Application Development - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Application Development


Ruby on Rails 2.0 Arrives



 By: Darryl K. Taft
2007-12-10
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Application Development story.


Rate This Article:
Poor Best
The latest version of the Web development framework brings enhanced support for REST and beefed up security.

The much-anticipated second release of the Ruby on Rails Web development framework has been released.

Ruby on Rails was released Dec. 7. Key advancements in Rails 2.0 include enhanced support for REST (Representational State Transfer) and improved security.

"My favorite part of Rails 2.0 is how harmonic the pursuit of the RESTful principles has made application development," the technologys creator, David Heinemeier Hansson, told eWEEK. "It makes it feel so much more predictable, clean and enjoyable. HTTP had it right all along, its just taken us Web-application developers a while to understand and appreciate it."

Hansson is a developer at 37signals, a Chicago-based Web product development firm. He said it took a year to get Rails 2.0 completed.

He said he has personally worked on the Rails framework for four years and has a core group of developers who have been around working on it just about as long. Along the way there have been hundreds of contributors, he said. "This release is a triumph for large-scale open-source development," he said.

Resource Library:

Despite the large number of new features in the latest release, Hansson said the bulk of the effort on Rails 2.0 was put into adding more support for REST. "Weve got a slew of improvements to the RESTful lifestyle," he said.

Click here to read more about 12 things you need to know about Ruby on Rails.

Moreover, he said, "itll probably come as no surprise that Rails has picked a side in the SOAP [Simple Object Access Protocol]-versus-REST debate. Unless you absolutely have to use SOAP for integration purposes, we strongly discourage you from doing so."

Enhancing security of the framework was another major concern.

"Making it even easier to create secure applications out of the box is always a pleasure, and with Rails 2.0 were doing it from a number of fronts," Hansson said in a blog post. "Most importantly, we now ship a built-in mechanism for dealing with CSRF [cross-site request forgery] attacks. By including a special token in all forms and AJAX [Asynchronous JavaScript and XML] requests, you can guard from having requests made from outside of your application. All this is turned on by default in new Rails 2.0 applications."

He said Rails 2.0 also makes it easier for developers to deal with XSS (cross-site scripting) attacks while still allowing users to embed HTML in their pages. "Weve added support for HTTP-only cookies," he said. "They are not yet supported by all browsers, but you can use them where they are."

The Action Pack in Rails 2.0 is all about getting closer with HTTP, Hansson said. "Weve added a new module to work with HTTP Basic Authentication, which turns out to be a great way to do API authentication over SSL [Secure Sockets Layer]."

In addition, Rails 2.0 features a new request profiler. "Figuring out where your bottlenecks are with real usage can be tough, but we just made it a whole lot easier with the new request profiler that can follow an entire usage script and report on the aggregate findings," Hansson said.

He said the Rails team made what already was a lightweight development framework even lighter by taking some things out, such as from the Active Record component. Active Record in Rails connects business objects and database tables to create a persistable domain model where logic and data is presented in one wrapping.

"To make Active Record a little leaner and meaner, weve removed the acts_as_XYZ features and put them into individual plug-ins on the Rails SVN [subversion] repository," Hansson said. "Weve also pushed all the commercial database adapters into their own gems. So Rails now only ships with adapters for MySQL, SQLite and PostgreSQL. These are the databases that we have easy and willing access to test on."

That doesnt mean the commercial databases are left out, he said. "Rather, theyve now been set free to have an independent release schedule from the main Rails distribution," he said.

Also new with Rails 2.0 is making it "much easier to structure your JavaScript and stylesheet files in logical units without getting clobbered by the HTTP overhead of requesting a bazillion files," Hansson said.

Check out eWEEK.coms for the latest news, reviews and analysis in programming environments and developer tools.





