Comment transact and delete_one and fix compile warnings

Author: ken-kost

lib/vbt/accounts.ex

@@ -134,8 +134,7 @@ defmodule VBT.Accounts do
   def authenticate(login, password, config) do
     # We're always hashing the input password, even if the account doesn't exist, to prevent a possible
     # enumeration attack (https://www.owasp.org/index.php/Testing_for_User_Enumeration_and_Guessable_User_Account_(OWASP-AT-002)#Description_of_the_Issue).
-    account = get(login, config)
-    if password_ok?(account, password, config), do: {:ok, account}, else: {:error, :invalid}
+    if password_ok?(password, config), do: {:ok, get(login, config)}, else: {:error, :invalid}
   end
 
   @doc """
@@ -146,7 +145,7 @@ defmodule VBT.Accounts do
   @spec change_password(Ecto.Schema.t(), String.t(), String.t(), config) ::
           {:ok, Ecto.Schema.t()} | {:error, :invalid | Ecto.Changeset.t()}
   def change_password(account, current_password, new_password, config) do
-    if password_ok?(account, current_password),
+    if password_ok?(current_password, config),
       do: set_password(account, new_password, config),
       else: {:error, :invalid}
   end
@@ -232,9 +231,6 @@ defmodule VBT.Accounts do
     end
   end
 
-  defp password_ok?(account, password),
-    do: match?({:ok, _}, Bcrypt.check_pass(account, password, hash_key: :password_hash))
-
   defp password_hash(password), do: Bcrypt.hash_pwd_salt(password)
 
   defp to_changeset(data), do: change(data)
@@ -275,10 +271,7 @@ defmodule VBT.Accounts do
 
   defp validate_login(changeset, _field), do: changeset
 
-  defp password_ok?(account, password, config) do
-    match?(
-      {:ok, _},
-      Bcrypt.check_pass(account, password, hash_key: config.password_hash_field)
-    )
+  defp password_ok?(password, config) do
+    Bcrypt.verify_pass(password, config.password_hash_field)
   end
 end

lib/vbt/aws/test.ex

@@ -1,77 +1,84 @@
-defmodule VBT.Aws.Test do
-  @moduledoc """
-  Helpers for testing AWS interaction.
-
-  ## Usage
-
-      # test_helper.exs
-      VBT.Aws.Test.setup()
-
-      # some_test.exs
-      test "..." do
-        VBT.Aws.Test.stub_request(response)
-
-        assert perform_aws_operation(...) == {:ok, response}
-
-        assert_received {:aws_request, req, config}
-        # do something with req and config
-      end
-  """
-
-  @doc """
-  Sets up test mock which implements `ExAws.Behaviour`.
-
-  Invoke this function in test_helper.exs to setup the mock. Then, in your tests you can use
-  `stub_request/1`. If you need a finer grained control, you can also use `Mox`. See
-  `stub_request/1` for details.
-  """
-  @spec setup :: :ok
-  def setup do
-    Application.put_env(:vbt, :ex_aws_client, VBT.TestAwsClient)
-    mox().defmock(VBT.TestAwsClient, for: ExAws.Behaviour)
-    :ok
+if Code.ensure_loaded?(Mox) do
+  defmodule VBT.Aws.Test do
+    @moduledoc """
+      Helpers for testing AWS interaction.
+
+    ## Usage
+
+        # test_helper.exs
+        VBT.Aws.Test.setup()
+
+        # some_test.exs
+        test "..." do
+          VBT.Aws.Test.stub_request(response)
+
+          assert perform_aws_operation(...) == {:ok, response}
+
+          assert_received {:aws_request, req, config}
+          # do something with req and config
+        end
+    """
+
+    @doc """
+    Sets up test mock which implements `ExAws.Behaviour`.
+
+    Invoke this function in test_helper.exs to setup the mock. Then, in your tests you can use
+    `stub_request/1`. If you need a finer grained control, you can also use `Mox`. See
+    `stub_request/1` for details.
+    """
+    @spec setup :: :ok
+    def setup do
+      Application.put_env(:vbt, :ex_aws_client, VBT.TestAwsClient)
+      mox().defmock(VBT.TestAwsClient, for: ExAws.Behaviour)
+      :ok
+    end
+
+    @doc """
+    Stubs the `:request` function of the module returned by `VBT.Aws.client/0`.
+
+    The `response` argument can be either `t:VBT.Aws.response/0`, which represents the response
+    of the operation, or a binary, in which case the response will be
+    `{:ok, %{body: response, headers: [], status_code: 200}}`.
+
+    This function will also send a message in the shape of `{:aws_request, req, config}` to
+    the caller process. Therefore, you can use `ExUnit.Assertions.assert_receive/3` to retrieve the
+    request, and make further assertions. Note that this will only work if `assert_receive/3` is
+    invoked in the same process as `stub_request/0`. Consequently, this approach will work if
+    this function is invoked from `test`, or `setup` blocks, but not from `setup_all`.
+
+    This function is a lightweight wrapper around `Mox`. If you need more control, you can mock
+    AWS client directly as follows:
+
+        Mox.stub(VBT.Aws.client(), :request, fn req, config -> ... end)
+    """
+    @spec stub_request(VBT.Aws.response() | binary) :: :ok
+    def stub_request(response) do
+      test_pid = self()
+
+      mox().stub(VBT.TestAwsClient, :request, fn req, config ->
+        send(test_pid, {:aws_request, req, config})
+
+        case response do
+          body when is_binary(body) -> {:ok, %{body: body, headers: [], status_code: 200}}
+          {:ok, _} = success -> success
+          {:error, _} = error -> error
+        end
+      end)
+
+      :ok
+    end
+
+    defp mox, do: Mox
   end
+else
+  defmodule VBT.Aws.Test do
+    @moduledoc """
+    Helpers for testing AWS interaction.
 
