The Art of Form Validation

FORM validation
#TheLaravelKid BEGINS
LARACON.EU
The Art of

View Slide

So, validtaion…

View Slide

So, validation…
It's required, right?

View Slide

I'm Caneco
Full-Stack Developer ! MEDICARE
caneco.xyz

View Slide

I'm Caneco
.PHP .JS .HTML .CSS .JSON .SQL
.GIT .SH .SVG .PNG .PSD .AI

View Slide

I'm Caneco
@enunomaduro's "Schoger"

View Slide

I'm Caneco
from Lisbon, Portugal
Netherlands here
Spain here
Portugal here

View Slide

WARNING
ALL THE FOLLOWING SLIDES CONTAIN
VALUABLE INFORMATION FOR YOUR DAILY
LIFE… ALL GIFS ARE FROM THE BADASS TV
SHOW COBRA KAI THAT YOU ALL MUST
WATCH… AND ALL THE SLIDES, AND
CONTENT ARE 100% MADE ON KEYNOTE ̈

View Slide

LET'S BEGIN

View Slide

Why validate?

View Slide

On a regular day in 2019

View Slide

500 million tweets
source: weforum.org

View Slide

294 billion emails
source: weforum.org

View Slide

5 billion searches
source: weforum.org

View Slide

~300 new posts on
laracasts.com/discuss
source: the Jeffrey Way

View Slide

~64.5K downloads
of Spatie packages
source: spatie.be/open-source

View Slide

It's a LOT of data

View Slide

It's a
LOT of data

View Slide

through APIs
[GET] skyscanner-example.dev/v1/ﬂights
[PATCH] zomato-example.dev/place/123/book
[GET] openweather-example.dev/fatima
[GET] musixmatch-example.dev/top-10
[GET] nasa-example.dev/v9999/planet-x
[GET] numbers-example.dev/random-number
[GET] urbandictionary-example.dev/tldr
[GET] tempmail-example.dev/fresh
[GET] moviedatabase-example.dev/v1/top/horror
[GET] ip-example.dev/127.0.0.1

View Slide

or in forms

View Slide

Validation… do
we really need it?

View Slide

Can't we trust our users?

View Slide

MOST DEF

View Slide

It's purely just for fun

View Slide

Validation 101

View Slide

SIGN IN
Sign in
Email address
Password
SENDING

View Slide

SIGN IN
Sign in
These credentials do not match our records.
Email address
Password

View Slide

1
2
3
4
▶
9
10
11
12
name="username"
type="text"
"#
""$
name="password"
type="password"
"#

View Slide

1
2
3
4
5
▶
8
9
10
11
12
name="username"
type="text"
required
"#
""$
name="password"
type="password"
required
"#

View Slide

SIGN IN
Sign in
Email address
Password
Please fill in this field.
Please fill in this field.

View Slide

Sign in
Email address
example
Password
●●●●●●
SIGN IN
SENDING

View Slide

SIGN IN
Sign in
Email address
example
Password

View Slide

1
2
3
4
5
▶
8
9
10
11
12
name="username"
type="text"
required
"#
""$
name="password"
type="password"
required
"#

View Slide

1
2
3
4
5
▶
8
9
10
11
12
name="username"
type="email"
required
"#
""$
name="password"
type="password"
required
"#

View Slide

SIGN IN
Sign in
Email address
example
Password
●●●●●●
Please include an '@' in the email address.

View Slide

SIGN IN
Sign in
Email address
[email protected]
Password
●●●●●●
Please enter a part following '@'.

