GitBook: [master] 4 pages modified

Author: leastbad

authentication.md

@@ -1,148 +1,149 @@
----
-description: Practice safe optimism
----
-
-# Authentication
-
-If you're just trying to bootstrap a proof-of-concept application on your local workstation, you don't technically have to worry about giving ActionCable the ability to distinguish between multiple concurrent users. However, **the moment you deploy to a host with more than one person accessing your app, you'll find that you're sharing a session and seeing other people's updates**. That isn't what most developers have in mind.
-
-## Encrypted Session Cookies
-
-You can use your default Rails encrypted cookie-based sessions to isolate your users into their own sessions. This works great even if your application doesn't have a login system.
-
-{% code title="app/controllers/application\_controller.rb" %}
-```ruby
-class ApplicationController < ActionController::Base
-  before_action :set_action_cable_identifier
-
-  private
-
-  def set_action_cable_identifier
-    cookies.encrypted[:session_id] = session.id.to_s
-  end
-end
-```
-{% endcode %}
-
-{% code title="app/channels/application\_cable/connection.rb" %}
-```ruby
-module ApplicationCable
-  class Connection < ActionCable::Connection::Base
-    identified_by :session_id
-
-    def connect
-      self.session_id = cookies.encrypted[:session_id]
-    end
-  end
-end
-```
-{% endcode %}
-
-We need to instruct ActionCable to stream updates on a per-session basis:
-
-{% code title="app/channels/optimism\_channel.rb" %}
-```ruby
-class OptimismChannel < ApplicationCable::Channel
-  def subscribed
-    stream_for session_id
-  end
-end
-```
-{% endcode %}
-
-Finally, we need to give Optimism the ability to broadcast updates to the correct channel subscription. We will override Optimism's default "OptimismChannel" with a lambda that returns the subscription identifier. You might already have other values in your initializer, or it might not yet exist at all:
-
-{% code title="config/initializers/optimism.rb" %}
-```ruby
-Optimism.configure do |config|
-  config.channel_proc = ->(context) { OptimismChannel.broadcasting_for(context.session.id) }
-end
-```
-{% endcode %}
-
-## User-based Authentication
-
-Many Rails apps use the current\_user convention or more recently, the [Current](https://api.rubyonrails.org/classes/ActiveSupport/CurrentAttributes.html) object to provide a global user context. This gives access to the user scope from _almost_ all parts of your application.
-
-{% code title="app/controllers/application\_controller.rb  " %}
-```ruby
-class ApplicationController < ActionController::Base
-  before_action :set_action_cable_identifier
-
-  private
-
-  def set_action_cable_identifier
-    cookies.encrypted[:user_id] = current_user&.id
-  end
-end
-```
-{% endcode %}
-
-{% code title="app/channels/application\_cable/connection.rb " %}
-```ruby
-module ApplicationCable
-  class Connection < ActionCable::Connection::Base
-    identified_by :current_user
-
-    def connect
-      user_id = cookies.encrypted[:user_id]
-      return reject_unauthorized_connection if user_id.nil?
-      user = User.find_by(id: user_id)
-      return reject_unauthorized_connection if user.nil?
-      self.current_user = user
-    end
-  end
-end
-```
-{% endcode %}
-
-We need to instruct ActionCable to stream updates on a per-session basis:
-
-{% code title="app/channels/optimism\_channel.rb" %}
-```ruby
-class OptimismChannel < ApplicationCable::Channel
-  def subscribed
-    stream_for current_user
-  end
-end
-```
-{% endcode %}
-
-Finally, we need to give Optimism the ability to broadcast updates to the correct channel subscription. We will override Optimism's default "OptimismChannel" with a lambda that returns the subscription identifier. You might already have other values in your initializer, or it might not yet exist at all:
-
-{% code title="config/initializers/optimism.rb" %}
-```ruby
-Optimism.configure do |config|
-  config.channel_proc = ->(context) { OptimismChannel.broadcasting_for(context.current_user) }
-end
-```
-{% endcode %}
-
-## Devise-based Authentication
-
-If you're using the versatile [Devise](https://github.com/plataformatec/devise) authentication library, your configuration is _identical_ to the User-Based Authentication above, **except** for how ActionCable looks up a user:
-
-{% code title="app/channels/application\_cable/connection.rb" %}
-```ruby
-module ApplicationCable
-  class Connection < ActionCable::Connection::Base
-    identified_by :current_user
-
-    def connect
-      self.current_user = find_verified_user
-    end
-
-    protected
-
-    def find_verified_user
-      if current_user = env["warden"].user
-        current_user
-      else
