WC
Uploaded byWO Community
PDF, PPTX1,451 views

ERRest in Depth

The document outlines the ERRest framework, detailing its request/response loop, handling behaviors, and response formatting. It emphasizes the importance of same-origin policy, CORS, and various methods for managing object creation, updating, and response generation. Additionally, it covers error handling, status codes, and the procedures for adding support for new data types.

Embed presentation

Download as PDF, PPTX
MONTREAL JUNE 30, JULY 1ST AND 2ND 2012 ERRest in Depth Pascal Robert MacTI.ca
The Menu • Request/response loop • Behavior changes • Formats • Transactions • Same Origin Policy • Date and time management
Request handling
Request Application.dispatchRequest ERXRouteRequestHandler(WOActionRequestHandler).handleR equest YourController(ERXRouteController).performActionNamed
performActionNamed
checkAccess() • Default implementation in ERXRouteController does nothing • Override it in your controller for security check
performHtmlActionNamed • Does <EntityName><ActionName>Page component exists? • No: fall back to controller • Yes: Check if component implements IEXRouteComponent • Yes: return the component • No: fall back to controller
shouldFailOnMissingHtmlPage • Does the component was not found or don't implement IEXRouteComponent? • If shouldFailOnMissingHtmlPage() returns true, call performUnknownAction (will return a 404 NotFound) • Default is false, override it in your controller if needed.
performRouteActionNamed • Try to find <actionName>Action method. • Not found? Try to find <actionName> method. • Still nothing? Check for annotations. • Still nothing? Call performUnknownAction • Got something? Call performActionWithArguments
performUnknownAction • if (ERXRest.strictMode) • throw ERXNotAllowedException (HTTP code 405) • else • throw FileNotFoundException (HTTP code 404)
performActionWithArguments • Will invoke the method with the arguments
Objects management
Objects in routes • /ra/<entityName>/{entity:EntityName} • routeObjectForKey(key) • create(filter) • update(object, filter)
routeObjectForKey • {<keyName>:<keyType>} in route = keyType result = routeObjectForKey(<keyName>) • Object is obtained by ERXRestUtils.coerceValueToTypeNamed
coerceValueToTypeNamed • Where value is transformed to a object or primitive • If it's an EO or POJO, will use ERXRestClassDescriptionFactory.classDescriptionForEntityName to find the class • Will call IERXRestDelegate.Factory.delegateForClassDescription().objectOfEntityWithI D()
create(filter) • Will call ERXRestClassDescriptionFactory.classDescriptionForEntityName • Will call IERXRestDelegate.Factory.delegateForClassDescription().createObjectOfEnti tyWithID to create a basic EO/POJO • Will call updateObjectWithFilter()
update(object, filter) • As with create(filter), will simply call updateObjectWithFilter
updateObjectWithFilter • Major method • Will take content from request and update object (PUT request) • Also used to populate new object (POST request)
Response handling
response(object, filter) • Will built up the object graph with ERXRestRequestNode.requestNodeWithObjectAndFilter • Will call response(format, responseNode)
requestNodeWithObjectAndFilter • If primitive/simple object, will set the value • If EO/POJO, will call _fillInWithObjectAndFilter
_fillInWithObjectAndFilter • If object is an array, method take itself • If not array, will use object's delegate to call primaryKeyForObject, and call _addAttributesAndRelationshipsForObjectOfEntity
response(format, responseNode) • Returns result of ERXRouteResults(context, restContext, format, responseNode) • ERXRouteResults.generateResponse() will actually generate the response in requested format
response(ERXRestFetchSpecification, filter) • Useful to return list of objects ("index" action) • ERXRestFetchSpecification allow you to set ordering, range, filtering and batching from request • Will also call response(format, responseNode)
response(int) • Use that one to send a response without any content in the body • Check ERXHttpStatusCodes
There's a property for that
"id" key • ERXRest.idKey : what to use instead of "id" Default: {"id":2 } ERRest.idKey=primaryKey {"primaryKey":2 }
"nil" key • ERXRest.nilKey To rewrite the "nil" attribute Default: <someAttribute nil="true"/> ERXRest.nilKey=cestVide -> <someAttribute cestVide="true"/> • ERXRest.writeNilKey Skip the "nil" attribute Default: <someAttribute nil="true"/> ERXRest.writeNilKey=false -> <someAttribute nil="true"/>
