rails-api 0.2.1 → 0.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: f2ba43cdee06ac56bfcff4cb92005713f164f3db
-  data.tar.gz: 3f5533c7e3dae082eaaf231fdd0141b963737bd0
+  metadata.gz: b28c4566c34870ed999653a0e313daf06bd1b0da
+  data.tar.gz: f7c2d51b73e60f0f557e93c7f672b0087a4751c3
 SHA512:
-  metadata.gz: 8c8b3bcba2d10b1af75eed99f299ce893aad0c588c94a6f776530a908d1d9dc45d01a6d67f9220912ded69a2d2778d6aeefb2e69532bcf4a08d12787c8592c0d
-  data.tar.gz: 7ac43d93cad6f886c13128569d695b6566f8403f11f4b64feaec79d2cdc52cb9b64c271529191db2e3039896ccd3660a9990b2ed24203745936777d30ef6a038
+  metadata.gz: 9dc88bdd19ab2495b8e53e52b4431474e9e9f112177ec6d6a5cbf6248e6a764b921e27b3d19a231431a69b622fa83bde76a22c94806d31db8fbfc38fab2bd84e
+  data.tar.gz: 988cec2b4327f322fbcb1c365e06c23708d0e92bf4272b099b3fc73a7dfae234acf8fdca925c2cfaf4f76a39dc8a7b840c4326c856c0cc3f9c46739267ea9886

data/README.md

@@ -131,7 +131,7 @@ class ApplicationController < ActionController::API
 end
 ```
 
-And comment out the `protect_from_forgery` call if you are using it.
+And comment out the `protect_from_forgery` call if you are using it. (You aren't using cookie-based authentication for your API, are you?)
 
 If you want to use the Rails default middleware stack (avoid the reduction that rails-api does), you can just add config.api_only = false to config/application.rb file.
 
@@ -220,7 +220,7 @@ Some common modules you might want to add:
 
 * *AbstractController::Translation*: Support for the *l* and *t* localization and translation methods. These delegate to *I18n.translate* and *I18n.localize*.
 * *ActionController::HttpAuthentication::Basic::ControllerMethods* (or *Digest* or *Token*): Support for basic, digest or token HTTP authentication.
-* *AbstractController::Layouts*: Support for layouts when rendering.
+* *ActionView::Layouts*: Support for layouts when rendering.
 * *ActionController::MimeResponds* (and *ActionController::ImplicitRender* for Rails 4): Support for content negotiation (*respond_to*, *respond_with*).
 * *ActionController::Cookies*: Support for *cookies*, which includes support for signed and encrypted cookies. This requires the cookie middleware.
 

data/lib/rails-api.rb

@@ -1,3 +1,4 @@
+require 'rails/version'
 require 'rails-api/version'
 require 'rails-api/action_controller/api'
 require 'rails-api/application'

data/lib/rails-api/action_controller/api.rb

@@ -155,6 +155,10 @@ module ActionController
       include mod
     end
 
+    def self.protected_instance_variables
+      Set.new
+    end
+
     if Rails::VERSION::MAJOR >= 4
       include StrongParameters
     end

data/lib/rails-api/application.rb

@@ -1,15 +1,16 @@
-require 'rails/version'
 require 'rails/application'
 require 'rails-api/public_exceptions'
 require 'rails-api/application/default_rails_four_middleware_stack'
 
 module Rails
   class Application < Engine
+    alias_method :rails_default_middleware_stack, :default_middleware_stack
+
     def default_middleware_stack
       if Rails::API.rails4?
         DefaultRailsFourMiddlewareStack.new(self, config, paths).build_stack
       else
-        rails_three_stack
+        rails_3_stack
       end
     end
 
@@ -37,7 +38,7 @@ module Rails
       setup_generators!
