https://wiki.expertiza.ncsu.edu/api.php?action=feedcontributions&feedformat=atom&user=NkapadiExpertiza_Wiki - User contributions [en]2026-06-26T12:37:41ZUser contributionsMediaWiki 1.41.0https://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=124816CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-05-01T10:50:58Z<p>Nkapadi: /* Test Plan */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students who had started reviewing with the old rubric are not notified of the change. Only the rest of the students who had not started a review will be presented with the updated rubric.<br />
<br />
The goal of this project is two-fold:<br />
<br />
1. If a rubric is replaced, or the items/questions are changed, then all the responses to that rubric need to be redone.<br />
<br />
2. The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects. <br />
<br />
However, if the change does not involve an addition/deletion of questions, it is termed as a minor change. If the change is deemed as a minor change, the refactoring should not make any changes to the current implementation<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. As of status quo, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_4.png]]<br />
<br />
<br />
The main function of the code is to change the rubric questionnaire. There are three main functions to change the rubric of a questionnaire: add, remove or edit questions. Editing a question is considered a minor change as it does not change the general format(i.e. number of questions or their types) of the rubric. The two major changes are highlighted, they are adding or removing a question.<br />
<br />
In case of a minor change the question in the database is simply updated, no other action/notification is required.<br />
<br />
In case of a major change, the reviews given for that question need to be deleted in case the question has been removed and the consequent changes need to be relayed to the appropriate databases. Moreover, the reviewers, whose reviews have been removed, need to be informed about the changes made and be asked to update the reviews via email. The email-ids for these users have to be queried from the Users database.<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
The primary metric for identification of a major change is when the ids of questions associated to a questionnaire change. <br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. As per the definition of a major change, it is obvious that there is no change in the question ids(records/objects) associated with the questionnaire. Hence this would be a minor change. <br />
<br />
The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question because it entails a change in the objects associated with the questionnaire. The params passed to the controller also includes a tag/identifier if a new question was added. We are using this tag to identify there was a new question added and hence major change.<br />
[[File:edit_questionnaire_page.png|Edit questionnaire page]]<br />
In the diagram shown above, the "Save teammate review questionnaire" would result in a minor change. Clicking on the highlighted add and remove would result in a change of the questions and is therefore a major change.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user respond to the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we use the tags in the params. The view has been coded such that it adds a tag called ":add_new_questions" whenever there is a post method to add a new question. We have used this tag to identify a major change and redirected to necessary helper methods. This is indicated in the image below:<br />
<br />
[[File:new_question_added.jpg|identification of major change]]<br />
<br />
Similarly, we have identified when a question is deleted and redirected again to helper methods.<br />
<br />
The next step, is to look iterate through answers database and group the answers for the edited questionnaire per user/reviewer. The below UML diagram would assist in understanding the flow of information and the relation between the models.<br />
<br />
[[File:UML_diagram.png|UML diagram showing the relationship between necessary models]]<br />
<br />
Please note that FK stands for foreign key in the above diagram.<br />
<br />
Using the question ids returned from view, we obtained the response id from the answer database. We tracked this response id through the response, response_map and user models to arrive at the user id. This has been achieved using the code shown below:<br />
<br />
[[File:reviewer_answer_mapping.jpg|grouping of answers per reviewer]]<br />
<br />
<br />
Once we have identified the answers, user mail id and other associated information, this has to be mailed to the user and then the records deleted. This has been achieved using the code shown below:<br />
<br />
[[File:mailer_function.jpg|Mailer function and deleting of associated records]]<br />
<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
Currently, we have added two tests: <br />
#To verify whether a new question has been added or not and check whether the corresponding answers in the questionnaire have been appropriately deleted.<br />
#To verify whether a question has been deleted or not and check whether the corresponding answers in the questionnaire have been appropriately deleted.<br />
<br />
=='''Team members'''==<br />
1. Aishwarya Tirumala <br><br />
2. Nilay Kapadia <br><br />
3. Nitin Nataraj Kuncham <br><br />
4. Suraj Siddharudh <br><br />
<br />
=='''References'''==<br />
#[https://github.com/expertiza/expertiza Expertiza on GitHub]<br />
#[https://www.rubyguides.com/2018/07/rspec-tutorial/ rpec tutorial]<br />
#[https://www.stackoverflow.com/ Stackoverflow]</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=124815CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-05-01T09:04:21Z<p>Nkapadi: /* Test Plan */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students who had started reviewing with the old rubric are not notified of the change. Only the rest of the students who had not started a review will be presented with the updated rubric.<br />
<br />
The goal of this project is two-fold:<br />
<br />
1. If a rubric is replaced, or the items/questions are changed, then all the responses to that rubric need to be redone.<br />