"type" key • ERXRest.typeKey Allow you to change the name of the "type" attribute Default: {"type":"NameOfEntity"} ERXRest.typeKey=entityName {"entityName":"NameOfEntity"} • ERXRest.writeTypeKey If false, won't write the "type" attribute in the response ERXRest.writeTypeKey=false -> {id: 2, "type":"NameOfEntity"}
ERXRest.pluralEntityNames • Default is true • If set to false, can't use pluralized names Default: /ra/restEntities Set to false: /ra/restEntities
ERXRest.suppressTypeAttributesForSimpl eTypes • Only for XML format • Default value is false • Default rendering: <RestEntity primaryKey="1"> <someAttribute type = "integer">2</someAttribute> </RestEntity> • When set to false: <RestEntity primaryKey="1"> <someAttribute type = "integer">2</someAttribute>
ERXRest.strictMode • Default is: true • For missing route, will send 405 (Not Allowed) code, if set to false, will send 404 (Not Found) • POST requests: will send 201 (Created), if false will send 200 (OK)
ERXRest.routeCase • ERXRest.routeCase=LowerCamelCase /ra/restEntities • ERXRest.routeCase=CamelCase /ra/RestEntities • ERXRest.routeCase=LowercaseUnderscore /ra/rest_entities
ERXRest.parseUnknownExtensions • /ra/restEntities/3.fsdfsd • If set to true (the default): HTTP/1.1 200 Apple WebObjects Content-Type: text/html • If set to false: HTTP/1.0 400 Apple WebObjects
Formats
ERXRest.defaultFormat • ERXRest.defaultFormat=json|xml|plist|html|... • Let you specify the default format for all controllers • Can override it per controller: protected ERXRestFormat defaultFormat() { return ERXRestFormat.json(); }
Format detection • Format detection is in ERXRouteController.format() • Order of detection • From extension (.json). Set in ERXRouteRequestHandler.routeForMethodAndPath() • From the Content-Type header • Default format (defaultFormat() in controller)
Adding new format • Your own private format? Use ERXRestFormat.registerFormatNamed() • Format useful for the commumity? Add them to ERXRestFormat
Same Domain Policy
Same Origin Policy • Problem: browsers won't load data if client and server not on same domain • Numerous ways: window.name transport, JSONP and Cross-origin resource sharing (CORS) • CORS and window.name transport support is part of ERRest
CORS • Works with Gecko 1.9.1 (Firefox 3.5+), WebKit (Safari 4+, Google Chrome 3+), Opera 12 and IE 8+ • Send extra headers to server • Client specifiy origin, requested HTTP verb and allowed headers, server returns allowed origin, methods, headers and max-age
CORS preflight Client request: OPTIONS /resources/post-here/ HTTP/1.1 Origin: http://foo.example Access-Control-Request-Method: POST Access-Control-Request-Headers: X-PINGOTHER Server response: HTTP/1.1 200 OK Access-Control-Allow-Origin: http://foo.example Access-Control-Allow-Methods: POST, GET, OPTIONS Access-Control-Allow-Headers: X-PINGOTHER Access-Control-Max-Age: 1728000 Client request: GET /resources/post-here/ HTTP/1.1 Origin: http://foo.example Server response: HTTP/1.1 200 OK Access-Control-Allow-Origin: http://foo.example
CORS • ERXRest.accessControlAllowRequestHeaders • ERXRest.accessControlAllowRequestMethods • ERXRest.accessControlMaxAge (default: 1728000) • ERXRest.accessControlAllowOrigin ('*' to allow all)
window.name Transport • Dojo use that trick • Client send ?windowname=true in URL • Enable it on server with: ERXRest.allowWindowNameCrossDomainTransport=true • Will wrap response in HTML code: <html><script type="text/javascript">window.name='{"id": 4,"type":"RestEntity","someAttribute":"commit transaction"}';</script></html>
Status codes
Status code and exceptions • ObjectNotAvailableException, FileNotFoundException, NoSuchElementException: returns a 404 (Not Found) • SecurityException: returns a 403 (Forbidden) • ERXNotAllowedException: returns a 405 (Method Not Allowed) • ERXValidationException, NSValidation.ValidationException: returns a 400 (Bad Request) • Anything else: returns a 500 (Internal Server Error) • Avoid sending 5xx codes if the client made a mistake!
Adding support for new data types • Add a processor in _ERXJSONConfig • Add support code in ERXRestUtils • isPrimitive() • coerceValueToString() • coerceValueToTypeNamed • For dates: add formatter in ERXRestUtils
MONTREAL JUNE 30, JULY 1ST AND 2ND 2012 Q&A

