WEBVTT 1 00:00:00.040 --> 00:00:03.799 All right, diving into Rust for web development. 2 00:00:03.399 --> 00:00:05.080 That's a that's a great choice. 3 00:00:05.160 --> 00:00:08.320 It's known for its speed and security, right yeah. Yeah, 4 00:00:08.359 --> 00:00:09.880 And to help us kind of break it all down, 5 00:00:10.080 --> 00:00:14.679 we have excerpts from Rust Web Programming, a hands on 6 00:00:14.800 --> 00:00:19.000 guide Excellent. I'm excited to unpack this. It's a good one, 7 00:00:19.120 --> 00:00:23.160 I think so. Yeah, So Rust is gaining traction, it is. 8 00:00:23.239 --> 00:00:26.320 It is, especially for those high performance web apps for sure. 9 00:00:26.519 --> 00:00:27.320 For sure, it kind of. 10 00:00:27.280 --> 00:00:30.239 Bridges the gap, you know, between that low level control 11 00:00:30.839 --> 00:00:33.960 and high level abstraction. Absolutely, so it seems like this 12 00:00:34.000 --> 00:00:35.960 book is a perfect starting point. 13 00:00:36.280 --> 00:00:38.039 I think so too, especially for. 14 00:00:38.000 --> 00:00:40.880 Those who may have some background and web development already. 15 00:00:41.039 --> 00:00:44.640 Yeah, if you've got HTML, CSS, JavaScript out of your belt, 16 00:00:44.719 --> 00:00:46.159 you're you're going to be in a good spot. 17 00:00:46.320 --> 00:00:49.000 Like the usual suspects for sure. But it also delves 18 00:00:49.039 --> 00:00:51.880 into deploying on AWS, yeah, which I think is a 19 00:00:52.079 --> 00:00:54.759 major win absolutely for practical experience. 20 00:00:54.840 --> 00:00:56.479 You gotta get that real world story. Yeah. 21 00:00:56.520 --> 00:00:59.240 So there's a lot to unpack, there is, But we 22 00:00:59.280 --> 00:01:02.280 can't forget about those core Rust concepts like. 23 00:01:02.320 --> 00:01:05.879 Yeah, like data types, memory management, or handling, right, and 24 00:01:06.239 --> 00:01:08.680 these can be stumbling blocks, especially if you're coming from 25 00:01:08.719 --> 00:01:11.319 a language like Python or JavaScript. Oh for sure, you 26 00:01:11.359 --> 00:01:12.920 know where things are maybe a little bit. 27 00:01:12.799 --> 00:01:17.200 Looser, yeah, a little more forgiving exactly. So how Rust 28 00:01:17.319 --> 00:01:20.239 handles things differently is one of the first things that 29 00:01:20.280 --> 00:01:24.519 grab my attention. Okay, strong typing. This concept of ownership 30 00:01:24.519 --> 00:01:28.400 of variables and memory management without a garbage collector, right, 31 00:01:28.439 --> 00:01:29.560 that's a lot to process. 32 00:01:29.959 --> 00:01:31.480 It is, It is a lot to process, and that's 33 00:01:31.799 --> 00:01:36.480 that's what makes us so unique. This, this ownership system 34 00:01:36.480 --> 00:01:41.120 in particular, is key to Rust's memory safety. Okay, without 35 00:01:41.200 --> 00:01:44.959 needing that garbage collector. Interesting, Yeah, so think of it 36 00:01:45.000 --> 00:01:47.719 this way. Every piece of data in Rust has a 37 00:01:47.760 --> 00:01:50.719 designated owner, and when that owner is no longer needed, 38 00:01:51.400 --> 00:01:54.599 the data is automatically cleaned up. No more memory leaks 39 00:01:54.680 --> 00:01:56.400 or those pesky dangling pointers. 40 00:01:56.640 --> 00:02:00.519 It's like having a built in cleanup crew your code. 41 00:02:00.599 --> 00:02:01.599 That's a great way to put it. 42 00:02:01.560 --> 00:02:04.959 Always making sure things are tidy, yeah and efficient. 43 00:02:04.560 --> 00:02:05.840 Keep everything nice and clean. 44 00:02:06.879 --> 00:02:10.400 But how does that play out in a real world scenario? 45 00:02:10.680 --> 00:02:14.280 Okay, so let's take strings as an example. On page sixteen, 46 00:02:15.400 --> 00:02:19.360 the book shows how a string is created and assigned 47 00:02:19.360 --> 00:02:22.680 to a variable, making that variable the owner. Then if 48 00:02:22.719 --> 00:02:26.120 you pass that string to a function, ownership is transferred. 