Before Rails 5,
returning false from any before_ callback
in ActiveModel or ActiveModel::Validations,
ActiveRecord and ActiveSupport
resulted in halting of callback chain.
classOrder<ActiveRecord::Basebefore_save:set_eligibility_for_rebatebefore_save:ensure_credit_card_is_on_filedefset_eligibility_for_rebateself.eligibility_for_rebate||=falseenddefensure_credit_card_is_on_fileputs"check if credit card is on file"endendOrder.create!=>ActiveRecord::RecordNotSaved:ActiveRecord::RecordNotSaved
In this case the code is
attempting to set the value of eligibility_for_rebate to false.
However the side effect of the way Rails callbacks work is that
the callback chain will be halted
simply because
one of the callbacks returned false.
Right now, to fix this we need to return true
from before_ callbacks,
so that callbacks are not halted.
Improvements in Rails 5
Rails 5 fixed this issue
by addingthrow(:abort) to
explicitly halt callbacks.
Now, if any before_ callback returns false
then callback chain is not halted.
classOrder<ActiveRecord::Basebefore_save:set_eligibility_for_rebatebefore_save:ensure_credit_card_is_on_filedefset_eligibility_for_rebateself.eligibility_for_rebate||=falseenddefensure_credit_card_is_on_fileputs"check if credit card is on file"endendOrder.create!=>checkifcreditcardisonfile=><Orderid: 4,eligibility_for_rebate: false>
To explicitly halt the callback chain,
we need to use throw(:abort).
classOrder<ActiveRecord::Basebefore_save:set_eligibility_for_rebatebefore_save:ensure_credit_card_is_on_filedefset_eligibility_for_rebateself.eligibility_for_rebate||=falsethrow(:abort)enddefensure_credit_card_is_on_fileputs"check if credit card is on file"endendOrder.create!=>ActiveRecord::RecordNotSaved:Failedtosavetherecord
Opting out of this behavior
The new Rails 5 application comes up
with initializer named callback_terminator.rb.
We can turn off this default behavior
by changing this configuration to true. However then
Rails shows deprecation warning when false is returned from callback.
ActiveSupport.halt_callback_chains_on_return_false=trueclassOrder<ApplicationRecordbefore_save:set_eligibility_for_rebatebefore_save:ensure_credit_card_is_on_filedefset_eligibility_for_rebateself.eligibility_for_rebate||=falseenddefensure_credit_card_is_on_fileputs"check if credit card is on file"endend=>DEPRECATIONWARNING:Returning`false`inActiveRecordandActiveModelcallbackswillnotimplicitlyhaltacallbackchaininthenextreleaseofRails.Toexplicitlyhaltthecallbackchain,pleaseuse`throw :abort`instead.ActiveRecord::RecordNotSaved:Failedtosavetherecord
How older applications will work with this change?
The initializer configuration will be present
only in newly generated Rails 5 apps.
If you are upgrading from an older version of Rails,
you can add this initializer yourself
to enable this change for entire application.
This is a welcome change in Rails 5 which will
help prevent accidental halting of the callbacks.
Bundler
helps in managing gem dependencies of ruby projects.
You can specify which gems and versions you need, bundler will install them and load them at runtime.
Bundler ensures that gems you need are present in the environment you
need.
Bundle configurations
Bundler gets its configurations from local application (app/.bundle/config), environment variables and user’s home directory (~/.bundle/config) in the order of priority.
To list all bundler configurations for the current bundle, run bundle config without any parameters. You will also get the location where the value is set.
$ bundle config
Settings are listed in order of priority. The top value will be used.
You might see different result based on configuration of bundler on your
machine.
To get value for the specific configuration setting, run bundle config with name.
$ bundle config disable_multisource
Settings for `disable_multisource` in order of priority. The top value will be used
You have not configured a value for `disable_multistore`
Setting Configuration
To set the value of the configuration setting, use bundle config with name and value. Configuration will be stored in ~/.bundle/config.
$ bundle config build.pg --with-pg-config=/opt/local/lib/postgresql91/bin/pg_config
$ bundle config
Settings are listed in order of priority. The top value will be used.
build.pg
Set for the current user (/Users/username/.bundle/config): "--with-pg-config=/opt/local/lib/postgresql91/bin/pg_config"
If any config already has a value, it will be overwritten directly and user will be warned.
$ bundle config build.pg --with-pg-config=/usr/pgsql-9.1/bin/pg_config
You are replacing the current global value of build.pg, which is currently "--with-pg-config=/opt/local/lib/postgresql91/bin/pg_config"
Application level configuration
By default setting configuration value will set it for all projects on the machine. You can set configurations specific to local application with --local option. This will store value in app/.bundle/config.
$ bundle config --local auto_install false
You are replacing the current local value of auto_install, which is currently nil
$ bundle config auto_install
Settings for `auto_install` in order of priority. The top value will be used
Set for your local app (/Users/username/Documents/Workspace/app-name/.bundle/config): "false"
Set for the current user (/Users/username/.bundle/config): "true"
You can run bundle config with --global.
This will set values at global level i.e. across all applications on the machine.
It will be similar to running bundle config without any options.
Deleting configuration
You can delete configuration with --delete option.
$ bundle config --delete auto_install
$ bundle config
Settings are listed in order of priority. The top value will be used.
disable_multisource
Set for the current user (/Users/username/.bundle/config): "true"
build.pg
Set for the current user (/Users/username/.bundle/config): "--with-pg-config=/usr/pgsql-9.1/bin/pg_config"
This is not compatible with --local and --global. This will delete configuration from local and global resources.
Build Options
You can pass the flags required for installing particular gem to bundler with bundle config.
Many El Capitan users face an
issue
while installing eventmachine gem.
The issue can be resolved by providing path to OpenSSL include directory while installing eventmachine.
Now bundler will pick this configuration while installing eventmachine gem.
Configuration keys
Various configuration keys are available with bundler.
These keys are available in two forms.
You can specify them in canonical form with bundle config or set them in environment variable form.
Following are canonical forms and their usage.
Corresponding environment variables are specified in bracket.
auto_install
Setting auto_install config will enable automatic installing of gems instead of raising an error.
This applies to show, binstubs, outdated, exec, open, console, license, clean commands.
