Discussing the API for request variables, part 2

[jaredbeck]

In #1016, Alex and I discussed a new API for request variables.

Current request variables

.. copied from #1016 for convenience:

key	versions table	api
:request_enabled_for_controller	no	public
:"enabled_for_#{model}"	no	public
:whodunnit	yes	public
:controller_info	yes	public
:transaction_id	yes	private

Some keys are data, to be saved in the versions table, others are configuration. Most are public, but :transaction_id is private. The only thing they have in common is that they affect the current request.

API Goals

1. Alex would like a convenient way to set a request variable temporarily, for which I propose PaperTrail.request(whodunnit: 'Alex') do .. end.
2. I have always wanted a better way to communicate which PT settings affect the current request vs. the whole thread, vs. all threads, and deprecating eg. PaperTrail.whodunnit in favor of PaperTrail.request.whodunnit communicates this unambiguously.

Let me know what you think, Alex. And @batter as always I'd appreciate your opinion too.

[jaredbeck]

@alexevanczuk and @batter please review, thanks!

[alexevanczuk]

Thanks @jaredbeck! I should be able to look at this this week.

[alexevanczuk]

Lots of questions and comments.

Also, could you add some more test coverage for the new code? Particularly around making sure that request works when calling with a block, and will properly reset values in different situations to prevent regressions. For example, a context where the original code raises an error, to test ensure is properly called, or that different attribute values work correctly (what if controller info is a nested hash, or passes in objects of different types).

Thanks for doing this, overall looks great and will allow a lot more flexibility using paper trail without sacrificing simplicity or code readability.

[alexevanczuk]

This is a private method, but it is called in PaperTrail#request. I am not sure how you think about private methods (is it just for gem clients, or for service classes within the gem)? In either case, I think that def request when called with options should pass the block to Request and the request itself knows how to set config for the duration of the block.

[jaredbeck]

This is a private method, but ..

It's not private, it's # @api private :) The former being a language feature and the latter being a somewhat conventional way of commenting on which methods are subject to change without warning.

In either case, I think that def request when called with options should pass the block to Request and the request itself knows how to set config for the duration of the block.

Sounds good, I'll try that.

[alexevanczuk]

Should this and other # @api private methods, such as transaction_id=, have a deprecation warning? Is your rationale that even if they're private, clients might be using them, and we want to deprecate them in the same way?

[jaredbeck]

Going forward, all transaction id methods should be @api private. I'll fix that in the depr. warnings and comments.

[alexevanczuk]

Why not use method as suggested in the deprecation warning?

e.g.

request(whodunnit: value)
  yield
end

[jaredbeck]

Good suggestion, thanks.

[alexevanczuk]

Why did you add these parameters? They aren't used in Request. The Request method signature is def controller_info. Wouldn't you get a ArgumentError: wrong number of arguments if you call this? If so, can you add test coverage for this?

[jaredbeck]

Seems like a mistake. I didn't mean to change the method signature. Good catch.

[alexevanczuk]

Is this intentional? Again I'm not sure how you like to do this maintenance-wise, but I think that maybe we should add a deprecation notice that this is no longer a public method.

[jaredbeck]

Yes, intentional. I'll be changing the deprecation warning to say "deprecated without replacement".

[alexevanczuk]

I think that store.store is a little confusing. Maybe something should have a different name here.

[alexevanczuk]

Do we want to limit what options are settable, and perhaps validate the options? If they set:

PaperTrail.request(some_nonexistant_option: true) do
 ...
end

What should happen?

What if they try to set a private attribute? Such as transaction_id?

[jaredbeck]

Do we want to limit what options are settable, and perhaps validate the options? If they set .. [some_nonexistant_option] .. What should happen?

Good point, we should raise an error.

What if they try to set a private attribute? Such as transaction_id?

We can raise an error for that too.

[alexevanczuk]

Shouldn't this be going in the other direction?

[jaredbeck]

@alexevanczuk and @batter ready for another review, thanks!

[airblade]

Looks great!

