ruby on rails - How to handle the AuthenticityToken value using a HTTP POST request from a RoR application to another RoR application? -

-

i using ruby on rails 3 , know how handle authenticitytoken value using http post request ror application ror application. in case aim submit sign in form , return user information in json format if he\she provided correct email , password values.

i have ror application @ url

pjtnam.com

and ror application @ url

users.pjtname.com

if make http post request application pjtname.com application users.pjtname.com (in example use typhoeus gem)

response = typhoeus::request.post("http://users.pjtname.com/authentications",              :params => {                :new_authentication => {                  :email    => email,                  :password => password                }              }            )

i response

<h1>   actioncontroller::invalidauthenticitytoken     in authenticationscontroller#create </h1> <pre>actioncontroller::invalidauthenticitytoken</pre>

so, how handle authenticitytoken value in safe approach\mode? i know in both when applications located on same server , when aren't.

at http://users.pjtname.com/authentications/new have following form signing in users:

<%= form_for(:new_authentication) |f| %>   <%= f.label :email %>   <%= f.label :password %>    <%= f.submit "sign in" %> <% end %>

in authentications_controller.rb have

def create   # note ':authentication' symbol different ':new_authentication' seen in http post parameters , in above form   @authentication = authentication.new(params[:authentication])    @account = account.sign_in_account(params[:new_authentication][:email], params[:new_authentication][:password])    ...    respond_to |format|     format.html {       redirect_to @account     }     format.js {       render(:update) { |page|         page.redirect_to @account       }     }     format.json {       render :json => @account     }   end end

in routes.rb have

  resources :authentications #, :path => "authentication"     member        'confirm_authentication'       post 'confirm_authentication'     end   end

update @idlefingers answer

request 

typhoeus::request.post("http://users.pjtname.com/authentications/new", # or # typhoeus::request.post("http://users.pjtname.com/authentications",    :headers => {"content-type" => "application/json"},    :params => { ... } # same parameters above    }  )

response

<h1>   standarderror </h1> <pre>invalid json string</pre>

request

typhoeus::request.post("http://users.pjtname.com/authentications/new.json",    :params => { ... } # same parameters above    }  )

response

<h1>routing error</h1> <p><pre>no route matches &quot;/authentications/new.json&quot;</pre></p>

it looks it's not sending request correct content type. rails should skip authenticity token check if content-type application/xml or application/json, plays nice apis without having disable authenticity token altogether.

i don't know typhoeus gem, looks may need add ".json" or ".xml" url (depending on api you've implemented), or may need pass in options in headers hash.


Comments

Post a Comment

Popular posts from this blog

c# - How to set Z index when using WPF DrawingContext? -

-
how set z-index drawing object when using drawingcontext.drawxxx() methods? the object drawn last have higher z index. can't change index of drawn objects. way draw in order. if using wpf (as placed tag), can use, example, canvas control. create shapes need like polyline obj = new polyline(); //... // ... set properties of obj and add them canvas uielementcollection: yourcanvasname.children.add(obj); //or yourcanvasname.children.insert(i, obj); first items of collection have higher z index. advantages in way: no need redraw on window changes, can anytime move objects , change order.
Read more

razor - Is this a bug in WebMatrix PageData? -

-
i think may have found bug in webmatrix's pagedata, not sure. concerns how pass data partial page calling page. in webmatrix documentation (tutorials, e.g. " 3 - creating consistent look ", , example code), pagedata recommended mechanism pass data between pages (e.g. content page layout page, or partial page). however have found not work other way, pass data partial page calling page. modifying or adding entries in pagedata in partial page, not seem calling page. cutting right down simplest possible example, in test page may have this: @{ pagedata["test"] = "initial entry"; } <p>before calling partial page, test value @pagedata["test"]</p> @renderpage("_testpartial.cshtml") <p>after returning calling page, test value @pagedata["test"]</p> and in _testpartial.cshtml page might have this: @{ pagedata["test"] = "modified entry"; } <p>in partial page...
Read more

android - layout with fragment and framelayout replaced by another fragment and framelayout -

-
edit: so after comments below, revisted , realized hanging me up. imagine client list , client details activity started : public class clientsmainactivity extends fragmentactivity { @override public void oncreate(bundle savedinstancestate) { super.oncreate(savedinstancestate); //studiotabopenhelper db; setcontentview(r.layout.main_client_activity); } } so works great, starts main_client_activity (defined in layout below, , call activity when button on main screen clicked): intent intent = new intent(getactivity(), clientsmainactivity.class); startactivity(intent); easy issue is, clientsmainactivity not call oncreateview or anything, sets layout layout defines fragment, , listfragment. fine cause not trying pass clientsmainactivity , if have hypothetical activity like: sessionmainsactivity called when click on session edit of client, not calling sessionsmainactivity same way (starts activity sets alayout), want layout set defines...
Read more