Tag Length Input Validation #11119
Tag Length Input Validation #11119
Conversation
Manage this branch in SquashTest this branch here: https://temidayo32document-xdsqt.squash.io |
There was a problem hiding this comment.
Thank you very much for tackling this @Temidayo32! 🤟
Your approach is correct, but it will unfortunately work only for documents. The same issue will happen with images and for custom models and pages that use tags.
I made a detailed review with a point-by-point suggestion of what I think would be the ideal solution. Keep in mind that I didn't have time to test it though, I'm just pointing out what I found in the source on GitHub.
docs/extending/extending_draftail.md
Outdated
There was a problem hiding this comment.
Are the changes to this file in the right PR? 😉
wagtail/models/i18n.py
Outdated
There was a problem hiding this comment.
Are the changes to this file in the right PR? 😉
| var form = document.querySelector("form[action*='wagtaildocs:add']"); | ||
| if (form) { | ||
| form.addEventListener("submit", function (event) { | ||
| var tagInput = form.querySelector("#id_doc-11-tags"); |
There was a problem hiding this comment.
Does #id_doc-11-tags exist on all document pages? Is 11 the ID of the document, here?
There was a problem hiding this comment.
This is naive. I should correct for this. Thanks for pointing it out
| document.addEventListener("DOMContentLoaded", function () { | ||
| var form = document.querySelector("form[action*='wagtaildocs:add']"); | ||
| if (form) { | ||
| form.addEventListener("submit", function (event) { | ||
| var tagInput = form.querySelector("#id_doc-11-tags"); | ||
| if (tagInput) { | ||
| var tags = tagInput.value.split(","); | ||
| var maxTagLength = 100; | ||
| for (var i = 0; i < tags.length; i++) { | ||
| if (tags[i].trim().length > maxTagLength) { | ||
| var errorPlaceholder = form.querySelector("[data-field-errors-placeholder]"); | ||
| errorPlaceholder.innerHTML = '<p class="error-message">Tag(s) are over 100 characters</p>'; | ||
| event.preventDefault(); | ||
| return; | ||
| } | ||
| } | ||
| } | ||
| }); | ||
| } | ||
| }); |
There was a problem hiding this comment.
This will work only for documents ;) This does not solve the issue for other places where we use the AdminTagWidget.
Fixing it for all places should be in AdminTagWidget itself. So here:
That being said, the proper fix should be done in TagController, which was introduced by @lb- in PR #10100. There is no easy way to create errors though like you did, so we have to find another way. What I suggest is to simply modify cleanTag, which currently looks like this:
wagtail/client/src/controllers/TagController.ts
Lines 83 to 85 in 56c62cc
If we simply truncate the tag to the maximum length allowed, then we don't even have to think about raising errors, the user will understand that the input has a maximum length.
Here is what I suggest we do:
1. Pass the max_length from TagBase.name in the context of AdminTagWidget, so that the JavaScript side knows what is the limit set in the backend
# This goes in `AdminTagWidget.get_context`:
context["widget"]["attrs"]["data-w-tag-options-value"] = json.dumps(
{
"allowSpaces": getattr(settings, "TAG_SPACES_ALLOWED", True),
"tagLimit": getattr(settings, "TAG_LIMIT", None),
"autocompleteOnly": not free_tagging,
"tagMaxLength": TagBase._meta.get_field("name").max_length,
}
) 2. Truncate the tag in the frontend to never be more than the maximum length, in TagController.ts
/**
* Double quote a tag if it contains a space
* and if it isn't already quoted.
* Truncate it if it exceeds max length.
*/
cleanTag(val: string) {
const cleanedTag = val && val[0] !== '"' && val.indexOf(' ') > -1 ? `"${val}"` : val;
const maxLength = this.optionsValue["tagMaxLength"];
if (maxLength) {
return cleanedTag.substring(0, maxLength);
}
return cleanedTag;
}3. Modify TagField.clean so that the end of it raises a validation error when one of the tags is too long
max_length = TagBase._meta.get_field("name").max_length
if any(len(tag) > max_length for tag in tags):
raise forms.ValidationError(
_("Tags cannot be longer than %s characters long.") % max_length,
)
return tags4. Modify BaseDocumentForm.Meta, BaseImageForm.Meta (and BaseMediaForm.Meta in wagtailmedia)
- Remove
"tags": AdminTagWidget,fromwidgets - Add
field_classes = {"tags": TagField}
With only these 4 changes, we should cover perfectly all the models using tags in Wagtail. For the TagController.ts changes, you will have to compile the frontend.
