Maybe could be helpful or we can just use stacktrace, but here a solution to handle questions from users. Already registered as lelylan/[email protected].

https://goresponsa.com/en/dashboard

Write a Javascript client library. Take some inspiration from libraries that you can find on node toolbox

Start thinking about a way to visualize your data that can be enough free to be built from the community. Some JS libraries can be used to define some basic widgets (for types and for devices), but at the same time we need to define also a theme system so that it can be easy enough to personalize all styles with specific icons and color sets.

This should be open-source and could be used to build up a community around.

Right now the data we save when properties change and functions are executed is not what we want. We save only the value, but we need to send also the URI and the ID.

Lelylan Market store must be able to collect an high number of services coming from outside. We shouldn't limit the capability of third party to create new solutions. This means that somebody add an application to the market store by its own and we will simple validate the acceptance of the application. This should be pretty flexible and let us give a minimal control. A small inspiration can be given by the add on console of heroic. It will be quite important to have different type of organizations (stars, new, categories). Learn more from existing stores.

Actually an app on the market store is a registered app with few more logics. When clicking on the application icon you go to the OAuth page where you grant the access for the specific application. Together with this, the only difference lives in the capability of the market store. You do not change anything. The app automatically set a set of webhooks for the application through the APIs. This means that the app store is just an interface to the accepted applications. It will be the new authorized applications page, with some more features.

When the user accepts the application you get a confirmation that the process has been successfully added. At this point you have a link to the dashboard and you can highlight the new link to the visual part of the application if existing.

And here comes the visual part. An application can be made in two ways. The first one logical and the second one is visual. The logical one will only use the webhooks. The visual one will give you a new User Experience. This user experience lives in another website and we should not care about this. But here raises a linking problem. We need to uniform the User interface, as little as we can, but giving a fast way to move between all existing APPS.

Actually we can give an header. This header contains all common links like

• Home
• Admin
• Logout
• Applications

Between those you see applications. This page will redirect the user to the authorized apps (filtered through visualization). Through this page I'll be able then to move to other apps. This is a 2 click system and it would be nice to have a list of all accessible UI on the top menu. For the first step keep using common parts.

This system should be also available to build a single (or defined set) of products market. Here the thing starts becoming complicated as we set a number of applications only for a set of devices (each app can have all, some devices, and it should be listed on the app page).

This means that when I'm in the dashboard of Lelylan I see all the apps and for each app all the devices associated. But when I access the market store defined for another product, I should filter only the apps for that market store and for the specific device(s).

Think at this scenario. I've Lelylan where I've plenty of devices and plenty of applications added. For each application I've a list of devices (probably this list is given from a set of tokens, also for the same app? Do not overcomplicate!!) Then I go to light.me. In here I register to Lelylan and add my light. Then I go to the market place and I see my light. In here I see also the possible applications I can use for this light and I decide which ones to add. This means that I do not see any of the other applications in here, but when I go back to Lelylan I see also this device with the added applications.

The market store definition is quite critical and complex. Before starting making it take at least a couple of days and split its definition in several mailstones. We need to be able to provide a basic service, and then we can add more and more functionalities. This implementation requires at least a couple of monist.

Add resource_owner_id to all models. Remove created_from.

• location
• type
• device

Find a way to limit access on data saved. This could be perfect to let people experiment but it looks pretty complex as we use different databases. I guess the main limit is related to the history and to the consumptions.

Cleanup the settings file in testing.

Add a basic demo where you show a fake set of devices that people can use. It would be nice if in there we could use a widget system that everyone can contribute at.

Write to Melissa to meet and give her a full set of icons she should draw, maybe with the help of Ale. Start writing a Docs where to define all of them so that we have an idea of what we need.

Right now the URI validator we have created works both for one URI (String) and a list of URIs (Array). To make the validator complete you must be able to set an optional parameter to set the fact that the field can accept URIs or an URI.

Something like this should work.
validates list: uri: {array: true} # accept list of uris

This is needed because if later on we want to make a check on the URI to extract something we could have some errors and it would be better to find it before. If we do not have this validation option we could send an array of URIs where only one can be accepted and have unexpected errors.

Remove invitation system.

To remove it find out all files with the key OPEN_SIGNUP. They will get you little explanation on what can be done. Mainly the sections are:

• model :inevitable key and fields.
• routing, controller and views to delete.
• remove tests related.
• add signup tests.
• add signup links.

Set all services name to plural. Devices, Types, Locations and People.

This is a complex system. You could have the need related to the fact that when a webhook 'halt' the execution, the physical change shouldn't be made.

Actually this is not easy to make and could delay the execution of lots of commands. A probably better and simple solution could be to check one service at a time in an esier way. I first run the rule engine, and then eventually apply the physical change. Things are similar.

Find the simplest solution.

Add HTTPS support.

Apply shared examples on all controllers on all services.

Set the 500 family pages as JSON.

Rethink at how to structure the scopes. Right now we are using read+write but its a bit too general, also in vision of adding new resources, we should make it much more modular.

• Devices: devices.read, devices.write
• Devices: locations.read, location.write

Plus ability to select devices and locations to access at. Right now we handle only devices, but it would be nice to let people see only specific locations. For example if I have 10 houses I do not want anyone know I've all of them. Think really well about this.

