Devise Registration not showing "some" nested form fields Rails 4 - forms

I've got a modified Devise "sign_up" form (new registration) that includes fields for child and grandchild objects to be created along with the user. All of the model relationships are set up properly with access to the child's attributes. However, when the form renders, only the fields for the Devise user and one of the grandchildren is shown.
When a User is created, he/she will automatically be assigned a Customer object, an Account object, and an Address object. As you can see by the relationships in the User model below, User has one Customer and Customer has many Accounts and one Address. There was previously an issue with rendering the form at all, which I solved by changing the values passed to the builder method. WHY WON'T THIS WORK??? This is what I have so far:
*user.rb
class User < ActiveRecord::Base
before_create :generate_id
# Virtual attribute for authenticating by either username or email
# This is in addition to a real persisted field like 'username'
attr_accessor :login
has_one :customer, :dependent => :destroy
has_many :accounts, through: :customer
accepts_nested_attributes_for :customer, :allow_destroy => true
accepts_nested_attributes_for :accounts, :allow_destroy => true
has_one :address, through: :customer
accepts_nested_attributes_for :customer, :allow_destroy => true
accepts_nested_attributes_for :address, :allow_destroy => true
has_one :administrator
validates_uniqueness_of :email, :case_sensitive => false
validates_uniqueness_of :id
validates :username,
:presence => true,
:uniqueness=> {
:case_sensitive => false
}
# User ID is a generated uuid
include ActiveUUID::UUID
natural_key :user_id, :remember_created_at
belongs_to :user
# specify custom UUID namespace for the natural key
uuid_namespace "1dd74dd0-d116-11e0-99c7-5ac5d975667e"
# Include default devise modules. Others available are:
# :confirmable, :lockable, :timeoutable and :omniauthable
devise :database_authenticatable, :registerable, :timeoutable, :recoverable, :trackable, :validatable
# Generate a random uuid for new user id creation
def generate_id
self.id = SecureRandom.uuid
end
# Allow signin by either email or username ("lower" function might have to be removed?)
def self.find_for_database_authentication(warden_conditions)
conditions = warden_conditions.dup
if login = conditions.delete(:login)
where(conditions.to_h).where(["lower(username) = :value OR lower(email) = :value", { :value => login.downcase }]).first
else
where(conditions.to_h).first
end
end
end
registrations_controller.rb
class RegistrationsController < Devise::RegistrationsController
before_filter :configure_permitted_parameters
# GET /users/sign_up
def new
#user = User.new
build_resource({})
self.resource[:customer => Customer.new, :account => Account.new, :address => Address.new]
respond_with self.resource
end
def create
#user = User.new
# Override Devise default behavior and create a customer, account, and address as well
resource = build_resource(params[:sign_up])
if(resource.save)
sign_in(resource_name, resource)
respond_with resource, :location => after_sign_up_path_for(resource)
else
render :action => "new"
end
end
protected
def configure_permitted_parameters
devise_parameter_sanitizer.for(:sign_up) { |u|
u.permit(:username, :email, :password, :password_confirmation,
customer_attributes: [:title, :firstname, :lastname, :phone1, :phone2],
account_attributes: [:acct_type],
address_attributes: [:address1, :address2, :zip_code])
}
end
end
application_controller.rb
class ApplicationController < ActionController::Base
# Prevent CSRF attacks by raising an exception.
# For APIs, you may want to use :null_session instead.
protect_from_forgery with: :exception
before_filter :configure_permitted_parameters, if: :devise_controller?
def after_sign_in_path_for(resource)
if current_user.role == 'admin'
adminview_administrator_path(current_user, format: :html)
else
accounts_path(current_user, format: :html)
end
end
protected
def configure_permitted_parameters
devise_parameter_sanitizer.for(:sign_up) { |u| u.permit(:username, :email, :password, :password_confirmation,
customer_attributes: [:title, :firstname, :lastname, :phone1, :phone2],
account_attributes: [:acct_type],
address_attributes: [:address1, :address2, :zip_code]) }
devise_parameter_sanitizer.for(:sign_in) { |u| u.permit(:login, :username, :email, :password) }
devise_parameter_sanitizer.for(:account_update) { |u| u.permit(:username, :email, :password, :password_confirmation, :current_password) }
end
end
views/devise/registrations/new.html.erb
<h1>Create an account</h1>
<div class="panel panel-default" style="width: 50%; padding: 0 25px;">
<%= bootstrap_nested_form_for(resource, as: resource_name, url: user_registration_path(resource_name)) do |f| %>
<%= devise_error_messages! %>
<h3>User Info</h3>
<!-- fields for User object -->
<%= f.text_field :username, autofocus: true %>
<%= f.email_field :email %>
<%= f.password_field :password , autocomplete: "off"%>
<% if #validatable %>
<em>(<%= #minimum_password_length %> characters minimum)</em>
<% end %><br />
<%= f.password_field :password_confirmation, autocomplete: "off" %>
<!-- fields for Customer object -->
<%= f.fields_for :customer do |customer_fields| %>
<%= customer_fields.text_field :title %>
<%= customer_fields.text_field :firstname %>
<%= customer_fields.text_field :lastname %>
<%= customer_fields.text_field :phone1 %>
<%= customer_fields.text_field :phone2 %>
<% end %>
<!-- fields for Account object -->
<%= f.fields_for :account do |account_fields| %>
<%= account_fields.text_field :acct_type %>
<% end %>
<!-- fields for Address object -->
<%= f.fields_for :address do |address_fields| %>
<%= address_fields.text_field :address1 %>
<%= address_fields.text_field :address2 %>
<%= address_fields.text_field :zip_code %>
<% end %>
<br />
<div class="actions">
<%= f.submit "Create My Account", :class => "btn btn-info" %>
</div>
<% end %>
</div>
</div>
Again, the above view does render, but the form only displays the fields for Devise new user and the one field (acct_type) for the account fields. How to get the rest of form to display and create all of these things on submission? Everything I've tried and everything I've read leads me to think that there's a problem with Rails 4's strong_parameters not being able to recognize the permitted attributes (see above controllers) in an array. Could that be the issue? If so, how does one go about passing the parameters necessary to build all these things?
Could be problem with the routes?
routes.rb
Rails.application.routes.draw do
devise_for :users, :controllers => { :registrations => "registrations" }
devise_scope :user do
# authentication
post "/accounts/adminview" => "devise/sessions#new"
end
root 'home#index'
resources :administrators do
member do
get :adminview
end
end
resources :users do
resource :customers
resource :accounts
resource :addresses
end
resources :account_types, :accounts, :addresses, :administrators, :customers, :transaction_types, :transactions, :users
end
I've tried every combination of ways that I could find on SO. This has taken up days worth of valuable time. I don't see any reason why it can't work. Does anyone have a better way of doing this? Is there a gem that would help? I'm willing to tear Devise apart and rebuild if necessary.
F.Y.I. It's Rails 4 and Devise 3.4.1. I've also added nested_form gem, but it doesn't make a difference.
Thank you

If you raise your params in controller you probably see accounts_attributes instead account_attributes you are setting in permit at application_controller, try replace it.

Related

Devise strong_params on Nested attributes form

I am following this tutorial [https://kakimotonline.com/2014/03/30/extending-devise-registrations-controller/][1], whose purpose is creating a Devise User, and its owning Company on the same form.
Models :
class User < ActiveRecord::Base
devise :database_authenticatable, :registerable, :confirmable, :recoverable, :rememberable, :trackable, :validatable
belongs_to :company, optional: true
accepts_nested_attributes_for :company
end
user model has a reerence to company :
add_reference(:users, :company, {:foreign_key=>true})
I was surprised to see that the 'belonged' can have the accepts_nested mention (thought only the owner could)
class Company < ActiveRecord::Base
has_one :user
end
The form view is :
<%= form_for(resource, :as => resource_name, :url => registration_path(resource_name)) do |f| %>
<div class="controls">
<%= f.fields_for :company do |company_form| %>
<%= company_form.text_field :cnpj %>
<% end %>
</div>
<div class="controls">
<%= f.text_field :email %>
</div>
<div class="controls">
<%= f.password_field :password %>
</div>
<div class="controls">
<%= f.password_field :password_confirmation %>
</div>
<%= f.submit "Submit" %>
<% end %>
The registration controller is created to substitute the default one :
**controllers/registrations_controller.rb**
class RegistrationsController < Devise::RegistrationsController
def new
build_resource({})
self.resource.company = Company.new
respond_with self.resource
end
def create
#user = User.new sign_up_params
#user.save
end
end
strong_prams permission :
class ApplicationController < ActionController::Base
before_action :configure_permitted_parameters, if: :devise_controller?
protected
def configure_permitted_parameters
devise_parameter_sanitizer.permit(:sign_up) do |user_params|
user_params.permit(:email, :password, :password_confirmation, company_attributes: [:name])
end
end
end
with this route
MyApp::Application.routes.draw do
devise_for :users, controllers: { registrations: "registrations" }
end
On the console, I can create instances :
User.create(email:'test#gmail.com',
password:'password',
password_confirmation:'password',
company_attributes: { name: 'nours' })
creates one user, and his associated company :)
But the form fails in the #create :
. The route works, the params are OK, #create retrieves the right permitted values,
=>{"email"=>"tota#gmal.com", "password"=>"zigzig", "password_confirmation"=>"zigzig", "company_attributes"=>{"name"=>"tata toto"}}```
but creation of instance
```>> User.new(sign_up_params)
=> #<User id: nil, email: "", created_at: nil, updated_at: nil, company_id: nil>```,
the same with
```>> build_resource sign_up_params
=> #<User id: nil, email: "", created_at: nil, updated_at: nil, company_id: nil>```
What's wrong with strong_params ?
[1]: https://kakimotonline.com/2014/03/30/extending-devise-registrations-controller/
The reason you’re getting this error is because you have belongs_to :company in your user model. This means there has to be a company or the user won’t save. Try changing it to belongs_to :company, optional: true.
Starting with Rails 5.0, “all model’s belongs_to associations are now treated as if the required: true option is present”. You can find out more here.

