12.3 Iteration G3: Downloading an eBook 12.1 Iteration G1: Capturing an Order
Demonstrate various respond_to/format options, as well as "through" relations and basic authentication.
Define a "who_bought" member action
edit app/controllers/products_controller.rb
def who_bought
@product = Product.find(params[:id])
@latest_order = @product.orders.order(:updated_at).last
if stale?(@latest_order)
respond_to do |format|
Define an Atom view (using the Atom builder)
edit app/views/products/who_bought.atom.builder
atom_feed do |feed|
feed.title "Who bought #{@product.title}"
feed.updated @latest_order.try(:updated_at)
@product.orders.each do |order|
feed.entry(order) do |entry|
entry.title "Order #{order.id}"
entry.summary type: 'xhtml' do |xhtml|
xhtml.p "Shipped to #{order.address}"
xhtml.table do
xhtml.tr do
xhtml.th 'Product'
xhtml.th 'Quantity'
xhtml.th 'Total Price'
order.line_items.each do |item|
xhtml.tr do
xhtml.td item.product.title
xhtml.td item.quantity
xhtml.td number_to_currency item.total_price
xhtml.tr do
xhtml.th 'total', colspan: 2
xhtml.th number_to_currency \
xhtml.p "Paid by #{order.pay_type}"
entry.author do |author|
author.name order.name
author.email order.email
Add "orders" to the Product class
edit app/models/product.rb
class Product < ActiveRecord::Base
has_many :line_items
has_many :orders, through: :line_items
Add to the routes
edit config/routes.rb
Rails.application.routes.draw do
resources :orders
resources :line_items
resources :carts
get 'store/index'
resources :products do
get :who_bought, on: :member
# The priority is based upon order of creation:
# first created -> highest priority.
# See how all your routes lay out with "rake routes".
# You can have the root of your site routed with "root"
root 'store#index', as: 'store'
# ...
Fetch the Atom feed
curl --max-time 15 --silent --user dave:secret http://localhost:3000/products/2/who_bought.atom
<?xml version="1.0" encoding="UTF-8"?>
<feed xml:lang="en-US" xmlns="http://www.w3.org/2005/Atom">
<link rel="alternate" type="text/html" href="http://localhost:3000"/>
<link rel="self" type="application/atom+xml" href="http://localhost:3000/products/2/who_bought.atom"/>
<title>Who bought CoffeeScript</title>
<link rel="alternate" type="text/html" href="http://localhost:3000/orders/1"/>
<title>Order 1</title>
<summary type="xhtml">
<div xmlns="http://www.w3.org/1999/xhtml">
<p>Shipped to 123 Main St</p>
<th>Total Price</th>
<th colspan="2">total</th>
<p>Paid by Check</p>
<name>Dave Thomas</name>
Look at the headers
curl --max-time 15 --silent --dump - --output /dev/null --user dave:secret http://localhost:3000/products/2/who_bought.atom
HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: "4761a1a15c857872eb0a15e5f902fde3"
Last-Modified: Tue, 18 Nov 2014 22:15:42 GMT
Content-Type: application/atom+xml; charset=utf-8
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 7924f6e9-4bba-4ef5-aebf-a6fdec9baa61
X-Runtime: 0.012827
Transfer-Encoding: chunked
Server: WEBrick/1.3.1 (Ruby/2.1.2/2014-05-08)
Date: Tue, 18 Nov 2014 22:15:42 GMT
Connection: Keep-Alive
curl --max-time 15 --silent --dump - --output /dev/null --user dave:secret http://localhost:3000/products/2/who_bought.atom -H 'If-None-Match: "4761a1a15c857872eb0a15e5f902fde3"'
HTTP/1.1 304 Not Modified
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: "4761a1a15c857872eb0a15e5f902fde3"
Last-Modified: Tue, 18 Nov 2014 22:15:42 GMT
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 95bcd24e-694d-460e-8e18-0af5a4c9164a
X-Runtime: 0.004282
Server: WEBrick/1.3.1 (Ruby/2.1.2/2014-05-08)
Date: Tue, 18 Nov 2014 22:15:42 GMT
Connection: Keep-Alive
curl --max-time 15 --silent --dump - --output /dev/null --user dave:secret http://localhost:3000/products/2/who_bought.atom -H 'If-Modified-Since: Tue, 18 Nov 2014 22:15:42 GMT'
HTTP/1.1 304 Not Modified
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Etag: "4761a1a15c857872eb0a15e5f902fde3"
Last-Modified: Tue, 18 Nov 2014 22:15:42 GMT
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 6a8f4223-71d4-4258-9fd3-ac4b387d396a
X-Runtime: 0.006241
Server: WEBrick/1.3.1 (Ruby/2.1.2/2014-05-08)
Date: Tue, 18 Nov 2014 22:15:42 GMT
Connection: Keep-Alive
12.3 Iteration G3: Downloading an eBook 12.1 Iteration G1: Capturing an Order