise_overrides/passwords_controller.rb
+++ b/app/controllers/devise_overrides/passwords_controller.rb
@ -11,7 +11,7 @@ class DeviseOverrides::PasswordsController < Devise::PasswordsController
    @recoverable = User.find_by(reset_password_token: reset_password_token)
    if @recoverable && reset_password_and_confirmation(@recoverable)
      send_auth_headers(@recoverable)
-      render partial: 'devise/auth', formats: [:json], locals: { resource: @recoverable }
+      render partial: 'devise/auth.json', locals: { resource: @recoverable }
    else
      render json: { message: 'Invalid token', redirect_url: '/' }, status: :unprocessable_entity
    end
--- a/app/controllers/devise_overrides/sessions_controller.rb
+++ b/app/controllers/devise_overrides/sessions_controller.rb
@ -16,14 +16,14 @@ class DeviseOverrides::SessionsController < ::DeviseTokenAuth::SessionsControlle
  end

  def render_create_success
-    render partial: 'devise/auth', formats: [:json], locals: { resource: @resource }
+    render partial: 'devise/auth.json', locals: { resource: @resource }
  end

  private

  def authenticate_resource_with_sso_token
    @token = @resource.create_token
-    @resource.save!
+    @resource.save

    sign_in(:user, @resource, store: false, bypass: false)
    # invalidate the token after the user is signed in
--- a/app/controllers/devise_overrides/token_validations_controller.rb
+++ b/app/controllers/devise_overrides/token_validations_controller.rb
@ -2,7 +2,7 @@ class DeviseOverrides::TokenValidationsController < ::DeviseTokenAuth::TokenVali
  def validate_token
    # @resource will have been set by set_user_by_token concern
    if @resource
-      render 'devise/token', formats: [:json]
+      render 'devise/token.json'
    else
      render_validate_token_error
    end
--- a/app/controllers/platform/api/v1/accounts_controller.rb
+++ b/app/controllers/platform/api/v1/accounts_controller.rb
@ -1,16 +1,18 @@
 class Platform::Api::V1::AccountsController < PlatformController
  def create
-    @resource = Account.create!(account_params)
-    update_resource_features
+    @resource = Account.new(account_params)
+    @resource.save!
    @platform_app.platform_app_permissibles.find_or_create_by(permissible: @resource)
+    render json: @resource
  end

-  def show; end
+  def show
+    render json: @resource
+  end

  def update
-    @resource.assign_attributes(account_params)
-    update_resource_features
-    @resource.save!
+    @resource.update!(account_params)
+    render json: @resource
  end

  def destroy
@ -25,18 +27,6 @@ class Platform::Api::V1::AccountsController < PlatformController
  end

  def account_params
-    permitted_params.except(:features)
-  end
-
-  def update_resource_features
-    return if permitted_params[:features].blank?
-
-    permitted_params[:features].each do |key, value|
-      value.present? ? @resource.enable_features(key) : @resource.disable_features(key)
-    end
-  end
-
-  def permitted_params
-    params.permit(:name, :locale, :domain, :support_email, :status, features: {}, limits: {}, custom_attributes: {})
+    params.permit(:name)
  end
 end
--- a/app/controllers/platform/api/v1/users_controller.rb
+++ b/app/controllers/platform/api/v1/users_controller.rb
@ -14,17 +14,13 @@ class Platform::Api::V1::UsersController < PlatformController

  def login
    encoded_email = ERB::Util.url_encode(@resource.email)
-    render json: { url: "#{ENV.fetch('FRONTEND_URL', nil)}/app/login?email=#{encoded_email}&sso_auth_token=#{@resource.generate_sso_auth_token}" }
+    render json: { url: "#{ENV['FRONTEND_URL']}/app/login?email=#{encoded_email}&sso_auth_token=#{@resource.generate_sso_auth_token}" }
  end

  def show; end

  def update
    @resource.assign_attributes(user_update_params)
-
-    # We are using devise's reconfirmable flow for changing emails
-    # But in case of platform APIs we don't want user to go through this extra step
-    @resource.skip_reconfirmation! if user_update_params[:email].present?
    @resource.save!
  end

