DEV Community: Sulman Baig The latest articles on DEV Community by Sulman Baig (@sulmanweb). https://dev.to/sulmanweb https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F256492%2F2ec60d20-303a-475e-b5aa-90f2b11d0da6.jpg DEV Community: Sulman Baig https://dev.to/sulmanweb en Master Shopify Embedded Apps with Rails 8 Sulman Baig Thu, 06 Feb 2025 06:00:00 +0000 https://dev.to/sulmanweb/master-shopify-embedded-apps-with-rails-8-f5g https://dev.to/sulmanweb/master-shopify-embedded-apps-with-rails-8-f5g <h2> Motivation </h2> <p>After building several Shopify embedded apps, I've learned valuable lessons about what works (and what definitely doesn't) in the embedded app environment. Today, I'm sharing these insights to help you avoid common pitfalls and build better Shopify apps.</p> <h2> The Challenge </h2> <p>Building embedded apps for Shopify presents unique challenges - particularly around navigation, authentication, and user experience. One of the biggest pitfalls? Trying to use regular URL navigation in an embedded app context.</p> <h2> Project Setup </h2> <p>First, let's look at the proper configuration for a Shopify embedded app:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># config/initializers/shopify_app.rb</span> <span class="no">ShopifyApp</span><span class="p">.</span><span class="nf">configure</span> <span class="k">do</span> <span class="o">|</span><span class="n">config</span><span class="o">|</span> <span class="n">config</span><span class="p">.</span><span class="nf">embedded_app</span> <span class="o">=</span> <span class="kp">true</span> <span class="n">config</span><span class="p">.</span><span class="nf">new_embedded_auth_strategy</span> <span class="o">=</span> <span class="kp">false</span> <span class="n">config</span><span class="p">.</span><span class="nf">scope</span> <span class="o">=</span> <span class="s2">"read_customers,write_customers"</span> <span class="n">config</span><span class="p">.</span><span class="nf">api_version</span> <span class="o">=</span> <span class="s2">"2024-10"</span> <span class="c1"># Webhook configuration</span> <span class="n">config</span><span class="p">.</span><span class="nf">webhooks</span> <span class="o">=</span> <span class="p">[</span> <span class="p">{</span> <span class="ss">topic: </span><span class="s2">"app/uninstalled"</span><span class="p">,</span> <span class="ss">address: </span><span class="s2">"webhooks/app_uninstalled"</span> <span class="p">},</span> <span class="p">{</span> <span class="ss">topic: </span><span class="s2">"customers/create"</span><span class="p">,</span> <span class="ss">address: </span><span class="s2">"webhooks/customers_create"</span> <span class="p">}</span> <span class="p">]</span> <span class="k">end</span> </code></pre> </div> <h2> Do's and Don'ts </h2> <h3> ✅ DO: Use App Bridge for Navigation </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// app/javascript/shopify_app.js</span> <span class="kd">var</span> <span class="nx">AppBridge</span> <span class="o">=</span> <span class="nb">window</span><span class="p">[</span><span class="dl">'</span><span class="s1">app-bridge</span><span class="dl">'</span><span class="p">];</span> <span class="kd">var</span> <span class="nx">createApp</span> <span class="o">=</span> <span class="nx">AppBridge</span><span class="p">.</span><span class="k">default</span><span class="p">;</span> <span class="nb">window</span><span class="p">.</span><span class="nx">app</span> <span class="o">=</span> <span class="nf">createApp</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">data</span><span class="p">.</span><span class="nx">apiKey</span><span class="p">,</span> <span class="na">host</span><span class="p">:</span> <span class="nx">data</span><span class="p">.</span><span class="nx">host</span><span class="p">,</span> <span class="p">});</span> <span class="kd">var</span> <span class="nx">actions</span> <span class="o">=</span> <span class="nx">AppBridge</span><span class="p">.</span><span class="nx">actions</span><span class="p">;</span> <span class="kd">var</span> <span class="nx">TitleBar</span> <span class="o">=</span> <span class="nx">actions</span><span class="p">.</span><span class="nx">TitleBar</span><span class="p">;</span> <span class="nx">TitleBar</span><span class="p">.</span><span class="nf">create</span><span class="p">(</span><span class="nx">app</span><span class="p">,</span> <span class="p">{</span> <span class="na">title</span><span class="p">:</span> <span class="nx">data</span><span class="p">.</span><span class="nx">page</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <h3> ❌ DON'T: Use Regular Rails Links </h3> <p>Avoid using regular Rails link_to helpers without proper App Bridge handling:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="c">&lt;%# Wrong way %&gt;</span> <span class="cp">&lt;%=</span> <span class="n">link_to</span> <span class="s2">"Settings"</span><span class="p">,</span> <span class="n">settings_path</span> <span class="cp">%&gt;</span> <span class="c">&lt;%# Right way %&gt;</span> <span class="cp">&lt;%=</span> <span class="n">link_to</span> <span class="s2">"Settings"</span><span class="p">,</span> <span class="n">settings_path</span><span class="p">(</span><span class="n">request</span><span class="p">.</span><span class="nf">query_parameters</span><span class="p">)</span> <span class="cp">%&gt;</span> </code></pre> </div> <h3> ✅ DO: Handle Authentication Properly </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">AuthenticatedController</span> <span class="o">&lt;</span> <span class="no">ApplicationController</span> <span class="kp">include</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">EnsureHasSession</span> <span class="n">before_action</span> <span class="ss">:verify_embedded_app_request</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">verify_embedded_app_request</span> <span class="k">if</span> <span class="no">ShopifyAPI</span><span class="o">::</span><span class="no">Context</span><span class="p">.</span><span class="nf">embedded?</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="o">!</span><span class="n">params</span><span class="p">[</span><span class="ss">:embedded</span><span class="p">].</span><span class="nf">present?</span> <span class="o">||</span> <span class="n">params</span><span class="p">[</span><span class="ss">:embedded</span><span class="p">]</span> <span class="o">!=</span> <span class="s2">"1"</span><span class="p">)</span> <span class="n">redirect_to</span><span class="p">(</span><span class="no">ShopifyAPI</span><span class="o">::</span><span class="no">Auth</span><span class="p">.</span><span class="nf">embedded_app_url</span><span class="p">(</span><span class="n">params</span><span class="p">[</span><span class="ss">:host</span><span class="p">]).</span><span class="nf">to_s</span> <span class="o">+</span> <span class="n">request</span><span class="p">.</span><span class="nf">path</span><span class="p">,</span> <span class="ss">allow_other_host: </span><span class="kp">true</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h3> ✅ DO: Implement Proper Flash Messages </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/helpers/application_helper.rb</span> <span class="k">module</span> <span class="nn">ApplicationHelper</span> <span class="k">def</span> <span class="nf">flash_class</span><span class="p">(</span><span class="n">type</span><span class="p">)</span> <span class="k">case</span> <span class="n">type</span><span class="p">.</span><span class="nf">to_sym</span> <span class="k">when</span> <span class="ss">:success</span><span class="p">,</span> <span class="ss">:notice</span> <span class="s2">"bg-green-50"</span> <span class="k">when</span> <span class="ss">:error</span><span class="p">,</span> <span class="ss">:alert</span> <span class="s2">"bg-red-50"</span> <span class="k">else</span> <span class="s2">"bg-blue-50"</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h3> ✅ DO: Use Proper Layout for Embedded Apps </h3> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="c">&lt;%# app/views/layouts/embedded_app.html.erb %&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://unpkg.com/@shopify/app-bridge@3.7.9"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="cp">&lt;%=</span> <span class="n">csrf_meta_tags</span> <span class="cp">%&gt;</span> <span class="cp">&lt;%=</span> <span class="n">javascript_importmap_tags</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body&gt;</span> <span class="nt">&lt;div</span> <span class="na">id=</span><span class="s">"app"</span><span class="nt">&gt;</span> <span class="cp">&lt;%=</span> <span class="n">render</span> <span class="s1">'shared/navbar'</span> <span class="cp">%&gt;</span> <span class="cp">&lt;%=</span> <span class="k">yield</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;%</span> <span class="k">if</span> <span class="n">flash</span><span class="p">[</span><span class="ss">:notice</span><span class="p">].</span><span class="nf">present?</span> <span class="o">||</span> <span class="n">flash</span><span class="p">[</span><span class="ss">:error</span><span class="p">].</span><span class="nf">present?</span> <span class="cp">%&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="nb">document</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">DOMContentLoaded</span><span class="dl">'</span><span class="p">,</span> <span class="kd">function</span><span class="p">()</span> <span class="p">{</span> <span class="kd">var</span> <span class="nx">Toast</span> <span class="o">=</span> <span class="nb">window</span><span class="p">[</span><span class="dl">'</span><span class="s1">app-bridge</span><span class="dl">'</span><span class="p">].</span><span class="nx">actions</span><span class="p">.</span><span class="nx">Toast</span><span class="p">;</span> <span class="cp">&lt;%</span> <span class="k">if</span> <span class="n">flash</span><span class="p">[</span><span class="ss">:notice</span><span class="p">].</span><span class="nf">present?</span> <span class="cp">%&gt;</span> <span class="nx">Toast</span><span class="p">.</span><span class="nx">create</span><span class="p">(</span><span class="nb">window</span><span class="p">.</span><span class="nx">app</span><span class="p">,</span> <span class="p">{</span> <span class="na">message</span><span class="p">:</span> <span class="dl">"</span><span class="cp">&lt;%=</span> <span class="n">j</span> <span class="n">flash</span><span class="p">[</span><span class="ss">:notice</span><span class="p">]</span> <span class="cp">%&gt;</span><span class="dl">"</span><span class="p">,</span> <span class="na">duration</span><span class="p">:</span> <span class="mi">5000</span> <span class="p">}).</span><span class="nf">dispatch</span><span class="p">(</span><span class="nx">Toast</span><span class="p">.</span><span class="nx">Action</span><span class="p">.</span><span class="nx">SHOW</span><span class="p">);</span> <span class="cp">&lt;%</span> <span class="k">end</span> <span class="cp">%&gt;</span> <span class="p">});</span> <span class="nt">&lt;/script&gt;</span> <span class="cp">&lt;%</span> <span class="k">end</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <h3> ❌ DON'T: Forget Query Parameters </h3> <p>When creating links or forms, always include the necessary query parameters:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/controllers/application_controller.rb</span> <span class="k">def</span> <span class="nf">maintain_query_parameters</span> <span class="vi">@query_parameters</span> <span class="o">=</span> <span class="n">request</span><span class="p">.</span><span class="nf">query_parameters</span> <span class="k">end</span> </code></pre> </div> <h3> ✅ DO: Implement Proper Navigation </h3> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="c">&lt;%# app/views/shared/_navbar.html.erb %&gt;</span> <span class="nt">&lt;nav</span> <span class="na">class=</span><span class="s">"bg-white border-b border-gray-200 fixed w-full z-50"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"max-w-7xl mx-auto px-4 sm:px-6 lg:px-8"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"flex justify-between h-16"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"hidden md:flex md:items-center md:space-x-6"</span><span class="nt">&gt;</span> <span class="cp">&lt;%=</span> <span class="n">link_to</span> <span class="s2">"Home"</span><span class="p">,</span> <span class="n">root_path</span><span class="p">(</span><span class="n">params</span><span class="p">.</span><span class="nf">except</span><span class="p">(</span><span class="ss">:action</span><span class="p">,</span> <span class="ss">:controller</span><span class="p">).</span><span class="nf">permit!</span><span class="p">.</span><span class="nf">to_h</span><span class="p">),</span> <span class="ss">class: </span><span class="s2">"text-gray-600 hover:text-gray-900 px-3 py-2"</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/nav&gt;</span> </code></pre> </div> <h2> Common Pitfalls to Avoid </h2> <ol> <li> <strong>Direct URL Manipulation</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># Wrong</span> <span class="n">redirect_to</span> <span class="n">settings_path</span> <span class="c1"># Right</span> <span class="n">redirect_to</span> <span class="n">settings_path</span><span class="p">(</span><span class="n">request</span><span class="p">.</span><span class="nf">query_parameters</span><span class="p">)</span> </code></pre> </div> <ol> <li> <strong>Missing CSRF Protection</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">ApplicationController</span> <span class="o">&lt;</span> <span class="no">ActionController</span><span class="o">::</span><span class="no">Base</span> <span class="n">protect_from_forgery</span> <span class="ss">with: :exception</span> <span class="n">skip_before_action</span> <span class="ss">:verify_authenticity_token</span><span class="p">,</span> <span class="ss">if: :valid_shopify_request?</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">valid_shopify_request?</span> <span class="k">return</span> <span class="kp">true</span> <span class="k">if</span> <span class="n">request</span><span class="p">.</span><span class="nf">headers</span><span class="p">[</span><span class="s2">"HTTP_AUTHORIZATION"</span><span class="p">]</span><span class="o">&amp;</span><span class="p">.</span><span class="nf">start_with?</span><span class="p">(</span><span class="s2">"Bearer "</span><span class="p">)</span> <span class="k">return</span> <span class="kp">true</span> <span class="k">if</span> <span class="n">params</span><span class="p">[</span><span class="ss">:session</span><span class="p">].</span><span class="nf">present?</span> <span class="kp">false</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <ol> <li> <strong>Improper Session Handling</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">Shop</span> <span class="o">&lt;</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Base</span> <span class="kp">include</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">ShopSessionStorageWithScopes</span> <span class="k">def</span> <span class="nf">api_version</span> <span class="no">ShopifyApp</span><span class="p">.</span><span class="nf">configuration</span><span class="p">.</span><span class="nf">api_version</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Best Practices for Success </h2> <ol> <li><strong>Use App Bridge for All Navigation</strong></li> <li><strong>Maintain Query Parameters</strong></li> <li><strong>Implement Proper Error Handling</strong></li> <li><strong>Use Appropriate Authentication Checks</strong></li> <li><strong>Follow Shopify's Design Guidelines</strong></li> </ol> <h2> Learning Journey </h2> <p>Building embedded Shopify apps has taught me the importance of proper navigation handling and session management. The biggest lesson? Never assume standard web development practices will work in an embedded context.</p> <h2> Results and Impact </h2> <ul> <li>Smoother user experience</li> <li>Fewer authentication issues</li> <li>Better app stability</li> <li>Reduced support tickets</li> </ul> <h2> Next Steps </h2> <ol> <li> <p><strong>Enhanced Error Handling</strong></p> <ul> <li>Implement better error boundaries</li> <li>Add detailed logging</li> </ul> </li> <li> <p><strong>Performance Optimization</strong></p> <ul> <li>Optimize App Bridge usage</li> <li>Implement proper caching</li> </ul> </li> <li> <p><strong>User Experience Improvements</strong></p> <ul> <li>Add loading states</li> <li>Enhance feedback mechanisms</li> </ul> </li> </ol> <h2> Conclusion </h2> <p>Building embedded Shopify apps requires a different mindset from traditional web development. By following these best practices and avoiding common pitfalls, you can create robust, user-friendly applications that integrate seamlessly with the Shopify admin.</p> <p>Have you encountered other challenges while building Shopify embedded apps? Share your experiences in the comments below!</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/shopify-embedded-apps-rails-guide-best-practices" rel="noopener noreferrer">sulmanweb</a></em></p> shopify ruby rails Build Secure Shopify Apps with App Bridge Sulman Baig Mon, 03 Feb 2025 06:00:00 +0000 https://dev.to/sulmanweb/build-secure-shopify-apps-with-app-bridge-55go https://dev.to/sulmanweb/build-secure-shopify-apps-with-app-bridge-55go <p>As a developer working with Shopify's ecosystem, I recently built a multi-tenant SaaS application that synchronizes customer data between Shopify stores and external services. In this article, I'll share my experience and technical insights into creating a secure, scalable Shopify app using App Bridge.</p> <h2> Project Overview </h2> <p>Our application needed to:</p> <ul> <li>Handle multiple Shopify stores (multi-tenancy)</li> <li>Process customer data securely</li> <li>Provide a seamless embedded experience</li> <li>Manage OAuth flows and webhooks</li> <li>Handle billing subscriptions</li> </ul> <p>Let's dive into how we accomplished these requirements using Rails 8 and Shopify's App Bridge.</p> <h2> Setting Up the Foundation </h2> <p>First, we set up our Rails application with the necessary Shopify integrations. Here's how our initial configuration looked:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="no">ShopifyApp</span><span class="p">.</span><span class="nf">configure</span> <span class="k">do</span> <span class="o">|</span><span class="n">config</span><span class="o">|</span> <span class="n">config</span><span class="p">.</span><span class="nf">embedded_app</span> <span class="o">=</span> <span class="kp">true</span> <span class="n">config</span><span class="p">.</span><span class="nf">scope</span> <span class="o">=</span> <span class="s2">"read_customers,write_customers"</span> <span class="n">config</span><span class="p">.</span><span class="nf">after_authenticate_job</span> <span class="o">=</span> <span class="kp">false</span> <span class="n">config</span><span class="p">.</span><span class="nf">api_version</span> <span class="o">=</span> <span class="s2">"2024-10"</span> <span class="n">config</span><span class="p">.</span><span class="nf">shop_session_repository</span> <span class="o">=</span> <span class="s2">"Shop"</span> <span class="n">config</span><span class="p">.