RubyGems - active_record_api-rest - Versions diffs - 1.0.54 → 2.0.1 - Mend

active_record_api-rest 1.0.54 → 2.0.1

Files changed (14) hide show

checksums.yaml +4 -4
data/.gitignore +1 -0
data/.gitlab-ci.yml +15 -12
data/Gemfile.lock +132 -120
data/active_record_api-rest.gemspec +15 -15
data/lib/active_record_api/rest/auth/controller.rb +2 -10
data/lib/active_record_api/rest/auth/policy.rb +4 -32
data/lib/active_record_api/rest/controller.rb +11 -47
data/lib/active_record_api/rest/graceful_errors.rb +0 -4
data/lib/active_record_api/rest/parameters.rb +22 -2
data/lib/active_record_api/rest/request_url_generator.rb +5 -15
data/lib/active_record_api/rest/spec/rest_controller_shared_example.rb +25 -27
data/lib/active_record_api/rest/version.rb +1 -1
metadata +17 -18

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 898ffa7ea257eda6c96aa5279f453bd24b3ff689a7ec059ce1439167dd356c89
-  data.tar.gz: a959ff84e4fc4c3451411e09f87a61f9e18b4aa695ef12b3aff6d6aaf18b84dd
+  metadata.gz: 651a4dbcd6458363f53f7927e065962ab7128a4bb5a10f2992692d930bd524b9
+  data.tar.gz: 9cf183d70bf89d81fd01cddae62cb651dbabc6ffb4ce8486f62cc00452908b84
 SHA512:
-  metadata.gz: dc800667ca1920e8b9abd8df9ca54738005b8387cb0bee216d5d198d64a92a1a36181972f36e5833ee18fc78019fe2a96a519f3f85d54637888fa5d732881e4e
-  data.tar.gz: 38d8bd4f2c21a7804376162318dcfd55c9b4f4bae8d4345db615e144c33806c270f856cca8aefc19146539a825b1bf020a868a9406ee8f81524d4e91a2dd682e
+  metadata.gz: 49d775122abd877d98846e40e7bf51fb6f5d19302858bdee3d40d34caf0cb6b07dde5a42abff6278d1106b94981d3129934c460727b0fcf597d0342d7fed6bdc
+  data.tar.gz: 7371ba23cc2adadc3f7b8e3efbf099c6694546a03b68695b0ec11e3707f0bd91634a14629b30b1b8d4ddec25b3f60905db2071abec2e39ccbb6b4ea0a6dcd5a9

data/.gitignore CHANGED

@@ -8,6 +8,7 @@
 /tmp/
 .idea
 /spec/dummy/log
+vendor/
 # rspec failure tracking
 .rspec_status

data/.gitlab-ci.yml CHANGED

@@ -1,33 +1,36 @@
 stages:
   - build
+  - test
   - deploy
   - qa
 code_quality:
   retry: 2
-  stage: deploy
+  stage: test
+  allow_failure: true
   image: docker:stable
   variables:
     DOCKER_DRIVER: overlay2
   services:
     - docker:stable-dind
   script:
-    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
     - docker run
         --env SOURCE_CODE="$PWD"
         --volume "$PWD":/code
-        --volume /var/run/docker.sock:/var/run/docker.sock
-        "registry.gitlab.com/gitlab-org/security-products/codequality:$SP_VERSION" /code
+        --volume /var/run/docker.sock:/var/run/docker.sock
+        "registry.gitlab.com/gitlab-org/ci-cd/codequality:0.85.10" /code
   artifacts:
     paths: [gl-code-quality-report.json]
     expire_in: 3 weeks
-.rspec:
-  image: ruby:2.5.1
-  stage: build
+rspec:
+  image: ruby:2.7.1
+  stage: test
   variables:
-    POSTGRES_USER: runner
-    POSTGRES_PASSWORD: ""
+    POSTGRES_DB: active_record_api_rest_controller_test
+    POSTGRES_USER: postgres
+    POSTGRES_PASSWORD: postgres
+    POSTGRES_HOST_AUTH_METHOD: trust
     RAILS_ENV: test
   services:
   - docker:dind
@@ -48,14 +51,14 @@ codequality-verify:
   retry: 2
   stage: qa
   allow_failure: true
-  image: ruby:2.5.1
+  image: ruby:2.7.1
   script:
     - ruby -r json -r yaml -e "puts JSON.parse(File.open('gl-code-quality-report.json', 'r', &:read)).to_yaml"
     - "! grep fingerprint gl-code-quality-report.json > /dev/null 2>&1"
 release:
   stage: deploy
-  image: ruby:2.5.1
+  image: ruby:2.7.1
   before_script:
     - git config --global user.email dev@fullmeasureed.com
     - git config --global user.name fme-ci
@@ -64,7 +67,7 @@ release:
     - git fetch origin master
     - git checkout master
     - git branch -u origin/master
-    - gem install gem-release -v 2.0.0.rc.3
+    - gem install gem-release
   script:
     - "echo -e \"---\n:rubygems_api_key: ${RUBYGEMS_KEY}\" > ~/.gem/credentials"
     - chmod 0600 ~/.gem/credentials

