1

我对 Ruby on Rails 相当陌生,并且正在阅读 Michael Hartl 的 Rails 教程。我在第 10 章遇到了一个似乎无法修复的错误(特别是 10.1.3“用户/微帖子关联”)。我遇到的错误是当我执行以下 rspec 命令时:

$ bundle exec rspec 规范/模型

它引发以下错误:

Failures:

  1) Micropost accessible attributes should not allow access to user_id
     ←[31mFailure/Error:←[0m ←[31mexpect do←[0m
       ←[31mexpected ActiveModel::MassAssignmentSecurity::Error but nothing was
raised←[0m
←[36m     # ./spec/models/micropost_spec.rb:28:in `block (3 levels) in <top (req
uired)>'←[0m

Finished in 5.79 seconds
←[31m27 examples, 1 failure←[0m

Failed examples:

←[31mrspec ./spec/models/micropost_spec.rb:27←[0m ←[36m# Micropost accessible at
tributes should not allow access to user_id←[0m

这是 micropost_spec.rb 的代码:

require 'spec_helper'

describe Micropost do

let(:user) { FactoryGirl.create(:user) }
before { @micropost = user.microposts.build(content: "Lorem ipsum") }

subject { @micropost }

  it { should respond_to(:content) }
  it { should respond_to(:user_id) }
  it { should respond_to(:user) }
  its(:user) { should == user }

  it { should be_valid }




  describe "when user_id is not present" do
    before { @micropost.user_id = nil }
    it { should_not be_valid }
  end


  describe "accessible attributes" do
    it "should not allow access to user_id" do
      expect do
       Micropost.new(user_id: user.id)
      end.to raise_error(ActiveModel::MassAssignmentSecurity::Error)
    end
  end
end

应用程序.rb:

require File.expand_path('../boot', __FILE__)

# Pick the frameworks you want:
require "active_record/railtie"
require "action_controller/railtie"
require "action_mailer/railtie"
require "active_resource/railtie"
require "sprockets/railtie"
# require "rails/test_unit/railtie"

  if defined?(Bundler)
 # If you precompile assets before deploying to production, use this line
 Bundler.require(*Rails.groups(:assets => %w(development test)))
 # If you want your assets lazily compiled in production, use this line
 # Bundler.require(:default, :assets, Rails.env)
end

module SampleApp
  class Application < Rails::Application
   # Settings in config/environments/* take precedence over those specified here.
   # Application configuration should go into files in config/initializers
   # -- all .rb files in that directory are automatically loaded.
config.active_record.whitelist_attributes = true
   # Custom directories with classes and modules you want to be autoloadable.
   # config.autoload_paths += %W(#{config.root}/extras)

    # Only load the plugins named here, in the order given (default is alphabetical).
# :all can be used as a placeholder for all plugins not explicitly named.
# config.plugins = [ :exception_notification, :ssl_requirement, :all ]

# Activate observers that should always be running.
# config.active_record.observers = :cacher, :garbage_collector, :forum_observer

# Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
# Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
# config.time_zone = 'Central Time (US & Canada)'

# The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
# config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
# config.i18n.default_locale = :de
# Configure the default encoding used in templates for Ruby 1.9.
config.encoding = "utf-8"

# Configure sensitive parameters which will be filtered from the log file.
config.filter_parameters += [:password]

# Enable the asset pipeline
config.assets.enabled = true

# Version of your assets, change this if you want to expire all your assets
config.assets.version = '1.0'
 end
 end

微博.rb...

class Micropost < ActiveRecord::Base
  attr_accessible :content
  belongs_to :user

  validates :user_id, presence: true
end

在此先感谢您的帮助!

泰国

4

3 回答 3

0

尝试添加

config.active_record.mass_assignment_sanitizer = :strict

对于您的 application.rb 文件,我发现如果不严格,它只会抛出警告而不是异常。

于 2013-11-22T21:04:51.603 回答
0

像您一样,我尝试了上述所有解决方案,但都没有运气。我还注意到,Hartl 为 Rails 4 编写的最新版本的书不包含这些测试,所以我怀疑这种测试可访问性的方法在以后的版本中不起作用。也许专家(没有通过 Rails 教程运行的人)可以插话。

但是....我在另一个 StackOverflow 线程中注意到这个响应,推荐使用“should-matchers”Gem 来测试它,这为我解决了这个问题(https://stackoverflow.com/a/11876425/3899955)。在研究该 Gem 时,我发现它是一种为许多常见的 ActiveModel、ActiveRecord 和 ActionController 测试生成可读测试的好方法。我很高兴将它添加到我的箭袋中,也许你也会。

我不相信这个答案,只是想发布这个,以便如果其他人在第 10.5 章或完成第 9 章中的练习 6 时遇到这种挫败感。

于 2014-08-01T18:42:40.080 回答
0

So expected ActiveModel::MassAssignmentSecurity::Error but nothing was raised when Micropost.new(user_id: user.id) is called.

For it to work correctly:

  1. The Rails application should be configured to explicitly whitelist or blacklist accessible parameters; in rails versions before 3.2.3 this was on by default; in previous versions, it has to be done by the following line in config/application.rb as detailed in Listing 10.6 of RailsTutorial book:

    config.active_record.whitelist_attributes = true

  2. There shouldn't be a attr_accessible :user_id in the micropost.rb model file.

于 2012-12-24T05:34:35.460 回答