Example, When you try to run bundle show for the gem which is not yet installed you will get an error.
$ bundle show pg
Could not find gem 'pg'.
You can set auto_install to remove this error and install gem.
$ bundle config auto_install true
$ bundle show pg
# Gem will get installed
/Users/username/.rvm/gems/ruby-2.2.2@gemset-auto/gems/pg-0.17.1
path (BUNDLE_PATH)
You can specify location to install your gems. Default path is $GEM_HOME for development and vendor/bundle when –deployment is used.
$ bundle config path NEW_PATH
$ bundle install
# Gems will get installed
#
#
Bundle complete! 4 Gemfile dependencies, 35 gems now installed.
Bundled gems are installed into NEW_PATH.
frozen (BUNDLE_FROZEN)
You can freeze changes to your Gemfile.
$ bundle config frozen true
If frozen is set and you try to run bundle install with changed Gemfile, you will get following warning.
You are trying to install in deployment mode after changing
your Gemfile. Run `bundle install` elsewhere and add the
updated Gemfile.lock to version control.
If this is a development machine, remove the /Users/username/Documents/Workspace/app-name/Gemfile freeze
by running `bundle install --no-deployment`.
You have added to the Gemfile:
* minitest-reporters
without (BUNDLE_WITHOUT)
You can skip installing groups of gems with bundle install. Specify : separated group names whose gems bundler should not install.
$ bundle config --local without development:test
$ bundle install
# This will install gems skipping development and test group gems.
bin (BUNDLE_BIN)
You can set the directory to install executables from gems in the bundle.
$ bundle config bin NEW_PATH
$ bundle install
# This will install executables in NEW_PATH
gemfile (BUNDLE_GEMFILE)
You can set the file which bundler should use as theGemfile. By default, bundler will use Gemfile. The location of this file also sets the root of the project, which is used to resolve relative paths in the Gemfile.
$ bundle config gemfile Gemfile-rails4
$ bundle install
# This will install gems from Gemfile-rails4 file.
ssl_ca_cert (BUNDLE_SSL_CA_CERT)
This specifies path to a designated CA certificate file or folder containing multiple certificates for trusted CAs in PEM format. You can specify your own https sources in Gemfile with corresponding certificates specified via bundle config.
$ bundle config ssl_ca_cert NEW_CERTIFICATE_PATH
ssl_client_cert (BUNDLE_SSL_CLIENT_CERT)
This specifies path to a designated file containing a X.509 client certificate and key in PEM format.
You can set the path to place cached gems while running bundle package.
$ bundle config cache_path vendor/new-cache-path
$ bundle package
Using colorize 0.7.7
Using pg 0.17.1
Using bundler 1.11.2
Updating files in vendor/new-cache-path
* colorize-0.7.7.gem
* pg-0.17.1.gem
Bundle complete! 2 Gemfile dependencies, 3 gems now installed.
Use `bundle show [gemname]` to see where a bundled gem is installed.
Updating files in vendor/new-cache-path
disable_multisource (BUNDLE_DISABLE_MULTISOURCE)
When set, Gemfiles containing multiple sources will produce an error instead of a warning.
When you try to run bundle install, you will get warning.
$ bundle install
Warning: this Gemfile contains multiple primary sources. Using `source` more than once without a block is a security risk, and may result in installing unexpected gems. To resolve this warning, use a block to indicate which gems should come from the secondary source. To upgrade this warning to an error, run `bundle config disable_multisource true`.
$ bundle config --local disable_multisource true
$ bundle install
[!] There was an error parsing `Gemfile`: Warning: this Gemfile contains multiple primary sources. Each source after the first must include a block to indicate which gems should come from that source. To downgrade this error to a warning, run `bundle config --delete disable_multisource`. Bundler cannot continue.
# from /Users/username/Documents/Workspace//Gemfile:2
# -------------------------------------------
# source 'https://rubygems.org'
> source 'http://gems.github.com'
#
# -------------------------------------------
To ignore all bundle config on the machine and run bundle install, set BUNDLE_IGNORE_CONFIG environment variable.
D3.js
is a Javascript library used to create interactive, dynamic visualizations.
Let’s take a step by step look at
how we can integrate ReactJS with D3JS
to plot some interactive visualizations.
Step 1 - Get ReactJS example working
We will be using
JSFiddle example
from
ReactJS Docs
to begin with.
Fork the JSFiddle example
and
you should be good to go.
Step 2 - Add D3.js as an external resource
We will be using
D3.js
from Cloudflare CDN.
Add D3.js as an
external resource as shown in the image given below and type the following
URL as an external resource.
Let’s create another component DataSeries
that will render Line component
for each series of data provided.
This generates path based on xScale and yScale
generated for plotting a line chart.
Here in above code
d3.svg.line
creates a new line generator
which expects input as a two-element array of numbers.
Now we will create LineChart component that will calculate xScale, yScale
based on data
and
will render DataSeries by passing xScale, yScale, data
(input x,y values), width, height for the chart.
An element with id container is replaced with content rendered by LineChart.
If we take a look at the output now,
we see how the Line Chart gets plotted.
To build complex visualizations in a modularized fashion,
we can use one of the open source libraries mentioned below
based on their advantages and disadvantages.
ReactJS + D3.js Open Source Projects
Here are two popular open source ReactJS + D3.JS projects.
Often while developing a Rails application you may look to have one of these
caching techniques
to boost the performance.
Along with these, Rails 5 now provides a way of caching a collection of records,
thanks to the introduction of the following method:
ActiveRecord::Relation#cache_key
What is collection caching?
Consider the following example where we are fetching a collection of all users belonging to city of Miami.
@users=User.where(city: 'miami')
Here @users is a collection of records and is an object of class ActiveRecord::Relation.
Whether the result of the above query would be same depends on following
conditions.
The query statement doesn’t change. If we change city name from
“Miami” to “Boston” then result might change.
No record is deleted. The count of records in the collection should be same.
No record is added. The count of records in the collection should be same.
Rails community
implemented caching for a collection of records .
Method cache_key was added to ActiveRecord::Relation which
takes into account many factors including
query statement, updated_at column value and the count of the records in collection.
Understanding ActiveRecord::Relation#cache_key
We have object @users of class ActiveRecord::Relation.
Now let’s execute cache_key method on it.
users represents what kind of records we are holding.
In this example we have collection of records of class User.
Hence users is to illustrate that we are holding users records.
query- is hardcoded value and it will be same in all cases.
67ed32b36805c4b1ec1948b4eef8d58f
is a digest of the query statement that will be executed.
In our example it is MD5( "SELECT "users".* FROM "users" WHERE "users"."city" = 'Miami'")
3 is the size of collection.
20160116111659084027
is timestamp of the most recently updated record in the
collection. By default, the timestamp column considered is updated_at
and
hence the value will be the most recent updated_at value in the collection.
Using ActiveRecord::Relation#cache_key
Let’s see how to use cache_key to actually cache data.
In our Rails application, if we want to cache records of users belonging to “Miami”
then we can take following approach.
# app/controllers/users_controller.rbclassUsersController<ApplicationControllerdefindex@users=User.where(city: 'Miami')endend# users/index.html.erb<% cache(@users) do%>
<% @users.each do |user| %><p><%= user.city %> </p>
<% end %>
<% end %>
# 1st Hit
Processing by UsersController#index as HTML
Rendering users/index.html.erb within layouts/application
(0.2ms) SELECT COUNT(*) AS "size", MAX("users"."updated_at") AS timestamp FROM "users" WHERE "users"."city" =?[["city","Miami"]]Readfragmentviews/users/query-37a3d8c65b3f0f9ece7f66edcdcb10ab-4-20160704131424063322/30033e62b28c83f26351dc4ccd6c8451(0.0ms)UserLoad(0.1ms)SELECT"users".*FROM"users"WHERE"users"."city"=?[["city","Miami"]]Writefragmentviews/users/query-37a3d8c65b3f0f9ece7f66edcdcb10ab-4-20160704131424063322/30033e62b28c83f26351dc4ccd6c8451(0.0ms)Renderedusers/index.html.erbwithinlayouts/application(3.7ms)# 2nd HitProcessingbyUsersController#index as HTMLRenderingusers/index.html.erbwithinlayouts/application(0.2ms)SELECTCOUNT(*)AS"size",MAX("users"."updated_at")AStimestampFROM"users"WHERE"users"."city"=?[["city","Miami"]]Readfragmentviews/users/query-37a3d8c65b3f0f9ece7f66edcdcb10ab-4-20160704131424063322/30033e62b28c83f26351dc4ccd6c8451(0.0ms)Renderedusers/index.html.erbwithinlayouts/application(3.0ms)
From above, we can see that
for the first hit,
a count query is fired to get the
the latest updated_at and size from the users collection.
Rails will write a new cache entry with a cache_key
generated from above count query.
Now on second hit,
it again fires count query and
checks if cache_key for this query exists or not.
If cache_key is found, it loads data without firing SQL query.
What if your table doesn’t have updated_at column?
Previously we mentioned that cache_key method uses
updated_at column. cache_key also provides an option of
passing custom column as a parameter
and
then the highest value of that column among the records in the collection will be considered.
For example if your business logic considers
a column named last_bought_at in products table as a factor to decide caching, then you can use the following code.
You can see that the count in the cache is 5 this time even though we have set a limit to 3.
This is because the implementation of
ActiveRecord::Base#collection_cache_key
executes query without limit
to fetch the size of the collection.
Cache key doesn’t change when an existing record from a collection is replaced
Note that cache_key both users1 and users2 is exactly same.
This is because none of the parameters that affect the cache key is changed
i.e., neither the number of records,
nor the query statement,
nor the timestamp of the latest record.
There is
a discussion undergoing
about adding ids of the collection records as part of the cache key.
This might help solve the problems discussed above.
Using group query gives incorrect size in the cache key
Just like limit case discussed above cache_key behaves differently
when data is loaded and when data is not loaded in memory.
Let’s say that we have two users with first_name “Sam”.
First let’s see a case where collection is not loaded in memory.
In the above case, the size is 1 in cache_key.
For the system mentioned above, the sizes that you will get shall either be 1 or 5.
That is, it is size of an arbitrary group.
In the above case, the size is 2 in cache_key.
You can see that the count in the cache key here
is different compared to that where the collection was unloaded
even though the query output in both the cases will be exactly same.
In case where the collection is loaded,
the size that you get is equal to the total number of groups.
So irrespective of what the records in each group are,
we may have possibility of having the same cache key value.
In Rails 4 if I’m doing work related to caching then first I need
to turn caching “on” by opening file config/environments/development.rb
and changing following line.
config.action_controller.perform_caching=false
After changing the value from false to true, I need to restart the
server.
This means that if I am testing caching behavior locally then every time I turn
caching “on” or “off”
I need to restart the server.
New command to create development cache in Rails 5
Rails 5 has introduced a new command to
create development cache
and help us test how caching behaves in development mode.
Here is the issue
and
here is the pull request.
$ rails dev:cache
Development mode is now being cached.
Execution of the above command creates file caching-dev.txt in tmp directory.
How does it work?
In Rails 5 when a brand new Rails app is created then
config/environments/development.rb file will have the following
snippet of code.
In the above code we are checking if the file tmp/caching-dev.txt
is present and then use :mem_cache_store to enable caching only if the file is found.
defdev_cacheifFile.exist?'tmp/caching-dev.txt'File.delete'tmp/caching-dev.txt'puts'Development mode is no longer being cached.'elseFileUtils.touch'tmp/caching-dev.txt'puts'Development mode is now being cached.'endFileUtils.touch'tmp/restart.txt'end
What is the advantage
The advantage is that we do not need to restart the
server manually if we want to turn caching “on” or “off”.
It is internally taken care by the dev_cache method
that is executed when rails dev:cache is executed.
You can see in the source code that tmp/restart.txt is being touched.
Please note that this feature is not supported by unicorn, thin and
webrick. My guess is that DHH wants this feature because his team uses
pow and pow restarts when tmp/restart.txt is touched.
He also created an issue for
spring to watch tmp/restart.txt
long time
back.
Disabling development cache
Execute the same command that was used to enable caching. If caching was
previously enabled then it will be turned “off” now.
$ rails dev:cache
Development mode is no longer being cached.