data/Gemfile.lock CHANGED

@@ -1,38 +1,51 @@
 PATH
   remote: .
   specs:
-    active_record_api-rest (1.0.49)
+    active_record_api-rest (2.0.0)
       active_attr
       active_model_serializers
       oj
-      rails (>= 5.1)
+      rails
 GEM
   remote: https://rubygems.org/
   specs:
-    actioncable (5.2.3)
-      actionpack (= 5.2.3)
+    actioncable (6.0.3.4)
+      actionpack (= 6.0.3.4)
       nio4r (~> 2.0)
       websocket-driver (>= 0.6.1)
-    actionmailer (5.2.3)
-      actionpack (= 5.2.3)
-      actionview (= 5.2.3)
-      activejob (= 5.2.3)
+    actionmailbox (6.0.3.4)
+      actionpack (= 6.0.3.4)
+      activejob (= 6.0.3.4)
+      activerecord (= 6.0.3.4)
+      activestorage (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
+      mail (>= 2.7.1)
+    actionmailer (6.0.3.4)
+      actionpack (= 6.0.3.4)
+      actionview (= 6.0.3.4)
+      activejob (= 6.0.3.4)
       mail (~> 2.5, >= 2.5.4)
       rails-dom-testing (~> 2.0)
-    actionpack (5.2.3)
-      actionview (= 5.2.3)
-      activesupport (= 5.2.3)
-      rack (~> 2.0)
+    actionpack (6.0.3.4)
+      actionview (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
+      rack (~> 2.0, >= 2.0.8)
       rack-test (>= 0.6.3)
       rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (5.2.3)
-      activesupport (= 5.2.3)
+      rails-html-sanitizer (~> 1.0, >= 1.2.0)
+    actiontext (6.0.3.4)
+      actionpack (= 6.0.3.4)
+      activerecord (= 6.0.3.4)
+      activestorage (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
+      nokogiri (>= 1.8.5)
+    actionview (6.0.3.4)
+      activesupport (= 6.0.3.4)
       builder (~> 3.1)
       erubi (~> 1.4)
       rails-dom-testing (~> 2.0)
-      rails-html-sanitizer (~> 1.0, >= 1.0.3)
+      rails-html-sanitizer (~> 1.1, >= 1.2.0)
     active_attr (0.15.0)
       actionpack (>= 3.0.2, < 6.1)
       activemodel (>= 3.0.2, < 6.1)
@@ -42,155 +55,154 @@ GEM
       activemodel (>= 4.1, < 6.1)
       case_transform (>= 0.2)
       jsonapi-renderer (>= 0.1.1.beta1, < 0.3)
-    activejob (5.2.3)
-      activesupport (= 5.2.3)
+    activejob (6.0.3.4)
+      activesupport (= 6.0.3.4)
       globalid (>= 0.3.6)
-    activemodel (5.2.3)
-      activesupport (= 5.2.3)
-    activerecord (5.2.3)
-      activemodel (= 5.2.3)
-      activesupport (= 5.2.3)
-      arel (>= 9.0)
-    activestorage (5.2.3)
-      actionpack (= 5.2.3)
-      activerecord (= 5.2.3)
+    activemodel (6.0.3.4)
+      activesupport (= 6.0.3.4)
+    activerecord (6.0.3.4)
+      activemodel (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
+    activestorage (6.0.3.4)
+      actionpack (= 6.0.3.4)
+      activejob (= 6.0.3.4)
+      activerecord (= 6.0.3.4)
       marcel (~> 0.3.1)
-    activesupport (5.2.3)
+    activesupport (6.0.3.4)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 0.7, < 2)
       minitest (~> 5.1)
       tzinfo (~> 1.1)
-    addressable (2.6.0)
-      public_suffix (>= 2.0.2, < 4.0)
-    arel (9.0.0)
-    builder (3.2.3)
