RubyGems - strong_parameters - Versions diffs - 0.1.0 → 0.1.1 - Mend

strong_parameters 0.1.0 → 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

data/README.rdoc +4 -4
data/lib/action_controller/parameters.rb +37 -3
data/lib/strong_parameters/version.rb +1 -1
data/test/action_controller_required_params_test.rb +5 -0
data/test/nested_parameters_test.rb +80 -0
metadata +10 -8

data/README.rdoc CHANGED Viewed

@@ -29,13 +29,13 @@ In addition, parameters can be marked as required and flow through a predefined
         end
     end
-Thanks to Nick Kallen for the permit idea!
+You can also use permit on nested parameters, like:
-== Todos
+    params.permit(:name, friends: [ :name, { family: [ :name ] }])
-* Make this play nice with nested parameters [???]. Design:
+Thanks to Nick Kallen for the permit idea!
-    params.permit(:name, friends: [ :name, { family: [ :name ] }])
+== Todos
 * Automatically permit parameters coming from a signed form [Yehuda]

data/lib/action_controller/parameters.rb CHANGED Viewed

@@ -30,8 +30,32 @@ module ActionController
       self[key].presence || raise(ActionController::ParameterMissing.new(key))
     end
-    def permit(*keys)
-      slice(*keys).permit!
+    def permit(*filters)
+      params = self.class.new
+      filters.each do |filter|
+        case filter
+        when Symbol then
+          params[filter] = self[filter]
+        when Hash then
+          self.slice(*filter.keys).each do |key, value|
+            return unless value
+            key = key.to_sym
+            params[key] = each_element(value) do |value|
+              # filters are a Hash, so we expect value to be a Hash too
+              next if filter.is_a?(Hash) && !value.is_a?(Hash)
+              value = self.class.new(value) if !value.respond_to?(:permit)
+              value.permit(*Array.wrap(filter[key]))
+            end
+          end
+        end
+      end
+      params.permit!
     end
     def [](key)
@@ -59,13 +83,23 @@ module ActionController
           self[key] = self.class.new(value)
         end
       end
+      def each_element(object)
+        if object.is_a?(Array)
+          object.map { |el| yield el }.compact
+        else
+          yield object
+        end
+      end
   end
   module StrongParameters
     extend ActiveSupport::Concern
     included do
-      rescue_from(ActionController::ParameterMissing) { head :bad_request }
+      rescue_from(ActionController::ParameterMissing) do |parameter_missing_exception|
+        render text: "Required parameter missing: #{parameter_missing_exception.param}", status: :bad_request
+      end
     end
     def params

data/lib/strong_parameters/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module StrongParameters
-  VERSION = "0.1.0"
+  VERSION = "0.1.1"
 end

data/test/action_controller_required_params_test.rb CHANGED Viewed

@@ -22,4 +22,9 @@ class ActionControllerRequiredParamsTest < ActionController::TestCase
     post :create, { book: { name: "Mjallo!" } }
     assert_response :ok
   end
+  test "missing parameters will be mentioned in the return" do
+    post :create, { magazine: { name: "Mjallo!" } }
+    assert_equal "Required parameter missing: book", response.body
+  end
 end

data/test/nested_parameters_test.rb ADDED Viewed

@@ -0,0 +1,80 @@
+require 'test_helper'
+require 'action_controller/parameters'
+class NestedParametersTest < ActiveSupport::TestCase
+  test "permitted nested parameters" do
+    params = ActionController::Parameters.new({
+      book: {
+        title: "Romeo and Juliet",
+        authors: [{
+          name: "William Shakespeare",
+          born: "1564-04-26"
+        }, {
+          name: "Christopher Marlowe"
+        }],
+        details: {
+          pages: 200,
+          genre: "Tragedy"
+        }
+      },
+      magazine: "Mjallo!"
+    })
+    permitted = params.permit book: [ :title, { authors: [ :name ] }, { details: :pages } ]
+    assert permitted.permitted?
+    assert_equal "Romeo and Juliet", permitted[:book][:title]
+    assert_equal "William Shakespeare", permitted[:book][:authors][0][:name]
+    assert_equal "Christopher Marlowe", permitted[:book][:authors][1][:name]
+    assert_equal 200, permitted[:book][:details][:pages]
+    assert_nil permitted[:book][:details][:genre]
+    assert_nil permitted[:book][:authors][1][:born]
+    assert_nil permitted[:magazine]
+  end
+  test "nested arrays with strings" do
+    params = ActionController::Parameters.new({
+      book: {
+        genres: ["Tragedy"]
+      }
+    })
+    permitted = params.permit book: :genres
+    assert_equal ["Tragedy"], permitted[:book][:genres]
+  end
+  test "nested array with strings that should be hashes" do
+    params = ActionController::Parameters.new({
+      book: {
+        genres: ["Tragedy"]
+      }
+    })
+    permitted = params.permit book: { genres: :type }
+    assert_empty permitted[:book][:genres]
+  end
+  test "nested array with strings that should be hashes and additional values" do
+    params = ActionController::Parameters.new({
+      book: {
+        title: "Romeo and Juliet",
+        genres: ["Tragedy"]
+      }
+    })
+    permitted = params.permit book: [ :title, { genres: :type } ]
+    assert_equal "Romeo and Juliet", permitted[:book][:title]
+    assert_empty permitted[:book][:genres]
+  end
+  test "nested string that should be a hash" do
+    params = ActionController::Parameters.new({
+      book: {
+        genre: "Tragedy"
+      }
+    })
+    permitted = params.permit book: { genre: :type }
+    assert_nil permitted[:book][:genre]
+  end
+end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: strong_parameters
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
   prerelease:
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2012-03-21 00:00:00.000000000 Z
+date: 2012-03-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: actionpack
-  requirement: &70323933135920 !ruby/object:Gem::Requirement
+  requirement: &70365015572120 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -21,10 +21,10 @@ dependencies:
         version: 3.2.0
   type: :runtime
   prerelease: false
-  version_requirements: *70323933135920
+  version_requirements: *70365015572120
 - !ruby/object:Gem::Dependency
   name: activemodel
-  requirement: &70323933135420 !ruby/object:Gem::Requirement
+  requirement: &70365015570760 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -32,10 +32,10 @@ dependencies:
         version: 3.2.0
   type: :runtime
   prerelease: false
-  version_requirements: *70323933135420
+  version_requirements: *70365015570760
 - !ruby/object:Gem::Dependency
   name: rake
-  requirement: &70323933135040 !ruby/object:Gem::Requirement
+  requirement: &70365015568980 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -43,7 +43,7 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *70323933135040
+  version_requirements: *70365015568980
 description:
 email:
 - david@heinemeierhansson.com
@@ -63,6 +63,7 @@ files:
 - test/active_model_mass_assignment_taint_protection_test.rb
 - test/dummy/db/test.sqlite3
 - test/dummy/log/test.log
+- test/nested_parameters_test.rb
 - test/parameters_require_test.rb
 - test/parameters_taint_test.rb
 - test/test_helper.rb
@@ -96,6 +97,7 @@ test_files:
 - test/active_model_mass_assignment_taint_protection_test.rb
 - test/dummy/db/test.sqlite3
 - test/dummy/log/test.log
+- test/nested_parameters_test.rb
 - test/parameters_require_test.rb
 - test/parameters_taint_test.rb
 - test/test_helper.rb