ETQ tech: je veux publier les fichiers opendata selon les bonnes pratiques de data.gouv #11100

Benoit-MINT · 2024-11-28T16:57:59Z

Dans le dataset "utilisation de DS" : https://www.data.gouv.fr/fr/datasets/utilisation-du-service-demarches-simplifiees/
Aujourd'hui, on ajoute chaque mois une nouvelle resource par type de données :

Nombre d'instructeurs connectés par mois
Nombre de comptes usagers créés avec France Connect par mois
Nombre de démarches supprimées par mois
Nombre de démarches closes par mois
Nombre de démarches publiées par mois
Nombre de comptes créés par mois
Nombre de dossiers créés par mois
Nombre d'instructeurs créés par mois
Nombre d'administrateurs créés par mois
Ceci ne suit pas les bonnes pratiques de data.gouv pour faciliter la réutilisation.
Il est préférable de maintenir à jour, chaque mois, une même resource par type de données. Cela revient à ajouter de nouvelles lignes aux mêmes fichiers.

PR en draft, cas d'usage sur "Nombre de comptes créés par mois"

app/jobs/cron/datagouv/account_by_month_job.rb

codecov · 2024-11-28T17:05:56Z

Codecov Report

Attention: Patch coverage is 79.48718% with 32 lines in your changes missing coverage. Please review.

Project coverage is 77.00%. Comparing base (08c963a) to head (4a3cf07).
Report is 319 commits behind head on main.

Files with missing lines	Patch %	Lines
app/lib/api_datagouv/api.rb	36.36%	14 Missing ⚠️
app/jobs/cron/datagouv/account_by_month_job.rb	53.84%	6 Missing ⚠️
app/jobs/cron/datagouv/procedure_by_month_job.rb	53.84%	6 Missing ⚠️
...user_connected_with_france_connect_by_month_job.rb	53.84%	6 Missing ⚠️

❗ There is a different number of reports uploaded between BASE (08c963a) and HEAD (4a3cf07). Click for more details.

HEAD has 10 uploads less than BASE

Flag BASE (08c963a) HEAD (4a3cf07)

16 6

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #11100      +/-   ##
==========================================
- Coverage   84.35%   77.00%   -7.36%     
==========================================
  Files        1176     1186      +10     
  Lines       25942    26703     +761     
  Branches     4896     4848      -48     
==========================================
- Hits        21884    20562    -1322     
- Misses       4058     6141    +2083

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

app/jobs/cron/datagouv/account_by_month_job.rb

…crees

app/services/generate_open_data_service.rb

app/lib/api_datagouv/api.rb

+
+      url = JSON.parse(response.body)["url"]
+
+      response = Typhoeus.get(url)


To fix the problem, we need to ensure that the URL extracted from the response.body is validated before being used in the subsequent HTTP request. One way to do this is to check that the URL belongs to a trusted domain. We can use the URI module to parse the URL and verify its host.

Add a method to validate the URL.

Use this method to check the URL before making the HTTP request on line 28.

github-advanced-security bot found potential problems Nov 28, 2024

View reviewed changes

app/jobs/cron/datagouv/account_by_month_job.rb Fixed Show fixed Hide fixed

app/jobs/cron/datagouv/account_by_month_job.rb Fixed Show fixed Hide fixed

app/jobs/cron/datagouv/account_by_month_job.rb Fixed Show fixed Hide fixed

Benoit-MINT force-pushed the opendata-new-publication-dataset branch from fa02bd0 to 72004a0 Compare December 4, 2024 08:26

github-advanced-security bot found potential problems Dec 4, 2024

View reviewed changes

app/jobs/cron/datagouv/account_by_month_job.rb Fixed Show fixed Hide fixed

github-advanced-security bot found potential problems Dec 4, 2024

View reviewed changes

app/jobs/cron/datagouv/account_by_month_job.rb Fixed Show fixed Hide fixed

refacto process actuel de publication, sur la ressource : nb_comptes_…

b1ab243

…crees

Benoit-MINT force-pushed the opendata-new-publication-dataset branch 6 times, most recently from a232d00 to aae1858 Compare December 9, 2024 15:22

github-advanced-security bot found potential problems Dec 9, 2024

View reviewed changes

app/services/generate_open_data_service.rb Fixed Show fixed Hide fixed

Benoit-MINT force-pushed the opendata-new-publication-dataset branch from 1c96411 to 035a21b Compare December 9, 2024 16:15