-    byebug (11.0.1)
+      zeitwerk (~> 2.2, >= 2.2.2)
+    addressable (2.7.0)
+      public_suffix (>= 2.0.2, < 5.0)
+    builder (3.2.4)
+    byebug (11.1.3)
     case_transform (0.2)
       activesupport
-    coderay (1.1.2)
-    concurrent-ruby (1.1.5)
-    crack (0.4.3)
-      safe_yaml (~> 1.0.0)
-    crass (1.0.4)
-    database_cleaner (1.7.0)
-    diff-lcs (1.3)
+    coderay (1.1.3)
+    concurrent-ruby (1.1.7)
+    crack (0.4.4)
+    crass (1.0.6)
+    database_cleaner (1.8.5)
+    diff-lcs (1.4.4)
     docile (1.3.2)
-    erubi (1.8.0)
-    factory_bot (5.0.2)
-      activesupport (>= 4.2.0)
-    factory_bot_rails (5.0.2)
-      factory_bot (~> 5.0.2)
-      railties (>= 4.2.0)
-    faker (1.9.6)
-      i18n (>= 0.7)
+    erubi (1.9.0)
+    factory_bot (6.1.0)
+      activesupport (>= 5.0.0)
+    factory_bot_rails (6.1.0)
+      factory_bot (~> 6.1.0)
+      railties (>= 5.0.0)
+    faker (2.14.0)
+      i18n (>= 1.6, < 2)
     globalid (0.4.2)
       activesupport (>= 4.2.0)
-    hashdiff (1.0.0)
-    i18n (1.6.0)
+    hashdiff (1.0.1)
+    i18n (1.8.5)
       concurrent-ruby (~> 1.0)
-    json (2.2.0)
     json_spec (1.1.5)
       multi_json (~> 1.0)
       rspec (>= 2.0, < 4.0)
     jsonapi-renderer (0.2.2)
-    loofah (2.2.3)
+    loofah (2.7.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
     mail (2.7.1)
       mini_mime (>= 0.1.1)
     marcel (0.3.3)
       mimemagic (~> 0.3.2)
-    method_source (0.9.2)
-    mimemagic (0.3.3)
+    method_source (1.0.0)
+    mimemagic (0.3.5)
     mini_mime (1.0.2)
     mini_portile2 (2.4.0)
-    minitest (5.11.3)
-    multi_json (1.13.1)
-    nio4r (2.5.1)
-    nokogiri (1.10.3)
+    minitest (5.14.2)
+    multi_json (1.15.0)
+    nio4r (2.5.4)
+    nokogiri (1.10.10)
       mini_portile2 (~> 2.4.0)
-    oj (3.9.1)
-    pg (1.1.4)
-    pry (0.12.2)
-      coderay (~> 1.1.0)
-      method_source (~> 0.9.0)
-    pry-byebug (3.7.0)
+    oj (3.10.15)
+    pg (1.2.3)
+    pry (0.13.1)
+      coderay (~> 1.1)
+      method_source (~> 1.0)
+    pry-byebug (3.9.0)
       byebug (~> 11.0)
-      pry (~> 0.10)
-    public_suffix (3.1.1)
-    rack (2.0.7)
+      pry (~> 0.13.0)
+    public_suffix (4.0.6)
+    rack (2.2.3)
     rack-test (1.1.0)
       rack (>= 1.0, < 3)
-    rails (5.2.3)
-      actioncable (= 5.2.3)
-      actionmailer (= 5.2.3)
-      actionpack (= 5.2.3)
-      actionview (= 5.2.3)
-      activejob (= 5.2.3)
-      activemodel (= 5.2.3)
-      activerecord (= 5.2.3)
-      activestorage (= 5.2.3)
-      activesupport (= 5.2.3)
+    rails (6.0.3.4)
+      actioncable (= 6.0.3.4)
+      actionmailbox (= 6.0.3.4)
+      actionmailer (= 6.0.3.4)
+      actionpack (= 6.0.3.4)
+      actiontext (= 6.0.3.4)
+      actionview (= 6.0.3.4)
+      activejob (= 6.0.3.4)
+      activemodel (= 6.0.3.4)
+      activerecord (= 6.0.3.4)
+      activestorage (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
       bundler (>= 1.3.0)
-      railties (= 5.2.3)
+      railties (= 6.0.3.4)
