tags:

views:

225

answers:

4
+1  Q: 

How would you go about making an online IRB that runs in the browser

Im wondering how to go about creating an online IRB that runs in the browser. I have an idea to include an irb console in my blog and give the option for users to send code blocks in my tutorials directly into the irb console so they can play around with it.

_Why did this previously, but of course it is gone now: Cached Version

+1  A: 

That's insanely dangerous. Don't do this. You expose your system to all sorts of vulnerabilities when you allow users to execute arbitrary Ruby code.

Anyway there are some client-side Ruby implementations in JavaScript/Flash. Take a look at HotRuby.

Wahnfrieden  2009-08-27 16:02:18
Dude, calm down. I don't think he's planning to run his online IRB unsandboxed on his accounting records server.
Chuck  2009-08-27 16:45:31
Even a sandboxed IRB on your server is questionable to me. If you're going to implement this, you need to really stay on top of security updates and things like that.
Wahnfrieden  2009-08-27 17:21:24
This is much less risk than your average Web host takes on, and nobody says, "OMG, don't host Web sites! You'll expose your system to all sorts of vulnerabilities!"
Chuck  2009-08-27 19:30:31
Apparently _why's script was found to have security vulnerabilities.
Wahnfrieden  2009-08-27 20:01:58
What? It gives out your social security number?
Chuck  2009-08-27 21:33:10
If you think data access is the only concern with security, you've got a lot to learn...
Wahnfrieden  2009-08-27 22:03:27
Additionally, if he has to ask about this, I doubt he knows well enough how to sandbox and protect his server for securely running untrusted code.
Wahnfrieden  2009-08-27 22:10:02
Again, is it more dangerous than allowing people to host dynamic Web sites on your server?
Chuck  2009-08-27 23:25:43
A: 

I would suspect you run Ruby in a sandbox to prevent "bad" commands being run.

Kris  2009-08-27 16:40:37
+2  A: 

Well, you could use the sandbox that _why created. But you'll need to be able to patch your ruby and it seems to only work on ruby 1.8.5 .

 2009-08-27 16:50:58
Thanks didn't know this code was still publicaly available.
Corban Brook  2009-08-27 16:57:22
It apparently has security vulnerabilities.
Wahnfrieden  2009-08-27 21:24:33
+3  A: 

TryRuby is still available here, with source code at GitHub.

UPDATE: That TryRuby implementation isn't actually working at the moment, apparently due to security concerns. But hopefully you'll be able to learn something from the code.

Martin Owen  2009-08-27 17:07:28

related questions

Best place to get Ruby on Vista up and running as dev environment
How can I encode xml files to xfdl (base64-gzip)?
What is the best way to learn Ruby?
Learning Ruby on Rails any good for Grails?
How to sell Python to a client/boss/person with lots of cash
How do I create a Class using the Singleton Design Pattern in Ruby?
How do I update Ruby Gems from behind a Proxy (ISA-NTLM)
Why Should I Learn Ruby?
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
How do I rake tasks within a ruby script?
Ruby On Rails with Windows Vista - Best Setup?
Mapping values from two array in Ruby
Reverse DNS in Ruby?
Text Editor For Linux (Besides Vi)?
What is good forum software to add to an existing Rails application?
Calling Bash Commands From Ruby
How can I modify .xfdl files? (Update #1)
How do I use (n)curses in Ruby?
Open Source Ruby Projects
How do I fix 'Unprocessed view path found' error with ExceptionNotifier plugin in rails 2.1?
When to use lambda, when to use Proc.new?
Frequent SystemExit in Ruby when making HTTP calls
Implementation of "Remember me" in a Rails application.
.NET Migrations Engine
How do I add existing comments to RDoc in Ruby?