@ -51,6 +47,6 @@ class Platform::Api::V1::UsersController < PlatformController
  end

  def user_params
-    params.permit(:name, :display_name, :email, :password, custom_attributes: {})
+    params.permit(:name, :email, :password, custom_attributes: {})
  end
 end
--- a/app/controllers/public/api/v1/inboxes/contacts_controller.rb
+++ b/app/controllers/public/api/v1/inboxes/contacts_controller.rb
@ -4,10 +4,10 @@ class Public::Api::V1::Inboxes::ContactsController < Public::Api::V1::InboxesCon

  def create
    source_id = params[:source_id] || SecureRandom.uuid
-    @contact_inbox = ::ContactInboxWithContactBuilder.new(
+    @contact_inbox = ::ContactBuilder.new(
      source_id: source_id,
      inbox: @inbox_channel.inbox,
-      contact_attributes: permitted_params.except(:identifier_hash)
+      contact_attributes: permitted_params.except(:identifier, :identifier_hash)
    ).perform
  end

@ -43,6 +43,6 @@ class Public::Api::V1::Inboxes::ContactsController < Public::Api::V1::InboxesCon
  end

  def permitted_params
-    params.permit(:identifier, :identifier_hash, :email, :name, :avatar_url, :phone_number, custom_attributes: {})
+    params.permit(:identifier, :identifier_hash, :email, :name, :avatar_url, custom_attributes: {})
  end
 end
--- a/app/controllers/public/api/v1/inboxes_controller.rb
+++ b/app/controllers/public/api/v1/inboxes_controller.rb
@ -3,15 +3,9 @@ class Public::Api::V1::InboxesController < PublicController
  before_action :set_contact_inbox
  before_action :set_conversation

-  def show
-    @inbox_channel = ::Channel::Api.find_by!(identifier: params[:id])
-  end
-
  private

  def set_inbox_channel
-    return if params[:inbox_id].blank?
-
    @inbox_channel = ::Channel::Api.find_by!(identifier: params[:inbox_id])
  end

--- a/app/controllers/public/api/v1/portals/articles_controller.rb
+++ b/app/controllers/public/api/v1/portals/articles_controller.rb
@ -1,39 +0,0 @@
-class Public::Api::V1::Portals::ArticlesController < PublicController
-  before_action :ensure_custom_domain_request, only: [:show, :index]
-  before_action :portal
-  before_action :set_category, except: [:index]
-  before_action :set_article, only: [:show]
-  layout 'portal'
-
-  def index
-    @articles = @portal.articles
-    @articles = @articles.search(list_params) if list_params.present?
-  end
-
-  def show; end
-
-  private
-
-  def set_article
-    @article = @category.articles.find(params[:id])
-    @parsed_content = render_article_content(@article.content)
-  end
-
-  def set_category
-    @category = @portal.categories.find_by!(slug: params[:category_slug]) if params[:category_slug].present?
-  end
-
-  def portal
-    @portal ||= Portal.find_by!(slug: params[:slug], archived: false)
-  end
-
-  def list_params
-    params.permit(:query)
-  end
-
-  def render_article_content(content)
-    # rubocop:disable Rails/OutputSafety
-    CommonMarker.render_html(content).html_safe
-    # rubocop:enable Rails/OutputSafety
-  end
-end
--- a/app/controllers/public/api/v1/portals/categories_controller.rb
+++ b/app/controllers/public/api/v1/portals/categories_controller.rb
@ -1,22 +0,0 @@
-class Public::Api::V1::Portals::CategoriesController < PublicController
-  before_action :ensure_custom_domain_request, only: [:show, :index]
-  before_action :portal
-  before_action :set_category, only: [:show]
-  layout 'portal'
-
-  def index
-    @categories = @portal.categories
-  end
-
-  def show; end
-
-  private
-
-  def set_category
-    @category = @portal.categories.find_by!(locale: params[:locale], slug: params[:category_slug])
-  end
-
-  def portal
-    @portal ||= Portal.find_by!(slug: params[:slug], archived: false)
-  end
-end
--- a/app/controllers/public/api/v1/portals_controller.rb
+++ b/app/controllers/public/api/v1/portals_controller.rb
@ -1,21 +0,0 @@
-class Public::Api::V1::PortalsController < PublicController
-  before_action :ensure_custom_domain_request, only: [:show]
-  before_action :portal
-  before_action :redirect_to_portal_with_locale, only: [:show]
-  layout 'portal'
-
-  def show; end
-
-  private
-
-  def portal
-    @portal ||= Portal.find_by!(slug: params[:slug], archived: false)
-    @locale = params[:locale] || @portal.default_locale
-  end
-
-  def redirect_to_portal_with_locale
-    return if params[:locale].present?
-
-    redirect_to "/hc/#{@portal.slug}/#{@portal.default_locale}"
-  end
-end
--- a/app/controllers/public_controller.rb
+++ b/app/controllers/public_controller.rb
@ -3,20 +3,4 @@
 class PublicController < ActionController::Base
  include RequestExceptionHandler
  skip_before_action :verify_authenticity_token
-
-  private
-
-  def ensure_custom_domain_request
-    domain = request.host
-
-    return if [URI.parse(ENV.fetch('FRONTEND_URL', '')).host, URI.parse(ENV.fetch('HELPCENTER_URL', '')).host].include?(domain)
-
-    @portal = ::Portal.find_by(custom_domain: domain)
-    return if @portal.present?
-
-    render json: {
-      error: "Domain: #{domain} is not registered with us. \
-      Please send us an email at support@chatwoot.com with the custom domain name and account API key"
-    }, status: :unauthorized and return
-  end
 end
--- a/app/controllers/super_admin/accounts_controller.rb
+++ b/app/controllers/super_admin/accounts_controller.rb
@ -36,15 +36,9 @@ class SuperAdmin::AccountsController < SuperAdmin::ApplicationController
  def resource_params
    permitted_params = super
    permitted_params[:limits] = permitted_params[:limits].to_h.compact
-    permitted_params[:selected_feature_flags] = params[:enabled_features].keys.map(&:to_sym) if params[:enabled_features].present?
    permitted_params
  end