</span><span class="nf">webhooks</span> <span class="o">=</span> <span class="p">[</span> <span class="p">{</span> <span class="ss">topic: </span><span class="s2">"app/uninstalled"</span><span class="p">,</span> <span class="ss">address: </span><span class="s2">"webhooks/app_uninstalled"</span> <span class="p">},</span> <span class="p">{</span> <span class="ss">topic: </span><span class="s2">"customers/create"</span><span class="p">,</span> <span class="ss">address: </span><span class="s2">"webhooks/customers_create"</span> <span class="p">},</span> <span class="p">{</span> <span class="ss">topic: </span><span class="s2">"customers/update"</span><span class="p">,</span> <span class="ss">address: </span><span class="s2">"webhooks/customers_update"</span> <span class="p">}</span> <span class="p">]</span> <span class="k">end</span> </code></pre> </div> <h2> Multi-tenant Data Model </h2> <p>Our core data model revolves around the <code>Shop</code> model, which handles multi-tenancy:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">Shop</span> <span class="o">&lt;</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Base</span> <span class="kp">include</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">ShopSessionStorageWithScopes</span> <span class="n">has_many</span> <span class="ss">:customers</span><span class="p">,</span> <span class="ss">dependent: :destroy</span> <span class="n">encrypts</span> <span class="ss">:api_key</span><span class="p">,</span> <span class="ss">deterministic: </span><span class="kp">true</span> <span class="k">end</span> </code></pre> </div> <h2> Embedded App Architecture </h2> <p>One of the key aspects was creating a seamless embedded experience. We achieved this through our layout configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="c">&lt;%# app/views/layouts/embedded_app.html.erb %&gt;</span> <span class="cp">&lt;!DOCTYPE html&gt;</span> <span class="nt">&lt;html</span> <span class="na">lang=</span><span class="s">"en"</span><span class="nt">&gt;</span> <span class="nt">&lt;head&gt;</span> <span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://unpkg.com/@shopify/app-bridge@3.7.9"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="kd">var</span> <span class="nx">AppBridge</span> <span class="o">=</span> <span class="nb">window</span><span class="p">[</span><span class="dl">'</span><span class="s1">app-bridge</span><span class="dl">'</span><span class="p">];</span> <span class="kd">var</span> <span class="nx">createApp</span> <span class="o">=</span> <span class="nx">AppBridge</span><span class="p">.</span><span class="k">default</span><span class="p">;</span> <span class="kd">var</span> <span class="nx">app</span> <span class="o">=</span> <span class="nx">createApp</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="dl">"</span><span class="cp">&lt;%=</span> <span class="no">ShopifyApp</span><span class="p">.</span><span class="nf">configuration</span><span class="p">.</span><span class="nf">api_key</span> <span class="cp">%&gt;</span><span class="dl">"</span><span class="p">,</span> <span class="na">host</span><span class="p">:</span> <span class="dl">"</span><span class="cp">&lt;%=</span> <span class="vi">@host</span> <span class="cp">%&gt;</span><span class="dl">"</span><span class="p">,</span> <span class="na">forceRedirect</span><span class="p">:</span> <span class="kc">true</span> <span class="p">});</span> <span class="nt">&lt;/script&gt;</span> <span class="nt">&lt;/head&gt;</span> <span class="nt">&lt;body&gt;</span> <span class="cp">&lt;%=</span> <span class="k">yield</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/body&gt;</span> <span class="nt">&lt;/html&gt;</span> </code></pre> </div> <h2> Secure Authentication Flow </h2> <p>We implemented authenticated controllers to ensure secure access:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">AuthenticatedController</span> <span class="o">&lt;</span> <span class="no">ApplicationController</span> <span class="kp">include</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">EnsureHasSession</span> <span class="n">before_action</span> <span class="ss">:ensure_store_settings</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">ensure_store_settings</span> <span class="n">redirect_to</span> <span class="n">settings_path</span> <span class="k">unless</span> <span class="n">current_shop</span><span class="p">.</span><span class="nf">setup_completed?</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Webhook Processing </h2> <p>Handling webhooks securely was crucial for our app. Here's our webhook processing implementation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">WebhooksController</span> <span class="o">&lt;</span> <span class="no">ApplicationController</span> <span class="kp">include</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">WebhookVerification</span> <span class="k">def</span> <span class="nf">customers_create</span> <span class="n">shop</span> <span class="o">=</span> <span class="no">Shop</span><span class="p">.</span><span class="nf">find_by</span><span class="p">(</span><span class="ss">shopify_domain: </span><span class="n">params</span><span class="p">[</span><span class="ss">:shop_domain</span><span class="p">])</span> <span class="k">if</span> <span class="n">shop</span> <span class="n">shop</span><span class="p">.</span><span class="nf">with_shopify_session</span> <span class="k">do</span> <span class="n">process_customer_data</span><span class="p">(</span><span class="n">params</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="n">head</span> <span class="ss">:ok</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">process_customer_data</span><span class="p">(</span><span class="n">data</span><span class="p">)</span> <span class="no">CustomerProcessingJob</span><span class="p">.</span><span class="nf">perform_later</span><span class="p">(</span> <span class="ss">shop_id: </span><span class="n">shop</span><span class="p">.</span><span class="nf">id</span><span class="p">,</span> <span class="ss">customer_data: </span><span class="n">data</span> <span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Background Job Processing </h2> <p>We used Solid Queue for reliable background processing:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">CustomerProcessingJob</span> <span class="o">&lt;</span> <span class="no">ApplicationJob</span> <span class="k">def</span> <span class="nf">perform</span><span class="p">(</span><span class="n">shop_id</span><span class="p">:,</span> <span class="n">customer_data</span><span class="p">:)</span> <span class="n">shop</span> <span class="o">=</span> <span class="no">Shop</span><span class="p">.</span><span class="nf">find</span><span class="p">(</span><span class="n">shop_id</span><span class="p">)</span> <span class="n">shop</span><span class="p">.</span><span class="nf">with_shopify_session</span> <span class="k">do</span> <span class="n">customer</span> <span class="o">=</span> <span class="n">shop</span><span class="p">.</span><span class="nf">customers</span><span class="p">.</span><span class="nf">find_or_initialize_by</span><span class="p">(</span> <span class="ss">shopify_customer_id: </span><span class="n">customer_data</span><span class="p">[</span><span class="s2">"id"</span><span class="p">]</span> <span class="p">)</span> <span class="n">customer</span><span class="p">.</span><span class="nf">update!</span><span class="p">(</span> <span class="ss">email: </span><span class="n">customer_data</span><span class="p">[</span><span class="s2">"email"</span><span class="p">],</span> <span class="ss">first_name: </span><span class="n">customer_data</span><span class="p">[</span><span class="s2">"first_name"</span><span class="p">],</span> <span class="ss">last_name: </span><span class="n">customer_data</span><span class="p">[</span><span class="s2">"last_name"</span><span class="p">]</span> <span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Billing Integration </h2> <p>We implemented Shopify's billing API to handle subscriptions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="n">config</span><span class="p">.</span><span class="nf">billing</span> <span class="o">=</span> <span class="no">ShopifyApp</span><span class="o">::</span><span class="no">BillingConfiguration</span><span class="p">.</span><span class="nf">new</span><span class="p">(</span> <span class="ss">charge_name: </span><span class="s2">"App Subscription"</span><span class="p">,</span> <span class="ss">amount: </span><span class="mf">4.99</span><span class="p">,</span> <span class="ss">interval: </span><span class="no">ShopifyApp</span><span class="o">::</span><span class="no">BillingConfiguration</span><span class="o">::</span><span class="no">INTERVAL_EVERY_30_DAYS</span><span class="p">,</span> <span class="ss">trial_days: </span><span class="mi">7</span> <span class="p">)</span> </code></pre> </div> <h2> User Interface with Tailwind CSS </h2> <p>We created a clean, responsive interface using Tailwind CSS:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mx-auto max-w-7xl px-4 sm:px-6 lg:px-8 pb-12 pt-20"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"sm:flex sm:items-center"</span><span class="nt">&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"sm:flex-auto"</span><span class="nt">&gt;</span> <span class="nt">&lt;h1</span> <span class="na">class=</span><span class="s">"text-base font-semibold leading-6 text-gray-900"</span><span class="nt">&gt;</span> Customers <span class="nt">&lt;/h1&gt;</span> <span class="nt">&lt;p</span> <span class="na">class=</span><span class="s">"mt-2 text-sm text-gray-700"</span><span class="nt">&gt;</span> Manage your synchronized customers <span class="nt">&lt;/p&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> <span class="cp">&lt;%=</span> <span class="n">render</span> <span class="s2">"customer_list"</span><span class="p">,</span> <span class="ss">customers: </span><span class="vi">@customers</span> <span class="cp">%&gt;</span> <span class="nt">&lt;/div&gt;</span> </code></pre> </div> <h2> Lessons Learned </h2> <p>Throughout this project, I learned several valuable lessons:</p> <ol> <li><p><strong>Session Management</strong>: Always use Shopify's session tokens for authentication rather than storing raw access tokens.</p></li> <li><p><strong>Webhook Reliability</strong>: Implement idempotency in webhook processing to handle potential duplicate events.</p></li> <li><p><strong>Background Jobs</strong>: Use background jobs for any operations that might take more than a few seconds to complete.</p></li> <li><p><strong>Error Handling</strong>: Implement comprehensive error handling and logging, especially for webhook processing and API calls.</p></li> <li><p><strong>Security</strong>: Always encrypt sensitive data and never expose API keys in the frontend.</p></li> </ol> <h2> Conclusion </h2> <p>Building a multi-tenant Shopify app requires careful consideration of security, scalability, and user experience. By leveraging Rails, App Bridge, and modern development practices, we created a robust application that securely handles multiple stores and their data.</p> <p>The combination of Shopify's App Bridge, Rails 8, and modern tools like Solid Queue and Tailwind CSS provided a solid foundation for building a scalable SaaS application.</p> <h2> Next Steps </h2> <p>If you're building a Shopify app, consider these recommendations:</p> <ol> <li>Start with a solid authentication and authorization system</li> <li>Implement webhook handling early in the development process</li> <li>Use background jobs for long-running tasks</li> <li>Plan for scalability from the beginning</li> <li>Follow Shopify's security best practices</li> </ol> <p>Remember that building a multi-tenant application requires careful consideration of data isolation and security at every level of your application.</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/building-secure-shopify-apps-with-app-bridge" rel="noopener noreferrer">sulmanweb.com</a></em></p> shopify ruby rails Rails CI/CD with Dokku & GitHub Actions Sulman Baig Thu, 30 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-cicd-with-dokku-github-actions-l2g https://dev.to/sulmanweb/rails-cicd-with-dokku-github-actions-l2g <p>As developers, we're always looking for ways to streamline our deployment process while maintaining security and reliability. Today, I'm excited to share my experience setting up an automated deployment pipeline for a Rails application using Dokku and GitHub Actions. This setup has transformed our deployment process from a manual, error-prone task into a smooth, automated workflow.</p> <h2> The Challenge </h2> <p>Managing production deployments can be tricky. You want something robust like Heroku but with more control over your infrastructure. Enter Dokku - a lightweight, open-source Platform as a Service (PaaS) that gives you Heroku-like features on your own server.</p> <h2> Prerequisites </h2> <p>Before we dive in, make sure you have:</p> <ul> <li>A Dokku server set up and running <div class="ltag__link"> <a href="/sulmanweb" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F256492%2F2ec60d20-303a-475e-b5aa-90f2b11d0da6.jpg" alt="sulmanweb"> </div> </a> <a href="https://dev.to/sulmanweb/rails-8-production-setup-with-dokku-guide-262g" class="ltag__link__link"> <div class="ltag__link__content"> <h2>Rails 8 Production Setup with Dokku Guide</h2> <h3>Sulman Baig ・ Jan 27</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#ruby</span> <span class="ltag__link__tag">#rails</span> <span class="ltag__link__tag">#dokku</span> </div> </div> </a> </div> </li> <li>An existing Rails application deployed to the server</li> <li>Administrative access to both the server and your GitHub repository</li> </ul> <h2> Setting Up Secure Deployment Keys </h2> <p>The first step in our automation journey is setting up secure SSH keys for deployment. This is crucial for allowing GitHub Actions to securely communicate with our Dokku server.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># On your production server</span> ssh-keygen <span class="nt">-t</span> ed25519 <span class="nt">-f</span> dokku </code></pre> </div> <p>This command generates two files:</p> <ul> <li> <code>dokku</code> - Your private key (keep this secret!)</li> <li> <code>dokku.pub</code> - Your public key (safe to share)</li> </ul> <p>Next, we need to configure Dokku and the server to trust these keys:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Add the key to Dokku</span> <span class="nb">echo</span> <span class="s2">"YOUR_PUBLIC_KEY_CONTENT"</span> | dokku ssh-keys:add github <span class="c"># Add to authorized keys for additional security</span> <span class="nb">echo</span> <span class="s2">"YOUR_PUBLIC_KEY_CONTENT"</span> <span class="o">&gt;&gt;</span> ~/.ssh/authorized_keys </code></pre> </div> <h2> GitHub Repository Configuration </h2> <p>With our keys in place, we need to store the private key securely in GitHub. Here's how:</p> <ol> <li>Navigate to your repository's Settings → Secrets and variables → Actions</li> <li>Create a new secret named <code>PRODUCTION_DOKKU_SSH_PRIVATE_KEY</code> </li> <li>Paste your private key content</li> </ol> <p>This secret will be securely encrypted and only accessible during the deployment process.</p> <h2> The Magic: GitHub Actions Workflow </h2> <p>Now for the exciting part - setting up our automated deployment pipeline. Create or modify <code>.github/workflows/ci.yml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">deploy_production</span><span class="pi">:</span> <span class="na">needs</span><span class="pi">:</span> <span class="pi">[</span> <span class="nv">test</span> <span class="pi">]</span> <span class="na">if</span><span class="pi">:</span> <span class="s">github.event_name == 'push' &amp;&amp; github.ref == 'refs/heads/main'</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-24.04</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Cloning repo</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v3</span> <span class="na">with</span><span class="pi">:</span> <span class="na">fetch-depth</span><span class="pi">:</span> <span class="m">0</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Push to dokku</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">dokku/github-action@master</span> <span class="na">with</span><span class="pi">:</span> <span class="na">branch</span><span class="pi">:</span> <span class="s1">'</span><span class="s">main'</span> <span class="na">trace</span><span class="pi">:</span> <span class="s1">'</span><span class="s">1'</span> <span class="na">git_push_flags</span><span class="pi">:</span> <span class="s1">'</span><span class="s">--force'</span> <span class="na">git_remote_url</span><span class="pi">:</span> <span class="s1">'</span><span class="s">ssh://dokku@SERVER_IP:22/APP_NAME_IN_DOKKU'</span> <span class="na">ssh_private_key</span><span class="pi">:</span> <span class="s">${{ secrets.PRODUCTION_DOKKU_SSH_PRIVATE_KEY }}</span> </code></pre> </div> <p>Let's break down what's happening here:</p> <h3> Workflow Triggers </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">if</span><span class="pi">:</span> <span class="s">github.event_name == 'push' &amp;&amp; github.ref == 'refs/heads/main'</span> </code></pre> </div> <p>This condition ensures deployments only happen when code is pushed to the main branch - perfect for a trunk-based development workflow.</p> <h3> Job Dependencies </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">needs</span><span class="pi">:</span> <span class="pi">[</span> <span class="nv">test</span> <span class="pi">]</span> </code></pre> </div> <p>By specifying <code>needs: [ test ]</code>, we ensure our tests pass before any deployment occurs. This is crucial for maintaining code quality!</p> <h3> Deployment Configuration </h3> <p>The <code>dokku/github-action@master</code> action handles the heavy lifting:</p> <ul> <li> <code>branch: 'main'</code> - Specifies which branch to deploy</li> <li> <code>trace: '1'</code> - Enables detailed logging for troubleshooting</li> <li> <code>git_push_flags: '--force'</code> - Ensures clean deployments</li> <li> <code>git_remote_url</code> - Connects to your Dokku server</li> <li> <code>ssh_private_key</code> - Securely authenticates using our previously configured key</li> </ul> <h2> The Deployment Process </h2> <p>With everything set up, deploying is as simple as:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git push origin main </code></pre> </div> <p>This triggers the following sequence:</p> <ol> <li>Your code is pushed to GitHub</li> <li>GitHub Actions detects the push to main</li> <li>The test suite runs</li> <li>If tests pass, the deployment job begins</li> <li>Your code is securely deployed to the Dokku server</li> </ol> <h2> Personal Insights and Tips </h2> <p>Through implementing this setup, I've learned some valuable lessons:</p> <ol> <li> <strong>Security First</strong>: Always use dedicated deployment keys and never store sensitive information in your repository.</li> <li> <strong>Test Dependencies</strong>: Make deployment dependent on test success to prevent broken code from reaching production.</li> <li> <strong>Logging Matters</strong>: The <code>trace: '1'</code> option has saved hours of debugging by providing detailed deployment logs.</li> </ol> <h2> Looking Forward </h2> <p>This setup has dramatically improved our deployment workflow, but there's always room for enhancement. Future improvements might include:</p> <ul> <li>Adding staging environment deployments</li> <li>Implementing automatic database backups pre-deployment</li> <li>Setting up deployment notifications in Slack</li> </ul> <p>Remember, the goal of automation isn't just to save time - it's to build confidence in your deployment process and free up mental energy for solving more interesting problems.