Merge branch 'ai3168' into 'stable'

Improve validation of submissions/answers http://noosfero.org/Development/ActionItem3168

Merge branch 'ai3168' into 'stable'
Improve validation of submissions/answers http://noosfero.org/Development/ActionItem3168
Rodrigo Souto
2 parents c2cbd96f 5450e1d8
Showing 5 changed files with 49 additions and 60 deletions Show diff stats
plugins/custom_forms/controllers/custom_forms_plugin_profile_controller.rb
plugins/custom_forms/lib/custom_forms_plugin/helper.rb
plugins/custom_forms/lib/custom_forms_plugin/membership_survey.rb
plugins/custom_forms/lib/custom_forms_plugin/submission.rb
plugins/custom_forms/test/unit/custom_forms_plugin/submission_test.rb
@@ -6,40 +6,26 @@ class CustomFormsPluginProfileController &lt; ProfileController
     @form = CustomFormsPlugin::Form.find(params[:id])
     if user
-      @submission ||= CustomFormsPlugin::Submission.find_by_form_id_and_profile_id(@form.id,user.id)
+      @submission = CustomFormsPlugin::Submission.find_by_form_id_and_profile_id(@form.id,user.id)
       @submission ||= CustomFormsPlugin::Submission.new(:form_id => @form.id, :profile_id => user.id)
     else
-      @submission ||= CustomFormsPlugin::Submission.new(:form_id => @form.id)
+      @submission = CustomFormsPlugin::Submission.new(:form_id => @form.id)
     end
     # build the answers
-    @submission.answers.push(*(answers = build_answers(params[:submission], @form))) if params[:submission]
+    @answers = if params[:submission] then @submission.build_answers params[:submission] else @submission.answers end
     if request.post?
       begin
         raise 'Submission already present!' if user.present? && CustomFormsPlugin::Submission.find_by_form_id_and_profile_id(@form.id,user.id)
         raise 'Form expired!' if @form.expired?
-        # @submission.answers for some reason has the same answer twice
-        failed_answers = answers.select {|answer| !answer.valid? }
-
-        if failed_answers.empty?
-          # Save the submission
-          ActiveRecord::Base.transaction do
-            if !user
-              @submission.author_name = params[:author_name]
-              @submission.author_email = params[:author_email]
-            end
-            @submission.save!
-          end
-        else
-          @submission.errors.clear
-          failed_answers.each do |answer|
-            answer.valid?
-            answer.errors.each do |attribute, msg|
-              @submission.errors.add(answer.field.id.to_s.to_sym, msg)
-            end
-          end
+        if !user
+          @submission.author_name = params[:author_name]
+          @submission.author_email = params[:author_email]
+        end
+
+        if not @submission.save
           raise 'Submission failed: answers not valid'
         end
         session[:notice] = _('Submission saved')
 module CustomFormsPlugin::Helper
+
+  protected
+
   def html_for_field(builder, association, klass)
     new_object = klass.new
     builder.fields_for(association, new_object, :child_index => "new_#{association}") do |f|
@@ -117,22 +120,4 @@ module CustomFormsPlugin::Helper
     type_for_options(field.class) == 'select_field' && field.select_field_type == 'check_box'
   end
-  def build_answers(submission, form)
-    answers = []
-    form.fields.each do |field|
-      final_value = ''
-      if submission.has_key?(field.id.to_s)
-        value = submission[field.id.to_s]
-        if value.kind_of?(String)
-          final_value = value
-        elsif value.kind_of?(Array)
-          final_value = value.join(',')
-        elsif value.kind_of?(Hash)
-          final_value = value.map {|option, present| present == '1' ? option : nil}.compact.join(',')
-        end
-      end
-      answers << CustomFormsPlugin::Answer.new(:field => field, :value => final_value)
-    end
-    answers
-  end
 end
@@ -11,23 +11,9 @@ class CustomFormsPlugin::MembershipSurvey &lt; Task
     form = CustomFormsPlugin::Form.find(form_id)
     raise 'Form expired' if form.expired?
-    answers = build_answers(submission, form)
     s = CustomFormsPlugin::Submission.create!(:form => form, :profile => target)
-    s.answers.push(*answers)
-
-    failed_answers = answers.select {|answer| !answer.valid? }
-    if failed_answers.empty?
-      s.save!
-    else
-      s.errors.clear
-      answers.each do |answer|
-        answer.valid?