LeSim force-pushed the opendata-new-publication-dataset branch from dfab2f4 to 40bb9a0 Compare December 13, 2024 09:53

github-advanced-security bot found potential problems Dec 13, 2024

View reviewed changes

app/lib/api_datagouv/api.rb Fixed Show fixed Hide fixed

Benoit-MINT force-pushed the opendata-new-publication-dataset branch from 40bb9a0 to e235152 Compare December 13, 2024 17:59

github-advanced-security bot found potential problems Dec 13, 2024

View reviewed changes

Benoit-MINT force-pushed the opendata-new-publication-dataset branch from e235152 to 87c86c7 Compare December 13, 2024 18:19

Benoit-MINT added 4 commits December 23, 2024 15:41

vérification de l'existence du fichier

bd17f1d

si pas de fichier existant, on ajoute les données du mois précédent

091d757

si fichier existant, on ajoute les données manquantes

1c47b53

on upload sur datagouv le nouveau fichier

6ae3f11

Benoit-MINT force-pushed the opendata-new-publication-dataset branch 3 times, most recently from 6d6cf8e to 137797a Compare December 23, 2024 15:16

Benoit-MINT added 4 commits December 23, 2024 16:49

refacto de Sim

3c6530a

refacto test de Sim : account_by_month_job_spec

902f9f2

base_job: refacto en vue des autres resources

74fd130

resource: administrateur_by_month

7601b8a

Benoit-MINT added 9 commits December 23, 2024 16:49

resource: file_by_month

d55cf37

resource: file_depose_by_month

97ee516

resource: instructeur_by_month

e748f6f

resource: instructeur_connected_by_month

6b5bb3a

resource: procedure_by_month

69548ed

resource: procedure_closed_by_month

3952d47

suppression de la resource procedure_deleted_by_month

d8e1056

resource: user_connected_with_france_connect_by_month

3349e06

suppression des id dataset et resource des secrets

4a3cf07

Benoit-MINT force-pushed the opendata-new-publication-dataset branch from 137797a to 4a3cf07 Compare December 23, 2024 15:50

@@ -1,3 +1,3 @@
             # frozen_string_literal: true
+            require 'uri'
             class APIDatagouv::API
@@ -26,2 +26,3 @@
                   url = JSON.parse(response.body)["url"]
+                  validate_url(url)
@@ -94,2 +95,10 @@
               end
+              private
+              def validate_url(url)
+                uri = URI.parse(url)
+                raise "Invalid URL" unless uri.host == "www.data.gouv.fr"
+              rescue URI::InvalidURIError
+                raise "Invalid URL"
+              end
             end

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ETQ tech: je veux publier les fichiers opendata selon les bonnes pratiques de data.gouv #11100

ETQ tech: je veux publier les fichiers opendata selon les bonnes pratiques de data.gouv #11100

Benoit-MINT commented Nov 28, 2024 •

edited

Loading

codecov bot commented Nov 28, 2024 •

edited

Loading

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.


		url = JSON.parse(response.body)["url"]

		response = Typhoeus.get(url)

ETQ tech: je veux publier les fichiers opendata selon les bonnes pratiques de data.gouv #11100

Are you sure you want to change the base?

ETQ tech: je veux publier les fichiers opendata selon les bonnes pratiques de data.gouv #11100

Conversation

Benoit-MINT commented Nov 28, 2024 • edited Loading

codecov bot commented Nov 28, 2024 • edited Loading

Codecov Report

Benoit-MINT commented Nov 28, 2024 •

edited

Loading

codecov bot commented Nov 28, 2024 •

edited

Loading