49 00:02:26.759 --> 00:02:30.719 You're essentially handing over responsibility, gotcha, for that piece of data. 50 00:02:30.960 --> 00:02:35.520 And this prevents situations where multiple parts of your code 51 00:02:35.639 --> 00:02:39.080 might try to modify the same data simultaneously. 52 00:02:38.840 --> 00:02:40.120 Which would cause chaos. 53 00:02:40.439 --> 00:02:41.919 Yeah, it can lead to all sorts of problems. 54 00:02:41.960 --> 00:02:45.120 So it's like having a clear chain of command for 55 00:02:45.319 --> 00:02:48.319 your data absolutely, so everyone knows who's in charge exactly. 56 00:02:48.360 --> 00:02:51.759 And it's visually represented in that diagram on page sixteen 57 00:02:52.159 --> 00:02:54.719 showing the strings relationship to strains, So it really helps 58 00:02:54.759 --> 00:02:56.280 to see it laid out like that. 59 00:02:56.319 --> 00:02:59.599 Definitely, now onto something that always makes me a bit nervous, 60 00:03:00.199 --> 00:03:00.919 error handling. 61 00:03:01.080 --> 00:03:01.719 Oh yeah. 62 00:03:01.840 --> 00:03:05.120 It seems that Rust takes a very unique approach, as 63 00:03:05.159 --> 00:03:08.080 it does with these things called options and results. Oh right, 64 00:03:08.319 --> 00:03:09.879 It kind of sounds a little intimidating. 65 00:03:10.000 --> 00:03:12.120 They do. They do sound a little intimidating at first, 66 00:03:12.599 --> 00:03:18.039 but options and results are Rust's way of forcing you 67 00:03:18.120 --> 00:03:22.479 to confront those potential errors head on, okay, like, really 68 00:03:22.479 --> 00:03:25.159 think about what could go wrong, gotcha. The book uses 69 00:03:25.199 --> 00:03:28.120 a great example on page ten with a hash mat. Okay, 70 00:03:28.199 --> 00:03:33.280 when you try to retrieve a value using a key 71 00:03:33.400 --> 00:03:36.520 that the key might not exist and So instead of 72 00:03:36.560 --> 00:03:40.120 just like returning the value, which could lead to unexpected crashes, 73 00:03:40.479 --> 00:03:41.680 Rust returns an option. 74 00:03:42.439 --> 00:03:45.520 So it's like Rust is saying, hey, be prepared, Yeah, 75 00:03:45.599 --> 00:03:47.520 this might not work out as plans, exactly. 76 00:03:47.560 --> 00:03:49.240 It's a bit more upfront than other. 77 00:03:49.199 --> 00:03:51.960 Languages that kind of let you get away with ignoring 78 00:03:52.000 --> 00:03:53.159 those potential errors. 79 00:03:53.280 --> 00:03:55.120 Right. In those other languages, you can just kind of 80 00:03:55.159 --> 00:03:57.639 like cross your fingers and hope for the best. 81 00:03:57.759 --> 00:03:58.840 Yeah, hope it works. 82 00:03:58.960 --> 00:04:01.759 But Rust is like, nope, let's deal with this right now. 83 00:04:01.840 --> 00:04:02.919 Yeah, let's be explicit. 84 00:04:03.039 --> 00:04:03.240 Yeah. 85 00:04:03.280 --> 00:04:06.759 So that option acts like a container. It either holds 86 00:04:06.759 --> 00:04:10.680 the value you're looking for, or it indicates that it's empty, exact, 87 00:04:10.759 --> 00:04:14.080 and you have to explicitly check and unwrap it to 88 00:04:14.280 --> 00:04:15.280 access that value. 89 00:04:15.560 --> 00:04:18.920 Yep, And that prevents those nasty runtime surprises. 90 00:04:18.959 --> 00:04:20.399 So you're not getting this, like you said. 91 00:04:20.279 --> 00:04:22.160 Crashes exactly, No, no crashes. 92 00:04:22.240 --> 00:04:25.000 Later on down the line, I'm starting to see how 93 00:04:25.000 --> 00:04:31.279 this emphasis on explicit error handling can lead to more 94 00:04:31.360 --> 00:04:32.800 robust code in the long run. 95 00:04:32.959 --> 00:04:35.680 Absolutely, it's like building a safety net, yeah, into your 96 00:04:35.720 --> 00:04:37.040 program from the ground up. 97 00:04:37.160 --> 00:04:40.519 Okay, great, now onto structs and treats. I have to 98 00:04:40.560 --> 00:04:43.120 admit those names sound a little intimidating a little bit. 99 00:04:43.199 --> 00:04:45.800 Yeah they sound a little scary, yeah, but they're actually 100 00:04:45.800 --> 00:04:46.680 pretty straightforward. 