A first step is to define scopes and use only devices filter.
A second step is to understand how to filter also locations.

Add issue to set json errors as json and not as message. This should be possible using Mongoid 3.1.

Start thinking at how to handle a more advanced authorisation solution where a device functionalities is accessible by many users, which in turns are able to forward the authorisation to other people.

Explore.

• people
• location
• types
• devices

Improve error handling using the ErrorResponse class defined in Doorkeeper. Reorganize also the classes you use and apply the concern concept on people, location, types and devices

Make return a presonalized 401 error response in JSON from Doorkeeper.

• people
• location
• types
• devices

Remember to keep big attention on how you guide the user. As Cosm shows in its quickstart remember to give some easy tool. As RWW said, we must make this for everyone.

We found out a strange behavior on errors. While creating a type if I send a category with not valid uris it should raise an error but it does not. It just does not connect anything in the category connection. This is really strange as validations are active and on model tests are working just fine. Find out why it act like this.

Start thinking at how to handle a more advanced authorisation solution where a device functionalities is accessible by many users, which in turns are able to forward the authorisation to other people.

Explore.

Add CORS rack middleware to all API services and let the ability to access to all services from everywhere. We need maximum flexibility in the beginning.

When there is a validation error the JSON that you get back returns encoded in a strange way, like it it was not understanding it was JSON. This creates problem to show the JSON in the 422 rendering because there is no way to show the JSON, as it gets broken from the methods I've made to clean it up. You can find the code at the file helper_error.rb, function clean_body. The problem is well explained in stackoverflow.

Apply on people, location, type and device services.

All resources should have the resource owner uri in its representation.
Device should also have the creator uri.

Add limit to the possible request. By default a user get a specific limit but through an API it should be possible (for admins) to access and change it. Then, going forward in time, just think at the payment service.

Make a gem for validation uri and validation ownership. In this way you have them easily tested and working smoothly.
If you use them in into initializers you could die waiting for the tests to run.

Find the best way to add validation at inputs that are not directly binded to model fields. This should be a clean way to validate URIs and more, as we need to check different stuff.

Add webhooks.

Use attr_protected instead of attr_accessible.

Set all services name to plural. Devices, Types, Locations and People.

Think at a structure to build a market store. We need to think at two main scenarios.

• One where applications lives into Lelylan.
• One where applications can live into an independent service that can include some of them. This is really important if we want to build a smart light for Kickstarter and let people add any kind of plugin. If they add it in Lelylan they get also to know the platform.

Think more at the structure they are built and experiment the usage of MongoDB copped collections (see Heroku article).

MongoDB capped collections let MongoDb push data to all listeners. Capped collections are high performance, with the simple tradeoff about their size and about the impossibility of not being shareable. This could be a basic flow to use.

• Ruby save the property changes on a capped collection.
• Listening Node.js webhooks service send a request to all connected services.
• Listening Node.js physical device service send a request to the physical device.
• Listening websocket app send realtime updates to the client.

At this point

• Node.js webhooks service call all service. If None of those services are blocking you can directly call the physical device. If some of those services are blocking you need to organize a simple protocol to block physical changes and to eventually store previous state (you should pass the link at the history resource before the last change). This is really important for interconnecting services such as rule engine. They could halt a request, and for this reason we can't call the physical device service directly.
• Node.js physical device when receiving the physical device response updates the device representation. Actually this service could be a webhook uri that is activated in the moment you have a physical device. Think about this possibility. It looks quite good and modulable.
• Node.js websocket always send a notification for every change is happening to the physical world.

Add caching. Read documentation in the tech doc.

• HTTP caching
• fragment caching + action caching

Add a standard README to all services. It's also needed a docs documenting the structure of the services and their key points.

With rails 3 exception handling is becoming more complex. As some functionalities are defined into middleware you can not catch them using rescue_from. Right now there is not a proper solutions. We need to find (or wait for) a good one mainly to be able to catch malformed JSON and give a notification to the final user.

Add index to mongoid (people, types and devices) and to postgres (location).

Think at some diagnostic services that can be used by the creator of the device to monitor the device status. This could be a service you sell to manufacturers, so think about.

Test on production

• /activation services
• /devices/:id/accesses.
• Check all signatures (sent from physical and sent from /accesses)

Build a physical node using MQTT and one using WebSocket.

Think at the implementation of a physical node (or whatever you call it) and start building one. Before think about the communication flow with Lelylan and then start making it. First, it could be easier to use Pusher for this. It already exists. Second start to build something new with Erlang (Pilu) od Mosquitto (seems to have pretty good open-source project and its under heavy development).

Add and learn how to build a streaming channel.

This article states how we do not need to use capybara to test our API, as what we do is simply using a 'dirty version of rack test' when using capybara for API. Really interesting. Read it.

http://www.elabs.se/blog/34-capybara-and-testing-apis

Add New Relic, Pingdom and Blits. Learn really well how to use them and fine tune your application to be able to improve the throughput to the maximum allowed level.

Define a rule engine. Check the Cosm study as we put some lines on how to make it.