FYST-792: ID Grocery Credit #4897
Conversation
mrotondo
added
the
wip
Co-authored-by: Mike Rotondo <[email protected]>
Co-authored-by: Mike Rotondo <[email protected]>
Co-authored-by: Hugo Melo <[email protected]>
Co-authored-by: Hugo Melo <[email protected]>
Co-authored-by: Hugo Melo <[email protected]>
|
Heroku app: https://gyr-review-app-4897-3d3a6ab9ef27.herokuapp.com/ |
…rking on grocery credit review
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
mrotondo
removed
the
wip
…due to the existing override of honeycrisp's list--bulleted used elsewhere
… sure filers are synchronized in factory
Co-authored-by: Mike Rotondo <[email protected]>
…cting ineligible months
… xml, and synchronize filers from json by default
…use that in Idaho to allow primary and spouse name and dob to be configured in tests
…ing primary/spouse info if it was provided to the factory
… overrides of default json contents with nil
| updated_dependent_data = dependents_attributes | ||
|
|
||
| # set household member "has months" answers to no if household "has months" answer is no | ||
| if base_attrs[:household_has_grocery_credit_ineligible_months] == 'no' |
There was a problem hiding this comment.
this is just a non-related question that I also discussed just now with Drew, but why do we use enum instead of boolean for these types of fields?
There was a problem hiding this comment.
Enums let us track yes/no/unfilled instead of just true/false, which I think is primarily useful when generating output for optional pages, though we don't check the unfilled value of this answer anywhere IIRC. Someone who's been on the team longer than me can give a better answer here :) I don't feel very strongly about it either way, mostly just following convention.
There was a problem hiding this comment.
@DrewProebstel for more context
also @jenny-heath @embarnard @mpidcock @tahsinaislam if there was more reasoning for this choice (unfilled is similar to nil, no?)
There was a problem hiding this comment.
FWIW I think that the decision to move away from using "unfilled" rather than nil as a default value in the app is well outside the scope of this PR, so discussion on that should probably happen elsewhere for posterity & visibility
| end | ||
|
|
||
| updated_dependent_data = updated_dependent_data.to_h do |k, v| | ||
| credit_count_key = v.key?(:id_months_ineligible_for_grocery_credit) |
There was a problem hiding this comment.
can we call this has_credit_count_key to be more clear
| selector_info => { type:, key: } | ||
| key_path = key.split | ||
| case type | ||
| when :date |
There was a problem hiding this comment.
should we also handle setting a boolean value ("true") or a money_amount value (& convert to the two decimal amount)? Just seeing that you handled the date and wondering why that one specifically
There was a problem hiding this comment.
I believe but am not sure that dates are the only value whose string representation doesn't just already look the way we want, so they were the only one that needed extra formatting. But I was pretty deep into this story by the time I did this and was just trying to finish up, so maybe the others do need to be there! We don't use this for anything but strings & dates yet, in any case.
| </div> | ||
|
|
||
| <div class="reveal"> | ||
| <p><a href="#" class="reveal__link"><%= t('.donate_impact_heading') %></a></p> |
There was a problem hiding this comment.
change to <button class="reveal__button"> after merging in main
| </div> | ||
|
|
||
| <div class="reveal"> | ||
| <p><a href="#" class="reveal__link"><%= t('.why_are_you_asking_heading') %></a></p> |
There was a problem hiding this comment.
change to <button class="reveal__button"> after merging main
| @@ -36,6 +36,10 @@ def initialize(json) | |||
| @data = JSON.parse(json || "{}") | |||
| end | |||
|
|
|||
| def to_s | |||
| @data.to_s | |||
| end | |||
There was a problem hiding this comment.
Good catch. I originally added it because I incorrectly used it on state_file_id_intakes.rb:122 instead of to_json, but now that I look more closely, I introduced a bug when I switched over to calling to_json, as it's now returning a json string of the entire DirectFileJsonData object (i.e. it has {data: {...}}) instead of just its stored json object. So this needs to be changed to a to_json that exposes @data, e.g.