101 00:04:46.839 --> 00:04:47.160 Okay. 102 00:04:47.480 --> 00:04:51.600 So think of structs as blueprints, okay for your data. 103 00:04:52.279 --> 00:04:54.720 They let you define the structure of the information you're 104 00:04:54.720 --> 00:04:55.240 working with. 105 00:04:55.480 --> 00:04:56.120 Gotcha. 106 00:04:56.279 --> 00:04:58.639 Traits, on the other hand, are like contracts. 107 00:04:58.800 --> 00:04:59.120 Okay. 108 00:04:59.240 --> 00:05:02.319 They define be behavior that different structs can share. 109 00:05:02.920 --> 00:05:06.079 So if you have a struct that represents a user, okay, 110 00:05:06.199 --> 00:05:08.839 you can have a trait that defines how to authenticate 111 00:05:08.879 --> 00:05:11.879 that user right exactly, okay, and any other struct that 112 00:05:11.920 --> 00:05:17.199 wants to handle authentication would need to implement that trait exactly. 113 00:05:17.319 --> 00:05:21.439 Yeah. And that's how you ensure consistency, yeah, across your code. 114 00:05:21.480 --> 00:05:21.839 Gotcha. 115 00:05:21.959 --> 00:05:25.160 So the book illustrates this concept nicely on pages twenty eight, 116 00:05:25.319 --> 00:05:28.439 thirty and fifty one with the coordinates struct and traits 117 00:05:28.480 --> 00:05:31.120 like get to delete and edit. Cool, and it shows 118 00:05:31.120 --> 00:05:34.199 you how you can add specific functionality to a struck, 119 00:05:34.720 --> 00:05:37.439 making your code more modular and easier to maintain. 120 00:05:37.519 --> 00:05:40.600 So it's about those building blocks, creating those reusable components 121 00:05:40.639 --> 00:05:44.000 that you can mix and match to create more complex functionality. 122 00:05:44.160 --> 00:05:44.600 Exactly. 123 00:05:45.160 --> 00:05:50.240 Awesome. So, speaking of toolboxes, okay, we can't forget about Cargo. 124 00:05:50.279 --> 00:05:52.959 Of course not. Cargo's the best rusts. 125 00:05:52.680 --> 00:05:54.680 Build system and package manager. 126 00:05:55.040 --> 00:05:55.279 Right. 127 00:05:55.560 --> 00:05:59.480 It's like having a personal assistant for your rest projects. Yeah, 128 00:05:59.800 --> 00:06:03.480 it seems like Cargo handles everything. It pretty much does, 129 00:06:03.600 --> 00:06:10.160 from managing dependencies, building your code, running tests, generating documentation. 130 00:06:10.879 --> 00:06:12.319 It's like the Swiss army knife. 131 00:06:12.319 --> 00:06:14.279 It is a Swiss army knife. 132 00:06:13.920 --> 00:06:14.759 Of Rust develops. 133 00:06:15.000 --> 00:06:18.920 You don't have to manually download and install libraries, worry 134 00:06:18.920 --> 00:06:22.639 about compatibility issues, any of that headache inducing stuff. 135 00:06:22.680 --> 00:06:23.079 None of that. 136 00:06:23.480 --> 00:06:25.240 Cargo just handles it all for you. 137 00:06:25.560 --> 00:06:26.759 Yep, it just takes care of it. 138 00:06:27.240 --> 00:06:30.000 Now, let's move on to web frameworks. Okay, the book 139 00:06:30.040 --> 00:06:33.399 focuses on Actics Web, known for its speed. 140 00:06:34.199 --> 00:06:35.199 It is blazing fast. 141 00:06:35.240 --> 00:06:36.800 What makes it so fast, so. 142 00:06:36.800 --> 00:06:43.120 Actis Web leverages Rust's asynchronous capabilities. It uses async programming, 143 00:06:43.639 --> 00:06:46.879 which essentially allows your web app to juggle multiple tasks 144 00:06:47.040 --> 00:06:50.959 concurrently without getting bogged down by waiting. Think of it 145 00:06:51.000 --> 00:06:53.839 like a chef who can prep ingredients for one dish 146 00:06:54.560 --> 00:06:56.079 while another is simmering on the stove. 147 00:06:56.639 --> 00:06:59.480 So instead of waiting for one task to finish before 148 00:06:59.519 --> 00:07:02.360 moving on to the next, exactly, it can keep things moving. 149 00:07:02.439 --> 00:07:04.519 Yep, keep everything flow and smoothly. 