rest/rails: Difference between revisions

From Microformats Wiki
Jump to navigation Jump to search
(move plug-ins to top)
Line 1: Line 1:
= Rails on REST Wish List =
= Plug-ins =
 
Currently there are two different approaches to doing REST on Rails.  The first emphasizes consistency with existing Rails idioms, while the second attempts to streamline implementation of RESTful best practices.  The two hope to eventually share much of the code, but will ultimately still employ different controller architectures due to their different goals.
 
== Simply RESTful ==
http://dev.rubyonrails.org/browser/plugins/simply_restful
* Inspired by:  http://pezra.barelyenough.org/blog/2006/03/another-rest-controller-for-rails/
 
The primary goal of ''Simply RESTful'' is to enable developers who follow common Rails idioms to get RESTful behavior for "free".  One major aspect of that is changing the way URLs are generate and used, according to the following conventions :
 
{| class="wikitable" style="text-align:center"  border="1" cellpadding="5" align="center"
!  HTTP verb  !!    URL  structure            !!Rails method
|-
| GET    || /items                  || index   
|-
| GET    || /items/new              || new     
|-
| POST    || /items                  || create 
|-
| GET    || /items/1                || show   
|-
| DELETE  || /items/1                || destroy 
|-
| POST    || /items/1?_method=DELETE || destroy 
|-
| GET    || /items/1;edit          || edit 
|-
| POST    || /items/1                || update 
|-
| POST    || /items/1;complete      || complete
|-
|}
 
== RESTful Rails ==
http://rubyforge.org/projects/restful-rails/
 
Status of Desired Features:
* + being full support
* ~ being sort-of
* - being non-existent
 
+ Cool URI's - Standardized URI structure
+ Method Dispatching - Executing different code based on the URI and method
~ Status Codes - Returning the "best" status codes for methods
- Content Negotiation - Returning the "best" content based on the client Accept* headers
 
+ Conditional Request - Handle the If-* headers properly and return 304 or 412 as appropriate
+ Caching Headers - Easy ways to set the Expires and Cache-Control headers
- Warnings Headers - Possibly use them to communicate error messages in a content agnostic manner
 
+ OPTIONS support - Use reflection to see what methods a URI supports so it can be reported with OPTIONS
~ HTTP Authentication - Provide an easy way to do normal Basic and Digest (and maybe WSSE) authentication
 
= Wish List =
 
[Portions may be obsoleted due to above plug-ins solving these problems differently]


While nominally focused on specific feature requests to add to Rails, in fact many of these recommendations are also relevant for other frameowrks, and even general "REX".
While nominally focused on specific feature requests to add to Rails, in fact many of these recommendations are also relevant for other frameowrks, and even general "REX".
Line 282: Line 337:


* Dan Kubb's XML.com article: http://www.xml.com/lpt/a/2006/04/19/rest-on-rails.html
* Dan Kubb's XML.com article: http://www.xml.com/lpt/a/2006/04/19/rest-on-rails.html
= Plug-ins =
Currently there are two different appraoches to doing REST on Rails.  The first emphasizes consistency with existing Rails idioms, while the second attempts to streamline implementation of RESTful best practices.  The two hope to eventually share much of the code, but will ultimately still employ different controller architectures due to their different goals.
== Simply RESTful ==
http://dev.rubyonrails.org/browser/plugins/simply_restful
* Inspired by:  http://pezra.barelyenough.org/blog/2006/03/another-rest-controller-for-rails/
The primary goal of ''Simply RESTful'' is to enable developers who follow common Rails idioms to get RESTful behavior for "free".  One major aspect of that is changing the way URLs are generate and used, according to the following conventions :
{| class="wikitable" style="text-align:center"  border="1" cellpadding="5" align="center"
!  HTTP verb  !!    URL  structure            !!Rails method
|-
| GET    || /items                  || index   
|-
| GET    || /items/new              || new     
|-
| POST    || /items                  || create 
|-
| GET    || /items/1                || show   
|-
| DELETE  || /items/1                || destroy 
|-
| POST    || /items/1?_method=DELETE || destroy 
|-
| GET    || /items/1;edit          || edit 
|-
| POST    || /items/1                || update 
|-
| POST    || /items/1;complete      || complete
|-
|}
== RESTful Rails ==
http://rubyforge.org/projects/restful-rails/
Status of Desired Features:
* + being full support
* ~ being sort-of
* - being non-existent
+ Cool URI's - Standardized URI structure
+ Method Dispatching - Executing different code based on the URI and method
~ Status Codes - Returning the "best" status codes for methods
- Content Negotiation - Returning the "best" content based on the client Accept* headers
+ Conditional Request - Handle the If-* headers properly and return 304 or 412 as appropriate
+ Caching Headers - Easy ways to set the Expires and Cache-Control headers
- Warnings Headers - Possibly use them to communicate error messages in a content agnostic manner
+ OPTIONS support - Use reflection to see what methods a URI supports so it can be reported with OPTIONS
~ HTTP Authentication - Provide an easy way to do normal Basic and Digest (and maybe WSSE) authentication

Revision as of 21:35, 21 April 2006

Plug-ins

Currently there are two different approaches to doing REST on Rails. The first emphasizes consistency with existing Rails idioms, while the second attempts to streamline implementation of RESTful best practices. The two hope to eventually share much of the code, but will ultimately still employ different controller architectures due to their different goals.

Simply RESTful

http://dev.rubyonrails.org/browser/plugins/simply_restful

The primary goal of Simply RESTful is to enable developers who follow common Rails idioms to get RESTful behavior for "free". One major aspect of that is changing the way URLs are generate and used, according to the following conventions :

HTTP verb URL structure Rails method
GET /items index
GET /items/new new
POST /items create
GET /items/1 show
DELETE /items/1 destroy
POST /items/1?_method=DELETE destroy
GET /items/1;edit edit
POST /items/1 update
POST /items/1;complete complete

RESTful Rails

http://rubyforge.org/projects/restful-rails/

Status of Desired Features:

  • + being full support
  • ~ being sort-of
  • - being non-existent

+ Cool URI's - Standardized URI structure + Method Dispatching - Executing different code based on the URI and method ~ Status Codes - Returning the "best" status codes for methods - Content Negotiation - Returning the "best" content based on the client Accept* headers

+ Conditional Request - Handle the If-* headers properly and return 304 or 412 as appropriate + Caching Headers - Easy ways to set the Expires and Cache-Control headers - Warnings Headers - Possibly use them to communicate error messages in a content agnostic manner

+ OPTIONS support - Use reflection to see what methods a URI supports so it can be reported with OPTIONS ~ HTTP Authentication - Provide an easy way to do normal Basic and Digest (and maybe WSSE) authentication

Wish List

[Portions may be obsoleted due to above plug-ins solving these problems differently]

While nominally focused on specific feature requests to add to Rails, in fact many of these recommendations are also relevant for other frameowrks, and even general "REX".

REST-style URIs

That is, make the default URL style: http://host/base/table/id/style as in: http://localhost:3000/mydemo/person/113

for the default view, with an optional "/edit" on the end for, e.g., forms vs. a list.

This is subtly different than the current "table/action/id" which scaffolding generates. The central concept in REST is that every object (noun) should have a unique URI, and having an action inlined screws that up.

URL Suffix Proposal

Explicitly allow URL suffixes for alternate representations. Something like:

http://host/base/person/1/@table
return entity as a <table> row (XOXT)
 <tr><th scope="col"><abbr title="fn">Full (Formatted) Name</abbr></td>...</tr>
 <tr id="person.1"><td class="fn">Ernie Prabhakar</td>...</tr>
http://host/base/person/1/@ol
return entity as an indexed list (XOXO)
 <ol id="person.1" class="xoxo">
  <li class="fn">Ernie Prabhakar</li>
  ...
 </ol>
http://host/base/person/1/@dl
return entity as a keyed dictionary (XOXO)
 <dl id="person.1" class="xoxo" >
  <dt><abbr title="fn">Full Name:</abbr></dt><dd class="fn">Ernie Prabhakar</dd>
  ...
 </dl>
http://host/base/person/1/@form
return entity as a POSTable form
 <dl id="person.1" class="xoxo" >
  <dt><label for="person.1.fn"><abbr title="fn">Full (Formatted) Name</abbr></label></dt>
   <dd><input class="fn" type="text" id="person.1.fn" value="Ernie Prabhakar"/></dd>
  ...
 </dl>

With presumably one of these as the default (no suffix) representation. The idea is to:

  • extend REST to allow multiple server-side representations
  • focus on structure ("form") not actions ("edit")
  • make it easy to incorporate partials via AHAH with appropriate structure
  • avoid the need to tweak data templates; use CSS to format the result instead

POST vs. GET

Right now, as far as I can tell, Rails doesn't differentiate results from a POST vs. results from a GET. Those are semantically different in REST, so I'd like [to know] a way to handle that cleanly. Dan Kubb suggests:

What if the behavior for the RESTful dispatcher is to call Person.index ONLY if the corresponding Person.get_index wasn't available? Likewise for PUT requests, it would use Person.index only if Person.put_index wasn't available. I think that would be in-line with standard rails behavior.

