yogsototh/scratch
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
scratch/output/Scratch/fr/blog/Yesod-tutorial-for-newbies/index.html

429 lines
17 KiB
HTML
Raw Normal View History

Lastest blog entry in progress
2011-12-29 16:05:05 +00:00
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="fr" xml:lang="fr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta name="keywords" content="yesod, haskell, programming, web">
<link rel="shortcut icon" type="image/x-icon" href="/Scratch/img/favicon.ico" />
<link rel="stylesheet" type="text/css" href="/Scratch/assets/css/main.css" />
<link rel="stylesheet" type="text/css" href="/Scratch/css/twilight.css" />
<link rel="stylesheet" type="text/css" href="/Scratch/css/idc.css" />
<link rel="alternate" type="application/rss+xml" title="RSS" href="http://feeds.feedburner.com/yannespositocomfr"/>
<link rel="alternate" lang="fr" xml:lang="fr" title="Tutoriel Yesod pour les nuls" type="text/html" hreflang="fr" href="/Scratch/fr/blog/Yesod-tutorial-for-newbies/" />
<link rel="alternate" lang="en" xml:lang="en" title="Yesod tutorial for newbies" type="text/html" hreflang="en" href="/Scratch/en/blog/Yesod-tutorial-for-newbies/" />
<script type="text/javascript" src="/Scratch/js/jquery-1.3.1.min.js"></script>
<script type="text/javascript" src="/Scratch/js/jquery.cookie.js"></script>
<script type="text/javascript" src="/Scratch/js/index.js"></script>
<!--[if lt IE 9]>
<script src="http://ie7-js.googlecode.com/svn/version/2.1(beta4)/IE9.js"></script>
<![endif]-->
<title>Tutoriel Yesod pour les nuls</title>
</head>
<body lang="fr" class="article">
<script type="text/javascript">// <![CDATA[
document.write('<div id="blackpage"><img src="/Scratch/img/loading.gif" alt="Chargement en cours..."/></div>');
// ]]>
</script>
<div id="content">
<div id="choix">
<div class="return"><a href="#entete">&darr; Menu &darr;</a></div>
<div id="choixlang">
<a href="/Scratch/en/blog/Yesod-tutorial-for-newbies/" onclick="setLanguage('en')">in English</a>
</div>
<div class="flush"></div>
</div>
<div id="titre">
<h1>
Tutoriel Yesod pour les nuls
</h1>
</div>
<div class="flush"></div>
<div class="flush"></div>
<div id="afterheader">
<div class="corps">
<p><img alt="Title image" src="/Scratch/img/blog/Yesod-tutorial-for-newbies/warp-benchmark.png" /></p>
<div class="intro">
<p><span class="sc"><abbr title="Trop long à lire">tlàl</abbr>&nbsp;: </span> Un tutoriel pour yesod.</p>
<blockquote>
<ul id="markdown-toc">
<li><a href="#install">Install</a></li>
<li><a href="#initialization">Initialization</a></li>
<li><a href="#configure-git">Configure git</a></li>
<li><a href="#a-last-point">A last point</a></li>
<li><a href="#protected-echo">Protected echo</a></li>
<li><a href="#protected-input">Protected input</a></li>
</ul>
</blockquote>
</div>
<p>You want the best technology to handle your new web application?
Me too. After searching a lot, it appears if you focus only on technical aspect, Haskell is the way to go.</p>
<p>It is <a href="http://www.yesodweb.com/blog/2011/03/preliminary-warp-cross-language-benchmarks">extremely fast</a>.
It is secure by nature. Many typical programming bug are hard to make in Haskell.
Haskell is also a “high level of abstraction” language. You can organize your code clearly.</p>
<p>Actually there are three web frameworks in Haskell:</p>
<ol>
<li><a href="http://happstack.com">Happstack</a></li>
<li><a href="http://snapframework.com">Snap</a></li>
<li><a href="http://yesodweb.com">Yesod</a></li>
</ol>
<p>It is very hard to choose between these three.
But my feeling goes to Yesod.
It appears to be the one with most part done for you.