150 00:07:04.240 --> 00:07:06.240 Making it much more efficient and responsive. 151 00:07:06.360 --> 00:07:07.600 It's all about that efficiency. 152 00:07:07.959 --> 00:07:11.839 So Rust has built in support for this asynchronous programming 153 00:07:11.920 --> 00:07:15.279 it does, which Actic's Web expertly uses right out of 154 00:07:15.279 --> 00:07:17.759 the box. The book breaks down the structure of an 155 00:07:17.759 --> 00:07:20.879 Actic's web app on page eighty six, Yeah, showing how 156 00:07:21.279 --> 00:07:26.839 views are modularized for different functionalities like authentication or handling 157 00:07:27.279 --> 00:07:28.839 specific data items. 158 00:07:28.959 --> 00:07:31.120 Yeah, it's all about keeping your code nice and organized. 159 00:07:31.160 --> 00:07:34.279 Yeah, it's all about organization and keeping your code clean exactly. 160 00:07:34.360 --> 00:07:37.000 And then we have routes which we see defined on 161 00:07:37.079 --> 00:07:39.720 pages ninety eight and one oh two. Yeah, and these 162 00:07:39.759 --> 00:07:41.680 are like the signposts of your web app. 163 00:07:41.759 --> 00:07:44.680 Yeah, think like the roadmap for your application. 164 00:07:45.040 --> 00:07:49.000 So they direct incoming requests to the appropriate views based. 165 00:07:48.680 --> 00:07:51.879 On the URL exactly. So somebody goes to you know, 166 00:07:52.000 --> 00:07:54.680 slash log in, yeah, it knows to send them to 167 00:07:54.680 --> 00:07:56.480 the log in view. Perfect, things like that. 168 00:07:57.160 --> 00:08:00.519 Speaking of data, I see that actics Web uses Jason 169 00:08:00.800 --> 00:08:02.560 extensively for communication. 170 00:08:02.839 --> 00:08:05.560 Jason is the language of the web. It is, it is, 171 00:08:05.680 --> 00:08:06.199 it really is. 172 00:08:06.360 --> 00:08:07.720 But luckily there's Sarday. 173 00:08:08.040 --> 00:08:09.839 Yes, Sauraday is a life saver. 174 00:08:09.959 --> 00:08:11.759 To simplify that whole process. 175 00:08:11.920 --> 00:08:12.800 Makes it so easy. 176 00:08:12.959 --> 00:08:18.560 Saraday effortlessly converts Rust data structures into JSON format for 177 00:08:18.639 --> 00:08:23.240 sending over the network, and seamlessly converts incoming Jason back 178 00:08:23.279 --> 00:08:24.279 into Rust. 179 00:08:24.040 --> 00:08:27.040 Structs, right back into those nice, neat data structures. 180 00:08:27.120 --> 00:08:30.600 The book showcases this beautifully on page one oh five, 181 00:08:31.160 --> 00:08:34.480 where a j request is handled and the response is 182 00:08:34.519 --> 00:08:38.440 sent back as Jason data, all beautifully structured using a 183 00:08:38.559 --> 00:08:41.120 Toto item struct defined on page one ten. 184 00:08:41.279 --> 00:08:42.279 It's a great example. 185 00:08:42.399 --> 00:08:46.399 Yeah, I think so too. So Rust combines power with elegance. 186 00:08:47.519 --> 00:08:49.720 You get the control and safety of RUSS with the 187 00:08:49.799 --> 00:08:52.919 convenience and readability of well structured code. 188 00:08:52.960 --> 00:08:55.240 And that's what we all want, right we do. We 189 00:08:55.279 --> 00:08:57.879 want our code to be readable and understandable. 190 00:08:58.080 --> 00:09:01.919 So far we've explored how Rust hands data, yeah, manages 191 00:09:02.000 --> 00:09:06.399 memory structures web apps. Right, it's a lot to take in, 192 00:09:06.480 --> 00:09:08.120 but it's pretty impressive. 193 00:09:07.919 --> 00:09:09.320 It is. It is very impressive. 194 00:09:09.399 --> 00:09:11.000 So what's next on a Rust adventure? 195 00:09:11.200 --> 00:09:14.080 Well, no web app is complete without data persistence, right, 196 00:09:14.360 --> 00:09:17.759 We need a way to store information beyond those temporary 197 00:09:17.840 --> 00:09:22.039 JSON files. So for that we have diesel therm for Rust. 198 00:09:22.799 --> 00:09:24.840 All right, let's dive into that in part two. That's 199 00:09:24.879 --> 00:09:28.840 good So, dear listener, take a moment to digest all 200 00:09:28.840 --> 00:09:30.759 this amazing Rust knowledge. 