View Slide

SIGN IN
Sign in
Email address
[email protected]
Password
●●●●●●
SENDING
email

View Slide

SIGN IN
Sign in
Email address
[email protected]
Password
●●●●●●

View Slide

1
2
3
4
5
▶
8
9
10
11
12
name="username"
type="email"
required
"#
""$
name="password"
type="password"
required
"#

View Slide

1
2
3
4
5
6
▶
8
9
10
11
12
name="username"
type="email"
pattern="[email protected]+\"%+"
required
"#
""$
name="password"
type="password"
required
"#

View Slide

1
2
3
4
5
6
▶
8
9
10
11
12
13
name="username"
type="email"
required
"#
""$
name="password"
type="password"
minlength="6"
required
"#

View Slide

1
2
3
4
5
6
▶
8
9
10
11
12
13
14
name="username"
type="email"
required
"#
""$
name="password"
type="password"
minlength="6"
pattern="^(?=.\d)(?=.[a-z])(?=.*[A-Z]).{8,}$"
required
"#

View Slide

1
2
3
4
5
6
▶
8
9
10
11
12
13
14
name="username"
type="email"
required
"#
""$
name="password"
type="password"
minlenght="6"
pattern="^(?=.\d)(?=.[a-z])(?=.*[A-Z]).{8,}$"
required
"#

View Slide

Thank you

View Slide

Not exactly…

View Slide

HTML5 validation
depends on the browser

View Slide

And it's not that
simple nor pretty

View Slide

1
2
3
4
5
6
▶
8
9
10
11
12
13
name="username"
type="email"
required
"#
""$
name="password"
type="password"
minlenght="6"
pattern="^(?=.\d)(?=.[a-z])(?=.*[A-Z]).{8,}$"
required
"#

View Slide

1
2
3
4
5
6
▶
20
function "'invoke(Request $request)
{
$request"(validate([
'username' ") 'required|email',
'password' ") 'required|min:6|strong_password',
]);
""$
}

View Slide

JavaScript

View Slide

1
▶
42

""$
"*form>

View Slide

jQueryValidate.js

View Slide

1
2
3
4
5
6
7
8
9
10
var rules = {
username: {
required: true,
email: true,
},
password: {
required: true,
minlength: 6,
},
}

View Slide

1
2
3
4
5
6
7
8
9
10
11
12
var rules = {
username: {
required: true,
email: true,
},
password: {
required: true,
minlength: 6,
},
}
$("#login").validate(rules)

View Slide

validate.js

View Slide

1
2
3
4
let input = {
username: document.getElementById('username').value(),
password: document.getElementById('password').value(),
}

View Slide

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
let input = {
username: document.getElementById('username').value(),
password: document.getElementById('password').value(),
}
let rules = {
username: {
presence: true,
email: true
},
password: {
presence: true,
length: { minimum: 6 },
},
}

View Slide

1
▶
4
7
6
▶
15
16
17
18
19
let input = {
!!"
}
let rules = {
""$
}
if (validate(input, rules)) {
"+
}

View Slide

VeeValidate

View Slide

> npm install vee-validate

View Slide

1
2
import Vue from 'vue'
import VeeValidate from 'vee-validate'

View Slide

1
2
3
4
Vue.use(VeeValidate)

View Slide

1
2
3
4
5
name="username"
type="email"
required
"#

View Slide

1
2
3
4
5
6
7
name="username"
v-model="username"
v-validate
type="email"
required
"#

View Slide

1
2
3
4
5
6
7
name="username"
v-model="username"
v—validate
type="email"
required
"#

View Slide

1
2
3
4
Vue.use(VeeValidate)

View Slide

1
2
3
4
5
6
Vue.use(VeeValidate, {
useConstraintAttrs: false,
})

View Slide

1
2
3
4
5
6
7
name="username"
v-model="username"
v-validate
type="email"
required
"#

View Slide

1
2
3
4
5
6
name="username"
v-model="username"
v-validate="'required|email'"
type="text"
"#

View Slide

1
2
3
4
5
6
7
8
9
10
11
alpha
alpha_dash
alpha_num
alpha_spaces
before
between
confirmed
credit_card
date_between
date_format
decimal
digits
dimensions
email
image
included
integer
ip
is
is_not
length
max_value
mimes
min
max
min_value
excluded
numeric
regex
required
required_if
size
url

View Slide

Add custom rules

View Slide

1 import { Validator } from 'vee-validate'