</p> <p>Have you implemented a similar setup? I'd love to hear about your experiences and any improvements you've made to this workflow!</p> <p>Happy deployments!</p> <p><em>Originally published at: <a href="https://sulmanweb.com/rails-dokku-github-actions-deployment" rel="noopener noreferrer">https://sulmanweb.com</a>.</em></p> rails ruby githubactions dokku Rails 8 Production Setup with Dokku Guide Sulman Baig Mon, 27 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-8-production-setup-with-dokku-guide-262g https://dev.to/sulmanweb/rails-8-production-setup-with-dokku-guide-262g <h2> The Challenge: Modernizing Rails Deployment </h2> <p>When I recently needed to deploy my Rails 8 application with multiple databases, I faced a common dilemma: choosing between expensive managed solutions and complex self-managed servers. My requirements were specific:</p> <ul> <li>Multiple PostgreSQL databases for different concerns</li> <li>SSL certificate management</li> <li>Automated deployment pipeline</li> <li>Cost-effective hosting</li> <li>Easy database management</li> <li>Background job processing</li> </ul> <p>Let me walk you through how I solved this using Dokku.</p> <h2> Setting Up Our Foundation </h2> <p>First, let's prepare our server. I chose a 2GB RAM VPS - here's why:</p> <ul> <li>Dokku needs about 1GB RAM to operate smoothly</li> <li>Rails 8 with Puma and background jobs needs the other 1GB</li> <li>Anything less resulted in occasional memory issues during asset compilation</li> </ul> <h3> Initial Server Configuration </h3> <p>SSH into your server and install Dokku:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>wget <span class="nt">-NP</span> <span class="nb">.</span> https://dokku.com/install/v0.35.13/bootstrap.sh <span class="nb">sudo </span><span class="nv">DOKKU_TAG</span><span class="o">=</span>v0.35.13 bash bootstrap.sh </code></pre> </div> <p>After countless deployments, I've found this version to be particularly stable with Rails 8.</p> <h2> The Database Architecture </h2> <p>One of Rails 8's strengths is its multi-database support. In my setup, I separated concerns into four databases:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create our databases</span> dokku postgres:create rails_primary_db dokku postgres:create rails_cache_db dokku postgres:create rails_queue_db dokku postgres:create rails_cable_db </code></pre> </div> <p>Here's why I chose this architecture:</p> <ul> <li>Primary DB: Core application data</li> <li>Cache DB: Session and cache storage</li> <li>Queue DB: Background job management</li> <li>Cable DB: Action Cable subscriptions</li> </ul> <h3> The Magic of Database Linking </h3> <p>This is where things get interesting. When linking databases, Dokku generates unique environment variables:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Link each database and capture the environment variable names</span> dokku postgres:link rails_primary_db your-rails-app <span class="c"># Returns: DATABASE_URL=postgres://...</span> dokku postgres:link rails_cache_db your-rails-app <span class="c"># Returns: DOKKU_POSTGRES_AQUA_URL=postgres://...</span> dokku postgres:link rails_queue_db your-rails-app <span class="c"># Returns: DOKKU_POSTGRES_BLACK_URL=postgres://...</span> dokku postgres:link rails_cable_db your-rails-app <span class="c"># Returns: DOKKU_POSTGRES_BLUE_URL=postgres://...</span> </code></pre> </div> <h2> Rails 8 Configuration Magic </h2> <p>Here's how I configured my Rails 8 application to use these databases. In <code>config/database.yml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">production</span><span class="pi">:</span> <span class="na">primary</span><span class="pi">:</span> <span class="nl">&amp;primary_production</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*default</span> <span class="na">database</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DATABASE_URL'] || 'rails_primary_db' %&gt;</span> <span class="na">url</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DATABASE_URL'] %&gt;</span> <span class="na">cache</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_AQUA_URL'] || 'rails_cache_db' %&gt;</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/cache_migrate</span> <span class="na">url</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_AQUA_URL'] %&gt;</span> <span class="na">queue</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_BLACK_URL'] || 'rails_queue_db' %&gt;</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/queue_migrate</span> <span class="na">url</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_BLACK_URL'] %&gt;</span> <span class="na">cable</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_BLUE_URL'] || 'rails_cable_db' %&gt;</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/cable_migrate</span> <span class="na">url</span><span class="pi">:</span> <span class="s">&lt;%= ENV['DOKKU_POSTGRES_BLUE_URL'] %&gt;</span> </code></pre> </div> <h2> The Deployment Pipeline </h2> <p>Create a <code>Procfile</code> in your Rails root:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>web: bin/rails server -p $PORT -e $RAILS_ENV worker: bin/jobs release: bundle exec rails db:migrate 2&gt;/dev/null || bundle exec rails db:setup </code></pre> </div> <p>I learned the hard way that the <code>release</code> command needs error handling for first deployments, hence the <code>2&gt;/dev/null || bundle exec rails db:setup</code> pattern.</p> <h2> Environment Configuration </h2> <p>Rails 8 needs specific environment variables. Here's my production setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Rails essentials</span> dokku config:set your-rails-app <span class="nv">RAILS_ENV</span><span class="o">=</span>production dokku config:set your-rails-app <span class="nv">RACK_ENV</span><span class="o">=</span>production dokku config:set your-rails-app <span class="nv">RAILS_MASTER_KEY</span><span class="o">=</span><span class="si">$(</span><span class="nb">cat </span>config/credentials/production.key<span class="si">)</span> <span class="c"># Rails 8 specifics</span> dokku config:set your-rails-app <span class="nv">RAILS_SERVE_STATIC_FILES</span><span class="o">=</span><span class="nb">true </span>dokku config:set your-rails-app <span class="nv">RAILS_LOG_TO_STDOUT</span><span class="o">=</span><span class="nb">true</span> </code></pre> </div> <h2> Git Deployment Setup </h2> <p>Configure your local repository:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Add Dokku remote</span> git remote add production dokku@your-server-ip:your-rails-app <span class="c"># Verify remote addition</span> git remote show production <span class="c"># Set deployment branch</span> dokku git:set your-rails-app deploy-branch main </code></pre> </div> <h2> SSL Configuration </h2> <p>Rails 8 expects HTTPS in production. Here's how to set it up with Let's Encrypt:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install the plugin</span> <span class="nb">sudo </span>dokku plugin:install https://github.com/dokku/dokku-letsencrypt.git <span class="c"># Configure your domain</span> dokku domains:clear-global dokku domains:set your-rails-app yourdomain.com <span class="c"># Setup SSL</span> dokku letsencrypt:set your-rails-app email your@email.com dokku letsencrypt:enable your-rails-app dokku letsencrypt:cron-job <span class="nt">--add</span> </code></pre> </div> <h2> Deployment and Monitoring </h2> <p>Deploy your application:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git push production main </code></pre> </div> <p>Monitor your deployment:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Real-time logs</span> dokku logs your-rails-app <span class="nt">-t</span> <span class="c"># Process status</span> dokku ps:report your-rails-app <span class="c"># Database status</span> dokku postgres:info rails_primary_db </code></pre> </div> <h2> Troubleshooting Common Rails 8 Issues </h2> <p>During my deployments, I encountered several Rails 8-specific issues:</p> <ol> <li> <strong>Asset Compilation Failures</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c"># Force a clean asset compilation</span> dokku run your-rails-app bundle <span class="nb">exec </span>rails assets:clobber assets:precompile </code></pre> </div> <ol> <li> <strong>Database Migration Issues</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c"># Run migrations manually if needed</span> dokku run your-rails-app bundle <span class="nb">exec </span>rails db:migrate </code></pre> </div> <ol> <li> <strong>Worker Process Management</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c"># Restart workers after config changes</span> dokku ps:restart your-rails-app worker </code></pre> </div> <h2> Maintenance Tips </h2> <p>Based on my experience, here are some crucial maintenance practices:</p> <h3> Database Backups </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Backup all databases</span> <span class="k">for </span>db <span class="k">in </span>primary cache queue cable<span class="p">;</span> <span class="k">do </span>dokku postgres:export rails_<span class="k">${</span><span class="nv">db</span><span class="k">}</span>_db <span class="o">&gt;</span> <span class="k">${</span><span class="nv">db</span><span class="k">}</span>_backup.dump <span class="k">done</span> </code></pre> </div> <h3> Performance Monitoring </h3> <p>Monitor your Rails 8 application's health:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check memory usage</span> dokku ps:report your-rails-app <span class="c"># View error logs</span> dokku logs your-rails-app <span class="nt">-t</span> | <span class="nb">grep </span>ERROR </code></pre> </div> <h2> Conclusion </h2> <p>Deploying Rails 8 with Dokku has been a game-changer for my development workflow. The combination of Rails 8's robust multi-database support and Dokku's Heroku-like deployment experience has made managing production applications both cost-effective and developer-friendly.</p> <p>Remember to:</p> <ul> <li>Keep your Rails master key secure</li> <li>Regularly backup all databases</li> <li>Monitor worker processes</li> <li>Keep an eye on memory usage</li> </ul> <p>The setup might seem extensive, but once configured, deployments become as simple as <code>git push production main</code>. Feel free to reach out if you encounter any Rails 8-specific deployment challenges!</p> <p>This guide reflects my real-world experience deploying Rails 8 applications with Dokku. As you work with this setup, you'll likely discover additional optimizations specific to your use case. </p> <p>Happy deploying!</p> <p><em>Originally published at <a href="https://sulmanweb.com/rails-8-production-dokku-deployment-guide" rel="noopener noreferrer">https://sulmanweb.com</a>.</em></p> ruby rails dokku Heroku to Dokku: A Rails Dev's Migration Tale Sulman Baig Thu, 23 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/heroku-to-dokku-a-rails-devs-migration-tale-2k5n https://dev.to/sulmanweb/heroku-to-dokku-a-rails-devs-migration-tale-2k5n <h2> The Cost-Benefit Realization </h2> <p>As a Rails developer who recently migrated from Heroku to Dokku, I want to share my journey and the surprising benefits I discovered. This transition wasn't just about cost savings—it opened up new possibilities for my deployment workflow.</p> <h2> The Heroku Challenge </h2> <p>Before diving into Dokku's benefits, let me share why I started looking for alternatives. Heroku had been my go-to platform for years, offering:</p> <ul> <li>Zero-configuration deployments</li> <li>Excellent developer experience</li> <li>Reliable infrastructure</li> <li>Built-in add-ons</li> </ul> <p>However, recent changes created some challenges:</p> <ul> <li>Removal of free tier</li> <li>Significant cost increases for basic dynos</li> <li>Sleep states affecting development apps</li> <li>Add-on costs adding up quickly</li> </ul> <h2> Why Dokku Won Me Over </h2> <h3> 1. Cost Efficiency </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># Monthly Cost Comparison for a Basic Rails Setup</span> <span class="n">heroku_cost</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">basic_dyno: </span><span class="mi">7</span><span class="p">,</span> <span class="ss">postgres: </span><span class="mi">9</span><span class="p">,</span> <span class="ss">redis: </span><span class="mi">15</span><span class="p">,</span> <span class="ss">ssl: </span><span class="mi">20</span><span class="p">,</span> <span class="ss">total: </span><span class="mi">51</span> <span class="p">}</span> <span class="n">dokku_cost</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">server_2gb: </span><span class="mi">10</span><span class="p">,</span> <span class="ss">managed_databases: </span><span class="mi">0</span><span class="p">,</span> <span class="c1"># Included!</span> <span class="ss">ssl: </span><span class="mi">0</span><span class="p">,</span> <span class="c1"># Free via Let's Encrypt</span> <span class="ss">total: </span><span class="mi">10</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Infrastructure Control </h3> <p>Unlike Heroku's black box approach, Dokku lets me:</p> <ul> <li>Choose my server provider (Digital Ocean, Linode, AWS)</li> <li>Customize server resources</li> <li>Configure nginx directly</li> <li>Manage database backups my way</li> </ul> <h3> 3. Multi-App Efficiency </h3> <p>One of my favorite discoveries:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Deploy multiple apps on one server</span> dokku apps:create rails-app-1 dokku apps:create rails-app-2 dokku apps:create rails-app-3 <span class="c"># Each with its own domains and SSL</span> dokku domains:set rails-app-1 app1.domain.com dokku domains:set rails-app-2 app2.domain.com </code></pre> </div> <h3> 4. Familiar Workflow </h3> <p>Dokku maintains Heroku's git-based deployment:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Just like Heroku</span> git push dokku main <span class="c"># Even supports release phase</span> dokku config:set rails-app-1 <span class="nv">DOKKU_RELEASE_COMMAND</span><span class="o">=</span><span class="s2">"rails db:migrate"</span> </code></pre> </div> <h3> 5. Database Flexibility </h3> <p>My Rails apps often need multiple databases:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create separate databases for different concerns</span> dokku postgres:create main_db dokku postgres:create analytics_db dokku postgres:create cache_db <span class="c"># Link them easily</span> dokku postgres:link main_db rails-app </code></pre> </div> <h3> 6. Custom Plugin Ecosystem </h3> <p>Beyond basic features:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install useful plugins</span> <span class="nb">sudo </span>dokku plugin:install https://github.com/dokku/dokku-postgres.git <span class="nb">sudo </span>dokku plugin:install https://github.com/dokku/dokku-letsencrypt.git <span class="nb">sudo </span>dokku plugin:install https://github.com/dokku/dokku-redis.git </code></pre> </div> <h2> Real-World Benefits I've Experienced </h2> <h3> Development Environment </h3> <ul> <li>Faster deployments (no queue waiting)</li> <li>Direct log access</li> <li>Quick database operations</li> <li>Custom domain management</li> </ul> <h3> Production Advantages </h3> <ul> <li>Significant cost savings</li> <li>Better resource utilization</li> <li>Full control over backups</li> <li>Custom monitoring solutions</li> </ul> <h3> Scaling Capabilities </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Scale processes individually</span> dokku ps:scale <span class="nv">web</span><span class="o">=</span>2 dokku ps:scale <span class="nv">worker</span><span class="o">=</span>1 <span class="c"># Monitor resource usage</span> dokku ps:report </code></pre> </div> <h2> Making the Transition Easier </h2> <p>Here's what helped me during migration:</p> <ol> <li> <strong>Environment Variable Management</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Export from Heroku</span> heroku config <span class="nt">-a</span> your-app <span class="o">&gt;</span> config.txt <span class="c"># Import to Dokku</span> <span class="k">while </span><span class="nb">read </span>line<span class="p">;</span> <span class="k">do </span>dokku config:set your-app <span class="nv">$line</span> <span class="k">done</span> &lt; config.txt </code></pre> </div> <ol> <li> <strong>Database Migration</strong> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Export from Heroku</span> heroku pg:backups:capture heroku pg:backups:download <span class="c"># Import to Dokku</span> dokku postgres:import database &lt; latest.dump </code></pre> </div> <h2> When to Choose Dokku Over Heroku </h2> <p>Consider Dokku when you:</p> <ul> <li>Need cost-effective hosting</li> <li>Want multiple apps on one server</li> <li>Require custom infrastructure</li> <li>Have basic sysadmin knowledge</li> <li>Value deployment flexibility</li> </ul> <p>Stay with Heroku if you:</p> <ul> <li>Need enterprise-level support</li> <li>Require zero server management</li> <li>Want managed add-on services</li> <li>Have a larger team needing access controls</li> </ul> <h2> Learning Curve and ROI </h2> <p>The initial setup took me about a day, but the benefits were immediate:</p> <ul> <li>Monthly costs dropped by 80%</li> <li>Deployment times improved</li> <li>More control over infrastructure</li> <li>Better understanding of my stack</li> </ul> <h2> Conclusion </h2> <p>My journey from Heroku to Dokku has been transformative. While Heroku remains an excellent platform, Dokku provides a powerful, cost-effective alternative that doesn't compromise on developer experience. The learning curve is worth the benefits, especially for Rails applications where cost and control matter.</p> <p>Remember: Dokku isn't just a Heroku alternative—it's a different way of thinking about deployments that empowers developers to take control of their infrastructure while maintaining the simplicity we love about Platform as a Service solutions.</p> <p>If you're considering the switch, feel free to reach out. The Rails community around Dokku is growing, and sharing experiences helps everyone succeed in their deployment journey!</p> <p>Happy Coding!</p> <p><em>Originally published at: <a href="https://sulmanweb.com/heroku-to-dokku-rails-migration-guide" rel="noopener noreferrer">https://sulmanweb.com</a></em></p> rails dokku heroku ruby Rails 8 CI/CD: GitHub Actions & Kamal 2025 Sulman Baig Mon, 20 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-8-cicd-github-actions-kamal-2025-2gce https://dev.to/sulmanweb/rails-8-cicd-github-actions-kamal-2025-2gce <p>In my previous article, we explored deploying Rails 8 applications using Docker and Kamal. <br> </p> <div class="ltag__link"> <a href="/sulmanweb" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F256492%2F2ec60d20-303a-475e-b5aa-90f2b11d0da6.jpg" alt="sulmanweb"> </div> </a> <a href="https://dev.to/sulmanweb/deploying-rails-8-applications-a-complete-guide-with-docker-kamal-and-cloudflare-3k" class="ltag__link__link"> <div class="ltag__link__content"> <h2>Deploying Rails 8 Applications: A Complete Guide with Docker, Kamal, and Cloudflare</h2> <h3>Sulman Baig ・ Jan 9</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#rails</span> <span class="ltag__link__tag">#devops</span> <span class="ltag__link__tag">#docker</span> <span class="ltag__link__tag">#ruby</span> </div> </div> </a> </div> <br> Today, I'm excited to share how we can take this deployment process to the next level by automating it with GitHub Actions. This automation will make our deployments more consistent, reduce human error, and save valuable development time. <h2> Why Add GitHub Actions to Our Deployment Stack? </h2> <p>When I first started using Kamal for deployments, I found myself repeatedly running the same commands. While Kamal made the process straightforward, I knew we could make it even better. GitHub Actions provides the perfect solution by:</p> <ul> <li>Automating deployments on code pushes to main</li> <li>Ensuring consistent deployment environments</li> <li>Managing secrets securely</li> <li>Providing detailed deployment logs and history</li> </ul> <h2> Prerequisites </h2> <p>Before we dive in, make sure you have:</p> <ul> <li>A Rails 8 application configured with Kamal (<a href="https://dev.to/sulmanweb/deploying-rails-8-applications-a-complete-guide-with-docker-kamal-and-cloudflare-3k">https://dev.to/sulmanweb/deploying-rails-8-applications-a-complete-guide-with-docker-kamal-and-cloudflare-3k</a>)</li> <li>A GitHub repository for your application</li> <li>Access to your repository's settings to configure secrets</li> </ul> <h2> Setting Up GitHub Actions </h2> <p>Let's break down the process into manageable steps.