strong_parameters 0.1.3 → 0.1.4

data/README.rdoc

@@ -10,16 +10,16 @@ In addition, parameters can be marked as required and flow through a predefined
       def create
         Person.create(params[:person])
       end
-      
+
       # This will pass with flying colors as long as there's a person key in the parameters, otherwise
-      # it'll raise a ActionController::MissingParameter exception, which will get caught by 
+      # it'll raise a ActionController::MissingParameter exception, which will get caught by
       # ActionController::Base and turned into that 400 Bad Request reply.
       def update
-        redirect_to current_account.people.find(params[:id]).tap do |person|
+        redirect_to current_account.people.find(params[:id]).tap { |person|
           person.update_attributes!(person_params)
-        end
+        }
       end
-      
+
       private
         # Using a private method to encapsulate the permissible parameters is just a good pattern
         # since you'll be able to reuse the same permit list between create and update. Also, you
@@ -35,10 +35,19 @@ You can also use permit on nested parameters, like:
 
 Thanks to Nick Kallen for the permit idea!
 
-== Todos
+== Installation
+
+In Gemfile:
 
-* Automatically permit parameters coming from a signed form [Yehuda]
+    gem 'strong_parameters'
+
+and then run `bundle`. To activate the strong parameters, you need to include this module in
+every model you want protected.
+
+    class Post < ActiveRecord::Base
+      include ActiveModel::ForbiddenAttributesProtection
+    end
 
 == Compatibility
 
-Due to a testing issue, this plugin is only fully compatible with rails/3-2-stable rev 275ee0dc7b and forward as well as rails/master rev b49a7ddce1 and forward.
+Due to a testing issue, this plugin is only fully compatible with rails/3-2-stable rev 275ee0dc7b and forward as well as rails/master rev b49a7ddce1 and forward.

data/lib/action_controller/parameters.rb

@@ -29,7 +29,7 @@ module ActionController
     def require(key)
       self[key].presence || raise(ActionController::ParameterMissing.new(key))
     end
-    
+
     alias :required :require
 
     def permit(*filters)
@@ -37,7 +37,7 @@ module ActionController
 
       filters.each do |filter|
         case filter
-        when Symbol then
+        when Symbol, String then
           params[filter] = self[filter] if has_key?(filter)
         when Hash then
           self.slice(*filter.keys).each do |key, value|
@@ -93,6 +93,11 @@ module ActionController
       def each_element(object)
         if object.is_a?(Array)
           object.map { |el| yield el }.compact
+        # fields_for on an array of records uses numeric hash keys
+        elsif object.is_a?(Hash) && object.keys.all? { |k| k =~ /\A-?\d+\z/ }
+          hash = object.class.new
+          object.each { |k,v| hash[k] = yield v }
+          hash
         else
           yield object
         end
@@ -104,7 +109,7 @@ module ActionController
 
     included do
       rescue_from(ActionController::ParameterMissing) do |parameter_missing_exception|
-        render text: "Required parameter missing: #{parameter_missing_exception.param}", status: :bad_request
+        render :text => "Required parameter missing: #{parameter_missing_exception.param}", :status => :bad_request
       end
     end
 

data/lib/active_model/forbidden_attributes_protection.rb

@@ -4,7 +4,7 @@ module ActiveModel
 
   module ForbiddenAttributesProtection
     def sanitize_for_mass_assignment(new_attributes, options = {})
-      if !new_attributes.respond_to?(:permitted?) || (new_attributes.respond_to?(:permitted?) && new_attributes.permitted?)
+      if !new_attributes.respond_to?(:permitted?) || new_attributes.permitted?
         super
       else
         raise ActiveModel::ForbiddenAttributes

data/lib/generators/rails/USAGE

@@ -0,0 +1,12 @@
+Description:
+    Stubs out a scaffolded controller and its views. Different from rails
+    scaffold_controller, it uses strong_parameters to whitelist permissible
+    attributes in a private method.
+    Pass the model name, either CamelCased or under_scored. The controller
+    name is retrieved as a pluralized version of the model name.
+
+    To create a controller within a module, specify the model name as a
+    path like 'parent_module/controller_name'.
+
+    This generates a controller class in app/controllers and invokes helper,
+    template engine and test framework generators.