More Related Content

PDF
ERRest - Designing a good REST service
byWO Community
 
PDF
ERRest and Dojo
byWO Community
 
PDF
ERRest
byWO Community
 
PDF
ERRest - The Next Steps
byWO Community
 
PDF
Class-based views with Django
bySimon Willison
 
PDF
KAAccessControl
byWO Community
 
PDF
ERRest: the Basics
byWO Community
 
PDF
Filtering data with D2W
byWO Community
 
ERRest - Designing a good REST service
byWO Community
 
ERRest and Dojo
byWO Community
 
ERRest
byWO Community
 
ERRest - The Next Steps
byWO Community
 
Class-based views with Django
bySimon Willison
 
KAAccessControl
byWO Community
 
ERRest: the Basics
byWO Community
 
Filtering data with D2W
byWO Community
 

What's hot

PPT
Jstl Guide
byYuval Zilberstein
 
PPTX
Using the Tooling API to Generate Apex SOAP Web Service Clients
byDaniel Ballinger
 
KEY
Django Pro ORM
byAlex Gaynor
 
PDF
Http4s, Doobie and Circe: The Functional Web Stack
byGaryCoady
 
PDF
Codegeneration With Xtend
bySven Efftinge
 
PDF
Object Oriented Exploitation: New techniques in Windows mitigation bypass
bySam Thomas
 
KEY
Advanced Django ORM techniques
byDaniel Roseman
 
PDF
Introduction to Active Record - Silicon Valley Ruby Conference 2007
byRabble .
 
PPT
J query
byManav Prasad
 
PPT
55 New Features in Java 7
byBoulder Java User's Group
 
PPT
ExtJs Basic Part-1
byMindfire Solutions
 
PPTX
Web осень 2012 лекция 6
byTechnopark
 
PPTX
Web весна 2013 лекция 6
byTechnopark
 
PDF
QA Lab: тестирование ПО. Станислав Шмидт: "Self-testing REST APIs with API Fi...
byGeeksLab Odessa
 
PPT
JSP Standart Tag Lİbrary - JSTL
byseleciii44
 
PDF
Developing Useful APIs
byDmitry Buzdin
 
PDF
Solr workshop
byYasas Senarath
 
PDF
QA Lab: тестирование ПО. Яков Крамаренко: "KISS Automation"
byGeeksLab Odessa
 
PDF
How to write easy-to-test JavaScript
byYnon Perek
 
PPTX
J query1
byManav Prasad
 
Jstl Guide
byYuval Zilberstein
 
Using the Tooling API to Generate Apex SOAP Web Service Clients
byDaniel Ballinger
 
Django Pro ORM
byAlex Gaynor
 
Http4s, Doobie and Circe: The Functional Web Stack
byGaryCoady
 
Codegeneration With Xtend
bySven Efftinge
 
Object Oriented Exploitation: New techniques in Windows mitigation bypass
bySam Thomas
 
Advanced Django ORM techniques
byDaniel Roseman
 
Introduction to Active Record - Silicon Valley Ruby Conference 2007
byRabble .
 