       sprockets-rails (>= 2.0.0)
     rails-dom-testing (2.0.3)
       activesupport (>= 4.2.0)
       nokogiri (>= 1.6)
-    rails-html-sanitizer (1.0.4)
-      loofah (~> 2.2, >= 2.2.2)
-    railties (5.2.3)
-      actionpack (= 5.2.3)
-      activesupport (= 5.2.3)
+    rails-html-sanitizer (1.3.0)
+      loofah (~> 2.3)
+    railties (6.0.3.4)
+      actionpack (= 6.0.3.4)
+      activesupport (= 6.0.3.4)
       method_source
       rake (>= 0.8.7)
-      thor (>= 0.19.0, < 2.0)
-    rake (10.5.0)
-    rspec (3.8.0)
-      rspec-core (~> 3.8.0)
-      rspec-expectations (~> 3.8.0)
-      rspec-mocks (~> 3.8.0)
-    rspec-core (3.8.2)
-      rspec-support (~> 3.8.0)
-    rspec-expectations (3.8.4)
+      thor (>= 0.20.3, < 2.0)
+    rake (13.0.1)
+    rspec (3.9.0)
+      rspec-core (~> 3.9.0)
+      rspec-expectations (~> 3.9.0)
+      rspec-mocks (~> 3.9.0)
+    rspec-core (3.9.3)
+      rspec-support (~> 3.9.3)
+    rspec-expectations (3.9.2)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-mocks (3.8.1)
+      rspec-support (~> 3.9.0)
+    rspec-mocks (3.9.1)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.8.0)
-    rspec-rails (3.8.2)
-      actionpack (>= 3.0)
-      activesupport (>= 3.0)
-      railties (>= 3.0)
-      rspec-core (~> 3.8.0)
-      rspec-expectations (~> 3.8.0)
-      rspec-mocks (~> 3.8.0)
-      rspec-support (~> 3.8.0)
-    rspec-support (3.8.2)
-    safe_yaml (1.0.5)
-    simplecov (0.17.0)
+      rspec-support (~> 3.9.0)
+    rspec-rails (4.0.1)
+      actionpack (>= 4.2)
+      activesupport (>= 4.2)
+      railties (>= 4.2)
+      rspec-core (~> 3.9)
+      rspec-expectations (~> 3.9)
+      rspec-mocks (~> 3.9)
+      rspec-support (~> 3.9)
+    rspec-support (3.9.3)
+    simplecov (0.19.0)
       docile (~> 1.1)
-      json (>= 1.8, < 3)
-      simplecov-html (~> 0.10.0)
-    simplecov-html (0.10.2)
-    sprockets (3.7.2)
+      simplecov-html (~> 0.11)
+    simplecov-html (0.12.3)
+    sprockets (4.0.2)
       concurrent-ruby (~> 1.0)
       rack (> 1, < 3)
-    sprockets-rails (3.2.1)
+    sprockets-rails (3.2.2)
       actionpack (>= 4.0)
       activesupport (>= 4.0)
       sprockets (>= 3.0.0)
-    thor (0.20.3)
+    thor (1.0.1)
     thread_safe (0.3.6)
-    tzinfo (1.2.5)
+    tzinfo (1.2.7)
       thread_safe (~> 0.1)
-    webmock (3.6.0)
+    webmock (3.9.3)
       addressable (>= 2.3.6)
       crack (>= 0.3.2)
       hashdiff (>= 0.4.0, < 2.0.0)
-    websocket-driver (0.7.1)
+    websocket-driver (0.7.3)
       websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.4)
+    websocket-extensions (0.1.5)
+    zeitwerk (2.4.0)
 PLATFORMS
   ruby
@@ -198,7 +210,7 @@ PLATFORMS
 DEPENDENCIES
   active_model_serializers
   active_record_api-rest!
-  bundler (~> 1.16)
+  bundler
   database_cleaner
   factory_bot_rails
   faker
@@ -206,11 +218,11 @@ DEPENDENCIES
   pg
   pry
   pry-byebug
-  rake (~> 10.0)
-  rspec (~> 3.0)
+  rake
+  rspec
   rspec-rails
   simplecov
   webmock
 BUNDLED WITH
-   1.17.3
+   2.1.4