</p> <h3> 1. Creating the Workflow File </h3> <p>First, create a new file at <code>.github/workflows/deploy.yml</code>. This is where our deployment magic will happen.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">name</span><span class="pi">:</span> <span class="s">Deploy to Production</span> <span class="na">on</span><span class="pi">:</span> <span class="na">push</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">main</span> <span class="na">permissions</span><span class="pi">:</span> <span class="na">contents</span><span class="pi">:</span> <span class="s">read</span> <span class="na">packages</span><span class="pi">:</span> <span class="s">write</span> <span class="na">id-token</span><span class="pi">:</span> <span class="s">write</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">deploy</span><span class="pi">:</span> <span class="na">if</span><span class="pi">:</span> <span class="s">github.event_name == 'push' &amp;&amp; github.ref == 'refs/heads/main'</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-24.04</span> <span class="na">env</span><span class="pi">:</span> <span class="na">DOCKER_BUILDKIT</span><span class="pi">:</span> <span class="m">1</span> <span class="na">RAILS_ENV</span><span class="pi">:</span> <span class="s">production</span> <span class="na">BUNDLE_WITHOUT</span><span class="pi">:</span> <span class="s2">"</span><span class="s">development</span><span class="nv"> </span><span class="s">test"</span> <span class="na">BUNDLE_WITH</span><span class="pi">:</span> <span class="s">tools</span> </code></pre> </div> <h3> 2. Setting Up Deployment Steps </h3> <p>Let's examine each step of our deployment process:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Checkout code</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Set up Ruby</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">ruby/setup-ruby@v1</span> <span class="na">with</span><span class="pi">:</span> <span class="na">ruby-version</span><span class="pi">:</span> <span class="s">.ruby-version</span> <span class="na">bundler-cache</span><span class="pi">:</span> <span class="kc">true</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Set up Docker Buildx</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">docker/setup-buildx-action@v3</span> </code></pre> </div> <p>These initial steps prepare our deployment environment:</p> <ul> <li> <code>checkout</code> clones our repository</li> <li> <code>setup-ruby</code> configures Ruby using our project's <code>.ruby-version</code> </li> <li> <code>setup-buildx</code> enables Docker's advanced build capabilities</li> </ul> <h3> 3. Configuring SSH Access </h3> <p>The SSH setup is crucial for secure server access:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Set up SSH</span> <span class="na">run</span><span class="pi">:</span> <span class="pi">|</span> <span class="s">mkdir -p ~/.ssh</span> <span class="s">echo "$SSH_PRIVATE_KEY" &gt; ~/.ssh/id_rsa</span> <span class="s">chmod 600 ~/.ssh/id_rsa</span> <span class="s">eval $(ssh-agent -s)</span> <span class="s">ssh-add ~/.ssh/id_rsa</span> <span class="s">ssh-keyscan xx.xx.xx.xx &gt;&gt; ~/.ssh/known_hosts</span> <span class="na">env</span><span class="pi">:</span> <span class="na">SSH_PRIVATE_KEY</span><span class="pi">:</span> <span class="s">${{ secrets.SSH_PRIVATE_KEY }}</span> </code></pre> </div> <h3> 4. Running the Deployment </h3> <p>Finally, we execute Kamal:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Deploy with Kamal</span> <span class="na">run</span><span class="pi">:</span> <span class="s">bin/kamal deploy</span> <span class="na">env</span><span class="pi">:</span> <span class="na">RAILS_MASTER_KEY</span><span class="pi">:</span> <span class="s">${{ secrets.RAILS_MASTER_KEY }}</span> <span class="na">KAMAL_REGISTRY_PASSWORD</span><span class="pi">:</span> <span class="s">${{ secrets.KAMAL_REGISTRY_PASSWORD }}</span> <span class="na">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="s">${{ secrets.POSTGRES_PASSWORD }}</span> <span class="na">POSTGRES_PASS</span><span class="pi">:</span> <span class="s">${{ secrets.POSTGRES_PASSWORD }}</span> </code></pre> </div> <h2> Setting Up GitHub Secrets </h2> <p>Security is paramount in automated deployments. Here's how to set up your secrets in GitHub:</p> <ol> <li>Navigate to your repository's Settings</li> <li>Select "Secrets and variables" → "Actions"</li> <li>Click "New repository secret"</li> <li>Add the following secrets: <ul> <li> <code>SSH_PRIVATE_KEY</code>: Your server's SSH private key</li> <li> <code>RAILS_MASTER_KEY</code>: Your Rails master key</li> <li> <code>KAMAL_REGISTRY_PASSWORD</code>: Docker registry password</li> <li> <code>POSTGRES_PASSWORD</code>: Database password</li> </ul> </li> </ol> <p>Pro tip: Generate strong passwords for these secrets using a password manager!</p> <h2> Understanding Environment Variables </h2> <p>Our workflow uses several environment variables:</p> <ul> <li> <code>DOCKER_BUILDKIT: 1</code>: Enables Docker's modern build system</li> <li> <code>RAILS_ENV: production</code>: Sets Rails environment</li> <li> <code>BUNDLE_WITHOUT</code>: Optimizes gem installation</li> <li> <code>BUNDLE_WITH: tools</code>: Ensures deployment tools are available</li> </ul> <h2> Deployment Flow </h2> <p>When you push to main, here's what happens:</p> <ol> <li>GitHub Actions triggers the workflow</li> <li>The environment is prepared with Ruby and Docker</li> <li>SSH access is configured securely</li> <li>Kamal executes the deployment</li> <li>Your application is updated with zero downtime</li> </ol> <h2> Best Practices and Tips </h2> <p>Through my experience with this setup, I've learned some valuable lessons:</p> <ol> <li> <strong>Test Your Workflow</strong>: Use GitHub Actions' "workflow_dispatch" trigger to test manually before automating.</li> <li> <strong>Monitor Deployments</strong>: Watch your Actions tab for deployment logs.</li> <li> <strong>Secure Your Secrets</strong>: Regularly rotate your credentials and use strong passwords.</li> <li> <strong>Keep Dependencies Updated</strong>: Regularly update your GitHub Actions versions.</li> </ol> <h2> Troubleshooting Common Issues </h2> <p>If you encounter issues, check these common points:</p> <ol> <li> <p><strong>SSH Connection Failures</strong></p> <ul> <li>Verify your SSH private key format</li> <li>Ensure the server IP in <code>known_hosts</code> is correct</li> </ul> </li> <li> <p><strong>Docker Registry Issues</strong></p> <ul> <li>Confirm your registry credentials</li> <li>Check Docker login status</li> </ul> </li> <li> <p><strong>Environment Variables</strong></p> <ul> <li>Verify all secrets are properly set</li> <li>Check for typos in secret names</li> </ul> </li> </ol> <h2> Conclusion </h2> <p>Automating deployments with GitHub Actions and Kamal has transformed our deployment process from a manual task to a streamlined, automated workflow. Not only does this save time, but it also provides consistency and reliability in our deployments.</p> <p>Remember, automation is about finding the right balance between convenience and control. With this setup, we maintain full control over our deployment process while enjoying the benefits of automation.</p> <p>What's your experience with automated deployments? I'd love to hear your thoughts and experiences in the comments below! 🚀</p> <p>Happy Coding!</p> <p><em>Originally published at: <a href="https://sulmanweb.com/rails-8-github-actions-kamal-automated-deployment-guide" rel="noopener noreferrer">https://sulmanweb.com</a></em></p> rails githubactions kamal ruby Nice Gem will surely test it soon Sulman Baig Sat, 18 Jan 2025 17:49:19 +0000 https://dev.to/sulmanweb/nice-gem-will-surely-test-it-soon-1omj https://dev.to/sulmanweb/nice-gem-will-surely-test-it-soon-1omj <div class="ltag__link"> <a href="/waruna" class="ltag__link__link"> <div class="ltag__link__pic"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1270744%2Fcfe828a4-218d-4e5b-a509-88300444878a.png" alt="waruna"> </div> </a> <a href="https://dev.to/waruna/ruby-on-rails-calculating-pricing-based-users-purchasing-power-parity-4bc8" class="ltag__link__link"> <div class="ltag__link__content"> <h2>Ruby on Rails - Calculating pricing based user's purchasing power parity</h2> <h3>Waruna ・ Jan 10</h3> <div class="ltag__link__taglist"> <span class="ltag__link__tag">#rails</span> <span class="ltag__link__tag">#ruby</span> </div> </div> </a> </div> ruby rails Rails Self-Join Tables - Parent-Child Magic Sulman Baig Thu, 16 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-self-join-tables-parent-child-magic-5abg https://dev.to/sulmanweb/rails-self-join-tables-parent-child-magic-5abg <p>In modern web applications, we often need to represent hierarchical data structures where records can have parent-child relationships within the same table. Think of organizational charts, nested categories, or multi-level attributes. Today, I'll walk you through implementing self-referential associations in Ruby on Rails, using a practical example from a laboratory management system.</p> <h2> The Challenge </h2> <p>Recently, while building a laboratory information system, I needed to implement a flexible attribute system where each lab attribute could have multiple child attributes, creating a tree-like structure. For example, a "Blood Test" attribute might have child attributes like "Hemoglobin," "White Blood Cell Count," and "Platelet Count."</p> <h2> Technical Implementation </h2> <p>Let's break down the implementation into manageable steps and understand the underlying concepts.</p> <h3> Step 1: Database Migration </h3> <p>First, we need to set up our database structure. In Rails 8, we can generate a migration to add a self-referential foreign key:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># Terminal command</span> <span class="n">rails</span> <span class="n">generate</span> <span class="n">migration</span> <span class="no">AddParentToLabAttribute</span> <span class="n">parent</span><span class="ss">:references</span> <span class="c1"># db/migrate/YYYYMMDDHHMMSS_add_parent_to_lab_attribute.rb</span> <span class="k">class</span> <span class="nc">AddParentToLabAttribute</span> <span class="o">&lt;</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Migration</span><span class="p">[</span><span class="mf">8.0</span><span class="p">]</span> <span class="k">def</span> <span class="nf">change</span> <span class="n">add_reference</span> <span class="ss">:lab_attributes</span><span class="p">,</span> <span class="ss">:parent</span><span class="p">,</span> <span class="ss">foreign_key: </span><span class="p">{</span> <span class="ss">to_table: :lab_attributes</span> <span class="p">}</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>This migration adds a <code>parent_id</code> column to our <code>lab_attributes</code> table, which will reference another record in the same table. The <code>foreign_key</code> option explicitly tells Rails that this reference points back to the same table.</p> <h3> Step 2: Model Definition </h3> <p>The magic happens in our model definition. Here's how we set up the self-referential association:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/models/lab_attribute.rb</span> <span class="k">class</span> <span class="nc">LabAttribute</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="c1"># Parent association</span> <span class="n">belongs_to</span> <span class="ss">:parent</span><span class="p">,</span> <span class="ss">class_name: </span><span class="s1">'LabAttribute'</span><span class="p">,</span> <span class="ss">optional: </span><span class="kp">true</span> <span class="c1"># Children association</span> <span class="n">has_many</span> <span class="ss">:children</span><span class="p">,</span> <span class="ss">class_name: </span><span class="s1">'LabAttribute'</span><span class="p">,</span> <span class="ss">foreign_key: </span><span class="s1">'parent_id'</span><span class="p">,</span> <span class="ss">dependent: :destroy</span><span class="p">,</span> <span class="ss">inverse_of: :parent</span> <span class="c1"># Validation to prevent circular references</span> <span class="n">validate</span> <span class="ss">:prevent_circular_reference</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">prevent_circular_reference</span> <span class="k">if</span> <span class="n">parent_id</span> <span class="o">==</span> <span class="nb">id</span> <span class="o">||</span> <span class="p">(</span><span class="n">parent</span><span class="p">.</span><span class="nf">present?</span> <span class="o">&amp;&amp;</span> <span class="n">parent</span><span class="p">.</span><span class="nf">ancestor_ids</span><span class="p">.</span><span class="nf">include?</span><span class="p">(</span><span class="nb">id</span><span class="p">))</span> <span class="n">errors</span><span class="p">.</span><span class="nf">add</span><span class="p">(</span><span class="ss">:parent_id</span><span class="p">,</span> <span class="s2">"cannot create circular reference"</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>Let's break down the key components:</p> <ol> <li> <code>belongs_to :parent</code> - Establishes the relationship to the parent attribute</li> <li> <code>optional: true</code> - Makes the parent association optional (root attributes don't have parents)</li> <li> <code>has_many :children</code> - Sets up the inverse relationship</li> <li> <code>dependent: :destroy</code> - Automatically deletes child attributes when the parent is deleted</li> <li> <code>inverse_of: :parent</code> - Helps Rails optimize memory usage and maintain consistency</li> </ol> <h3> Step 3: Enhanced Functionality </h3> <p>Let's add some useful methods to work with our hierarchical structure:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/models/lab_attribute.rb</span> <span class="k">class</span> <span class="nc">LabAttribute</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="c1"># Previous code...</span> <span class="k">def</span> <span class="nf">root?</span> <span class="n">parent_id</span><span class="p">.</span><span class="nf">nil?</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">leaf?</span> <span class="n">children</span><span class="p">.</span><span class="nf">empty?</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">depth</span> <span class="k">return</span> <span class="mi">0</span> <span class="k">if</span> <span class="n">root?</span> <span class="mi">1</span> <span class="o">+</span> <span class="n">parent</span><span class="p">.</span><span class="nf">depth</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">ancestor_ids</span> <span class="k">return</span> <span class="p">[]</span> <span class="k">if</span> <span class="n">root?</span> <span class="p">[</span><span class="n">parent_id</span><span class="p">]</span> <span class="o">+</span> <span class="n">parent</span><span class="p">.</span><span class="nf">ancestor_ids</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">ancestors</span> <span class="no">LabAttribute</span><span class="p">.</span><span class="nf">where</span><span class="p">(</span><span class="ss">id: </span><span class="n">ancestor_ids</span><span class="p">)</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">descendants</span> <span class="n">children</span><span class="p">.</span><span class="nf">flat_map</span> <span class="p">{</span> <span class="o">|</span><span class="n">child</span><span class="o">|</span> <span class="p">[</span><span class="n">child</span><span class="p">]</span> <span class="o">+</span> <span class="n">child</span><span class="p">.</span><span class="nf">descendants</span> <span class="p">}</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Usage Examples </h2> <p>Here's how you can use this implementation in practice:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># Creating a hierarchy</span> <span class="n">blood_test</span> <span class="o">=</span> <span class="no">LabAttribute</span><span class="p">.</span><span class="nf">create!</span><span class="p">(</span><span class="ss">name: </span><span class="s1">'Blood Test'</span><span class="p">)</span> <span class="n">hemoglobin</span> <span class="o">=</span> <span class="n">blood_test</span><span class="p">.</span><span class="nf">children</span><span class="p">.</span><span class="nf">create!</span><span class="p">(</span><span class="ss">name: </span><span class="s1">'Hemoglobin'</span><span class="p">)</span> <span class="n">wbc</span> <span class="o">=</span> <span class="n">blood_test</span><span class="p">.</span><span class="nf">children</span><span class="p">.</span><span class="nf">create!</span><span class="p">(</span><span class="ss">name: </span><span class="s1">'White Blood Cell Count'</span><span class="p">)</span> <span class="c1"># Querying relationships</span> <span class="nb">puts</span> <span class="n">blood_test</span><span class="p">.</span><span class="nf">children</span><span class="p">.</span><span class="nf">pluck</span><span class="p">(</span><span class="ss">:name</span><span class="p">)</span> <span class="c1"># =&gt; ["Hemoglobin", "White Blood Cell Count"]</span> <span class="nb">puts</span> <span class="n">wbc</span><span class="p">.</span><span class="nf">parent</span><span class="p">.</span><span class="nf">name</span> <span class="c1"># =&gt; "Blood Test"</span> <span class="nb">puts</span> <span class="n">hemoglobin</span><span class="p">.</span><span class="nf">root?</span> <span class="c1"># =&gt; false</span> <span class="nb">puts</span> <span class="n">blood_test</span><span class="p">.</span><span class="nf">leaf?</span> <span class="c1"># =&gt; false</span> <span class="nb">puts</span> <span class="n">wbc</span><span class="p">.</span><span class="nf">depth</span> <span class="c1"># =&gt; 1</span> </code></pre> </div> <h2> Performance Considerations </h2> <p>When working with self-referential associations, keep these performance tips in mind:</p> <ol> <li>Use eager loading to avoid N+1 queries: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="no">LabAttribute</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="ss">:children</span><span class="p">,</span> <span class="ss">:parent</span><span class="p">).