Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cross-Domain Sessions with Ruby on Rails

Avatar for Lukas Fittl Lukas Fittl
January 09, 2014
Programming
1
450

Cross-Domain Sessions with Ruby on Rails

So, how does one write a Rails 4 session store?

Avatar for Lukas Fittl

Lukas Fittl

January 09, 2014
Tweet

More Decks by Lukas Fittl

See All by Lukas Fittl
How to Scale Postgres - Automation, Tuning & Sharding
Avatar for Lukas Fittl lfittl
0
650
What's Missing for Postgres Monitoring
Avatar for Lukas Fittl lfittl
0
240
A Map For Monitoring PostgreSQL
Avatar for Lukas Fittl lfittl
2
380
Monitoring Postgres at Scale
Avatar for Lukas Fittl lfittl
1
430
Monitoring PostgreSQL at Scale
Avatar for Lukas Fittl lfittl
4
260
Postgres Performance for App Developers
Avatar for Lukas Fittl lfittl
2
300
GraphQL ❤ PostgreSQL -- P.S. aka BeatQL
Avatar for Lukas Fittl lfittl
1
590
Hacking PostgreSQL to Gain SQL Parsing Superpowers
Avatar for Lukas Fittl lfittl
1
580
PostgreSQL at a Web Startup
Avatar for Lukas Fittl lfittl
3
590

Other Decks in Programming

See All in Programming
10年もののAPIサーバーにおけるCI/CDの改善の奮闘
Avatar for masato hommaru mbook
0
630
Web Components で実現する Hotwire とフロントエンドフレームワークの橋渡し / Bridging with Web Components
Avatar for Daichi KUDO da1chi
2
1.3k
ててべんす独演会〜Flowの全てを語ります〜
Avatar for てべすてん tbsten
1
220
複雑化したリポジトリをなんとかした話 pipenvからuvによるモノレポ構成への移行
Avatar for Satoshi Kaneyasu satoshi256kbyte
0
630
Local Peer-to-Peer APIはどのように使われていくのか?
Avatar for Hal hal_spidernight
2
410
Reactをクライアントで使わない
Avatar for Yusuke Wada yusukebe
7
6.3k
開発者への寄付をアプリ内課金として実装する時の気の使いどころ
Avatar for Yunosuke Sakai ski
0
330
育てるアーキテクチャ:戦い抜くPythonマイクロサービスの設計と進化戦略
Avatar for fujidomoe fujidomoe
1
150
Model Pollution
Avatar for Henning Schwentner hschwentner
1
180
AIを活用したレシート読み取り機能の開発から得られた実践知 / AI Receipt Scan Practice
Avatar for rockname rockname
2
1.5k
いま中途半端なSwift 6対応をするより、Default ActorやApproachable Concurrencyを有効にしてからでいいんじゃない?
Avatar for yimajo yimajo
2
200
ИИ-Агенты в каждый дом – Алексей Порядин, PythoNN
Avatar for Sobolev Nikita sobolevn
0
140

Featured

See All Featured
Documentation Writing (for coders)
Avatar for Carmen Chung carmenintech
75
5k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
368
20k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
Avatar for soudai sone soudai
PRO
188
55k
A designer walks into a library…
Avatar for Paul Jervis Heath pauljervisheath
208
24k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
Avatar for Chris Coyier chriscoyier
507
140k
The Straight Up "How To Draw Better" Workshop
Avatar for Dennis Kardys denniskardys
237
140k
Dealing with People You Can't Stand - Big Design 2015
Avatar for Cassini Nazir cassininazir
367
27k
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
PRO
23
1.5k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
88
4.8k
Performance Is Good for Brains [We Love Speed 2024]
Avatar for Tammy Everts tammyeverts
12
1.1k
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
330
21k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.5k

Transcript

  1. @LukasFittl Cross-Domain Sessions So, how does one write a Rails

    4 session store?

  2. Biz + UX + Dev @LukasFittl

  3. So, 7 years ago we started this company: commit 2086c55b13426c2834f7060ad3739eed68e891c2

    Author: Esad Hajdarevic <[email protected]> Date: Sun Mar 25 22:47:30 2007 +0000 ! Initial tags+trunk creation git-svn-id: svn://svn.phoria.eu/soup/trunk@1 c0834aa2-9929-0410-9117-c50b2a7daf23

  4. Its still around :) ! But it runs Rails 2.3.

  5. 100+ hours later we’re (almost) on Rails 4.

  6. Soooo... Sessions.

  7. www.soup.io = Login/Logout/etc

  8. mysoup.io = Soup Admin, Create Posts, etc

  9. How can we make that work?

  10. First thought: <iframe>

  11. Actually, thats pretty painful.

  12. What we ended up doing: www.soup.io mysoup.io Memcached / Redis

    SESSION_ID REMOTE_SESSION_ID

  13. Getting a REMOTE_SESSION_ID: http://mysoup.io/
 => http://soup.io/remote/generate?host=mysoup.io
 (requested with main session

    cookie YYY) ! => http://mysoup.io/?sessid=ZZZ SetCookie: soup_session_id=ZZZ ! => http://mysoup.io/ ! remote_session_link_ZZZ => mysoup.io--YYY Memcached / Redis

  14. Lets look at the code :)

  15. @LukasFittl Thank you! pganalyze.com