data/active_record_api-rest.gemspec CHANGED

@@ -5,15 +5,15 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'active_record_api/rest/version'
 Gem::Specification.new do |spec|
-  spec.name          = 'active_record_api-rest'
-  spec.version       = ActiveRecordApi::Rest::VERSION
-  spec.authors       = ['Full Measure Education']
-  spec.email         = ['devops@fullmeasureed.com']
+  spec.name = 'active_record_api-rest'
+  spec.version = ActiveRecordApi::Rest::VERSION
+  spec.authors = ['Full Measure Education']
+  spec.email = ['devops@fullmeasureed.com']
-  spec.summary       = 'A simple library for RESTful rails controllers.'
-  spec.description   = 'A simple library for RESTful rails controllers.'
-  spec.homepage      = 'https://gitlab.com/fullmeasure/public/gems/active_record_api-rest_controller'
-  spec.license       = 'MIT'
+  spec.summary = 'A simple library for RESTful rails controllers.'
+  spec.description = 'A simple library for RESTful rails controllers.'
+  spec.homepage = 'https://gitlab.com/fullmeasure/public/gems/active_record_api-rest_controller'
+  spec.license = 'MIT'
   # Prevent pushing this gem to RubyGems.org. To allow pushes either set the 'allowed_push_host'
   # to allow pushing to a single host or delete this section to allow pushing to any host.
@@ -23,20 +23,20 @@ Gem::Specification.new do |spec|
     raise 'RubyGems 2.0 or newer is required to protect against public gem pushes.'
   end
-  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+  spec.files = `git ls-files -z`.split("\x0").reject do |f|
     f.match(%r{^(test|spec|features)/})
   end
-  spec.bindir        = 'exe'
-  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.bindir = 'exe'
+  spec.executables = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
-  spec.add_development_dependency 'bundler', '~> 1.16'
+  spec.add_development_dependency 'bundler'
   spec.add_development_dependency 'factory_bot_rails'
-  spec.add_development_dependency 'rake', '~> 10.0'
-  spec.add_development_dependency 'rspec', '~> 3.0'
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'rspec'
   spec.add_development_dependency 'rspec-rails'
   spec.add_dependency 'active_attr'
   spec.add_dependency 'oj'
   spec.add_dependency 'active_model_serializers'
-  spec.add_dependency 'rails', '>= 5.1'
+  spec.add_dependency 'rails'
 end

data/lib/active_record_api/rest/auth/controller.rb CHANGED

@@ -6,10 +6,6 @@ module ActiveRecordApi
         protected
-        def initialize_model
-          @model = authorized_models
-        end
         def authorize
           raise BadSessionException.new(controller_name, action_name) if fullmeasure_session.nil?
           raise AccessDeniedException.new(controller_name, action_name, 'Insufficient permissions') unless can?
@@ -19,10 +15,6 @@ module ActiveRecordApi
           @can ||= policy.can?
         end
-        def authorized_models
-          @authorized_models ||= policy.authorized_models
-        end
         def policy
           @policy ||= policy_klass.new(
             fullmeasure_session: fullmeasure_session,
@@ -30,12 +22,12 @@ module ActiveRecordApi
             action_name: action_name,
             params: params,
             queryable_params: queryable_params,
-            modifiable_params: modifiable_params
+            modifiable_params: modifiable_params,
           )
         end
         def policy_klass
-          "#{self.class.name.remove(/Controller$/)}Policy".safe_constantize || Policy
+          "Policy::#{self.class.name.remove(/Controller$/)}Policy".safe_constantize || "#{self.class.name.remove(/Controller$/)}Policy".safe_constantize || Policy
         end
       end
     end

data/lib/active_record_api/rest/auth/policy.rb CHANGED

@@ -5,14 +5,11 @@ module ActiveRecordApi
         include ActiveAttr::Model
         attr_accessor :fullmeasure_session, :model_klass, :action_name, :modifiable_params, :queryable_params, :params
-        def authorized_models
-          send(action_name)
-        end
         def can?
           send("can_#{action_name}?")
         end
+        # :nocov:
         def can_manage?
           false
         end
@@ -20,6 +17,7 @@ module ActiveRecordApi
         def can_read?
           false
         end
+        # :nocov:
         protected
@@ -31,9 +29,11 @@ module ActiveRecordApi
           can_read? || can_manage?
         end
+        # :nocov:
         def can_new?
           can_read? || can_manage?
         end
+        # :nocov:
         def can_create?
           can_manage?
@@ -46,34 +46,6 @@ module ActiveRecordApi
         def can_destroy?
           can_manage?
         end
-        def can_destroy_by?
-          can_manage?
-        end
-        def index
-          model_klass.where('1=0')
-        end
-        def show
-          model_klass.where('1=0')
-        end
-        def new
-          model_klass.where('1=0')
-        end
-        def create
-          model_klass.new
-        end
-        def update
-          model_klass.where('1=0')
-        end
-        def destroy_by
-          model_klass.where('1=0')
-        end
       end
     end
   end

data/lib/active_record_api/rest/controller.rb CHANGED

@@ -2,25 +2,27 @@ module ActiveRecordApi
   module Rest
     class Controller < ApplicationController
       include GracefulErrors
-      delegate :previous_id, :limit, :queryable_params, :modifiable_params, :not_allowed_params, to: :parameters
-      delegate :next_url, :redirect_url, to: :request_url_generator
+      delegate :previous_id, :limit, :offset, :page, :queryable_params, :modifiable_params, :not_allowed_params, :required_parameters, to: :parameters
+      delegate :next_url, to: :request_url_generator
       before_action :initialize_model, only: :create
       before_action :validate_params
       def index
         response.headers['x-total'] = models_count
         response.headers['x-link-next'] = next_url unless next_url.nil?
-        render json: models_remaining.limit(limit), each_serializer: serializer
+        render json: models_full_results.limit(limit).offset(offset).order(:id => :asc), each_serializer: serializer
       end
       def show
         render json: model, serializer: serializer
       end
+      # :nocov:
       def new
         action = request.query_parameters[:action]
         render json: authorized_models.send(action, queryable_params.deep_symbolize_keys), serializer: serializer
       end
+      # :nocov:
       def create
         if model.save
@@ -42,26 +44,17 @@ module ActiveRecordApi
         if model.destroy
           render json: model
         else
+          # :nocov:
           render json: model.errors, status: :unprocessable_entity
-        end
-      end
-      def destroy_by
-        found_model = authorized_models.find_by(queryable_params)
-        if !found_model
-          head :not_found
-        elsif found_model.destroy
-          render json: found_model
-        else
-          render json: found_model.errors, status: :unprocessable_entity
+          # :nocov:
         end
       end
       protected
       def validate_params
-        return unless not_allowed_params.present?
-        render json: { base: "Extra parameters are not allow: #{not_allowed_params.join(', ')}" }, status: :unprocessable_entity
+        render json: { base: "Extra parameters are not allow: #{not_allowed_params.join(', ')}" }, status: :unprocessable_entity if not_allowed_params.present?
+        render json: { base: "Missing parameters: #{required_parameters.join(', ')}" }, status: :unprocessable_entity if required_parameters.present?
       end
       def model
@@ -69,21 +62,13 @@ module ActiveRecordApi
       end
       def models_full_results
-        return @models_full_results unless @models_full_results.nil?
-        @models_full_results = authorized_models.where(queryable_params).order(pagination_param_name => pagination_param_direction)
+        @models_full_results ||= authorized_models.where(queryable_params)
       end
       def models_count
         @total = models_full_results.count
       end
-      def models_remaining
-        return @models_remaining unless @models_remaining.nil?
-        @models_remaining = models_full_results
-        @models_remaining = @models_remaining&.where("\"#{pagination_param_name}\" > ?", pagination_param_value) if pagination_param_value.present?
-        @models_remaining
-      end
       def initialize_model
         @model = model_klass.new(modifiable_params)
       end
@@ -96,18 +81,6 @@ module ActiveRecordApi
         @model_klass ||= controller_name.classify.constantize
       end
-      def pagination_param_name
-        @pagination_param_name ||= params[:pagination_param] || :id
-      end
-      def pagination_param_direction
-        @pagination_param_direction ||=  params[:pagination_param_direction] || :asc # from params
-      end
-      def pagination_param_value
-        @pagination_param_value ||= params[pagination_param_name]
-      end
       def serializer
         "#{model_klass.name}Serializer".safe_constantize
       end
@@ -116,9 +89,8 @@ module ActiveRecordApi
         @parameters ||= Parameters.new(
           model_klass: model_klass,
           controller_name: controller_name,
-          pagination_param_name: pagination_param_name,
           params: params,
-          action_name: action_name
+          action_name: action_name,
         )
       end
@@ -126,18 +98,10 @@ module ActiveRecordApi
         RequestUrlGenerator.new(
           action_name: action_name,
           request: request,
-          models_remaining: models_remaining,
           parameters: parameters,
           total_count: models_count,
-          pagination_param_name: pagination_param_name
         )
       end
-      def pagination_param_column_definition
-        @column_definition = model_klass.columns.detect do |column|
-          column.name.to_sym == pagination_param_name
-        end
-      end
     end
   end
 end

data/lib/active_record_api/rest/graceful_errors.rb CHANGED

@@ -8,10 +8,6 @@ module ActiveRecordApi
           render status: :not_found, json: { base: exception.message }
         end
-        rescue_from ActiveRecordApi::Rest::Auth::BadRequestException do |exception|
-          render status: :bad_request, json: { base: 'Bad Request', message: exception.message }
-        end
         rescue_from ActiveRecordApi::Rest::Auth::BadSessionException do |exception|
           render status: :unauthorized, json: { base: "No user for fullmeasure_session on #{exception.action} #{exception.controller}", message: exception.message }
         end

