DGNum/demarches-normaliennes
11
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity
demarches-normaliennes/app/validators/mon_avis_embed_validator.rb

10 lines
716 B
Ruby
Raw Normal View History

extracted MonAvisEmbedValidator
2019-07-17 17:13:08 +02:00
class MonAvisEmbedValidator < ActiveModel::Validator
def validate(record)
# We need to ensure the embed code is not any random string in order to avoid injections
feat(MonAvisEmbedValidator): allow mon avis button without title
2022-01-24 15:56:29 +01:00
r = Regexp.new('<a href="https://monavis|voxusagers.numerique.gouv.fr/Demarches/\d+.*key=[[:alnum:]]+.*">\s*<img src="https://monavis|voxusagers.numerique.gouv.fr/(monavis-)?static/bouton-blanc|bleu.png|svg" alt="Je donne mon avis" (title="Je donne mon avis sur cette démarche" )?/>\s*</a>', Regexp::MULTILINE)
extracted MonAvisEmbedValidator
2019-07-17 17:13:08 +02:00
if record.monavis_embed.present? && !r.match?(record.monavis_embed)
fix: MonAvisEmbed custom validation
2023-03-15 17:23:19 +01:00
record.errors.add :base, :invalid, message: "Le code fourni ne correspond pas au format des codes MonAvis reconnus par la plateforme."
extracted MonAvisEmbedValidator
2019-07-17 17:13:08 +02:00
end
end
end
Reference in a new issue Copy permalink