March 23, 2026Noble Desktop Publishing Team/9 min read

Easels App with Test Driven Development: Part 4

Master Test Driven Development with Ruby on Rails

Test Driven Development Cycle

The mantra of test driven development is red, green, refactor. When your tests initially fail, you'll see red errors until they pass and then you'll see green text. This exercise focuses on the crucial refactoring phase.

Topics Covered in This Ruby on Rails Tutorial:

Refactoring the CompletionsController for improved maintainability, streamlining test code to eliminate redundancy, implementing user authentication requirements for to-do creation, and verifying successful test results through browser validation

Tutorial Learning Objectives

Controller Refactoring

Learn to clean up repetitive code in the CompletionsController by extracting shared functionality into reusable private methods.

Test Code Optimization

Streamline test code by creating shared methods and eliminating duplication across feature specifications.

Authentication Implementation

Ensure proper user authentication before allowing to-do creation and completion actions.

Exercise Overview

While all feature tests are passing successfully, the current codebase suffers from significant repetition—a violation of software engineering best practices. Test-driven development follows the fundamental mantra of "red, green, refactor." Initially, failing tests display red error messages. Once functionality is implemented correctly, tests pass and show green indicators. This exercise focuses on the crucial third phase of TDD: refactoring existing code to achieve DRY (Don't Repeat Yourself) principles while maintaining full functionality.

Effective refactoring not only improves code maintainability but also reduces the likelihood of bugs and makes future feature additions more straightforward. By eliminating duplication, you create a more robust foundation for your Rails application.

If you completed the previous exercises (13A–14A), you can proceed directly to the refactoring section below. For those who haven't completed the prerequisite exercises, we strongly recommend finishing exercises 13A–14A first, as they establish the foundational code structure this tutorial builds upon. If you need to catch up, follow the setup instructions in the sidebar.

If You Did Not Complete Previous Exercises (13A–14A)

Close any files currently open in your editor.
Open the Finder and navigate to Class Files > yourname-Rails Class
Launch Terminal.
Type cd followed by a single space (do NOT press Return yet).
Drag the yourname-Rails Class folder from Finder to the Terminal window and press ENTER.
Execute rm -rf easels to remove your existing copy of the easels site.
Run git clone https://bitbucket.org/Noble Desktop/easels.git to clone the easels Git repository.
Navigate into the directory: cd easels
Checkout the appropriate branch: git checkout 14A to synchronize with the previous exercise's completion state.
Install required gems: bundle install
Install JavaScript dependencies: yarn install --check-files

Refactoring the CompletionsController

Controller refactoring is essential for maintaining clean, scalable Rails applications. The CompletionsController currently contains duplicated logic that violates DRY principles and makes maintenance more difficult.

Ensure Terminal is open and you're in the correct directory. If not in the easels directory, navigate there: cd easels
Open app > controllers > completions_controller.rb in your code editor. Examine the create and destroy methods—notice the significant similarity between them. This duplication presents an opportunity to extract shared functionality into reusable methods.
Add a private method for retrieving the to-do item below the destroy method (around line 17):
```
end

private

   def get_todo
   end

end
```
Cut one of the Todo.find lines (from either line 4 or 11):
```
@todo = Todo.find(params[:todo_id])
```

Paste this code into the get_todo private method:

def get_todo
   @todo = Todo.find(params[:todo_id])
end

Delete the remaining Todo.find line and clean up any leftover whitespace. Your methods should now look like:

def create
   @todo.completed_at = Time.current
   @todo.save!
   redirect_to root_path
end

def destroy
   @todo.completed_at = nil
   @todo.save!
   redirect_to root_path
end

Add a before_action callback at the top of the controller class (around line 3) to automatically execute the get_todo method:
```
class CompletionsController < ApplicationController 

   before_action :get_todo

   def create
```
Save the file and return to Terminal to verify the refactoring hasn't broken functionality.
Execute the test suite: rspec. All tests should still pass, confirming successful refactoring.
Return to completions_controller.rb. The create and destroy methods still contain nearly identical code—only the first line differs. The create method sets completed_at to the current timestamp, while destroy sets it to nil. This presents another refactoring opportunity.

Add a parameterized method below get_todo and above the final end (around line 23):

def get_todo
   @todo = Todo.find(params[:todo_id])
end

def mark_todo(time)
   @todo.completed_at = time
   @todo.save!
end

Refactor the create and destroy methods to use the new mark_todo method, passing the appropriate time value as an argument:
```
def create
   mark_todo(Time.current)
   redirect_to root_path
end

def destroy
   mark_todo(nil)
   redirect_to root_path
end
```
This refactored code is significantly more maintainable and reusable. Future controller actions can leverage these methods, and modifications need only be made in one location.
Verify the refactoring maintains functionality. Save the file and return to Terminal.
Run the test suite again: rspec. All tests should continue passing.