-        reject_unauthorized_connection
-      end
-    end
-  end
-end
-```
-{% endcode %}
-
+---
+description: Practice safe optimism
+---
+
+# Authentication
+
+If you're just trying to bootstrap a proof-of-concept application on your local workstation, you don't technically have to worry about giving ActionCable the ability to distinguish between multiple concurrent users. However, **the moment you deploy to a host with more than one person accessing your app, you'll find that you're sharing a session and seeing other people's updates**. That isn't what most developers have in mind.
+
+## Encrypted Session Cookies
+
+You can use your default Rails encrypted cookie-based sessions to isolate your users into their own sessions. This works great even if your application doesn't have a login system.
+
+{% code title="app/controllers/application\_controller.rb" %}
+```ruby
+class ApplicationController < ActionController::Base
+  before_action :set_action_cable_identifier
+
+  private
+
+  def set_action_cable_identifier
+    cookies.encrypted[:session_id] = session.id.to_s
+  end
+end
+```
+{% endcode %}
+
+{% code title="app/channels/application\_cable/connection.rb" %}
+```ruby
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    identified_by :session_id
+
+    def connect
+      self.session_id = cookies.encrypted[:session_id]
+    end
+  end
+end
+```
+{% endcode %}
+
+We need to instruct ActionCable to stream updates on a per-session basis:
+
+{% code title="app/channels/optimism_channel.rb" %}
+```ruby
+class OptimismChannel < ApplicationCable::Channel
+  def subscribed
+    stream_for session_id
+  end
+end
+```
+{% endcode %}
+
+Finally, we need to give Optimism the ability to broadcast updates to the correct channel subscription. We will override Optimism's default "OptimismChannel" with a lambda that returns the subscription identifier. You might already have other values in your initializer, or it might not yet exist at all:
+
+{% code title="config/initializers/optimism.rb" %}
+```ruby
+Optimism.configure do |config|
+  config.channel = ->(context) { OptimismChannel.broadcasting_for(context.session.id) }
+end
+```
+{% endcode %}
+
+## User-based Authentication
+
+Many Rails apps use the current\_user convention or more recently, the [Current](https://api.rubyonrails.org/classes/ActiveSupport/CurrentAttributes.html) object to provide a global user context. This gives access to the user scope from _almost_ all parts of your application.
+
+{% code title="app/controllers/application\_controller.rb  " %}
+```ruby
+class ApplicationController < ActionController::Base
+  before_action :set_action_cable_identifier
+
+  private
+
+  def set_action_cable_identifier
+    cookies.encrypted[:user_id] = current_user&.id
+  end
+end
+```
+{% endcode %}
+
+{% code title="app/channels/application\_cable/connection.rb " %}
+```ruby
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    identified_by :current_user
+
+    def connect
+      user_id = cookies.encrypted[:user_id]
+      return reject_unauthorized_connection if user_id.nil?
+      user = User.find_by(id: user_id)
+      return reject_unauthorized_connection if user.nil?
+      self.current_user = user
+    end
+  end
+end
+```
+{% endcode %}
+
+We need to instruct ActionCable to stream updates on a per-session basis:
+
+{% code title="app/channels/optimism_channel.rb" %}
+```ruby
+class OptimismChannel < ApplicationCable::Channel
+  def subscribed
+    stream_for current_user
+  end
+end
+```
+{% endcode %}
+
+Finally, we need to give Optimism the ability to broadcast updates to the correct channel subscription. We will override Optimism's default "OptimismChannel" with a lambda that returns the subscription identifier. You might already have other values in your initializer, or it might not yet exist at all:
+
+{% code title="config/initializers/optimism.rb" %}
+```ruby
+Optimism.configure do |config|
+  config.channel = ->(context) { OptimismChannel.broadcasting_for(context.current_user) }
+end
+```
+{% endcode %}
+
+## Devise-based Authentication
+
+If you're using the versatile [Devise](https://github.com/plataformatec/devise) authentication library, your configuration is *identical* to the User-Based Authentication above, **except** for how ActionCable looks up a user:
+
+{% code title="app/channels/application\_cable/connection.rb" %}
+```ruby
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+    identified_by :current_user
+
+    def connect
+      self.current_user = find_verified_user
+    end
+
+    protected
+
+    def find_verified_user
+      if current_user = env["warden"].user
+        current_user
+      else
+        reject_unauthorized_connection
+      end
+    end
+  end
+end
+```
+{% endcode %}
+
+

