Welcome to Giant Robots Smashing Into Other Giant Robots — a weblog about development, business, design and technology — written by thoughtbot.

forget about the view

Recently I was looking at some of ActiveRecord’s class level validation methods and realizing I don’t really use a lot of them. Until I took a look at #validates_inclusion_of.

Say we got

class Event < ActiveRecord::Base

  TYPES = %w(daily weekly monthly)

end

schema

  events (id, title, event_type)

view

app/views/events/new.rhtml

  <%= form.select :event_type, Event::TYPES, :include_blank => true %>

So when POST’ing from the form on app/views/events/new.rhtml there’s no chance I’ll get an event type other than the 3 (or blank) I show in the drop down list.

What if someone did a POST via curl and did

  event[title]=title&event[event_type]=asdf

‘asdf’ is not one of my Event::TYPES but my Event record is still going to save. I know this is probably far fetched but we should be building our models without any notion of the UI, be it browser or not. So we need validations for everything.

Here’s what we should be doing

class Event < ActiveRecord::Base

  TYPES = %w(daily weekly monthly)

  validates_inclusion_of :event_type,
    :in => TYPES

end

About this entry

You're reading an entry on GIANT ROBOTS SMASHING INTO OTHER GIANT ROBOTS, the company weblog of thoughtbot, inc.

Author:: Jared Carroll

Published:: September 24th 08:37 AM

Updated:: September 30th 09:57 AM

Sections:: Development

thoughtbot is hiring

We are hiring web developers and web designers in both Boston and New York, NY.

What are we up to?

We built Shoulda, an eclectic set of additions to Test::Unit; Paperclip to manage uploaded files without hassle; Jester, a REST/ActiveResource client library written in Javascript, and Squirrel, an enhancement for ActiveRecord's find syntax; — amongst some other projects.

Chad (President) and Jon (CTO) co-authored a technical book titled Pro Active Record: Databases with Ruby and Rails, which explores the ins and outs of the ActiveRecord ruby library. You can buy it today at Amazon.com.

About thoughtbot, inc.

We are a small web application development consulting business, with offices in Boston, MA and New York, NY. If you're looking to find a team for your next web development project or your new web application — get in touch.

MONSTER_METAL = [0, 1, 2] # turn up the radio!!! in a helper def display_for(monster_metal) metal_mania = { 0 => 'Autograph', 1 => 'White Lion', 2 => 'Bullet Boys' }[monster_metal] end

RED = 'red'GREEN = 'green'BLUE = 'blue'def self.colors_to_values {'fire' => RED, 'grass' => GREEN, 'aqua' => BLUE }endvalidates_inclusion_of :color, :in => self.colors_to_values.valuesdef self.colors colors_to_values.keysend

class Drummer < ActiveRecord::Base HAIR_BANDS = { "guns_n_roses" => "Guns N' Roses", "motley_crue" => "Mötley Crüe", "white_snake" => "Whitesnake", "morrisey" => "Morrisey" } validates_inclusion_of :influence, :in => self.HAIR_BANDS.keys def humanized_influence HAIR_BANDS[influence] endend

Joe Grossberg 09.24.07 / 12PM

Which technique do you guys use to enumerate constants where there is a variable name and a “pretty” name?

For example:
HAIR_METAL_BANDS: %w(guns_n_roses, poison, def_leppard)
But you want them to display as: Guns N' Roses in the view?

I.e., how would you get that proper capitalization, spaces instead of an underscore and an apostrophe, while best honoring “DRY”.

Dan Croak 09.24.07 / 01PM

Joe,

I would just use the basic Ruby array literal:

 HAIR_METAL_BANDS = [ "Guns N' Roses", "Mötley Crüe", "Whitesnake", "David Bowie", "Aerosmith", "Bon Jovi", "AC/DC", "Queen" ]

Tammer Saleh 09.24.07 / 01PM

Dan’s post is usually how we handle that situation here. The main issue with it is that changing the user-visible names would require a migration. We haven’t run into that much, but it’s definitely a valid concern.

jare care 09.24.07 / 01PM

Don’t use %w here.

123	HAIR_METAL_BANDS = ["Guns N' Roses", 'Poison', 'Def Leppard']

This still kind of sucks because if someone wants to update that display, you’ll have to update your constant and the value in the db for any existing rows.

You can avoid that using something like:

Thats ok but you still got 0,1,2 in 2 places.

sandofsky 09.24.07 / 03PM

Here’s a simplified version of the pattern I’m happy with, based on a post from the 37signals blog.

I like keeping the final values as constants so it’s even easier to change later, when I decide RED is really #FF0000.

EmmanuelOga 09.24.07 / 03PM

I posted a solution for this very problem here:

http://pastie.caboo.se/82509

And also an explanation (warning! is in spanish :) here:

http://emmanueloga.blogspot.com/2007/06/constantes-enums-y-demas-yerbas-en.html

Greetings!

Tammer Saleh 09.25.07 / 12PM

What about this:

Dan Croak 09.25.07 / 05PM

Jared, Tammer, sandofsky, and Emmanuel,

I don’t understand what existing problem you’re solving in your comments.

As developers, we acknowledge the inherent trade-off in choosing a constant (“TYPES” in Jared’s original example) rather than an entire model (“EventTypes”):

If the types change after the system is live, it will require a series of decisions about how we handle existing data, the constant, and our UI.

That is a hypothetical scenario, however, because we choose to use a constant only if it is unlikely that the types will change. If we DO expect the types to change, we want to choose another model, acknowledging that the extra database/ActiveRecord costs are worth it given the business requirements.
Today / Now

GIANT ROBOTS SMASHING INTO OTHER GIANT ROBOTS

forget about the view

About this entry

thoughtbot is hiring

What are we up to?

About thoughtbot, inc.

8 comments

Recently

Categories

The thoughtbotsphere