activemodel 7.0.4 → 7.1.3.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 630260cc44166916794fb7e43002e72a303ff43b834e82e530cff1f13f25ee7f
-  data.tar.gz: f136cec57987c03ab4aa3fba2b65fe2964b010a326e28cdc0d32f755b45612f1
+  metadata.gz: 62a8e27551c3779ec7676e6d2e0e66c13c2a8f95c88562722bfdcb8d9d319f2f
+  data.tar.gz: 2cd6f1f9bcf63a13c2688fbc6854d1173f657bfecbfca5ef9a24bd06b5c61f32
 SHA512:
-  metadata.gz: 9b16a3dd6f96bf2ec1bfa5e3abba2e513567b12035e34e8ea30c24fb8a08ca70089d394f5daa0f40fdc4e14fb63470593904a5a335f864782983c719cf0d57d2
-  data.tar.gz: 66f3f86fcf4b90ffbab8ea82777ac2df48f1774f7ff528d44ec81e12ea47cb2050309b5535e9e960757eb8f9350efa9c6a128754c3b117fdedef3e3c42a43765
+  metadata.gz: 1e2132e134510005376a33192f81e408fdc3e5813f368c7c8a0ce2b00328d963c94970549219a7e9b2352136a8c223da5bb2e753e9cae9e43ce2b0f6304ad8df
+  data.tar.gz: bb81aaefa19e40042623a008d8e4d0e062f35590f4150eabb6349dd0b394b3b0d58276b2acdf17137a09c4f25a97caf011069590ff09cebb43581a3d7549919b

data/CHANGELOG.md

@@ -1,209 +1,264 @@
-## Rails 7.0.4 (September 09, 2022) ##
+## Rails 7.1.3.4 (June 04, 2024) ##
 
-*   Handle name clashes in attribute methods code generation cache.
-
-    When two distinct attribute methods would generate similar names,
-    the first implementation would be incorrectly re-used.
-
-    ```ruby
-    class A
-      attribute_method_suffix "_changed?"
-      define_attribute_methods :x
-    end
-
-    class B
-      attribute_method_suffix "?"
-      define_attribute_methods :x_changed
-    end
-    ```
+*   No changes.
 
-    *Jean Boussier*
 
-## Rails 7.0.3.1 (July 12, 2022) ##
+## Rails 7.1.3.3 (May 16, 2024) ##
 
 *   No changes.
 
 
-## Rails 7.0.3 (May 09, 2022) ##
+## Rails 7.1.3.2 (February 21, 2024) ##
 
 *   No changes.
 
 
-## Rails 7.0.2.4 (April 26, 2022) ##
+## Rails 7.1.3.1 (February 21, 2024) ##
 
 *   No changes.
 
 
-## Rails 7.0.2.3 (March 08, 2022) ##
+## Rails 7.1.3 (January 16, 2024) ##
 
 *   No changes.
 
 
-## Rails 7.0.2.2 (February 11, 2022) ##
+## Rails 7.1.2 (November 10, 2023) ##
 
-*   No changes.
+*   Make `==(other)` method of AttributeSet safe.
 
+    *Dmitry Pogrebnoy*
 
-## Rails 7.0.2.1 (February 11, 2022) ##
-
-*   No changes.
 
+## Rails 7.1.1 (October 11, 2023) ##
 
-## Rails 7.0.2 (February 08, 2022) ##
+*   No changes.
 
-*   Use different cache namespace for proxy calls
 
-    Models can currently have different attribute bodies for the same method
-    names, leading to conflicts. Adding a new namespace `:active_model_proxy`
-    fixes the issue.
+## Rails 7.1.0 (October 05, 2023) ##
 
-    *Chris Salzberg*
+*   No changes.
 
 
-## Rails 7.0.1 (January 06, 2022) ##
+## Rails 7.1.0.rc2 (October 01, 2023) ##
 
 *   No changes.
 
 
-## Rails 7.0.0 (December 15, 2021) ##
+## Rails 7.1.0.rc1 (September 27, 2023) ##
 
-*   No changes.
+*   Remove change in the typography of user facing error messages.
+    For example, “can’t be blank” is again “can't be blank”.
 
