Skip to content

Upgrade from Rails 6.1 to 7.0 #662

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 25 commits into
base: master
Choose a base branch
from
Open

Upgrade from Rails 6.1 to 7.0 #662

wants to merge 25 commits into from

Conversation

aaronlippold
Copy link
Member

No description provided.

@vanessuniq vanessuniq temporarily deployed to vulcan-pr-662 March 8, 2025 22:13 Inactive
@aaronlippold
Update yarn.lock for Rails 7 upgrade
ab4c309 
Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix Rubocop offenses for Rails 7 upgrade
2afd095 
Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix additional Rubocop offenses for Rails 7
3cb8469 
- Update .rubocop.yml to use plugins syntax
- Fix Style/DigChain offenses
- Fix Rails/RedundantActiveRecordAllMethod offenses
- Fix Style/GlobalStdStream offense
- Fix Rails/RootPathnameMethods offenses
- Fix Style/ZeroLengthPredicate offense
- Add frozen string literal comment

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix more Rubocop offenses for Rails 7
1ddea33 
- Fix Rails/FindEach offenses in export_helper and seeds
- Fix Rails/Pluck offenses
- Fix Lint/RedundantSafeNavigation
- Fix Style/MapIntoArray
- Fix Naming/PredicateMethod (validate_prefix to validate_prefix?)
- Add documentation comments to model classes
- Reduce offenses from 38 to 26

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix all remaining Rubocop offenses for Rails 7 upgrade
261ccc8 
- Added I18n translations for validation messages to config/locales/en.yml
- Fixed Rails/FindEach offense in export_helper.rb
- Fixed Lint/RedundantSafeNavigation in component.rb
- Added documentation comments to XCCDF classes
- Fixed Style/SafeNavigationChainLength issues using try method
- Fixed Style/Lambda and Lint/UnusedBlockArgument in membership.rb
- Fixed Lint/UselessOr by removing redundant || 0
- Disabled Layout/LineLength for Rails-generated config file
- Disabled Metrics/CollectionLiteralLength for CCI constants
- Updated all model validations to use I18n instead of hardcoded messages

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix Audited::Audit constant error for Rails 7 compatibility
73bc415 
- Add explicit require for 'audited/audit' to ensure proper load order
- Change VulcanAudit to inherit from Audited::Audit directly
- This fixes the 'uninitialized constant Audited::Audit' error in Rails 7
- The issue was caused by load order - the audit class needs to be loaded before inheritance

Co-Authored-By: Aaron Lippold <[email protected]>
aaronlippold added 16 commits June 9, 2025 02:46
@aaronlippold
Fix polymorphic user association issue in VulcanAudit for Rails 7
1001439 
- Clear parent validators and re-add with custom conditions
- Add system_generated flag to skip user validation for system audits
- Use write_attribute to avoid triggering user association methods
- Fixes 'undefined method marked_for_destruction?' error

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix Rubocop trailing whitespace offense
0bbfca5 
Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Add .ruby-version file and update Gemfile to use it
7314f2c 
- Set Ruby version to 3.0.6 in .ruby-version file
- Update Gemfile to read version from .ruby-version
- This ensures consistency across development environments
- Rails 7 requires Ruby 3.0+

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Generalize dev setup script to support multiple auth modes
c9e211f 
- Rename start-okta-dev to dev-setup for general use
- Add support for --local, --okta, and --ldap auth modes
- Improve environment configuration handling
- Add comprehensive documentation
- Make script more modular and reusable

The script now handles:
- Ruby/Node version management
- Dependency installation
- Database setup with Docker
- Multiple authentication configurations
- Environment file loading

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix audited gem validation issue for Rails 7
10cc6ab 
- Remove user presence validation from VulcanAudit
- Rails 7 requires belongs_to associations by default
- Audits can be created without users (e.g., system-generated)
- Updated audited gem from 5.3.3 to 5.8.0 for better Rails 7 support

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix all Rubocop offenses
35229e6 
- Fixed trailing whitespace in vulcan_audit.rb
- Fixed trailing whitespace in rule.rb line 69

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Test Overcommit pre-commit hook
d2762c9
@aaronlippold
Remove test file
108d7a2
@aaronlippold
Add Overcommit for pre-commit linting hooks
9dbbc97 
- Configure RuboCop with auto-correction for Ruby files
- Add ESLint for JavaScript/Vue files
- Enable Rails-specific hooks (schema checks, bundle checks)
- Add commit message validation hooks
- Configure post-checkout/merge hooks for dependencies
@aaronlippold
Fix audit validation errors for Rails 7 compatibility
83b5550 
- Remove presence validations from VulcanAudit for user and associated fields
- Add proper audit context infrastructure for tests (AuditHelper, DeviseAuditHelper)
- Update all affected specs to use VulcanAudit.as_user pattern
- Add admin user factory trait for cleaner test setup
- Ensure Warden hooks properly set audit context on authentication

This resolves all 'Audits is invalid' errors in the test suite while maintaining
proper audit trails. The solution allows system-generated audits without requiring
a user context, which is more flexible and Rails 7 compliant.

Co-authored-by: Aaron Lippold <[email protected]>
@aaronlippold
Fix remaining test failures for Rails 7 upgrade
4bb191c 
- Add audit context to ProjectAccessRequestsController tests
- Add audit context to ProjectAccessRequest model tests
- Add audit context to User model tests
- Fix SessionsController OIDC test ENV mocking (use fetch instead of [])

This ensures all tests pass with proper audit trails and no environment
variable leakage in tests.

Co-authored-by: Aaron Lippold <[email protected]>
@aaronlippold
Update gems for Rails 7 compatibility and fix login test
32315e6 
- Update factory_bot_rails from 5.2.0 to 6.4.4
- Update rspec-rails from 4.0.2 to 6.0.4
- Fix local login feature test to handle Bootstrap-Vue tab active states
  (checks parent element and aria-selected attribute)

These gem updates provide better Rails 7 support and are backwards
compatible with our Rails 7.0.8.7 setup.

Co-authored-by: Aaron Lippold <[email protected]>
@aaronlippold
Fix Rails 7 Vue binding issues and login test
55d7a53 
- Fix navbar users_path passing nil to Vue (now uses empty string)
- Fix component/STIG pages queried-rule nil handling (now uses 'null')
- Fix login page boolean type error - use v-bind:active for proper boolean binding
- Update local login test to verify user experience rather than implementation details
- Restore yarn.lock from master to fix Node.js compatibility issues

These issues were caused by Rails 7's stricter handling of nil values in view
attributes. Vue.js doesn't accept empty strings for v-bind expressions, so we
now provide appropriate fallback values.

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Fix local login test to use correct form selector
7397e79 
The test was looking for #new_local_user but the actual form ID is new_user.
Since there are multiple forms with the same ID (Local Login and Register),
we now use the form action attribute to specifically target the login form.

This ensures the test reliably finds the correct form element.

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Clean up development scripts and add ShellCheck linting (disabled by …
8198911 
…default)

- Remove redundant bin/start-okta-dev script (use ./bin/dev-setup --okta instead)
- Update Procfile.dev to handle Node.js 17+ compatibility automatically
- Add clear documentation about Node.js --openssl-legacy-provider requirement
- Update README with clear version requirements and setup instructions
- Add comprehensive header to dev-setup script explaining its purpose
- Add ShellCheck to pre-commit hooks (disabled for now due to existing issues)
- Fix ShellCheck warnings in dev-setup script
- Fix trailing whitespace in dev-setup

These changes consolidate our development setup scripts and make it easier
for new developers to get started with the correct versions and configuration.

Note: ShellCheck is added but disabled by default to avoid blocking commits
on existing issues. It can be enabled once all shell scripts are cleaned up.

Co-Authored-By: Aaron Lippold <[email protected]>
@aaronlippold
Update README.md
961dd66
@sonarqubecloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aaronlippold @vanessuniq @rbclark