As we can see above port 5432 is bound to 127.0.0.1. It means any
attempt to connect to the postgresql server from outside the machine will be refused.
We can try hitting the port 5432 by using telnet.
$ telnet 107.170.11.79 5432
Trying 107.170.11.79...
telnet: connect to address 107.170.11.79: Connection refused
telnet: Unable to connect to remote host
Configuring postgresql.conf
In order to fix this issue we need to find postgresql.conf. In
different systems it is located at different place. I usually search for
it.
Here we can see that “Local Address” for port 5432 has changed to 0.0.0.0.
Configuring pg_hba.conf
Let’s try to connect to remote postgresql server using “psql”.
$ psql -h 107.170.158.89 -U postgres
psql: could not connect to server: Connection refused
Is the server running on host "107.170.158.89" and accepting
TCP/IP connections on port 5432?
In order to fix it, open pg_hba.conf and add following entry at the
very end.
host all all 0.0.0.0/0 md5
host all all ::/0 md5
The second entry is for IPv6 network.
Do not get confused by “md5” option mentioned above. All it means is
that a password needs to be provided. If you want client to allow
collection without providing any password then change “md5” to “trust”
and that will allow connection unconditionally.
Restart postgresql server.
$ psql -h 107.170.158.89 -U postgres
Password for user postgres:
psql (9.4.1, server 9.4.5)
Type "help" for help.
postgres=# \l
You should be able to see list of databases.
Now we are able to connect to postgresql server remotely.
Please note that in the real world you should be using extra layer of
security by using “iptables”.
In Rails 4 some commands start with rails and some commands start with
rake. This could be quite confusing for people new to Rails. Let’s see
an example.
Our task is to write a database migration and then to run that migration.
railsgmigrationcreate_users
Above command creates a migration. Now we need to run that migration.
rakedb:migrate
As you can see first command starts with rails and second command
starts with rake.
In order to consolidate them we can either use rails for everything or
we can use rake for everything.
Choosing rails command over rake command
Some favor using rake over rails.
But an important feature missing in Rake
is the ability to pass arguments.
railsconsoledevelopment
In order to execute the above command using rake
we will have to pass console and development
as arguments. We can pass these values using environment variables.
That would mean adding additional code in Rake task to fetch right
values and then only we will be able to invoke command
rails console development.
Rails 5 enables executing rake commands with rails
Rails core team
decided
to have consistency by enabling rails command to support
everything that rake does.
For example in Rails 5 commands like db:migrate, setup, test etc which are part of rake command in Rails 4 are
now being supported by rails command.
However you can still choose to use rake to run those commands similar to how
they were run in Rails 4.
This is because Rails community has
introduced Rake Proxy
instead of completely moving the command options from rake to rails.
What happens internally is that when rails db:migrate command is executed, Rails checks if
db:migrate is something that rails natively supports or not.
In this case db:migrate is not natively supported by rails,
so Rails delegates the execution to Rake via Rake Proxy.
If you want to see all the commands that is supported by rails in
Rails 5 then you can get a long list of options by executing rails
--help.
Use app namespace for framework tasks in Rails 5
As rails command is now preferred
over rake command,
few rails namespaced framework tasks
started looking little odd.
Using rails rails:update will now give deprecation warning like:
DEPRECATION WARNING: Running update with the rails: namespace is deprecated in favor of app: namespace. Run bin/rails app:update instead.
More improvements in pipeline
In Rails 4, the routes are usually searched like this.
$ rake routes | grep pattern
There is an effort underway
to have a Rails command which might work as shown below.
We have written an extensive blog
on what CSRF is and what steps Rails 4 takes to prevent CSRF. We
encourage you to read that blog to fully understand rest of this article.
Nested form can get around CSRF protection offered by Rails 4
A typical form generated in Rails 4 might look like this.
Since nested forms are not allowed browser will accept the top most
level form. In this case that happens to be the form created by the
hacker. When this form is submitted then “authenticity_token” is also
submitted and Rails will do its check and will say everything is looking
good and thus hacker will be able to hack the site.
Rails 5 fixes the issue by generating a custom token for a form
Adding that code to each controller feels burdensome. In that case you
can enable this behavior for all controllers in the application by
adding following line to an initializer.
This will add authenticity token specific to method and action in each form tag of the application.
After adding that token the generated form might look like as shown
below.
Authenticity token included here will be specific to action money_transfer and method post.
Attacker can still grab authenticity_token here, but attack will be limited to money_transfer post action.
Rails request-response cycle is very easy to understand.
A request hits the app, a route is matched to a controller action from routes.rb,
and finally controller action processes the request and renders HTML or JSON based
on the type of the request.
But sometimes we want to render our HTML or JSON response outside of this request-response
cycle.
For example let’s say user is allowed to download PDF version of a
report on web. This can be done using request-response cycle. We also
need to send a weekly report to managers and the email should have the
report as an attachment. Now we need to generate the same PDF but since
emails are sent using background job the request-response cycle is
missing.
Rails 5 has this feature baked in.
Let’s say we have a OrdersController and
we want to render individual order outside of controller.
Fire up rails console and execute following command.
This will render app/views/orders/show.html.erb with @order set to
Order.last. Instance variables can be set using
assigns in the same way
we use them in controller actions.
Those instance variables will be passed to
the view that is going to be rendered.
This will render app/views/orders/_form.html.erb and will pass order as local
variable.
Say I want to render all orders, but in JSON format.
OrdersController.render json: Order.all
# => "[{"id":1, "name":"The Well-Grounded Rubyist", "author":"David A. Black"},
{"id":2, "name":"Remote: Office not required", "author":"David & Jason"}]
Even rendering simple text is possible.
>>BooksController.renderplain: 'this is awesome!'Renderedtexttemplate(0.0ms)# => "this is awesome!"
Similar to text, we can also use render file and render template.
Request environment
A typical web request carries it’s own environment with it. We usually handle
this environment using request.env in controllers.
Certain gems like devise depends on env hash for information such as warden token.
So when we are rendering outside of controller,
we need to make sure that
the rendering happens with correct environment.
Rails provides a default rack environment for this purpose.
The default options used
can be accessed through renderer.defaults.
Internally, Rails will build a new Rack environment based on these options.
Customizing the environment
We can customize environment using method renderer.