data/lib/active_record_api/rest/parameters.rb CHANGED

@@ -2,7 +2,7 @@ module ActiveRecordApi
   module Rest
     class Parameters
       include ActiveAttr::Model
-      attr_accessor :model_klass, :pagination_param_name, :params, :controller_name, :action_name, :additional_valid_params
+      attr_accessor :model_klass, :params, :controller_name, :action_name, :additional_valid_params
       def modifiable_params
         @modifiable ||= params.permit!.to_h.select! { |key, _value| valid_params(modifiable_names).include?(key.to_sym) }
@@ -21,8 +21,28 @@ module ActiveRecordApi
         @limit ||= params[:limit]&.to_i || 50
       end
+      def offset
+        @offset ||= (params[:offset]&.to_i || 0) + (limit * (page - 1))
+      end
+      def page
+        @page ||= params[:page]&.to_i || 1
+      end
+      def additional_valid_params
+        []
+      end
+      def rest_valid_params
+        [:limit, :offset, :page]
+      end
       def not_allowed_params
-        @not_allowed_params ||= clean_request_names - (valid_params(queryable_names) + Array.wrap(additional_valid_params))
+        @not_allowed_params ||= clean_request_names - (valid_params(queryable_names) + Array.wrap(rest_valid_params) + Array.wrap(additional_valid_params))
+      end
+      def required_parameters
+        []
       end
       protected

data/lib/active_record_api/rest/request_url_generator.rb CHANGED

@@ -1,32 +1,23 @@
 require 'active_attr'
 module ActiveRecordApi
   module Rest
     class RequestUrlGenerator
       include ActiveAttr::Model
       attribute :request
       attribute :action_name
-      attribute :models_remaining
-      attribute :pagination_param_name
       attribute :parameters
       attribute :total_count
       delegate :host_with_port, :path, :query_parameters, to: :request
-      delegate :limit, to: :parameters
+      delegate :limit, :offset, :page, to: :parameters
       def next_url
-        return if total_count == 0 || models_remaining.count <= limit
+        return if total_count == 0 || total_count <= (page + 1) * limit
         "#{current_url}?#{new_params.to_param}"
       end
-      def redirect_url(model)
-        if action_name == 'update'
-          current_url
-        else
-          "#{current_url}/#{model.id}"
-        end
-      end
       def new_params
-        query_parameters.dup.merge(pagination_param_name.to_s => models_remaining.limit(limit).last.send(pagination_param_name))
+        query_parameters.dup.merge('page' => page + 1)
       end
       def current_url
@@ -38,8 +29,7 @@ module ActiveRecordApi
       end
       def protocol
-        return 'http://' if Rails.env.development?
-        'https://'
+        Rails.env.development? ? 'http://' : 'https://'
       end
     end
   end