Devise Unpermitted parameter nested form

I have a user model parent and and child model patient. I want to add patient related attributes in the patients model through devise(user) signup form, but the data is not saving in patient model.
class RegistrationsController < Devise::RegistrationsController
def new
build_resource({})
resource.build_patient
respond_with self.resource
end
def create
super
end
end
private
def sign_up_params
params.require(resource_name).permit(:email, [patient_attributes:[:user_id, :phone, :address,:age]], :password, :password_confirmation)
end
This is my user and patient models:
class User < ActiveRecord::Base
devise :database_authenticatable, :registerable,
:recoverable, :rememberable, :trackable, :validatable
has_one :patient
accepts_nested_attributes_for :patient
end
#####
class Patient < ActiveRecord::Base
belongs_to :user
end
This is the nested form:
<div class="field">
<%= f.fields_for :patient do |p| %>
phone <%= p.text_field :phone %>
address <%= p.text_field :address %>
age <%= p.text_field :age %>
<%end%>
</div>
When I fill the form and click submit button these are the params:
Parameters: {"utf8"=>"✓", "authenticity_token"=>"b+5GjScdG1gSnPL1eRDMW9U6tWiL1+liJMHvBCWYO2DEqRPJIBKzpXE3HGHlDgJPVcB+ro3ZVi+fHmNCdri1Zw==", "user"=>{"username"=>"q", "email"=>"kh1#gmail.com", "patient_attributes"=>{"phone"=>"444444", "address"=>"lllllllll", "age"=>"55"}, "password"=>"[FILTERED]", "password_confirmation"=>"[FILTERED]", "user_type"=>"1"}, "commit"=>"Sign up"}
**Unpermitted parameter: patient_attributes**
So the answer is simple
i add parameters is like this in application controller
devise_parameter_sanitizer.permit(:sign_up) do
|u| u.permit(:email, :password, :password_confirmation, :username,:user_type,patient_attributes: [:user_id, :phone, :address,:age])
end
and change form little bit
<div class="field">
<%= f.fields_for :patient, Patient.new do |p| %>
</br>
phone <%= p.text_field :phone %>
</br>
address <%= p.text_field :address %>
</br>
age <%= p.text_field :age %>
<%end%>
</div>
This might help you.
Just remove square bracket from [patient_attributes:[:user_id, :phone, :address,:age]]
and use
patient_attributes:[:user_id, :phone, :address,:age]
only. This should help you.