  # See https://administrate-prototype.herokuapp.com/customizing_controller_actions
  # for more information
-
-  def seed
-    Internal::SeedAccountJob.perform_later(requested_resource)
-    redirect_back(fallback_location: [namespace, requested_resource], notice: 'Account seeding triggered')
-  end
 end
--- a/app/controllers/twilio/callback_controller.rb
+++ b/app/controllers/twilio/callback_controller.rb
@ -7,7 +7,7 @@ class Twilio::CallbackController < ApplicationController

  private

-  def permitted_params # rubocop:disable Metrics/MethodLength
+  def permitted_params
    params.permit(
      :ApiVersion,
      :SmsSid,
@ -25,8 +25,7 @@ class Twilio::CallbackController < ApplicationController
      :ToCountry,
      :FromState,
      :MediaUrl0,
-      :MediaContentType0,
-      :MessagingServiceSid
+      :MediaContentType0
    )
  end
 end
--- a/app/controllers/twitter/callbacks_controller.rb
+++ b/app/controllers/twitter/callbacks_controller.rb
@ -44,12 +44,12 @@ class Twitter::CallbacksController < Twitter::BaseController
  end

  def create_inbox
-    twitter_profile = account.twitter_profiles.create!(
+    twitter_profile = account.twitter_profiles.create(
      twitter_access_token: parsed_body['oauth_token'],
      twitter_access_token_secret: parsed_body['oauth_token_secret'],
      profile_id: parsed_body['user_id']
    )
-    account.inboxes.create!(
+    account.inboxes.create(
      name: parsed_body['screen_name'],
      channel: twitter_profile
    )
--- a/app/controllers/webhooks/instagram_controller.rb
+++ b/app/controllers/webhooks/instagram_controller.rb
@ -1,5 +1,15 @@
-class Webhooks::InstagramController < ActionController::API
-  include MetaTokenVerifyConcern
+class Webhooks::InstagramController < ApplicationController
+  skip_before_action :authenticate_user!, raise: false
+  skip_before_action :set_current_user
+
+  def verify
+    if valid_instagram_token?(params['hub.verify_token'])
+      Rails.logger.info('Instagram webhook verified')
+      render json: params['hub.challenge']
+    else
+      render json: { error: 'Error; wrong verify token', status: 403 }
+    end
+  end

  def events
    Rails.logger.info('Instagram webhook received events')
@ -14,7 +24,7 @@ class Webhooks::InstagramController < ActionController::API