data/lib/active_record_api/rest/spec/rest_controller_shared_example.rb CHANGED

@@ -1,12 +1,9 @@
 shared_examples 'all::rest::actions' do
-  let(:authorize_read) { mock_valid_auth([permission_name(model_klass, 'read')]) }
-  let(:unauthorize_read) { mock_valid_auth([permission_name(model_klass, '')]) }
-  let(:authorize_create) { mock_valid_auth([permission_name(model_klass, 'manage')]) }
-  let(:unauthorize_create) { mock_valid_auth([permission_name(model_klass, '')]) }
-  let(:authorize_update) { mock_valid_auth([permission_name(model_klass, 'manage')]) }
-  let(:unauthorize_update) { mock_valid_auth([permission_name(model_klass, '')]) }
-  let(:authorize_delete) { mock_valid_auth([permission_name(model_klass, 'manage')]) }
-  let(:unauthorize_delete) { mock_valid_auth([permission_name(model_klass, '')]) }
+  let(:authorize_read) { mock_valid_auth('read') }
+  let(:authorize_create) { mock_valid_auth('manage') }
+  let(:authorize_update) { mock_valid_auth('manage') }
+  let(:authorize_delete) { mock_valid_auth('manage') }
   let(:factory_symbol) { model_klass.to_s.underscore.to_sym }
   let(:model_array) { [model] + create_list(factory_symbol, 4) }
   let(:base_model_klass) do
@@ -16,7 +13,7 @@ shared_examples 'all::rest::actions' do
       model_klass.superclass
     end
   end
-  let(:host) { ActiveRecordApi::Rest::RequestUrlGenerator.new(request: request).micro_service_url }
+  let(:host) { ActiveRecordApi::Rest::RequestUrlGenerator.new(request: request).current_url }
   let(:create_new_attributes) { serializer.new(model).as_json.except(:id) }
   let(:update_new_attributes) { serializer.new(model).as_json }
   let(:update_invalid_attributes) { serializer.new(update_invalid_model).as_json.merge(id: model.id) }
@@ -60,7 +57,7 @@ shared_examples 'get::show' do
     end
     context 'when not authorized' do
       before(:each) do
-        unauthorize_read
+        request.headers['session'] = {}
         get :show, params: { id: model.to_param }
       end
       it { expect(response.status).to eq 403 }
@@ -93,23 +90,19 @@ shared_examples 'get::index' do
       end
       context 'when paged results' do
-        let(:previous_id) { model_klass.limit(1).pluck(:id).first }
-        let(:next_previous_id) { model_klass.where('id > ?', previous_id).limit(1).pluck(:id).last }
         before(:each) do
           model_array
-          get :index, params: { previous_id: previous_id, limit: 1 }
+          get :index, params: { limit: 1, offset: 1 }
         end
         it { expect(response.status).to eq 200 }
         it { expect(response.headers['x-total']).to eq model_array.length }
-        it { expect(response.headers['x-link-next']).to eq "#{host}#{request.path}?limit=1&previous_id=#{next_previous_id}" }
-        it { expect(response.body).to be_json_eql model_klass.where('id > ?', previous_id).limit(1).map { |o| serializer.new(o) }.to_json }
+        it { expect(response.headers['x-link-next']).to eq "#{host}?limit=1&offset=1&page=2" }
+        it { expect(response.body).to be_json_eql model_klass.offset(1).limit(1).map { |o| serializer.new(o) }.to_json }
       end
     end
     context 'when not authorized' do
       before(:each) do
-        unauthorize_read
-      end
-      before(:each) do
+        request.headers['session'] = {}
         get :index
       end
       it { expect(response.status).to eq 403 }
@@ -131,8 +124,7 @@ shared_examples 'put::update' do
         before(:each) do
           put :update, params: new_attributes
         end
-        it { expect(response.status).to eq 303 }
-        it { expect(response).to redirect_to "#{host}#{relative_url}" }
+        it { expect(response.status).to eq 200 }
       end
       context 'when invalid param values provided' do
         before(:each) do
@@ -152,7 +144,7 @@ shared_examples 'put::update' do
     end
     context 'when not authorized' do
       before(:each) do
-        unauthorize_update
+        request.headers['session'] = {}
         get :show, params: new_attributes
       end
       it { expect(response.status).to eq 403 }
@@ -162,9 +154,8 @@ shared_examples 'put::update' do
 end
 shared_examples 'post::create' do
-  let(:new_attributes) { serializer.new(model).as_json.except(:id) }
   let(:model_id) { model.id }
-  let(:relative_url) { Rails.application.routes.url_helpers.url_for(controller: base_model_klass.to_s.underscore.pluralize, action: 'show', id: model_klass.last.id, only_path: true) }
+  let(:new_params) { serializer.new(model).as_json(except: [:id]) }
   describe 'POST create' do
     context 'when authorized' do
       before(:each) do
@@ -181,16 +172,23 @@ shared_examples 'post::create' do
         it 'creates record with attributes' do
           model.delete
           expect {
-            post :create, params: new_attributes
-            expect(response).to redirect_to "#{host}#{relative_url}"
+            post :create, params: new_params
           }.to change(model_klass, :count).by(1)
+          expect(response.status).to eq 200
+          expect(JSON.parse(response.body).keys).to contain_exactly('id',
+                                                                    'organization_id',
+                                                                    'column1',
+                                                                    'column2',
+                                                                    'column3',
+                                                                    'created_at',
+                                                                    'updated_at')
           expect(model_klass.last.id).not_to eq model_id
         end
       end
     end
     context 'when not authorized' do
       before(:each) do
-        unauthorize_create
+        request.headers['session'] = {}
         post :create, params: new_attributes
       end
       it { expect(response.status).to eq 403 }
@@ -214,7 +212,7 @@ shared_examples 'delete::delete' do
     end
     context 'when not authorized' do
       before(:each) do
-        unauthorize_delete
+        request.headers['session'] = {}
         delete :destroy, params: { id: model.id }
       end
       it { expect(response.status).to eq 403 }

data/lib/active_record_api/rest/version.rb CHANGED

@@ -2,6 +2,6 @@
 module ActiveRecordApi
   module Rest
-    VERSION = '1.0.54'.freeze
+    VERSION = '2.0.1'.freeze
   end
 end

metadata CHANGED

@@ -1,29 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: active_record_api-rest
 version: !ruby/object:Gem::Version
-  version: 1.0.54
+  version: 2.0.1
 platform: ruby
 authors:
 - Full Measure Education
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2020-01-06 00:00:00.000000000 Z
+date: 2020-10-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.16'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.16'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: factory_bot_rails
   requirement: !ruby/object:Gem::Requirement
@@ -42,30 +42,30 @@ dependencies:
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec-rails
   requirement: !ruby/object:Gem::Requirement
@@ -128,14 +128,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '5.1'
+        version: '0'
 description: A simple library for RESTful rails controllers.
 email:
 - devops@fullmeasureed.com
@@ -190,8 +190,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.7
+rubygems_version: 3.1.2
 signing_key:
 specification_version: 4
 summary: A simple library for RESTful rails controllers.