View Slide

1
2
3
4
5
6
7
import { Validator } from 'vee-validate'
import { STRONG_PASS_REGEX } from '@/helpers/regex_rules'
const strongPassword = {
getMessage: field ") `${field} is weak.`,
validate: value ") STRONG_PASS_REGEX.test(value)
}

View Slide

1
2
3
4
5
6
7
8
9
import { STRONG_PASS_REGEX } from '@/helpers/regex-rules'
const strongPassword = {
getMessage: field ") `${field} is weak.`,
validate: value ") STRONG_PASS_REGEX.test(value)
}
Validator.extend('strong_password', strongPassword)

View Slide

1
2
3
4
5
6
name="password"
v-model="password"
v—validate="'required|strong_password'"
type="text”
"#

View Slide

Using ErrorBag

View Slide

1
2
3
4
5
6
7
class="field-input"
name="username"
v-model="username"
type="text"
"#

View Slide

1
2
3
4
5
6
7
8
9
10

Email address
"*label>
class="field-input"
name="username"
v-model="username"
type="text"
"#

View Slide

1
2
3
4
5
6
7
8
9
10
11
12
13
14
class="field-input"
:class="{ 'has-error': errors.has('username') }"
>
Email address
"*label>
class="field-input"
:class="{ 'has-error': errors.has('username') }"
name="username"
v-model="username"
type="text"
"#

View Slide

1
▶
6
7
▶
14
15
16
17

""$
"*label>
""$
"#

The username must be a valid email.
"*p>

View Slide

1
▶
6
7
▶
14
15
16
17

""$
"*label>
""$
"#

{{ errors.first('username') }}
"*p>

View Slide

SIGN IN
Sign in
The username must be a valid email.
Email address
example
Password
●●●●●●
Email address
example

View Slide

1
2
3
4
{{ errors.any() }}
{{ errors.all() }}
{{ errors.count() }}
{{ errors.clear() }}

View Slide

WAIT?! ALL OF THAT?

View Slide

Why validate
on the client side?

View Slide

Assure the data is good

View Slide

Quick feedback

View Slide

Real-time feedback

View Slide

Reduce server validation

View Slide

Now in the server side

View Slide

View Slide

Why validate
on the server side?

View Slide

Reassure the data is good

View Slide

Server-side checking

View Slide

Domain rules

View Slide

1
2
3
4
5
6
▶
20
{
]);
""$
}

View Slide

1
2
3
4
5
6
7
8
9
HTTP/1.1 422 Unprocessable Entity
Content-Type: application/json; charset=utf-8
""$
"data": {
"errors": {
"email": [
"The email must be a valid email address."
],
""$

View Slide

1
2
3
4
5
6
7
8
9
10
11
12
13
HTTP/1.1 422 Unprocessable Entity
""$
"data": {
"errors": {
"email": [
"The email must be a valid email address."
],
"password": [
"The password must be at least 6 characters",
"The password must have 2 uppercase letters 1 special letter 2 digi
]
""$

View Slide

1
2
▶
8
▶
12
13
if (response.data.errors.email) {
if (/required/i.test(response.data.errors)) {
""$
} else if (/invalid/i.test(response.data.errors)) {
""$
}
}

View Slide

How to simplify
the conversation?

View Slide

> art make:request SubmitRequest

View Slide

1
2
3
4
5
6
7
public function rules()
{
return [
];
}

View Slide

1
2
3
4
5
6
7
8
9
public function messages()
{
return [
'required' ") ':attribute.required',
'email' ") 'email.invalid',
'password.min' ") 'password:min',
'strong_password' ") 'password_not_strong',
];
}

View Slide

1
2
3
4
5
6
7
8
9
public function failedValidation(Validator $validator)
{
throw (new HttpResponseException(
response()"(json([
'message' ") 'The given data was invalid.',
'errors' ") $validator"(errors()"(all(),
], 422)
));
}

View Slide

1
2
3
4
5
6
7
8
9
public function failedValidation(Validator $validator)
{
throw (new HttpResponseException(
response()"(json([
'message' ") 'The given data was invalid.',
'errors' ") $validator"(errors()"(all(),
], 418)
));
}

View Slide

1
2
3
4
5
6
7
8
9
HTTP/1.1 418 I'm a teapot
""$
{
"message": "The given data was invalid.",
"errors": [
"email.invalid"
]
}

View Slide

View Slide

Validation examples

View Slide

email ﬁelds

View Slide

Simple form
Email address
SUBMIT
The email ﬁeld is required.