As a beginner, lets stay away of the detail as most as possible.</p>
<p>The following tutorial contains some parts.</p>
<ul>
<li>Install → Install haskell and yesod. This can be long, but it is all automatic and this should be straightforward.</li>
<li>Initialization → Initialize the project and configure it.</li>
<li>Configure git → This is not mandatory, but it is a good practice.</li>
<li>Verify the security → A first step to verify the yesod framework protect us from most common errors.</li>
<li>Create a minimal blog → This is the “hello world” of web framework.</li>
<li>Some tuning → Use html5 boilerplate for example.</li>
</ul>
<h2 id="install">Install</h2>
<p>First you need to install <a href="http://www.haskell.org">Haskell</a>. The recommended way to do this is to use the <a href="http://www.haskell.org/platform">Haskell Platform</a>.</p>
<p>Secondly you need to install yesod.</p>
<pre class="twilight">
<span class="Keyword">&gt;</span> cabal update
<span class="Keyword">&gt;</span> cabal install yesod cabal-dev
</pre>
<p>That is all. It should take some time to
do this as cabal will download all
package and then compile them.</p>
<h2 id="initialization">Initialization</h2>
<p>Open a terminal and:</p>
<pre class="twilight">
<span class="Keyword">&gt;</span> yesod init
</pre>
<p>I entered my name, the name of the project was <code>yosog</code> and the name of the Fondation was <code>Yosog</code>, then I chosen <code>sqlite</code>.</p>
<p>Perfect. Now you can start the development cycle:</p>
<pre class="twilight">
<span class="Keyword">&gt;</span> cd yosog
<span class="Keyword">&gt;</span> cabal-dev install <span class="Keyword">&amp;&amp;</span> yesod --dev devel
</pre>
<p>This will compile the entire project.
In the end you should now be able to see your local website by clicking this link:</p>
<p><a href="http://localhost:3000"><code>http://localhost:3000</code></a></p>
<p>Congratulation! You were able to see your yesod powered website.
For the rest of the tutorial, use another terminal and let this one open in a corner to see what occurs.</p>
<h2 id="configure-git">Configure git</h2>
<p>It is not mandatory for a tutorial, but it is a good practice to have a CVS.</p>
<p>To use <code>git</code> copy this <code>.gitignore</code> file into the <code>yosog</code> folder.</p>
<div class="code"><div class="file"><a href="/Scratch/fr/blog/Yesod-tutorial-for-newbies/code/.gitignore"> &#x27A5; .gitignore </a></div><div class="withfile">
<pre class="twilight">
cabal-dev
dist
.static-cache
static/tmp
*.sqlite3
</pre>
</div></div>
<p>Then initialize your git repository:</p>
<pre class="twilight">
<span class="Keyword">&gt;</span> git init .
<span class="Keyword">&gt;</span> git add .
<span class="Keyword">&gt;</span> git commit -a -m <span class="String"><span class="String">&quot;</span>Initial yesod commit<span class="String">&quot;</span></span>
</pre>
<p>Now we are ready to modify our web application.</p>
<h2 id="a-last-point">A last point</h2>
<p>What did we done:</p>
<ol>
<li>We have a directory containing a bunch of files</li>
<li>We have a local web server on port 3000</li>
</ol>
<p>If we modify a file inside this directory, yesod should try
to recompile as fast as possible the site. This way, you should
see the modification you done.</p>
<p>Instead of explaining the role of every file,
lets get straight to the point.</p>
<p>Inside the <code>yosog</code> the important files/directories for this tutorial are:</p>
<ol>
<li><code>config/routes</code></li>
<li><code>Handler/</code></li>
<li><code>templates/</code></li>
<li><code>static/</code></li>
<li><code>config/models</code></li>
</ol>
<p>Obviously:</p>
<ul>
<li><code>config/routes</code> is where youll configure the map URL → Code.</li>
<li><code>Handler/</code> contains the files that will contain the code called when a URL is accessed.</li>
<li><code>templates/</code> contains HTML, JS and CSS templates. </li>
<li><code>static/</code> contains static files.</li>
<li><code>config/models</code> is where youll configure the persistent objects (database tables).</li>
</ul>
<p>With these informations we should be able to do a lot.
