Add configurable legal links (Impressum, Privacy, Terms)

[t0mdavid-m]

Summary

Adds support for configurable legal page URLs (Impressum, Privacy Policy, Terms of Use) that appear in the sidebar footer on every page and in the GDPR consent banner. Self-hosted forks can now override these links via settings.json while maintaining sensible OpenMS defaults for apps built from older configurations.

Key Changes

• New get_legal_links() function in src/common/common.py that merges optional legal_links overrides from settings.json with built-in OpenMS defaults, ensuring empty/blank overrides don't erase defaults
• DEFAULT_LEGAL_LINKS constant pointing to official OpenMS pages (https://openms.de/impressum, /privacy, /terms), allowing downstream apps without a legal_links key to inherit working links by default
• Sidebar footer rendering in page_setup() displays the three legal links with proper styling and target="_blank" behavior
• GDPR consent banner integration — the privacy policy URL from get_legal_links() is now passed to the consent component via captcha_control(privacy_policy_url=...), keeping consent and policy in sync
• TypeScript consent banner update (gdpr_consent/src/main.ts) to accept and wire the privacy policy URL into Klaro's configuration
• Documentation in README.md explaining the override mechanism and example settings.json configuration
• Comprehensive unit tests (tests/test_legal_links.py) covering defaults, missing settings, full overrides, partial overrides, and empty/None value handling, with proper mocking to avoid Streamlit runtime dependencies

Implementation Details

• The merge strategy uses {**DEFAULT_LEGAL_LINKS, **{k: v for k, v in overrides.items() if v}} to ensure falsy override values (empty strings, None) fall back to defaults rather than erasing them
• Tests use a FakeSessionState class to mock Streamlit's session state without requiring a running app context, mirroring the pattern in tests/test_parameter_presets.py
• The settings.json example includes the full default configuration for clarity, though the code gracefully handles missing or partial legal_links objects

https://claude.ai/code/session_01WCamMNCunp9T2aScEKKUvx

Summary by CodeRabbit

• New Features

  • Added legal pages (Impressum, Privacy Policy, Terms of Use) to the app sidebar.
  • The GDPR consent banner now links directly to the configured privacy policy URL.
  • Added centrally maintained default legal links, with configuration-based overrides for self-hosted deployments.

• Documentation

  • Documented how to configure and override legal links, including Impressum operator naming and how the GDPR banner derives its privacy URL.

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 2c190dea-2e97-480f-8d99-dccbd145062d

📥 Commits

Reviewing files that changed from the base of the PR and between 6c46bc2 and 59b803d.

📒 Files selected for processing (1)

• src/common/common.py

---

📝 Walkthrough

Walkthrough

Adds configurable legal page links (Impressum, Privacy Policy, Terms of Use) to the sidebar. A new get_legal_links() helper merges built-in OpenMS default URLs with settings.json overrides. The privacy URL is threaded through captcha_control() into the Klaro GDPR consent banner via a new translations field.

Changes

Legal Links Feature

Layer / File(s)	Summary
Default legal links and merge helper settings.json, src/common/common.py	Introduces DEFAULT_LEGAL_LINKS constant with OpenMS centrally-maintained Impressum, Privacy, and Terms URLs, and implements get_legal_links() to merge built-in defaults with non-empty session_state.settings["legal_links"] overrides. Configuration block added to settings.json.
Captcha control privacy URL parameter src/common/captcha_.py	Extends captcha_control() signature with optional privacy_policy_url parameter, updates docstring, and forwards it to the gdpr_consent component invocation.
Klaro GDPR banner privacy URL support gdpr_consent/src/main.ts	Extends klaroConfig TypeScript type with optional translations field and conditionally assigns klaroConfig.translations.zz.privacyPolicyUrl from the privacy_policy render argument.
Captcha call sites and sidebar rendering src/common/common.py	Updates both captcha invocation sites to pass privacy_policy_url from get_legal_links()["privacy"] and renders Impressum, Privacy Policy, and Terms HTML links in the sidebar using get_legal_links().
Unit tests for get_legal_links() tests/test_legal_links.py	Comprehensive test module validating default URLs, empty/missing settings fallback, full and partial overrides, and blank/None value handling. Uses mocked Streamlit imports and FakeSessionState test double to isolate the helper from runtime dependencies.
README documentation README.md	Documents default OpenMS legal page destinations, sidebar link behavior, privacy URL reuse in GDPR consent banner, and instructs users how to override links via settings.json legal_links configuration.