There was a problem hiding this comment.
@BertrandBordage I think it might be not be completely feasible at the moment to specify a field_classes for BaseDocumentForm. It appears all widgets must be passed into the widget attribute as it is part of the convention Wagtail used for working. And then TagField doesn't work when added directly as tags into widgets.
Here is some documentation: https://docs.wagtail.org/en/stable/reference/settings.html#wagtaildocs-document-form-base.
Here is some docs from the source code:
If the base form specifies the 'tags' widget as a plain unconfigured AdminTagWidget,
# substitute one that correctly passes the tag model used on the document model.
# (If the widget has been overridden via WAGTAILDOCS_DOCUMENT_FORM_BASE, leave it
# alone and trust that they know what they're doing)
So I think based on this, it would be the case that specifying field_classes might break WAGTAILDOCS_DOCUMENT_FORM_BASE so it doesn't work.
wagtail/documents/forms.py
Outdated
| def clean_tags(self): | ||
| tags = self.cleaned_data["tags"] | ||
| max_tag_length = 100 | ||
| if any(len(tag) > max_tag_length for tag in tags): | ||
| raise forms.ValidationError("Tag(s) are over 100 characters") | ||
| return tags |
There was a problem hiding this comment.
This would work only for tags in documents. To apply this fix to all the tag fields and documents as well, see my comment below :)
There was a problem hiding this comment.
@BertrandBordage Thanks for the clear step-by-step instructions!
There was a problem hiding this comment.
@BertrandBordage I would think it is better to let them know what is going on than truncating the tags. I would still option for the initial solution of displaying errors. A "non-developer" user might think it is a bug.
There was a problem hiding this comment.
I agree with you, but at the same time... It's already how it happens on all the fields in the admin that have a limit, like Page.title and Page.slug. When you reach their limits, you cannot add more characters.
There was a problem hiding this comment.
@BertrandBordage Yeah, you are right. And they display an error I think when you get past the limit.
wagtail/documents/forms.py
Outdated
| tags = self.cleaned_data["tags"] | ||
| max_tag_length = TagBase._meta.get_field("name").max_length | ||
| if any(len(tag) > max_tag_length for tag in tags): | ||
| raise forms.ValidationError("Tag(s) are over 100 characters") |
There was a problem hiding this comment.
This error message should reference max_tag_length rather than hard-coding the number 100.
Also, this needs tests.
There was a problem hiding this comment.
And this needs to be translatable too
There was a problem hiding this comment.
@gasman and @laymonage thanks for the comment. I will work on it
There was a problem hiding this comment.
I have resolved this
|
@laymonage Please review. |
There was a problem hiding this comment.
The server-side changes make sense to me, although I wonder if there's a way to enforce this validation automatically in custom forms that use tags.
And perhaps we could extract the clean_tags method into a mixin class, and make it so that the BaseDocumentForm and BaseImageForm extend from that, to reduce duplicity.
I'm not sure if it has to be in this PR's scope or if it's something we can do separately, but as mentioned in previous reviews it would be nice to have some handling of this on the client-side as well.
|
I think we can keep this PR scoped to server side and then raise another issue for future enhancements. Unless there is a major push back - I think this would be good to merge in @laymonage |
There was a problem hiding this comment.
This works great @Temidayo32
I will push up a change where we pull this validation logic up into wagtail/admin/forms/tags.py. This should solve for the concerns from @laymonage
As for client-side validation, I think that's a good idea but should be considered for tags as a whole. We do not do this for tag fields inside page editing for example, so I think it's best to be consistent and keep this server side. Maybe if we revisit the tags widget we can look at client-side validation. I have added a note here #11089 (comment)
Screenshots
I have included a smoke test of non-multiple upload validation also.
This PR resolves #11054. As reported in the issue, the document page throwing a 500-network error, while on the frontend side, the
Updatebutton spins endlessly. I successfully reproduced the error before attempting a fix. Here is what the fix looks like from the frontend side.Thanks to @BertrandBordage for pointing out the issue and for making useful suggestions in resolving the issue.
Please check the following:
make lintfrom the Wagtail root.Please describe additional details for testing this change.
Footnotes
Development Testing ↩
Browser and device support ↩
Accessibility Target ↩