Railsã‚’ä½¿ã£ãŸRESTfulãªAPIã®ä½œã‚Šæ–¹ - ãƒ—ãƒã‚°ãƒ©ãƒŸãƒ³ã‚°ãƒŽãƒ¼ãƒˆ

ã‚µãƒ¼ãƒãƒ¼ã¨é€£æºã™ã‚‹iPhoneã‚¢ãƒ—ãƒªã‚’ãã‚ãã‚å€‹äººã§ã‚‚ä½œã‚ã†ã‹ãªã¨æ€ã£ãŸã®ã§ã€ã¨ã‚Šã‚ãˆãšé–‹ç™ºã—ãŸã“ã¨ã®ã‚ã‚‹æ–¹æ³•ã‚’ã¾ã¨ã‚ã¦ã¿ã¾ã—ãŸã€‚ä»Šå›žã¯rails 2.3.8, ruby 1.8.7, nokogiri 1.4.3.1ãªç’°å¢ƒã§ä½œã£ã¦ã„ã¾ã™ã€‚

ç°¡å˜ãªä»•æ§˜

ã‚¿ã‚¹ã‚¯ã‚’CRUDã§ãã‚‹ã ã‘ã®å˜ç´”ãªAPIã‚’ä½œã‚Šã¾ã™ã€‚
ä¸‹è¨˜ã®ãƒ¡ã‚½ãƒƒãƒ‰ã‚’ç”¨æ„ã—ã¦ã€XMLã¨JSONã®ãƒ•ã‚©ãƒ¼ãƒžãƒƒãƒˆã«å¯¾å¿œã—ã¾ã™ã€‚

ã€€	method	URI	params	ãã®ä»–
æ¤œç´¢	GET	/api/search.format	kw=æ¤œç´¢ãƒ¯ãƒ¼ãƒ‰	kwãŒãªã„å ´åˆã¯å…¨ä»¶è¿”ã™
è¡¨ç¤º	GET	/api/tasks/id.format		ã€€
ç™»éŒ²	POST	/api/tasks/id.format	name=ã‚¿ã‚¹ã‚¯	ã€€
ç·¨é›†	PUT	/api/tasks/id.format	name=ã‚¿ã‚¹ã‚¯	ã€€
å‰Šé™¤	DELETE	/api/tasks/id	ã€€	ãƒ¬ã‚¹ãƒãƒ³ã‚¹ãƒ˜ãƒƒãƒ€ã®ã¿è¿”ã™

é–‹ç™º

ã¾ãšã¯ãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆã¨å¿…è¦ãªãƒ•ã‚¡ã‚¤ãƒ«ã‚’ä½œã‚Šã¾ã™ã€‚

$ rails api -d mysql
$ cd api
$ script/generate controller api/tasks
$ script/generate model task name:string
$ rake db:create
$ rake db:migrate
$ script/console
Loading development environment (Rails 2.3.8)
ruby-1.8.7-p302 > Task
 => Task(id: integer, name: string, created_at: datetime, updated_at: datetime)

æ¬¡ã«ä»•æ§˜ã«æ²¿ã£ã¦ãƒ«ãƒ¼ãƒ†ã‚£ãƒ³ã‚°ã‚’è¨å®šã—ã¾ã™ã€‚(/config/routes.rb)
.:formatã¯xml, jsonãªã©è¤‡æ•°ã®ãƒ•ã‚©ãƒ¼ãƒžãƒƒãƒˆã«å¯¾å¿œã™ã‚‹ãŸã‚ã®è¨˜è¿°ã§ã™ã€‚

ActionController::Routing::Routes.draw do |map|
...
  map.namespace :api do |api|
    api.connect 'search.:format',
      :controller => :tasks,
      :action => :search,
      :conditions => { :method => :get }

    api.connect 'tasks/:id.:format',
      :controller => :tasks,
      :action => :show,
      :id => /\d+/,
      :conditions => { :method => :get }

    api.connect 'tasks.:format',
      :controller => :tasks,
      :action => :create,
      :conditions => { :method => :post }

    api.connect 'tasks/:id.:format',
      :controller => :tasks,
      :action => :update,
      :id => /\d+/,
      :conditions => { :method => :put }

    api.connect 'tasks/:id',
      :controller => :tasks,
      :action => :delete,
      :conditions => { :method => :delete }
...
end

