How do I ignore the authenticity token for specific actions in Rails?

by

Rails 5.2+

You can use the same skip_before_action method listed below or a new method skip_forgery_protection which is a thin wrapper for skip_before_action :verify_authenticity_token

skip_forgery_protection

Rails 4+:

# entire controller
skip_before_action :verify_authenticity_token

# all actions except for :create, :update, :destroy
skip_before_action :verify_authenticity_token, except: [:create, :destroy]

# only specified actions - :create, :update, :destroy
skip_before_action :verify_authenticity_token, only: [:create, :destroy]

See all options @ api.rubyonrails.org

Rails 3 and below:

skip_before_filter :verify_authenticity_token

More Related Contents:

  1. how to permit an array with strong parameters
  2. Begin, Rescue and Ensure in Ruby?
  3. How to “pretty” format JSON output in Ruby on Rails
  4. Rails DB Migration – How To Drop a Table?
  5. Devise form within a different controller
  6. Rails layouts per action?
  7. In Rails, how do you render JSON using a view?
  8. No secret option provided to Rack::Session::Cookie warning?
  9. ruby on rails f.select options with custom attributes
  10. Profile model for Devise users?
  11. Rails: Missing host to link to! Please provide :host parameter or set default_url_options[:host]
  12. How do I change the default “www.example.com” domain for testing in rails?
  13. Rails ActiveRecord: Find All Users Except Current User
  14. Rails how do I – export data with send_data then redirect_to a new page?
  15. Rails: around_* callbacks
  16. How to keep public and private versions of a git repo in sync?
  17. Undefined method raise_in_transactional_callbacks=’ for ActiveRecord::Base:Class (NoMethodError)
  18. Rails active record querying association with ‘exists’
  19. How do you handle Rail’s flash with Ajax requests?
  20. Rails: How to change the title of a page?
  21. To use self. or not.. in Rails
  22. How to return HTML directly from a Rails controller?
  23. How can I format the value shown in a Rails edit field?
  24. Use bundle exec rake or just rake?
  25. Controlling the order of rails validations
  26. Rails catch-all/globbing routes
  27. Always getting 401 Unauthorized with new install of Rails + Devise
  28. Rails – passing parameters in link_to
  29. Where to store sensitive data in public rails app?
  30. JWT token decoding even when the last character of the signature is changed

Leave a Comment