Rails3 - How To Render 403 in before_filter w/o DoubleRender Error

ruby-on-rails-3 api before-filter
Bryan Marble picture Bryan Marble · Nov 10, 2011 · Viewed 7.6k times · Source

I have a before_filter that checks the validity of an API key. If the key is invalid, I'd like to render a header-only 403 response.

In my controller:

before_filter :validate_api
...
def validate_api
  if params[:api_key].present? and ApiKey.find(params[:api_key])
    return true
  else
    render head :forbidden
  end
end

The problem is that I get a DoubleRender error, presumably when Rails goes into the action and attempts to render the response anyways. It was my understanding that Rails prevents execution of the action if a before_filter renders or redirects. Is that not the case?

How do I render a header-only response in a before_filter and prevent actions from being executed?

Answer

Kris picture Kris · Nov 10, 2011

Have you tried returning false in the else part?

Related questions

WARNING: Can't verify CSRF token authenticity in case of API development

I am right now developing web APIs with Ruby on Rails. When the Rails app receives POST request without any csrf token, the following error message shall happen. Because the app has no views. WARNING: Can't verify CSRF token authenticity …

Read More
Rails Model to use API instead of Database

I'm refactoring a rails app that currently uses a database and ActiveRecord so that instead of of the database, it uses a JSON API (Sinatra). What would be the best way to refactor the models? The API will return all …

Read More
How to get a random number in Ruby

How do I generate a random number between 0 and n?

Read More