ActiveHashRelation
Introduction
Simple gem that allows you to manipulate ActiveRecord::Relation using JSON. For instance:
apply_filters(resource, {name: 'RPK', id: [1,2,3,4,5,6,7,8,9], start_date: {leq: "2014-10-19"}, act_status: "ongoing"})
filter a resource based on it's associations:
apply_filters(resource, {updated_at: { geq: "2014-11-2 14:25:04"}, unit: {id: 9})
or even filter a resource based on it's associations' associations:
apply_filters(resource, {updated_at: { geq: "2014-11-2 14:25:04"}, unit: {id: 9, areas: {id: 22} }})
and the list could go on.. Basically your whole db is exposed* there. It's perfect for filtering a collection of resources on APIs.
It should be noted that apply_filters calls ActiveHashRelation::FilterApplier class
underneath with the same params.
*Actually nothing is exposed, but a user could retrieve resources based on unknown attributes (attributes not returned from the API) by brute forcing which might or might not be a security issue. If you don't like that check whitelisting.
New! You can now do aggregation queries.
Installation
Add this line to your application's Gemfile:
gem 'active_hash_relation'
And then execute:
$ bundle
Or install it yourself as:
$ gem install active_hash_relation
How to use
The gem exposes only one method: apply_filters(resource, hash_params, include_associations: true, model: nil). resource is expected to be an ActiveRecord::Relation.
That way, you can add your custom filters before passing the Relation to ActiveHashRelation.
In order to use it you have to include ActiveHashRelation module in your class. For instance in a Rails API controller you would do:
class Api::V1::ResourceController < Api::V1::BaseController
include ActiveHashRelation
def index
resources = apply_filters(Resource.all, params)
= policy_scope(resource)
render json: resources, each_serializer: Api::V1::ResourceSerializer
end
end
The API
Columns
For each param, apply_filters method will search in the model's (derived from the first param, or explicitly defined as the last param) all the record's column names and associations. (filtering based on scopes are not working at the moment but will be supported soon). For each column, if there is such a param, it will apply the filter based on the column type. The following column types are supported:
Primary
You can apply a filter a column which is a primary key by value or using an array like:
{primary_key_column: 5}{primary_key_column: [1,3,4,5,6,7]}
Integer, Float, Decimal, Date, Time or Datetime/Timestamp
You can apply an equality filter:
{example_column: 500}or using a hash as a value you get more options:{example_column: {le: 500}}{example_column: {leq: 500}}{example_column: {ge: 500}}{example_column: {geq: 500}}
Of course you can provide a compination of those like:
{example_column: {geq: 500, le: 1000}}
The same api is for Date, Time or Datetime/Timestamp.
Boolean
The boolean value is converted from string using ActiveRecord's TRUE_VALUES through value_to_boolean method.. So for a value to be true must be one of the following: [true, 1, '1', 't', 'T', 'true', 'TRUE']. Anything else is false.
{example_column: true}{example_column: 0}
String or Text
You can apply an incensitive matching filter (currently working only for Postgres):
{example_column: test}
The above filter will search all records that include test in the example_column field. A better would be nice here, for instance, setting the search sensitive or insensitive, start or end with a string etch
Limit
A limit param defines the number of returned resources. For instance:
{limit: 10}
However I would strongly advice you to use a pagination gem like Kaminari, and use page and per_page params.
Sorting
You can apply sorting using the property and order attributes. For instance:
{sort: {property: 'created_at', order: 'desc'}}
If there is no column named after the property value, sorting is skipped.
Associations
If the association is a belongs_to or has_one, then the hash key name must be in singular. If the association is has_many the attribute must be in plural reflecting the association type. When you have, in your hash, filters for an association, the sub-hash is passed in the association's model. For instance, let's say a user has many microposts and the following filter is applied (could be through an HTTP GET request on controller's index method):
{email: [email protected], microposts: {created_at { leq: 12-9-2014} }
Internally, ActiveHashRelation, extracts {created_at { leq: 12-9-2014} } and runs it on Micropost model. So the final query will look like:
micropost_filter = Micropost.all.where("CREATED_AT =< ?", '12-9-2014'.to_datetime)
User.where(email: '[email protected]').joins(:microposts).merge(micropost_filter)
Scopes
Scopes are supported via a tiny monkeypatch in the ActiveRecord's scope class method which holds the name of each scope. Only scopes that don't accept arguments are supported. The rest could also be supported but it wouldn't make much sense.. If you want to filter based on a scope in a model, the scope names should go under scopes sub-hash. For instance the following:
{ scopes: { planned: true } }
will run the .planned scope on the resource.
Unscoped assotiations
If you have a default scope in your models and you have a good reason to keep that, active_hash_relation provides an option to override it when filtering associations:
#config/initializers/active_hash_relation.rb
ActiveHashRelation.configure do |config|
config.use_unscoped = true
end
You still have to provide the main model active_hash_relation runs as unscoped though.
apply_filters(Video.unscoped.all, {limit: 30, user: {country_code: 'SE'}})
#"SELECT \"videos\".* FROM \"videos\" INNER JOIN \"users\" ON \"users\".\"id\" = \"videos\".\"user_id\" WHERE (users.country_code ILIKE '%GR%') LIMIT 30"
Whitelisting
If you don't want to allow a column/association/scope just remove it from the params hash.
Filter Classes
Sometimes, especially on larger projects, you have specific classes that handle
the input params outside the controllers. You can configure the gem to look for
those classes and call apply_filters which will apply the necessary filters when
iterating over associations.
In an initializer:
#config/initializers/active_hash_relation.rb
ActiveHashRelation.configure do |config|
config.has_filter_classes = true
config.filter_class_prefix = 'Api::V1::'
config.filter_class_suffix = 'Filter'
end
With the above settings, when the association name is resource,
Api::V1::ResourceFilter.new(resource, params[resource]).apply_filters will be
called to apply the filters in resource association.
Aggregation Queries
Sometimes we need to ask the database queries that act on the collection but don't want back an array of elements but a value instead! Now you can do that on an ActiveRecord::Relation by simply calling the aggregations method inside the controller:
aggregations(resource, {
aggregate: {
integer_column: { avg: true, max: true, min: true, sum: true },
float_column: {avg: true, max: true, min: true },
datetime_column: { max: true, min: true }
}
})
and you will get a hash (HashWithIndifferentAccess) back that holds all your aggregations like:
{"float_column"=>{"avg"=>25.5, "max"=>50, "min"=>1},
"integer_column"=>{"avg"=>4.38, "sum"=>219, "max"=>9, "min"=>0},
"datetime_at"=>{"max"=>2015-06-11 20:59:14 UTC, "min"=>2015-06-11 20:59:12 UTC}}
These attributes usually go to the "meta" section of your serializer. In that way it's easy to parse them in the front-end (for ember check here). Please note that you should apply the aggregations after you apply the filters (if there any) but before you apply pagination!
Contributing
- Fork it ( https://github.com/[my-github-username]/active_hash_relation/fork )
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create a new Pull Request