Bad practices in Ruby on Rails -

-

i'm looking examples of bad practices in ruby on rails, presentation on not do.

my biggest on use update_attribute on model after_save hook.

object.update_attribute(:only_one_field, "some value")

as open ended question, wait week or 2 , select answer voted answer.

have fun!

  1. too mass-assignment without using attr_protected

  2. use of many plugins - there many gems , rails has sooo many plugins available use in applications. however, when use gem or plugin, understand how code operating (unless @ source, people never do). huge problem. don't know how debug code properly, plugins , gems clash 1 another, security becomes major concern, etc. reason, recommend writing all own code. sure, devise nice authentication, can tell me how works , queries run? have control on optimization? (i'm not picking on devise, showing clear example many ror developers familiar with)/

  3. keeping unwanted pages/actions - many rails developers use scaffolding (because nice), don't bother remove unwanted actions. simple adding :only => [] or :except => [] in routes file, people never do! don't know how many rails sites have been hacked or damaged because people didn't restrict delete action

  4. trying go against ruby - developers come language have difficulties "ruby-way." 1 of notable examples having non-incrementing or non-integer primary keys.

  5. too controller, not enough model - rails had "fat model, skinny controller" principle many developers break.

  6. violations of mvc - accessing params in models, trying hack things controllers, etc.

  7. not changing default rails unique session token (which not random)

  8. writing sloppy code - ruby has great way of making code readable. if come java or php or python, code plain ugly until learn ruby

  9. saying rails "is language" or "i code in rails" - absolutely, positively jerks me wrong way when hear "i code in rails" or "rails favorite language", etc. rails not language. rails framework built on ruby. isn't related security or like, you'll irritate lot of ruby developers if start saying rails language. it's framework.

  10. comparing php , rails - don't it. again, php language, rails framework. comparing them unfair. (you can compare ruby , php or rails , codeignitor or cakephp, etc)

  11. not catching errors - if can go wrong, someone, assume will, , plan ahead

  12. failing optimize queries - absolutely kills me. rails doesn't force know sql php did (before orm's doctrine), rails apps tend slllloooowww unless developer actually aware can optimize query (joins what??)

  13. using many generators - should able create class (controller, model, test, view) without use of generator.

  14. using rails large-scale system - yeah, of aren't going this, ask twitter , github happens if build front , backend in rails... let's twitter uses custom java backend now...

  15. have freaking clue - annoyed because people don't know how has_many relationship works (just 1 of 21914232 examples of dumb rails developers)!

  16. not commenting code

  17. relying on rails instead of sql or dom (javascript/html) perform functions


Comments

Post a Comment

Popular posts from this blog

java - SNMP4J General Variable Binding Error -

-
i trying use snmp4j snmp bulkget. when ever use snmp4j make call returned responseevent error says "general variable binding error" , data returned equal null. to debug: print out, console, exact oid , version number using in snmp4j. use printed out data snmpwalk on command line. valid results. know sending snmp4j correct pdu correct oid, version number, max repititions, etc. i have used snmp4j , code wrote succesffuly monitor other devices years. don't know different time. leaving me stumped. why "general variable binding error?" causes error? ideas debug? can reproduced? if so, first action should using wireshark or microsoft network monitor capture network packets. my guess agent gives generr response, not surprising, http://www.ietf.org/rfc/rfc1157.txt
Read more

windows - Python Service Installation - "Could not find PythonClass entry" -

-
i working on building python service. inducing error, not sure inducing it. ps c:\...> python .\file.py debug debugging service myservice - press ctrl+c stop. error 0xc00000f4 - not find service's pythonclass entry in registry error 1814 - specified resource name cannot found in image file. error 0xc0000080 - not locate module name in python class string (ie, no '.') this error coming pythonservicemessages.mc in pythonwin32. it turns out error result caused exception being thrown , python script dying off.
Read more

Determine if a XmlNode is empty or null in C#? -

-
the following code takes xmlnode data type , populates dataset object xmlnode content. write dataset's content file. public void populatedataset(xmlnode node) { xmlnodereader reader = new xmlnodereader(node); dataset ds = new dataset(); ds.readxml(reader); system.guid guid = system.guid.newguid(); string name = string.format("{0}{1}_{2}.xml", utility.xmloutputpath, utility.xmloutputfilename, guid.tostring()); //need write "node empty" file if xmlnode object empty of null ds.writexml(name, xmlwritemode.ignoreschema); } the problem encountered 1 scenario not write content file. how determine if xmlnode object null or empty? you can check if node parameter null or has innertext or innerxml properties null or empty, when enter method before creating xmlnodereader .
Read more