  Reader Comments: Ruby on Rails 2.0 Arrives
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Application Development Articles          >>> More By Darryl K. Taft
 


x}r㶲s\@♵M푦d[bY^fI*EBc"){<9'ˮO7t$_&}2mFwh4#ooD\ݴ1iܦd胿O$w}Lj9UQ#C3W)9bPg34mZΠN@\~}@^}fwD%x_'Щ=ѩ:€wɄZIPQۗ>}^~l .htL⎲IlG5tuOѦ%yH#>֥E!3]2IXߦuɷP=2tS[BT!|DJ%h!GQus?;~'f^B(ƻF {iZv;P;U{ah/@^jc\ȁY{w4_L*6 L=TVE;&3Ãtf?Dk N\^ ZSˆ螥ɧ5f5I ` 1l{`2I%$7 .lq`=Ķ|htq(r~ƷP7ƞ;w#27 -wQKv TmO |lMݟP~$hGGHu3os 2 dþ;RP*qR,*cx!`9ۖ3lT;}gԚ?ڻRʪ)awݺɑC[w5-%uP[Ns'םͫw~@{A~$Vj/& LT)Jj\(OLCajLq5 z P뤍\㍒~_pa)ڱVP]F[<," J1~̢!2Iy?-~{m<<鶚>1fP+M~(#3hؕgxo_:nn9n[g9tYcCV=BCj`BӹciuuUo~=c߮CMXCyC0-ߕҡ#3p9iIo|8j$˷SY>럑_.+`HBm۲ܼΑ\R ya(7f`X@7? eR2|&r* ߱n^S'G5ǯhV=<<䭱JG+҄& 9B:A`ܺNR49Vˡ8蟉$Wm4@r5YSl؅ R捇o4x ~&,)|YB* brݢPP3nS%EI7#DD vxr!DKI88c^IR]E1\a>pY<8ZoV͉*]XYujZlE?´;\g\?o63һ\:MxX18,]evb`\\Է7J06_)Ab/*r[h2ud8԰)56'4}t>჎$>hƋCr_ZnL,rӇu4@>~ݣn]=&tnYXŞ+LRVi`IE 6]LR}>t9qHhS0<zw0[[S衟#j{t( u,/{@`\@8HpyY?9>o  gk 6G~[>l0syF@i0x1C.G))(?]HPw9J B!\0H#`P;.VKŤ\*y"Jm':ܱ;PKϥ"ڹLX*QY,p[/ ͙JRd0U Q򍜈="`&Qea*0pLKak`F^rA+ŲMCAӀIiRZ9,)CzdEgm6ŝ}ˁ)s#̡_#fLdd5}j0&{b6g{A3uOP#'Կ ;7u9\v,_zt/\҇1 4fכ d50?J7n2gNP/h|WY 3EDVhdFCC2{ޡ[Y3R;= MO9YX X`a ,Rd0q6I SXh8G/C4v ~24$֒f{ց$l JviXZ @-246@Ȱ\k_X5QW(:,)T ŠaYl`cy1Csz QIaе`5s7\PeȔm8UKU5\-}sf8, J; HSJ$l%K79w΀ =`W@~vf:s?&نdpg׏pFa e-6BSbg`m1JL,,@УCkz]W9,#߬'hqw.$JPVbrxɡUT9.J8;|%ZA~~Ļ8 iF @rFg}qs`~62k s'p@o)`3|xߙ[aeƘH?`׊._5ݧ+i fB1&} leAX~\U4Uud XY 0(E{0 qDLҀJ 5^ƙl)=T*ݝ'(R~h;?=`"kjUv*5P6>*0GnG=7֌H+ c4}5:*jAeoy+^t m(5# #2pgrh)hgj* 8UoF* ϛ=G$1*@7Z 3ӛe4 "|>&75V`]f[|8.soJ~Qby6UG3 Ⱦ -(R!uY "q h{ ~:ꪦY0LdT~#xRfl|g`+w22˓FzXfoQ&\ YGOpOD73 DV[I?sԳйtNcl s ܒ; k@X'V-(7ϙ40p2^=k6,~xf)4D|\D"p-nōapzGdD"9zB*~1_l6a9L6[JI) `uVDZ)~9HǞ1}]ܙe>t1N8*)cʜEo(SYmq'&F.