PUT & DELETE

There should be a standard way to generate web pages that invoke all the HTTP verbs, even if modern browsers don't yet. The microformat for how this is handled today is probably something like:

 <form method="post" action="/person/123">
   <input type="hidden" name="method" value="put" />
   <input type="submit" name="method_put" value="Save" />
   <input type="submit" name="method_delete" value="Delete" />
 </form>

The logic to dispatch is pretty simple:

   def tunneled_method
     allowed_methods.find { |m| params['method_' + m] } || params[:method]
   end

A plus to using naming conventions within the form is that javascript could be written so that when the appropriate button is clicked a real PUT and DELETE can be done via AJAX.

XOXO-style templates

I'd like the default rhtml templates to be XOXO-compatible (e.g., dt/dd rather than <p>/<br>).

Columns as class names

In addition to 'human_readable' column names, I'd like there to be a parameter for the equivalent 'css-friendly' representation of those columns -- and for the default templates to include that.

Complete, functioning, customizable web application

I want to be able to do something like:

$ script/generate rex modelA modelB

And get a full-blown web application which includes:

  • the front page, including navigation links to various model objects.
  • search boxes
  • entry forms
  • AHAH (ajax) responses
  • both list- and table- oriented model representations

The ideal is that I could use a combination of CSS and AHAH to generate the desired look, feel, and behavior of my website without actually having to touch existing HTML. As a bonus, I also want it complete enough that I can write a REST-spider to easily discover all the valid URIs and queries. Hey, a guy can dream...

XOXO instead of YAML for configuration

Okay, this last one is really nit-picky, and a little odd, but it would (IMHO) be more consistent. Right now, the config is the only non-HTML, non-Ruby file, and I at least had never seen YAML before so it looked out of place. Granted, using XHTML for config files is a little freaky at first, but when you think about it, its no worse than using custom XML tags (and way more interoperable). I'll even write the Ruby serializer myself if I have to...

OPTIONS Handling

The controller should be able to handle OPTIONS requests and know what specific methods it can handle for a given URI.

Output Content Negotiation

It would be nice to be able to have the view look at the Accept headers and choose the best template to output.

For example, imagine you had the following files:

  • index.rhtml
  • index.rxml
  • index.rtxt

If the browser sent the Accept as text/html then the index.rhtml would be used. For text/plain the index.rtxt would be used, and so on.

If there was a way for a view handler to "register" itself and say what mime types it knows how to handle, then the optimal handler could be chosen at runtime. The handlers could do anything they want in order to output the response body, including using libraries like GD.

Input Content Negotiation

When a request has a body, it needs to be parsed and stored into the request parameters. Rails handles normal web forms and multi-part form input.. but it would be nice to be able to write custom handlers that knows how to parse requests for specific mime-types and set the appropriate request parameters inside rails.

This would allow you to POST a web form or a yaml string and have the values funneled into the same parameters -- your controller wouldn't care where the data is come from. I realize yaml is supported by rails natively, but it should be possible to register handlers for any other mime types.

Perl's Catalyst MVC is starting to do this with their HTTP::Body module.. they made it so you can write custom modules to parse any mime-types and set the request parameters.

HEAD responses

Responses to HEAD requests should be identical to GET requests, minus the body. Rails should omit sending the body for HEAD requests, but still send all the appropriate headers. Its especially important that the Content-Length be the same for HEAD and GET responses.

Conditional GET requests

When writing mod_perl handlers I was able to do something equivalent to:

 def get_index
   # do some work to set up @resource
   set_etag @resource.digest_hash
   set_last_modified @resource.updated_at
   return not_modified if conditional_get?
   render
 end

This resulted in a snappier response from some apps since it didn't require a full transfer if it was not modified since my last request.

AJAX apps to use HTTP more fully

Most Rails AJAX apps use only GET and POST, but they should be encouraged to use the full set of HTTP verbs in examples.