🐇 A sidebar now gleams with legal links three,
Impressum and Privacy for all to see!
The consent banner follows the URL you set,
No GDPR surprises—no cause for regret.
Hop along, fork and override with glee! 🌿

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 77.78% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'Add configurable legal links (Impressum, Privacy, Terms)' accurately and concisely summarizes the primary change: adding configurable legal page links with specific control over Impressum, Privacy, and Terms URLs.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch claude/laughing-fermat-ppiw0s

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (2)

src/common/common.py (2)

798-810: 💤 Low value

Consider sanitizing URLs before HTML injection for defense in depth.

The legal link URLs from get_legal_links() are directly interpolated into HTML using f-strings without sanitization or escaping (lines 805-807). While settings.json is a trusted configuration file and not user input, sanitizing URLs would add defense in depth against accidental or malicious configuration changes.

Consider using html.escape() for the URLs or validating them against an allowed pattern.

🛡️ Proposed fix to escape URLs

+import html
+
 # Legal links (Impressum, Privacy Policy, Terms of Use), shown on every
 # page. URLs are configurable via "legal_links" in settings.json.
 links = get_legal_links()
 st.markdown(
     '<div style="text-align:center; font-size:0.8rem; '
     'margin-top:0.5rem; color:`#a4a5ad`;">'
-    f'<a href="{links["impressum"]}" target="_blank" rel="noopener">Impressum</a> &middot; '
-    f'<a href="{links["privacy"]}" target="_blank" rel="noopener">Privacy Policy</a> &middot; '
-    f'<a href="{links["terms"]}" target="_blank" rel="noopener">Terms of Use</a>'
+    f'<a href="{html.escape(links["impressum"])}" target="_blank" rel="noopener">Impressum</a> &middot; '
+    f'<a href="{html.escape(links["privacy"])}" target="_blank" rel="noopener">Privacy Policy</a> &middot; '
+    f'<a href="{html.escape(links["terms"])}" target="_blank" rel="noopener">Terms of Use</a>'
     "</div>",
     unsafe_allow_html=True,
 )

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/common/common.py` around lines 798 - 810, The URLs obtained from
get_legal_links() are directly interpolated into HTML markup without escaping,
creating a potential security risk if the configuration file is ever
compromised. Wrap each URL reference (links["impressum"], links["privacy"], and
links["terms"]) with html.escape() before including them in the f-strings to
sanitize the URLs and prevent HTML injection attacks even when using
unsafe_allow_html=True with st.markdown().

---

553-566: Remove the unconditional captcha_control() call at line 553.

The function captcha_control() is called unconditionally at line 553 and again conditionally at line 566 with identical arguments. Since captcha_control() internally guards its logic with the same condition (if "controllo" not in st.session_state or st.session_state["controllo"] == False), the first unconditional call is redundant. The function will either display the CAPTCHA/consent flow on both calls or skip its main logic on both—making the unconditional call unnecessary. Removing line 553 and the blank line after it simplifies the flow without changing behavior.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/common/common.py` around lines 553 - 566, Remove the redundant
unconditional call to
captcha_control(privacy_policy_url=get_legal_links()["privacy"]) that appears
before the conditional block. Since the same captcha_control function is called
again immediately after within an if statement that checks for "controllo" not
in st.session_state or the condition on params["controllo"], and since
captcha_control internally guards its logic with the same condition, the first
unconditional call is duplicate and should be deleted along with any associated
blank lines.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Nitpick comments:
In `@src/common/common.py`:
- Around line 798-810: The URLs obtained from get_legal_links() are directly
interpolated into HTML markup without escaping, creating a potential security
risk if the configuration file is ever compromised. Wrap each URL reference
(links["impressum"], links["privacy"], and links["terms"]) with html.escape()
before including them in the f-strings to sanitize the URLs and prevent HTML
injection attacks even when using unsafe_allow_html=True with st.markdown().
- Around line 553-566: Remove the redundant unconditional call to
captcha_control(privacy_policy_url=get_legal_links()["privacy"]) that appears
before the conditional block. Since the same captcha_control function is called
again immediately after within an if statement that checks for "controllo" not
in st.session_state or the condition on params["controllo"], and since
captcha_control internally guards its logic with the same condition, the first
unconditional call is duplicate and should be deleted along with any associated
blank lines.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 761755f5-ba6e-4949-af99-6d1cfe4c14c1

📥 Commits

Reviewing files that changed from the base of the PR and between e9d162a and f5d2953.

⛔ Files ignored due to path filters (1)

• gdpr_consent/dist/bundle.js is excluded by !**/dist/**

📒 Files selected for processing (6)

• README.md
• gdpr_consent/src/main.ts
• settings.json
• src/common/captcha_.py
• src/common/common.py
• tests/test_legal_links.py