<br />
2. The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects. <br />
<br />
However, if the change does not involve an addition/deletion of questions, it is termed as a minor change. If the change is deemed as a minor change, the refactoring should not make any changes to the current implementation<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. As of status quo, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_4.png]]<br />
<br />
<br />
The main function of the code is to change the rubric questionnaire. There are three main functions to change the rubric of a questionnaire: add, remove or edit questions. Editing a question is considered a minor change as it does not change the general format(i.e. number of questions or their types) of the rubric. The two major changes are highlighted, they are adding or removing a question.<br />
<br />
In case of a minor change the question in the database is simply updated, no other action/notification is required.<br />
<br />
In case of a major change, the reviews given for that question need to be deleted in case the question has been removed and the consequent changes need to be relayed to the appropriate databases. Moreover, the reviewers, whose reviews have been removed, need to be informed about the changes made and be asked to update the reviews via email. The email-ids for these users have to be queried from the Users database.<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
The primary metric for identification of a major change is when the ids of questions associated to a questionnaire change. <br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. As per the definition of a major change, it is obvious that there is no change in the question ids(records/objects) associated with the questionnaire. Hence this would be a minor change. <br />
<br />
The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question because it entails a change in the objects associated with the questionnaire. The params passed to the controller also includes a tag/identifier if a new question was added. We are using this tag to identify there was a new question added and hence major change.<br />
[[File:edit_questionnaire_page.png|Edit questionnaire page]]<br />
In the diagram shown above, the "Save teammate review questionnaire" would result in a minor change. Clicking on the highlighted add and remove would result in a change of the questions and is therefore a major change.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user respond to the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we use the tags in the params. The view has been coded such that it adds a tag called ":add_new_questions" whenever there is a post method to add a new question. We have used this tag to identify a major change and redirected to necessary helper methods. This is indicated in the image below:<br />
<br />
[[File:new_question_added.jpg|identification of major change]]<br />
<br />
Similarly, we have identified when a question is deleted and redirected again to helper methods.<br />
<br />
The next step, is to look iterate through answers database and group the answers for the edited questionnaire per user/reviewer. The below UML diagram would assist in understanding the flow of information and the relation between the models.<br />
<br />
[[File:UML_diagram.png|UML diagram showing the relationship between necessary models]]<br />
<br />
Please note that FK stands for foreign key in the above diagram.<br />
<br />
Using the question ids returned from view, we obtained the response id from the answer database. We tracked this response id through the response, response_map and user models to arrive at the user id. This has been achieved using the code shown below:<br />
<br />
[[File:reviewer_answer_mapping.jpg|grouping of answers per reviewer]]<br />
<br />
<br />
Once we have identified the answers, user mail id and other associated information, this has to be mailed to the user and then the records deleted. This has been achieved using the code shown below:<br />
<br />
[[File:mailer_function.jpg|Mailer function and deleting of associated records]]<br />
<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
Currently, we have added a test to verify whether a new question has been added or not and check whether the corresponding answers in the questionnaire have been appropriately deleted.<br />
<br />
=='''Team members'''==<br />
1. Aishwarya Tirumala <br><br />
2. Nilay Kapadia <br><br />
3. Nitin Nataraj Kuncham <br><br />
4. Suraj Siddharudh <br><br />
<br />
=='''References'''==<br />
#[https://github.com/expertiza/expertiza Expertiza on GitHub]<br />
#[https://www.rubyguides.com/2018/07/rspec-tutorial/ rpec tutorial]<br />
#[https://www.stackoverflow.com/ Stackoverflow]</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=124814CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-05-01T09:04:12Z<p>Nkapadi: /* Test Plan */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students who had started reviewing with the old rubric are not notified of the change. Only the rest of the students who had not started a review will be presented with the updated rubric.<br />
<br />
The goal of this project is two-fold:<br />
<br />
1. If a rubric is replaced, or the items/questions are changed, then all the responses to that rubric need to be redone.<br />
<br />
2. The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects. <br />
<br />
However, if the change does not involve an addition/deletion of questions, it is termed as a minor change. If the change is deemed as a minor change, the refactoring should not make any changes to the current implementation<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. As of status quo, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_4.png]]<br />
<br />
<br />
The main function of the code is to change the rubric questionnaire. There are three main functions to change the rubric of a questionnaire: add, remove or edit questions. Editing a question is considered a minor change as it does not change the general format(i.e. number of questions or their types) of the rubric. The two major changes are highlighted, they are adding or removing a question.<br />
