#amber on 2020-05-08 — irc logs at freenode.irclog.whitequark.org

2018-06-22 23:33 faustinoaq changed the topic of #amber to: Welcome to Amber Framework community! | https://amberframework.org | Developer happiness, productivity and bare metal performance | GH: https://github.com/amberframework | Docs: https://docs.amberframework.org | Gitter: https://gitter.im/amberframework/amber | IRC Logger: https://irclog.whitequark.org/amber | Amber::Server.start

00:09 <FromGitter> <straight-shoota> Hey, could anyone familiar with amber/granite take a look at this SO question? ⏎ https://stackoverflow.com/questions/61575193/created-expected-created-to-be-time-nil-but-got-float64-string

00:20 <FromGitter> <Blacksmoke16> moment

00:21 <FromGitter> <Blacksmoke16> id ask why he needs `created`, `timestamps` macro adds `created_at` and `updated_at` for them

10:57 <FromGitter> <Uzay-G> How can I create a button that sends a `delete` request?

10:57 <FromGitter> <Uzay-G> I tried this: ```<form action="/bots/<%= bot.id %>" class="button"> ⏎ <%= csrf_tag %> ⏎ <input type="hidden" name="_method" value="delete" /> ⏎ <button type="submit">Delete</button> ⏎ </form>``` [https://gitter.im/amberframework/amber?at=5eb53b0b3d58de7a38017b7a]

10:58 <FromGitter> <Uzay-G> I tried this:

10:58 <FromGitter> <Uzay-G> ```code paste, see link``` [https://gitter.im/amberframework/amber?at=5eb53b4297338850a2f5a8dc]

12:41 <FromGitter> <Blacksmoke16> `<form action="/bots/<%= bot.id %>" method="delete">`?

12:41 <FromGitter> <Uzay-G> no that didnt work either

12:42 <FromGitter> <Uzay-G> I ended up doing this:

12:42 <FromGitter> <Uzay-G> ```code paste, see link```

12:46 <FromGitter> <Blacksmoke16> 👍

14:53 <FromGitter> <ikaru5> Anyone familiar with this warning: ⏎ ```In /home/ikarus/.crenv/versions/0.34.0/share/crystal/src/logger.cr:124:3 ⏎ ⏎ 124 | def initialize(@io : IO?, @level = Severity::INFO, @formatter = DEFAULT_FORMATTER, @progname = "") ⏎ ... [https://gitter.im/amberframework/amber?at=5eb572839f0c955d7db17a98]

14:54 <FromGitter> <Uzay-G> yeah same

14:54 <FromGitter> <Uzay-G> I noticed when using ECR with amber, nothing gets escaped, so for example if my username is `<h1>User</h1>` the html actually gets rendered

14:55 <FromGitter> <Uzay-G> is there anything to prevent this?

14:55 <FromGitter> <Uzay-G> Rails/ERB escapes by default

15:12 <FromGitter> <Blacksmoke16> @ikaru5 are you using the old `Logger` module at all? Or a shard you have required?

15:12 <FromGitter> <Blacksmoke16> See https://github.com/crystal-lang/crystal/issues/9245

15:13 <FromGitter> <ikaru5> @Blacksmoke16 Yeah, for Granite: ⏎ Granite.settings.logger = Amber.settings.logger.dup

15:13 <FromGitter> <Blacksmoke16> granite will have a release coming out soon to fix it

15:14 <FromGitter> <Uzay-G> @Blacksmoke16 do you have any tips for the problem I mentioned above?

15:14 <FromGitter> <Blacksmoke16> in the mean time could maybe set it to master, or the latest commit in master

15:14 <FromGitter> <Uzay-G> it's pretty essential for web security

15:14 <FromGitter> <Blacksmoke16> no sorry, i dont really much about server rendering stuff

15:14 <FromGitter> <ikaru5> ah, okay :) Thank you!

15:15 <FromGitter> <ikaru5> Do I still need this setting in my database.cr than? Or should I change it to something new?

15:16 <FromGitter> <Blacksmoke16> uh no idea

15:16 <FromGitter> <Blacksmoke16> prob dont need it anymore considering `Granite.settings.logger` isnt a thing anymore

16:19 <FromGitter> <ikaru5> @Blacksmoke16 I have updated all shards to master... even micrate :D Removed also quartz_mailer, it had some Logger calls. But still getting some of this warnings... can i just disable them somehow?

16:31 <FromGitter> <drujensen> you can try adding `--exclude-warnings` to the `.amber.yml` compile command for crystal.

17:49 <FromGitter> <Uzay-G> I made this issue for the sanitization: https://github.com/amberframework/amber/issues/1198