201 00:09:30.919 --> 00:09:32.480 There's a lot to unpack. 202 00:09:32.200 --> 00:09:34.440 There is. We'll be right back with part two. 203 00:09:34.639 --> 00:09:36.120 Yeah, looking forward to it. 204 00:09:36.000 --> 00:09:39.960 To explore diesel and other fascinating aspects of Rust web development. 205 00:09:40.080 --> 00:09:42.919 See you soon, Welcome back. Last time, we got a 206 00:09:42.919 --> 00:09:46.399 glimpse of how Rust approaches you know, memory management and 207 00:09:46.559 --> 00:09:47.279 error handling. 208 00:09:47.519 --> 00:09:49.759 It's a different way of thinking, but I'm starting to 209 00:09:49.840 --> 00:09:52.279 appreciate how it leads to more robust code. 210 00:09:52.320 --> 00:09:54.960 Oh yeah, for sure. Yeah, but let's dive back into 211 00:09:55.000 --> 00:09:57.600 the book and see how those concepts play out in 212 00:09:57.639 --> 00:09:58.360 web development. 213 00:09:58.559 --> 00:09:58.960 So good. 214 00:09:59.159 --> 00:10:03.000 I'm particularly interested in those closures mentioned in the chapter 215 00:10:03.159 --> 00:10:07.559 on handling HTTP requests? What exactly are they? 216 00:10:07.639 --> 00:10:13.600 So? Closures are essentially anonymous functions that have this needability 217 00:10:14.080 --> 00:10:17.759 to capture variables from their surrounding environment. 218 00:10:17.879 --> 00:10:18.799 Do they have a memory? 219 00:10:19.600 --> 00:10:21.639 Yeah, they kind of have a memory. They hold on 220 00:10:21.759 --> 00:10:24.799 to information from the context in which they were created. 221 00:10:24.919 --> 00:10:29.000 Okay, that sounds intriguing, but how does that translate to 222 00:10:29.519 --> 00:10:30.720 building web servers? 223 00:10:30.840 --> 00:10:34.360 So think about how you define routes in a web framework. 224 00:10:34.759 --> 00:10:39.720 You're essentially mapping URLs to specific code that handles those requests. 225 00:10:40.200 --> 00:10:43.600 Closures provide this really concise and flexible way to do this. 226 00:10:44.120 --> 00:10:48.039 Remember that httpserver dot new function in aactics web. 227 00:10:48.159 --> 00:10:50.559 Yeah, that's where you create the web server exactly. 228 00:10:50.720 --> 00:10:53.399 You pass a closure to that function, and that closure 229 00:10:53.440 --> 00:10:55.159 defines the applications logic. 230 00:10:55.480 --> 00:10:57.960 So the closure acts like the brain of the web server. 231 00:10:58.279 --> 00:10:59.639 Yeah, that's a great way to put. 232 00:10:59.559 --> 00:11:02.279 It, decide what to do with each incoming request. 233 00:11:02.679 --> 00:11:07.480 Yeah, it's like the control center okay. And because closures 234 00:11:07.519 --> 00:11:13.480 can capture variables from their surroundings, they can access things 235 00:11:13.559 --> 00:11:17.080 like database connections or configuration settings okay, that are defined 236 00:11:17.159 --> 00:11:18.480 outside the closer itself. 237 00:11:18.559 --> 00:11:21.840 So it's like having everything the server needs readily available. 238 00:11:21.919 --> 00:11:23.960 Exactly. It's all right there at its fingertips. 239 00:11:24.200 --> 00:11:27.159 It seems like closures bring a lot of organization and 240 00:11:27.200 --> 00:11:28.639 efficiency to the table. 241 00:11:28.919 --> 00:11:30.080 They really do, they really do. 242 00:11:30.240 --> 00:11:34.120 But web development also often involves a lot of asynchronous programming. 243 00:11:34.200 --> 00:11:36.519 Oh yeah, it's essential these days. 244 00:11:36.399 --> 00:11:38.120 Which I'm still trying to wrap my head around. 245 00:11:38.279 --> 00:11:40.600 It can be a little mind bending, it can, but 246 00:11:40.679 --> 00:11:42.879 once you get it, it's really powerful. 