J query
byManav Prasad
 
55 New Features in Java 7
byBoulder Java User's Group
 
ExtJs Basic Part-1
byMindfire Solutions
 
Web осень 2012 лекция 6
byTechnopark
 
Web весна 2013 лекция 6
byTechnopark
 
QA Lab: тестирование ПО. Станислав Шмидт: "Self-testing REST APIs with API Fi...
byGeeksLab Odessa
 
JSP Standart Tag Lİbrary - JSTL
byseleciii44
 
Developing Useful APIs
byDmitry Buzdin
 
Solr workshop
byYasas Senarath
 
QA Lab: тестирование ПО. Яков Крамаренко: "KISS Automation"
byGeeksLab Odessa
 
How to write easy-to-test JavaScript
byYnon Perek
 
J query1
byManav Prasad
 

Similar to ERRest in Depth

PPT
Switch to Backend 2023
byGoogle Developer Students Club NIT Silchar
 
PDF
07-IM-REST-json.pdf slide for restapi explaination
byEngjellRrapaj
 
PPTX
JAX-RS. Developing RESTful APIs with Java
byJerry Kurian
 
PPTX
Pragmatic REST APIs
byamesar0
 
PDF
Cqrs api v2
byBrandon Mueller
 
PDF
Rest API Interview Questions PDF By ScholarHat
byScholarhat
 
PPT
RESTFul Web Services - Intro
byManuel Correa
 
PPTX
rest-api-basics.pptx
byAgungSutikno1
 
PPTX
REST and RESTful Services
byDamian T. Gordon
 
PPTX
Rest webservice ppt
bysinhatanay
 
PPTX
Rest
byCarol McDonald
 
PPTX
Rest with Java EE 6 , Security , Backbone.js
byCarol McDonald
 
PPTX
Ppt on web development and this has all details
bygogijoshiajmer
 
KEY
Designing a RESTful web service
byFilip Blondeel
 
PDF
JAX-RS JavaOne Hyderabad, India 2011
byShreedhar Ganapathy
 
PPTX
Building Restful Web Services with Java
byVassil Popovski
 
PPT
RESTful SOA - 中科院暑期讲座
byLi Yi
 
PDF
Ws rest
bypatriknw
 
PDF
restapitest-anil-200517181251.pdf
bymrle7
 
PPTX
Real world RESTful service development problems and solutions
byMasoud Kalali
 