+    *Rafael Mendonça França*
 
-## Rails 7.0.0.rc3 (December 14, 2021) ##
 
-*   No changes.
+## Rails 7.1.0.beta1 (September 13, 2023) ##
 
+*   Support composite identifiers in `to_key`
 
-## Rails 7.0.0.rc2 (December 14, 2021) ##
+    `to_key` avoids wrapping `#id` value into an `Array` if `#id` already an array
 
-*   No changes.
+    *Nikita Vasilevsky*
 
-## Rails 7.0.0.rc1 (December 06, 2021) ##
+*   Add `ActiveModel::Conversion.param_delimiter` to configure delimiter being used in `to_param`
 
-*   Remove support to Marshal load Rails 5.x `ActiveModel::AttributeSet` format.
+    *Nikita Vasilevsky*
 
-    *Rafael Mendonça França*
+*   `undefine_attribute_methods` undefines alias attribute methods along with attribute methods.
 
-*   Remove support to Marshal and YAML load Rails 5.x error format.
+    *Nikita Vasilevsky*
 
-    *Rafael Mendonça França*
+*   Error.full_message now strips ":base" from the message.
 
-*   Remove deprecated support to use `[]=` in `ActiveModel::Errors#messages`.
+    *zzak*
 
-    *Rafael Mendonça França*
+*   Add a load hook for `ActiveModel::Model` (named `active_model`) to match the load hook for
+    `ActiveRecord::Base` and allow for overriding aspects of the `ActiveModel::Model` class.
 
-*   Remove deprecated support to `delete` errors from `ActiveModel::Errors#messages`.
+    *Lewis Buckley*
 
-    *Rafael Mendonça França*
+*   Improve password length validation in ActiveModel::SecurePassword to consider byte size for BCrypt
+    compatibility.
 
-*   Remove deprecated support to `clear` errors from `ActiveModel::Errors#messages`.
+    The previous password length validation only considered the character count, which may not
+    accurately reflect the 72-byte size limit imposed by BCrypt. This change updates the validation
+    to consider both character count and byte size while keeping the character length validation in place.
 
-    *Rafael Mendonça França*
+    ```ruby
+    user = User.new(password: "a" * 73)  # 73 characters
+    user.valid? # => false
+    user.errors[:password] # => ["is too long"]
 
-*   Remove deprecated support concat errors to `ActiveModel::Errors#messages`.
 
-    *Rafael Mendonça França*
+    user = User.new(password: "あ" * 25)  # 25 characters, 75 bytes
+    user.valid? # => false
+    user.errors[:password] # => ["is too long"]
+    ```
 
-*   Remove deprecated `ActiveModel::Errors#to_xml`.
+    *ChatGPT*, *Guillermo Iguaran*
 
-    *Rafael Mendonça França*
+*   `has_secure_password` now generates an `#{attribute}_salt` method that returns the salt
+    used to compute the password digest. The salt will change whenever the password is changed,
+    so it can be used to create single-use password reset tokens with `generates_token_for`:
 
-*   Remove deprecated `ActiveModel::Errors#keys`.
+    ```ruby
+    class User < ActiveRecord::Base
+      has_secure_password
 
-    *Rafael Mendonça França*
+      generates_token_for :password_reset, expires_in: 15.minutes do
+        password_salt&.last(10)
+      end
+    end
+    ```
 
-*   Remove deprecated `ActiveModel::Errors#values`.
+    *Lázaro Nixon*
 
-    *Rafael Mendonça França*
+*   Improve typography of user facing error messages. In English contractions,
+    the Unicode APOSTROPHE (`U+0027`) is now RIGHT SINGLE QUOTATION MARK
+    (`U+2019`). For example, "can't be blank" is now "can’t be blank".
 
-*   Remove deprecated `ActiveModel::Errors#slice!`.
+    *Jon Dufresne*
 
-    *Rafael Mendonça França*
+*   Add class to `ActiveModel::MissingAttributeError` error message.
 
-*   Remove deprecated `ActiveModel::Errors#to_h`.
+    Show which class is missing the attribute in the error message:
 
-    *Rafael Mendonça França*
+    ```ruby
+    user = User.first
+    user.pets.select(:id).first.user_id
+    # => ActiveModel::MissingAttributeError: missing attribute 'user_id' for Pet
+    ```
 
-*   Remove deprecated enumeration of `ActiveModel::Errors` instances as a Hash.
+    *Petrik de Heus*
 
-    *Rafael Mendonça França*
+*   Raise `NoMethodError` in `ActiveModel::Type::Value#as_json` to avoid unpredictable
+    results.
 
-*   Clear secure password cache if password is set to `nil`
+    *Vasiliy Ermolovich*
 
-    Before:
+*   Custom attribute types that inherit from Active Model built-in types and do
+    not override the `serialize` method will now benefit from an optimization
+    when serializing attribute values for the database.
 