def to_json
@data.to_json
end
or
delegate :to_json, to: :data
|
since @mrotondo is out today & we spent time working on this, i am going to give it a go addressing merge conflicts & handle some of the questions. 🤞 |
|
Thanks for hopping in @anisharamnani! Just popping my head up to answer a few questions. |
# Conflicts: # app/javascript/lib/honeycrisp.js # app/lib/efile/id/id40_calculator.rb # app/lib/efile/line_data.yml # app/lib/navigation/state_file_id_question_navigation.rb # app/lib/pdf_filler/id40_pdf.rb # app/lib/submission_builder/ty2024/states/id/documents/id40.rb # app/models/state_file_base_intake.rb # app/models/state_file_id_intake.rb # config/locales/en.yml # config/locales/es.yml # db/schema.rb # spec/factories/state_file_id_intakes.rb # spec/features/state_file/complete_intake_spec.rb # spec/lib/efile/id/id40_calculator_spec.rb # spec/lib/submission_builder/ty2024/states/id/documents/id40_spec.rb # spec/models/efile_error_spec.rb # spec/models/state_file_id_intake_spec.rb
|
hello @mrotondo! this is just a note for when you return, @mpidcock and i were able to make a merge in main and resolve the merge conflicts. 🎉 we've found that this issue you mentioned in slack is still occurring where if you select yes, then select no, the calculations still appear on the following page. something may have changed with the merge conflicts to create this error? i am not sure, but we felt like we got as far as we could go with it. |
Co-authored-by: Mike Rotondo <[email protected]>
Co-authored-by: Mike Rotondo <[email protected]>
Co-authored-by: Mike Rotondo <[email protected]>
…nabling/disabling followups, and ignore any dependents_attributes hashes that don't have ids in them
| $(this).find('input').each(function (index, input) { | ||
| if ($(this).attr('data-follow-up') != null) { | ||
| if ($(this).is(':checked')) { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', false); |
Check warning
Code scanning / CodeQL
DOM text reinterpreted as HTML Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 17 minutes ago
To fix the problem, we need to ensure that the value extracted from the data-follow-up attribute is treated as a plain text string and not as HTML. This can be achieved by using a method that safely escapes any HTML meta-characters in the attribute value before using it in a jQuery selector.
The best way to fix this issue without changing existing functionality is to use the $.escapeSelector method provided by jQuery. This method escapes any characters that have special meaning in a CSS selector, thus preventing the possibility of XSS.
| @@ -107,7 +107,7 @@ | ||
| if ($(this).is(':checked')) { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', false); | ||
| $($(this).attr('data-follow-up')).show(); | ||
| $($.escapeSelector($(this).attr('data-follow-up'))).find('input, select').attr('disabled', false); | ||
| $($.escapeSelector($(this).attr('data-follow-up'))).show(); | ||
| } else { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', true); | ||
| $($(this).attr('data-follow-up')).hide(); | ||
| $($.escapeSelector($(this).attr('data-follow-up'))).find('input, select').attr('disabled', true); | ||
| $($.escapeSelector($(this).attr('data-follow-up'))).hide(); | ||
| } |
| if ($(this).attr('data-follow-up') != null) { | ||
| if ($(this).is(':checked')) { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', false); | ||
| $($(this).attr('data-follow-up')).show(); |
Check warning
Code scanning / CodeQL
DOM text reinterpreted as HTML Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 17 minutes ago
To fix the problem, we need to ensure that the value of the data-follow-up attribute is safely used as a selector without the risk of executing arbitrary HTML or JavaScript. One way to achieve this is by using the $.find method instead of $, which interprets the value strictly as a CSS selector and not as HTML.
- Replace the usage of
$($(this).attr('data-follow-up'))with$(self).find($(this).attr('data-follow-up'))to ensure that the value is treated as a CSS selector within the context of the current element. - This change should be made on lines 109, 111, 132, and 133.
| @@ -107,7 +107,7 @@ | ||
| if ($(this).is(':checked')) { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', false); | ||
| $($(this).attr('data-follow-up')).show(); | ||
| $(self).find($(this).attr('data-follow-up')).find('input, select').attr('disabled', false); | ||
| $(self).find($(this).attr('data-follow-up')).show(); | ||
| } else { | ||
| $($(this).attr('data-follow-up')).find('input, select').attr('disabled', true); | ||
| $($(this).attr('data-follow-up')).hide(); | ||
| $(self).find($(this).attr('data-follow-up')).find('input, select').attr('disabled', true); | ||
| $(self).find($(this).attr('data-follow-up')).hide(); | ||
| } | ||
| @@ -131,4 +131,4 @@ | ||
| if (/^[a-zA-Z0-9_\-#\.]+$/.test(followUpSelector)) { | ||
| $(followUpSelector).show(); | ||
| $(followUpSelector).find('input, select').attr('disabled', false); | ||
| $container.find(followUpSelector).show(); | ||
| $container.find(followUpSelector).find('input, select').attr('disabled', false); | ||
| } |
…erify that we fixed the nested followups/honeycrisp update bug
…om grocery credit month columns
Link to pivotal/JIRA issue
Is PM acceptance required? (delete one)
Reminder: merge main into this branch and get green tests before merging to main
What was done?
NameDobandAzSeniorDependentsas examplesHow to test?
Screenshots (for visual changes)