</span><span class="nf">where</span><span class="p">(</span><span class="ss">parent_id: </span><span class="kp">nil</span><span class="p">)</span> </code></pre> </div> <ol> <li>Consider using counter caches for large hierarchies: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="n">add_column</span> <span class="ss">:lab_attributes</span><span class="p">,</span> <span class="ss">:children_count</span><span class="p">,</span> <span class="ss">:integer</span><span class="p">,</span> <span class="ss">default: </span><span class="mi">0</span> </code></pre> </div> <ol> <li>For deep hierarchies, consider using closure tables or nested sets if you frequently need to query entire trees.</li> </ol> <h2> Conclusion </h2> <p>Self-referential table inheritance is a powerful pattern for modeling hierarchical data in Rails applications. While this implementation focuses on lab attributes, the same pattern can be applied to any domain requiring hierarchical data structures.</p> <p>Remember to:</p> <ul> <li>Validate against circular references</li> <li>Consider the depth of your hierarchies</li> <li>Use eager loading appropriately</li> <li>Add indexes to foreign keys for better performance</li> </ul> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/rails-self-referential-table-inheritance-tutorial" rel="noopener noreferrer">https://sulmanweb.com</a>.</em></p> rails ruby sql Rails 8 CRUD: Modern Development Guide 2025 Sulman Baig Mon, 13 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-8-crud-modern-development-guide-2025-309f https://dev.to/sulmanweb/rails-8-crud-modern-development-guide-2025-309f <p>When our team decided to upgrade to Rails 8, we chose a more Rails-native approach using importmap for JavaScript management. This decision aligned perfectly with Rails' philosophy of convention over configuration, and I'm excited to share how this choice shaped our development experience.</p> <h2> Initial Setup and Modern Stack Choices </h2> <p>Let's start with setting up our Rails 8 project:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>rails new modern_platform <span class="se">\</span> <span class="nt">--css</span> tailwind <span class="se">\</span> <span class="nt">--database</span> postgresql <span class="se">\</span> <span class="nt">--skip-test</span> <span class="se">\</span> <span class="nt">--skip-system-test</span> </code></pre> </div> <p>Why no <code>--javascript</code> flag? Rails 8 comes with importmap by default, which I've found to be a game-changer for managing JavaScript dependencies. Here's how we configured our importmap:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># config/importmap.rb</span> <span class="n">pin</span> <span class="s2">"@hotwired/turbo-rails"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"turbo.min.js"</span> <span class="n">pin</span> <span class="s2">"@hotwired/stimulus"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"stimulus.min.js"</span> <span class="n">pin</span> <span class="s2">"@hotwired/stimulus-loading"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"stimulus-loading.js"</span> <span class="c1"># Third-party packages we're using</span> <span class="n">pin</span> <span class="s2">"chart.js"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"https://ga.jspm.io/npm:chart.js@4.4.1/dist/chart.js"</span> <span class="n">pin</span> <span class="s2">"@rails/request.js"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"https://ga.jspm.io/npm:@rails/request.js@0.0.9/src/index.js"</span> <span class="n">pin</span> <span class="s2">"trix"</span> <span class="n">pin</span> <span class="s2">"@rails/actiontext"</span><span class="p">,</span> <span class="ss">to: </span><span class="s2">"actiontext.js"</span> <span class="c1"># Local JavaScript modules</span> <span class="n">pin_all_from</span> <span class="s2">"app/javascript/controllers"</span><span class="p">,</span> <span class="ss">under: </span><span class="s2">"controllers"</span> <span class="n">pin_all_from</span> <span class="s2">"app/javascript/components"</span><span class="p">,</span> <span class="ss">under: </span><span class="s2">"components"</span> </code></pre> </div> <h2> Modern JavaScript Organization </h2> <p>One of the benefits of importmap is how naturally it fits with module-based JavaScript. Here's how we structure our JavaScript:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// app/javascript/controllers/post_form_controller.js</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Controller</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@hotwired/stimulus</span><span class="dl">"</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">post</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@rails/request.js</span><span class="dl">"</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">class</span> <span class="nc">extends</span> <span class="nx">Controller</span> <span class="p">{</span> <span class="kd">static</span> <span class="nx">targets</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">form</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">preview</span><span class="dl">"</span><span class="p">]</span> <span class="kd">static</span> <span class="nx">values</span> <span class="o">=</span> <span class="p">{</span> <span class="na">previewUrl</span><span class="p">:</span> <span class="nb">String</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">preview</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">formData</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">FormData</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">formTarget</span><span class="p">)</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">post</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">previewUrlValue</span><span class="p">,</span> <span class="p">{</span> <span class="na">body</span><span class="p">:</span> <span class="nx">formData</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">html</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nx">text</span> <span class="k">this</span><span class="p">.</span><span class="nx">previewTarget</span><span class="p">.</span><span class="nx">innerHTML</span> <span class="o">=</span> <span class="nx">html</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Preview failed:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Component-Based Architecture </h2> <p>We've embraced ViewComponent with Stimulus, creating a powerful combination for reusable UI components:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/components/rich_text_editor_component.rb</span> <span class="k">class</span> <span class="nc">RichTextEditorComponent</span> <span class="o">&lt;</span> <span class="no">ViewComponent</span><span class="o">::</span><span class="no">Base</span> <span class="nb">attr_reader</span> <span class="ss">:form</span><span class="p">,</span> <span class="ss">:field</span> <span class="k">def</span> <span class="nf">initialize</span><span class="p">(</span><span class="n">form</span><span class="p">:,</span> <span class="n">field</span><span class="p">:)</span> <span class="vi">@form</span> <span class="o">=</span> <span class="n">form</span> <span class="vi">@field</span> <span class="o">=</span> <span class="n">field</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">stimulus_controller_options</span> <span class="p">{</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">controller: </span><span class="s2">"rich-text-editor"</span><span class="p">,</span> <span class="ss">rich_text_editor_toolbar_value: </span><span class="n">toolbar_options</span><span class="p">.</span><span class="nf">to_json</span> <span class="p">}</span> <span class="p">}</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">toolbar_options</span> <span class="p">{</span> <span class="ss">items: </span><span class="p">[</span> <span class="sx">%w[bold italic underline strike]</span><span class="p">,</span> <span class="sx">%w[heading-1 heading-2]</span><span class="p">,</span> <span class="sx">%w[link code]</span><span class="p">,</span> <span class="sx">%w[unordered-list ordered-list]</span> <span class="p">]</span> <span class="p">}</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight erb"><code><span class="c">&lt;!-- app/components/rich_text_editor_component.html.erb --&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"rich-text-editor"</span> <span class="cp">&lt;%=</span> <span class="n">stimulus_controller_options</span> <span class="cp">%&gt;</span><span class="nt">&gt;</span> <span class="cp">&lt;%=</span> <span class="n">form</span><span class="p">.</span><span class="nf">rich_text_area</span> <span class="n">field</span><span class="p">,</span> <span class="ss">class: </span><span class="s2">"prose max-w-none"</span><span class="p">,</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">rich_text_editor_target: </span><span class="s2">"editor"</span><span class="p">,</span> <span class="ss">action: </span><span class="s2">"trix-change-&gt;rich-text-editor#onChange"</span> <span class="p">}</span> <span class="cp">%&gt;</span> <span class="nt">&lt;div</span> <span class="na">class=</span><span class="s">"mt-2 text-sm text-gray-500"</span> <span class="na">data-rich-text-editor-target=</span><span class="s">"counter"</span><span class="nt">&gt;</span> 0 characters <span class="nt">&lt;/div&gt;</span> <span class="nt">&lt;/div&gt;</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// app/javascript/controllers/rich_text_editor_controller.js</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Controller</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@hotwired/stimulus</span><span class="dl">"</span> <span class="k">import</span> <span class="nx">Trix</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">trix</span><span class="dl">"</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">class</span> <span class="nc">extends</span> <span class="nx">Controller</span> <span class="p">{</span> <span class="kd">static</span> <span class="nx">targets</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">editor</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">counter</span><span class="dl">"</span><span class="p">]</span> <span class="kd">static</span> <span class="nx">values</span> <span class="o">=</span> <span class="p">{</span> <span class="na">toolbar</span><span class="p">:</span> <span class="nb">Object</span><span class="p">,</span> <span class="na">maxLength</span><span class="p">:</span> <span class="nb">Number</span> <span class="p">}</span> <span class="nf">connect</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">setupToolbar</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nf">updateCounter</span><span class="p">()</span> <span class="p">}</span> <span class="nf">onChange</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">updateCounter</span><span class="p">()</span> <span class="p">}</span> <span class="nf">updateCounter</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">text</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">editorTarget</span><span class="p">.</span><span class="nx">value</span> <span class="k">this</span><span class="p">.</span><span class="nx">counterTarget</span><span class="p">.</span><span class="nx">textContent</span> <span class="o">=</span> <span class="s2">`</span><span class="p">${</span><span class="nx">text</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> characters`</span> <span class="p">}</span> <span class="nf">setupToolbar</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="k">this</span><span class="p">.</span><span class="nx">hasToolbarValue</span><span class="p">)</span> <span class="k">return</span> <span class="kd">const</span> <span class="nx">toolbar</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">editorTarget</span> <span class="p">.</span><span class="nf">querySelector</span><span class="p">(</span><span class="dl">"</span><span class="s2">trix-toolbar</span><span class="dl">"</span><span class="p">)</span> <span class="c1">// Customize toolbar based on configuration</span> <span class="k">this</span><span class="p">.</span><span class="nx">toolbarValue</span><span class="p">.</span><span class="nx">items</span><span class="p">.</span><span class="nf">forEach</span><span class="p">(</span><span class="nx">group</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Toolbar customization logic</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Chart.js Integration with Importmap </h2> <p>Here's how we handle data visualization using Chart.js through importmap:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// app/javascript/controllers/analytics_chart_controller.js</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Controller</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@hotwired/stimulus</span><span class="dl">"</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Chart</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">chart.js</span><span class="dl">"</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">class</span> <span class="nc">extends</span> <span class="nx">Controller</span> <span class="p">{</span> <span class="kd">static</span> <span class="nx">values</span> <span class="o">=</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nb">Object</span><span class="p">,</span> <span class="na">options</span><span class="p">:</span> <span class="nb">Object</span> <span class="p">}</span> <span class="nf">connect</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">initializeChart</span><span class="p">()</span> <span class="p">}</span> <span class="nf">initializeChart</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">ctx</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">element</span><span class="p">.</span><span class="nf">getContext</span><span class="p">(</span><span class="dl">"</span><span class="s2">2d</span><span class="dl">"</span><span class="p">)</span> <span class="k">new</span> <span class="nc">Chart</span><span class="p">(</span><span class="nx">ctx</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">line</span><span class="dl">"</span><span class="p">,</span> <span class="na">data</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">dataValue</span><span class="p">,</span> <span class="na">options</span><span class="p">:</span> <span class="p">{</span> <span class="p">...</span><span class="k">this</span><span class="p">.</span><span class="nx">defaultOptions</span><span class="p">,</span> <span class="p">...</span><span class="k">this</span><span class="p">.</span><span class="nx">optionsValue</span> <span class="p">}</span> <span class="p">})</span> <span class="p">}</span> <span class="kd">get</span> <span class="nf">defaultOptions</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">responsive</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">maintainAspectRatio</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">plugins</span><span class="p">:</span> <span class="p">{</span> <span class="na">legend</span><span class="p">:</span> <span class="p">{</span> <span class="na">position</span><span class="p">:</span> <span class="dl">"</span><span class="s2">bottom</span><span class="dl">"</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Performance Optimizations with HTTP/2 </h2> <p>One advantage of importmap is its excellent performance with HTTP/2. Here's how we optimize our asset delivery:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># config/environments/production.rb</span> <span class="no">Rails</span><span class="p">.</span><span class="nf">application</span><span class="p">.</span><span class="nf">configure</span> <span class="k">do</span> <span class="c1"># Use CDN for importmapped JavaScript</span> <span class="n">config</span><span class="p">.</span><span class="nf">action_controller</span><span class="p">.</span><span class="nf">asset_host</span> <span class="o">=</span> <span class="no">ENV</span><span class="p">[</span><span class="s2">"ASSET_HOST"</span><span class="p">]</span> <span class="c1"># Enable HTTP/2 Early Hints</span> <span class="n">config</span><span class="p">.</span><span class="nf">action_dispatch</span><span class="p">.</span><span class="nf">early_hints</span> <span class="o">=</span> <span class="kp">true</span> <span class="c1"># Configure importmap hosts</span> <span class="n">config</span><span class="p">.</span><span class="nf">importmap</span><span class="p">.</span><span class="nf">cache_sweepers</span> <span class="o">&lt;&lt;</span> <span class="no">Rails</span><span class="p">.</span><span class="nf">root</span><span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="s2">"app/javascript"</span><span class="p">)</span> <span class="c1"># Preload critical JavaScript</span> <span class="n">config</span><span class="p">.</span><span class="nf">action_view</span><span class="p">.</span><span class="nf">preload_links_header</span> <span class="o">=</span> <span class="kp">true</span> <span class="k">end</span> </code></pre> </div> <h2> Testing JavaScript Components </h2> <p>We use Capybara with Cuprite for JavaScript testing:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># spec/system/posts_spec.rb</span> <span class="no">RSpec</span><span class="p">.</span><span class="nf">describe</span> <span class="s2">"Posts"</span><span class="p">,</span> <span class="ss">type: :system</span> <span class="k">do</span> <span class="n">before</span> <span class="k">do</span> <span class="n">driven_by</span><span class="p">(</span><span class="ss">:cuprite</span><span class="p">)</span> <span class="k">end</span> <span class="n">it</span> <span class="s2">"previews post content"</span><span class="p">,</span> <span class="ss">js: </span><span class="kp">true</span> <span class="k">do</span> <span class="n">visit</span> <span class="n">new_post_path</span> <span class="n">find</span><span class="p">(</span><span class="s2">"[data-controller='post-form']"</span><span class="p">).</span><span class="nf">tap</span> <span class="k">do</span> <span class="o">|</span><span class="n">form</span><span class="o">|</span> <span class="n">form</span><span class="p">.</span><span class="nf">fill_in</span> <span class="s2">"Content"</span><span class="p">,</span> <span class="ss">with: </span><span class="s2">"**Bold text**"</span> <span class="n">form</span><span class="p">.</span><span class="nf">click_button</span> <span class="s2">"Preview"</span> <span class="n">expect</span><span class="p">(</span><span class="n">form</span><span class="p">).</span><span class="nf">to</span> <span class="n">have_css</span><span class="p">(</span> <span class="s2">".preview strong"</span><span class="p">,</span> <span class="ss">text: </span><span class="s2">"Bold text"</span> <span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Deployment Considerations </h2> <p>Our production setup leverages HTTP/2 and CDN caching:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight nginx"><code><span class="c1"># nginx.conf</span> <span class="k">server</span> <span class="p">{</span> <span class="kn">listen</span> <span class="mi">443</span> <span class="s">ssl</span> <span class="s">http2</span><span class="p">;</span> <span class="c1"># Enable asset caching</span> <span class="kn">location</span> <span class="n">/assets/</span> <span class="p">{</span> <span class="kn">expires</span> <span class="s">max</span><span class="p">;</span> <span class="kn">add_header</span> <span class="s">Cache-Control</span> <span class="s">public</span><span class="p">;</span> <span class="p">}</span> <span class="c1"># Early hints for importmapped JavaScript</span> <span class="kn">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://backend</span><span class="p">;</span> <span class="kn">http2_push_preload</span> <span class="no">on</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Parallel Query Execution: A Game-Changer </h2> <p>One of the most exciting features we discovered in Rails 8 was parallel query execution. During our performance optimization sprint, this became a crucial tool for handling complex dashboard pages:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="c1"># app/controllers/dashboards_controller.rb</span> <span class="k">class</span> <span class="nc">DashboardsController</span> <span class="o">&lt;</span> <span class="no">ApplicationController</span> <span class="k">def</span> <span class="nf">show</span> <span class="c1"># Execute multiple queries asynchronously</span> <span class="n">posts_future</span> <span class="o">=</span> <span class="n">fetch_recent_posts</span><span class="p">.