Ҁ^\f6}b;_&*|)2SG)EXqkX c=O f+(U|ly5&Qҥ|a6tGM4*jxkc(uO( Eō:m0RBE-) BoED\w Zlm7M l⊗q~XCkτkox~E 62j=kR>,ԕOOe3q18@X=x}d6 5C+jBgUz `3O?#[IfYyVum4uH"5J7eNV5XI0iUI+T Z} 2aU}/*\&IvSSS]5  qΟݚr`>xHn6J墦Ak R;~O;a#ҶLp ( rZ: GYdQ.|eR)Vn8N3Az vBs9c#|V n&C?kUeqbsE1 7k{H~Zg^pR t(+m/HActh>&~?<aa=&e?J0WK{^j\.0MC~Zg_Hnj7.b8 }L@IP 4p=&iCO"qvֺmy#4-odhD4|wNѽh]/~v:]~J\R1~F`&1Mqպ>bO*a膇6b ` xѤ8"cxH13^6"B@ ˸tg.g^|%V}Xhr!slP6h4&lC/ؿ+[̚_f·ńB?JNy0(@RPOh[#ZƧvZgp4" BtX 1te}E/R)Q\(뉞OYYmp l(^(֯0[LӷoHW蘧Y/tEdW(kh,6bsZ;t0?xԾj&j?&i^3_"Tc z{D&iR'DZ3pu*d hwl)~ڲO^Y #} DK,qj;;=?PZ9c24aϝ*h55nWe gNuAY\wqovIS09iJs uck5ׅO>4X\/f9#- L{zMYFg os 羴v/ݻw~Zw[q*A-wK?'dc: M"I^U֩UdU)I=YE㳏)G8}b6P2Y;pOҠcc}d<ݸw[f1vf Pc{~mI.e~W(TR=/dOk$J骇\%(S]MT--^\RK>tE 5 OKt1ڮ/=اHkYXxlS֛12Y#Ÿ@!{zi'-MNil&s$;grោJ6wVpN Ϧv_ O%FJ-cmێ!%/hvpU4"Zy"N0 ? W_M·⎭zgQ$G IV_OLRGˬŲVɇ6j3j8*, ׈f'CDW#a> [qT)T_[)kBhY>shjO!LJ3^~JV_J傩7ftDM:Ɂ\>Ψ'}<"Xt; ;*`_|x/K/j39ļߵ:>^W¢sr ^~ \W&br $I?ro;) f[,:,M˰IKA-ĶGVچ&ژp[ĭNN^>vO"qQl! flȎ\a]=" dnA s˞x13zOmw-wG9 /idz R2}LDŽՃfgD+ pl!)D3ggӔhoq}zˉWEQ1IQ%6ybE,1UPGlܹtBg3@w LRD,xY6Y\g'&H&imLt ;acӎIF7 I7CWiوvF,jCJnŧI!Jl2X)Ea h2j7J+f!R+/?q8Ue) #Π`Mq:)6@`rB\ FBH !|Ӳ-BŹeksPyvh"5 dzYlo 7GZif7D5zfCfmu'"/KR_%RsmJ UPDK X`FC]Q}u-C&gg9v(eiY S1o[lKHmu}ۚO؈vyָ^Dlw+#'^Km\̙Hpg3TjJSI0np㹿Q#HN;"S0<<<^k$Yj_c_F <,gJ׭`VfY֗HcJN#cm B=L$X&7y6 x&sưDҩ;VSdhnmܖx 76c"T%U`dbDS'F{1,=E'8(xtwScX{􃰒$`~3KR($(Rk_ۍ dVvyh!`zb $PE~ $7V/Jxd?կ ]nk%%~vKf6,+ГI_֢^k9>:L߁)u/ +DIUX+Z@M5~^('>Y@$푻3K;ҍv`:IX'!+|֭ OMe»+ r1` i|DD%ş-/\x6ܩq;m[")@C/֗rO|ksSpmm Q-kv m6Yo ֌fr*A-[o6௶eul:/2M<}6dUoko#fyN{mV)K|jhk;1}v̺ٔp;у z( ƗY'֤~[IHgc;wPGT2̭,ǒdnSs8y3D]/`>&ܻF:f?}or闶Upv?񨾺oq6I|yBaۋ@{,I‹FP ђ,#;ЋWSdCmNx^~6PX!^e=T687~i&kʁV=P,&Y+ ZȖH e _M BAt)ȁ;[Ć/G*Nx|)@yF1i.m`W1$0mg+A#샒=%hٵ!,q Ds uns<QuEMm&: kaTO\1V&GBA8AXJo,"xas6c8(ĒI m/-Iyp\oKI6qN"F dr[%B.]sI *ʡZr^:XuZ.