-       user.password = 'something'
-       user.password = nil
+    For example, with a custom type like the following:
 
-       user.password # => 'something'
+    ```ruby
+    class DowncasedString < ActiveModel::Type::String
+      def cast(value)
+        super&.downcase
+      end
+    end
 
-    Now:
+    ActiveRecord::Type.register(:downcased_string, DowncasedString)
 
-       user.password = 'something'
-       user.password = nil
+    class User < ActiveRecord::Base
+      attribute :email, :downcased_string
+    end
 
-       user.password # => nil
+    user = User.new(email: "FooBar@example.com")
+    ```
 
-    *Markus Doits*
+    Serializing the `email` attribute for the database will be roughly twice as
+    fast.  More expensive `cast` operations will likely see greater improvements.
 
-## Rails 7.0.0.alpha2 (September 15, 2021) ##
+    *Jonathan Hefner*
 
-*   No changes.
+*   `has_secure_password` now supports password challenges via a
+    `password_challenge` accessor and validation.
 
+    A password challenge is a safeguard to verify that the current user is
+    actually the password owner.  It can be used when changing sensitive model
+    fields, such as the password itself.  It is different than a password
+    confirmation, which is used to prevent password typos.
 
-## Rails 7.0.0.alpha1 (September 15, 2021) ##
+    When `password_challenge` is set, the validation checks that the value's
+    digest matches the *currently persisted* `password_digest` (i.e.
+    `password_digest_was`).
 
-*   Introduce `ActiveModel::API`.
+    This allows a password challenge to be done as part of a typical `update`
+    call, just like a password confirmation.  It also allows a password
+    challenge error to be handled in the same way as other validation errors.
 
-    Make `ActiveModel::API` the minimum API to talk with Action Pack and Action View.
-    This will allow adding more functionality to `ActiveModel::Model`.
+    For example, in the controller, instead of:
 
-    *Petrik de Heus*, *Nathaniel Watts*
+    ```ruby
+    password_params = params.require(:password).permit(
+      :password_challenge,
+      :password,
+      :password_confirmation,
+    )
 
-*   Fix dirty check for Float::NaN and BigDecimal::NaN.
+    password_challenge = password_params.delete(:password_challenge)
+    @password_challenge_failed = !current_user.authenticate(password_challenge)
 
-    Float::NaN and BigDecimal::NaN in Ruby are [special values](https://bugs.ruby-lang.org/issues/1720)
-    and can't be compared with `==`.
+    if !@password_challenge_failed && current_user.update(password_params)
+      # ...
+    end
+    ```
 
-    *Marcelo Lauxen*
+    You can now write:
 
-*   Fix `to_json` for `ActiveModel::Dirty` object.
+    ```ruby
+    password_params = params.require(:password).permit(
+      :password_challenge,
+      :password,
+      :password_confirmation,
+    ).with_defaults(password_challenge: "")
+
+    if current_user.update(password_params)
+      # ...
+    end
+    ```
 
-    Exclude `mutations_from_database` attribute from json as it lead to recursion.
+    And, in the view, instead of checking `@password_challenge_failed`, you can
+    render an error for the `password_challenge` field just as you would for
+    other form fields, including utilizing `config.action_view.field_error_proc`.
 
-    *Anil Maurya*
+    *Jonathan Hefner*
 
-*   Add `ActiveModel::AttributeSet#values_for_database`.
+*   Support infinite ranges for `LengthValidator`s `:in`/`:within` options
 
-    Returns attributes with values for assignment to the database.
+    ```ruby
+    validates_length_of :first_name, in: ..30
+    ```
 
-    *Chris Salzberg*
+    *fatkodima*
 
-*   Fix delegation in ActiveModel::Type::Registry#lookup and ActiveModel::Type.lookup.
+*   Add support for beginless ranges to inclusivity/exclusivity validators:
 
-    Passing a last positional argument `{}` would be incorrectly considered as keyword argument.
+    ```ruby
+    validates_inclusion_of :birth_date, in: -> { (..Date.today) }
+    ```
+
+    ```ruby
+    validates_exclusion_of :birth_date, in: -> { (..Date.today) }
+    ```
 
-    *Benoit Daloze*
+    *Bo Jeanes*
 
-*   Cache and re-use generated attribute methods.
+*   Make validators accept lambdas without record argument
 