247 00:11:43.000 --> 00:11:43.279 Okay. 248 00:11:43.360 --> 00:11:46.919 So a secretist programming is all about making your applications 249 00:11:47.519 --> 00:11:50.759 more responsive and efficient. Okay, It allows a program to 250 00:11:50.799 --> 00:11:53.799 work on other things while it's waiting for something like 251 00:11:53.840 --> 00:11:55.440 a network request to complete. 252 00:11:55.559 --> 00:11:59.039 Gotcha. So instead of just sitting idle, right, instead of. 253 00:11:59.000 --> 00:12:01.519 Just blocking and waiting, it can go do other things. 254 00:12:01.559 --> 00:12:03.960 It can multitask exactly, get multitask. 255 00:12:03.600 --> 00:12:05.399 Making better use of resources and time. 256 00:12:05.559 --> 00:12:07.720 Yeah, it's all about maximizing efficiency. 257 00:12:08.080 --> 00:12:10.399 So instead of waiting for like a database query to 258 00:12:10.440 --> 00:12:15.399 finish before moving on exactly, the server can handle other requests. 259 00:12:15.559 --> 00:12:16.600 Yep, keep things moving. 260 00:12:16.679 --> 00:12:18.360 It's like a well coordinated dance. 261 00:12:18.480 --> 00:12:19.639 That's a great way to put it. 262 00:12:19.720 --> 00:12:22.799 So Rust has this built in support. It does it 263 00:12:22.919 --> 00:12:26.960 for asynchronous programming, which acticx web expertly uses. 264 00:12:27.120 --> 00:12:28.799 Yeah, it just takes full advantage of it. 265 00:12:28.840 --> 00:12:31.039 The book does a good job of breaking down the 266 00:12:31.080 --> 00:12:35.120 core concepts of asinc in Rust. Okay, like the async 267 00:12:35.240 --> 00:12:37.440 and awaight keywords. 268 00:12:37.039 --> 00:12:39.120 Right, those are the key players. 269 00:12:38.759 --> 00:12:41.720 And it even explores different ways to run these asynchronous 270 00:12:41.759 --> 00:12:44.960 tasks concurrently using the futures crate. 271 00:12:45.120 --> 00:12:48.120 Yeah, the Future's crate is essential for working with asink 272 00:12:48.159 --> 00:12:48.559 and Rust. 273 00:12:48.600 --> 00:12:50.799 Okay. So now let's shift gears a bit and talk 274 00:12:50.840 --> 00:12:53.600 about managing the different views within our web app. 275 00:12:53.799 --> 00:12:54.639 Right, sounds good? 276 00:12:54.759 --> 00:12:57.919 You know, things like a home page, a log in page, 277 00:12:58.000 --> 00:12:58.879 a user. 278 00:12:58.919 --> 00:13:01.000 Profile, all the different sections. 279 00:13:01.200 --> 00:13:02.600 How does rust approach that? 280 00:13:03.039 --> 00:13:08.200 So Actic's Web encourages modularity by organizing views into separate modules. 281 00:13:09.000 --> 00:13:10.919 So it's all about organization. 282 00:13:10.600 --> 00:13:13.600 Yeah, keeping things tidy as our application grows, right, because 283 00:13:13.639 --> 00:13:16.879 things can get messy quickly, they can if you're not careful. 284 00:13:17.120 --> 00:13:19.399 So the book takes that a step further, okay, and 285 00:13:19.519 --> 00:13:22.399 introduces this concept of view factories. 286 00:13:22.759 --> 00:13:24.360 Oh yeah. View factories are great. 287 00:13:24.200 --> 00:13:28.519 Functions dedicated to configuring and registering your views within the 288 00:13:28.559 --> 00:13:29.360 web application. 289 00:13:29.639 --> 00:13:31.360 Yeah. It's a nice way to centralize things. 290 00:13:31.639 --> 00:13:35.759 So instead of scattering route definitions throughout our code, exactly, 291 00:13:35.879 --> 00:13:37.919 have this centralized. 292 00:13:37.320 --> 00:13:39.519 Place yep, one place to rule them all. 293 00:13:39.720 --> 00:13:40.320 I like that. 294 00:13:40.440 --> 00:13:42.159 It definitely makes things easier to manage. 295 00:13:42.240 --> 00:13:45.879 So these view factories can be as simple or as 296 00:13:45.960 --> 00:13:47.879 complex as you need them to be. 297 00:13:48.240 --> 00:13:50.360 You can tailor them to your specific needs. 298 00:13:50.639 --> 00:13:54.200 The book provides a clear example on page eighty seven, okay, 299 00:13:54.240 --> 00:13:57.159 where a view factory is defined for the auth routs. 