</span><span class="nf">load_async</span> <span class="n">comments_future</span> <span class="o">=</span> <span class="n">fetch_pending_comments</span><span class="p">.</span><span class="nf">load_async</span> <span class="n">analytics_future</span> <span class="o">=</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Base</span><span class="p">.</span><span class="nf">async_exec</span> <span class="p">{</span> <span class="n">fetch_analytics_data</span> <span class="p">}</span> <span class="n">notifications_future</span> <span class="o">=</span> <span class="n">fetch_user_notifications</span><span class="p">.</span><span class="nf">load_async</span> <span class="c1"># Resolve the futures</span> <span class="n">posts</span> <span class="o">=</span> <span class="n">posts_future</span><span class="p">.</span><span class="nf">value</span> <span class="n">comments</span> <span class="o">=</span> <span class="n">comments_future</span><span class="p">.</span><span class="nf">value</span> <span class="n">analytics</span> <span class="o">=</span> <span class="n">analytics_future</span><span class="p">.</span><span class="nf">value</span> <span class="n">notifications</span> <span class="o">=</span> <span class="n">notifications_future</span><span class="p">.</span><span class="nf">value</span> <span class="n">respond_to</span> <span class="k">do</span> <span class="o">|</span><span class="nb">format</span><span class="o">|</span> <span class="nb">format</span><span class="p">.</span><span class="nf">html</span> <span class="k">do</span> <span class="n">render</span> <span class="ss">locals: </span><span class="p">{</span> <span class="ss">posts: </span><span class="n">posts</span><span class="p">,</span> <span class="ss">comments: </span><span class="n">comments</span><span class="p">,</span> <span class="ss">analytics: </span><span class="n">analytics</span><span class="p">,</span> <span class="ss">notifications: </span><span class="n">notifications</span> <span class="p">}</span> <span class="k">end</span> <span class="nb">format</span><span class="p">.</span><span class="nf">turbo_stream</span> <span class="k">do</span> <span class="n">render</span> <span class="ss">turbo_stream: </span><span class="p">[</span> <span class="n">turbo_stream</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="s2">"dashboard-posts"</span><span class="p">,</span> <span class="ss">partial: </span><span class="s2">"posts/list"</span><span class="p">,</span> <span class="ss">locals: </span><span class="p">{</span> <span class="ss">posts: </span><span class="n">posts</span> <span class="p">}),</span> <span class="n">turbo_stream</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="s2">"dashboard-analytics"</span><span class="p">,</span> <span class="ss">partial: </span><span class="s2">"analytics/summary"</span><span class="p">,</span> <span class="ss">locals: </span><span class="p">{</span> <span class="ss">data: </span><span class="n">analytics</span> <span class="p">})</span> <span class="p">]</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">fetch_recent_posts</span> <span class="no">Post</span><span class="p">.</span><span class="nf">visible_to</span><span class="p">(</span><span class="n">current_user</span><span class="p">)</span> <span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="ss">:author</span><span class="p">,</span> <span class="ss">:categories</span><span class="p">)</span> <span class="p">.</span><span class="nf">order</span><span class="p">(</span><span class="ss">published_at: :desc</span><span class="p">)</span> <span class="p">.</span><span class="nf">limit</span><span class="p">(</span><span class="mi">10</span><span class="p">)</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">fetch_pending_comments</span> <span class="no">Comment</span><span class="p">.</span><span class="nf">pending_review</span> <span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="ss">:post</span><span class="p">,</span> <span class="ss">:author</span><span class="p">)</span> <span class="p">.</span><span class="nf">where</span><span class="p">(</span><span class="ss">post: </span><span class="p">{</span> <span class="ss">author_id: </span><span class="n">current_user</span><span class="p">.</span><span class="nf">id</span> <span class="p">})</span> <span class="p">.</span><span class="nf">limit</span><span class="p">(</span><span class="mi">15</span><span class="p">)</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">fetch_analytics_data</span> <span class="no">AnalyticsService</span><span class="p">.</span><span class="nf">fetch_dashboard_metrics</span><span class="p">(</span> <span class="ss">user: </span><span class="n">current_user</span><span class="p">,</span> <span class="ss">range: </span><span class="mi">30</span><span class="p">.</span><span class="nf">days</span><span class="p">.</span><span class="nf">ago</span><span class="o">..</span><span class="no">Time</span><span class="p">.</span><span class="nf">current</span> <span class="p">)</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">fetch_user_notifications</span> <span class="n">current_user</span><span class="p">.</span><span class="nf">notifications</span> <span class="p">.</span><span class="nf">unread</span> <span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="ss">:notifiable</span><span class="p">)</span> <span class="p">.</span><span class="nf">limit</span><span class="p">(</span><span class="mi">5</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>To make this even more powerful, we integrated it with Stimulus for real-time updates:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// app/javascript/controllers/dashboard_controller.js</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Controller</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@hotwired/stimulus</span><span class="dl">"</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Chart</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">chart.js</span><span class="dl">"</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">class</span> <span class="nc">extends</span> <span class="nx">Controller</span> <span class="p">{</span> <span class="kd">static</span> <span class="nx">targets</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">analytics</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">posts</span><span class="dl">"</span><span class="p">]</span> <span class="nf">connect</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">initializeCharts</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nf">startRefreshTimer</span><span class="p">()</span> <span class="p">}</span> <span class="nf">disconnect</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">refreshTimer</span><span class="p">)</span> <span class="p">{</span> <span class="nf">clearInterval</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">refreshTimer</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">refresh</span><span class="p">()</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">element</span><span class="p">.</span><span class="nx">dataset</span><span class="p">.</span><span class="nx">refreshUrl</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="na">Accept</span><span class="p">:</span> <span class="dl">"</span><span class="s2">text/vnd.turbo-stream.html</span><span class="dl">"</span> <span class="p">}</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="p">{</span> <span class="nx">Turbo</span><span class="p">.</span><span class="nf">renderStreamMessage</span><span class="p">(</span><span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nf">text</span><span class="p">())</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Dashboard refresh failed:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">startRefreshTimer</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">refreshTimer</span> <span class="o">=</span> <span class="nf">setInterval</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">refresh</span><span class="p">()</span> <span class="p">},</span> <span class="mi">30000</span><span class="p">)</span> <span class="c1">// Refresh every 30 seconds</span> <span class="p">}</span> <span class="nf">initializeCharts</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="k">this</span><span class="p">.</span><span class="nx">hasAnalyticsTarget</span><span class="p">)</span> <span class="k">return</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">analyticsTarget</span><span class="p">.</span><span class="nx">dataset</span><span class="p">.</span><span class="nx">metrics</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nf">createAnalyticsChart</span><span class="p">(</span><span class="nx">data</span><span class="p">)</span> <span class="p">}</span> <span class="nf">createAnalyticsChart</span><span class="p">(</span><span class="nx">data</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">ctx</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">analyticsTarget</span><span class="p">.</span><span class="nf">getContext</span><span class="p">(</span><span class="dl">"</span><span class="s2">2d</span><span class="dl">"</span><span class="p">)</span> <span class="k">new</span> <span class="nc">Chart</span><span class="p">(</span><span class="nx">ctx</span><span class="p">,</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">line</span><span class="dl">"</span><span class="p">,</span> <span class="na">data</span><span class="p">:</span> <span class="nx">data</span><span class="p">,</span> <span class="na">options</span><span class="p">:</span> <span class="p">{</span> <span class="na">responsive</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">maintainAspectRatio</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">animations</span><span class="p">:</span> <span class="p">{</span> <span class="na">tension</span><span class="p">:</span> <span class="p">{</span> <span class="na">duration</span><span class="p">:</span> <span class="mi">1000</span><span class="p">,</span> <span class="na">easing</span><span class="p">:</span> <span class="dl">'</span><span class="s1">linear</span><span class="dl">'</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The combination of parallel queries and Turbo Streams gave us impressive performance improvements:</p> <ol> <li>Dashboard load times dropped by 47%</li> <li>Database connection usage became more efficient</li> <li>Real-time updates felt smoother with optimistic UI updates</li> </ol> <h2> Learning Journey and Trade-offs </h2> <p>Moving to importmap wasn't without challenges. Here's what we learned:</p> <ol> <li> <strong>Simplified Dependency Management</strong>: No more yarn/npm complexity</li> <li> <strong>Better Caching</strong>: HTTP/2 multiplexing improved load times</li> <li> <strong>Module Patterns</strong>: Encouraged cleaner JavaScript organization</li> <li> <strong>Development Experience</strong>: Faster feedback loop without build steps</li> </ol> <h2> Looking Forward </h2> <p>Rails 8 with importmap has transformed our development workflow. The native integration with Hotwire and Stimulus, combined with HTTP/2 optimizations, has given us a modern, maintainable, and performant application stack.</p> <p>Stay tuned for more articles on our Rails 8 journey. Feel free to reach out with questions or share your own importmap experiences!</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/rails-8-modern-crud-development-guide" rel="noopener noreferrer">https://sulmanweb.com</a></em></p> rails ruby Deploying Rails 8 Applications: A Complete Guide with Docker, Kamal, and Cloudflare Sulman Baig Thu, 09 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/deploying-rails-8-applications-a-complete-guide-with-docker-kamal-and-cloudflare-3k https://dev.to/sulmanweb/deploying-rails-8-applications-a-complete-guide-with-docker-kamal-and-cloudflare-3k <h2> Introduction </h2> <p>When I first started deploying Rails applications, the process felt overwhelming. Today, I'm excited to share a complete guide that transforms this complexity into a straightforward process. Let's dive into deploying a Rails 8 app using Docker, with PostgreSQL containerization, all orchestrated by Kamal on a Hetzner server.</p> <h2> Prerequisites </h2> <p>Before we begin our deployment journey, you'll need:</p> <ul> <li>A Rails 8 application ready for production</li> <li>Docker installed locally</li> <li>A Hetzner account</li> <li>Domain name and Cloudflare account</li> <li>1Password account (for secrets management)</li> <li>Basic SSH knowledge</li> </ul> <h2> Step 1: Server and DNS Configuration </h2> <h3> Hetzner Server Setup </h3> <p>Let's start by creating our production environment:</p> <ol> <li>Create a Hetzner server with these specifications: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> - Ubuntu 24.04 - ARM64 (Ampere) CPU - CAX11 size (or choose based on your needs) - IPv4 only configuration - Your SSH keys added </code></pre> </div> <h3> Cloudflare Configuration </h3> <p>Set up your domain with proper DNS and security settings:</p> <ol> <li>DNS Configuration: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> - Add A record: @ → your-server-ip (Proxy enabled) - Add CNAME: www → @ (Proxy enabled) </code></pre> </div> <ol> <li>SSL/TLS Settings: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> - Edge Certificates: Enable "Always use HTTPS" - Overview: Set SSL/TLS mode to "Full" </code></pre> </div> <ol> <li>Page Rules for www to root redirect: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> URL: https://www.yourdomain.com/* Setting: Forwarding URL Status Code: 301 - Permanent Redirect Destination URL: https://yourdomain.com/$1 </code></pre> </div> <h2> Step 2: Secrets Management </h2> <p>I've learned that proper secrets management is crucial. Let's set it up with 1Password:</p> <ol> <li>Create a secure note in 1Password with these credentials: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> KAMAL_REGISTRY_PASSWORD: your-docker-registry-password RAILS_MASTER_KEY: your-rails-master-key POSTGRES_PASSWORD: your-postgres-password </code></pre> </div> <ol> <li>Update <code>.kamal/secrets</code> to handle 1Password integration: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="nv">SECRETS</span><span class="o">=</span><span class="si">$(</span>kamal secrets fetch <span class="nt">--adapter</span> 1password <span class="nt">--account</span> YOUR_1PASSWORD_ACCOUNT_ID <span class="nt">--from</span> YOUR_VAULT_NAME/YOU_SECURE_NOTE KAMAL_REGISTRY_PASSWORD RAILS_PRODUCTION_KEY POSTGRES_PASSWORD<span class="si">)</span> <span class="nv">KAMAL_REGISTRY_PASSWORD</span><span class="o">=</span><span class="si">$(</span>kamal secrets extract KAMAL_REGISTRY_PASSWORD <span class="nv">$SECRETS</span><span class="si">)</span> <span class="nv">RAILS_MASTER_KEY</span><span class="o">=</span><span class="si">$(</span>kamal secrets extract RAILS_PRODUCTION_KEY <span class="nv">$SECRETS</span><span class="si">)</span> <span class="nv">POSTGRES_PASSWORD</span><span class="o">=</span><span class="si">$(</span>kamal secrets extract POSTGRES_PASSWORD <span class="nv">$SECRETS</span><span class="si">)</span> </code></pre> </div> <p>For more info visit <a href="https://kamal-deploy.org/docs/commands/secrets/" rel="noopener noreferrer">Kamal Secrets</a>.</p> <h2> Step 3: Database Configuration </h2> <h3> PostgreSQL Setup </h3> <ol> <li>Create <code>config/init.sql</code> for database initialization: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code> <span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="nv">`your_app_production`</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="nv">`your_app_production_cache`</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="nv">`your_app_production_queue`</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="nv">`your_app_production_cable`</span><span class="p">;</span> </code></pre> </div> <ol> <li>Configure PostgreSQL accessory in <code>config/deploy.yml</code>: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="na">accessories</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:16-alpine</span> <span class="na">host</span><span class="pi">:</span> <span class="s">your-server-ip</span> <span class="na">port</span><span class="pi">:</span> <span class="m">5432</span> <span class="na">options</span><span class="pi">:</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">env</span><span class="pi">:</span> <span class="na">clear</span><span class="pi">:</span> <span class="na">POSTGRES_USER</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">POSTGRES_DB</span><span class="pi">:</span> <span class="s">your_app_production</span> <span class="na">secret</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">POSTGRES_PASSWORD</span> <span class="na">files</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">config/init.sql:/docker-entrypoint-initdb.d/init.sql</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">/var/lib/postgresql/your_app_production:/var/lib/postgresql/data</span> </code></pre> </div> <ol> <li> <p>Update <code>config/database.yml</code> for production:<br> </p> <pre class="highlight yaml"><code><span class="na">production</span><span class="pi">:</span> <span class="na">primary</span><span class="pi">:</span> <span class="nl">&amp;primary_production</span> <span class="na">&lt;&lt;: *default host</span><span class="pi">:</span> <span class="s">&lt;%= ENV["DB_HOST"] %&gt;</span> <span class="na">database</span><span class="pi">:</span> <span class="s">your_app_production</span> <span class="na">username</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">password</span><span class="pi">:</span> <span class="s">&lt;%= ENV["POSTGRES_PASSWORD"] %&gt;</span> <span class="na">cache</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">your_app_production_cache</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/cache_migrate</span> <span class="na">queue</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">your_app_production_queue</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/queue_migrate</span> <span class="na">cable</span><span class="pi">:</span> <span class="na">&lt;&lt;</span><span class="pi">:</span> <span class="nv">*primary_production</span> <span class="na">database</span><span class="pi">:</span> <span class="s">your_app_production_cable</span> <span class="na">migrations_paths</span><span class="pi">:</span> <span class="s">db/cable_migrate</span> </code></pre> </li> </ol> <h2> Step 4: Production Environment Configuration </h2> <p>Update <code>config/environments/production.rb</code> with these essential settings:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="no">Rails</span><span class="p">.</span><span class="nf">application</span><span class="p">.