-        answer.errors.each do |attribute, msg|
-          s.errors.add(answer.field.id.to_s.to_sym, msg)
-        end
-      end
-      raise ActiveRecord::RecordInvalid, s
-    end
+    s.build_answers submission
+    s.save!
   end
   def title
@@ -2,12 +2,14 @@ class CustomFormsPlugin::Submission &lt; Noosfero::Plugin::ActiveRecord
   belongs_to :form, :class_name => 'CustomFormsPlugin::Form'
   belongs_to :profile
-  has_many :answers, :class_name => 'CustomFormsPlugin::Answer', :dependent => :destroy
+  # validation is done manually, see below
+  has_many :answers, :class_name => 'CustomFormsPlugin::Answer', :dependent => :destroy, :validate => false
   validates_presence_of :form
   validates_presence_of :author_name, :author_email, :if => lambda {|submission| submission.profile.nil?}
   validates_uniqueness_of :author_email, :scope => :form_id, :allow_nil => true
   validates_format_of :author_email, :with => Noosfero::Constants::EMAIL_FORMAT, :if => (lambda {|submission| !submission.author_email.blank?})
+  validate :check_answers
   def self.human_attribute_name(attrib)
     if /\d+/ =~ attrib and (f = CustomFormsPlugin::Field.find_by_id(attrib.to_i))
@@ -17,5 +19,35 @@ class CustomFormsPlugin::Submission &lt; Noosfero::Plugin::ActiveRecord
     end
   end
+  def build_answers submission
+    self.form.fields.each do |field|
+      next unless value = submission[field.id.to_s]
+
+      final_value = ''
+      if value.kind_of?(String)
+        final_value = value
+      elsif value.kind_of?(Array)
+        final_value = value.join(',')
+      elsif value.kind_of?(Hash)
+        final_value = value.map {|option, present| present == '1' ? option : nil}.compact.join(',')
+      end
+
+      self.answers.build :field => field, :value => final_value
+    end
+
+    self.answers
+  end
+
+  protected
+
+  def check_answers
+    self.answers.each do |answer|
+      answer.valid?
+      answer.errors.each do |attribute, msg|
+        self.errors.add answer.field.id.to_s.to_sym, msg
+      end
+    end
+  end
+
 end
@@ -36,8 +36,8 @@ class CustomFormsPlugin::SubmissionTest &lt; ActiveSupport::TestCase
     form = CustomFormsPlugin::Form.create!(:name => 'Free Software', :profile => fast_create(Profile))
     field = CustomFormsPlugin::Field.create!(:name => 'License', :form => form)
     submission = CustomFormsPlugin::Submission.create!(:form => form, :profile => fast_create(Profile))
-    a1 = CustomFormsPlugin::Answer.create!(:field => field, :submission => submission)
-    a2 = CustomFormsPlugin::Answer.create!(:field => field, :submission => submission)
+    a1 = submission.answers.create!(:field => field, :submission => submission)
+    a2 = submission.answers.create!(:field => field, :submission => submission)
     assert_includes submission.answers, a1
     assert_includes submission.answers, a2
1	module CustomFormsPlugin::Helper	1	module CustomFormsPlugin::Helper
		2	+
		3	+ protected
		4	+
2	def html_for_field(builder, association, klass)	5	def html_for_field(builder, association, klass)
3	new_object = klass.new	6	new_object = klass.new
4	builder.fields_for(association, new_object, :child_index => "new_#{association}") do \|f\|	7	builder.fields_for(association, new_object, :child_index => "new_#{association}") do \|f\|
	@@ -117,22 +120,4 @@ module CustomFormsPlugin::Helper		@@ -117,22 +120,4 @@ module CustomFormsPlugin::Helper
117	type_for_options(field.class) == 'select_field' && field.select_field_type == 'check_box'	120	type_for_options(field.class) == 'select_field' && field.select_field_type == 'check_box'
118	end	121	end
119		122
120	- def build_answers(submission, form)
121	- answers = []
122	- form.fields.each do \|field\|
123	- final_value = ''
124	- if submission.has_key?(field.id.to_s)
125	- value = submission[field.id.to_s]
126	- if value.kind_of?(String)
127	- final_value = value
128	- elsif value.kind_of?(Array)
129	- final_value = value.join(',')
130	- elsif value.kind_of?(Hash)
131	- final_value = value.map {\|option, present\| present == '1' ? option : nil}.compact.join(',')
132	- end
133	- end
134	- answers << CustomFormsPlugin::Answer.new(:field => field, :value => final_value)
135	- end
136	- answers
137	- end
138	end	123	end
	@@ -11,23 +11,9 @@ class CustomFormsPlugin::MembershipSurvey < Task		@@ -11,23 +11,9 @@ class CustomFormsPlugin::MembershipSurvey < Task
11	form = CustomFormsPlugin::Form.find(form_id)	11	form = CustomFormsPlugin::Form.find(form_id)
12	raise 'Form expired' if form.expired?	12	raise 'Form expired' if form.expired?
