tags:

views:

54

answers:

3
Q: 

Elegantly escaping errors

I have statements such as @user = User.find(current_user.id) throughout my app.

Sometimes a user might enter with a nil variable (such as a new user for whom current_user is nil).

I'm sure the dumb way to do this would be to scatter if statements everywhere like...

if current_user.exists?
  @user = User.find(current_user.id)
else
  redirect_to root_url
  ---*or*---
  @user = "new"   # for use with if/case statements later on
end

What is the elegant way to deal with this confusion?

A: 

Assuming the language you're using is object oriented, I would create an object that holds the current user context. By default you could use a CurrentUserContext instance for uknown users that have very limited access.

When users login, you can load all user information and security information into a new instance of CurrentUserContext.

It's just a rough idea, but maybe it helps.

edit: This way you wouldn't need to create all kind of security exception rules... You just assume the security settings of the current context instance and ajust application behaviour according to that.

Laurens Ruijtenberg  2010-07-14 21:11:30
@Laurens: You can find the language from the tags attached to the question, in this case Ruby on Rails. Thanks very much for your answer.
sscirrus  2010-07-15 18:47:56
A: 

To get nils when there is no current user:

@user = current_user && User.find(current_user.id)

To get "new" when there is no current user:

@user = current_user ? User.find(current_user.id) : 'new'

Neither really solves the problem, but now at least it's on one line. For a more general, solution, perhaps you should scrap the current_user variable.

raylu  2010-07-14 21:16:57
A: 

@user = User.find(current_user.id) is a little unnecessary. Mostly because current_user is a User object already, so at the very least you should do @user = current_user, but I would recommend that if it isn't already done by the authentication framework, I would add this to you application controller:

helper_method :current_user

That will make the current_user object available to your views and render the @user object unnecessary.

For handling redirects, I usually have this in my application controller:

before_filter :require_login

def require_login
   current_user || redirect_to(root_url)
end

And then in my controllers that don't want to redirect:

skip_before_filter :require_login

Regarding setting the user to new, I wouldn't do it. I generally like my User objects to be user objects. I would just test for a new user by if current_user where a nil current_user is the same as setting it to 'new'.

I hope this helps

Geoff Lanotte  2010-07-14 21:19:15
Awesome! Thanks a lot Geoff.
sscirrus  2010-07-15 18:49:15

related questions

Is there a rake task for backing up the data in your database?
How to represent cross-model information in MVC?
WYSIWYG editor gem for Rails?
Best Solution For Authentication in Ruby on Rails
Acts-as-readable Rails plugin Issue
Associating source and search keywords with account creation
Any tips on getting Rails to run with an Access back-end?
Being as DRY as possible in a Ruby on Rails App
How Do You Secure database.yml?
What IDE to use for developing in Ruby on Rails on windows?
Is Ruby On Rails ready for the Enterprise?
OpenID authentication in Ruby on Rails
Why Doesn't My Cron Job Work Properly?
Why does sqlite3-ruby-1.2.2 not work on OS X?
Ruby mixins and calling super methods
Why all the Active Record hate?
Haml: how do I set a dymanic class value?
Learning Ruby on Rails any good for Grails?
How to sell Python to a client/boss/person with lots of cash
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Ruby On Rails with Windows Vista - Best Setup?
What is good forum software to add to an existing Rails application?
How do I fix 'Unprocessed view path found' error with ExceptionNotifier plugin in rails 2.1?
Frequent SystemExit in Ruby when making HTTP calls
Implementation of "Remember me" in a Rails application.