<br />
In case of a minor change the question in the database is simply updated, no other action/notification is required.<br />
<br />
In case of a major change, the reviews given for that question need to be deleted in case the question has been removed and the consequent changes need to be relayed to the appropriate databases. Moreover, the reviewers, whose reviews have been removed, need to be informed about the changes made and be asked to update the reviews via email. The email-ids for these users have to be queried from the Users database.<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
The primary metric for identification of a major change is when the ids of questions associated to a questionnaire change. <br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. As per the definition of a major change, it is obvious that there is no change in the question ids(records/objects) associated with the questionnaire. Hence this would be a minor change. <br />
<br />
The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question because it entails a change in the objects associated with the questionnaire. The params passed to the controller also includes a tag/identifier if a new question was added. We are using this tag to identify there was a new question added and hence major change.<br />
[[File:edit_questionnaire_page.png|Edit questionnaire page]]<br />
In the diagram shown above, the "Save teammate review questionnaire" would result in a minor change. Clicking on the highlighted add and remove would result in a change of the questions and is therefore a major change.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user respond to the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we use the tags in the params. The view has been coded such that it adds a tag called ":add_new_questions" whenever there is a post method to add a new question. We have used this tag to identify a major change and redirected to necessary helper methods. This is indicated in the image below:<br />
<br />
[[File:new_question_added.jpg|identification of major change]]<br />
<br />
Similarly, we have identified when a question is deleted and redirected again to helper methods.<br />
<br />
The next step, is to look iterate through answers database and group the answers for the edited questionnaire per user/reviewer. The below UML diagram would assist in understanding the flow of information and the relation between the models.<br />
<br />
[[File:UML_diagram.png|UML diagram showing the relationship between necessary models]]<br />
<br />
Please note that FK stands for foreign key in the above diagram.<br />
<br />
Using the question ids returned from view, we obtained the response id from the answer database. We tracked this response id through the response, response_map and user models to arrive at the user id. This has been achieved using the code shown below:<br />
<br />
[[File:reviewer_answer_mapping.jpg|grouping of answers per reviewer]]<br />
<br />
<br />
Once we have identified the answers, user mail id and other associated information, this has to be mailed to the user and then the records deleted. This has been achieved using the code shown below:<br />
<br />
[[File:mailer_function.jpg|Mailer function and deleting of associated records]]<br />
<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
#Currently, we have added a test to verify whether a new question has been added or not and check whether the corresponding answers in the questionnaire have been appropriately deleted.<br />
<br />
=='''Team members'''==<br />
1. Aishwarya Tirumala <br><br />
2. Nilay Kapadia <br><br />
3. Nitin Nataraj Kuncham <br><br />
4. Suraj Siddharudh <br><br />
<br />
=='''References'''==<br />
#[https://github.com/expertiza/expertiza Expertiza on GitHub]<br />
#[https://www.rubyguides.com/2018/07/rspec-tutorial/ rpec tutorial]<br />
#[https://www.stackoverflow.com/ Stackoverflow]</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123954CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-13T00:49:12Z<p>Nkapadi: /* Data Flow Diagram */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects. If the change does not involve an addition/deletion of questions, it is termed as a minor change. If the change is deemed as a minor change, the refactoring should not make any changes to the current implementation<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_4.png]]<br />
<br />
<br />
The main function of the code is to change the rubric questionnaire. There are three main functions to change the rubric of a questionnaire: add, remove or edit questions. Editing a question is considered a minor change as it does not change the general format(i.e. number of questions or their types) of the rubric. The two major changes are highlighted, they are adding or removing a question.<br />
<br />
In case of a minor change the question in the database is simply updated, no other action/notification is required.<br />
<br />
In case of a major change, the reviews given for that question need to be deleted in case the question has been removed and the consequent changes need to be relayed to the appropriate databases. Moreover, the reviewers, whose reviews have been removed, need to be informed about the changes made and be asked to update the reviews via email. The email-ids for these users have to be queried from the Users database.<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question and a minor edit corresponds to editing any existing questions. The params passed to the controller also includes a tag/identifier if a new question was added. We plan on using this identifier along with the number of questions to identify it the changes made were major or minor.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user to edit on the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Proposed Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we pull out the records from the active database of the questions and compare it with the number of question entries in the view. We get the number of questions from the code snippet as shown below from questionnare_controller.rb.<br />
<br />
[[File:code2.png|Code]]<br />
<br />
Now, we come across two cases. <br />
In the first scenario, If there is a change in the number of questions we do the necessary changes. We delete all the response objects and answers and mail the changes to the user.<br />
<br />
In the second scenario, If there is no change in the number of questions then there can be two possible cases. Either there really has been no change in the questions and we leave it as it is. Else, there has been equal number of additions and deletions and to detect this we check if the parameter add_new_questions is present. If it is, then there has been an update and we again do the required changes as discussed above. We check this through the code snippet below of the update method in questionnare_controller.rb.<br />
<br />
[[File:code1.png|Code]]<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
At this moment we are thinking of at least 2 new test cases, both these cases correspond to editing a rubric:<br />
# If there is no new question added and the question id's match with the ones in the record - validate the existence of the record<br />
# If there is a new question added - assert if the email was sent<br />
<br />
=='''Team members'''==<br />
1. Aishwarya Tirumala <br><br />
2. Nilay Kapadia <br><br />
3. Nitin Nataraj Kuncham <br><br />
4. Suraj Siddharudh <br><br />
<br />
=='''References'''==<br />
#[https://github.com/expertiza/expertiza Expertiza on GitHub]<br />
#[https://www.rubyguides.com/2018/07/rspec-tutorial/ rpec tutorial]<br />
#[https://www.stackoverflow.com/ Stackoverflow]</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Dfd_4.png&diff=123689File:Dfd 4.png2019-04-09T02:33:17Z<p>Nkapadi: uploaded a new version of &quot;File:Dfd 4.png&quot;</p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123688CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-09T02:32:39Z<p>Nkapadi: /* Data Flow Diagram */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_4.png]]<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question and a minor edit corresponds to editing any existing questions. The params passed to the controller also includes a tag/identifier if a new question was added. We plan on using this identifier along with the number of questions to identify it the changes made were major or minor.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user to edit on the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Proposed Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we pull out the records from the active database of the questions and compare it with the number of question entries in the view. We get the number of questions from the code snippet as shown below from questionnare_controller.rb.<br />
<br />
[[File:code2.png|Code]]<br />
<br />
Now, we come across two cases. <br />
In the first scenario, If there is a change in the number of questions we do the necessary changes. We delete all the response objects and answers and mail the changes to the user.<br />
<br />
In the second scenario, If there is no change in the number of questions then there can be two possible cases. Either there really has been no change in the questions and we leave it as it is. Else, there has been equal number of additions and deletions and to detect this we check if the parameter add_new_questions is present. If it is, then there has been an update and we again do the required changes as discussed above. We check this through the code snippet below of the update method in questionnare_controller.rb.<br />
<br />
[[File:code1.png|Code]]<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
At this moment we are thinking of at least 2 new test cases, both these cases correspond to editing a rubric:<br />
# If there is no new question added and the question id's match with the ones in the record - validate the existence of the record<br />
# If there is a new question added - assert if the email was sent</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Dfd_4.png&diff=123686File:Dfd 4.png2019-04-09T02:32:11Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123685CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-09T02:30:02Z<p>Nkapadi: /* Data Flow Diagram */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
[[File:dfd_2.png]]<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question and a minor edit corresponds to editing any existing questions. The params passed to the controller also includes a tag/identifier if a new question was added. We plan on using this identifier along with the number of questions to identify it the changes made were major or minor.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user to edit on the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Proposed Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we pull out the records from the active database of the questions and compare it with the number of question entries in the view. We get the number of questions from the code snippet as shown below from questionnare_controller.rb.<br />
<br />
[[File:code2.png|Code]]<br />
<br />
Now, we come across two cases. <br />
In the first scenario, If there is a change in the number of questions we do the necessary changes. We delete all the response objects and answers and mail the changes to the user.<br />
<br />
In the second scenario, If there is no change in the number of questions then there can be two possible cases. Either there really has been no change in the questions and we leave it as it is. Else, there has been equal number of additions and deletions and to detect this we check if the parameter add_new_questions is present. If it is, then there has been an update and we again do the required changes as discussed above. We check this through the code snippet below of the update method in questionnare_controller.rb.<br />
<br />
[[File:code1.png|Code]]<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
At this moment we are thinking of at least 2 new test cases, both these cases correspond to editing a rubric:<br />
