10.3 Iteration E3: Finishing the Cart 10.1 Iteration E1: Creating a Smarter Cart

Log errors and show them on the screen.

Rescue error: log, flash, and redirect.

edit app/controllers/carts_controller.rb

class CartsController < ApplicationController

  before_action :set_cart, only: [:show, :edit, :update, :destroy]

  rescue_from ActiveRecord::RecordNotFound, with: :invalid_cart

  # GET /carts

  # ...

  private

  # ...

    def invalid_cart

      logger.error "Attempt to access invalid cart #{params[:id]}"

      redirect_to store_url, notice: 'Invalid cart'

    end

end

Reproduce the error.

get /carts/wibble

get http://localhost:3000/

Pragmatic Bookshelf

• Home
• Questions
• News
• Contact

Invalid cart

Your Pragmatic Catalog

CoffeeScript

CoffeeScript is JavaScript done right. It provides all of JavaScript's functionality wrapped in a cleaner, more succinct syntax. In the first book on this exciting new language, CoffeeScript guru Trevor Burnham shows you how to hold onto all the power and flexibility of JavaScript while writing clearer, cleaner, and safer code.

$36.00

Programming Ruby 1.9 & 2.0

Ruby is the fastest growing and most exciting dynamic language out there. If you need to get working programs delivered fast, you should add Ruby to your toolbox.

$49.95

Rails Test Prescriptions

Rails Test Prescriptions is a comprehensive guide to testing Rails applications, covering Test-Driven Development from both a theoretical perspective (why to test) and from a practical perspective (how to test effectively). It covers the core Rails testing tools and procedures for Rails 2 and Rails 3, and introduces popular add-ons, including Cucumber, Shoulda, Machinist, Mocha, and Rcov.

$34.95

Inspect the log.

tail -25 log/development.log

  app/controllers/carts_controller.rb:67:in `set_cart'

  Rendered /home/rubys/.rvm/gems/ruby-2.1.2/gems/web-console-2.0.0.beta4/lib/action_dispatch/templates/rescues/_source.erb (3.1ms)

  Rendered /home/rubys/.rvm/gems/ruby-2.1.2/gems/web-console-2.0.0.beta4/lib/action_dispatch/templates/rescues/_trace.html.erb (1.6ms)

  Rendered /home/rubys/.rvm/gems/ruby-2.1.2/gems/web-console-2.0.0.beta4/lib/action_dispatch/templates/rescues/_request_and_response.html.erb (0.7ms)

  Rendered /home/rubys/.rvm/gems/ruby-2.1.2/gems/web-console-2.0.0.beta4/lib/action_dispatch/templates/rescues/_web_console.html.erb (0.5ms)

  Rendered /home/rubys/.rvm/gems/ruby-2.1.2/gems/web-console-2.0.0.beta4/lib/action_dispatch/templates/rescues/diagnostics.html.erb within rescues/layout (14.7ms)

Started GET "/carts/wibble" for 127.0.0.1 at 2014-11-18 17:15:11 -0500

Processing by CartsController#show as HTML

  Parameters: {"id"=>"wibble"}

  Cart Load (0.1ms)  SELECT  "carts".* FROM "carts" WHERE "carts"."id" = ? LIMIT 1  [["id", 0]]

Attempt to access invalid cart wibble

Redirected to http://localhost:3000/

Completed 302 Found in 4ms (ActiveRecord: 0.4ms)

Started GET "/" for 127.0.0.1 at 2014-11-18 17:15:11 -0500

Processing by StoreController#index as HTML

  Product Load (0.2ms)  SELECT  "products".* FROM "products"  ORDER BY "products"."updated_at" DESC LIMIT 1

  Product Load (0.1ms)  SELECT "products".* FROM "products"  ORDER BY "products"."title" ASC

  Rendered store/index.html.erb within layouts/application (6.3ms)

Completed 200 OK in 83ms (Views: 80.0ms | ActiveRecord: 0.4ms)

Limit access to product_id

edit app/controllers/line_items_controller.rb

    # Never trust parameters from the scary internet, only allow the white

    # list through.

    def line_item_params

      params.require(:line_item).permit(:product_id)

    end

rake test:controllers

Run options: --seed 33324

# Running:

......................

Finished in 0.272359s, 80.7759 runs/s, 161.5518 assertions/s.

22 runs, 44 assertions, 0 failures, 0 errors, 0 skips

Inspect the log.

grep -B 8 -A 7 "Unpermitted parameter" log/test.log

   (0.0ms)  begin transaction

-----------------------------------------------------

LineItemsControllerTest: test_should_update_line_item

-----------------------------------------------------

  LineItem Load (0.1ms)  SELECT  "line_items".* FROM "line_items" WHERE "line_items"."id" = ? LIMIT 1  [["id", 980190962]]

Processing by LineItemsController#update as HTML

  Parameters: {"line_item"=>{"cart_id"=>nil, "product_id"=>nil}, "id"=>"980190962"}

  LineItem Load (0.0ms)  SELECT  "line_items".* FROM "line_items" WHERE "line_items"."id" = ? LIMIT 1  [["id", 980190962]]

Unpermitted parameter: cart_id

   (0.0ms)  SAVEPOINT active_record_1

   (0.0ms)  RELEASE SAVEPOINT active_record_1

Redirected to http://test.host/line_items/980190962

Completed 302 Found in 2ms (ActiveRecord: 0.1ms)

   (0.0ms)  rollback transaction

   (0.0ms)  begin transaction

----------------------------------------------

edit test/controllers/line_items_controller_test.rb

  test "should update line_item" do

    patch :update, id: @line_item, line_item: { product_id: @line_item.product_id }

    assert_redirected_to line_item_path(assigns(:line_item))

  end

rake log:clear LOGS=test

rake test:controllers

Run options: --seed 51906

# Running:

......................

Finished in 0.294889s, 74.6043 runs/s, 149.2086 assertions/s.

22 runs, 44 assertions, 0 failures, 0 errors, 0 skips

grep "Unpermitted parameters" log/test.log | wc -l

0

10.3 Iteration E3: Finishing the Cart 10.1 Iteration E1: Creating a Smarter Cart