300 00:13:57.279 --> 00:14:00.720 All right, so that's handling all your authentic stuff. 301 00:14:00.960 --> 00:14:03.960 It's fascinating how they use the path struct to define 302 00:14:03.960 --> 00:14:08.240 the base URL and then register each individual view using 303 00:14:08.240 --> 00:14:09.600 the service config struct. 304 00:14:09.840 --> 00:14:11.279 Yeah, it's very elegant solution. 305 00:14:11.440 --> 00:14:12.879 That's very structured and elegant. 306 00:14:12.960 --> 00:14:14.720 Yeah. Rust is all about that elegance. 307 00:14:15.279 --> 00:14:19.240 Okay, So let's switch gears again and talk about data handling. 308 00:14:19.399 --> 00:14:22.399 All right, data data data. 309 00:14:22.440 --> 00:14:25.159 They've already seen how handles Jason. 310 00:14:25.000 --> 00:14:26.799 Right, surday is the Jason Master. 311 00:14:26.960 --> 00:14:32.600 But what about extracting data, okay from incoming requests and 312 00:14:32.759 --> 00:14:34.720 sending data back to the client. 313 00:14:34.840 --> 00:14:37.679 So that's that that communication back and forth between the 314 00:14:37.720 --> 00:14:38.960 client and server. 315 00:14:39.240 --> 00:14:41.960 So rust has an elegant solution for this as well. 316 00:14:41.960 --> 00:14:44.159 Of course it does using structs and trades. 317 00:14:44.240 --> 00:14:45.919 Structs and traits to the rescue. 318 00:14:45.960 --> 00:14:48.919 They really are the backbone of rest. We really are 319 00:14:49.000 --> 00:14:52.879 providing this amazing flexibility and organization. 320 00:14:52.519 --> 00:14:53.679 All about structure, it is. 321 00:14:54.080 --> 00:14:56.799 So let's imagine you have a form on your website 322 00:14:57.159 --> 00:15:01.000 for users to enter their name and email address Classic 323 00:15:01.080 --> 00:15:02.759 contact form, act contact form. 324 00:15:02.879 --> 00:15:06.519 Yeah, you would define as struct in rusty to represent 325 00:15:06.559 --> 00:15:10.080 that data with fields for name and email. 326 00:15:10.120 --> 00:15:11.519 Yep, make a nice little struct. 327 00:15:12.039 --> 00:15:16.440 And then in your Arctic's WebView you specify that you 328 00:15:16.559 --> 00:15:20.919 expect this struct as the request body. Gotcha, and Actics 329 00:15:21.039 --> 00:15:25.519 automatically takes care of de serializing the incoming Jason data 330 00:15:26.080 --> 00:15:27.240 into that struct. 331 00:15:26.879 --> 00:15:28.840 It just handles it for you, So no. 332 00:15:28.840 --> 00:15:31.399 More manual parsing, potential errors. 333 00:15:31.440 --> 00:15:32.399 It's all taken care of. 334 00:15:32.559 --> 00:15:34.039 Pactics, just hands you the data. 335 00:15:34.159 --> 00:15:35.200 Yep, nice and neat. 336 00:15:35.159 --> 00:15:37.960 Neatly packaged and ready to use, ready to go. And 337 00:15:38.080 --> 00:15:40.879 sending data back to the client follows a similar approach 338 00:15:41.159 --> 00:15:41.679 pretty much. 339 00:15:41.759 --> 00:15:45.240 Yeah, you can take a restruct, serialize it into Jason 340 00:15:45.360 --> 00:15:47.480 using SORDE, and send it back. 341 00:15:47.279 --> 00:15:49.600 As the response. So again, it's about making that data 342 00:15:49.639 --> 00:15:51.919 exchange smooth and effortless. 343 00:15:51.960 --> 00:15:53.919 Exactly, it should be a seamless process. 344 00:15:54.039 --> 00:15:59.120 It's amazing how Rust manages to make even complex tasks yeah, 345 00:15:59.279 --> 00:16:01.480 feel so streamlined and elegant. 346 00:16:01.639 --> 00:16:02.919 It's a beautiful language. 347 00:16:02.960 --> 00:16:05.720 But there's one crucial aspect we haven't touched upon yet. 348 00:16:05.960 --> 00:16:06.559 Security. 349 00:16:06.639 --> 00:16:08.200 Oh yeah, we can't forget about security. 350 00:16:08.279 --> 00:16:11.519 How do we ensure our web applications are protected from 351 00:16:11.759 --> 00:16:13.360 those malicious attacks? 