Switch to Backend 2023
byGoogle Developer Students Club NIT Silchar
 
07-IM-REST-json.pdf slide for restapi explaination
byEngjellRrapaj
 
JAX-RS. Developing RESTful APIs with Java
byJerry Kurian
 
Pragmatic REST APIs
byamesar0
 
Cqrs api v2
byBrandon Mueller
 
Rest API Interview Questions PDF By ScholarHat
byScholarhat
 
RESTFul Web Services - Intro
byManuel Correa
 
rest-api-basics.pptx
byAgungSutikno1
 
REST and RESTful Services
byDamian T. Gordon
 
Rest webservice ppt
bysinhatanay
 
Rest
byCarol McDonald
 
Rest with Java EE 6 , Security , Backbone.js
byCarol McDonald
 
Ppt on web development and this has all details
bygogijoshiajmer
 
Designing a RESTful web service
byFilip Blondeel
 
JAX-RS JavaOne Hyderabad, India 2011
byShreedhar Ganapathy
 
Building Restful Web Services with Java
byVassil Popovski
 
RESTful SOA - 中科院暑期讲座
byLi Yi
 
Ws rest
bypatriknw
 
restapitest-anil-200517181251.pdf
bymrle7
 
Real world RESTful service development problems and solutions
byMasoud Kalali
 

More from WO Community

PDF
Apache Cayenne for WO Devs
byWO Community
 
PDF
Advanced Apache Cayenne
byWO Community
 
PDF
D2W Stateful Controllers
byWO Community
 
PDF
Deploying WO on Windows
byWO Community
 
PDF
In memory OLAP engine
byWO Community
 
PDF
Migrating existing Projects to Wonder
byWO Community
 
PDF
"Framework Principal" pattern
byWO Community
 
PDF
Using Nagios to monitor your WO systems
byWO Community
 
PDF
Unit Testing with WOUnit
byWO Community
 
PDF
Life outside WO
byWO Community
 
PDF
WOdka
byWO Community
 
PDF
ERGroupware
byWO Community
 
PDF
Reenabling SOAP using ERJaxWS
byWO Community
 
PDF
iOS for ERREST
byWO Community
 
PDF
iOS for ERREST - alternative version
byWO Community
 
PDF
High availability
byWO Community
 
PDF
Build and deployment
byWO Community
 
PDF
WOver
byWO Community
 
PDF
Chaining the Beast - Testing Wonder Applications in the Real World
byWO Community
 
PDF
Localizing your apps for multibyte languages
byWO Community
 
Apache Cayenne for WO Devs
byWO Community
 
Advanced Apache Cayenne
byWO Community
 
D2W Stateful Controllers
byWO Community
 
Deploying WO on Windows
byWO Community
 
In memory OLAP engine
byWO Community
 
Migrating existing Projects to Wonder
byWO Community
 
"Framework Principal" pattern
byWO Community
 
Using Nagios to monitor your WO systems
byWO Community
 
Unit Testing with WOUnit
byWO Community
 
Life outside WO
byWO Community
 
WOdka
byWO Community
 
ERGroupware
byWO Community
 
Reenabling SOAP using ERJaxWS
byWO Community
 
iOS for ERREST
byWO Community
 
iOS for ERREST - alternative version
byWO Community
 
High availability
byWO Community
 
Build and deployment
byWO Community
 
WOver
byWO Community
 
Chaining the Beast - Testing Wonder Applications in the Real World
byWO Community
 
Localizing your apps for multibyte languages
byWO Community
 

Recently uploaded

PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PPTX
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PPTX
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
software-security-intro in information security.ppt
byismaeelsahib032
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 

