Discourse/discourse
Discourse/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-09-09 12:21:04 +08:00
Code Packages Activity Actions 1

DEV: Apply Rails 6.1 defaults

Browse source 
We never applied `config.load_defaults` since its inception (Rails 5.0)
and doing so is necessary to properly upgrade to all the Rails 7 new
defaults.
This commit is contained in:
Loïc Guitaut 2022-05-19 16:58:31 +02:00 committed by Loïc Guitaut
parent d303466c30
commit 0403a8633b
4 changed files with 20 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

6
config/application.rb
View file

@ -97,6 +97,12 @@ module Discourse
# tiny file needed by site settings # tiny file needed by site settings
require 'highlight_js' require 'highlight_js'
config.load_defaults 6.1
config.active_record.cache_versioning = false # our custom cache class doesnt support this
config.action_controller.forgery_protection_origin_check = false
config.active_record.belongs_to_required_by_default = false
config.active_record.legacy_connection_handling = true
# we skip it cause we configure it in the initializer # we skip it cause we configure it in the initializer
# the railtie for message_bus would insert it in the # the railtie for message_bus would insert it in the
# wrong position # wrong position

2
spec/integration/multisite_cookies_spec.rb
View file

@ -4,7 +4,7 @@ describe 'multisite', type: [:multisite, :request] do
it "works" do it "works" do
get "http://test.localhost/session/csrf.json" get "http://test.localhost/session/csrf.json"
expect(response.status).to eq(200) expect(response.status).to eq(200)
cookie = response.cookies["_forum_session"] cookie = CGI.escape(response.cookies["_forum_session"])
id1 = session["session_id"] id1 = session["session_id"]
get "http://test.localhost/session/csrf.json", headers: { "Cookie" => "_forum_session=#{cookie};" } get "http://test.localhost/session/csrf.json", headers: { "Cookie" => "_forum_session=#{cookie};" }

7
spec/lib/auth/default_current_user_provider_spec.rb
View file

@ -261,7 +261,7 @@ describe Auth::DefaultCurrentUserProvider do
let(:cookie) do let(:cookie) do
new_provider = provider('/') new_provider = provider('/')
new_provider.log_on_user(user, {}, new_provider.cookie_jar) new_provider.log_on_user(user, {}, new_provider.cookie_jar)
new_provider.cookie_jar["_t"] CGI.escape(new_provider.cookie_jar["_t"])
end end
before do before do
@ -367,6 +367,7 @@ describe Auth::DefaultCurrentUserProvider do
cookie = @provider.cookie_jar["_t"] cookie = @provider.cookie_jar["_t"]
unhashed_token = decrypt_auth_cookie(cookie)[:token] unhashed_token = decrypt_auth_cookie(cookie)[:token]
cookie = CGI.escape(cookie)
token = UserAuthToken.find_by(user_id: user.id) token = UserAuthToken.find_by(user_id: user.id)
@ -431,6 +432,7 @@ describe Auth::DefaultCurrentUserProvider do
@provider.log_on_user(user, {}, @provider.cookie_jar) @provider.log_on_user(user, {}, @provider.cookie_jar)
cookie = @provider.cookie_jar["_t"] cookie = @provider.cookie_jar["_t"]
unhashed_token = decrypt_auth_cookie(cookie)[:token] unhashed_token = decrypt_auth_cookie(cookie)[:token]
cookie = CGI.escape(cookie)
freeze_time 20.minutes.from_now freeze_time 20.minutes.from_now
provider2 = provider("/", "HTTP_COOKIE" => "_t=#{cookie}") provider2 = provider("/", "HTTP_COOKIE" => "_t=#{cookie}")
provider2.refresh_session(user, {}, provider2.cookie_jar) provider2.refresh_session(user, {}, provider2.cookie_jar)
@ -442,6 +444,7 @@ describe Auth::DefaultCurrentUserProvider do
@provider.log_on_user(user, {}, @provider.cookie_jar) @provider.log_on_user(user, {}, @provider.cookie_jar)
cookie = @provider.cookie_jar["_t"] cookie = @provider.cookie_jar["_t"]
unhashed_token = decrypt_auth_cookie(cookie)[:token] unhashed_token = decrypt_auth_cookie(cookie)[:token]
cookie = CGI.escape(cookie)
freeze_time 2.minutes.from_now freeze_time 2.minutes.from_now
provider2 = provider("/", "HTTP_COOKIE" => "_t=#{cookie}") provider2 = provider("/", "HTTP_COOKIE" => "_t=#{cookie}")
provider2.refresh_session(user, {}, provider2.cookie_jar) provider2.refresh_session(user, {}, provider2.cookie_jar)
@ -748,7 +751,7 @@ describe Auth::DefaultCurrentUserProvider do
method: "GET", method: "GET",
}) })
@provider.log_on_user(user, {}, @provider.cookie_jar) @provider.log_on_user(user, {}, @provider.cookie_jar)
cookie = @provider.cookie_jar["_t"] cookie = CGI.escape(@provider.cookie_jar["_t"])
ip = "10.0.0.1" ip = "10.0.0.1"
env = { "HTTP_COOKIE" => "_t=#{cookie}", "REMOTE_ADDR" => ip } env = { "HTTP_COOKIE" => "_t=#{cookie}", "REMOTE_ADDR" => ip }

14
spec/rails_helper.rb
View file

@ -460,21 +460,23 @@ def create_request_env(path: nil)
env env
end end
def create_auth_cookie(token:, user_id: nil, trust_level: nil, issued_at: Time.zone.now) def create_auth_cookie(token:, user_id: nil, trust_level: nil, issued_at: Time.current)
request = ActionDispatch::Request.new(create_request_env)
data = { data = {
token: token, token: token,
user_id: user_id, user_id: user_id,
trust_level: trust_level, trust_level: trust_level,
issued_at: issued_at.to_i issued_at: issued_at.to_i
} }
cookie = request.cookie_jar.encrypted["_t"] = { value: data } jar = ActionDispatch::Cookies::CookieJar.build(ActionDispatch::TestRequest.create, {})
cookie[:value] jar.encrypted[:_t] = { value: data }
CGI.escape(jar[:_t])
end end
def decrypt_auth_cookie(cookie) def decrypt_auth_cookie(cookie)
request = ActionDispatch::Request.new(create_request_env.merge("HTTP_COOKIE" => "_t=#{cookie}")) ActionDispatch::Cookies::CookieJar
request.cookie_jar.encrypted["_t"].with_indifferent_access .build(ActionDispatch::TestRequest.create, { _t: cookie })
.encrypted[:_t]
.with_indifferent_access
end end
class SpecSecureRandom class SpecSecureRandom