data/lib/generators/rails/strong_parameters_controller_generator.rb

@@ -0,0 +1,10 @@
+require 'rails/generators/rails/scaffold_controller/scaffold_controller_generator'
+
+module Rails
+  module Generators
+    class StrongParametersControllerGenerator < ScaffoldControllerGenerator
+      argument :attributes, :type => :array, :default => [], :banner => "field:type field:type"
+      source_root File.expand_path("../templates", __FILE__)
+    end
+  end
+end

data/lib/generators/rails/templates/controller.rb

@@ -0,0 +1,94 @@
+<% module_namespacing do -%>
+class <%= controller_class_name %>Controller < ApplicationController
+  # GET <%= route_url %>
+  # GET <%= route_url %>.json
+  def index
+    @<%= plural_table_name %> = <%= orm_class.all(class_name) %>
+
+    respond_to do |format|
+      format.html # index.html.erb
+      format.json { render json: <%= "@#{plural_table_name}" %> }
+    end
+  end
+
+  # GET <%= route_url %>/1
+  # GET <%= route_url %>/1.json
+  def show
+    @<%= singular_table_name %> = <%= orm_class.find(class_name, "params[:id]") %>
+
+    respond_to do |format|
+      format.html # show.html.erb
+      format.json { render json: <%= "@#{singular_table_name}" %> }
+    end
+  end
+
+  # GET <%= route_url %>/new
+  # GET <%= route_url %>/new.json
+  def new
+    @<%= singular_table_name %> = <%= orm_class.build(class_name) %>
+
+    respond_to do |format|
+      format.html # new.html.erb
+      format.json { render json: <%= "@#{singular_table_name}" %> }
+    end
+  end
+
+  # GET <%= route_url %>/1/edit
+  def edit
+    @<%= singular_table_name %> = <%= orm_class.find(class_name, "params[:id]") %>
+  end
+
+  # POST <%= route_url %>
+  # POST <%= route_url %>.json
+  def create
+    @<%= singular_table_name %> = <%= orm_class.build(class_name, "#{singular_table_name}_params") %>
+
+    respond_to do |format|
+      if @<%= orm_instance.save %>
+        format.html { redirect_to @<%= singular_table_name %>, notice: <%= "'#{human_name} was successfully created.'" %> }
+        format.json { render json: <%= "@#{singular_table_name}" %>, status: :created, location: <%= "@#{singular_table_name}" %> }
+      else
+        format.html { render action: "new" }
+        format.json { render json: <%= "@#{orm_instance.errors}" %>, status: :unprocessable_entity }
+      end
+    end
+  end
+
+  # PATCH/PUT <%= route_url %>/1
+  # PATCH/PUT <%= route_url %>/1.json
+  def update
+    @<%= singular_table_name %> = <%= orm_class.find(class_name, "params[:id]") %>
+
+    respond_to do |format|
+      if @<%= orm_instance.update_attributes("#{singular_table_name}_params") %>
+        format.html { redirect_to @<%= singular_table_name %>, notice: <%= "'#{human_name} was successfully updated.'" %> }
+        format.json { head :no_content }
+      else
+        format.html { render action: "edit" }
+        format.json { render json: <%= "@#{orm_instance.errors}" %>, status: :unprocessable_entity }
+      end
+    end
+  end
+
+  # DELETE <%= route_url %>/1
+  # DELETE <%= route_url %>/1.json
+  def destroy
+    @<%= singular_table_name %> = <%= orm_class.find(class_name, "params[:id]") %>
+    @<%= orm_instance.destroy %>
+
+    respond_to do |format|
+      format.html { redirect_to <%= index_helper %>_url }
+      format.json { head :no_content }
+    end
+  end
+
+  private
+
+    # Use this method to whitelist the permissible parameters. Example:
+    # params.require(:person).permit(:name, :age)
+    # Also, you can specialize this method with per-user checking of permissible attributes.
+    def <%= "#{singular_table_name}_params" %>
+      params.require(<%= ":#{singular_table_name}" %>).permit(<%= attributes.map {|a| ":#{a.name}" }.sort.join(', ') %>)
+    end
+end
+<% end -%>

data/lib/strong_parameters/railtie.rb

@@ -0,0 +1,11 @@
+require 'rails/railtie'
+
+module StrongParameters
+  class Railtie < ::Rails::Railtie
+    if config.respond_to?(:app_generators)
+      config.app_generators.scaffold_controller = :strong_parameters_controller
+    else
+      config.generators.scaffold_controller = :strong_parameters_controller
+    end
+  end
+end

data/lib/strong_parameters/version.rb

@@ -1,3 +1,3 @@
 module StrongParameters
-  VERSION = "0.1.3"
+  VERSION = "0.1.4"
 end

data/lib/strong_parameters.rb

@@ -1,2 +1,3 @@
 require 'action_controller/parameters'
 require 'active_model/forbidden_attributes_protection'
+require 'strong_parameters/railtie'