Also note until here we dont even typed any line of Haskell.</p>
<h2 id="protected-echo">Protected echo</h2>
<p>To verify the quality of the security of the yesod framework, lets look at a minimal echo application.</p>
<p>Our goal:</p>
<p>Accessing [<code>http://localhost:3000/echo/some%20text</code>], should display “some text” in an %html web page.</p>
<p>Lets take a look at the file <code>config/routes</code>:</p>
<pre class="twilight">
/static StaticR Static getStatic
/auth AuthR Auth getAuth
/favicon.ico FaviconR GET
/robots.txt RobotsR GET
/ RootR GET
</pre>
<p>We want to add a route of the form <code>/echo/[anything]</code> somehow and do some action with this.
We add the following:</p>
<pre>
/echo/#String EchoR GET
</pre>
<p>This line contains three elements: the <span class="sc">url</span> pattern, a handler name, an HTTP method.
I am not particularly fan of the big R in the end of handler names.
But this is the standard convention, then I use it.</p>
<p>If you save <code>config/routes</code>, you should see your terminal in which you launched <code>yesod devel</code> do things.
And certainly break in error.</p>
<pre>
Application.hs:31:1: Not in scope: `getEchoR'
</pre>
<p>Why? Simply because we didnt written the code for the handler <code>EchoR</code>.
Now, lets do this. Edit the file <code>Handler/Root.hs</code> and append this:</p>
<pre class="twilight">
<span class="Entity">getEchoR</span>&nbsp;:: <span class="Constant">String</span> &rarr; <span class="Constant">Handler</span> <span class="Constant">RepHtml</span>
getEchoR theText = <span class="Keyword">do</span>
defaultLayout $ <span class="Keyword">do</span>
[whamlet|&lt;h1&gt;#{theText}|]
</pre>
<p>After saving the file, you should see yesod recompile the application.
When the compilation is finished youll see the message: <code>Starting devel application</code>.
You can now visit: <a href="http://localhost:3000/echo/Yesod%20rocks!"><code>http://localhost:3000/echo/Yesod%20rocks!</code></a></p>
<p>TADA! It works.</p>
<p>Now, lets try to attack our website by entering name with special characters:</p>
<p><a href="http://localhost:3000/echo/&lt;a href=&quot;badlink&quot;&gt;I'm &lt;script&gt;alert(&quot;Bad!&quot;);"><code>http://localhost:3000/echo/&lt;a href="badlink"&gt;I'm &lt;script&gt;alert("Bad!");</code></a></p>
<p>The special characters are protected for us.
If you have a malicious user, he could not hide some bad script inside his name for example.</p>
<p>This is a direct consequence of <em>type safety</em>.
The URL string is put inside a URL type.
Then the interesting part in the URL is put inside a String type. To pass from URL type to String type some transformation are made. For example, replace all “<code>%20</code>” by space characters.
Then to show the String inside an HTML document, the string is put inside an HTML type. Some transformations occurs like replace “<code>&lt;</code>” by “<code>&amp;lt;</code>”.
Thanks to yesod, most of tedious string transformation job is done for us.</p>
<pre class="twilight">
<span class="String"><span class="String">&quot;</span>http://localhost:3000/echo/some%20text&lt;a&gt;<span class="String">&quot;</span></span>&nbsp;:: URL
<span class="String"><span class="String">&quot;</span>some text&lt;a&gt;<span class="String">&quot;</span></span> &nbsp;:: String
<span class="String"><span class="String">&quot;</span>some text &amp;lt;a&amp;gt;<span class="String">&quot;</span></span> &nbsp;:: HTML
</pre>
<p>That was the first very minimal example, and we already
verified Yesod protect us from many common errors.</p>
<p>For a first example it is nice, but we should now organize the code in a better way.</p>
<p>For example, we should have created another file inside the Handler directory.
And we also should have created another template file.</p>
<div style="background-color: #800; color: #FFF; font-weight: bold; border: 2px solid #300; box-shadow: 0 0 60px #300 inset;padding-left: 2em;">
<h2 style="margin: 0 auto; text-align: center">TODO</h2>
<ul><li>Explain how to separate the Handler files.