View Slide

Simple form
Email address
SUBMIT
The email must be a valid email address.
example

View Slide

1
2
3
4
5
6
name="email"
v-model="email"
v—validate="'required|email'"
type="text"
"#

View Slide

" prevent the errors

View Slide

Simple form
Email address
SUBMIT
Did you mean [email protected]?
[email protected]

View Slide

Simple form
Email address
SUBMIT
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]

View Slide

1
2
3
4
5
6
7
8
9
{
'email' ") [
'required',
'email',
]
]);
}

View Slide

1
2
3
4
5
6
7
8
9
{
'email' ") [
'required',
'email', "+ [email protected]
]
]);
}

View Slide

Simple form
Email address
SUBMIT
[email protected]

View Slide

1
2
3
4
5
6
7
8
9
{
'email' ") [
'required',
'email',
]
]);
}

View Slide

1
2
3
4
5
6
7
8
9
{
'email' ") [
'required',
'email:rfc,dns', "+ new in Laravel 5.8.33
]
]);
}

View Slide

1
2
3
4
5
6
7
8
9
10
{
'email' ") [
'required',
'email:rfc,dns',
'unique:users.email',
]
]);
}

View Slide

1
2
3
4
5
6
7
8
9
10
{
'email' ") [
'required',
'email:rfc,dns', "+ ", ATTENTION
'unique:users.email', "+ ", ATTENTION
]
]);
}

View Slide

1
2
3
4
5
6
7
8
9
10
11
{
'email' ") [
'bail',
'required',
'email:rfc,dns',
'unique:users.email',
]
]);
}

View Slide

Remember SubmitRequest?

View Slide

1
2
3
4
5
6
7
8
HTTP/1.1 418 I'm a teapot
""$
"data": {
"errors": [
"email.invalid",
]
""$

View Slide

1
2
3
4
5
6
7
this.$http.post('/submit’)
.then(response ") {
"+
})
.catch({ response } ") {
"+
})

View Slide

1
▶
5
6
7
8
9
""$
if (response.status ""- 418) {
"+
}
})

View Slide

1
▶
5
6
7
8
9
10
11
""$
if (response.data.errors.includes('email.invalid')) {
"+
}
}
})

View Slide

1
▶
5
6
7
8
9
10
11
12
13
14
15
""$
let errors = response.data.errors
if (response.data.errors.includes('email.invalid')) {
this.$validator.errors.add({
field: 'email',
msg: 'The email must be a valid email address.',
})
}
}
})

View Slide

1
▶
5
6
7
8
9
10
11
12
13
14
15
16
""$
let errors = response.data.errors
if (errors.includes('email.invalid')) {
this.$validator.errors.add({
field: 'email',
msg: 'The email must be a valid email address.',
})
this.$el.username.focus()
}
}
})

View Slide

phone ﬁelds

View Slide

1
2
3
4
5
6
name="phone"
v-model="phone"
v-validate="'required'"
type="text"
"#

View Slide

1
2
3
4
5
6
name="phone"
v-model="phone"
v-validate="'required|phone'"
type="text"
"#

View Slide

1
2
3
4
5
6
7
8
const phone = {
getMessage: field ") `The ${field} must be a valid phone number.`,
validate: value ") {
return /^[0-9]{9}$/.test(value)
}
}

View Slide

1
2
3
4
5
6
7
8
const phone = {
getMessage: field ") `The ${field} must be a valid phone number.`,
validate: value ") {
return /^2[0-9]{8}|9[1236][0-9]{7}$/.test(value)
}
}

View Slide

Simple form
Mobile number
SUBMIT
The phone must be a valid phone number.
201000123