data/test/controller_generator_test.rb

@@ -0,0 +1,31 @@
+require 'rails/generators/test_case'
+require 'generators/rails/strong_parameters_controller_generator'
+
+class StrongParametersControllerGeneratorTest < Rails::Generators::TestCase
+  tests Rails::Generators::StrongParametersControllerGenerator
+  arguments %w(User name:string age:integer --orm=none)
+  destination File.expand_path("../tmp", File.dirname(__FILE__))
+  setup :prepare_destination
+
+  def test_controller_content
+    run_generator
+
+    assert_file "app/controllers/users_controller.rb" do |content|
+
+      assert_instance_method :create, content do |m|
+        assert_match(/@user = User\.new\(user_params\)/, m)
+        assert_match(/@user\.save/, m)
+        assert_match(/@user\.errors/, m)
+      end
+
+      assert_instance_method :update, content do |m|
+        assert_match(/@user = User\.find\(params\[:id\]\)/, m)
+        assert_match(/@user\.update_attributes\(user_params\)/, m)
+        assert_match(/@user\.errors/, m)
+      end
+
+      assert_match(/def user_params/, content)
+      assert_match(/params\.require\(:user\)\.permit\(:age, :name\)/, content)
+    end
+  end
+end

data/test/nested_parameters_test.rb

@@ -34,15 +34,30 @@ class NestedParametersTest < ActiveSupport::TestCase
 
   test "nested arrays with strings" do
     params = ActionController::Parameters.new({
-      book: {
-        genres: ["Tragedy"]
+      :book => {
+        :genres => ["Tragedy"]
       }
     })
 
-    permitted = params.permit book: :genres
+    permitted = params.permit :book => :genres
     assert_equal ["Tragedy"], permitted[:book][:genres]
   end
 
+  test "permit may specify symbols or strings" do
+    params = ActionController::Parameters.new({
+      book: {
+        title: "Romeo and Juliet",
+        author: "William Shakespeare"
+      },
+      magazine: "Shakespeare Today"
+    })
+
+    permitted = params.permit({ book: ["title", :author] }, "magazine")
+    assert_equal "Romeo and Juliet", permitted[:book][:title]
+    assert_equal "William Shakespeare", permitted[:book][:author]
+    assert_equal "Shakespeare Today", permitted[:magazine]
+  end
+
   test "nested array with strings that should be hashes" do
     params = ActionController::Parameters.new({
       book: {
@@ -77,4 +92,40 @@ class NestedParametersTest < ActiveSupport::TestCase
     permitted = params.permit book: { genre: :type }
     assert_nil permitted[:book][:genre]
   end
+
+  test "fields_for_style_nested_params" do
+    params = ActionController::Parameters.new({
+      book: {
+        authors_attributes: {
+          :'0' => { name: 'William Shakespeare', age_of_death: '52' },
+          :'1' => { name: 'Unattributed Assistant' }
+        }
+      }
+    })
+    permitted = params.permit book: { authors_attributes: [ :name ] }
+
+    assert_not_nil permitted[:book][:authors_attributes]['0']
+    assert_not_nil permitted[:book][:authors_attributes]['1']
+    assert_nil permitted[:book][:authors_attributes]['0'][:age_of_death]
+    assert_equal 'William Shakespeare', permitted[:book][:authors_attributes]['0'][:name]
+    assert_equal 'Unattributed Assistant', permitted[:book][:authors_attributes]['1'][:name]
+  end
+
+  test "fields_for_style_nested_params with negative numbers" do
+    params    = ActionController::Parameters.new({
+      book: {
+        authors_attributes: {
+          :'-1' => {name: 'William Shakespeare', age_of_death: '52'},
+          :'-2' => {name: 'Unattributed Assistant'}
+        }
+      }
+    })
+    permitted = params.permit book: {authors_attributes: [:name]}
+
+    assert_not_nil permitted[:book][:authors_attributes]['-1']
+    assert_not_nil permitted[:book][:authors_attributes]['-2']
+    assert_nil permitted[:book][:authors_attributes]['-1'][:age_of_death]
+    assert_equal 'William Shakespeare', permitted[:book][:authors_attributes]['-1'][:name]
+    assert_equal 'Unattributed Assistant', permitted[:book][:authors_attributes]['-2'][:name]
+  end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: strong_parameters
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.1.4
   prerelease: 
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-03-29 00:00:00.000000000 Z
+date: 2012-09-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: actionpack
-  requirement: &70325350860480 !ruby/object:Gem::Requirement
+  requirement: &2164465820 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -21,10 +21,10 @@ dependencies:
         version: 3.2.0
   type: :runtime
   prerelease: false
-  version_requirements: *70325350860480
+  version_requirements: *2164465820
 - !ruby/object:Gem::Dependency
   name: activemodel
-  requirement: &70325350858180 !ruby/object:Gem::Requirement
+  requirement: &2164465300 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -32,10 +32,21 @@ dependencies:
         version: 3.2.0
   type: :runtime
   prerelease: false
-  version_requirements: *70325350858180
+  version_requirements: *2164465300
+- !ruby/object:Gem::Dependency
+  name: railties
+  requirement: &2164464820 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 3.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: *2164464820
 - !ruby/object:Gem::Dependency
   name: rake
-  requirement: &70325350848320 !ruby/object:Gem::Requirement
+  requirement: &2164464440 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -43,7 +54,7 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *70325350848320
+  version_requirements: *2164464440
 description: 
 email:
 - david@heinemeierhansson.com
@@ -53,6 +64,10 @@ extra_rdoc_files: []
 files:
 - lib/action_controller/parameters.rb
 - lib/active_model/forbidden_attributes_protection.rb
+- lib/generators/rails/strong_parameters_controller_generator.rb
+- lib/generators/rails/templates/controller.rb
+- lib/generators/rails/USAGE
+- lib/strong_parameters/railtie.rb
 - lib/strong_parameters/version.rb
 - lib/strong_parameters.rb
 - MIT-LICENSE
@@ -61,8 +76,7 @@ files:
 - test/action_controller_required_params_test.rb
 - test/action_controller_tainted_params_test.rb
 - test/active_model_mass_assignment_taint_protection_test.rb
-- test/dummy/db/test.sqlite3
-- test/dummy/log/test.log
+- test/controller_generator_test.rb
 - test/nested_parameters_test.rb
 - test/parameters_require_test.rb
 - test/parameters_taint_test.rb
@@ -87,7 +101,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.11
+rubygems_version: 1.8.7
 signing_key: 
 specification_version: 3
 summary: Permitted and required parameters for Action Pack
@@ -95,8 +109,7 @@ test_files:
 - test/action_controller_required_params_test.rb
 - test/action_controller_tainted_params_test.rb
 - test/active_model_mass_assignment_taint_protection_test.rb
-- test/dummy/db/test.sqlite3
-- test/dummy/log/test.log
+- test/controller_generator_test.rb
 - test/nested_parameters_test.rb
 - test/parameters_require_test.rb
 - test/parameters_taint_test.rb

