I have a task that I would like to have run automatically throughout the day without user intervention (guessing I would use a cron job to run a rake task). It will be reading in an RSS feed and using that data to update a database. The application is secure, using https and requiring user certs. So how do you go about having an automated task run with basically the rights of the server, as opposed to passing in user credentials?
I have a task that I would like to have run automatically throughout the day without user intervention (guessing I would use a cron job to run a rake task). It will be reading in an RSS feed and using that data to update a database. The application is secure, using https and requiring user certs. So how do you go about having an automated task run with basically the rights of the server, as opposed to passing in user credentials?
Craig White wrote in post #1031292:
I have a task that I would like to have run automatically throughout the day without user intervention (guessing I would use a cron job to run a rake task). It will be reading in an RSS feed and using that data to update a database. The application is secure, using https and requiring user certs. So how do you go about having an automated task run with basically the rights of the server, as opposed to passing in user credentials?
---- cron tasks run as the user
su - root crontab -e
su - administrator crontab -e
2 different crontabs executed as each user
Craig
Well, the root or administrator user don't have X509 certificates that can be read in. Is there a different way to run code automatically without requiring user credentials, that can only be called by the server (such that a user couldn't hack in by entering the controller/method in the URL)? There's got to be a way of running server-type tasks that you don't want users being able to launch. I'm sure I'm missing something simple here...
Bypass the web server was I'm sure what was meant by cron; just run a script, which might or might not be written in Ruby, and might or might not use ActiveRecord to communicate with the db.
Craig White wrote in post #1031292: > >> I have a task that I would like to have run automatically throughout the >> day without user intervention (guessing I would use a cron job to run a >> rake task). It will be reading in an RSS feed and using that data to >> update a database. The application is secure, using https and requiring >> user certs. So how do you go about having an automated task run with >> basically the rights of the server, as opposed to passing in user >> credentials? > ---- > cron tasks run as the user > > su - root > crontab -e > > su - administrator > crontab -e > > 2 different crontabs executed as each user > > Craig
Well, the root or administrator user don't have X509 certificates that can be read in. Is there a different way to run code automatically without requiring user credentials, that can only be called by the server (such that a user couldn't hack in by entering the controller/method in the URL)? There's got to be a way of running server-type tasks that you don't want users being able to launch. I'm sure I'm missing something simple here...
Craig White wrote in post #1031362:
I don't understand what you are trying to do here. Are you able to run a cron task on the server? If so can you not just do what you need to with a rake task acting directly on the database? Why do you need to get involved in certificates?
Colin
