ruby on rails - best way to validate ownership with HMABTM -


i have 3 models this:

class user < activerecord::base   has_many :items   has_many :other_itmes end  class item < activerecord::base   belongs_to :user   has_and_belongs_to_many :other_items    validate :validate_other_item_ownership   def validate_other_item_ownership     if       (user_ids = otheritem.where(id: other_item_ids).pluck(:user_id).uniq).present? &&         (user_ids.size > 1 || user_ids.first != user_id)           errors.add(:other_item_ids, 'other items must belong same user item')     end   end end  class otheritem < activerecord::base   belongs_to :user   has_and_belongs_to_many :items    validate :validate_item_ownership   def validate_item_ownership     if       (user_ids = item.where(id: item_ids).pluck(:user_id).uniq).present? &&         (user_ids.size > 1 || user_ids.first != user_id)           errors.add(:item_ids, 'items must belong same user other item')     end   end end

and 2 controllers this:

class itemscontroller < applicationcontroller   def update     @item = item.find params[:id]     @item.other_item_ids = params[:item][:other_item_ids] #assignline     @item.save!   end end  class otheritemscontroller < applicationcontroller   def update     @other_item = otheritem.find params[:id]     @other_item.item_ids = params[:other_item][:item_ids] #assignline     @other_item.save!   end end

the problem activerecord saves items on #assignline, while call #save! correctly raises activerecord::recordinvalid association still persisted.

i want user able link items each other owned.

excellent question! i've got answer ;)

(tldr) ditch has_and_belongs_to_many, create model on top of join table, put validation logic in join model, , use has_many :through.

to demonstrate, let's consider relationship between artist , song, both belonging user. join model , has_many :through we'll have these model classes:

class artist   belongs_to :user   has_many :artist_songs   has_many :songs, through: :artist_songs end  class song   belongs_to :user   has_many :artist_songs   has_many :artists, through: :artist_songs end  class artistsong   belongs_to :artist   belongs_to :song end

this clean validation logic, add in 1 place:

class artistsong   #...   validate :ownership private   def ownership     unless artist.user_id == song.user_id       errors[:base] << 'artist , song must belong same user'     end   end end

then in controller:

class artistscontroller   def update     @artist = current_user.artists.find params[:id]     @artist.update artist_params   end private   def artist_params     params.require(:artist).permit(:name, song_ids: [])   end end

note: looks rails doing save! on join model. means if validation fails (just on artistsong, not artist) raise exception instead of return false. should ever happen malicious users, no worries.

i use habtm. having model join table gives more flexibility. example, add position field , like:

class artist   #...   has_many :artist_songs, order: -> {'position asc'}   #... end

Comments

Post a Comment

Popular posts from this blog

php - Calling a template part from a post -

i include iframe within post in wordpress. located inside content of post, meaning cannot in post template file, otherwise either before or after. i'd add facebook plugin within posts: <div id="socialwrap"><div class="fb-like" data-href="http://onlinearizonahomes.info" data-send="true" data-width="450" data-show-faces="true" data-font="arial"></div></div> i thinking of calling template part within post <?php get_template_part( 'social' ); ?> cannot use php within post without plugin (i'd avoid using plugin this). an alternative using javascript create html in post, seems unnecessary use of javascript. what best way add html within wordpress post? you can use shortcode. add functions.php function cudjex_fbshare( $atts, $content = null ) { global $post; $link = get_permalink($post->id); return '<div id="socialwrap...
Read more

Firefox SVG shape not printing when it has stroke -

Image
i having issue svg shapes have stroke , trying them print in firefox. this simplest example: <svg xmlns="http://www.w3.org/2000/svg" version="1.1" xmlns:xlink="http://www.w3.org/1999/xlink"> <rect x="0" y="0" rx="15" ry="15" width="300" height="400" style="stroke:black;stroke-width:5;" fill="black" /> <circle id="firstcircle" cx="50" cy="50" r="30" stroke="black" stroke-width="2" fill="white" style="opacity:0.75;"/> <circle id="secondcircle" cx="50" cy="150" r="30" fill="white" style="opacity:0.75;"/> </svg> when try , print first shape 1 of 2 things: it not show @ all it shows off center in bounding box. the second shape no stroke shows expected, expected. when displaying on scre...
Read more

How to mention the localhost in android -

i trying call localhost in android application. unfortunately not possible used several methods emulator local host http://10.0.2.2/android/dbconnection.php and network ip address http://192.168.1.xx/android/dbconnection.php also http://localhost:8080/android/dbconnection.php but nothing connected localhost. purpose refer stackoverflow answers not working i facing same problem when worked on localhost. referred stackoverflow answer got solution create new emulator works fine in new emulator.
Read more