data/test/dummy/log/test.log

@@ -1,219 +0,0 @@
-   (0.3ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-  Rendered text template (0.0ms)
-Completed 200 OK in 7ms (Views: 6.4ms | ActiveRecord: 0.0ms)
-   (0.1ms)  rollback transaction
-   (0.3ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-  Rendered text template (0.0ms)
-Completed 200 OK in 7ms (Views: 6.4ms | ActiveRecord: 0.0ms)
-   (0.1ms)  rollback transaction
-   (0.0ms)  begin transaction
-Processing by PeopleController#create_with_permit as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"user"=>{"name"=>"Mjallo!"}}
-Completed 500 Internal Server Error in 0ms
-   (0.1ms)  rollback transaction
-   (0.0ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 500 Internal Server Error in 8ms
-   (0.1ms)  rollback transaction
-   (0.2ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"user"=>{"name"=>"Mjallo!"}}
-Completed 500 Internal Server Error in 0ms
-   (0.1ms)  rollback transaction
-   (0.0ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 200 OK in 0ms (ActiveRecord: 0.0ms)
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"user"=>{"name"=>"Mjallo!"}}
-Completed 400 Bad Request in 0ms (ActiveRecord: 0.0ms)
-   (0.1ms)  rollback transaction
-   (0.1ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 200 OK in 0ms (ActiveRecord: 0.0ms)
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"user"=>{"name"=>"Mjallo!"}}
-Completed 400 Bad Request in 0ms (ActiveRecord: 0.0ms)
-   (0.1ms)  rollback transaction
-   (0.0ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 200 OK in 0ms (ActiveRecord: 0.0ms)
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.2ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"user"=>{"name"=>"Mjallo!"}}
-Completed 400 Bad Request in 0ms (ActiveRecord: 0.0ms)
-   (0.1ms)  rollback transaction
-   (0.1ms)  begin transaction
-Processing by PeopleController#create as HTML
-  Parameters: {"person"=>{"name"=>"Mjallo!"}}
-Completed 200 OK in 0ms (ActiveRecord: 0.0ms)
-   (0.0ms)  rollback transaction
-   (0.3ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  rollback transaction