13		13
14	- answers = build_answers(submission, form)
15	s = CustomFormsPlugin::Submission.create!(:form => form, :profile => target)	14	s = CustomFormsPlugin::Submission.create!(:form => form, :profile => target)
16	- s.answers.push(*answers)
17	-
18	- failed_answers = answers.select {\|answer\| !answer.valid? }
19	- if failed_answers.empty?
20	- s.save!
21	- else
22	- s.errors.clear
23	- answers.each do \|answer\|
24	- answer.valid?
25	- answer.errors.each do \|attribute, msg\|
26	- s.errors.add(answer.field.id.to_s.to_sym, msg)
27	- end
28	- end
29	- raise ActiveRecord::RecordInvalid, s
30	- end	15	+ s.build_answers submission
		16	+ s.save!
31	end	17	end
32		18
33	def title	19	def title
	@@ -2,12 +2,14 @@ class CustomFormsPlugin::Submission < Noosfero::Plugin::ActiveRecord		@@ -2,12 +2,14 @@ class CustomFormsPlugin::Submission < Noosfero::Plugin::ActiveRecord
2	belongs_to :form, :class_name => 'CustomFormsPlugin::Form'	2	belongs_to :form, :class_name => 'CustomFormsPlugin::Form'
3	belongs_to :profile	3	belongs_to :profile
4		4
5	- has_many :answers, :class_name => 'CustomFormsPlugin::Answer', :dependent => :destroy	5	+ # validation is done manually, see below
		6	+ has_many :answers, :class_name => 'CustomFormsPlugin::Answer', :dependent => :destroy, :validate => false
6		7
7	validates_presence_of :form	8	validates_presence_of :form
8	validates_presence_of :author_name, :author_email, :if => lambda {\|submission\| submission.profile.nil?}	9	validates_presence_of :author_name, :author_email, :if => lambda {\|submission\| submission.profile.nil?}
9	validates_uniqueness_of :author_email, :scope => :form_id, :allow_nil => true	10	validates_uniqueness_of :author_email, :scope => :form_id, :allow_nil => true
10	validates_format_of :author_email, :with => Noosfero::Constants::EMAIL_FORMAT, :if => (lambda {\|submission\| !submission.author_email.blank?})	11	validates_format_of :author_email, :with => Noosfero::Constants::EMAIL_FORMAT, :if => (lambda {\|submission\| !submission.author_email.blank?})
		12	+ validate :check_answers
11		13
12	def self.human_attribute_name(attrib)	14	def self.human_attribute_name(attrib)
13	if /\d+/ =~ attrib and (f = CustomFormsPlugin::Field.find_by_id(attrib.to_i))	15	if /\d+/ =~ attrib and (f = CustomFormsPlugin::Field.find_by_id(attrib.to_i))
	@@ -17,5 +19,35 @@ class CustomFormsPlugin::Submission < Noosfero::Plugin::ActiveRecord		@@ -17,5 +19,35 @@ class CustomFormsPlugin::Submission < Noosfero::Plugin::ActiveRecord
17	end	19	end
18	end	20	end
19		21
		22	+ def build_answers submission
		23	+ self.form.fields.each do \|field\|
		24	+ next unless value = submission[field.id.to_s]
		25	+
		26	+ final_value = ''
		27	+ if value.kind_of?(String)
		28	+ final_value = value
		29	+ elsif value.kind_of?(Array)
		30	+ final_value = value.join(',')
		31	+ elsif value.kind_of?(Hash)
		32	+ final_value = value.map {\|option, present\| present == '1' ? option : nil}.compact.join(',')
		33	+ end
		34	+
		35	+ self.answers.build :field => field, :value => final_value
		36	+ end
		37	+
		38	+ self.answers
		39	+ end
		40	+
		41	+ protected
		42	+
		43	+ def check_answers
		44	+ self.answers.each do \|answer\|
		45	+ answer.valid?
		46	+ answer.errors.each do \|attribute, msg\|
		47	+ self.errors.add answer.field.id.to_s.to_sym, msg
		48	+ end
		49	+ end
		50	+ end
		51	+
20	end	52	end
21		53