WARNING: Can’t verify CSRF token authenticity rails

by

You should do this:

  1. Make sure that you have <%= csrf_meta_tag %> in your layout

  2. Add beforeSend to all the ajax request to set the header like below:

$.ajax({ url: 'YOUR URL HERE',
  type: 'POST',
  beforeSend: function(xhr) {xhr.setRequestHeader('X-CSRF-Token', $('meta[name="csrf-token"]').attr('content'))},
  data: 'someData=" + someData,
  success: function(response) {
    $("#someDiv').html(response);
  }
});

To send token in all requests you can use:

$.ajaxSetup({
  headers: {
    'X-CSRF-Token': $('meta[name="csrf-token"]').attr('content')
  }
});

More Related Contents:

  1. Rails, Devise authentication, CSRF issue
  2. Rails API design without disabling CSRF protection
  3. Rails CSRF Protection + Angular.js: protect_from_forgery makes me to log out on POST
  4. Rails not reloading session on ajax post
  5. Is it possible to refresh partial frequently using Ajax?
  6. jQuery post to Rails
  7. Understanding the Rails Authenticity Token
  8. Rails :include vs. :joins
  9. What is the best method of handling currency/money?
  10. form_for with nested resources
  11. Why do routes with a dot in a parameter fail to match?
  12. Ruby on Rails form_for select field with class
  13. When to use a “has_many :through” relation in Rails?
  14. usage of attr_accessor in Rails
  15. ActiveRecord Find By Year, Day or Month on a Date field
  16. How does Rails ActiveRecord chain “where” clauses without multiple queries?
  17. rails paperclip and passenger `is not recognized by the ‘identify’ command`
  18. How to test for (ActiveRecord) object equality
  19. Connecting to multiple databases in ruby on rails
  20. Rails Browser Detection Methods
  21. Ruby on Rails – Access controller variable from model
  22. Delete link sends “Get” instead of “Delete” in Rails 3 view
  23. Regular expressions with validations in RoR 4
  24. “bin/rails: No such file or directory” w/ Ruby 2 & Rails 4 on Heroku
  25. Why use HTTP PUT and DELETE methods instead of POST?
  26. Include associated model when rendering JSON in Rails
  27. Rails Routes based on condition
  28. Run a single migration file
  29. How to log something in Rails in an independent log file?
  30. Get anchor part of URL in controller in Ruby on Rails

Leave a Comment