Add Rails main CI coverage and fix ActiveJob logging

Author: ndbroadbent

.github/workflows/rails-main.yml

@@ -0,0 +1,24 @@
+name: Rails Main
+
+on:
+  schedule:
+    - cron: '0 3 * * *'
+  workflow_dispatch:
+
+jobs:
+  rails-main:
+    name: Rails main integration tests
+    runs-on: ubuntu-22.04
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Ruby 4.0.1
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: '4.0.1'
+          bundler-cache: true
+
+      - name: Run Rails main integration tests
+        env:
+          RAILS_VERSION: latest
+        run: ./scripts/rails_tests.sh

.github/workflows/test.yml

@@ -137,7 +137,7 @@ jobs:
     name: 'Pilot Test: Latest Ruby / Rails'
     runs-on: ubuntu-22.04
     env:
-      RAILS_VERSION: '8.1.1'
+      RAILS_VERSION: 'latest'
       RUBY_VERSION: '4.0.1'
       CI: 'true'
       BUNDLE_WITHOUT: 'development'
@@ -210,6 +210,10 @@ jobs:
             ruby: '3.4'
             rails: '8.0.4'
 
+          - name: 'Ruby 4.0 / Rails 8.1'
+            ruby: '4.0.1'
+            rails: '8.1.2'
+
           # NOTE: Latest Ruby/Rails is tested in the 'pilot' job above with coverage.
 
     env:

CHANGELOG.md

@@ -5,8 +5,14 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [Unreleased]
+
 ### Changed
 
+- **Fix**: ActiveJob integration handles Rails main event reporter subscribers
+- **Fix**: Rack error handler avoids deprecated CSRF exception class on Rails main
+- **CI**: Added Rails main daily integration run and updated Rails test matrix (7.1.6, 7.2.3, 8.0.4, 8.1.2)
+
 ## [0.1.8] - 2026-01-22
 
 - **Fix**: Lograge custom options now appear in request logs

Taskfile.rails.yml

@@ -2,7 +2,7 @@ version: '3'
 run: once
 
 vars:
-  RAILS_VERSION: '{{.RAILS_VERSION | default "7.1.5"}}'
+  RAILS_VERSION: '{{.RAILS_VERSION | default "7.1.6"}}'
 
 tasks:
   test:
@@ -16,7 +16,9 @@ tasks:
       - cmd: RAILS_VERSION={{.RAILS_VERSION}} FORCE_RECREATE=true ./scripts/rails_tests.sh
 
   test:matrix:
-    desc: Run Rails integration tests for supported versions (7.1.5 and 8.0.1)
+    desc: Run Rails integration tests for supported versions (7.1.6, 7.2.3, 8.0.4, 8.1.2)
     cmds:
-      - RAILS_VERSION=7.1.5 ./scripts/rails_tests.sh
-      - RAILS_VERSION=8.0.1 ./scripts/rails_tests.sh
+      - RAILS_VERSION=7.1.6 ./scripts/rails_tests.sh
+      - RAILS_VERSION=7.2.3 ./scripts/rails_tests.sh
+      - RAILS_VERSION=8.0.4 ./scripts/rails_tests.sh
+      - RAILS_VERSION=8.1.2 ./scripts/rails_tests.sh

lib/log_struct/integrations/active_job.rb

@@ -25,8 +25,13 @@ def self.setup(config)
         return nil unless config.integrations.enable_activejob
 
         ::ActiveSupport.on_load(:active_job) do
-          # Detach the default text formatter
-          ::ActiveJob::LogSubscriber.detach_from :active_job
+          if ::ActiveJob::LogSubscriber.respond_to?(:detach_from)
+            # Detach the default text formatter
+            ::ActiveJob::LogSubscriber.detach_from :active_job
+          elsif ::ActiveSupport.respond_to?(:event_reporter)
+            reporter = ::ActiveSupport.event_reporter
+            reporter.unsubscribe(::ActiveJob::LogSubscriber) if reporter.respond_to?(:unsubscribe)
+          end
 
           # Attach our structured formatter
           Integrations::ActiveJob::LogSubscriber.attach_to :active_job

lib/log_struct/integrations/active_job/log_subscriber.rb

@@ -1,6 +1,7 @@
 # typed: strict
 # frozen_string_literal: true
 
+require "active_support/log_subscriber"
 require_relative "../../enums/source"
 require_relative "../../enums/event"
 require_relative "../../log/active_job"
@@ -10,7 +11,7 @@ module LogStruct
   module Integrations
     module ActiveJob
       # Structured logging for ActiveJob
-      class LogSubscriber < ::ActiveJob::LogSubscriber
+      class LogSubscriber < ::ActiveSupport::LogSubscriber
         extend T::Sig
 
         sig { params(event: ::ActiveSupport::Notifications::Event).void }

lib/log_struct/integrations/rack_error_handler/middleware.rb

@@ -81,38 +81,40 @@ def call(env)
             ::Rails.logger.warn(security_log)
 