æ£ã—ãè¨å®šã§ãã¦ã„ã‚‹ã‹ã¯ä¸‹è¨˜ã®ã‚³ãƒžãƒ³ãƒ‰ã§ç¢ºèªã§ãã¾ã™ã€‚

$ rake routes
(in /path/to/project)
 GET    /api/search(.:format)          {:action=>"search", :controller=>"api/tasks"}
 GET    /api/tasks/:id(.:format)       {:action=>"show", :controller=>"api/tasks"}
 POST   /api/tasks.format              {:action=>"create", :controller=>"api/tasks"}
 PUT    /api/tasks/:id(.:format)       {:action=>"update", :controller=>"api/tasks"}
 DELETE /api/tasks/:id                 {:action=>"delete", :controller=>"api/tasks"}

ç¶šã„ã¦APIã®å®Ÿè£…ã§ã™ã€‚
ãã‚“ãªã«å¤šããªã„ã®ã§å…¨éƒ¨ä¸€æ°—ã«ã€‚

class Api::TasksController < ApplicationController
  require 'nokogiri'
  skip_before_filter :verify_authenticity_token # allow CSRF

  # GET /search.:format
  def search
    tasks = Task.find(:all, :conditions => ["name like ?", "%#{params[:kw]}%"])
    respond_to do |format|
      format.xml { render :xml => create_xml(tasks) }
      format.json { render :json => create_json(tasks) }
    end
  end

  # GET /tasks/id.:format
  def show
    task = Task.find_by_id(params[:id])
    (render_error(404, "resource not found") and return) unless task
    respond_to do |format|
      format.xml { render :xml => create_xml(task) }
      format.json { render :json => create_json(task) }
    end
  end

  # POST /tasks/id.:format
  def create
    (render_error(400, "missing name param") unless params[:name]) and return
    task = Task.create({ :name => params[:name] })
    respond_to do |format|
      format.xml { render :xml => create_xml(task), :status => 201 }
      format.json { render :json => create_json(task), :status => 201 }
    end
  end

  # PUT /tasks/id.:format
  def update
    task = Task.find_by_id(params[:id])
    render_error(404, "resource not found") and return unless task
    task.name = params[:name]
    task.save!
    respond_to do |format|
      format.xml { render :xml => create_xml(task) }
      format.json { render :json => create_json(task) }
    end
  end

  # DELETE /tasks/id
  def delete
    task = Task.find_by_id(params[:id])
    render_error(404, "resource not found") and return unless task
    task.delete
    head 200
  end

  private

  def render_error(status, msg)
    render :text => msg, :status => status
  end

  def create_xml(tasks)
    tasks = [tasks] unless tasks.class == Array
    xml = build_xml do |xml|
      xml.tasks {
        tasks.each do |task|
          xml.task(:id => task.id) {
            xml.name(task.name)
            xml.created_at(task.created_at)
          }
        end
      }
    end
  end

  def create_json(tasks)
    tasks = [tasks] unless tasks.class == Array
    tasks = tasks.inject([]){ |arr, task|
      arr << {
        :id => task.id,
        :name => task.name,
        :created_at => task.created_at
      }; arr
    }
    { :tasks => tasks }.to_json
  end

  def build_xml(&block)
    builder = Nokogiri::XML::Builder.new(:encoding => 'UTF-8') { |xml| yield(xml) }
    builder.to_xml
  end
end

ãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆã‚’ä½œæˆã™ã‚‹ã¨ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã§CSRFå¯¾ç–ã®ãŸã‚ã®ã‚³ãƒ¼ãƒ‰ãŒå…¥ã£ã¦ã„ã‚‹ã®ã§ã™ãŒã€ã“ã®ã¾ã¾ã ã¨POSTãƒªã‚¯ã‚¨ã‚¹ãƒˆã§ãƒ‡ãƒ¼ã‚¿ã®ç™»éŒ²ãŒã§ããªã„ã®ã§ã€before_filterã§ç„¡åŠ¹ã«ã—ã¦ã„ã¾ã™ã€‚

XMLã®æ•´å½¢ã«ã¤ã„ã¦ã¯ã€ActiveRecordã®to_xmlãã®ã¾ã¾ã§ã¯ä½¿ã„ã«ãã„ã®ã§ã€Nokogiriã‚’åˆ©ç”¨ã—ã¦ã„ã¾ã™ã€‚