[alexevanczuk]

I had some comments mostly around testing. I re-compared the delegated methods in lib/paper_trail.rb, lib/paper_trail/model_config.rb, and lib/paper_trail/record_trail.rb to the new methods in lib/paper_trail/request.rb, and things look good. However, I'd still feel more comfortable if we added delegation tests for each of the methods moved in the original file, as well as functionality tests for each of the methods moved to lib/paper_trail/request.rb in the spec for the request module.

Not sure what your customs are around proving PRs, but we typically have one person sign off and another click approve, so I'll let @batter officially accept.

[alexevanczuk]

Maybe consider adding the other supported fields that can be set in the block in the readme?

[alexevanczuk]

Why is this method here? Shouldn't it be deprecated in favor of using PaperTrail.request.with(whodunnit: value) do ... end?

[jaredbeck]

Good catch. Yes, I will deprecate it.

[alexevanczuk]

Can you add tests for the validator here through the public with test? That is, test that whodunnit, enabled for work (maybe enabled for is a good new test case since it's a regex), transaction id, and an invalid option.

Also can you change the initial value to be non nil so we can test something more useful, e.g. instead of expect(described_class.whodunnit).to be_nil, we can have expect(described_class.whodunnit).to 'previous_whodunnit

[alexevanczuk]

I'd probably prefer to have some delegation/deprecation tests, e.g. to test deprecation issues such as changing the method signature to controller_info.

This could be done tersely with a shared example if you want to write less code:

shared_example 'it delegates to request' do |method, *args, &block|
  it do
    expect(PaperTrail::Request).to receive(:method).with(args, &block).and_return(:some_return_value)
    expect(described_class.send(:method, args, &block).to_return(:some_return_value)
 end
end

it_behaves_like 'it delegates to request', :controller_info, [], nil
it_behaves_like 'it delegates to request', :whodunnit, [:some_whodunnit] { 'some_block' }

[alexevanczuk]

Not sure if the above will work exactly as is, but that's the idea. Could be just as straightforward to do it more explicitly for each method, but I think it would be less error-prone this way.

[alexevanczuk]

If you have the time, I'd probably prefer to have the other @api public methods tested as well here, such as controller_info, controller_info=, enabled_for_controller?, enabled_for_controller=, and whodunnit=.

[alexevanczuk]

Can you add a context when not set to a proc?

[batter]

I like the simplicity of this

[batter]

Does this comment actually do anything or it's merely a note to help developers remember which methods are public / private?

[jaredbeck]

It specifies whether something is part of our public API, ie. whether we would consider changing it to be a breaking change. Notably, not all public methods are public API, if that makes sense.

[batter]

Should this be if defined?(::Rails) to be consistent with the RSpec helper? I don't think there is a Rails module in this library yet but there could be one day

[jaredbeck]

Sure, I'm always happy to use absolute constant paths, it's one less thing to worry about.

[batter]

My first impression is that I like it and it seems like an eloquent solution that makes the gem nicely flexible to configure in a thread-safe manner or across all threads depending on what the user desires for various conditions. I'd like to spend some more time unpacking all the changes, will try to check back to do a deeper review later this week.

[jaredbeck]

Thanks everyone for the reviews!

Alex, I'd really appreciate your help writing some more tests. Would you like to? You can make a PR into this one, eg. "Alex wants to merge .. commits into request_variables from alex_branch" Thanks!

[alexevanczuk]

@jaredbeck

Added specs: #1052

[jaredbeck]

I'd like to spend some more time unpacking all the changes, will try to check back to do a deeper review later this week.

Ben, I think I'm ready to merge this. Do you still want to do another review?

Andy, can you un-protect this branch? I want to do a rebase and tidy up my commits, but force-pushing is disabled. I'd prefer if only master and the stable branches (eg. 8-stable, 7-stable) were protected. Thanks.

[jaredbeck]

Closing via #1056 which uses a non-protected branch, allowing me to rebase and squash prior to final merge to master.

[batter]

LGTM, I'm sure there will be time to tweak functionality if needed before a release. Nice work by @alexevanczuk and @jaredbeck!

[jaredbeck]

LGTM, I'm sure there will be time to tweak functionality if needed before a release. Nice work by @alexevanczuk and @jaredbeck!

Thanks Ben! Yeah, I'm planning on releasing 9.0.0 in a few weeks, as soon as ruby 2.2 EoL is announced (https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/)