Home > Others

Rails adds access control for paperclip upload files

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
0 preface files uploaded by paperclip are stored in the public directory of the rails project by default. That is to say, if you can get the URL of the file, you can directly access/download the file, if you want to add access control to the file, you need to change the default upload location of paperclip. 1. Change the default upload position of paperclip. If there is a story class, each story has a cover, and the cover is an image, you can change the model definition as follows: 
 
Class story <activerecord: Base has_attached_file: Cover,: styles =>{: small => "32x32" },: Path => ": rails_root/paperclip /: class/: attachment/: ID/: style/: FILENAME ",: url =>"/paperclip/: Class/: attachment/: ID/: style/: FILENAME "End

To modify the path and URL simultaneously, the URL is used by the rails app to obtain the image rendering page, and the path is the path in the entire host file system relative to the rails app server. The path and URL must be modified simultaneously. Here, set the directory for saving the paperclip upload file to the paperclip directory under the rails project root directory. 2. Add a controller to routes. RB:

 
Get "/paperclip/: Class/: attachment/: ID/: style/: FILENAME", to: "assets # Show"

Add the assets_controller.rb file:

 
Class assetscontroller <applicationcontroller def show CLS = Params [: Class]. singularize. capitalize. constantize asset = Cls. find Params [: Id] send_file asset. send (Params [: attachment]. singularize ). PATH (Params [: style]) endend

In the submitted parameter, Params [: Class] is in the plural form. Generally, the class definition is singular, such as story, and Params [: attachment] is also in the plural form. In the class definition, cover is singular, therefore, they must all be changed to singular. If the attachment defined in the class is in the plural form, the attachment does not need to be converted to a singular value here. Otherwise, a nomethod exception is thrown. Currently, all paperclip resources are controlled by assetscontroller, so it is very convenient to add before_filter, such as identity logon authentication, to it. After identity authentication is added, even if the user obtains the cover URL, the image cannot be accessed directly without logon.

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
network access control for dummies magic quadrant for network access control upload files to wordpress for download html file upload control upload control in html docker for rails developers mandatory access control vs discretionary access control

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More