Welcome to entry 7 on building your first Model-Glue application. We are nearing the end (I hope) and my plan is to wrap stuff up by entry 10. Stick with me and hopefully this will be a nice little application. This entry is quite large, so you may want to print it out to make it a bit easier to read. In the last entry, I talked about layout and how it could be applied to a Model-Glue application. In this entry I am going to focus on the galleries, which were the main reason for building this application. Let's start off by just discussing what a photo gallery is, including it's properties and methods.
  • A gallery should have a name. This is a simple string like "Pictures on a Star Destroyer."
  • A gallery should have access permissions. As I had mentioned when starting this application, my inspiration for this application was Flickr, which lets you optionally share images. What I didn't like was how it required you to have your friends register if they wanted to see your non-public images. So to address this, I'm going to use the following rules:
    1. A gallery will have three settings for access: public (anyone in the world can see it), password (anyone with a password can see it), and private (only you can see it).
    2. The password will be unique per gallery, although most folks will probably just use one password for all.
  • A gallery will have an owner. We will use the username of the owner to identify the person who created the gallery.
  • That's it. One thing I typically do in most other applications (whether Model-Glue or not) is also store a bit of meta-information about data, like when it was created, whether it is active or not, etc. Again though, I'm keeping things simple for now.

To recap, here are the properties I'm using and their database types/settings:

idThis is a primary key integer that auto increments.
nameThis is a string. Null is not allowed.
ispublic, ispassword, isprivateThere are numerous different ways you can do security settings in a database. I used a simple set of flags.
passwordOptional string for the password.
usernameThis is a pointer back to the user who created the gallery.

For more detail on the tables, see the SQL file I've included in the zip. This is found in the Download link at the bottom of the article. Just to be clear... the way I designed the database has zero to do with Model-Glue. It's just a personal decision. It could be better. Again - I'm trying to keep things simple.

So that kind of covers what properties are galleries will have. As for the methods, we will have, pretty much, a mirror of what we have for users: Create, Read, Update, and Delete (CRUD). We will build a bean, a DAO (Data Access Object) and a Gateway, just like we did for users. I'm not going to show all the code here, but will talk a bit about what I did. I started off simply making copy of my three CFCs for users. I then renamed them appropriately, and started on my bean. (I always work on the bean, the DAO, and then the gateway in that order. It just seems to make sense.) I find that working on these CFCs can be a bit tiring at times. What I really need to do is get more into Reactor, which saves you from this kind of grunt work. I haven't done that yet, but plan to do so soon. At the least, I've created a nice little snippet in CFEclipse so I can at least make writing my getters and setters for the bean simpler.

Because a lot of the code for the CFCs isn't that interesting, I'm not going to display them here. I will discuss one interesting portion of the CFC. In my gateway CFC, I have a method to get the galleries. This is a default "get everything in a query" type method. However, I know off the bat that I'm going to be needing a method to get the galleries for one user at a time. Let's take a quick look at how I handled that:

<cffunction name="getGalleries" access="public" returnType="query" output="false"> <cfargument name="username" type="string" required="false"> <cfset var q = "">
&lt;cfquery name="q" datasource="#variables.dsn#"&gt;
select		id, name, ispublic, ispassword, isprivate, password, useridfk
from		galleries
where		1=1
&lt;cfif structKeyExists(arguments, "username")&gt;
and			username = &lt;cfqueryparam cfsqltype="cf_sql_varchar" value="#arguments.username#" maxlength="50"&gt;
order by 	name asc

&lt;cfreturn q&gt;


<cffunction name="getGalleriesForUser" access="public" returnType="query" output="false"> <cfargument name="username" type="string" required="true">

&lt;cfreturn getGalleries(arguments.username)&gt;


The getGalleries method, in general, is a simple select all type function. Notice however that I allow for an optional username argument. If passed in, the result set will be limited to galleries owned by that user. I could stop there. My Model-Glue controller could pass that argument to getGalleries and that would work just fine. However, I decided to make a "helper" method, getGalleriesForUser, that will act as a wrapper. This is nice for multiple reasons. One big one is that it plans for the future. Right now my getGalleries is pretty simple, so adding on an optional username argument was no big deal. What if that changes? I may need to rip this code out and make getGalleriesForUser more complex. Since my model is already using that method name, then nothing needs to change there.

Let me be honest here. If you look at my projects you will see me sometimes using this, and sometimes not using it. It's one of those things where I go back and forth on in terms of what makes sense.

Ok, now it's time to hook up this new part of my model to the controller. If you visited the demo site, you remember that we had a link already for Galleries. It linked to this url: #viewstate.getValue("myself")#galleries. To make this work, let's add a galleries event to our Model-Glue XML file:

<event-handler name="Galleries"> <broadcasts> <message name="getAuthenticated" /> <message name="getMyGalleries" /> </broadcasts> <views> <include name="body" template="dspGalleries.cfm" /> <include name="main" template="dspTemplate.cfm" /> </views> <results> <result name="notAuthenticated" do="Logon" /> </results> </event-handler>

This event is a copy of the Home event with a slight modification. Like the Home event, I need to ensure you are logged on. So the first message broadcast is to get your authentication status. Next I broadcast a message to get your galleries. The next tweak is in the views where I specify the dspGalleries.cfm file. This will display our galleries. Now let's add the getMyGalleries call to the controller:

<message-listener message="getMyGalleries" function="getMyGalleries" />

(Hopefully this is getting a bit easier for you now.) Next I add this logic to the controller. First lets start with getMyGalleries:

<cffunction name="getMyGalleries" access="public" returntype="void" output="false" hint="I get a user's galleries."> <cfargument name="event" type="ModelGlue.Core.Event" required="true"> <cfset var galleries = "">
&lt;cfif isAuthenticated()&gt;
	&lt;cfset galleries = variables.galleryGateway.getGalleriesForUser(session.userBean.getUsername())&gt;
	&lt;cfset arguments.event.setValue("galleries", galleries)&gt;


Nothing too complex here. Note that I created a new isAuthenticated method. I'll discuss that in a section at the end. I then simply call the getGalleriesForUser method I showed above. I set the value in the event so it will be available in the view. Nice and simple, right? In case you are wondering, variables.galleryGateway simply comes from the init method of my controller. I've updated it to make an instance of both the gallery DAO and gallery gateway. Now let's display the galleries. This is done in dspGalleries.cfm. I wanted to use one simple page to handle both showing your galleries as well as displaying a form to quickly add a gallery. So for example, the view starts with:

<cfset viewState.setValue("title", "Your Galleries")> <cfset galleries = viewState.getValue("galleries")>

This handles setting the title and grabbing the current galleries. Then I get the default values for the form.

<!--- Used for form. ---> <cfset name = viewState.getValue("name", "")> <cfset access = viewState.getValue("access", "")> <cfset password = viewState.getValue("password", "")>

<!--- grab potential errors ---> <cfset errors = viewState.getValue("errors")>

This is a bit different than how I did the register form. Instead of doing cfparam for form variables, I'm checking the view state for the form variables instead. Remember that Model-Glue will automatically pick up on those variables and add them to the view state. I want to thank Dave Carabetta for pointing this out in an earlier entry. I agree with him - it is better practice.

After this is a simple dump of the query and a form for adding the gallery. Since this is generic HTML I'll not bother pasting it all into this already too-long entry. I do want to show the actual form:

<form action="#viewstate.getValue("myself")#addgallery" method="post"> <table> <tr> <td>gallery name:</td> <td><input type="text" name="name" value="#name#"></td> </tr> <tr> <td>access:</td> <td> <select name="access"> <option value="public" <cfif access is "public">selected</cfif>>Anyone can see it (public)</option> <option value="password" <cfif access is "password">selected</cfif>>A password is required (enter it below)</option> <option value="private" <cfif access is "private">selected</cfif>>For your eyes only! (private)</option> </select> </td> </tr> <tr> <td>password:</td> <td><input type="text" name="password" value="#password#"></td> </tr> <tr> <td> </td> <td><input type="submit" name="submit" value="Create Gallery"></td> </tr> </table> </form>

The only thing special here is the access. As you know, I am using 3 flags to handle how the access done. That's the back end. But obviously I want to make it simple for the user. So in my view I'm just using one "access" drop down. The controller will be intelligent enough to translate this into the right access settings. So once again, I return back to my config file and add the event:

<event-handler name="AddGallery"> <broadcasts> <message name="getAuthenticated" /> <message name="addgallery" /> </broadcasts> <results> <result name="notAuthenticated" do="Logon" /> <result do="Galleries" /> </results> </event-handler>

Nothing special here. But notice that I go right back to galleries. As I mentioned, the add form is on the same page where you view the galleries. The event calls addGallery, which I added to my controller and this is what I used in my controller:

<cffunction name="addGallery" access="public" returntype="void" output="false" hint="I add a gallery."> <cfargument name="event" type="ModelGlue.Core.Event" required="true">
&lt;cfset var bean = arguments.event.makeEventBean("model.galleryBean") /&gt;
&lt;cfset var errors = ""&gt;
&lt;!--- Translate Access setting ---&gt;
&lt;cfset bean.setIsPublic(false)&gt;
&lt;cfset bean.setIsPassword(false)&gt;
&lt;cfset bean.setIsPrivate(false)&gt;
&lt;cfset bean.setUsername(session.userbean.getUsername())&gt;

&lt;cfswitch expression="#event.getValue("access")#"&gt;
	&lt;cfcase value="public"&gt;
		&lt;cfset bean.setIsPublic(true)&gt;
		&lt;cfset bean.setPassword("")&gt;

	&lt;cfcase value="private"&gt;
		&lt;cfset bean.setIsPrivate(true)&gt;
		&lt;cfset bean.setPassword("")&gt;
	&lt;cfcase value="password"&gt;
		&lt;cfset bean.setIsPassword(true)&gt;


&lt;cfset errors = bean.validate()&gt;	
&lt;cfif not arrayLen(errors)&gt;
	&lt;cfset galleryDAO.create(bean)&gt;	
	&lt;!--- clear values ---&gt;
	&lt;cfset arguments.event.setValue("name", "")&gt;
	&lt;cfset arguments.event.setValue("access", "")&gt;
	&lt;cfset arguments.event.setValue("password", "")&gt;
	&lt;cfset arguments.event.setValue("errors", errors) /&gt;


Pretty big and there are some interesting things going on here, so let's take it slow. First off, we make use of the makeEventBean function. I mentioned this during the registration process. It's a nice short cut to copy event data to a bean. However, in this case, our gallery bean does not match up exactly with our form. Specifically the security settings. Notice that I set all the access flags to false. I then use a switch statement to specifically flip the flag depending on what the user had selected. Also note I clear the password in case the user entered one by accident. I then do my normal validation and if all is good, I run the create() method on my gallery DAO. Lastly, since I know I'm going right back to a view that has the form, I reset the event values for the form so they are cleared.

Whew! That was a heck of a lot of stuff there. Since this entry is huge, I'm going to leave deleting and updating galleries till part 8. Part 9 will see us finally uploading images and rendering the gallery. This will be an insecure view of the gallery. Part 10 will add the security layer depending on the access settings. Again, I apologize for the size of this entry. As I've mentioned before, when everything is done, there will be a zip with PDFs that will be a bit easier to read, along with the code and SQL fies. Don't forget you can play with the application here: http://pg1.camdenfamily.com.


  • This entry focused on the gallery model. I added a gallery bean, DAO, and gateway.
  • We hooked up this model to our controller. A user can now view and add galleries.

Lastly, I've made a few changes to the application that are not critical to the lessons here. So you can ignore the following if you want.

  • Trond Ulseth found a bug in my user DAO and gateway. I was using a non-existent userID field for the primary key instead of the username. This is corrected.
  • My controller had a method, getAuthenticated, that was used to return if a user was logged in. But - it was tied to Model-Glue. By that I mean it expected an event argument and updated the event with a result. This meant that other methods in the controller couldn't use it. I added a isAuthenticated method that simply returns a boolean. The getAuthenticated uses this method now, as does getMyGalleries.
  • In general if I make a small tweak here and there, I may not mention it. For example, I added some text to the application's home page. My assumption is that folks won't be bothered by this, but let me know if you have questions.

Download attached file.