Heroku, SSL, and Custom Domains

If you already have a custom domain setup on Heroku and you want to add SSL, you need to change your CNAME to point to the SSL version.

CNAME [your subdomain] => [endpoint-name].herokuapp.com

Should probably be changed to:

CNAME [your subdomain] => [other-endpoint-name].herokussl.com

Some clues to this are that you are seeing the *.herokuapp.com cert being served when you try to access your subdomain via SSL.

Also, I had to remove the subdomain before Heroku would add the SSL cert since I was trying to use the subcustom domain for SSL. If you are putting the SSL on a different subdomain then this is unlikely to affect you. I did initial work without SSL then wanted to add SSL before release.

Cleaning up Rails app signup with Devise and Reform

Recently I was working on a Rails app where every user who signed up also needed to be assigned to an account. Since User and Account are two different models, this can be a bit ugly to handle when Devise expects a single resource. However, by leveraging Reform we can use the Form Object Pattern (#3) to create a RegistrationForm that composes Account and User for registration but doesn’t require creating unnecessary linkages between the actual models.

In this post, I’ll walk through the code on how I made it work. I won’t delve too deeply on actually getting Devise setup since the Devise documentation does a pretty good job of covering that. Just note that you will need to copy the Devise views into your app and you will need a local RegistrationsController that inherits from Devise::RegistrationsController.

The Tests

Let’s start first with the tests. This will show you what we want the final experience to look like.


This is a basic controller test that lets us validate that we can send a post request with the form parameters and the expected objects get created. Please note, even though we will be using a RegistrationForm object, Devise thinks that we will be using a User object and so we need to use :user params to keep Devise happy.

Please note, I am using factory_girl_rails to get the attributes_for methods. Also note the necessity to specify the devise.mapping; this is discussed further down in Some Final Caveats.


This is a basic feature test to verify that the process works as expected for a regular site user. The page after a successful login contains the word “Welcome”.

The Form Object

As stated above, we are using Reform to implement a Form Object so that we don’t need to insert any logic into the User or Account models to support capturing fields for both models on user signup.

First take a look at the code for the entire form, then we’ll walk through it step-by-step.

Standard Reform Stuff

The first half of the code is standard Reform stuff. We are using Compositions for cleaner fields, setting up our properties, and configuring validation.

Satisfying Devise Processes

The #active_for_authentication? and #authenticatable_salt methods are to make Devise happy because it’s trying to treat the RegistrationForm as if it was the User model with all of the Devise authenticatable methods mixed in.

Saving the Record

The save method is the most interesting thing here (combined with #build_resource from the RegistrationsController below). The Devise::RegistrationsController#create method expects to work with a standard ActiveModel object where the model is validated at the same time that it is saved. However, Reform uses the validation process to actually populate data into the object and validate it. Saving (or syncing) is a separate step. Here is a snippet of the Devise #create method to see what Devise is doing

As you can see, Devise expects the output from resource.save to indicate if the record is valid. Since we need to check validity differently with Reform, we have our own #save method in the form which fails fast if the RegistrationForm is not valid, but actually handles the save if it is.

The Controller

This is a fairly straightforward implantation of a custom Devise controller with one twist.

As noted above, Reform uses the validation process to populate the form with data from the params hash. Since the #build_resource method is the only time we can get access to the params hash from Devise, we need to validate there so that we have the params data for later usage. But, #build_resource gets called from both #create and #new; and when it’s called from #new the hash is empty. If we try to validate with an empty hash we’ll show the signup form form with validation errors – definitely not something that is conducive to people signing up.

The View

The view is pretty standard. Only significant thing to note is that we are treating the :company_name field as if it belongs to the resource – which in this case it does. It’s not a field on User, but it is a field on RegistrationForm which is the resource for Devise.

Some Final Caveats

Reform and SimpleForm

The latest version of Reform has some issues with SimpleForm. I’ve been working with the Reform maintainer on a patch but you may need to use my fork of Reform.

RSpec and Devise

In order to get RSpec to work correctly with Devise in controller tests, you will need to edit your spec file and your rails_helper.rb (or spec_helper.rb if you’re running an older RSpec). The Devise How To: Test controllers with Rails 3 and 4 (and RSpec) wiki page has the details.

RSpec Integration tests for Devise User Registration

I’m working on a Rails project and wanted to validate that the Devise User Registration path was working as I expected. A quick google search turned up Devise Integration Tests With rspec which was a good starting point, but there were a few things I wanted to change.

  • Break the test up to have only one assertion per block
  • Update to use RSpec 3 and the expect syntax
  • Use capybara-email methods for clicking email links

That led me to the code below.

Practicing, Teaching, and Sharing – Utility Tracker

You get better at something by practicing. You gain a better understanding by teaching and sharing. I’ll be combining these ideas by blogging my activities practicing the craft of web development. I plan to build a simple project every few months to explore new areas and technologies and grow my knowledge and experience.

My first project will be a utility tracker. I want to be more aware of our utility usage and tracking it will be a good way to increase my awareness.

My plan is to create a single page app that leverages offline storage and syncs with a Rails back end. I’ve thought about adding push notification as a reminder to take measurements and I’m sure that charting would be good to have but the first thing is just to get a simple app out and usable.

Capabilities of my MVP will be:

  1. Select a utility
  2. Enter a value
  3. Save the value
  4. View a list of saved values

Initially it will not be backed by a persistent storage. This let’s me avoid server-side services and any kind of user login. I may add support to export and import data to enable some kind of rudimentary self storage, but my initial goal is to keep it simple.

A followup blog post will discuss the technologies I’m considering and talk through why I’m planning on using what I’m planning on using. I may pick something that’s not as appropriate as something else. I may encounter issues and change my approach. We will have to see as we go. In any case I will keep the repository public and discuss approaches, issues, and resolutions here.

Nevada County Meltdown 2014 – Healthier Together

I’ve been working with SNCHP to create a web app for the 2014 Nevada County Meltdown. We are kicking it off today with an event at the Nevada County Fairgrounds.

With the app, you’ll be able to create an account to track your own weight-loss or get-fit statistics and join teams to work towards your health goals with other people. The app works on your desktop, tablet or phone so that it’s easy to capture exercise details when they happen.

This was launched on a very short timeline so the features are a bit limited but we’ll be adding more throughout the 8 week challenge.

© 2014 Matt Vanderpol

Theme by Anders NorenUp ↑