ERRest in Depth

  • 1.
    MONTREAL JUNE 30,JULY 1ST AND 2ND 2012 ERRest in Depth Pascal Robert MacTI.ca
  • 2.
    The Menu • Request/response loop • Behavior changes • Formats • Transactions • Same Origin Policy • Date and time management
  • 3.
  • 4.
    Request Application.dispatchRequest ERXRouteRequestHandler(WOActionRequestHandler).handleR equest YourController(ERXRouteController).performActionNamed
  • 5.
  • 6.
    checkAccess() • Default implementation in ERXRouteController does nothing • Override it in your controller for security check
  • 7.
    performHtmlActionNamed • Does <EntityName><ActionName>Page component exists? • No: fall back to controller • Yes: Check if component implements IEXRouteComponent • Yes: return the component • No: fall back to controller
  • 8.
    shouldFailOnMissingHtmlPage • Does the component was not found or don't implement IEXRouteComponent? • If shouldFailOnMissingHtmlPage() returns true, call performUnknownAction (will return a 404 NotFound) • Default is false, override it in your controller if needed.
  • 9.
    performRouteActionNamed • Try to find <actionName>Action method. • Not found? Try to find <actionName> method. • Still nothing? Check for annotations. • Still nothing? Call performUnknownAction • Got something? Call performActionWithArguments
  • 10.
    performUnknownAction • if (ERXRest.strictMode) • throw ERXNotAllowedException (HTTP code 405) • else • throw FileNotFoundException (HTTP code 404)
  • 11.
    performActionWithArguments • Will invoke the method with the arguments
  • 12.
  • 13.
    Objects in routes • /ra/<entityName>/{entity:EntityName} • routeObjectForKey(key) • create(filter) • update(object, filter)
  • 14.
    routeObjectForKey • {<keyName>:<keyType>} in route = keyType result = routeObjectForKey(<keyName>) • Object is obtained by ERXRestUtils.coerceValueToTypeNamed
  • 15.
    coerceValueToTypeNamed • Where value is transformed to a object or primitive • If it's an EO or POJO, will use ERXRestClassDescriptionFactory.classDescriptionForEntityName to find the class • Will call IERXRestDelegate.Factory.delegateForClassDescription().objectOfEntityWithI D()
  • 16.
    create(filter) • Will call ERXRestClassDescriptionFactory.classDescriptionForEntityName • Will call IERXRestDelegate.Factory.delegateForClassDescription().createObjectOfEnti tyWithID to create a basic EO/POJO • Will call updateObjectWithFilter()
  • 17.
    update(object, filter) • As with create(filter), will simply call updateObjectWithFilter
  • 18.
    updateObjectWithFilter • Major method • Will take content from request and update object (PUT request) • Also used to populate new object (POST request)
  • 19.
  • 20.
    response(object, filter) • Will built up the object graph with ERXRestRequestNode.requestNodeWithObjectAndFilter • Will call response(format, responseNode)
  • 21.
    requestNodeWithObjectAndFilter • If primitive/simple object, will set the value • If EO/POJO, will call _fillInWithObjectAndFilter
  • 22.
    _fillInWithObjectAndFilter • If object is an array, method take itself • If not array, will use object's delegate to call primaryKeyForObject, and call _addAttributesAndRelationshipsForObjectOfEntity
  • 23.
    response(format, responseNode) • Returns result of ERXRouteResults(context, restContext, format, responseNode) • ERXRouteResults.generateResponse() will actually generate the response in requested format
  • 24.
    response(ERXRestFetchSpecification, filter) • Useful to return list of objects ("index" action) • ERXRestFetchSpecification allow you to set ordering, range, filtering and batching from request • Will also call response(format, responseNode)
  • 25.
    response(int) • Use that one to send a response without any content in the body • Check ERXHttpStatusCodes
  • 26.
  • 27.
    "id" key • ERXRest.idKey : what to use instead of "id" Default: {"id":2 } ERRest.idKey=primaryKey {"primaryKey":2 }
  • 28.
    "nil" key • ERXRest.nilKey To rewrite the "nil" attribute Default: <someAttribute nil="true"/> ERXRest.nilKey=cestVide -> <someAttribute cestVide="true"/> • ERXRest.writeNilKey Skip the "nil" attribute Default: <someAttribute nil="true"/> ERXRest.writeNilKey=false -> <someAttribute nil="true"/>
  • 29.
