Tuah
Tuah is a simple, HTTP framework, inspired by BeepBeep with Cowboy as the underlying mechanism.
Easy to extend, comes with session management and continous code compilations to make it a very productive framework to begin with.
Built on the strength of Cowboy and MongoDB, development time is greatly reduced.
Quick Start
-
Create A New Project
Creating a new project is made simpler via the addition of
new_app.shscript.hisham@skrall:tuah$ ./new_app.sh foo Creating new app: foo Creating directory... Creating template files... Creating bootstrap files... Finishing up... Done. Your app is created in ../foo. +----------------------+ | Happy coding! | +----------------------+ hisham@skrall:tuah$
-
The project structure looks like
foo ├── Makefile ├── erlang.mk ├── include │ └── foo.hrl ├── priv │ └── static │ ├── assets/ │ ├── css/ │ ├── dist/ │ └── img │ ├── tuah-small.png │ └── tuah.png ├── rel │ ├── sys.config │ └── vm.args ├── relx ├── relx.config ├── run.sh ├── src │ ├── auth_controller.erl │ ├── baz.app.src │ ├── baz_app.erl │ ├── baz_sup.erl │ ├── home_controller.erl │ └── secret_controller.erl └── templates ├── error.dtl ├── home.dtl ├── login.dtl ├── public.dtl └── register.dtl Start the mongodb server, as the sample application does live registration and all.
-
Run The App
The App
This simple app does user registration, login and logout. Extend this further to your likings.
$ make $ ./run.sh console
View the app at http://localhost:8080
That's it! Extend the app the way you like it by adding more templates, controllers to make a full blown app.
Feel free to fork this. Cheers!
Mongo Backend
Tuah framework comes with mongo client integration. Almost all the APIs are supported. Feel free to browse the source code.
Advanced examples such as regex search, complex find and match are supported. Details query and projection operators can be found at https://docs.mongodb.org/manual/reference/operator/
-
Different notations for Selector/Projector, use which one that you like. I preferred the second notation as it is easier to read and comprehend.
mongo_worker:find(<<"posts">>, {<<"tag">>, <<"general">>, <<"cat">>, <<"News">>}, [{batchsize, 10}, {skip, 20}, {projector, {<<"created_at">>, 1, <<"grpid">>, 1}}]).
mongo_worker:find(<<"posts">>, #{<<"tag">> => <<"general">>, <<"cat">> => <<"News">>}, [{batchsize, 10}, {skip, 20}, {projector, #{<<"created_at">> => 1, <<"grpid">> => 1}}]).
-
Regular expressions are also there.
mongo_worker:find(<<"posts">>, {<<"title">>, #{<<"$regex">> => <<"some*">>, <<"$options">> => <<"i">>}}, [{projector, #{<<"grpid">> => 1, <<"title">> => 1, <<"author.fullname">> => 1}}]).
Routing
Routing is made simple in tuah, where the URL is broken up into multiple items, to be handled by the request handlers.
-
Below is the breakdown of the request URL, and the components it is broken up into:
-
/post/message/20-
Controller:
post_controller.erl -
Action:
<<"message">> -
Args:
[ 20 ]
-
Controller:
-
/user/view/details/100-
Controller:
user_controller.erl -
Action:
<<"view">> -
Args:
[<<"details">>, 100]
-
Controller:
-
/view/message/20?float=false&data=none-
Controller:
view_controller.erl -
Action:
<<"message">> -
Args:
[ 20 ] -
Params:
#{qs_vals => [{<<"float">>, <<"false">>}, {<<"data">>, <<"none">>}],...}
-
Controller:
-
Controllers
All controllers can be defined by using the
tuah_controllerbehavior.-
All handlers are in the form:
handle_request(Method, Action, Args, Params, Req)
-
Request handler parameters:
Method- can be HTTP Method, capitalized (e.g. GET, POST, PUT, DELETE etc.)-
Action- the second parameters in the URL chosen, e.g.-
/user/delete: Action =delete -
/post/view: Action =view
-
-
Args- the list of arguments of the URL-
/user/delete/20/: Args =[20] -
/post/view/977/simple: Args =[ 997, <<"simple">>]
-
-
Params- the request parameters-
qs_vals: contains theGETquery string variables -
qs_body: contains thePOSTquery string variables -
files: contains the file uploads data -
auth: contains the authentication context -
sid: contains the session id
-
Req- the Cowboy Req parameters. It is hardly used, but just in case you want to play around with the Cowboy internals.
Session Context
-
Session context is carried in the
Paramsin each request:-
sid- The session id -
auth- The authentication context
-
Authentication context is to be used sparingly. DO NOT carry sensitive information in the
authcontext. Only username/email address is suffice.
Authentication
Authentication is done using the session context
authandsidin theParamsof request handler.-
Typical authentication procedures are:
handle_request(<<"POST">>, <<"login">> = Action, _Args, Params, _Req) -> PostVals = maps:get(<<"qs_body">>, Params), Username = proplists:get_value(<<"username">>, PostVals), Password = proplists:get_value(<<"password">>, PostVals), case Username =:= <<>> orelse Password =:= <<>> of true -> {render, Action, [{error, <<"All fields are required.">>}]}; _ -> case mongo_worker:find(?DB_USERS, #{<<"username">> => Username}) of {ok, []} -> {render, Action, [{error, <<"Invalid username, or password">>}]}; {ok, [User]} -> ?DEBUG("User= ~p~n", [User]), HashPass = web_util:hash_password(Password), Pass = maps:get(<<"password">>, User), case Pass =/= HashPass of true -> {render, Action, [{error, <<"Invalid username, or password">>}]}; _ -> Sid = maps:get(<<"sid">>, Params), session_worker:set_cookies(Sid, Username), %% redirect, assuming "secret" is defined. {redirect, <<"/secret">>, {cookie, <<"auth">>, Username}} end end end;
-
Logging out can be done by resetting the data in the session
handle_request(<<"GET">>, <<"logout">>, _Args, Params, _Req) -> session_worker:del_cookies(maps:get(<<"sid">>, Params)), {redirect, <<"/">>};
Templates
Templates are defined using
erlydtl, which is a fork of Django Templates.In each project, you should have a custom
errortemplate so that all errors can be shown nicely, and react accordingly.