# If there is no new question added and the question id's match with the ones in the record - validate the existence of the record<br />
# If there is a new question added - assert if the email was sent</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Dfd_2.png&diff=123683File:Dfd 2.png2019-04-09T02:29:33Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Dfd.png&diff=123681File:Dfd.png2019-04-09T02:27:37Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123679CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-09T02:27:24Z<p>Nkapadi: /* Design Diagrams */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.<br />
<br />
=='''Design Diagrams'''==<br />
===Use case Diagram===<br />
<br />
[[File:UseCase_rubric.png|Use Case Diagram]]<br />
<br />
<br />
===Data Flow Diagram===<br />
<br />
=='''Proposed Solution'''==<br />
The solution is divided into 2 phases viz. Identification of edit and Notification.<br />
<br />
===Identification of edit===<br />
When a rubric is submitted after an edit, the update method is called. The current rubric is made such that the question type (Radio/Checkbox/True or False) is not editable, however, the wording of the question can be edited. The questions can be deleted and/or added. We term an edit as major edit if the change involves addition or deletion of a question and a minor edit corresponds to editing any existing questions. The params passed to the controller also includes a tag/identifier if a new question was added. We plan on using this identifier along with the number of questions to identify it the changes made were major or minor.<br />
<br />
<br />
===E-mail Notification===<br />
Once this solution finds that the rubric has major edits and there exists some user who has started the response (corresponding records exist), email notification module is initiated. In this phase, these records are pulled from the ActiveRecord and sent to the user through email. Once the email is sent successfully, records are deleted from the DB.<br />
<br />
At this stage, the user has all the details already added by them and when they click on "Review", the questions now correspond to the new rubric. This lets the user to edit on the new rubric without losing data for any question. One of the motives behind sending these responses as email is that the first few questions in the review may be similar across rubrics and the user may re-use the same responses when prompted with the new rubric.<br />
<br />
=='''Proposed Code Changes'''==<br />
Firstly, we need to check if there has been a change in the questionnaire, i.e if any question has been added or deleted. For this we pull out the records from the active database of the questions and compare it with the number of question entries in the view. We get the number of questions from the code snippet as shown below from questionnare_controller.rb.<br />
<br />
[[File:code2.png|Code]]<br />
<br />
Now, we come across two cases. <br />
In the first scenario, If there is a change in the number of questions we do the necessary changes. We delete all the response objects and answers and mail the changes to the user.<br />
<br />
In the second scenario, If there is no change in the number of questions then there can be two possible cases. Either there really has been no change in the questions and we leave it as it is. Else, there has been equal number of additions and deletions and to detect this we check if the parameter add_new_questions is present. If it is, then there has been an update and we again do the required changes as discussed above. We check this through the code snippet below of the update method in questionnare_controller.rb.<br />
<br />
[[File:code1.png|Code]]<br />
<br />
=='''Test Plan'''==<br />
The current rspec file describes various contexts for testing such as adding new questions if attributes weren't correctly entered etc. As stated in the earlier sections, the update method of the questionnaire controller would be edited to identify major changes and trigger emails and deletions of records of responses. A context corresponding to this in the spec file for questionnaire controller under the describe block for update would be added.<br />
<br />
At this moment we are thinking of at least 2 new test cases, both these cases correspond to editing a rubric:<br />
# If there is no new question added and the question id's match with the ones in the record - validate the existence of the record<br />
# If there is a new question added - assert if the email was sent</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123582CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-08T08:21:52Z<p>Nkapadi: </p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123581CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-08T08:21:21Z<p>Nkapadi: /* Expected Solution */</p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
* If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
* The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1924._Regulate_changing_of_rubrics_while_projects_are_in_progress&diff=123580CSC/ECE 517 Spring 2019 - Project E1924. Regulate changing of rubrics while projects are in progress2019-04-08T08:20:32Z<p>Nkapadi: </p>
<hr />
<div>''' Regulate changing of rubrics while projects are in progress '''<br />
Expertiza is a web application through which students can submit and peer-review learning objects (articles, code, web sites, etc). It consists of multiple features, one such feature is the ability to setup an assignment by an instructor. While setting up an assignment, the instructor would be asked to choose different kinds of rubrics. Any of these rubrics can later be edited or changed to a different rubric. A problem arises when an assignment is underway (students have already started reviewing) and a rubric is edited or changed. Some students started reviewing with the old rubric and the rest of the students who had not started a review will be presented with the updated rubric. This usually happens when an assignment is copied from a previous year and the rubrics are not updated to match the current topic. It could be at a later point that the instructor/TA realizes this and changes it. The goal of this project is two-fold: One, If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone and two, the system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
<br />
=='''Setting up and Building the Project'''==<br />
Follow the Guidelines mentioned in the <span class="plainlinks">[https://github.com/expertiza/expertiza/blob/master/README.md read me]</span> page of the project's Wiki Page for building the Project in a Local Environment.<br />
