Add new tests for models

[kaustubh-nair]

Part of #594

Make sure these boxes are checked before your pull request (PR) is ready to be reviewed and merged. Thanks!

• PR is descriptively titled 📑 and links the original issue above 🔗
• tests pass -- look for a green checkbox ✔️ a few minutes after opening your PR -- or run tests locally with rake test
• code is in uniquely-named feature branch and has no merge conflicts 📁
• screenshots/GIFs are attached 📎 in case of UI updation
• ask @publiclab/reviewers for help, in a comment below

We're happy to help you get this ready -- don't be afraid to ask for help, and don't be discouraged if your tests fail at first!

If tests do fail, click on the red X to learn why by reading the logs.

Please be sure you've reviewed our contribution guidelines at https://publiclab.org/contributing-to-public-lab-software

Thanks!

[codeclimate]

Code Climate has analyzed commit e0c305b and detected 6 issues on this pull request.

Here's the issue category breakdown:

Category	Count
Style	5
Complexity	1

View more on Code Climate.

[kaustubh-nair]

I've removed this method since it is not being used anywhere else.
Here is the relevent commit aadd8b5
I couldn't find public_filenames being called in the current code.

[kaustubh-nair]

This is supposed to Hash the password but before_create is never called????
Map passwords are stored in plain text???
Is this okay???

[SidharthBansal]

Password needs to be encrypted with one way hash functions. This should be problem as per theory

[kaustubh-nair]

@jywarren Map passwords are not being hashed. They're stored in plain text.
Security concern?

[jywarren]

This is quite an old feature, but the problem is that we may have existing maps that use it. Can we confirm that there is no way to /make/ a new passworded map?

[kaustubh-nair]

This method is redundant too.
What is the Way model supposed to do anyway?
It is not being used anywhere

[jywarren]

I think it may be used in annotations, but am not sure! Can you look at the annotations interface which may be a bit broken?

[jywarren]

But we could address this in another issue later. You could also look at the commits around that time using the history or blame view - see? Yes, this is VERY old! And, i think, can go!

https://github.com/publiclab/mapknitter/blame/e0c305b89a53828006f20de422da2bbffb53a21b/app/models/way.rb

[codecov]

Codecov Report

Merging #610 into main will increase coverage by 0.25%.
The diff coverage is 100%.

@@            Coverage Diff            @@
##            main     #610      +/-   ##
=========================================
+ Coverage   41.1%   41.36%   +0.25%     
=========================================
  Files         34       34              
  Lines       1321     1308      -13     
=========================================
- Hits         543      541       -2     
+ Misses       778      767      -11

Impacted Files	Coverage Δ
app/models/user.rb	75% <ø> (+6.25%)	⬆️
app/models/map.rb	39% <100%> (+1.67%)	⬆️

[kaustubh-nair]

@jywarren @sashadev-sky @SidharthBansal @cesswairimu @alaxalves
I've removed some redundant code which was not being used anywhere.
Please check them out.
Coverage for models is at 95% now 🎈 🎈

[SidharthBansal]

Password needs to be encrypted with one way hash functions. This should be problem as per theory

[cesswairimu]

Awesome!

[jywarren]

Yes, I think so. But gosh this is old. Do we even allow people to make passworded maps anymore?

…

On Tue, May 21, 2019 at 3:05 AM Kaustubh Nair ***@***.***> wrote: ***@***.**** commented on this pull request. ------------------------------ In app/models/map.rb <#610 (comment)>: > def validate self.name != 'untitled' self.lat >= -90 && self.lat <= 90 && self.lon >= -180 && self.lat <= 180 end - # Hash the password before saving the record + #Hash the password before saving the record def before_create self.password = Password::update(self.password) if self.password != "" end @jywarren <https://github.com/jywarren> Map passwords are not being hashed. They're stored in plain text. Security concern? — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#610?email_source=notifications&email_token=AAAF6J2Q2U5NY3JAZQS3JPTPWONKPA5CNFSM4HNF6WY2YY3PNVWWK3TUL52HS4DFWFIHK3DMKJSXC5LFON2FEZLWNFSXPKTDN5WW2ZLOORPWSZGOBZF64KI#discussion_r285876974>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AAAF6JYGAL4MJDHLDVFK4RLPWONKPANCNFSM4HNF6WYQ> .

[kaustubh-nair]

Yes, I think so. But gosh this is old. Do we even allow people to make passworded maps anymore?

Oh yeah, I did not notice that.
Let's not change any password code here and create a new issue to discuss this. ( #641)

[kaustubh-nair]

Also, @publiclab/mapknitter-reviewers @jywarren this is ready for merge!

[alaxalves]

Same as https://github.com/publiclab/mapknitter/pull/615/files#r289414686

[alaxalves]

Same as https://github.com/publiclab/mapknitter/pull/615/files#r289417232

[jywarren]

Should I wait for these last couple things before merging? Thanks!!!!

[alaxalves]

BTW @kaustubh-nair I could work on this one and you could work on #615. What do you think? There are only small patches left for both. Let's get those merged today 💪 💪 💪 💪

[kaustubh-nair]

BTW @kaustubh-nair I could work on this one and you could work on #615. What do you think? There are only small patched left for both. Let's get those merged today muscle muscle muscle muscle

@alaxalves Awesome go ahead
Thanks!

[alaxalves]

BTW @kaustubh-nair I could work on this one and you could work on #615. What do you think? There are only small patched left for both. Let's get those merged today muscle muscle muscle muscle

@alaxalves Awesome go ahead
Thanks!

Done! @jywarren This is ready to merge

[jywarren]

Hi! I believe this just needs a rebase - thank you!!!!

[jywarren]

Perfect, thank you!!!!