Let’s say that we need “method as post” and we want
“https to be true” for our background job processing.
Recently we came across following error
when mobile app was trying to upload images using backend API.
==> nginx-error.log <==
2015/12/16 07:34:13 [error] 1440#0: *1021901
sendfile() failed (32: Broken pipe)while sending request to upstream,
client: xxx.xx.xxx.xx, server: app-name.local,
request: "POST /api_endpoint HTTP/1.1",
upstream: "http://unix:/data/apps/app-name/shared/tmp/sockets/unicorn.sock:/api_endpoint",
host: "appname.com"==> nginx-error.log <==
xxx.xx.xxx.xx - - [16/Dec/2015:07:34:13 - 0500]
"POST /api_endpoint HTTP/1.1" 502 1051 "-""Mozilla/5.0 (iPhone; CPU iPhone OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13B143 (366691552)"
The backend API was developed using Ruby on Rails and was powered using NGINX HTTP server along with unicorn application server.
Notice the the http response received was 502 which is documented in
RFC as shown below.
10.5.3 502 Bad Gateway
The server, while acting as a gateway or proxy, received an invalid response from the upstream server it accessed in attempting to fulfill the request.
Debugging the problem
From the first look it seemed that the client_max_body_size parameter for nginx was too less,
which might cause the request to fail if the uploaded filesize is greater than the allowed limit.
But that was not the case with our NGINX configuration.
The NGINX was configured to accept file size upto 250 megabytes, while the file being uploaded was around 6 megabytes.
In our Rails code we are forcing all traffic to use HTTPS by having production.rb to have following setting.
config.force_ssl=true
What this setting does is, it forces HTTPS by redirecting HTTP requests to their HTTPS counterparts.
So any request accessing http://domain.com/path will be redirected to https://domain.com/path
Forcing all traffic to HTTPS still does not explain the vague error sendfile() failed (32: Broken pipe) while sending request to upstream and why the HTTP 502 error which means Bad Gateway
Here is how our nginx.conf is configured.
server {
...
listen 80;
listen 443 ssl;
...
}
NGINX is configured to accept both HTTP and HTTPS requests. This is a
pretty standard setting so that application can support both
HTTP and HTTPS.
What it means is that nginx will accept both HTTP and HTTPS request.
It would not force HTTP request to be HTTPS.
It would forward HTTP request to rails backend api.
Here is what happens when you upload a file
When we upload a file then NGINX takes that request and passes that
request to Rails. NGINX expects a response from Rails only when
NGINX is done sending the whole request.
Let’s see what happens when a user visits login page using HTTP. NGINX
takes the request and passes the request to Rails. When NGINX is done
handing over the request to Rails then NGINX expects a response from
Rails. However in this case rather than sending 200 Rails sends a
redirect over HTTPS. So now NGINX takes up the request again over HTTPS
and then hands over request to Rails. Rails processes the request and
returns 200. Everything works out.
Now let’s see what happens when a file is uploaded over HTTP.
User uploads a file over HTTP. NGINX takes up the request and starts
sending the file to Rails. More details about the file upload process
can be see at RFC. The data is
sent to server in chunks. When first chunk is sent to server then server
notices that data is being sent over HTTP and it immediately sends a
response that data should be sent over HTTPS.
In the meantime on the client side , client is still pushing rest of the
data to the server. Client expects a response from the server only when
it is done pushing all the data. However in this case server sends a
response when client is not expecting it.
NGINX at this time is all confused and thinks something has gone wrong
with the gateway and returns HTTP/1.1 502 Bad Gateway and aborts the
upload operation. And that how we get the 502 error.
So next time you see an error like this make sure that you are using
https to upload the file if server is enforcing https.
We at BigBinary adopted ReactJS pretty early. Early in the year we
published series of videos titled Learn ReactJS in steps
which takes a “Hello World” app into a full TODO application using
ReactJS in incremental steps.
We also started an ios app using React Native. It’s coming along pretty
good and soon we should see it in app store.
We authored many blogs
We love sharing our experiences via blogs on various topics
like ReactJS, Rails, React Native and Robot framework etc.
Here are some of our blogs from 2015.
Apart from our team members contributing to various OpenSource projects, we also support some projects from our team.
This year, we added and helped build following projects-
Wheel : Wheel is our Rails template for new Ruby on Rails projects, with sane defaults and setups for different environments, and common functionalities like image uploaders, debugging, etc.
Mail Interceptor : Interception, Forwarding emails in Ruby on Rails application
Handy : A collection handy tools and Rails tasks for your Project.
Fixtures Dumper : Dump your Rails data to fixtures easily to a database to populate data.
Community Engagement
Along with speaking at various conferences, we also helped organize, our Fun edition of Pune’s regional RubyConf,
DeccanRubyConf,
and supported other Indian Conferences,
including RubyConfIndia, GardenCity RubyConf.
We also help Pune’s local ruby meetup, which had a splendid engagement this year.
Overall we are super excited about what we accomplished in year 2015.
We are looking forward to an exciting year of 2016!
If you run bin/rails -h in a Rails 5 app, you will see a new command for running tests.
$ bin/rails -h
Usage: rails COMMAND [ARGS]
The most common rails commands are:
generate Generate new code (short-cut alias: "g")
console Start the Rails console (short-cut alias: "c")
server Start the Rails server (short-cut alias: "s")test Run tests (short-cut alias: "t")
Before Rails 5, we had to use bin/rake test to run tests.
But in Rails 5, we can use bin/rails test.
It is not just replacement of old rake task but it is backed by a test runner
inspired from RSpec, minitest-reporters, maxitest and others.
Let’s see what bin/rails test can do.
Running a single test
Now it is possible to run a single test out of the box using the
line number of the test.
$ bin/rails test test/models/user_test.rb:27
Rails will intelligently run the test from user_test.rb having line number 27.
Note that the line number 27 does not need to be first line of the test.
Below is an example.
In the above case, test_valid_user can be run as long as the line number
provided is between 22 and 30.
Running multiple tests
You can also pass multiple test paths and Rails will run all of those tests.
$ bin/rails test test/models/user_test.rb:27 test/models/post_test.rb:42
It is also possible to run all tests from a directory.
$ bin/rails test test/controllers test/integration
Improved failure messages
When a test fails, Rails displays a command which can be used to just run
the failed test.
