stackoom
  简体   繁体   中英

Rails 7 API only app requiring session store with Devise

 原文  2022-08-25 12:10:26       ruby-on-rails/ api/ devise/ devise-jwt

Question

I have a new app that I am trying to setup with devise and devise-jwt . For some reason my authenticate_user! call is causing an error because sessions have been disabled:

{"status":500,"error":"Internal Server Error","exception":"ActionDispatch::Request::Session::DisabledSessionError: Your application has sessions disabled. To write to the session you must first configure a session store"

Routes:

Rails.application.routes.draw do
  namespace :api do
    namespace :v1 do
      resources :clients, only: [:show]
      devise_for :users,
             controllers: {
                 sessions: 'users/sessions',
                 registrations: 'users/registrations'
             }
    end
  end
end

User

class User < ApplicationRecord
  # Include default devise modules. Others available are:
  # :confirmable, :lockable, :timeoutable, :trackable and :omniauthable
  devise :database_authenticatable,
         :jwt_authenticatable,
         jwt_revocation_strategy: JwtDenylist
end

Controllers:

class API::V1::Users::SessionsController < Devise::SessionsController
  respond_to :json
  private
  def respond_with(resource, _opts = {})
    render json: { message: 'Logged.' }, status: :ok
  end
  def respond_to_on_destroy
    current_user ? log_out_success : log_out_failure
  end
  def log_out_success
    render json: { message: "Logged out." }, status: :ok
  end
  def log_out_failure
    render json: { message: "Logged out failure."}, status: :unauthorized
  end
end

class Api::V1::ClientsController < ApplicationController
    before_action :authenticate_api_v1_user!

    def show
    end
end

What else do I need to do? When I make a request to http://localhost:3000/api/v1/clients/ID I'd expect the response to be:

=> <html><body>You are being <a href="http://localhost:3000/users/sign_in">redirected</a>.</body></html>%

rather than this 500 error.

1 answers

solution1
 0  2022-08-25 12:52:39

I was able to find a solution on GitHub:

 config.session_store:cookie_store, key: '_interslice_session' config.middleware.use ActionDispatch::Cookies config.middleware.use config.session_store, config.session_options

from this post

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Use Devise Session to Authenticate Doorkeeper API for Rails/Ember app Rails Admin with Devise Admin user not working for API only app Rails : Devise with config.session_store :disabled Create session with Devise in web API on ruby on rails Rails dynamic session timeout using devise and session store Adding cookie session store back to Rails API app Rails API Devise JWT disable sessions store Model or controller: My Rails app makes API calls requiring OAuth tokens, stored as session variables. Where should the method go? Rails devise, find current_user by session_store key Rails API, Devise & Mobile App.
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM