Add validation handling to block form elements from using reserved keys (aka field definitions) [#2831754]

Follow-up to #2831576: Remote post handler should use only submitted values as payload.

Problem/Motivation

Form element keys should not be allowed to use any field definition names or common keywords like 'preview' or 'complete'

See: http://cgit.drupalcode.org/yamlform/tree/src/Entity/YamlFormSubmission.p...

Proposed resolution

Add validation handling to block form elements from using reserved keys (aka field definitions)

Comment	File	Size	Author
#7	add_validation_handling-2831754-7.patch	3.3 KB	jrockowitz
#3	add_validation_handling-2831754-3.patch	3.35 KB	jrockowitz
#2	Screen Shot 2016-11-30 at 2.56.37 PM.png	59.58 KB	jrockowitz

Comments

Comment #1

30 November 2016 at 13:11

jrockowitz created an issue. See original summary.

Comment #2

jrockowitz commented 30 November 2016 at 20:00

Status	File	Size
new	Screen Shot 2016-11-30 at 2.56.37 PM.png	59.58 KB

I have decide to just warn users via the UI when they are using a reserved key.

Below is the current list of reserved keys

form_build_id
form_token
form_id
data
op
serial
sid
uuid
token
uri
created
completed
changed
in_draft
current_page
remote_addr
uid
langcode
yamlform_id
entity_type
entity_id
sticky
notes

Here is a screenshot of the warning.

Comment #3

jrockowitz commented 30 November 2016 at 20:02

Category:	Bug report	» Task
Status:	Active	» Needs review

Status	File	Size
new	add_validation_handling-2831754-3.patch	3.35 KB

Comment #4

30 November 2016 at 20:06

Status:

Needs review

» Needs work

The last submitted patch, 3: add_validation_handling-2831754-3.patch, failed testing.

Comment #5

30 November 2016 at 20:10

jrockowitz committed 03dc4e6 on 2831754-reserved-keys

Issue #2831754 by jrockowitz: Add validation handling to block form...

Comment #6

30 November 2016 at 20:11

jrockowitz committed 87bf414 on 2831754-reserved-keys

Issue #2831754 by jrockowitz: Add validation handling to block form...

Comment #7

jrockowitz commented 30 November 2016 at 20:29

Status:

Needs work

» Needs review

Status	File	Size
new	add_validation_handling-2831754-7.patch	3.3 KB

Comment #8

30 November 2016 at 20:30

jrockowitz committed 8631358 on 8.x-1.x

Issue #2831754 by jrockowitz: Add validation handling to block form...

Comment #9

jrockowitz commented 30 November 2016 at 20:30

Status:

Needs review

» Fixed

Comment #10

30 November 2016 at 20:32

Status:

Fixed

» Needs work

The last submitted patch, 7: add_validation_handling-2831754-7.patch, failed testing.

Comment #11

jrockowitz commented 30 November 2016 at 20:35

Status:

Needs work

» Fixed

Comment #12

14 December 2016 at 20:44

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Add validation handling to block form elements from using reserved keys (aka field definitions)

Problem/Motivation

Proposed resolution

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

Comment #8

Comment #9

Comment #10

Comment #11

Comment #12

Parent issue

News items

Our community

Documentation

Drupal code base

Governance of community