Before vs After Controller Refactoring

Feature	Before Refactoring	After Refactoring
Code Duplication	Todo.find repeated in create and destroy	Single get_todo private method
Method Structure	Separate logic in each method	Shared mark_todo method with time parameter
Maintainability	Changes require multiple updates	Single source of truth for shared logic
Reusability	Limited code reuse	Methods can be used by additional actions

Recommended: The refactored approach provides better maintainability and follows DRY principles

Streamlining the Test Code

Test code deserves the same attention to DRY principles as application code. Repetitive test code is harder to maintain and more prone to inconsistencies. By creating shared helper methods, you can improve test maintainability and reduce the likelihood of copy-paste errors.

With the controller refactoring complete, let's address test code duplication. Open the three most recent test files from spec > features in creation order:
- user_can_see_own_todos_spec.rb
- user_marks_todo_complete_spec.rb
- user_marks_todo_incomplete_spec.rb
Compare these files—notice the identical sign-in steps under the #user signs in comments. This duplication violates DRY principles and creates maintenance overhead.

Copy the following sign-in code from any of the files (typically around lines 7-10):

visit new_session_path
fill_in "Email", with: "user@example.com"
click_on "Sign In"

RSpec supports custom helper methods through a support directory structure. Create a new folder called support within the spec folder.
Inside the support folder, create a features subfolder. This nested structure ensures helper methods only apply to feature tests, maintaining proper test isolation.
Create a new file called sign_in.rb inside the spec/support/features directory.
Add the following module structure to the blank file:
```
module Features

   def sign_in_as(email)
   end
end
```
Understanding the structure:
- RSpec requires shared feature test code to be encapsulated within a Features module for proper namespacing and organization.
- The sign_in_as method accepts an email parameter, making it flexible for different user scenarios.

Paste the previously copied sign-in code into the method:

def sign_in_as(email)
   visit new_session_path
   fill_in "Email", with: "user@example.com"
   click_on "Sign In"
end

Make the method dynamic by replacing the hardcoded email with the parameter:
```
fill_in "Email", with: email
```
Save the file and open user_can_see_own_todos_spec.rb.
Replace the sign-in steps (around line 9) with the new helper method call:
```
#user signs in
sign_in_as("user@example.com")
```
Save the file and test the implementation by running rspec in Terminal.

The test will fail because RSpec hasn't been configured to load the helper methods yet.
To enable the shared code, open spec > rails_helper.rb.
Locate and uncomment the following line (around line 23):

Dir[Rails.root.join('spec/support/**/*.rb')].each { |f| require f }

This directive instructs RSpec to automatically load all Ruby files within the support directory and its subdirectories.
Add the module inclusion configuration (around line 53):
```
config.infer_spec_type_from_file_location!

config.include Features, type: :feature
```
This configuration makes all Features module methods available to feature tests, extending the test environment with your custom helpers.
Save the file and verify functionality: rspec

All tests should now pass, confirming the helper method integration is successful.
Clean up the test file by removing the commented-out code in user_can_see_own_todos_spec.rb:
```
#user signs in
sign_in_as("user@example.com")

#user creates a to-do via a form
```
Apply the same refactoring to the remaining test files. In user_marks_todo_complete_spec.rb, replace the sign-in code:
```
#user signs in
sign_in_as("user@example.com")
```
Make the identical change in user_marks_todo_incomplete_spec.rb and save all files.
Confirm all tests still pass: rspec
Further streamline the test code by addressing to-do creation duplication. In user_can_see_own_todos_spec.rb, copy the to-do creation code (lines 13-17):
```
click_on "Add a New To-Do"
fill_in "Title", with: "paint house"

#user saves the to-do to the database
click_on "Add To-Do"
```
Since the helper file will contain multiple methods, rename sign_in.rb to helper_methods.rb for better organization.
Add a new method to helper_methods.rb before the final end:
```
def create_todo(title)
end
```

Paste the copied code into the method and remove comments:

def create_todo(title)
   click_on "Add a New To-Do"
   fill_in "Title", with: "paint house"
   click_on "Add To-Do"
end

Make the method dynamic by using the title parameter:
```
fill_in "Title", with: title
```
Save the file and update user_can_see_own_todos_spec.rb to use the new helper:
```
#user creates a to-do via a form
create_todo("paint house")
```
Verify functionality: rspec
Clean up the commented code and apply the same refactoring to the other test files that create to-dos, including user_creates_todo_spec.rb.
Run the complete test suite to ensure all refactoring is successful: rspec

All five tests should pass, confirming that the shared helper methods work correctly across all feature tests.