$ bin/rails t
Run options: --seed 51858
# Running:
.F
Failure:
PostsControllerTest#test_should_get_new:
Expected response to be a <success>, but was a <302> redirect to <http://test.host/posts>
bin/rails test test/controllers/posts_controller_test.rb:15
I can simply copy
bin/rails test test/controllers/posts_controller_test.rb:15
and rerun the failing test.
Failing fast
By default when a test fails then rails reports about the test failures
and then moves on to the next test. If you want to stop running the test
when a test fails then use option -f.
$ bin/rails t -f
Run options: -f--seed 59599
# Running:
..F
Failure:
PostsControllerTest#test_should_get_new:
Expected response to be a <success>, but was a <302> redirect to <http://test.host/posts>
bin/rails test test/controllers/posts_controller_test.rb:15
Interrupted. Exiting...
Finished in 0.179125s, 16.7481 runs/s, 22.3308 assertions/s.
3 runs, 4 assertions, 1 failures, 0 errors, 0 skips
Defer test output until the end of the full test run
By default when a test fails then rails prints F and then details
about the failure like what assertion failed and how to re run the test
etc.
If you want to have a clean output of . and F and would like all the
test failures report to come at the every end then use option -d.
$ bin/rails t -d
Run options: -d --seed 29906
# Running:
..F...F
Finished in 0.201320s, 34.7704 runs/s, 49.6721 assertions/s.
1) Failure:
PostsControllerTest#test_should_create_post [/Users/prathamesh/Projects/fun/rails-5-test-runner-app/test/controllers/posts_controller_test.rb:19]:
"Post.count" didn't change by 1.
Expected: 3
Actual: 2
2) Failure:
PostsControllerTest#test_should_get_new [/Users/prathamesh/Projects/fun/rails-5-test-runner-app/test/controllers/posts_controller_test.rb:15]:
Expected response to be a <success>, but was a <302> redirect to <http://test.host/posts>
7 runs, 10 assertions, 2 failures, 0 errors, 0 skips
Failed tests:
bin/rails test test/controllers/posts_controller_test.rb:19
bin/rails test test/controllers/posts_controller_test.rb:15
Better backtrace output
By default when an error is encountered while running the test
then the output does not contain full stacktrace.
This makes debugging little bit difficult.
Error:
PostsControllerTest#test_should_create_post:
NameError: undefined local variable or method `boom' for #<PostsController:0x007f86bc62b728>
app/controllers/posts_controller.rb:29:in `create'
test/controllers/posts_controller_test.rb:20:in `block (2 levels) in <class:PostsControllerTest>'
test/controllers/posts_controller_test.rb:19:in `block in <class:PostsControllerTest
Now we can use -b switch,
which will display complete backtrace of error message.
$ bin/rails t -b
Error:
PostsControllerTest#test_should_create_post:
NameError: undefined local variable or method `boom' for #<PostsController:0x007fc53c4eb868>
/rails-5-test-runner-app/app/controllers/posts_controller.rb:29:in `create'
/sources/rails/actionpack/lib/action_controller/metal/basic_implicit_render.rb:4:in `send_action'
/sources/rails/actionpack/lib/abstract_controller/base.rb:183:in `process_action'
/sources/rails/actionpack/lib/action_controller/metal/rendering.rb:30:in `process_action'
/sources/rails/actionpack/lib/abstract_controller/callbacks.rb:20:in `block in process_action'
/sources/rails/activesupport/lib/active_support/callbacks.rb:126:in `call'
.....
/sources/rails/activesupport/lib/active_support/testing/assertions.rb:71:in `assert_difference'
/rails-5-test-runner-app/test/controllers/posts_controller_test.rb:19:in `block in <class:PostsControllerTest>'
Leveraging power of Minitest
The test runner also leverages power of minitest by providing some handy options.
Switch -s to provide your own seed
Now we can also provide our own seed using -s switch.
$ bin/rails t --s 42000
Switch -n to run matching tests
Switch -n will run tests matching
the given string or regular expression pattern.
$ bin/rails t -n "/create/"
Run options: -n /create/ --seed 24558
# Running:
E
Error:
PostsControllerTest#test_should_create_post:
NameError: undefined local variable or method `boom' for #<PostsController:0x007faa39c2df90>
app/controllers/posts_controller.rb:29:in `create'
test/controllers/posts_controller_test.rb:20:in `block (2 levels) in <class:PostsControllerTest>'
test/controllers/posts_controller_test.rb:19:in `block in <class:PostsControllerTest>'
bin/rails test test/controllers/posts_controller_test.rb:18
Finished in 0.073857s, 13.5396 runs/s, 0.0000 assertions/s.
1 runs, 0 assertions, 0 failures, 1 errors, 0 skips
Verbose output
It is also possible to see the verbose output using -v switch.
It shows time required to run each test.
This would help in detecting slow running tests.
$ bin/rails t -v
Run options: -v --seed 30118
# Running:
PostsControllerTest#test_should_destroy_post = 0.07 s = .
PostsControllerTest#test_should_update_post = 0.01 s = .
PostsControllerTest#test_should_show_post = 0.10 s = .
PostsControllerTest#test_should_create_post = 0.00 s = F
Failure:
PostsControllerTest#test_should_create_post:
"Post.count" didn't change by 1.
Expected: 3
Actual: 2
bin/rails test test/controllers/posts_controller_test.rb:19
PostsControllerTest#test_should_get_new = 0.02 s = .
PostsControllerTest#test_should_get_index = 0.01 s = .
PostsControllerTest#test_should_get_edit = 0.00 s = .
Finished in 0.210071s, 33.3220 runs/s, 47.6028 assertions/s.
7 runs, 10 assertions, 1 failures, 0 errors, 0 skips
Colored output
Now by default we will get colored output.
No need to add additional gem to colored output.
With all these awesome features, testing Rails 5 apps has definitely become
a better experience.
Rails has shipped all these features within
the framework itself so you don’t have to use multiple gems and libraries to achieve
all of these things.
This behavior is similar to how controllers inherit from ApplicationController
instead of inheriting from ActionController::Base.
Now ApplicationRecord will be a single point of entry for all the customizations and
extensions needed for an application, instead of monkey patching ActiveRecord::Base.