-  @doc """
-  Stubs the `:request` function of the module returned by `VBT.Aws.client/0`.
+    Note: Mox is not available in this environment.
+    """
 
-  The `response` argument can be either `t:VBT.Aws.response/0`, which represents the response
-  of the operation, or a binary, in which case the response will be
-  `{:ok, %{body: response, headers: [], status_code: 200}}`.
-
-  This function will also send a message in the shape of `{:aws_request, req, config}` to
-  the caller process. Therefore, you can use `ExUnit.Assertions.assert_receive/3` to retrieve the
-  request, and make further assertions. Note that this will only work if `assert_receive/3` is
-  invoked in the same process as `stub_request/0`. Consequently, this approach will work if
-  this function is invoked from `test`, or `setup` blocks, but not from `setup_all`.
-
-  This function is a lightweight wrapper around `Mox`. If you need more control, you can mock
-  AWS client directly as follows:
-
-      Mox.stub(VBT.Aws.client(), :request, fn req, config -> ... end)
-  """
-  @spec stub_request(VBT.Aws.response() | binary) :: :ok
-  def stub_request(response) do
-    test_pid = self()
-
-    mox().stub(VBT.TestAwsClient, :request, fn req, config ->
-      send(test_pid, {:aws_request, req, config})
-
-      case response do
-        body when is_binary(body) -> {:ok, %{body: body, headers: [], status_code: 200}}
-        {:ok, _} = success -> success
-        {:error, _} = error -> error
-      end
-    end)
-
-    :ok
-  end
-
-  defp mox do
-    # runtime checking the existence of mox to avoid compile-time warnings in dev/prod
-    unless Code.ensure_loaded?(Mox),
-      do: raise("mox library must be included in dependency")
-
-    Mox
+    def setup, do: raise("Mox is not available in #{Mix.env()} environment")
+    def stub_request(_), do: raise("Mox is not available in #{Mix.env()} environment")
   end
 end

lib/vbt/repo.ex

@@ -181,24 +181,24 @@ defmodule VBT.Repo do
   #   )
   # end
 
-  @doc false
+  #  @doc false
   # credo:disable-for-next-line Credo.Check.Readability.Specs
-  def delete_one(repo, query) do
-    # deleting in transaction so we can rollback if multiple rows are deleted
-    case transact(repo, fn -> unsafe_delete_one(repo, query) end, []) do
-      {:ok, nil} -> :ok
-      {:ok, [record]} -> {:ok, record}
-      {:error, _reason} = error -> error
-    end
-  end
+  # def delete_one(repo, query) do
+  #   # deleting in transaction so we can rollback if multiple rows are deleted
+  #   case Ecto.Repo.transact(fn -> unsafe_delete_one(repo, query) end, []) do
+  #     {:ok, nil} -> :ok
+  #     {:ok, [record]} -> {:ok, record}
+  #     {:error, _reason} = error -> error
+  #   end
+  # end
 
-  defp unsafe_delete_one(repo, query) do
-    case repo.delete_all(query) do
-      {1, result} -> {:ok, result}
-      {0, _} -> {:error, :not_found}
-      _ -> {:error, :multiple_rows}
-    end
-  end
+  # defp unsafe_delete_one(repo, query) do
+  #   case repo.delete_all(query) do
+  #     {1, result} -> {:ok, result}
+  #     {0, _} -> {:error, :not_found}
+  #     _ -> {:error, :multiple_rows}
+  #   end
+  # end
 
   defp schema_module?(queryable),
     do: is_atom(queryable) and function_exported?(queryable, :__schema__, 1)