˘x&V@gLHk̘x]4vlNz ytFu)EBTBh>k`csܴ5̈ g50Vz^3vX5nVڹ𒍴q yK-y-J4s5.{y(1r&:q.O '2C`m 4,\ d(\πTn;aI&uB guPsʷWݾhyE0-^awUqji\7K J"}GAH 8bIO0ڱJ R tW)P\'>jcD̋:SS\YrVҴxfVؖTm}qV.NS)q:>KK?#@$"&?^J k oDax+nO5ATQ]dobD )m3F Oc+ӘP4?ocqx1 \TbЭB1˪M;InP~z*ڟOd^f}B ZU{ȚX t bJ 76fm[%'t Mx%7+ 8&\Сr@JowaGRi48، Pm̼܏@GBS}o ;P#b2zZ)׀gӐUBa=X *>IoR7G1_dn~C@;G}m!Q<yS]\h<BsbwSwjL!'vQ]Q sͫxLzS?!嘭#!+^bΑΨ5o^C7 ['pp\pr@K2K*2&Bs879|w{=&'_AͿI3J圀.JeEt03_ c!g;z)%n67p>9d,a4`\Xg +S}Vx}:;jܕiV!5`-=5KޝQ>ɖàZEQp#ߛSg0YA(غ9PM`jHy|J*Q^e5DM@*: Ǽ7O!~ljŵVN|vuI5#u4ǜ6~~*4=V0@嗭\u2ʡuQoe^s/Z_~2lWogOog,@v}@v}ڀ;6g;? D#(ˌ@?2P(k N~d o2t32  忬/!>BǬrc~~3w Y{ f wɹN2!(odYNoT8'\$_JeYW@a u}Q~@yJ2,co2\. e{);[?[nN;gu CFWT=k /dmNu^k8VҮ /6h}0^ZE/ވM,AQfq. 3l?V\[[,Oнۺ{ Jݓs+z`~H\]Mb}+r>VD=ܬOw&R2#s"q6G#i@Aק3j=QǒGЬ]#=Dxԡ`z[G$Qv=Po\pm⦠ϻ]O^-AkO[&7Sl-"ţ;ZʈP}vdmoCdre71y}³2A'ڇ ߊD,/u e%Hi0\=1x7JnAm{x50AqdV`l1h|k:K$LBpDc &Zb g!EM++J9wwE"ðA(.#&T$`vXrF(RB4|;یW)57tSsůix6)]1_՗Zi`wƨls7𜙄׌̯ f@L VvT`kоxAI2#Xnƀ_@n=,N7"f̆I ůD|݅ |F˹ILƎ$z 3߁93r^ ]ɡ=y$>},.q5sEEבE,&JhӄwjP%n3!-?q?]&р]W, {+2‡_i nMgAۺ!=מwo n՝!(}#Ϙ^Ǩz)>ΐR(xK9#xW n,='MOjUMf@gQl)VxHDn뭻+0\d~\g;Thv[1dt;BI<-<>,Q2G$I\5|o,C7cS!-^Π&b/;ynԷeE&PLc)JqY|Tr%nD܅{ ߠ(b<% *`> , CS6VLSc? `nwn9cˎk[QYɶz S~lt'[nI 5E`1l4`eh=3 <ձ w O`7a#>Ƌrd{Go5GPWFWݞO Xo}8l-dz6C|%Jozr:4Y 796 ~v0q=Ķ2|R4MepvRv ?93_Ϛ樅Wvm:mmlP/>¼uOW=Q籺aжJ7t{%!XiWe1RpCV)tO!?ANt3CB %`GYU`r5E6<܈x5ƃna,JY˳Je6ٝv)E=b농E]hT_ !** %/ߵ3qݼ®"vyX\A4XIڙFX<ٰ޳s+o=Љe;3G_\g0ޜo,eH&}+qd. " $8jVI{{a0&|iE-㨤t`C v_ʉ~ph;?2Y>A wVǰKar]MzS cJ\gۂ~׍׶GS<"Y4.쑥"?X=<,EƇd'KWҵ1_^5FElT$¨BfyACWqk @<לk 0qmr?0/rX)>e5r ς ixv4":Ƹ0X3V\r*zOWͥ;V?PwyݺtC*GꙺUN]'ώ7z_a}B=FBl4*ŷehEiӍ⿡wqEL +(K- Q=kA0|Mu}uK+_1ZF[Wy&F{kf5U+kD;ydM^l+:cSEᘸe=9TVs0v&b(1lS24K_hjtcͦG(ϗEs+q>tgLp -ͱ=RZ`'l/Z