32b31a29-5354-46dd-be8d-cd9b7575b397

Committed 27 Oct 2025 05:36PM UTC coverage: 91.325% (+0.03%) from 91.291%

Build # 32b31a29-5354-46dd-be8d-cd9b7575b397

Build Type

push

circleci

Committed by

web-flow

Commit Message

Downgrade openssl to allow access to LDAP (#2099)

taken from https://github.com/code-dot-org/code-dot-org/pull/68921/files

fixes `SSL_connect returned=1 errno=0 peeraddr=140.180.222.45:636
state=error: certificate verify failed (unable to get certificate CRL)`

Run Details

2758 of 3020 relevant lines covered (91.32%)

750.5 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

93.15

/app/controllers/request_wizards_controller.rb

# frozen_string_literal: true
class RequestWizardsController < ApplicationController
  layout "wizard"
  before_action :set_breadcrumbs

  before_action :set_request_model, only: %i[save]
  before_action :exit_without_saving, only: %i[save]
  before_action :set_or_init_request_model, only: %i[show]
  before_action :check_access

  attr_reader :request_model

  # GET /request_wizards/1
  def show
    # show the current wizard step form
    render_current
  end

  # PUT /request_wizards/1/save
  def save
    # save and render dashboard
    save_request
    case params[:commit]
    when "Back"
      render_back
    when "Next", "Submit"
      render_next
    else
      if params[:commit].start_with?("http")
        # Go directly to the step the user clicked on
        redirect_to params[:commit]
      else
        redirect_to request_path(@request_model)
      end
    end
  end

  private

    def check_access
      return if user_eligible_to_modify_request?

      # request can not be modified by this user, redirect to dashboard
      error_message = "You do not have access to this page."
      flash[:notice] = error_message
      redirect_to dashboard_path
    end

    def exit_without_saving
      if params[:commit] == "Exit without Saving"
        if @request_model.nil?
          redirect_to dashboard_path
        else
          redirect_to request_path(@request_model)
        end
      end
    end

    def render_current
      raise "Must be implemented"
    end

    def render_next
      raise "Must be implemented"
    end

    def render_back
      raise "Must be implemented"
    end

    # Use callbacks to share common setup or constraints between actions.
    def set_request_model
      # do nothing if we are bailing out without creating a request2
      return if params[:request_id] == "0" && params[:commit] == "Exit without Saving"

      @request_model = if params[:request_id] == "0"
                         # on the first page with a brand new request that has not been created
                         req = Request.create(requested_by: current_user.uid)
                         update_sidebar_url(req)
                         req
                       else
                         # on a page when the request has already been created
                         Request.find(params[:request_id])
                       end
    end

    def update_sidebar_url(request_model)
      return unless params[:commit].start_with?("http")

      # take of the zero in the url and replace it with the real request id
      params[:commit] = "#{params[:commit][0..-2]}#{request_model.id}"
    end

    # set if id is present or initialize a blank request if not
    def set_or_init_request_model
      @princeton_departments = Affiliation.all
      @project_purposes = [["Research", "research"], ["Administrative", "administrative"], ["Teaching", "teaching"]]
      @request_model = if params[:request_id].blank?
                         Request.new(id: 0, requested_by: current_user.uid)
                       else
                         Request.find(params[:request_id])
                       end
    end

    def save_request
      request_model.update(request_params)
    end

    # Only allow a list of trusted parameters through.
    def request_params
      request_params = params.fetch(:request, {}).permit(:request_title, :project_title, :state, :data_sponsor, :data_manager,
                                        :project_purpose, :description, :parent_folder, :project_folder, :project_id, :quota,
                                        :requested_by, :storage_size, :storage_unit, :number_of_files, :hpc, :smb, :globus, user_roles: [], departments: [])

      if request_params[:departments].present?
        request_params[:departments] = request_params[:departments].compact_blank.map { |dep_str| JSON.parse(dep_str) }
      end
      if request_params[:user_roles].present?
        request_params[:user_roles] = request_params[:user_roles].compact_blank.map do |role_str|
          json = JSON.parse(role_str)
          json["read_only"] = params[:request]["read_only_#{json['uid']}"] == "true"
          json
        end
      end
      request_params
    end

    def set_breadcrumbs
      add_breadcrumb("Dashboard", dashboard_path)
    end

    def user_eligible_to_modify_request?
      # elevated privs for the current user
      if current_user.sysadmin || (current_user.developer && !Rails.env.production?)
        true
      # current user is the requestor
      elsif (@request_model.requested_by == current_user.uid) && !@request_model.submitted?
        true
      # a brand new request
      elsif params[:request_id].blank?
        true
      # no access for any other reason
      else
        false
      end
    end
end

