Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Don't allow admins to edit roster membership for other rosters #313

Merged
merged 15 commits into from
Sep 19, 2023
Merged

Don't allow admins to edit roster membership for other rosters #313

merged 15 commits into from
Sep 19, 2023

Conversation

dirschn
Copy link
Contributor

@dirschn dirschn commented Sep 15, 2023
edited
Loading

closes #293
closes #292

I was going to clean up the create and edit actions both, but doing so would require some significant refactoring. I am still open to cleaning up both, but I wanted to make sure other people agreed it was necessary/ perhaps it could be a follow up so we can close this issue sooner.

dirschn
dirschn commented Sep 15, 2023
View reviewed changes
app/controllers/users_controller.rb Outdated
@@ -8,7 +8,7 @@ class UsersController < ApplicationController
WHITELISTED_ATTRIBUTES = [:first_name, :last_name, :spire, :email,
:phone, :active, :reminders_enabled,
:change_notifications_enabled,
{ rosters: [], membership: [:admin] }].freeze
{ roster_ids: [], membership: [:admin] }].freeze
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I did this because it was annoying me and I kept getting confused about whether I had rosters or ids. Turns out, most of that confusion stemmed from parse_roster_ids, but I think this change is warranted either way.

werebus
werebus requested changes Sep 15, 2023
View reviewed changes
app/views/users/_form.html.haml Outdated Show resolved Hide resolved
app/controllers/users_controller.rb Outdated Show resolved Hide resolved
app/controllers/users_controller.rb Show resolved Hide resolved
app/controllers/users_controller.rb Outdated Show resolved Hide resolved
app/controllers/users_controller.rb Show resolved Hide resolved
app/views/users/_form.html.haml Outdated Show resolved Hide resolved
app/controllers/users_controller.rb Outdated Show resolved Hide resolved
@werebus
Copy link
Member

werebus commented Sep 15, 2023

Also, Travis failures seem legit.

@dirschn
Copy link
Contributor Author

dirschn commented Sep 19, 2023

Also, Travis failures seem legit.

The specs are being weird, I'll see what I can do but might end up translating to request specs.

dirschn
dirschn commented Sep 19, 2023
View reviewed changes
spec/controllers/users_controller_spec.rb Outdated Show resolved Hide resolved
spec/factories/users.rb
@@ -7,6 +7,6 @@
sequence(:spire) { |n| format('%[email protected]', n) }
sequence(:email) { |n| "user#{n}@umass.edu" }
sequence(:phone) { |n| format('+1413545%04d', n) }
rosters { [create(:roster)] }
roster_ids { [create(:roster).id] }
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

using roster_ids now, not rosters

@dirschn @werebus
not that fancy
87e7f7c 
Co-authored-by: Matt Moretti <[email protected]>
@werebus
Copy link
Member

werebus commented Sep 19, 2023

Man, my bad. That should have been a << not a +=.

@dirschn
Copy link
Contributor Author

dirschn commented Sep 19, 2023

Man, my bad. That should have been a << not a +=.

I suppose that's what I get for blindly trusting

@dirschn dirschn merged commit b47618a into main Sep 19, 2023
5 of 7 checks passed
@dirschn dirschn deleted the dirschn/roster-admin-user-edit branch September 19, 2023 17:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@werebus werebus werebus approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@dirschn @werebus