-    Generated methods with identical implementations will now share their instruction sequences
-    leading to reduced memory retention, and slightly faster load time.
+    ```ruby
+    # Before
+    validates_comparison_of :birth_date, less_than_or_equal_to: ->(_record) { Date.today }
 
-    *Jean Boussier*
+    # After
+    validates_comparison_of :birth_date, less_than_or_equal_to: -> { Date.today }
+    ```
 
-*   Add `in: range`  parameter to `numericality` validator.
+    *fatkodima*
 
-    *Michal Papis*
+*   Fix casting long strings to `Date`, `Time` or `DateTime`
 
-*   Add `locale` argument to `ActiveModel::Name#initialize` to be used to generate the `singular`,
-   `plural`, `route_key` and `singular_route_key` values.
+    *fatkodima*
 
-    *Lukas Pokorny*
+*   Use different cache namespace for proxy calls
 
-*   Make ActiveModel::Errors#inspect slimmer for readability
+    Models can currently have different attribute bodies for the same method
+    names, leading to conflicts. Adding a new namespace `:active_model_proxy`
+    fixes the issue.
 
-    *lulalala*
+    *Chris Salzberg*
 
-Please check [6-1-stable](https://github.com/rails/rails/blob/6-1-stable/activemodel/CHANGELOG.md) for previous changes.
+Please check [7-0-stable](https://github.com/rails/rails/blob/7-0-stable/activemodel/CHANGELOG.md) for previous changes.

data/MIT-LICENSE

@@ -1,4 +1,4 @@
-Copyright (c) 2004-2022 David Heinemeier Hansson
+Copyright (c) David Heinemeier Hansson
 
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the

data/README.rdoc

@@ -1,22 +1,22 @@
-= Active Model -- model interfaces for Rails
+= Active Model -- model interfaces for \Rails
 
 Active Model provides a known set of interfaces for usage in model classes.
 They allow for Action Pack helpers to interact with non-Active Record models,
 for example. Active Model also helps with building custom ORMs for use outside of
-the Rails framework.
+the \Rails framework.
 
-You can read more about Active Model in the {Active Model Basics}[https://edgeguides.rubyonrails.org/active_model_basics.html] guide.
+You can read more about Active Model in the {Active Model Basics}[https://guides.rubyonrails.org/active_model_basics.html] guide.
 
-Prior to Rails 3.0, if a plugin or gem developer wanted to have an object
+Prior to \Rails 3.0, if a plugin or gem developer wanted to have an object
 interact with Action Pack helpers, it was required to either copy chunks of
-code from Rails, or monkey patch entire helpers to make them handle objects
+code from \Rails, or monkey patch entire helpers to make them handle objects
 that did not exactly conform to the Active Record interface. This would result
 in code duplication and fragile applications that broke on upgrades. Active
 Model solves this by defining an explicit API. You can read more about the
-API in <tt>ActiveModel::Lint::Tests</tt>.
+API in +ActiveModel::Lint::Tests+.
 
 Active Model provides a default module that implements the basic API required
-to integrate with Action Pack out of the box: <tt>ActiveModel::API</tt>.
+to integrate with Action Pack out of the box: ActiveModel::API.
 
     class Person
       include ActiveModel::API
@@ -32,7 +32,7 @@ to integrate with Action Pack out of the box: <tt>ActiveModel::API</tt>.
 
 It includes model name introspections, conversions, translations and
 validations, resulting in a class suitable to be used with Action Pack.
-See <tt>ActiveModel::API</tt> for more examples.
+See ActiveModel::API for more examples.
 
 Active Model also provides the following functionality to have ORM-like
 behavior out of the box:
@@ -156,7 +156,7 @@ behavior out of the box:
 
 * Making objects serializable
 
-  <tt>ActiveModel::Serialization</tt> provides a standard interface for your object
+  ActiveModel::Serialization provides a standard interface for your object
   to provide +to_json+ serialization.
 
     class SerialPerson
@@ -239,7 +239,7 @@ The latest version of Active Model can be installed with RubyGems:
 
   $ gem install activemodel
 
-Source code can be downloaded as part of the Rails project on GitHub
+Source code can be downloaded as part of the \Rails project on GitHub
 
 * https://github.com/rails/rails/tree/main/activemodel
 
@@ -257,7 +257,7 @@ API documentation is at:
 
 * https://api.rubyonrails.org
 
-Bug reports for the Ruby on Rails project can be filed here:
+Bug reports for the Ruby on \Rails project can be filed here:
 