<br />
=='''Project Description'''==<br />
===Current Scenario===<br />
Currently, when an instructor updates a questionnaire rubric of an ongoing assignment, the reviews are not reset and moreover, no notifications are sent to reviewers to update them of the changes made. Moreover, the instructor, post making changes, would have to individually inform each reviewer of the changes made and ask them to change the reviews accordingly.<br />
<br />
===Expected Solution===<br />
The project aims to resolve the two main issue arising from the problems mentioned above:<br />
<br />
1. If a rubric is replaced, or the items/questions are changed, then all the reviews that have been done need to be redone<br />
2. The system should then email the previously done reviews to the reviewer and delete the response object and all associated answer objects.<br />
<br />
Further descriptions about how the project will be implemented and what files will be changed are mentioned in subsequent sections.</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122439CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:55:14Z<p>Nkapadi: /* Implementation */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
=== Avoid using update_attribute because it skips validations===<br />
<br />
The method update_attribute will skip validation. Should use update_attributes instead.<br />
<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
Code climate will complain when a line is too long.<br />
<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Similar blocks of code found in 3 locations. Consider refactoring===<br />
<br />
[[File:Issue_21.png]]<br />
<br />
===Issue - User controlled method execution===<br />
<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122437CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:52:53Z<p>Nkapadi: /* Implementation */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
=== Avoid using update_attribute because it skips validations===<br />
<br />
The method update_attribute will skip validation. Should use update_attributes instead.<br />
<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
Code climate will complain when a line is too long.<br />
<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Similar blocks of code found in 3 locations. Consider refactoring===<br />
<br />
[[File:Issue_21.png]]<br />
<br />
===Issue - User controlled method execution===<br />
<br />
<br />
===Issue - Prefer each over for===<br />
<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122436CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:48:32Z<p>Nkapadi: /* Implementation */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
=== Avoid using update_attribute because it skips validations===<br />
<br />
The method update_attribute will skip validation. Should use update_attributes instead.<br />
<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
Code climate will complain when a line is too long.<br />
<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Similar blocks of code found in 3 locations. Consider refactoring===<br />
<br />
[[File:Issue_21.png]]<br />
<br />
===Issue - User controlled method execution===<br />
<br />
<br />
===Issue - Use empty lines between method definitions.===<br />
<br />
<br />
===Issue - Prefer each over for===<br />
<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122431CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:41:21Z<p>Nkapadi: /* Issue - Similar blocks of code found in 3 locations. Consider refactoring */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
=== Avoid using update_attribute because it skips validations===<br />
<br />
The method update_attribute will skip validation. Should use update_attributes instead.<br />
<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
Code climate will complain when a line is too long.<br />
<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Similar blocks of code found in 3 locations. Consider refactoring===<br />
<br />
[[File:Issue_21.png]]<br />
<br />
===Issue - User controlled method execution===<br />
<br />
<br />
===Issue - Extra blank line detected===<br />
<br />
<br />
===Issue - Use empty lines between method definitions.===<br />
<br />
<br />
===Issue - Prefer each over for===<br />
<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122430CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:40:57Z<p>Nkapadi: /* Implementation */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
=== Avoid using update_attribute because it skips validations===<br />
<br />
The method update_attribute will skip validation. Should use update_attributes instead.<br />
<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
Code climate will complain when a line is too long.<br />
<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Similar blocks of code found in 3 locations. Consider refactoring===<br />
<br />
<br />
===Issue - User controlled method execution===<br />
<br />
<br />
===Issue - Extra blank line detected===<br />
<br />
<br />
===Issue - Use empty lines between method definitions.===<br />
<br />
<br />
===Issue - Prefer each over for===<br />
<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_21.png&diff=122429File:Issue 21.png2019-03-26T01:39:07Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_10.png&diff=122422File:Issue 10.png2019-03-26T01:31:55Z<p>Nkapadi: uploaded a new version of &quot;File:Issue 10.png&quot;</p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122421CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:31:22Z<p>Nkapadi: /* Issue - Favor unless over if for negative conditions. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
[[File:Issue_10.png]]<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment / Avoid using update_attribute because it skips validations===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_10.png&diff=122420File:Issue 10.png2019-03-26T01:30:59Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122417CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:27:37Z<p>Nkapadi: /* Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
