fix: improve validation and submitting on profile page#1838
fix: improve validation and submitting on profile page#1838danielroe merged 1 commit intonpmx-dev:mainfrom
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
2 Skipped Deployments
|
📝 WalkthroughWalkthroughThe pull request modifies the profile editing functionality across frontend and backend. On the frontend, the edit UI container changes from a div to a form element with an 🚥 Pre-merge checks | ❌ 1❌ Failed checks (1 inconclusive)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
There was a problem hiding this comment.
🧹 Nitpick comments (1)
server/api/social/profile/[identifier]/index.put.ts (1)
17-21: Redundant URL validation may cause inconsistent behaviour.The manual
URL.canParse()check duplicates the schema'sv.url()validation. These two mechanisms can have subtly different rules (e.g., handling of special protocols likejavascript:ordata:), which could lead to:
- A URL passing pre-validation but failing schema validation (or vice versa)
- Inconsistent error messages for the same input
- Two places to maintain if validation rules change
Consider removing the manual check and relying solely on the schema, or extracting a shared validation helper used by both.
Option 1: Remove redundant pre-validation
const requestBody = await readBody(event) - if (requestBody.website && !URL.canParse(requestBody.website)) { - throw createError({ statusCode: 400, statusMessage: 'Invalid website' }) - } - const body = parse(ProfileEditBodySchema, requestBody)Valibot will throw a validation error if the website is invalid, which can be caught and transformed into a 400 response if needed.
Option 2: Wrap schema parsing to provide friendly errors
+import { safeParse } from 'valibot' + const requestBody = await readBody(event) - if (requestBody.website && !URL.canParse(requestBody.website)) { - throw createError({ statusCode: 400, statusMessage: 'Invalid website' }) + const result = safeParse(ProfileEditBodySchema, requestBody) + if (!result.success) { + throw createError({ statusCode: 400, statusMessage: 'Invalid request body' }) } - - const body = parse(ProfileEditBodySchema, requestBody) + const body = result.output
ℹ️ Review info
Configuration used: Organization UI
Review profile: CHILL
Plan: Pro
📒 Files selected for processing (2)
app/pages/profile/[identity]/index.vueserver/api/social/profile/[identifier]/index.put.ts
Codecov Report✅ All modified and coverable lines are covered by tests. 📢 Thoughts on this report? Let us know! |
2 participants
🧭 Context
When updating the form, I received a 500 error and the form simply shut down.
There were two issues: insufficient validation on the server and no validation on the client.
📚 Description
Added conditions on the server that the URL is valid and on the client that it is a form - this enables native validation and allows the form to be submitted when pressing "Enter" in the fields (f.e. I always submit this way)