</span><span class="nf">configure</span> <span class="k">do</span> <span class="c1"># Asset handling</span> <span class="n">config</span><span class="p">.</span><span class="nf">require_master_key</span> <span class="o">=</span> <span class="kp">false</span> <span class="n">config</span><span class="p">.</span><span class="nf">assets</span><span class="p">.</span><span class="nf">css_compressor</span> <span class="o">=</span> <span class="kp">nil</span> <span class="n">config</span><span class="p">.</span><span class="nf">assets</span><span class="p">.</span><span class="nf">compile</span> <span class="o">=</span> <span class="kp">false</span> <span class="n">config</span><span class="p">.</span><span class="nf">public_file_server</span><span class="p">.</span><span class="nf">enabled</span> <span class="o">=</span> <span class="kp">true</span> <span class="n">config</span><span class="p">.</span><span class="nf">asset_host</span> <span class="o">=</span> <span class="s2">"https://yourdomain.com"</span> <span class="n">config</span><span class="p">.</span><span class="nf">assets</span><span class="p">.</span><span class="nf">enabled</span> <span class="o">=</span> <span class="kp">true</span> <span class="n">config</span><span class="p">.</span><span class="nf">assets</span><span class="p">.</span><span class="nf">version</span> <span class="o">=</span> <span class="s2">"1.0"</span> <span class="c1"># SSL and security</span> <span class="n">config</span><span class="p">.</span><span class="nf">ssl_options</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">redirect: </span><span class="p">{</span> <span class="ss">exclude: </span><span class="o">-&gt;</span><span class="p">(</span><span class="n">request</span><span class="p">)</span> <span class="p">{</span> <span class="n">request</span><span class="p">.</span><span class="nf">path</span> <span class="o">==</span> <span class="s2">"/up"</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="c1"># Health checks</span> <span class="n">config</span><span class="p">.</span><span class="nf">silence_healthcheck_path</span> <span class="o">=</span> <span class="s2">"/up"</span> <span class="c1"># Domain configuration</span> <span class="n">config</span><span class="p">.</span><span class="nf">hosts</span> <span class="o">=</span> <span class="p">[</span> <span class="s2">"yourdomain.com"</span><span class="p">,</span> <span class="sr">/.*\.yourdomain\.com/</span> <span class="p">]</span> <span class="n">config</span><span class="p">.</span><span class="nf">host_authorization</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">exclude: </span><span class="o">-&gt;</span><span class="p">(</span><span class="n">request</span><span class="p">)</span> <span class="p">{</span> <span class="n">request</span><span class="p">.</span><span class="nf">path</span> <span class="o">==</span> <span class="s2">"/up"</span> <span class="p">}</span> <span class="p">}</span> <span class="c1"># URL options</span> <span class="n">config</span><span class="p">.</span><span class="nf">action_mailer</span><span class="p">.</span><span class="nf">default_url_options</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">host: </span><span class="s2">"yourdomain.com"</span><span class="p">,</span> <span class="ss">protocol: </span><span class="s2">"https"</span> <span class="p">}</span> <span class="n">routes</span><span class="p">.</span><span class="nf">default_url_options</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">host: </span><span class="s2">"yourdomain.com"</span><span class="p">,</span> <span class="ss">protocol: </span><span class="s2">"https"</span> <span class="p">}</span> <span class="k">end</span> </code></pre> </div> <h2> Step 5: Kamal Deployment Setup </h2> <p>Kamal, Rails 8's built-in deployment tool, makes containerized deployment straightforward:</p> <ol> <li>Update rest of <code>config/deploy.yml</code>: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">service</span><span class="pi">:</span> <span class="s">your_app_name</span> <span class="na">registry</span><span class="pi">:</span> <span class="na">username</span><span class="pi">:</span> <span class="s">your_dockerhub_username</span> <span class="na">password</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">KAMAL_REGISTRY_PASSWORD</span> <span class="na">aliases</span><span class="pi">:</span> <span class="na">console</span><span class="pi">:</span> <span class="s">app exec --interactive --reuse "bin/rails console"</span> <span class="na">shell</span><span class="pi">:</span> <span class="s">app exec --interactive --reuse "bash"</span> <span class="na">logs</span><span class="pi">:</span> <span class="s">app logs -f</span> <span class="na">dbc</span><span class="pi">:</span> <span class="s">app exec --interactive --reuse "bin/rails dbconsole"</span> <span class="na">image</span><span class="pi">:</span> <span class="s">your_dockerhub_username/your_app_name</span> <span class="na">builder</span><span class="pi">:</span> <span class="na">arch</span><span class="pi">:</span> <span class="s">arm64</span> <span class="na">proxy</span><span class="pi">:</span> <span class="na">ssl</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">host</span><span class="pi">:</span> <span class="s">yourdomain.com</span> <span class="na">servers</span><span class="pi">:</span> <span class="na">web</span><span class="pi">:</span> <span class="na">hosts</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">your_server_ip</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">your_app_storage:/rails/storage:rw</span> <span class="pi">-</span> <span class="s">/tmp/storage:/rails/tmp/storage:rw</span> <span class="pi">-</span> <span class="s">your_app_data:/data</span> <span class="na">env</span><span class="pi">:</span> <span class="na">secret</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">RAILS_MASTER_KEY</span> <span class="pi">-</span> <span class="s">POSTGRES_PASSWORD</span> <span class="na">clear</span><span class="pi">:</span> <span class="na">HOST</span><span class="pi">:</span> <span class="s">yourdomain.com</span> <span class="na">RAILS_ENV</span><span class="pi">:</span> <span class="s">production</span> <span class="na">DB_HOST</span><span class="pi">:</span> <span class="s">your_app-postgres</span> <span class="na">SOLID_QUEUE_IN_PUMA</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">RAILS_SERVE_STATIC_FILES</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">RAILS_LOG_TO_STDOUT</span><span class="pi">:</span> <span class="kc">true</span> </code></pre> </div> <h2> Step 6: Deployment </h2> <p>Now for the exciting part - deploying our application:</p> <ol> <li>Initial setup: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal setup </code></pre> </div> <ol> <li>Watch the logs to ensure everything starts correctly: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal logs </code></pre> </div> <ol> <li>For subsequent deployments: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal deploy </code></pre> </div> <h2> Deployment Verification Checklist </h2> <p>After deployment, I always verify these key points:</p> <ul> <li>[ ] Health check endpoint (<code>/up</code>) responds</li> <li>[ ] Database migrations completed successfully</li> <li>[ ] Assets are serving correctly</li> <li>[ ] SSL certificate is valid</li> <li>[ ] www to root domain redirect works</li> <li>[ ] PostgreSQL container is running and accessible</li> </ul> <h2> Troubleshooting Tips </h2> <p>From my experience, here are some common issues and solutions:</p> <ol> <li>Database Connection Issues: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal dbc </code></pre> </div> <ol> <li>Container Inspection: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal shell </code></pre> </div> <ol> <li>PostgreSQL Logs: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> bin/kamal accessory logs postgres </code></pre> </div> <p>For more info go to <a href="https://kamal-deploy.org/" rel="noopener noreferrer">kamal-deploy</a>.</p> <h2> Conclusion </h2> <p>Deploying a Rails 8 application might seem daunting at first, but with this structured approach, it becomes a manageable and repeatable process. I've learned that proper configuration of each component - from DNS to secrets management to database setup - is crucial for a robust production deployment.</p> <p>Remember to always test your deployment in a staging environment first, and keep your secrets secure using proper management tools like 1Password.</p> <p>Have you deployed a Rails application using this approach? I'd love to hear about your experience in the comments below! 🚀</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/deploy-rails-8-docker-kamal-production-guide" rel="noopener noreferrer">sulmanweb.com</a></em></p> rails devops docker ruby Rails GraphQL Auth - JWT, Email & Security Sulman Baig Mon, 06 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-graphql-auth-jwt-email-security-342g https://dev.to/sulmanweb/rails-graphql-auth-jwt-email-security-342g <p>Building a secure and scalable authentication system is crucial for modern web applications. Today, I'll share insights from implementing a robust GraphQL authentication system in Rails, with detailed explanations of each component.</p> <h2> 🏗️ Architecture Overview </h2> <p>The authentication system consists of three main components:</p> <ol> <li>JWT-based token authentication</li> <li>Email verification workflow</li> <li>Secure password management</li> </ol> <p>Let's examine each component in detail.</p> <h2> 🔑 JWT Authentication Implementation </h2> <h3> Token Generation and Management </h3> <p>The core of our authentication relies on JWT tokens. Let's break down the key components:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">User</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="c1"># Token generation for different purposes with specific lifetimes</span> <span class="n">generates_token_for</span> <span class="ss">:auth_token</span><span class="p">,</span> <span class="ss">expires_in: </span><span class="mi">1</span><span class="p">.</span><span class="nf">week</span> <span class="n">generates_token_for</span> <span class="ss">:email_confirmation</span><span class="p">,</span> <span class="ss">expires_in: </span><span class="mi">8</span><span class="p">.</span><span class="nf">hours</span> <span class="n">generates_token_for</span> <span class="ss">:password_reset</span><span class="p">,</span> <span class="ss">expires_in: </span><span class="mi">1</span><span class="p">.</span><span class="nf">hour</span> <span class="k">end</span> </code></pre> </div> <p>This code uses a custom token generation system where:</p> <ul> <li> <code>generates_token_for</code> is a macro that sets up token generation for specific purposes</li> <li>Each token type has its own expiration time</li> <li>Tokens are bound to specific user data for verification</li> </ul> <p>For example, when we call <code>user.generate_token_for(:auth_token)</code>, it:</p> <ol> <li>Creates a JWT token with user-specific claims</li> <li>Sets an expiration time (1 week for auth tokens)</li> <li>Signs the token with the application's secret key</li> <li>Returns the encoded token for client use</li> </ol> <h3> Authentication Service </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">module</span> <span class="nn">Users</span> <span class="k">class</span> <span class="nc">SignInService</span> <span class="o">&lt;</span> <span class="no">ApplicationService</span> <span class="k">def</span> <span class="nf">call</span> <span class="k">return</span> <span class="n">failure</span><span class="p">([</span><span class="no">USER_NOT_FOUND_MESSAGE</span><span class="p">])</span> <span class="k">unless</span> <span class="n">user</span> <span class="c1"># Generate authentication token</span> <span class="n">token</span> <span class="o">=</span> <span class="n">user</span><span class="p">.</span><span class="nf">generate_token_for</span><span class="p">(</span><span class="ss">:auth_token</span><span class="p">)</span> <span class="c1"># Log the authentication event</span> <span class="n">log_event</span><span class="p">(</span><span class="n">user</span><span class="p">:,</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">username: </span><span class="n">user</span><span class="p">.</span><span class="nf">username</span> <span class="p">})</span> <span class="c1"># Return success response with token and user data</span> <span class="n">success</span><span class="p">({</span> <span class="n">token</span><span class="p">:,</span> <span class="ss">user: </span><span class="p">})</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">user</span> <span class="c1"># Authenticate user using credentials</span> <span class="vi">@user</span> <span class="o">||=</span> <span class="no">User</span><span class="p">.</span><span class="nf">authenticate_by</span><span class="p">(</span><span class="n">permitted_params</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>Key aspects of the service:</p> <ol> <li>Validates user credentials</li> <li>Generates an authentication token</li> <li>Logs the authentication event</li> <li>Returns a structured response</li> </ol> <h3> GraphQL Authentication Mutation </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">module</span> <span class="nn">Mutations</span> <span class="k">class</span> <span class="nc">UserSignIn</span> <span class="o">&lt;</span> <span class="no">BaseMutationWithErrors</span> <span class="c1"># Define required input arguments</span> <span class="n">argument</span> <span class="ss">:password</span><span class="p">,</span> <span class="no">String</span><span class="p">,</span> <span class="ss">required: </span><span class="kp">true</span> <span class="n">argument</span> <span class="ss">:username</span><span class="p">,</span> <span class="no">String</span><span class="p">,</span> <span class="ss">required: </span><span class="kp">true</span> <span class="c1"># Define return fields</span> <span class="n">field</span> <span class="ss">:token</span><span class="p">,</span> <span class="no">String</span><span class="p">,</span> <span class="ss">null: </span><span class="kp">true</span> <span class="n">field</span> <span class="ss">:user</span><span class="p">,</span> <span class="no">Types</span><span class="o">::</span><span class="no">UserType</span><span class="p">,</span> <span class="ss">null: </span><span class="kp">true</span> <span class="k">def</span> <span class="nf">resolve</span><span class="p">(</span><span class="o">**</span><span class="n">args</span><span class="p">)</span> <span class="n">result</span> <span class="o">=</span> <span class="no">Users</span><span class="o">::</span><span class="no">SignInService</span><span class="p">.</span><span class="nf">call</span><span class="p">(</span><span class="n">args</span><span class="p">)</span> <span class="p">{</span> <span class="ss">errors: </span><span class="n">result</span><span class="p">.</span><span class="nf">errors</span><span class="p">,</span> <span class="ss">success: </span><span class="n">result</span><span class="p">.</span><span class="nf">success?</span><span class="p">,</span> <span class="ss">token: </span><span class="n">result</span><span class="p">.</span><span class="nf">success?</span> <span class="p">?</span> <span class="n">result</span><span class="p">.</span><span class="nf">data</span><span class="p">[</span><span class="ss">:token</span><span class="p">]</span> <span class="p">:</span> <span class="kp">nil</span><span class="p">,</span> <span class="ss">user: </span><span class="n">result</span><span class="p">.</span><span class="nf">success?</span> <span class="p">?</span> <span class="n">result</span><span class="p">.</span><span class="nf">data</span><span class="p">[</span><span class="ss">:user</span><span class="p">]</span> <span class="p">:</span> <span class="kp">nil</span> <span class="p">}</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>This mutation:</p> <ol> <li>Accepts username and password</li> <li>Calls the authentication service</li> <li>Returns token and user data on success</li> <li>Handles errors gracefully</li> </ol> <h2> 📧 Email Verification System </h2> <h3> Confirmation Service Implementation </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">module</span> <span class="nn">Users</span> <span class="k">class</span> <span class="nc">SendConfirmationEmailService</span> <span class="o">&lt;</span> <span class="no">ApplicationService</span> <span class="k">def</span> <span class="nf">call</span> <span class="k">return</span> <span class="n">failure</span><span class="p">([</span><span class="no">USER_NOT_FOUND_ERROR</span><span class="p">])</span> <span class="k">unless</span> <span class="n">user</span> <span class="k">return</span> <span class="n">failure</span><span class="p">([</span><span class="no">USER_ALREADY_CONFIRMED_ERROR</span><span class="p">])</span> <span class="k">if</span> <span class="n">user</span><span class="p">.</span><span class="nf">confirmed?</span> <span class="n">send_confirmation_email</span> <span class="n">log_event</span><span class="p">(</span><span class="n">user</span><span class="p">:,</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">confirmation_sent: </span><span class="kp">true</span> <span class="p">})</span> <span class="n">success</span><span class="p">(</span><span class="no">CONFIRMATION_SENT_MSG</span><span class="p">)</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">send_confirmation_email</span> <span class="c1"># Generate confirmation email with secure token</span> <span class="n">email</span> <span class="o">=</span> <span class="no">Email</span><span class="p">.</span><span class="nf">create_confirmation_email!</span><span class="p">(</span><span class="n">user</span><span class="p">:)</span> <span class="n">send_email</span><span class="p">(</span><span class="n">email</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>The confirmation flow:</p> <ol> <li>Checks user existence and confirmation status</li> <li>Generates a secure confirmation token</li> <li>Creates and sends confirmation email</li> <li>Logs the confirmation attempt</li> </ol> <h3> Email Token Generation </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">Email</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="k">def</span> <span class="nc">self</span><span class="o">.</span><span class="nf">create_confirmation_email!</span><span class="p">(</span><span class="n">user</span><span class="p">:)</span> <span class="n">token</span> <span class="o">=</span> <span class="n">user</span><span class="p">.</span><span class="nf">generate_token_for</span><span class="p">(</span><span class="ss">:email_confirmation</span><span class="p">)</span> <span class="n">create!</span><span class="p">(</span> <span class="ss">to_emails: </span><span class="p">[</span><span class="n">user</span><span class="p">.</span><span class="nf">email</span><span class="p">],</span> <span class="ss">template_id: </span><span class="no">Rails</span><span class="p">.</span><span class="nf">application</span><span class="p">.</span><span class="nf">credentials</span><span class="p">.</span><span class="nf">dig</span><span class="p">(</span><span class="ss">:sendgrid</span><span class="p">,</span> <span class="ss">:confirm_template_id</span><span class="p">),</span> <span class="ss">substitutions: </span><span class="p">[{</span> <span class="s2">"confirmation_url"</span><span class="p">:</span> <span class="s2">"</span><span class="si">#{</span><span class="no">Settings</span><span class="p">.