    "type" key • ERXRest.typeKey Allow you to change the name of the "type" attribute Default: {"type":"NameOfEntity"} ERXRest.typeKey=entityName {"entityName":"NameOfEntity"} • ERXRest.writeTypeKey If false, won't write the "type" attribute in the response ERXRest.writeTypeKey=false -> {id: 2, "type":"NameOfEntity"}
  • 30.
    ERXRest.pluralEntityNames • Default is true • If set to false, can't use pluralized names Default: /ra/restEntities Set to false: /ra/restEntities
  • 31.
    ERXRest.suppressTypeAttributesForSimpl eTypes • Only for XML format • Default value is false • Default rendering: <RestEntity primaryKey="1"> <someAttribute type = "integer">2</someAttribute> </RestEntity> • When set to false: <RestEntity primaryKey="1"> <someAttribute type = "integer">2</someAttribute>
  • 32.
    ERXRest.strictMode • Default is: true • For missing route, will send 405 (Not Allowed) code, if set to false, will send 404 (Not Found) • POST requests: will send 201 (Created), if false will send 200 (OK)
  • 33.
    ERXRest.routeCase • ERXRest.routeCase=LowerCamelCase /ra/restEntities • ERXRest.routeCase=CamelCase /ra/RestEntities • ERXRest.routeCase=LowercaseUnderscore /ra/rest_entities
  • 34.
    ERXRest.parseUnknownExtensions • /ra/restEntities/3.fsdfsd • If set to true (the default): HTTP/1.1 200 Apple WebObjects Content-Type: text/html • If set to false: HTTP/1.0 400 Apple WebObjects
  • 35.
  • 36.
    ERXRest.defaultFormat • ERXRest.defaultFormat=json|xml|plist|html|... • Let you specify the default format for all controllers • Can override it per controller: protected ERXRestFormat defaultFormat() { return ERXRestFormat.json(); }
  • 37.
    Format detection • Format detection is in ERXRouteController.format() • Order of detection • From extension (.json). Set in ERXRouteRequestHandler.routeForMethodAndPath() • From the Content-Type header • Default format (defaultFormat() in controller)
  • 38.
    Adding new format • Your own private format? Use ERXRestFormat.registerFormatNamed() • Format useful for the commumity? Add them to ERXRestFormat
  • 39.
  • 40.
    Same Origin Policy • Problem: browsers won't load data if client and server not on same domain • Numerous ways: window.name transport, JSONP and Cross-origin resource sharing (CORS) • CORS and window.name transport support is part of ERRest
  • 41.
    CORS • Works with Gecko 1.9.1 (Firefox 3.5+), WebKit (Safari 4+, Google Chrome 3+), Opera 12 and IE 8+ • Send extra headers to server • Client specifiy origin, requested HTTP verb and allowed headers, server returns allowed origin, methods, headers and max-age
  • 42.
    CORS preflight Client request: OPTIONS/resources/post-here/ HTTP/1.1 Origin: http://foo.example Access-Control-Request-Method: POST Access-Control-Request-Headers: X-PINGOTHER Server response: HTTP/1.1 200 OK Access-Control-Allow-Origin: http://foo.example Access-Control-Allow-Methods: POST, GET, OPTIONS Access-Control-Allow-Headers: X-PINGOTHER Access-Control-Max-Age: 1728000 Client request: GET /resources/post-here/ HTTP/1.1 Origin: http://foo.example Server response: HTTP/1.1 200 OK Access-Control-Allow-Origin: http://foo.example
  • 43.
    CORS • ERXRest.accessControlAllowRequestHeaders • ERXRest.accessControlAllowRequestMethods • ERXRest.accessControlMaxAge (default: 1728000) • ERXRest.accessControlAllowOrigin ('*' to allow all)
  • 44.
    window.name Transport • Dojo use that trick • Client send ?windowname=true in URL • Enable it on server with: ERXRest.allowWindowNameCrossDomainTransport=true • Will wrap response in HTML code: <html><script type="text/javascript">window.name='{"id": 4,"type":"RestEntity","someAttribute":"commit transaction"}';</script></html>
  • 45.
  • 46.
    Status code andexceptions • ObjectNotAvailableException, FileNotFoundException, NoSuchElementException: returns a 404 (Not Found) • SecurityException: returns a 403 (Forbidden) • ERXNotAllowedException: returns a 405 (Method Not Allowed) • ERXValidationException, NSValidation.ValidationException: returns a 400 (Bad Request) • Anything else: returns a 500 (Internal Server Error) • Avoid sending 5xx codes if the client made a mistake!
  • 47.
    Adding support fornew data types • Add a processor in _ERXJSONConfig • Add support code in ERXRestUtils • isPrimitive() • coerceValueToString() • coerceValueToTypeNamed • For dates: add formatter in ERXRestUtils
  • 48.
    MONTREAL JUNE 30,JULY 1ST AND 2ND 2012 Q&A