[[File:Issue_5.png]]<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment / Avoid using update_attribute because it skips validations===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Line is too long.===<br />
[[File:Line too long.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_5.png&diff=122416File:Issue 5.png2019-03-26T01:27:17Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122411CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:23:01Z<p>Nkapadi: /* Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
[[File:Time zone and out of condition.png]]<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment / Avoid using update_attribute because it skips validations===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122409CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:19:26Z<p>Nkapadi: /* Issue - Use a guard clause instead of wrapping the code inside a conditional expression. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
Used a return/unless combination to return in case the condition is false.<br />
<br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
===Issue - Avoid using update_attribute because it skips validations.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122403CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:11:34Z<p>Nkapadi: /* Issue - Unprotected Mass Assignment */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Unprotected mass assignment 2.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Parameters should be whitelisted for mass assignment.===<br />
[[File:Whitelist_and_update_attributes.png]]<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
[[File:Unsafe const_get.png]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Unprotected_mass_assignment_2.png&diff=122401File:Unprotected mass assignment 2.png2019-03-26T01:11:09Z<p>Nkapadi: uploaded a new version of &quot;File:Unprotected mass assignment 2.png&quot;</p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Unprotected_mass_assignment_2.png&diff=122397File:Unprotected mass assignment 2.png2019-03-26T01:09:21Z<p>Nkapadi: uploaded a new version of &quot;File:Unprotected mass assignment 2.png&quot;</p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Unprotected_mass_assignment_2.png&diff=122394File:Unprotected mass assignment 2.png2019-03-26T01:07:51Z<p>Nkapadi: uploaded a new version of &quot;File:Unprotected mass assignment 2.png&quot;</p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Unprotected_mass_assignment_2.png&diff=122390File:Unprotected mass assignment 2.png2019-03-26T01:07:20Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122388CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:05:28Z<p>Nkapadi: /* Issue - Do not place comments on the same line as the end keyword. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
Adding comments at the last the line of the code is considered a bad coding practice according to rubocop standards.<br />
<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122386CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:03:23Z<p>Nkapadi: /* Issue - Put one space between the method name and the first argument. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
Space has been added between method name and the first argument to make the code easily readable.<br />
<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122384CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:02:46Z<p>Nkapadi: /* Issue - Space missing after colon */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
Space has been added after colon to make the code easily readable.<br />
<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122379CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:01:59Z<p>Nkapadi: /* Issue - Use the new Ruby 1.9 hash syntax */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
This ruby syntax has been deprecated as of the current ruby version(2.3.7) used in expertiza.<br />
<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122374CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T01:01:20Z<p>Nkapadi: /* Issue - show, edit, update, destroy are not explicitly defined on the controller. */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
Show, edit, update and destroy have been explicitly defined to avoid confusion among filters between different controllers.<br />
<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122372CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T00:57:44Z<p>Nkapadi: /* Issue - Rename is_user_ta? to user_ta? */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122371CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T00:57:36Z<p>Nkapadi: /* Issue - Rename is_user_ta? to user_ta? */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
Renamed is_user_ta? to user_ta? to follow naming conventions enforced by Rubocop.<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122363CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T00:54:31Z<p>Nkapadi: /* Implementation */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
===Issue - Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead.===<br />
<br />
===Issue - Move redirect_to "/" out of the conditional.===<br />
<br />
[[File:Time_zone_and_out_of_condition.png|center]]<br />
<br />
===Issue - Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead ===<br />
<br />
===Issue - Favor unless over if for negative conditions.===<br />
<br />
===Issue - Unsafe reflection method const_get called with parameter value===<br />
<br />
[[File:Unsafe const_get.png|center]]<br />
<br />
===Issue - Avoid comma after the last item of an array===<br />
[[File:Issue_36.png]]<br />
<br />
===Issue - Rename is_user_ta? to user_ta?===<br />
[[File:Issue_35.png]]<br />
<br />
===Issue - show, edit, update, destroy are not explicitly defined on the controller.===<br />
[[File:Issue_32.png]]<br />
<br />
===Issue - Use the new Ruby 1.9 hash syntax===<br />
[[File:Issue_33.png]]<br />
<br />
===Issue - Space missing after colon===<br />
[[File:Issue_30.png]]<br />
<br />
===Issue - Put one space between the method name and the first argument.===<br />
[[File:Issue_31.png]]<br />
<br />
===Issue - Do not place comments on the same line as the end keyword.===<br />
