Use redirect url to edit from initializer as well #1228
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
can you @dks17 review this one? |
dks17
reviewed
Oct 27, 2018
| @@ -188,5 +182,13 @@ def with_reset_password_token token | |||
| def render_not_found_error | |||
| render_error(404, I18n.t('devise_token_auth.passwords.user_not_found', email: @email)) | |||
| end | |||
|
|
|||
| def redirect_url | |||
There was a problem hiding this comment.
It looks not bad.
I think you may rewrite it something like this:
before_action :validate_redirect_url_param, only: [:create, :edit]
private
def validate_redirect_url_param
# give redirect value from params priority
@redirect_url ||= params.fetch(
:redirect_url,
DeviseTokenAuth.default_password_reset_url
)
render_create_error_missing_redirect_url unless @redirect_url
render_create_error_not_allowed_redirect_url if blacklisted_redirect_url?
end
def redirect_url
@redirect_url
endBy this approach you can cover two actions at the same code. I suppose edit action needs the same redirect_url validation.
dks17
suggested changes
Oct 27, 2018
There was a problem hiding this comment.
Try to add some tests for edit action. To test redirect_url validation you may use tests for create action.
describe 'not redirect_url should return 401' do
before do
@auth_headers = @resource.create_new_auth_token
@new_password = Faker::Internet.password
put :edit,
params: { email: 'chester@cheet.ah' }
@data = JSON.parse(response.body)
end
test 'response should fail' do
assert_equal 401, response.status
end
test 'error message should be returned' do
assert @data['errors']
assert_equal(
@data['errors'],
[I18n.t('devise_token_auth.passwords.missing_redirect_url')]
)
end
end
MaicolBen
force-pushed
the
chore/add-redirect-to-edit
branch
3 times, most recently
from
5a99e6f to
b164291
Compare
dks17
suggested changes
Nov 5, 2018
MaicolBen
force-pushed
the
chore/add-redirect-to-edit
branch
3 times, most recently
from
0d1f5fd to
f2b2961
Compare
dks17
reviewed
Nov 7, 2018
dks17
reviewed
Nov 7, 2018
MaicolBen
force-pushed
the
chore/add-redirect-to-edit
branch
from
f2b2961 to
a512341
Compare
|
@dks17 ready! sorry for the delay |
|
@MaicolBen Please, read I have wrote in suggested changes message. I don't insist you have to add those tests. I would like you do it. So you have fixed #1219 @MaicolBen. Good job. Approved. |
dks17
approved these changes
Dec 2, 2018
This one? I added it 20 days ago, thanks |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Resolves #1219