352 00:16:13.480 --> 00:16:17.279 So security is paramount and Rust lays a really strong 353 00:16:17.360 --> 00:16:21.679 foundation for building secure applications. But we can't just rely 354 00:16:21.759 --> 00:16:24.720 on the language alone. We need to be mindful of 355 00:16:25.039 --> 00:16:28.200 common vulnerabilities and take steps to mitigate them. 356 00:16:28.480 --> 00:16:33.759 So the book covers several security considerations from guarding against 357 00:16:33.799 --> 00:16:39.639 cross site scripting EXSS attacks to implementing proper authentication and 358 00:16:39.679 --> 00:16:40.960 authorization mechanisms. 359 00:16:41.000 --> 00:16:42.240 Yeah, all the important stuff. 360 00:16:42.320 --> 00:16:47.080 So it's a combination of leveraging Rust's strengths and following 361 00:16:47.120 --> 00:16:49.559 those best practices for secure coding. 362 00:16:49.639 --> 00:16:50.559 Yeah, you gotta have both. 363 00:16:50.879 --> 00:16:53.799 So let's start with croft site scripting or EXSS. Right, 364 00:16:54.039 --> 00:16:57.720 it's a common attack where malicious code is injected into 365 00:16:57.759 --> 00:16:59.840 a web page that other users. 366 00:17:00.360 --> 00:17:02.559 Yep, so it's like a way to sneak in code. 367 00:17:02.799 --> 00:17:05.599 Imagine a comment section on a blog, Okay, where users 368 00:17:05.640 --> 00:17:07.039 can submit their HTML. 369 00:17:07.319 --> 00:17:08.759 Oh yeah, that's a classic example. 370 00:17:08.839 --> 00:17:12.440 If an attacker manages to inject a malicious script, they 371 00:17:12.440 --> 00:17:17.000 could potentially steal user data or hijack accounts, all sorts 372 00:17:17.000 --> 00:17:19.960 of bad things. So that's why sanitizing user input is 373 00:17:20.000 --> 00:17:20.880 so crucial. 374 00:17:21.039 --> 00:17:23.519 It is absolutely crucial. You can't trust anything that comes 375 00:17:23.519 --> 00:17:24.279 from the user. 376 00:17:24.200 --> 00:17:25.799 Especially when dealing with HTML. 377 00:17:26.200 --> 00:17:28.480 Yeah, especially EACHTML, because that's where a lot of these 378 00:17:28.519 --> 00:17:29.160 attacks happen. 379 00:17:29.319 --> 00:17:33.519 The book offers best practices for escaping special characters and 380 00:17:33.640 --> 00:17:36.640 ensuring that users submitted content is displayed safely. 381 00:17:36.880 --> 00:17:40.559 Right, So you're essentially neutralizing any potentially harmful code. 382 00:17:40.599 --> 00:17:43.920 It's about treating all incoming data with a healthy dose 383 00:17:43.920 --> 00:17:44.599 of suspicion. 384 00:17:44.759 --> 00:17:46.599 Exactly, trust no one. 385 00:17:46.960 --> 00:17:51.160 Now let's talk about authentication and authorization. Okay, we briefly 386 00:17:51.200 --> 00:17:54.240 mentioned JWT's and password hashing earlier. 387 00:17:54.599 --> 00:17:56.559 Right, those are our security heroes, but how do. 388 00:17:56.519 --> 00:17:59.960 We actually implement those in our rust web app. 389 00:18:00.240 --> 00:18:03.799 So jbt's and password hashing are key components of a 390 00:18:03.839 --> 00:18:08.039 secure authentication system, and the book provides a great walkthrough 391 00:18:08.079 --> 00:18:11.920 on how to implement them, starting with defining a user model. Okay, 392 00:18:12.119 --> 00:18:13.440 much like the to do item model. 393 00:18:13.599 --> 00:18:16.759 Right, so we're creating those rust strucks again exactly. 394 00:18:16.880 --> 00:18:18.359 We love our structure that mirror. 395 00:18:18.200 --> 00:18:21.039 The structure of our data, this time representing a user 396 00:18:21.079 --> 00:18:21.759 in our system. 397 00:18:22.000 --> 00:18:25.559 Right, so you'd have feels for things like username, email address, 398 00:18:25.880 --> 00:18:26.960 and of course the password. 399 00:18:27.119 --> 00:18:30.079 Okay, but with passwords we have to be extra careful. Right. 400 00:18:30.200 --> 00:18:32.079 Oh yeah, passwords are super sensitive. 401 00:18:32.240 --> 00:18:34.680