å‹•ä½œç¢ºèª

æœ€å¾Œã«ã€script/serverã§APIã‚µãƒ¼ãƒãƒ¼ã‚’èµ·å‹•ã—ã¦ã€æ£ã—ãæŽ¥ç¶šã§ãã‚‹ã‹ç¢ºèªã—ã¾ã™ã€‚ã“ã“ã§ã¯curlã‚’åˆ©ç”¨ã—ã¦ã„ã¾ã™ãŒã€Firefoxã ã¨RESTTestã¨ã„ã†ã‚¢ãƒ‰ã‚ªãƒ³ãŒä¾¿åˆ©ã§ã™ã€‚

ç™»éŒ² [POST] /api/tasks/id.format

$ curl -X POST -d "name=task1" http://localhost:3000/api/tasks.xml

<?xml version="1.0" encoding="UTF-8"?>
<tasks>
  <task id="1">
    <name>task1</name>
    <created_at>2010-09-11 07:13:26 UTC</created_at>
  </task>
</tasks>

$ curl -X POST -d "name=task1" http://localhost:3000/api/tasks.json

{"tasks":[{"created_at":"2010-09-11T07:14:17Z","name":"task1","id":2}]}

ã“ã‚“ãªæ„Ÿã˜ã§ãƒ‡ãƒ¼ã‚¿ãŒè¿”ã£ã¦ãã¾ã™ã€‚
ãã®ä»–ã®ãƒ¡ã‚½ãƒƒãƒ‰ã‚‚ä»¥ä¸‹ã®ã‚³ãƒžãƒ³ãƒ‰ã§ç¢ºèªã§ãã¾ã™ã€‚

ç·¨é›† [PUT] /api/tasks/id.format

$ curl -X PUT -d "name=task1 modified" http://localhost:3000/api/tasks/1.xml
$ curl -X PUT -d "name=task1 modified" http://localhost:3000/api/tasks/1.json

å–å¾— [GET] /api/tasks/id.format

$ curl -X GET http://localhost:3000/api/tasks/1.xml
$ curl -X GET http://localhost:3000/api/tasks/1.json

æ¤œç´¢ [GET] /api/search.format

$ curl -X GET -d "kw=task" http://localhost:3000/api/search.xml
$ curl -X GET -d "kw=task" http://localhost:3000/api/search.json

å‰Šé™¤ [DELETE] /api/tasks/id

$ curl -X DELETE http://localhost:3000/api/tasks/1

å®Œæˆï¼

ç´°ã‹ã„ã‚¨ãƒ©ãƒ¼å‡¦ç†ãŒå…¥ã£ã¦ãªã‹ã£ãŸã‚Šã€ãƒ‘ãƒ©ãƒ¡ãƒ¼ã‚¿ã®è¾ºã‚ŠãŒå¾®å¦™ã ã£ãŸã‚Šã—ã¾ã™ãŒã€ãã“ã‚‰è¾ºã‚’èª¿æ•´ã™ã‚Œã°ç«‹æ´¾ãªAPIã®å®Œæˆã§ã™ã€‚

å®Ÿéš›ã®ã‚µãƒ¼ãƒ“ã‚¹ã§ä½¿ãˆã‚‹ã‚ˆã†ã«ã—ã‚ˆã†ã¨ã™ã‚‹ã¨ã€ãƒªã‚½ãƒ¼ã‚¹å˜ä½ã§å¥‡éº—ã«åˆ†å‰²ã§ããªã‹ã£ãŸã‚Šã™ã‚‹ã®ã§è¨è¨ˆãŒçµæ§‹é›£ã—ã„ã®ã§ã™ãŒã€ã‚¹ãƒžãƒ¼ãƒˆãƒ•ã‚©ãƒ³ã‚¢ãƒ—ãƒªãªã©ã‹ã‚‰åˆ©ç”¨ã§ãã‚‹APIã‚’è€ƒãˆãŸå ´åˆã€å¯¾è±¡ã¨ãªã‚‹ãƒªã‚½ãƒ¼ã‚¹ãŒå°‘ãªãã€è¨è¨ˆã‚‚ãã“ã¾ã§è¤‡é›‘ã«ã¯ãªã‚‰ãªã„ãŸã‚ã€ååˆ†ä½¿ãˆã‚‹ã‹ãªãƒ¼ã¨æ€ã„ã¾ã™ã€‚

ç°¡å˜ãªä»•æ§˜

é–‹ç™º

å‹•ä½œç¢ºèª

å®Œæˆï¼

ç°¡å˜ãªä»•æ§˜

å‹•ä½œç¢ºèª

å®Œæˆï¼