Say I want to add some extra functionality to Active Record.
This is what I would do in Rails 4.2.
But now, ActiveRecord::Base forever includes MyAwesomeFeature and any class
inheriting from it also includes MyAwesomeFeature even if they don’t want it.
This is especially true if you are using plugins and engines where monkey patching to ActiveRecord::Base
can leak into engine or plugin code.
But with ApplicationRecord, they will be localized to only those models which
are inheriting from ApplicationRecord, effectively only to your application.
By default all new Rails 5 applications will have application_record.rb.
If you are migrating from Rails 4, then simply create app/models/application_record.rb as shown below
and change all models to inherit from ApplicationRecord instead of ActiveRecord::Base.
When a Rails application involving multiple gems, engines etc. are built then it’s important
to know how constants are looked up and resolved.
Consider a brand new Rails app with model User.
classUserdefself.model_method'I am in models directory'endend
Run User.model_method in rails console. It runs as expected.
Now add file user.rb in lib directory.
classUserdefself.lib_method'I am in lib directory'endend
Reload rails console and try executing User.model_method and User.lib_method.
You will notice that User.model_method gets executed and User.lib_method doesn’t. Why is that?
In Rails we do not import files
If you have worked in other programming languages like Python or Java
then in your file you must have statements to import other files. The
code might look like this.
In Rails we do not do that. That’s because
DHH
does not like the idea of opening a file and seeing the top of the file
littered with import statements.
He likes to see his files beautiful.
Since we do not import file then how does it work?
In Rails console when user types User then rails detects that User
constant is not loaded yet.
So it needs to load User constant.
However in order to do that it has to load a file.
What should be the
name of the file. Here is what Rails does.
Since the constant name is User Rails says that I’m going to look for file user.rb.
So now we know that we are looking for user.rb file. But the
question is where to look for that file. Rails has autoload_path. As
the name suggests this is a list of paths from where files are
automatically loaded. Rails will search for user.rb in this list of
directories.
As you can see in the result one of the folders is app/models. When
Rails looks for file user.rb in app/models then Rails will find it
and it will load that file.
That’s how Rails loads User in Rails console.
Adding lib to the autoload path
Let’s try to load User from lib directory.
Open config/application.rb and add following code in the
initialization part.
config.autoload_paths += ["#{Rails.root}/lib"]
Now exit rails console and restart it.
And now lets try to execute the same command.
Here you can see that lib directory has been added at the very top.
Rails goes from top to bottom while looking for user.rb file. In this
case Rails will find user.rb in lib and Rails will stop looking for
user.rb. So the end result is that user.rb in app/models directory
would not even get loaded as if it never existed.
Enhancing a model
Here we are trying to add an extra method to User model. If we stick
our file in lib then our user.rb is never loaded because Rails will
never look for anything in lib by default. If we ask Rails to look in
lib then Rails will not load file from app/models because the file
is already loaded. So how do we enhance a model without sticking code in
app/models/user.rb file.
Introducing initializer to load files from model and lib directories
We need some way to load User from both models and lib directories.
This can be done by adding an
initializer to config/initializers directory with following code snippet
Now both User.model_method and User.lib_method get executed as expected.
In the above case when first time user.rb is loaded then constant
User gets defined. Second time ruby understands that constant is
already defined so it does not bother defining it again. However it adds
additional method lib_method to the constant.
In that above case if we replace load file with require file then
User.lib_method will not work. That is because require will not load
a file if a constant is already defined. Read
here
and
here
to learn about how load and require differ.
Using ‘require_relative’ in model
Another approach of solving this issue is by using require_relative inside model. require_relative loads the file
present in the path that is relative to the file where the statement is called in. The desired file to be loaded is given
as an argument to require_relative
In our example, to have User.lib_method successfully executed, we need to load the lib/user.rb. Adding the following code
in the beginning of the model file user.rb should solve the problem. This is how app/models/user.rb will now look like.
require_relative'../../lib/user'classUserdefself.model_method'I am in models directory'endend
Here require_relative upon getting executed will first initialize the constant User from lib directory.
What follows next is opening of the same class User that has been initialized already and addition of model_method to it.
Handling priorities between Engine and App
In one of the projects we are using engines.
SaleEngine has a model Sale. However Sale doesn’t get resolved as
path for engine is neither present in config.autoload_paths nor in ActiveSupport::Dependencies.autoload_paths.
The initialization of engine happens in engine.rb file present inside lib directory of the engine.
Let’s add a line to load engine.rb inside application.rb file.
In Rails console if we try to see autoload path then we will see that
lib/sale_engine is present there. That means we can now use
SaleEngine::Engine.
Now any file we add in sale_engine directory would be loaded. However
if we add user.rb here then the user.rb mentioned in app/models
would be loaded first because the application directories have
precedence. The precedence order can be changed by following statements.
engines=[SaleEngine::Engine]# in case there are multiple enginesconfig.railties_order=engines+[:main_app]
The symbol :main_app refers to the application where the server comes up. After adding the above code, you will see that
the output of ActiveSupport::Dependencies now shows the directories of engines first (in the order in which they have been
given) and then those of the application. Hence for any class which is common between your app and engine, the one from
engine will now start getting resolved. You can experiment by adding multiple engines and changing the railties_order.
Further reading
Loading of constants is a big topic and Xavier Noria from Rails core team has made some excellent presentations. Here are some of them
I added stripe to my React Native application using following command.
npm install stripe --save
Added Stripe to the project as shown below.
var stripe = require('stripe')('stripe API key');
And now I’m getting following error.
This’s because npm package uses
stripe.js
and
stripe.js needs
http
provided by Node.JS.
Our React Native code does not actually run on Node.JS.
I know while building React Native
we use NPM
and
we have a node server running in the background
so it feels like
we are in Node.JS land
and
we can use
everything Node.JS has to offer.
But that’s not true.
React Native code can’t depend on Node.JS
because
Node.JS is not shipped with ios.
It means
we can’t use any of Node.JS packages including http.
It means
we can’t use stripe npm module.
Now you can remove
require('stripe') line that was added
in the last step.
Solution
React Native comes with
Fetchapi.
