Remove ja_resource and canary reliance from UserController #882
Conversation
lib/code_corps/policy/policy.ex
Outdated
| def can?(%User{}, _action, nil), do: true | ||
|
|
||
| def can?(%User{} = current_user, :update, %User{} = user), do: Policy.User.update?(user, current_user) |
There was a problem hiding this comment.
NOTE: had to leave these in here b/c other tests not in the user_controller_test were depending on this
There was a problem hiding this comment.
I understand why line 44 needs to stay, but are you sure about 45? Which tests fail if you remove it? Assuming you add the "fixes" i described below.
| defp login(conn, _opts) do | ||
| Plug.Conn.register_before_send(conn, &do_login(&1)) | ||
| end | ||
| # defp login(conn, _opts) do |
There was a problem hiding this comment.
I'm not sure, but I would expect the plug to cause things to fail either way. It was added mainly to get around some ja_resource quirks.
What I would do is remove plug :login when action in [:create], as well as defp login and defp do_login completely.
Then, in create/2, I would add a |> Guardian.Plug.sign_in(user) between conn and |> put_status(:created), or really, anywhere in that chain.
That would be the most explicit and easiest to read approach for dealing with it anyway.
There was a problem hiding this comment.
@begedin is this b/c the user is signed in automatically after creating a user?
snewcomer
force-pushed
the
user-controller-no-jaresource
branch
from
8ab2ada
to
2db3676
Compare
snewcomer
force-pushed
the
user-controller-no-jaresource
branch
from
7187697
to
1b56985
Compare
| def create(%Conn{} = conn, %{} = params) do | ||
| with {:ok, %User{} = user} <- %User{} |> User.registration_changeset(params) |> Repo.insert | ||
| do | ||
| conn |> Plug.Conn.fetch_session |> Guardian.Plug.sign_in(user) |> put_status(:created) |> render("show.json-api", data: user) |
There was a problem hiding this comment.
@begedin so this worked.
There was a problem hiding this comment.
Although a bit lost on why this is needed as compared to before these changes.
There was a problem hiding this comment.
The login function was a plug. It automatically ran before performing the create action and told the conn that, after performing create, it needs to run the do_login function.
The do_login function then signed the user into the conn if the create action was successful.
Basically, from a user's perspective, "i want to be signed in when I register".
We had to do it via a plug, due to some quirks with canary.
Now that canary is gone, we can do the more direct route, so we just do it as part of the action itself.
There was a problem hiding this comment.
If you mean the fetch_session part, that should not be needed. What happens if you remove it?
There was a problem hiding this comment.
@snewcomer Strange, but it makes sense.
I think you actually found a bug in the old login function. We were just calling Conn.assign instead of actually formally signing the user in.
Additionally, it looks like our client is not expecting to sign the user in automatically upon registration and instead does it manually.
Considering these two, I think the simplest thing we can do is outright remove both fetch_session and sign_in.
Simply put, the code should read conn |> put_status(:created) |> render("show.json-api", data: user)and we can leave it that that.
Sorry to make go through all of this, but hey, we discovered a bug and a piece of code that does nothing along the way!
| def create(%Conn{} = conn, %{} = params) do | ||
| with {:ok, %User{} = user} <- %User{} |> User.registration_changeset(params) |> Repo.insert | ||
| do | ||
| conn |> Plug.Conn.fetch_session |> Guardian.Plug.sign_in(user) |> put_status(:created) |> render("show.json-api", data: user) |
There was a problem hiding this comment.
@snewcomer Strange, but it makes sense.
I think you actually found a bug in the old login function. We were just calling Conn.assign instead of actually formally signing the user in.
Additionally, it looks like our client is not expecting to sign the user in automatically upon registration and instead does it manually.
Considering these two, I think the simplest thing we can do is outright remove both fetch_session and sign_in.
Simply put, the code should read conn |> put_status(:created) |> render("show.json-api", data: user)and we can leave it that that.
Sorry to make go through all of this, but hey, we discovered a bug and a piece of code that does nothing along the way!
snewcomer
changed the title
lib/code_corps/policy/policy.ex
Outdated
| @@ -30,6 +30,8 @@ defmodule CodeCorps.Policy do | |||
| defp can?(%User{} = user, :update, %Comment{} = comment, %{}), do: Policy.Comment.update?(user, comment) | |||
| defp can?(%User{} = user, :create, %Organization{}, %{}), do: Policy.Organization.create?(user) | |||
| defp can?(%User{} = user, :update, %Organization{} = organization, %{}), do: Policy.Organization.update?(user, organization) | |||
| defp can?(%User{} = current_user, :update, %User{} = user, %{}), do: Policy.User.update?(user, current_user) | |||
| defp can?(%User{}, _action, %User{} = _user, %{}), do: true | |||
There was a problem hiding this comment.
Remind me again, why is this one needed? It seems unsafe, as it would technically allow any user to perform any action on any other user.
If you meant to copy-paste the one from line 46 below, then the third argument would be nil, but that means you'd also have to update the spec to allow nil, not just User.t as the third argument.
However, I don't think the catch all from below is strictly necessary when not using canary, so could you double check?
There was a problem hiding this comment.
Yep my bad. Good call!
begedin
changed the title
|
Hey @snewcomer. I merged! Excellent work. |
|
🙌 I love seeing things like this happening when I'm not even looking. Great work @snewcomer! |
…s#882) * Removed ja_resource and canary reliance from UserController * Fixed bug
What's in this PR?
[WIP]
Remove ja_resource from User Controller
References
Fixes #882
Progress on: #864