Encouragement of Conditional GET in AJAX apps would be a bonus as well.

Proposal

As proposed on April 1st by Charlie Savage, in response to Dan Kubb

Syntax

The currently proposed syntax is:

 resource :collection do |r| 
    r.post do 
    end 
  end

Where 'r' is an instance of a Resource class.  At first I preferred a simpler syntax, like this:

  resource :collection do 
    method.post do 
    end 
  end

Where method represents the HTTP verb (GET, POST, PUT)?  Or maybe even:

  resource :collection do 
    request.post? do 
    end 
  end

However, do you have to have an instance of the resource class to achieve the 4 points you brought up (more details in original email):

  1. Handling OPTIONS requests.
  2. Returning 405 when appropriate
  3. Return 501 when appropriate
  4. Checking If-* request

These all would be good features to have.  If they require having a resource class passed as "r" then I can agree to this approach.

Templates  

You mentioned that you'd expect these responses for different methods:

GET    - 200 OK       
Response Body
POST   - 303 See Other
No Response Body, Location header to newly created  resource
PUT    - 303 See Other
No Response Body, Location header to resource
DELETE - 303 See Other
No Response Body, Location header to collection resource

Using regular HTML forms I'd agree.  However, this breaks down when using XmlHttpRequest.  For example, if I do a post and it fails and I want to return an error message.  Doing a redirect is a bit silly since the URL in the browser address bar isn't going to change anyway - its easier to just return the result from the POST.  Same is true for a PUT, whether an update is successful or not. Thus, I think we must provide a system where you can provide a response body regardless of the method.  One approach is Peter's proposal of just using a standardized directory structure:

  view
    my_controller
        resource1
            get
            put
       resource2
           post
          delete

I like this concept.  However, maybe it would be confusing since Rails uses directories for nested classes (MyNamespace::MySubNamespace::MyController).  Thus, we could go use the name mangling I currently do now, i.e., get_resource1, or resource1_get (which I like better because it groups the templates for a resource together a bit more clearly). 

Editors  

We seem to be in complete agreement.  I.E:

/book/1        
   Viewable representation of book #1 retrieved by GET
/book/1/editor
   Editable representation of book #1, will PUT to /book/1
/book/creator
   Form to create a new book, will POST to /book

Top Level Resources 

Here is something Peter and I disagree about.  Do you prefer this style:

Option #1

 def MyController
   resource :collection do |r|
      ...
   end
   resource :member do |r|
      ...
   end
   resource :editor do |r|
      ...
   end
 end

Option #2

Or this:

 def MyController
   r.get
      ...
   end
   r.post
      ...
   end
   resource :member do |r|
      ...
   end
   resource :editor do |r|
      ...
   end
 end

The difference being in the first case you insist every resource must be defined via "resource" while in the second you say that the controller is the top level resource.  When I first did my RestController I went with option #1 because it seemed more elegant.  However, I quickly changed my mind when actually writing code because it turned out to be annoying having to add the extra syntax.  This was particularly true for controllers that are just single resources.  For example, say you have geocoding functionality so you have a GeocoderController.  It does just one thing, GETs geocoding results so there is no concept of collection/member.  Thus I favor option #2 as a syntax shortcut.

Caching

Sounds like we've agreed that caching is important, but is not part of the Rest Controller.  Thus, you'll split that off the caching functionality into another plugin that can work with a Rest Controller.

Implementation

I see that your implementation is significantly different than mine.  I map :resource to a Ruby module, which gets included in a controller.  In contrast, you map :resource to a Ruby method.  Within that method you create an instance of a Ruby class called Resource and then execute the provided block in its context. 

This disadvantage of my approach is that there is method renaming that goes on under the scenes, which you have to know about in order to get filters to work correctly.  The disadvantage I see to your implementation is that all the methods for a resource get mapped under a single Ruby method.  It seems that would make it hard to apply filters to specific methods.  I.E., how could I apply a filter to a GET method of the resource Member but not to the POST?  It would be great if we could use the existing filter syntax without change, but I'm guessing that might not be reasonable because now we are dealing with Resources and Methods as opposed to Actions.  Anyway, this is something I think is important to solve.

Also, how does your Rest controller interact with the base ActionController?  I'm not seeing it being include anywhere...could you point me to the appropriate code.

Examples (TBD)

Last, it would be good to have an example controller for people to play with.  Something simple, like a ProductController or maybe copying one of the examples from the Agile Web Development book.