RSpec Support Directory Structure

RSpec allows us to create separate files for storing custom methods that several tests share. Files must be in a separate folder called support, with feature-specific methods in spec/support/features/

Creating Shared Test Methods

Create Support Structure

Create spec/support/features directory structure for organizing shared test methods

Build Sign-in Method

Create sign_in_as method in Features module to handle user authentication in tests

Configure Rails Helper

Uncomment auto-require line and add config.include Features statement to load shared methods

Implement Todo Creation

Add create_todo method to eliminate repetitive form filling code across test files

Ensuring the User Must Sign in to Create a To-Do

Security is paramount in web applications. Currently, any visitor can create to-dos without authentication—a significant security vulnerability. Implementing proper authentication ensures that only authenticated users can access protected resources, following Rails security best practices.

Authentication logic belongs in the ApplicationController to ensure availability across all controllers. Open app > controllers > application_controller.rb.
Add an authentication method before the final end (around line 12):
```
def set_current_email
   @current_email = session[:current_email]
end

def authenticate!
   redirect_to new_session_path unless @current_email
end
```
This method implements a security check similar to the popular Devise gem. It verifies user authentication status and redirects unauthenticated users to the sign-in page.
Save the file and apply authentication to the TodosController. Open app > controllers > todos_controller.rb.

Add the authentication requirement using a before_action callback:

class TodosController < ApplicationController

   before_action :authenticate!

   def index

Apply the same protection to app > controllers > completions_controller.rb:

class CompletionsController < ApplicationController
  before_action :authenticate!
  before_action :get_todo

Test the authentication implementation. Save all files and run rspec.

Two tests will fail because they don't account for the new authentication requirement.
Fix the first failure by updating user_creates_todo_spec.rb. Add authentication before to-do creation:
```
visit root_path

#user signs in
sign_in_as("user@example.com")

#user creates a to-do via a form
```
Save and test: rspec

Only one failure should remain, related to the homepage display test.
The remaining failure occurs because the homepage now requires authentication. Move the main heading to a publicly accessible location. Open app > views > todos > index.html.erb.
Cut the <h1>To-Dos</h1> element from the first line.
Open app > views > layouts > application.html.erb and paste the heading in an appropriate location within the layout, ensuring it's visible to all users regardless of authentication status.
Save both files and run the final test: rspec

All tests should now pass, confirming that authentication is properly implemented while maintaining all existing functionality.

“

At this juncture any old schmuck can create a to-do. Let's add a method that ensures a user must be signed in before they can add their tasks to our site.

Identifying the security gap in the application before implementing authentication

Authentication Implementation

ApplicationController Method

Add authenticate! method that redirects unsigned users to the sign-in page, similar to the Devise gem pattern.

Before Action Filters

Implement before_action :authenticate! in both TodosController and CompletionsController to secure all actions.

Verifying the Successful Test Results in a Browser

While automated tests provide confidence in functionality, browser testing ensures the user experience meets expectations. This final verification step confirms that refactored code not only passes tests but also delivers the intended user experience.

Launch your Rails server with rails server and navigate through the application workflow: visit the homepage, sign in with valid credentials, create a to-do item, and test the completion functionality. This manual verification ensures that your refactored, secure application provides the seamless experience your users expect.

The comprehensive refactoring completed in this exercise demonstrates professional Rails development practices: maintaining DRY code principles, implementing proper security measures, and ensuring thorough test coverage. These practices form the foundation for scalable, maintainable web applications.

Final Verification Steps

0/4

Run complete test suite with rspec command

Ensure all five tests pass after refactoring and authentication changes

Start Rails server for manual testing

Use 'rails server' to launch the application and verify functionality in browser

Test authentication flow manually

Navigate to localhost and confirm users must sign in to access to-do functionality

Verify UI elements display correctly

Check that the To-Dos heading appears on all pages after moving it to application layout

Key Takeaways

1Test Driven Development follows a red-green-refactor cycle where refactoring is essential for maintaining clean, DRY code

2Controller refactoring involves extracting shared functionality into private methods and using before_action filters for common operations

3RSpec support directories allow creation of shared methods that eliminate test code duplication across multiple specification files

4The Features module pattern enables sharing of common test functionality like user sign-in and form interactions across feature tests

5Authentication should be implemented at the controller level using before_action filters to secure application endpoints

6Private methods in controllers can accept parameters to make shared functionality more flexible and reusable

7Moving UI elements to application layout ensures consistent display across all pages regardless of authentication state

8Regular test suite execution after each change ensures refactoring doesn't break existing functionality

April 2, 2026

Easels App with Test Driven Development: Part 4

Topics Covered in This Ruby on Rails Tutorial:

Exercise Overview

If You Did Not Complete Previous Exercises (13A–14A)

Refactoring the CompletionsController

Streamlining the Test Code

Ensuring the User Must Sign in to Create a To-Do

Verifying the Successful Test Results in a Browser

RELATED ARTICLES

Export Options: Render Queue vs. Media Encoder

Creating a Simple Gross Area Schedule for Building Plans

Inserting Fixtures and Blocks in AutoCAD Design - Step-by-Step Tutorial