mirror of
https://github.com/mastodon/mastodon.git
synced 2025-01-24 11:01:43 +01:00
Use expect
for nested params in settings/*
controllers (#33673)
This commit is contained in:
parent
8b24085f8e
commit
e155aab39e
@ -30,7 +30,7 @@ class Settings::AliasesController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def resource_params
|
def resource_params
|
||||||
params.require(:account_alias).permit(:acct)
|
params.expect(account_alias: [:acct])
|
||||||
end
|
end
|
||||||
|
|
||||||
def set_alias
|
def set_alias
|
||||||
|
@ -21,7 +21,7 @@ class Settings::DeletesController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def resource_params
|
def resource_params
|
||||||
params.require(:form_delete_confirmation).permit(:password, :username)
|
params.expect(form_delete_confirmation: [:password, :username])
|
||||||
end
|
end
|
||||||
|
|
||||||
def require_not_suspended!
|
def require_not_suspended!
|
||||||
|
@ -44,6 +44,6 @@ class Settings::FeaturedTagsController < Settings::BaseController
|
|||||||
end
|
end
|
||||||
|
|
||||||
def featured_tag_params
|
def featured_tag_params
|
||||||
params.require(:featured_tag).permit(:name)
|
params.expect(featured_tag: [:name])
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
@ -90,7 +90,7 @@ class Settings::ImportsController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def import_params
|
def import_params
|
||||||
params.require(:form_import).permit(:data, :type, :mode)
|
params.expect(form_import: [:data, :type, :mode])
|
||||||
end
|
end
|
||||||
|
|
||||||
def set_bulk_import
|
def set_bulk_import
|
||||||
|
@ -33,6 +33,6 @@ class Settings::Migration::RedirectsController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def resource_params
|
def resource_params
|
||||||
params.require(:form_redirect).permit(:acct, :current_password, :current_username)
|
params.expect(form_redirect: [:acct, :current_password, :current_username])
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
@ -27,7 +27,7 @@ class Settings::MigrationsController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def resource_params
|
def resource_params
|
||||||
params.require(:account_migration).permit(:acct, :current_password, :current_username)
|
params.expect(account_migration: [:acct, :current_password, :current_username])
|
||||||
end
|
end
|
||||||
|
|
||||||
def set_migrations
|
def set_migrations
|
||||||
|
@ -18,7 +18,7 @@ class Settings::PrivacyController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def account_params
|
def account_params
|
||||||
params.require(:account).permit(:discoverable, :unlocked, :indexable, :show_collections, settings: UserSettings.keys)
|
params.expect(account: [:discoverable, :unlocked, :indexable, :show_collections, settings: UserSettings.keys])
|
||||||
end
|
end
|
||||||
|
|
||||||
def set_account
|
def set_account
|
||||||
|
@ -20,7 +20,7 @@ class Settings::ProfilesController < Settings::BaseController
|
|||||||
private
|
private
|
||||||
|
|
||||||
def account_params
|
def account_params
|
||||||
params.require(:account).permit(:display_name, :note, :avatar, :header, :bot, fields_attributes: [:name, :value])
|
params.expect(account: [:display_name, :note, :avatar, :header, :bot, fields_attributes: [:name, :value]])
|
||||||
end
|
end
|
||||||
|
|
||||||
def set_account
|
def set_account
|
||||||
|
16
spec/requests/settings/aliases_spec.rb
Normal file
16
spec/requests/settings/aliases_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Aliases' do
|
||||||
|
describe 'POST /settings/aliases' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
post settings_aliases_path(account_alias: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
16
spec/requests/settings/deletes_spec.rb
Normal file
16
spec/requests/settings/deletes_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Deletes' do
|
||||||
|
describe 'DELETE /settings/delete' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
delete settings_delete_path(form_delete_confirmation: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
16
spec/requests/settings/featured_tags_spec.rb
Normal file
16
spec/requests/settings/featured_tags_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Aliases' do
|
||||||
|
describe 'POST /settings/featured_tags' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
post settings_featured_tags_path(featured_tag: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
16
spec/requests/settings/imports_spec.rb
Normal file
16
spec/requests/settings/imports_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Imports' do
|
||||||
|
describe 'POST /settings/imports' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
post settings_imports_path(form_import: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
16
spec/requests/settings/migration/redirects_spec.rb
Normal file
16
spec/requests/settings/migration/redirects_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Migration Redirects' do
|
||||||
|
describe 'POST /settings/migration/redirect' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
post settings_migration_redirect_path(form_redirect: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
@ -18,4 +18,15 @@ RSpec.describe 'Settings Migrations' do
|
|||||||
it { is_expected.to redirect_to new_user_session_path }
|
it { is_expected.to redirect_to new_user_session_path }
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
|
context 'when user is signed in' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
post settings_migration_path(account_migration: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
16
spec/requests/settings/privacy_spec.rb
Normal file
16
spec/requests/settings/privacy_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Privacy' do
|
||||||
|
describe 'PUT /settings/privacy' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
put settings_privacy_path(account: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
16
spec/requests/settings/profiles_spec.rb
Normal file
16
spec/requests/settings/profiles_spec.rb
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
require 'rails_helper'
|
||||||
|
|
||||||
|
RSpec.describe 'Settings Profiles' do
|
||||||
|
describe 'PUT /settings/profile' do
|
||||||
|
before { sign_in Fabricate(:user) }
|
||||||
|
|
||||||
|
it 'gracefully handles invalid nested params' do
|
||||||
|
put settings_profile_path(account: 'invalid')
|
||||||
|
|
||||||
|
expect(response)
|
||||||
|
.to have_http_status(400)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
Loading…
x
Reference in New Issue
Block a user