WARNING: Can't verify CSRF token authenticity in case of API development

ruby ruby-on-rails-3 api token csrf
gipcompany picture gipcompany · Feb 23, 2013 · Viewed 54k times · Source

I am right now developing web APIs with Ruby on Rails. When the Rails app receives POST request without any csrf token, the following error message shall happen. Because the app has no views.

WARNING: Can't verify CSRF token authenticity

So my question is how can I escape csrf token check safely in this case?

Thank you very much in advance.

Answer

Kush Kella picture Kush Kella · Feb 23, 2013

You can do this by adding 

skip_before_filter  :verify_authenticity_token

to your controller. This way all incoming requests to the controller skips the :verify_authenticity_token filter.

Related questions

How to get a random number in Ruby

How do I generate a random number between 0 and n?

Read More
How to remove a key from Hash and get the remaining hash in Ruby/Rails?

To add a new pair to Hash I do: {:a => 1, :b => 2}.merge!({:c => 3}) #=> {:a => 1, :b => 2, :c => 3} Is there a similar way to delete a key from Hash ? This works: {:a => 1, :b => 2}.…

Read More
Replace words in a string - Ruby

I have a string in Ruby: sentence = "My name is Robert" How can I replace any one word in this sentence easily without using complex code or a loop?

Read More