  private

-  def valid_token?(token)
+  def valid_instagram_token?(token)
    token == GlobalConfigService.load('IG_VERIFY_TOKEN', '')
  end
 end
--- a/app/controllers/webhooks/whatsapp_controller.rb
+++ b/app/controllers/webhooks/whatsapp_controller.rb
@ -1,16 +1,6 @@
 class Webhooks::WhatsappController < ActionController::API
-  include MetaTokenVerifyConcern
-
  def process_payload
    Webhooks::WhatsappEventsJob.perform_later(params.to_unsafe_hash)
    head :ok
  end
-
-  private
-
-  def valid_token?(token)
-    channel = Channel::Whatsapp.find_by(phone_number: params[:phone_number])
-    whatsapp_webhook_verify_token = channel.provider_config['webhook_verify_token'] if channel.present?
-    token == whatsapp_webhook_verify_token if whatsapp_webhook_verify_token.present?
-  end
 end
--- a/app/controllers/widgets_controller.rb
+++ b/app/controllers/widgets_controller.rb
@ -1,10 +1,7 @@
 # TODO : Delete this and associated spec once 'api/widget/config' end point is merged
 class WidgetsController < ActionController::Base
-  include WidgetHelper
-
  before_action :set_global_config
  before_action :set_web_widget
-  before_action :ensure_account_is_active
  before_action :set_token
  before_action :set_contact
  before_action :build_contact
@ -43,12 +40,11 @@ class WidgetsController < ActionController::Base
  def build_contact
    return if @contact.present?

-    @contact_inbox, @token = build_contact_inbox_with_token(@web_widget, additional_attributes)
+    @contact_inbox = @web_widget.create_contact_inbox(additional_attributes)
    @contact = @contact_inbox.contact
-  end

-  def ensure_account_is_active
-    render json: { error: 'Account is suspended' }, status: :unauthorized unless @web_widget.inbox.account.active?
+    payload = { source_id: @contact_inbox.source_id, inbox_id: @web_widget.inbox.id }
+    @token = ::Widget::TokenService.new(payload: payload).generate_token
  end

  def additional_attributes
--- a/app/dashboards/account_dashboard.rb
+++ b/app/dashboards/account_dashboard.rb
@ -8,15 +8,7 @@ class AccountDashboard < Administrate::BaseDashboard
  # which determines how the attribute is displayed
  # on pages throughout the dashboard.

-  enterprise_attribute_types = if ChatwootApp.enterprise?
-                                 {
-                                   limits: Enterprise::AccountLimitsField,
-                                   all_features: Enterprise::AccountFeaturesField
-                                 }
-                               else
-                                 {}
-                               end
-
+  enterprise_attribute_types = ChatwootApp.enterprise? ? { limits: Enterprise::AccountLimitsField } : {}
  ATTRIBUTE_TYPES = {
    id: Field::Number,
    name: Field::String,
@ -25,7 +17,6 @@ class AccountDashboard < Administrate::BaseDashboard
    users: CountField,
    conversations: CountField,
    locale: Field::Select.with_options(collection: LANGUAGES_CONFIG.map { |_x, y| y[:iso_639_1_code] }),
-    status: Field::Select.with_options(collection: [%w[Active active], %w[Suspended suspended]]),
    account_users: Field::HasMany
  }.merge(enterprise_attribute_types).freeze

@ -40,19 +31,17 @@ class AccountDashboard < Administrate::BaseDashboard
    locale
    users
    conversations
-    status
  ].freeze

  # SHOW_PAGE_ATTRIBUTES
  # an array of attributes that will be displayed on the model's show page.
-  enterprise_show_page_attributes = ChatwootApp.enterprise? ? %i[limits all_features] : []
+  enterprise_show_page_attributes = ChatwootApp.enterprise? ? %i[limits] : []
  SHOW_PAGE_ATTRIBUTES = (%i[
    id
    name
    created_at
    updated_at
    locale
-    status
    conversations
    account_users
  ] + enterprise_show_page_attributes).freeze
@ -60,11 +49,10 @@ class AccountDashboard < Administrate::BaseDashboard
  # FORM_ATTRIBUTES
  # an array of attributes that will be displayed
  # on the model's form (`new` and `edit`) pages.
-  enterprise_form_attributes = ChatwootApp.enterprise? ? %i[limits all_features] : []
+  enterprise_form_attributes = ChatwootApp.enterprise? ? %i[limits] : []
  FORM_ATTRIBUTES = (%i[
    name
    locale
-    status
  ] + enterprise_form_attributes).freeze

  # COLLECTION_FILTERS
--- a/Show more
+++ b/Show more
Author	SHA1	Message	Date
Vishnu Narayanan	82035f9c91	feat: support ce install with linux script	2022-04-07 20:51:42 +05:30
Vishnu Narayanan	e5f3ca4763	feat: support ce install with linux script	2022-04-07 20:49:38 +05:30
 @ -1 +1 @@
 .0.4
 .0.2