             [FORBIDDEN_STATUS, IP_SPOOF_HEADERS.dup, [IP_SPOOF_HTML]]
-          rescue ::ActionController::InvalidAuthenticityToken => invalid_auth_token_error
-            # Create a security log for CSRF error
-            security_log = Log::Security::CSRFViolation.new(
-              path: request.path,
-              http_method: request.method,
-              source_ip: request.remote_ip,
-              user_agent: request.user_agent,
-              referer: request.referer,
-              request_id: request.request_id,
-              message: invalid_auth_token_error.message,
-              timestamp: Time.now
-            )
-            LogStruct.error(security_log)
-
-            # Report to error reporting service and/or re-raise
-            context = extract_request_context(env, request)
-            LogStruct.handle_exception(invalid_auth_token_error, source: Source::Security, context: context)
-
-            # If handle_exception raised an exception then Rails will deal with it (e.g. config.exceptions_app)
-            # If we are only logging or reporting these security errors, then return a default response
-            [FORBIDDEN_STATUS, CSRF_HEADERS.dup, [CSRF_HTML]]
           rescue => error
-            # Extract request context for error reporting
-            context = extract_request_context(env, request)
-
-            # Create and log a structured exception with request context
-            exception_log = Log.from_exception(Source::Rails, error, context)
-            LogStruct.error(exception_log)
-
-            # Re-raise any standard errors to let Rails or error reporter handle it.
-            # Rails will also log the request details separately
-            raise error
+            if csrf_error?(error)
+              # Create a security log for CSRF error
+              security_log = Log::Security::CSRFViolation.new(
+                path: request.path,
+                http_method: request.method,
+                source_ip: request.remote_ip,
+                user_agent: request.user_agent,
+                referer: request.referer,
+                request_id: request.request_id,
+                message: error.message,
+                timestamp: Time.now
+              )
+              LogStruct.error(security_log)
+
+              # Report to error reporting service and/or re-raise
+              context = extract_request_context(env, request)
+              LogStruct.handle_exception(error, source: Source::Security, context: context)
+
+              # If handle_exception raised an exception then Rails will deal with it (e.g. config.exceptions_app)
+              # If we are only logging or reporting these security errors, then return a default response
+              [FORBIDDEN_STATUS, CSRF_HEADERS.dup, [CSRF_HTML]]
+            else
+              # Extract request context for error reporting
+              context = extract_request_context(env, request)
+
+              # Create and log a structured exception with request context
+              exception_log = Log.from_exception(Source::Rails, error, context)
+              LogStruct.error(exception_log)
+
+              # Re-raise any standard errors to let Rails or error reporter handle it.
+              # Rails will also log the request details separately
+              raise error
+            end
           end
         end
 
@@ -146,6 +148,13 @@ def extract_request_context(env, request = nil)
           {error_extracting_context: error.message}
         end
 
+        sig { params(error: StandardError).returns(T::Boolean) }
+        def csrf_error?(error)
+          error_name = error.class.name
+          error_name == "ActionController::InvalidAuthenticityToken" ||
+            error_name == "ActionController::InvalidCrossOriginRequest"
+        end
+
         sig { params(configured_proxies: T.untyped).returns(T.untyped) }
         def normalized_trusted_proxies(configured_proxies)
           if configured_proxies.nil? || (configured_proxies.respond_to?(:empty?) && configured_proxies.empty?)

rails_test_app/create_app.rb

@@ -6,19 +6,20 @@
 # Silence Ruby warnings early for this process
 ENV["RUBYOPT"] = "-W0"
 rails_version = ENV["RAILS_VERSION"] || "7.0"
+rails_version = "main" if ["latest", "main"].include?(rails_version)
 