In RoR, f.fields_for is rendering as nothing

I’m using Rails 4.2.7. In my model I have
class MyObject < ActiveRecord::Base
…
belongs_to :address, :autosave => true, dependent: :destroy
accepts_nested_attributes_for :address, :my_object_times
and the address model
class Address < ActiveRecord::Base
belongs_to :state
belongs_to :country
...
has_one :my_object
end
I want to write a form that will allow me to build both the child and parent objects, so I tried
<%= form_for #my_object, :url => my_objects_create_path, :remote => true do |f| %>
<div class="field">
<%= f.fields_for :address do |addr| %>
<%= addr.label :address %> <span name="my_object[address]_errors"></span><br>
City: <%= addr.text_field :city %>
<%= addr.select :state, options_for_select(us_states.collect{|s| [ s.name, s.id ]}), {:prompt => "Select State"} %>
<%= country_code_select('my_object[address]', 'country_id',
[[ 'US', 'United States' ], [ 'CA', 'Canada' ]],
{:include_blank=>true, :selected => #default_country_selected.id},
{:class=>'countryField'}
) %>
<% end %>
</div>
but the above is rendered as only
<div class="field">
</div>
How do I adjust things so that my fields render AND I'm able to create my object in my controller using
my_object = MyObject.new(params)
Edit: Per the answer given, I tried
#my_object.address.build
from teh controller action taht rendres the form, but got the erorr
undefined method `build' for nil:NilClass
#this is in form loading class
def new
#myobject = MyObject.new
#myobject.address = Address.new
end
#Now you can use nested attribute for Address
<%=form_for(#myobject) do |f|%>
<%=f.fields_for :address do |a|%>
Your form fields here
<%end%>
<%end%>
#this is create def
def create
#myobject = MyObject.new(myobject_params)
#myobject.save
end
#in params
def myobject_params
params.require(:myobject).permit(:some, :key,:of, :myobject, :address_attributes[:address, :attribute])
end
#this should work
If my_object has no addresses, then nothing will be rendered. This is default behavior in Rails. One way to get around this is to build one or more empty children in the controller so that at least one set of fields is shown to the user
The Rails guides talk about this in Nested Forms section 9.2
Also, in your MyObject model, i think it should be has_one address. you have belongs_to
class MyObject < ActiveRecord::Base
has_one :address, :autosave => true, dependent: :destroy
accepts_nested_attributes_for :address
end

Form_for with radio_button generated from database

This would seem easy to do, basically I'm using Devise for administrative purposes, so every user signing up can create a product/figure linked to their account then put up that product for a trade with another user.
Class User
rolify
:recoverable, :rememberable, :trackable, :validatable
attr_accessible :role_ids, :as => :admin
attr_accessible :email, :password, :password_confirmation, :remember_me
has_many :trades
has_many :figures, :through => :trades
accepts_nested_attributes_for :trades
Class Figure
attr_accessible :image_url, :name, :series, :figure_id
has_many :trades
has_many :users, :through => :trades
accepts_nested_attributes_for :trades
Class Trade
attr_accessible :figure_id, :user_id
belongs_to :user
belongs_to :figure
The Controller for Trade
def new
#trade = Trade.new
end
def create
#trade = current_user.figures.build(params[:trade])
end
The Form for trade
<%= form_for(#trade) do |f| %>
<div class="field">
<% Figure.all.each do |figure| %>
# Create a list of figurines radio buttons
<%= f.radio_button :figure_id, figure.id, :checked => (params[:figure_id] == nil ? false : params[:figure_id]) %>
# Link the figures thumbnail to the radio button
<%= f.label :figure_id, image_tag(figure.image_url, :size => "40x58", :alt => figure.name ), :value => "#{figure.id}" %>
<% end %>
</div>
<div class="actions">
<%= f.submit %>
</div>
<% end %>
Here's the parameters
{"utf8"=>"✓",
"authenticity_token"=>"lo+RWOLxGhPIP1pmJhk9v+vetO7cGEKGY844egaQ6A0=",
"trade"=>{"figure_id"=>"12"},
"commit"=>"Create Trade"}
Here's the problem I'm getting: unknown attribute: figure_id
Why am I receiving this error?
If I understand you correctly, this error should go away if you build a Trade instead of a Figure (you're just trying to link a figure to a user through a new trade, right?):
def create
#trade = current_user.trades.build(params[:trade])
#trade.save
end

Setting up sunspot geolocation scenario

I am using Sunspot for searching and using Geocoder for addresses and then for calculating distances, Geokit-rails3.
class Product < ActiveRecord::Base
belongs_to :store
searchable do
text :name
end
end
class Store < ActiveRecord::Base
acts_as_mappable
geocoded_by :address, :latitude => :lat, :longitude => :lng
attr_accessible :lat, :lng, :address
has_many :products
end
Question
What I want when typing in a product to search for is also the ability to type an address inside of another field to search for products in that given area with a 30 mile radius.
This is my controller which allows me to search for Products:
class SearchController < ApplicationController
def index
#search = Product.search do |q|
q.fulltext params[:search]
end
#products = #search.results
end
end
So I believe the form would look something like this after I am done:
<%= form_tag search_path, :method => 'get' do %>
<%= text_field_tag :search, params[:search]" %>
<%= submit_tag "Search", :name => nil %>
<p> Search Near: </p>
<%= label_tag :location, "Search nearby an Address" %>
<%= text_field_tag :location, params[:location] %>
<% end %>
I am thinking :location would serve as a virtual attribute for the Stores :address in order for the field to be mapped correctly but this is all speculation.
How do I set this all up in order to achieve the specific scenario?