Agile Web Development with Rails, Edition 5

10.2 Iteration E2: Handling Errors

Log errors and show them on the screen.

Rescue error: log, flash, and redirect.

edit app/controllers/carts_controller.rb
class CartsController < ApplicationController
  before_action :set_cart, only: [:show, :edit, :update, :destroy]
  rescue_from ActiveRecord::RecordNotFound, with: :invalid_cart
  # GET /carts
  # ...
  # ...
    def invalid_cart
      logger.error "Attempt to access invalid cart #{params[:id]}"
      redirect_to store_index_url, notice: 'Invalid cart'

Reproduce the error.

get /carts/wibble
You are being redirected.
get http://localhost:3000/

Invalid cart

Your Pragmatic Catalog


Inspect the log.

tail -25 log/development.log
  Cart Load (0.1ms)  SELECT  "carts".* FROM "carts" WHERE "carts"."id" = ? LIMIT ?  [["id", 0], ["LIMIT", 1]]
Completed 404 Not Found in 1ms (ActiveRecord: 0.1ms)
ActiveRecord::RecordNotFound (Couldn't find Cart with 'id'=wibble):
app/controllers/carts_controller.rb:67:in `set_cart'
Started GET "/carts/wibble" for at 2017-06-14 08:02:51 -0400
Processing by CartsController#show as HTML
  Parameters: {"id"=>"wibble"}
  Cart Load (0.1ms)  SELECT  "carts".* FROM "carts" WHERE "carts"."id" = ? LIMIT ?  [["id", 0], ["LIMIT", 1]]
Attempt to access invalid cart wibble
Redirected to http://localhost:3000/
Completed 302 Found in 5ms (ActiveRecord: 0.7ms)
Started GET "/" for at 2017-06-14 08:02:51 -0400
Processing by StoreController#index as HTML
  Rendering store/index.html.erb within layouts/application
  Product Load (0.2ms)  SELECT "products".* FROM "products" ORDER BY "products"."title" ASC
  Rendered store/index.html.erb within layouts/application (9.7ms)
Completed 200 OK in 37ms (Views: 34.1ms | ActiveRecord: 0.5ms)

Limit access to product_id

edit app/controllers/line_items_controller.rb
    # Never trust parameters from the scary internet, only allow the white
    # list through.
    def line_item_params
rails test:controllers
Run options: --seed 57551
# Running:
Finished in 0.459476s, 50.0570 runs/s, 76.1738 assertions/s.
23 runs, 35 assertions, 0 failures, 0 errors, 0 skips

Inspect the log.

grep -B 8 -A 7 "Unpermitted parameter" log/test.log
LineItemsControllerTest: test_should_update_line_item
  LineItem Load (0.1ms)  SELECT  "line_items".* FROM "line_items" WHERE "line_items"."id" = ? LIMIT ?  [["id", 980190962], ["LIMIT", 1]]
Started PATCH "/line_items/980190962" for at 2017-06-14 08:02:53 -0400
Processing by LineItemsController#update as HTML
  Parameters: {"line_item"=>{"cart_id"=>"980190962", "product_id"=>"298486374"}, "id"=>"980190962"}
  LineItem Load (0.1ms)  SELECT  "line_items".* FROM "line_items" WHERE "line_items"."id" = ? LIMIT ?  [["id", 980190962], ["LIMIT", 1]]
Unpermitted parameter: :cart_id
   (0.1ms)  SAVEPOINT active_record_1
  Product Load (0.0ms)  SELECT  "products".* FROM "products" WHERE "products"."id" = ? LIMIT ?  [["id", 298486374], ["LIMIT", 1]]
  Cart Load (0.0ms)  SELECT  "carts".* FROM "carts" WHERE "carts"."id" = ? LIMIT ?  [["id", 980190962], ["LIMIT", 1]]
   (0.0ms)  RELEASE SAVEPOINT active_record_1
Redirected to
Completed 302 Found in 3ms (ActiveRecord: 0.2ms)
   (0.0ms)  rollback transaction
edit test/controllers/line_items_controller_test.rb
  test "should update line_item" do
    patch line_item_url(@line_item),
      params: { line_item: { product_id: @line_item.product_id } }
    assert_redirected_to line_item_url(@line_item)
rake log:clear LOGS=test
rails test:controllers
Run options: --seed 22213
# Running:
Finished in 0.446122s, 51.5554 runs/s, 78.4539 assertions/s.
23 runs, 35 assertions, 0 failures, 0 errors, 0 skips
grep "Unpermitted parameters" log/test.log | wc -l

