Reputation: 849
Create Rails database entry for model with external application
I am creating a Rails app that will have User and File models. A user "has many" files. The catch is that the files are never created by the user explicitly through the web application. I am building desktop applications to monitor the filesystem (think Dropbox) and create/update File records.
Is the correct way to do this to have the desktop applications make the appropriate POST requests to my Rails application and just not supply a view for creating File records in the web app.
Also, would it be sufficiently secure to require a user-specific security token to be sent in the POST request made by the desktop applications to authenticate a user's file record?
Upvotes: 1
Views: 154
Answers (1)
Reputation: 7399
It sounds like you're on the right track. Your Rails app is essentially exposing an API that takes an uploaded file and created the associated model on the user's behalf to track the file metadata. You could still expose a view in your webapp to edit file metadata and delete files, perhaps.
Security is a whole topic of its own. At a minimum, you'll probably want all communication to happen over SSL, and expire the token on a set timeout. Devise can do this for you with their TokenAuthenticatable implementation. You'll probably also want to limit file upload size and throttle requests.
Upvotes: 1
Related Questions
- Connect Rails Application to already existing MySql Database
- Rails gem - DB web interface
- Connect Rails Application To Existing Database
- Database in Rails application
- access an existing database that is created and used by another application
- Rails - creating a database entry
- How to create a new database from within a Rails app?
- Creating a Ruby gem to Access a Second Database from Multiple Rails Applications
- Rails, Making a Rails form to save a record to an external db
- Rails + foreign app