     end
 
-    def rails_three_stack
+    def rails_3_stack
       ActionDispatch::MiddlewareStack.new.tap do |middleware|
         if rack_cache = config.action_controller.perform_caching && config.action_dispatch.rack_cache
           require "action_dispatch/http/rack_cache"

data/lib/rails-api/templates/rails/app/Gemfile

@@ -4,9 +4,11 @@ source 'https://rubygems.org'
 <%= rails_gemfile_entry %>
 <%- else -%>
 <%- rails_gemfile_entry.each do |entry| -%>
+<%- if entry.respond_to?(:name) %>
 gem '<%= entry.name -%>', '<%= entry.version -%>'
 <%- end -%>
 <%- end -%>
+<%- end -%>
 
 gem 'rails-api'
 
@@ -15,7 +17,7 @@ gem 'rails-api'
 <%- else -%>
 gem 'spring', :group => :development
 
-<%- if database_gemfile_entry -%>
+<%- if database_gemfile_entry && database_gemfile_entry.respond_to?(:name) %>
 gem '<%= database_gemfile_entry.name -%>'
 <%- end -%>
 <%- end -%>

data/lib/rails-api/templates/rails/scaffold_controller/controller.rb

@@ -19,7 +19,7 @@ class <%= controller_class_name %>Controller < ApplicationController
   # POST <%= route_url %>
   # POST <%= route_url %>.json
   def create
-    @<%= singular_table_name %> = <%= orm_class.build(class_name, "params[:#{singular_table_name}]") %>
+    @<%= singular_table_name %> = <%= orm_class.build(class_name, "#{singular_table_name}_params") %>
 
     if @<%= orm_instance.save %>
       render json: <%= "@#{singular_table_name}" %>, status: :created, location: <%= "@#{singular_table_name}" %>
@@ -33,7 +33,7 @@ class <%= controller_class_name %>Controller < ApplicationController
   def update
     @<%= singular_table_name %> = <%= orm_class.find(class_name, "params[:id]") %>
 
-    if @<%= Rails::API.rails4? ? orm_instance.update("params[:#{singular_table_name}]") : orm_instance.update_attributes("params[:#{singular_table_name}]") %>
+    if @<%= Rails::API.rails4? ? orm_instance.update("#{singular_table_name}_params") : orm_instance.update_attributes("params[:#{singular_table_name}]") %>
       head :no_content
     else
       render json: <%= "@#{orm_instance.errors}" %>, status: :unprocessable_entity
@@ -48,5 +48,15 @@ class <%= controller_class_name %>Controller < ApplicationController
 
     head :no_content
   end
+
+  private
+    
+    def <%= "#{singular_table_name}_params" %>
+      <%- if attributes_names.empty? -%>
+      params[:<%= singular_table_name %>]
+      <%- else -%>
+      params.require(:<%= singular_table_name %>).permit(<%= attributes_names.map { |name| ":#{name}" }.join(', ') %>)
+      <%- end -%>
+    end
 end
 <% end -%>

data/lib/rails-api/version.rb

@@ -1,5 +1,5 @@
 module Rails
   module API
-    VERSION = '0.2.1'
+    VERSION = '0.3.0'
   end
 end

data/test/generators/scaffold_generator_test.rb

@@ -47,7 +47,7 @@ class ScaffoldGeneratorTest < Rails::Generators::TestCase
       end
 
       assert_instance_method :create, content do |m|
-        assert_match(/@product_line = ProductLine\.new\(params\[:product_line\]\)/, m)
+        assert_match(/@product_line = ProductLine\.new\(product_line_params\)/, m)
         assert_match(/@product_line\.save/, m)
         assert_match(/@product_line\.errors/, m)
       end
@@ -55,9 +55,9 @@ class ScaffoldGeneratorTest < Rails::Generators::TestCase
       assert_instance_method :update, content do |m|
         assert_match(/@product_line = ProductLine\.find\(params\[:id\]\)/, m)
         if rails4?
-          assert_match(/@product_line\.update\(params\[:product_line\]\)/, m)
+          assert_match(/@product_line\.update\(product_line_params\)/, m)
         else
-          assert_match(/@product_line\.update_attributes\(params\[:product_line\]\)/, m)
+          assert_match(/@product_line\.update_attributes\(product_line_params\)/, m)
         end
         assert_match(/@product_line\.errors/, m)
       end
@@ -66,6 +66,10 @@ class ScaffoldGeneratorTest < Rails::Generators::TestCase
         assert_match(/@product_line = ProductLine\.find\(params\[:id\]\)/, m)
         assert_match(/@product_line\.destroy/, m)
       end
+
+      assert_instance_method :product_line_params, content do |m|
+        assert_match(/params\.require\(:product_line\)\.permit\(:title, :product_id, :user_id\)/, m)
+      end
     end
 
     assert_file "test/#{generated_test_functional_dir}/product_lines_controller_test.rb" do |test|

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: rails-api
 version: !ruby/object:Gem::Version
-  version: 0.2.1
+  version: 0.3.0
 platform: ruby
 authors:
 - Santiago Pastorino and Carlos Antonio da Silva
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-09 00:00:00.000000000 Z
+date: 2014-10-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: actionpack
@@ -120,17 +120,17 @@ signing_key:
 specification_version: 4
 summary: Rails for API only Applications
 test_files:
+- test/test_helper.rb
 - test/api_application/api_application_test.rb
-- test/api_controller/action_methods_test.rb
-- test/api_controller/conditional_get_test.rb
-- test/api_controller/data_streaming_test.rb
-- test/api_controller/force_ssl_test.rb
-- test/api_controller/redirect_to_test.rb
-- test/api_controller/renderers_test.rb
-- test/api_controller/url_for_test.rb
-- test/generators/app_generator_test.rb
 - test/generators/fixtures/routes.rb
-- test/generators/generators_test_helper.rb
 - test/generators/resource_generator_test.rb
+- test/generators/generators_test_helper.rb
+- test/generators/app_generator_test.rb
 - test/generators/scaffold_generator_test.rb
-- test/test_helper.rb
+- test/api_controller/conditional_get_test.rb
+- test/api_controller/url_for_test.rb
+- test/api_controller/renderers_test.rb
+- test/api_controller/force_ssl_test.rb
+- test/api_controller/redirect_to_test.rb
+- test/api_controller/data_streaming_test.rb
+- test/api_controller/action_methods_test.rb