</span><span class="nf">emails</span><span class="p">.</span><span class="nf">confirm_url</span><span class="si">}</span><span class="s2">?token=</span><span class="si">#{</span><span class="n">token</span><span class="si">}</span><span class="s2">"</span><span class="p">,</span> <span class="ss">name: </span><span class="n">user</span><span class="p">.</span><span class="nf">name</span> <span class="p">}]</span> <span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>This creates a confirmation email with:</p> <ol> <li>A secure, time-limited token</li> <li>A personalized confirmation URL</li> <li>User-specific template data</li> </ol> <h2> 🔒 Security Implementation </h2> <h3> Authentication Middleware </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">module</span> <span class="nn">Queries</span> <span class="k">class</span> <span class="nc">BaseQuery</span> <span class="o">&lt;</span> <span class="no">GraphQL</span><span class="o">::</span><span class="no">Schema</span><span class="o">::</span><span class="no">Resolver</span> <span class="k">def</span> <span class="nf">authenticate_user!</span> <span class="k">return</span> <span class="k">if</span> <span class="n">current_user</span> <span class="k">raise</span> <span class="no">GraphQL</span><span class="o">::</span><span class="no">ExecutionError</span><span class="p">.</span><span class="nf">new</span><span class="p">(</span> <span class="no">I18n</span><span class="p">.</span><span class="nf">t</span><span class="p">(</span><span class="s1">'gql.errors.not_authenticated'</span><span class="p">),</span> <span class="ss">extensions: </span><span class="p">{</span> <span class="ss">code: </span><span class="s1">'AUTHENTICATION_ERROR'</span> <span class="p">}</span> <span class="p">)</span> <span class="k">end</span> <span class="k">def</span> <span class="nf">current_user</span> <span class="n">context</span><span class="p">[</span><span class="ss">:current_user</span><span class="p">]</span> <span class="o">||</span> <span class="no">Current</span><span class="p">.</span><span class="nf">user</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>This middleware:</p> <ol> <li>Verifies token presence and validity</li> <li>Maintains user context throughout requests</li> <li>Handles authentication errors consistently</li> <li>Provides access to current user data</li> </ol> <h3> Password Security </h3> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">User</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="c1"># Regular expression for password validation</span> <span class="no">PASSWORD_FORMAT</span> <span class="o">=</span> <span class="sr">/\A(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[!@#$%^&amp;*(),.?":{}|&lt;&gt;])[A-Za-z\d!@#$%^&amp;*(),.?":{}|&lt;&gt;]{8,72}\z/</span> <span class="n">validates</span> <span class="ss">:password</span><span class="p">,</span> <span class="ss">presence: </span><span class="kp">true</span><span class="p">,</span> <span class="ss">length: </span><span class="p">{</span> <span class="ss">minimum: </span><span class="mi">8</span><span class="p">,</span> <span class="ss">maximum: </span><span class="mi">72</span> <span class="p">},</span> <span class="ss">format: </span><span class="p">{</span> <span class="ss">with: </span><span class="no">PASSWORD_FORMAT</span> <span class="p">},</span> <span class="ss">if: :password_required?</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">password_required?</span> <span class="n">password_digest</span><span class="p">.</span><span class="nf">nil?</span> <span class="o">||</span> <span class="n">password</span><span class="p">.</span><span class="nf">present?</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>Password requirements:</p> <ul> <li>Minimum 8 characters</li> <li>Maximum 72 characters (bcrypt limitation)</li> <li>Must include lowercase and uppercase letters</li> <li>Must include numbers and special characters</li> <li>Validated only when necessary</li> </ul> <h2> 🧪 Testing Strategy </h2> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="no">RSpec</span><span class="p">.</span><span class="nf">describe</span> <span class="no">Users</span><span class="o">::</span><span class="no">SignInService</span> <span class="k">do</span> <span class="n">describe</span> <span class="s1">'#call'</span> <span class="k">do</span> <span class="n">context</span> <span class="s1">'when credentials are valid'</span> <span class="k">do</span> <span class="n">it</span> <span class="s1">'generates an authentication token'</span> <span class="k">do</span> <span class="n">result</span> <span class="o">=</span> <span class="n">service</span><span class="p">.</span><span class="nf">call</span> <span class="n">expect</span><span class="p">(</span><span class="n">result</span><span class="p">.</span><span class="nf">data</span><span class="p">[</span><span class="ss">:token</span><span class="p">]).</span><span class="nf">to</span> <span class="n">be_present</span> <span class="n">expect</span><span class="p">(</span><span class="no">User</span><span class="p">.</span><span class="nf">find_by_token_for</span><span class="p">(</span><span class="ss">:auth_token</span><span class="p">,</span> <span class="n">result</span><span class="p">.</span><span class="nf">data</span><span class="p">[</span><span class="ss">:token</span><span class="p">])).</span><span class="nf">to</span> <span class="n">eq</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="k">end</span> <span class="n">it</span> <span class="s1">'logs the authentication event'</span> <span class="k">do</span> <span class="n">expect</span> <span class="p">{</span> <span class="n">service</span><span class="p">.</span><span class="nf">call</span> <span class="p">}.</span><span class="nf">to</span> <span class="n">change</span><span class="p">(</span><span class="no">AuditLog</span><span class="p">,</span> <span class="ss">:count</span><span class="p">).</span><span class="nf">by</span><span class="p">(</span><span class="mi">1</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="n">context</span> <span class="s1">'when credentials are invalid'</span> <span class="k">do</span> <span class="n">it</span> <span class="s1">'returns appropriate error messages'</span> <span class="k">do</span> <span class="n">result</span> <span class="o">=</span> <span class="n">described_class</span><span class="p">.</span><span class="nf">new</span><span class="p">(</span><span class="n">invalid_params</span><span class="p">).</span><span class="nf">call</span> <span class="n">expect</span><span class="p">(</span><span class="n">result</span><span class="p">.</span><span class="nf">errors</span><span class="p">).</span><span class="nf">to</span> <span class="kp">include</span><span class="p">(</span><span class="no">I18n</span><span class="p">.</span><span class="nf">t</span><span class="p">(</span><span class="s1">'services.users.sign_in.user_not_found'</span><span class="p">))</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <p>Our testing approach:</p> <ol> <li>Verifies token generation and validation</li> <li>Ensures proper error handling</li> <li>Checks audit logging</li> <li>Validates security constraints</li> </ol> <h2> Conclusion </h2> <p>By implementing these patterns, we've created a secure, maintainable authentication system that:</p> <ul> <li>Provides secure token-based authentication</li> <li>Handles email verification properly</li> <li>Maintains high security standards</li> <li>Scales well with application growth</li> </ul> <p>The complete implementation demonstrates how these components work together in a production environment while maintaining security and user experience.</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/rails-graphql-authentication-jwt-email-security" rel="noopener noreferrer">https://sulmanweb.com</a>.</em></p> rails graphql ruby security Rails Soft Delete & Audit Logging Guide Sulman Baig Thu, 02 Jan 2025 06:00:00 +0000 https://dev.to/sulmanweb/rails-soft-delete-audit-logging-guide-4m2d https://dev.to/sulmanweb/rails-soft-delete-audit-logging-guide-4m2d <p>As financial applications grow in complexity, data integrity becomes paramount. Today, I'll share insights from implementing a robust soft deletion system with comprehensive audit logging in a Rails financial application. Let's explore how we can maintain data traceability while ensuring nothing is permanently lost.</p> <h2> The Challenge </h2> <p>In financial applications, simply deleting records isn't an option. We need to:</p> <ul> <li>Track all changes to financial records</li> <li>Maintain data relationships</li> <li>Enable record restoration</li> <li>Ensure audit compliance</li> </ul> <h2> Implementing Soft Delete with acts_as_paranoid </h2> <p>The <code>acts_as_paranoid</code> gem provides a solid foundation for soft deletion. Here's how we've implemented it in our Account model:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">Account</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="n">acts_as_paranoid</span> <span class="n">belongs_to</span> <span class="ss">:currency</span><span class="p">,</span> <span class="ss">optional: </span><span class="kp">true</span> <span class="n">belongs_to</span> <span class="ss">:user</span> <span class="n">has_many</span> <span class="ss">:transactions</span><span class="p">,</span> <span class="ss">dependent: :destroy</span> <span class="n">validates</span> <span class="ss">:name</span><span class="p">,</span> <span class="ss">presence: </span><span class="kp">true</span> <span class="n">validates</span> <span class="ss">:balance</span><span class="p">,</span> <span class="ss">presence: </span><span class="kp">true</span> <span class="k">end</span> </code></pre> </div> <p>We added a <code>deleted_at</code> timestamp column which, when set, effectively "hides" the record from normal queries while preserving it in the database.</p> <h2> Advanced Audit Logging System </h2> <p>We've built a comprehensive audit logging system that tracks every change to our financial records:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">AuditLog</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="n">acts_as_paranoid</span> <span class="n">belongs_to</span> <span class="ss">:user</span><span class="p">,</span> <span class="ss">optional: </span><span class="kp">true</span> <span class="n">validates</span> <span class="ss">:class_name</span><span class="p">,</span> <span class="ss">presence: </span><span class="kp">true</span> <span class="k">end</span> </code></pre> </div> <p>The audit logging is integrated into our service layer using a base service class:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">ApplicationService</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">log_event</span><span class="p">(</span><span class="n">user</span><span class="p">:,</span> <span class="ss">data: </span><span class="p">{})</span> <span class="n">event_data</span> <span class="o">=</span> <span class="p">{</span> <span class="ss">user: </span><span class="n">user</span><span class="p">,</span> <span class="ss">data: </span><span class="n">data</span><span class="p">,</span> <span class="ss">class_name: </span><span class="nb">self</span><span class="p">.</span><span class="nf">class</span><span class="p">.</span><span class="nf">to_s</span> <span class="p">}.</span><span class="nf">compact</span> <span class="no">AuditLog</span><span class="p">.</span><span class="nf">create</span><span class="p">(</span><span class="n">event_data</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Transaction Tracking Across Deletions </h2> <p>For financial transactions, we maintain a complete audit trail even after deletion. Here's how we handle transaction deletion:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">Transactions::DestroyService</span> <span class="o">&lt;</span> <span class="no">ApplicationService</span> <span class="k">def</span> <span class="nf">call</span> <span class="k">return</span> <span class="n">failure</span><span class="p">([</span><span class="no">TRANSACTION_NOT_FOUND_MESSAGE</span><span class="p">])</span> <span class="k">unless</span> <span class="n">transaction</span> <span class="k">return</span> <span class="n">failure</span><span class="p">([</span><span class="no">USER_NOT_FOUND_MESSAGE</span><span class="p">])</span> <span class="k">unless</span> <span class="n">user</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Base</span><span class="p">.</span><span class="nf">transaction</span> <span class="k">do</span> <span class="n">transaction</span><span class="p">.</span><span class="nf">destroy</span> <span class="n">update_account_balance</span> <span class="n">log_event</span><span class="p">(</span><span class="ss">user: </span><span class="n">user</span><span class="p">,</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">transaction: </span><span class="n">transaction</span> <span class="p">})</span> <span class="n">success</span><span class="p">(</span><span class="no">TRANSACTION_DELETED_MESSAGE</span><span class="p">)</span> <span class="k">rescue</span> <span class="no">ActiveRecord</span><span class="o">::</span><span class="no">RecordInvalid</span> <span class="o">=&gt;</span> <span class="n">e</span> <span class="n">failure</span><span class="p">(</span><span class="n">e</span><span class="p">.</span><span class="nf">record</span><span class="p">.</span><span class="nf">errors</span><span class="p">.</span><span class="nf">full_messages</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="kp">private</span> <span class="k">def</span> <span class="nf">update_account_balance</span> <span class="n">factor</span> <span class="o">=</span> <span class="n">transaction</span><span class="p">.</span><span class="nf">transaction_type</span> <span class="o">==</span> <span class="s1">'expense'</span> <span class="p">?</span> <span class="mi">1</span> <span class="p">:</span> <span class="o">-</span><span class="mi">1</span> <span class="n">transaction</span><span class="p">.</span><span class="nf">account</span><span class="p">.</span><span class="nf">update!</span><span class="p">(</span> <span class="ss">balance: </span><span class="n">transaction</span><span class="p">.</span><span class="nf">account</span><span class="p">.</span><span class="nf">balance</span> <span class="o">+</span> <span class="p">(</span><span class="n">transaction</span><span class="p">.</span><span class="nf">amount</span> <span class="o">*</span> <span class="n">factor</span><span class="p">)</span> <span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Maintaining Data Integrity </h2> <p>To ensure data integrity, we've implemented several key features:</p> <ol> <li> <strong>Atomic Transactions</strong>: All related operations are wrapped in database transactions: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="no">ActiveRecord</span><span class="o">::</span><span class="no">Base</span><span class="p">.</span><span class="nf">transaction</span> <span class="k">do</span> <span class="n">transaction</span><span class="p">.</span><span class="nf">destroy</span> <span class="n">update_account_balance</span> <span class="n">log_event</span><span class="p">(</span><span class="ss">user: </span><span class="n">user</span><span class="p">,</span> <span class="ss">data: </span><span class="p">{</span> <span class="ss">transaction: </span><span class="n">transaction</span> <span class="p">})</span> <span class="k">end</span> </code></pre> </div> <ol> <li> <strong>Relationship Preservation</strong>: We maintain relationships between records even after deletion: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">User</span> <span class="o">&lt;</span> <span class="no">ApplicationRecord</span> <span class="n">acts_as_paranoid</span> <span class="n">has_many</span> <span class="ss">:audit_logs</span><span class="p">,</span> <span class="ss">dependent: :nullify</span> <span class="n">has_many</span> <span class="ss">:accounts</span><span class="p">,</span> <span class="ss">dependent: :destroy</span> <span class="n">has_many</span> <span class="ss">:transactions</span><span class="p">,</span> <span class="ss">dependent: :destroy</span> <span class="k">end</span> </code></pre> </div> <ol> <li> <strong>Automated Cleanup</strong>: We handle old soft-deleted records with a background job: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight ruby"><code><span class="k">class</span> <span class="nc">RemoveSoftDeletedUsersJob</span> <span class="o">&lt;</span> <span class="no">ApplicationJob</span> <span class="k">def</span> <span class="nf">perform</span> <span class="k">return</span> <span class="k">unless</span> <span class="no">Settings</span><span class="p">.</span><span class="nf">jobs</span><span class="p">.</span><span class="nf">remove_soft_deleted_users</span><span class="p">.</span><span class="nf">enabled</span> <span class="no">User</span><span class="p">.</span><span class="nf">deleted_before_time</span><span class="p">(</span><span class="nb">eval</span><span class="p">(</span><span class="no">Settings</span><span class="p">.</span><span class="nf">jobs</span><span class="p">.</span><span class="nf">remove_soft_deleted_users</span><span class="p">.</span><span class="nf">time</span><span class="p">).</span><span class="nf">ago</span><span class="p">)</span> <span class="p">.</span><span class="nf">each</span><span class="p">(</span><span class="o">&amp;</span><span class="ss">:destroy_fully!</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Real-world Benefits </h2> <p>This implementation has provided several advantages:</p> <ol> <li> <strong>Regulatory Compliance</strong>: Complete audit trails for financial transactions</li> <li> <strong>Data Recovery</strong>: Easy restoration of accidentally deleted records</li> <li> <strong>Performance</strong>: Minimal impact on database performance while maintaining data integrity</li> <li> <strong>Maintenance</strong>: Automated cleanup of old soft-deleted records</li> </ol> <h2> Learning Outcomes </h2> <p>Building this system taught me several valuable lessons:</p> <ol> <li>Always consider the broader implications of data deletion in financial systems</li> <li>Design for auditability from the ground up</li> <li>Balance between data retention and system performance</li> <li>Importance of atomic operations in maintaining data consistency</li> </ol> <h2> Best Practices </h2> <p>When implementing a similar system, consider these recommendations:</p> <ol> <li>Always use database transactions for related operations</li> <li>Log both the action and the state of the data</li> <li>Implement cleanup strategies for old soft-deleted records</li> <li>Maintain relationships between related records even after deletion</li> <li>Design the audit system to be queryable and maintainable</li> </ol> <p>This implementation has proven robust in production, handling millions of financial transactions while maintaining complete traceability and data integrity. The combination of soft deletion and comprehensive audit logging provides the security and transparency essential for financial applications.</p> <p>Remember, in financial applications, it's not just about storing data—it's about maintaining a verifiable history of every change while ensuring data integrity at every step.</p> <p>Happy Coding!</p> <p><em>Originally published at <a href="https://sulmanweb.com/rails-soft-delete-audit-logging-implementation" rel="noopener noreferrer">https://sulmanweb.com</a>.</em></p> ruby rails database