Nice book chapter on REST
I think I’ve recommended this book before: Eldon Alameda’s Practical Rails Projects.
It has a sweet chapter on building a RESTful application, and shows very well how the controllers should be “rescoped” to work only on data that is appropriate. This “rescoping” is part of the requirements for Assignment 4 (requirement #5 about not letting users edit data “owned” by another user).
That chapter is a free download:
http://www.apress.com/book/view/1590597818