From the documentation
The Fetch API provides a JavaScript interface for accessing an manipulating parts of the HTTP pipeline,
such as requests and responses. It also provides a global fetch() method that provides an easy,
logical way to fetch resources asynchronously across the network.
stripe.js is a nice wrapper around stripe api.
stripe api is very well documented
and
is easy to use.
Since we can’t use stripe.js
we will
use stripe api.
Here, the header has 3 keys. Lets go through them one-by-one:
'Accept': 'application/json' : Designates the content to be in JSON format.
'Content-Type': 'application/x-www-form-urlencoded' : This tells the endpoint that the payload will be one giant query string where name and value pairs will be separated by the ampersand.
'Authorization': 'Bearer ' + '<YOUR-STRIPE-API-KEY>' : This key is to authorize our actions on Stripe. Here Bearer is just a prefix which we need to attach to the api-key because Stripe uses OAuth 2.0 . You can read more on the Bearer token usage here .
Since the Content-Type is application/x-www-form-urlencoded,
the payload should be one query string.
An example of this would be: city=Miami&state=Florida
Let’s prepare a proper payload.
var formBody = [];
for (var property in cardDetails) {
var encodedKey = encodeURIComponent(property);
var encodedValue = encodeURIComponent(cardDetails[property]);
formBody.push(encodedKey + "=" + encodedValue);
}
formBody = formBody.join("&");
That’s it.
Now we can attach formBody to
the body part of the fetch request
and
we are good to go.
Let’s look at by default what kind of response headers we get when we
start with a brand new Rails 4.2.4 application.
Now let’s say that I want to set a custom response header. That’s easy.
All I need to do is add following line of code in the controller.
response.headers['X-Tracking-ID'] = '123456'
Now I see this custom response header.
Setting custom response header for assets
Let’s say that I need that custom response header not only for standard
web requests but also for my assets.
For example application.js file is served by Rails in localhost.
How would I set custom header to the asset being served by Rails here.
Actually that’s not possible in Rails 4. In Rails 4 we can set only one
response header for assets that are served by Rails and that response
header is Cache-Control.
Here is how I can configure Cache-Control for assets.
# open config/environments/production.rb and add following line
config.static_cache_control = 'public, max-age=1000'
Now we have modified ‘Cache-Control` header for the assets.
Besides Cache-Control no other response header can be set for
assets served by Rails.
That’s a limitation.
How Rails Apps lived with this limitation so far
Rails is not the best server to serve static assets.
Apace and NGINX are much better at this job.
Hence ,in reality, in production almost everyone puts either Apache or
NGINX in front of a Rails server and in this way Rails does not have to
serve static files.
Havig said that, Rails applications hosted at Heroku is an exception.
Assets for Rails applications running at Heroku are served by Rails
application itself.
Problem we ran into
Our website is hosted at heroku.
When we ran Google page speed insights
for our website we were warned that we were not using Expires header
for the assets.
Here are how the header looked for application.js.
Now you see the problem we are running into.
Our application is hosted at Heroku.
Heroku lets Rails serve the assets.
Google page speed insights wants us to set Expires header to the assets.
Rails application allows only one header for the assets and that is ‘Cache-Control`.
One easy solution is to host our website at Digital Ocean and then use
Apache or NGINX.
Behind the scenes, Rails uses ActionDispatch::Static middleware to take care of serving assets.
For example, a request to fetch an image, goes through ActionDispatch::Static in the request cycle.
ActionDispatch::Static takes care of serving Rack::File object from server with appropriate headers set in the
response. The served image can have headers like Content-Type, Cache-Control.
Start using Rails master
To fix this, we first pointed the App to use Rails master.
gem'rails',github: 'rails/rails'gem'rack',github: 'rack/rack'# Rails depends on Rack 2gem'arel',github: 'rails/arel'# Rails master works alongside of arel master.
Next, we changed asset configuration to start providing and using missing header for Expires.
Here, we are first setting the Cache-Control header to use public (intermediate) caching,
for a year (31536000 seconds) with max-age and s-maxage.
Here s-maxage stands for Surrogate cache, which is used to cache
internally by Fastly.
We then provide the missing Expires value with some future date in Internet formatted time value.
With this setup, we can see PageSpeed pickups the new headers on assets and does not warn us for the missing header.
Here is the changed response header for asset.
Further Reading
For better use and more details about different headers to use for the assets, please refer to
RFC 2616.
It’s now 5 days since I talked to Apple support team and showed to them
problem I was facing with activating my iTunesConnect account. So far I have not
received any response from Apple.
Devise is doing the right thing by enforcing a unique index on
reset_password_token so that when a user clicks on a link to reset
password the application would know who the user is.
However here is the problem. If we add a new user then by default the
value of reset_password_token is NULL. If we add another user then we
have two records with NULL value in reset_password_token. This works
in PostgreSQL.
But SQL Server would not allow to have two records with NULL in
reset_password_token column.
So how do we solve this problem.
Partial index to rescue.
It is also known as Filtered index.
Both PostgreSQL
and
SQL server support it.
Rails also supports partial index by allowing us to pass where
option as shown below.
add_index:users,:reset_password_token,unique: true,where: 'reset_password_token IS NOT NULL'
Please visit this issue
if you want to see detailed discussion on this topic.
This behavior of SQL Server comes in play in various forms.
Let’s say that we are adding api_auth_token to an existing users
table.
Typically a migration for that might look like as shown below.
In this case we have plenty of records in the users table so the above
migration will fail in PostgreSQL. We will have to resort to usage
of partial index to fix this issue.
Adding not null constraint on a column with an index
In SQL Server
a “not null constraint” cannot be added
on a column which has a index on
it.
We need to first remove the unique index, then add the “not null” constraint and then add the unique index back.
The other solution is to add not NULL constraint first in the
migration and then add any index.
Serialize array into a string column
ActiveRecord supports Array Datatype
for PostgreSQL. We were using this feature to store a list of IDs.
After switching to SQL server we converted the column into string type
and serialized the array.
Pycharm
is a convenient IDE to work with
Robot framework.
To run a test suite or a test script,
one can do so only through console.
Running tests through console is very demanding.
If user can run tests from Pycharm itself then that helps improve productivity.
This blog explains how to configure Pycharm to be able to run test suite
or a single test from the IDE itself.