1	# frozen_string_literal: true
2	class RequestWizardsController < ApplicationController	6✔
3	layout "wizard"	6✔
4	before_action :set_breadcrumbs	6✔
5
6	before_action :set_request_model, only: %i[save]	6✔
7	before_action :exit_without_saving, only: %i[save]	6✔
8	before_action :set_or_init_request_model, only: %i[show]	6✔
9	before_action :check_access	6✔
10
11	attr_reader :request_model	6✔
12
13	# GET /request_wizards/1
14	def show	6✔
15	# show the current wizard step form
16	render_current	146✔
17	end
18
19	# PUT /request_wizards/1/save
20	def save	6✔
21	# save and render dashboard
22	save_request	168✔
23	case params[:commit]	168✔
24	when "Back"
25	render_back	38✔
26	when "Next", "Submit"
27	render_next	62✔
28	else
29	if params[:commit].start_with?("http")	68✔
30	# Go directly to the step the user clicked on
31	redirect_to params[:commit]	10✔
32	else
33	redirect_to request_path(@request_model)	58✔
34	end
35	end
36	end
37
38	private	6✔
39
40	def check_access	6✔
41	return if user_eligible_to_modify_request?	380✔
42
43	# request can not be modified by this user, redirect to dashboard
44	error_message = "You do not have access to this page."	66✔
45	flash[:notice] = error_message	66✔
46	redirect_to dashboard_path	66✔
47	end
48
49	def exit_without_saving	6✔
50	if params[:commit] == "Exit without Saving"	198✔
51	if @request_model.nil?	2✔
52	redirect_to dashboard_path	2✔
53	else
54	redirect_to request_path(@request_model)	×
55	end
56	end
57	end
58
59	def render_current	6✔
60	raise "Must be implemented"	×
61	end
62
63	def render_next	6✔
64	raise "Must be implemented"	×
65	end
66
67	def render_back	6✔
68	raise "Must be implemented"	×
69	end
70
71	# Use callbacks to share common setup or constraints between actions.
72	def set_request_model	6✔
73	# do nothing if we are bailing out without creating a request2
74	return if params[:request_id] == "0" && params[:commit] == "Exit without Saving"	198✔
75
76	@request_model = if params[:request_id] == "0"	196✔
77	# on the first page with a brand new request that has not been created
78	req = Request.create(requested_by: current_user.uid)	16✔
79	update_sidebar_url(req)	16✔
80	req	16✔
81	else
82	# on a page when the request has already been created
83	Request.find(params[:request_id])	180✔
84	end
85	end
86
87	def update_sidebar_url(request_model)	6✔
88	return unless params[:commit].start_with?("http")	16✔
89
90	# take of the zero in the url and replace it with the real request id
91	params[:commit] = "#{params[:commit][0..-2]}#{request_model.id}"	6✔
92	end
93
94	# set if id is present or initialize a blank request if not
95	def set_or_init_request_model	6✔
96	@princeton_departments = Affiliation.all	184✔
97	@project_purposes = [["Research", "research"], ["Administrative", "administrative"], ["Teaching", "teaching"]]	184✔
98	@request_model = if params[:request_id].blank?	184✔
99	Request.new(id: 0, requested_by: current_user.uid)	26✔
100	else
101	Request.find(params[:request_id])	158✔
102	end
103	end
104
105	def save_request	6✔
106	request_model.update(request_params)	168✔
107	end
108
109	# Only allow a list of trusted parameters through.
110	def request_params	6✔
111	request_params = params.fetch(:request, {}).permit(:request_title, :project_title, :state, :data_sponsor, :data_manager,	168✔
112	:project_purpose, :description, :parent_folder, :project_folder, :project_id, :quota,
113	:requested_by, :storage_size, :storage_unit, :number_of_files, :hpc, :smb, :globus, user_roles: [], departments: [])
114
115	if request_params[:departments].present?	168✔
116	request_params[:departments] = request_params[:departments].compact_blank.map { \|dep_str\| JSON.parse(dep_str) }	78✔
117	end
118	if request_params[:user_roles].present?	168✔
119	request_params[:user_roles] = request_params[:user_roles].compact_blank.map do \|role_str\|	32✔
120	json = JSON.parse(role_str)	8✔
121	json["read_only"] = params[:request]["read_only_#{json['uid']}"] == "true"	8✔
122	json	8✔
123	end
124	end
125	request_params	168✔
126	end
127
128	def set_breadcrumbs	6✔
129	add_breadcrumb("Dashboard", dashboard_path)	382✔
130	end
131
132	def user_eligible_to_modify_request?	6✔
133	# elevated privs for the current user
134	if current_user.sysadmin \|\| (current_user.developer && !Rails.env.production?)	380✔
135	true	264✔
136	# current user is the requestor
137	elsif (@request_model.requested_by == current_user.uid) && !@request_model.submitted?	116✔
138	true	50✔
139	# a brand new request
140	elsif params[:request_id].blank?	66✔
141	true	×
142	# no access for any other reason
143	else
144	false	66✔
145	end
146	end
147	end

pulibrary / tigerdata-app / 32b31a29-5354-46dd-be8d-cd9b7575b397

Source File Press 'n' to go to next uncovered line, 'b' for previous

Source File
Press 'n' to go to next uncovered line, 'b' for previous