Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Rails ActiveRecord validation: maximum length of a string?

Tags:

validation

ruby-on-rails

activerecord

I have these string / text fields in my database migration file:

  t.string :author
  t.string :title
  t.string :summary
  t.text :content
  t.string :link

And these are my questions:

  1. Every string / text attribute should have a maximum length validation for both purposes, security (if you don't want to receive a few MB of text input) and database (if string = varchar, mysql has a 255 characters limit). Is that right or is there any reason not to have a maximum length validation for totally every string / text attribute in the database?
  2. If I don't care about the exact length of author and title as long, as they are not too long to be stored as strings, should I set a maximum length to 255 for each of those?
  3. If the maximum possible length of URL is about 2000 characters, is it safe to store links as strings, and not as texts? Should I be validating a maximum length of the link attribute if I am already validating its format using regexp?
  4. Should a content (text) attribute have a maximum length just to protect the database from the input of an unlimited length? For example, is setting a maximum length of a text field to 100,000 characters reasonable, or is this totally pointless and inefficient?

I understand, that these questions might seem unimportant to some people, but still – that's a validation of input, which is required for any application, – and I think it's worth to be rather paranoid here.

like image 972
krn Avatar asked Jun 11 '12 23:06

krn

People also ask

How does validate work in Rails?

Rails validation defines valid states for each of your Active Record model classes. They are used to ensure that only valid details are entered into your database. Rails make it easy to add validations to your model classes and allows you to create your own validation methods as well.

What is ActiveRecord in Ruby on Rails?

What is ActiveRecord? ActiveRecord is an ORM. It's a layer of Ruby code that runs between your database and your logic code. When you need to make changes to the database, you'll write Ruby code, and then run "migrations" which makes the actual changes to the database.

What is the difference between string and text in Rails?

As you are probably aware, both string and text save “string-type” information that you can freely write in. The difference between the two is how many characters you can put in these fields. A string field has a limit of 255 characters, whereas a text field has a character limit of 30,000 characters.

1 Answers

The question is great, and perhaps people with more knowledge of rails/mysql internals will be able to expand more.

1) Having any validation in the model depends where you want the failure to happen in case it exceeds the limit. The model is the best option since most likely it will cover most objects using the model. Other alternative is simply limiting form fields using maxlength attribute.

The first option does not work for optional fields.

2) I am not aware of any rule of thumb. Use whatever you know is the longest and make it a bit bigger.

3) My rule is that anything above 255 is text. You can find more info on this Here

4) If the column holds the same content - there might be value in that. Some use cases might have different maxlength depending on content type or user.

All of the above is also affected by how strict data validation requirements are in the project.

like image 124
mbdev Avatar answered Sep 23 '22 03:09

mbdev
Sign in to Comment

Related questions

What is the elegant solution for unrelated views in MVC web frameworks?
WebSockets and Heroku: pushing data to the user
How to add existing records to has_many without it saving to the DB immediately?
Why are my tests slow after upgrading rails from 3.1.0 to 3.2.0?
How can I troubleshoot MySQL Lock Timeout Errors with Rails?
wkhtmltopdf attempting to load from http rather than file
What can I do about unicorn::clientshutdown errors on my heroku rails app?
Run rails code after an update to the database has commited, without after_commit
Rails, be a pal and reset the database between test suites
Heroku + Rails4.2 : Cloudfront setup
Indentation in ERB templates
How to limit Phusion Passenger memory usage?
RSpec should redirect_to problem
Rails model generator - from existing database
Is there a Ruby database migration gem, that helps you move content from an old structure to a new structure?
Graph Database in ruby?
How do I attach a prawnto-rendered .pdf to an email in Rails 2.3.5?
Rails 3: Proper way to Delete resource using respond_with
Backbone.js server-side validation and other server-side errors
Custom parameters in URL for show action

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!