[[File:Issue_27.png]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_31.png&diff=122357File:Issue 31.png2019-03-26T00:50:15Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_27.png&diff=122356File:Issue 27.png2019-03-26T00:49:39Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_30.png&diff=122354File:Issue 30.png2019-03-26T00:49:23Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_33.png&diff=122353File:Issue 33.png2019-03-26T00:49:13Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_32.png&diff=122352File:Issue 32.png2019-03-26T00:49:01Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_35.png&diff=122349File:Issue 35.png2019-03-26T00:48:48Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=CSC/ECE_517_Spring_2019_-_Project_E1917._Fix_Code_Climate_issues_in_controllers_with_names_beginning_with_P_through_Z&diff=122328CSC/ECE 517 Spring 2019 - Project E1917. Fix Code Climate issues in controllers with names beginning with P through Z2019-03-26T00:21:47Z<p>Nkapadi: /* Issue - Unprotected Mass Assignment */</p>
<hr />
<div>== '''About Expertiza''' ==<br />
Expertiza is an open source project based on Ruby on Rails framework. Expertiza allows the instructor to create new assignments and customize new or existing assignments. It also allows the instructor to create a list of topics the students can sign up for. Students can form teams in Expertiza to work on various projects and assignments. Students can also peer review other students' submissions. Expertiza supports submission across various document types, including the URLs and wiki pages[1].<br />
<br />
== '''Code Climate Issues and Problem Statements''' ==<br />
<br />
Codeclimate is a command line interface for the Code Climate analysis platform [2]. It can detect code smells which violate ruby/rails best practices. The task is to fix certain code climate issues detected by Code Climate analysis platform in controllers with the name beginning with P through Z. These issues includes unsafe use of methods, inappropriate syntax, non-optimal code structure which violates the DRY principle and so on. There are 37 different types of issues fixed in this project.<br />
<br />
====List of Issues====<br />
<br />
*Unprotected mass assignment<br />
*Use a guard clause instead of wrapping the code inside a conditional expression<br />
*Do not use Time.now without zone. Use one of Time.zone.now, Time.current, Time.now.in_time_zone, Time.now.utc, Time.now.getlocal, Time.now.iso8601, Time.now.jisx0301, Time.now.rfc3339, Time.now.to_i, Time.now.to_f instead<br />
*Move redirect_to "/" out of the conditional.<br />
*Block has too many lines<br />
*Useless assignment to variable - initheader.<br />
*Replace class var @@assignment_id with a class instance var<br />
*Avoid comparing a variable with multiple items in a conditional, use Array#include? Instead<br />
*Identical blocks of code found in 2 locations. Consider refactoring. <br />
*Favor unless over if for negative conditions.<br />
*Operator = should be surrounded by a single space. <br />
*Line is too long<br />
*Extra empty line detected at method body beginning. <br />
*Unnecessary spacing detected.<br />
*Parameters should be whitelisted for mass assignment<br />
*Avoid using update_attribute because it skips validations. <br />
*end at 44, 4 is not aligned with def at 39, 2. <br />
*Unsafe reflection method const_get called with parameter value <br />
*TODO found<br />
*Convert if nested inside else to elsif<br />
*Similar blocks of code found in 3 locations. Consider refactoring<br />
*User controlled method execution<br />
*Extra blank line detected<br />
*Use empty lines between method definitions. <br />
*Prefer each over for<br />
*Prefer Date or Time over DateTime.<br />
*Omit parentheses for ternary conditions<br />
*Do not place comments on the same line as the end keyword. <br />
*Useless assignment to variable - controllers. Did you mean controller?<br />
*end at 135, 2 is not aligned with class at 1, 0<br />
*Put one space between the method name and the first argument. <br />
*Space missing after colon. <br />
*Use the new Ruby 1.9 hash syntax<br />
*show, edit, update, destroy are not explicitly defined on the controller. <br />
*Rename is_user_ta? to user_ta?<br />
*Avoid comma after the last item of an array<br />
*Move redirect_to view_student_teams_path student_id: student.id out of the conditional<br />
<br />
== '''Implementation''' ==<br />
<br />
There are many minor issues such as unnecessary spacing, extra blank line detected, extra parentheses used and so on. We're not going to show all these minor fixing in this section. The focus would be on some of the important issues listed above that we fixed.<br />
<br />
===Issue - Unprotected Mass Assignment===<br />
Mass assignment is a feature of Rails which allows an application to create a record from the values of a hash. Protection for mass assignment is on by default. Query parameters must be explicitly whitelisted via permit in order to be used in mass assignment.This issue appears in different controller files. An example of how we fixed it in questions_controller.rb is shown below:<br />
[[File:Mass_Assignment_Issue.png|center]]<br />
<br />
===Issue - Use a guard clause instead of wrapping the code inside a conditional expression.=== <br />
[[File:Guard clause.png|center]]<br />
<br />
== '''Testing''' ==<br />
<br />
The Expertiza project provides 77 rspec tests under expertiza/spec and 8 of them are related to our controllers files. After modifying those 28 files, we want to make sure these tests could still pass. We passed all the Rspec tests except for "response_controller". However, we were not requirement to fix the issues for this controllers.<br />
<br />
[[File:Testing pass.png]]<br />
<br />
<br />
[[File:One_failure_testing.png]]<br />
<br />
===Reference===<br />
*1:http://wiki.expertiza.ncsu.edu/index.php/CSC/ECE_517_Fall_2017/E1784_Fix_mass_assignments_reported_by_Brakeman.rb<br />
*2: https://github.com/codeclimate/codeclimate/blob/master/README.md<br />
*The Class GitHub Repository: https://github.com/expertiza/expertiza<br />
*The Class Code Climate:https://codeclimate.com/github/expertiza/expertiza</div>Nkapadihttps://wiki.expertiza.ncsu.edu/index.php?title=File:Issue_36.png&diff=122327File:Issue 36.png2019-03-26T00:20:25Z<p>Nkapadi: </p>
<hr />
<div></div>Nkapadi