 # Map major.minor versions to specific patch versions
 # This mapping will be updated by scripts/update_rails_versions.rb
-if rails_version.count(".") < 2
+if rails_version != "main" && rails_version.count(".") < 2
   latest_version = case rails_version
   when "7.1"
-    "7.1.5.1"  # Updated by update_rails_versions script
+    "7.1.6"  # Updated by update_rails_versions script
   when "7.2"
-    "7.2.2.1"  # Updated by update_rails_versions script
+    "7.2.3"  # Updated by update_rails_versions script
   when "8.0"
-    "8.0.1"  # Updated by update_rails_versions script
+    "8.0.4"  # Updated by update_rails_versions script
   when "8.1"
-    "8.1.0.beta1"  # Pre-release lane
+    "8.1.2"  # Updated by update_rails_versions script
   else
     raise "Unrecognized Rails version #{rails_version}"
   end
@@ -28,6 +29,7 @@
 end
 
 def install_rails_if_missing(version)
+  return if version == "main"
   # Robust detection using RubyGems API
   begin
     if Gem::Specification.find_all_by_name("rails", version).any?
@@ -116,7 +118,11 @@ def install_rails_if_missing(version)
 skip_app_creation = ENV["SKIP_APP_CREATION"] == "true"
 
 # Extract major and minor version for migrations and load_defaults
-@rails_major_minor = (rails_version.split(".")[0..1] || []).join(".")
+@rails_major_minor = if rails_version == "main"
+  "8.2"
+else
+  (rails_version.split(".")[0..1] || []).join(".")
+end
 
 # Create directories
 FileUtils.mkdir_p(RAILS_APP_DIR)
@@ -148,7 +154,9 @@ def copy_template(file, target_path = nil)
 
   # Use version selector underscore to pick the exact rails generator version.
   # Run in a temporary empty dir to avoid Rails app loader picking up our repo.
-  rails_cmd = ["rails", "_#{rails_version}_", "new", RAILS_APP_DIR,
+  rails_cmd = ["rails"]
+  rails_cmd << "_#{rails_version}_" unless rails_version == "main"
+  rails_cmd += ["new", RAILS_APP_DIR,
     "--force", "--skip-bundle",
     "--skip-git", "--skip-keeps", "--skip-action-cable",
     "--skip-sprockets", "--skip-javascript", "--skip-hotwire",
@@ -172,7 +180,14 @@ def copy_template(file, target_path = nil)
   gemfile_content = File.read(gemfile_path)
 
   # Ensure Rails gem version matches the requested rails_version
-  gemfile_content.gsub!(/^\s*gem\s+"rails".*$/, "gem \"rails\", \"~> #{rails_version}\"")
+  if rails_version == "main"
+    gemfile_content.gsub!(
+      /^\s*gem\s+"rails".*$/,
+      "gem \"rails\", github: \"rails/rails\", branch: \"main\""
+    )
+  else
+    gemfile_content.gsub!(/^\s*gem\s+"rails".*$/, "gem \"rails\", \"~> #{rails_version}\"")
+  end
 
   # Do not force a Ruby version in the generated app; CI matrix will pick Ruby
 

scripts/rails_tests.sh

@@ -6,7 +6,7 @@ PROJECT_ROOT="$(dirname "$SCRIPT_DIR")"
 TEST_APP_DIR="$PROJECT_ROOT/rails_test_app/logstruct_test_app"
 CREATE_APP_SCRIPT="$PROJECT_ROOT/rails_test_app/create_app.rb"
 VERSION_FILE="$TEST_APP_DIR/.rails_version"
-RAILS_VERSION="${RAILS_VERSION:-"7.1.5.1"}"
+RAILS_VERSION="${RAILS_VERSION:-"7.1.6"}"
 FORCE_RECREATE="${FORCE_RECREATE:-false}"
 
 # Show what we're testing

scripts/update_rails_versions.rb

@@ -8,7 +8,7 @@
 require "net/http"
 
 # Rails versions we support
-SUPPORTED_MAJOR_MINOR = ["7.0", "7.1", "7.2", "8.0"]
+SUPPORTED_MAJOR_MINOR = ["7.1", "7.2", "8.0", "8.1"]
 
 # Files to update
 CREATE_APP_SCRIPT = File.expand_path("../rails_test_app/create_app.rb", __dir__)
@@ -76,13 +76,7 @@ def update_github_workflow(versions)
   content = File.read(GITHUB_WORKFLOW)
   updated_content = content.dup
 
-  # Update the pilot test Rails version
-  if /RAILS_VERSION:\s*'8\.0[\.\d]*'/.match?(updated_content)
-    updated_content.gsub!(/RAILS_VERSION:\s*'8\.0[\.\d]*'/, "RAILS_VERSION: '#{versions["8.0"]}'")
-    puts "  Updated pilot test Rails version to #{versions["8.0"]}"
-  else
-    puts "  Warning: Could not find RAILS_VERSION for pilot test in test.yml"
-  end
+  puts "  Skipping pilot job Rails version (uses Rails main)"
 
   # Update the matrix versions
   versions.each do |major_minor, version|