 * https://github.com/rails/rails/issues
 

data/lib/active_model/access.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+require "active_support/core_ext/enumerable"
+require "active_support/core_ext/hash/indifferent_access"
+
+module ActiveModel
+  module Access # :nodoc:
+    def slice(*methods)
+      methods.flatten.index_with { |method| public_send(method) }.with_indifferent_access
+    end
+
+    def values_at(*methods)
+      methods.flatten.map! { |method| public_send(method) }
+    end
+  end
+end

data/lib/active_model/api.rb

@@ -1,10 +1,10 @@
 # frozen_string_literal: true
 
 module ActiveModel
-  # == Active \Model \API
+  # = Active \Model \API
   #
   # Includes the required interface for an object to interact with
-  # Action Pack and Action View, using different Active Model modules.
+  # Action Pack and Action View, using different Active \Model modules.
   # It includes model name introspections, conversions, translations, and
   # validations. Besides that, it allows you to initialize the object with a
   # hash of attributes, pretty much like Active Record does.
@@ -20,7 +20,7 @@ module ActiveModel
   #   person.name # => "bob"
   #   person.age  # => "18"
   #
-  # Note that, by default, <tt>ActiveModel::API</tt> implements <tt>persisted?</tt>
+  # Note that, by default, +ActiveModel::API+ implements #persisted?
   # to return +false+, which is the most common case. You may want to override
   # it in your class to simulate a different scenario:
   #
@@ -36,7 +36,7 @@ module ActiveModel
   #   person = Person.new(id: 1, name: 'bob')
   #   person.persisted? # => true
   #
-  # Also, if for some reason you need to run code on <tt>initialize</tt>, make
+  # Also, if for some reason you need to run code on initialize ( ::new ), make
   # sure you call +super+ if you want the attributes hash initialization to
   # happen.
   #
@@ -54,7 +54,7 @@ module ActiveModel
   #   person.omg # => true
   #
   # For more detailed information on other functionalities available, please
-  # refer to the specific modules included in <tt>ActiveModel::API</tt>
+  # refer to the specific modules included in +ActiveModel::API+
   # (see below).
   module API
     extend ActiveSupport::Concern

data/lib/active_model/attribute/user_provided_default.rb

@@ -4,6 +4,10 @@ require "active_model/attribute"
 
 module ActiveModel
   class Attribute # :nodoc:
+    def with_user_default(value)
+      UserProvidedDefault.new(name, value, type, self.is_a?(FromDatabase) ? self : original_attribute)
+    end
+
     class UserProvidedDefault < FromUser # :nodoc:
       def initialize(name, value, type, database_default)
         @user_provided_value = value

data/lib/active_model/attribute.rb

@@ -53,7 +53,10 @@ module ActiveModel
     end
 
     def value_for_database
-      type.serialize(value)
+      if !defined?(@value_for_database) || type.changed_in_place?(@value_for_database, value)
+        @value_for_database = _value_for_database
+      end
+      @value_for_database
     end
 
     def serializable?(&block)
@@ -159,6 +162,10 @@ module ActiveModel
         assigned? && type.changed?(original_value, value, value_before_type_cast)
       end
 
+      def _value_for_database
+        type.serialize(value)
+      end
+
       def _original_value_for_database
         type.serialize(original_value)
       end
@@ -168,6 +175,19 @@ module ActiveModel
           type.deserialize(value)
         end
 
+        def forgetting_assignment
+          # If this attribute was not persisted (with a `value_for_database`
+          # that might differ from `value_before_type_cast`) and `value` has not
+          # changed in place, we can use the existing `value_before_type_cast`
+          # to avoid deserialize / cast / serialize calls from computing the new
+          # attribute's `value_before_type_cast`.
+          if !defined?(@value_for_database) && !changed_in_place?
+            with_value_from_database(value_before_type_cast)
+          else
+            super
+          end
+        end
+
         private
           def _original_value_for_database
             value_before_type_cast
@@ -182,6 +202,11 @@ module ActiveModel
         def came_from_user?
           !type.value_constructed_by_mass_assignment?(value_before_type_cast)
         end
+
+        private
+          def _value_for_database
+            Type::SerializeCastValue.serialize(type, value)
+          end
       end
 
       class WithCastValue < Attribute # :nodoc:

data/lib/active_model/attribute_assignment.rb

@@ -10,7 +10,7 @@ module ActiveModel
     # keys matching the attribute names.
     #
     # If the passed hash responds to <tt>permitted?</tt> method and the return value
-    # of this method is +false+ an <tt>ActiveModel::ForbiddenAttributesError</tt>
+    # of this method is +false+ an ActiveModel::ForbiddenAttributesError
     # exception is raised.
     #
     #   class Cat