View Slide

" prevent the errors

View Slide

Simple form
Mobile number
SUBMIT
912367125637512123987

View Slide

Simple form
Mobile number
SUBMIT
asdasdasd

View Slide

1
2
3
4
5
6
name="phone"
v-model="phone"
type="text"
"#

View Slide

1
2
3
4
5
6
7
name="phone"
v-model="phone"
type="text"
maxlength="9"
"#

View Slide

> npm install vee-mask

View Slide

1
2
import VeeMask from 'vee-mask'

View Slide

1
2
3
4
import VeeMask from 'vee-mask'
Vue.use(VeeMask)

View Slide

1
2
3
4
5
6
7
8
name="phone"
v-model="phone"
v-mask="'#########'"
type="text"
maxlength="9"
"#

View Slide

1
2
3
4
5
6
7
8
name="phone"
v-model="phone"
v-mask="'"". "". "".'"
type="text"
maxlength="11"
"#

View Slide

Simple form
Mobile number
SUBMIT
213 123 123

View Slide

zip, iban, address, weight…

View Slide

They follow the same idea

View Slide

WAX ON, WAX OFF

View Slide

Extra tricks

View Slide

autofocus

View Slide

1

View Slide

Sign up
Full name
Email address
Phone
CONTINUE
|

View Slide

" attention to mobile

View Slide

Sign up
Full name
Email address
Phone
CONTINUE
|
Done
Q W E R T Y U I O P
space return
123
A S D F G H J K L
⌫
⇧ Z X C V B N M

View Slide

1

View Slide

1
2
3
4
5
6
7
8
Vue.directive('autofocus', {
inserted: (el, binding) ") {
if (! isMobile) {
el.setAttribute('autofocus', 'autofocus')
el.focus() "+ Justin Case
}
},
})

View Slide

input types

View Slide

1

View Slide

SUBMIT
The Form
Email ﬁeld
|
Done
Q W E R T Y U I O P
space return
123
A S D F G H J K L
⌫
⇧ Z X C V B N M
Done
Q W E R T Y U I O P
space return
123
A S D F G H J K L
⌫
⇧ Z X C V B N M
@ .

View Slide

1

View Slide

The Form
Phone ﬁeld
SUBMIT
|
Done
⌫
+ ❋ #
2
1 3
5
4 6
8
7 9
0
ABC
GHI JKL MNO
DEF
TUV
PQRS WXYZ

View Slide

1

View Slide

The Form
Number ﬁeld
SUBMIT
|
Done
1 2 3 4 5 6 7 8 9 0
space return
ABC
⌫
#+= . , ? ! ´
- / : ; ( ) $ & @ "

View Slide

1

View Slide

inputmode

View Slide

66 20 76 Nope
Chrome Firefox Edge Safari
Desktop
Mobile / Tablet
75 Nope 67 12.2-12.3
Android Chrome Android Firefox Android iOS Safari

View Slide

1

View Slide

1
2
3
4
5
6
name="field"
type="text"
inputmode="number"
maxlength="9"
"#

View Slide

1
2
3
4
5
6
name="field"
type="text"
inputmode="number" "+ tel, url, email, …
maxlength="9"
"#

View Slide

1
2
3
4
5
6
name="field"
type="text"
inputmode="decimal"
maxlength="9"
"#

View Slide

The Form
Decimal ﬁeld
SUBMIT
|
Done
⌫
.
2
1 3
5
4 6
8
7 9
0
ABC
GHI JKL MNO
DEF
TUV
PQRS WXYZ

View Slide

placeholder

View Slide

1
2
3
4
5
name="name"
type="text"
placeholder="Your Fullname"
"#

View Slide

REGISTER
Sign up
Your email
Caneco

View Slide

Prevent the Dory Syndrome

View Slide

REGISTER
Sign up
Your email
Caneco
Your full name

View Slide

REGISTER
Sign up
Your full name
Your email
Caneco
The full name must be a valid name.
Caneco2

View Slide

The Art of Form Validation

The Art of Form Validation

Caneco

More Decks by Caneco

Other Decks in Programming

Featured

Transcript