</li><li>Explain how to use another template.
</li></ul>
</div>
<h2 id="protected-input">Protected input</h2>
<hr />
<div style="background-color: #800; color: #FFF; font-weight: bold; border: 2px solid #300; box-shadow: 0 0 60px #300 inset;padding-left: 2em;">
<h2 style="margin: 0 auto; text-align: center">TODO</h2>
<ul>
<li> Display something, show it is protected.
</li><li> Make the same as before, but with an input.
</li><li> Create a minimal blog system.
</li><li> Change template to html5 boilerplate.
</li><li> Use Authentification.
</li>
</ul>
</div>
</div>
<div id="choixrss">
<a id="rss" href="http://feeds.feedburner.com/yannespositocomfr">
s'abonner
</a>
</div>
<script type="text/javascript">
$(document).ready(function(){
$('#comment').hide();
$('#clickcomment').click(showComments);
});
function showComments() {
$('#comment').show();
$('#clickcomment').fadeOut();
}
document.write('<div id="clickcomment">Commentaires</div>');
</script>
<div class="flush"></div>
<div class="corps" id="comment">
<h2 class="first">commentaires</h2>
<noscript>
Vous devez activer javascript pour commenter.
</noscript>
<script type="text/javascript">
var idcomments_acct = 'a307f0044511ff1b5cfca573fc0a52e7';
var idcomments_post_id = '/Scratch/fr/blog/Yesod-tutorial-for-newbies/';
var idcomments_post_url = 'http://yannesposito.com/Scratch/fr/blog/Yesod-tutorial-for-newbies/';
</script>
<span id="IDCommentsPostTitle" style="display:none"></span>
<script type='text/javascript' src='/Scratch/js/genericCommentWrapperV2.js'></script>
</div>
<div id="entete" class="corps_spaced">
<div id="liens">
<ul><li><a href="/Scratch/fr/">Bienvenue</a></li>
<li><a href="/Scratch/fr/blog/">Blog</a></li>
<li><a href="/Scratch/fr/softwares/">Softwares</a></li>
<li><a href="/Scratch/fr/about/">À propos</a></li></ul>
</div>
<div class="flush"></div>
<hr/>
<div id="next_before_articles">
<div id="previous_articles">
articles précédents
<div class="previous_article">
<a href="/Scratch/fr/blog/SVG-and-m4-fractals/"><span class="nicer">«</span>&nbsp;Accroître le pouvoir des languages déficients.</a>
</div>
<div class="previous_article">
<a href="/Scratch/fr/blog/Yesod-excellent-ideas/"><span class="nicer">«</span>&nbsp;Les idées de yesod</a>
</div>
<div class="previous_article">
<a href="/Scratch/fr/blog/programming-language-experience/"><span class="nicer">«</span>&nbsp;Mon expérience avec les languages de programmation</a>
</div>
</div>
<div id="next_articles">
articles suivants
</div>
<div class="flush"></div>
</div>
</div>
<div id="bottom">
<div>
<a rel="license" href="http://creativecommons.org/licenses/by-sa/3.0/deed.fr">Droits de reproduction ©, Yann Esposito</a>
</div>
<div id="lastmod">
Écrit le : 28/12/2011
modifié le : 29/12/2011
</div>
<div>
Site entièrement réalisé avec
<a href="http://www.vim.org">Vim</a>
et
<a href="http://nanoc.stoneship.org">nanoc</a>
</div>
<div>
<a href="/Scratch/fr/validation/">Validation</a>
<a href="http://validator.w3.org/check?uri=referer"> [xhtml] </a>
.
<a href="http://jigsaw.w3.org/css-validator/check/referer?profile=css3"> [css] </a>
.
<a href="http://validator.w3.org/feed/check.cgi?url=http%3A//yannesposito.com/Scratch/fr/blog/feed/feed.xml">[rss]</a>
</div>
</div>
<div class="clear"></div>
</div>
</body>
</html>
Reference in a new issue Copy permalink