reference.md

@@ -21,6 +21,8 @@ else
 end
 ```
 
+
+
 ## Form Builder Helpers
 
 ### container\_for\(attribute, \*\*options, &block\)
@@ -39,6 +41,8 @@ Call this helper to create a `div` that will wrap your input element along with
   <% end %>
 ```
 
+
+
 ### container\_id\_for\(attribute\)
 
 **attribute**: Symbol identifying the the model attribute to use
@@ -51,6 +55,8 @@ Returns the id required for a container to wrap your input elements and receive
 <blockquote id="<%= form.container_id_for :name %>"></blockquote>
 ```
 
+
+
 ### error\_for\(attribute, \*\*options\)
 
 **attribute**: Symbol identifying the the model attribute to use  
@@ -64,6 +70,8 @@ Call this helper to create a `span` that you place adjacent to your your input e
 <%= form.error_for :name, class: "d-none text-danger small form-group" %>
 ```
 
+
+
 ### error\_id\_for\(attribute\)
 
 **attribute**: Symbol identifying the the model attribute to use
@@ -74,6 +82,8 @@ Returns the id required for a container to receive validation error text. Use it
 <blockquote id="<%= form.error_id_for :name %>"></blockquote>
 ```
 
+
+
 ![](.gitbook/assets/master_plan.svg)
 
 ## Initializer
@@ -123,6 +133,8 @@ end
 
 **submit\_selector**: This is the pattern from which Submit button id CSS selectors will be constructed. You probably shouldn't change this.
 
+
+
 ## Events
 
 If you set the `emit_events` property to true in your initializer, Optimism will emit DOM events in response to validation errors. This can happen in addition to or instead of CSS and text updates. This is a great alternative for complicated integrations where you have legacy components which need to be notified of error conditions on the backend.

setup.md

@@ -4,8 +4,6 @@ description: Form validations in five minutes or it's free
 
 # Setup
 
-## Setup
-
 Optimism has a relatively small number of dependencies, but it does assume that it's being run in a Rails project with ActionCable configured for the environments you intend to operate in. You can easily install Optimism to new and existing Rails projects.
 
 ```bash
@@ -20,7 +18,7 @@ The terminal commands above will ensure that Optimism is installed. It creates t
 
 ![](.gitbook/assets/setup.svg)
 
-## Authentication
+# Authentication
 
 {% hint style="info" %}
 If you're just experimenting with Optimism or trying to bootstrap a proof-of-concept application on your local workstation, you can actually skip this section until you're planning to deploy.
@@ -30,11 +28,11 @@ Out of the box, ActionCable doesn't give Optimism the ability to distinguish bet
 
 **If you deploy to a host with more than one person accessing your app, you'll find that you're sharing a session and seeing other people's updates.** That isn't what most developers have in mind!
 
-When the time comes, it's easy to configure your application to support authenticating users by their Rails session or current\_user scope. Just check out the Authentication page and choose your own adventure.
+When the time comes, it's easy to configure your application to support authenticating users by their Rails session or current_user scope. Just check out the Authentication page and choose your own adventure.
 
 {% page-ref page="authentication.md" %}
 
-## Logging
+# Logging
 
 In the default _debug_ log level, ActionCable emits particularly verbose log messages. You can optionally discard everything but exceptions by switching to the _warn_ log level, as is common in development environments:
 
@@ -45,7 +43,7 @@ config.log_level = :warn
 ```
 {% endcode %}
 
-## Troubleshooting
+# Troubleshooting
 
 {% hint style="info" %}
 If _something_ goes wrong, it's often because of the **spring** gem. You can test this by temporarily setting the `DISABLE_SPRING=1` environment variable and restarting your server.
@@ -57,3 +55,5 @@ To remove **spring** forever, here is the process we recommend:
 3. `bin/spring binstub -remove -all`
 {% endhint %}
 
+
+