Activity

Dennis Hackethal revised criticism #2673.

The thread contains a suggested solution: use authenticated do … blocks in routes.rb instead of before_action :authenticate_user! in controllers.

It’s probably a good idea to do this anyway to avoid divulging the existence of routes that unauthenticated users don’t need to know exist. (They will get a 404 instead of a 401.)

The thread suggests solution: use authenticated do … blocks in routes.rb instead of before_action :authenticate_user! in controllers.

It’s probably a good idea to do this anyway to avoid divulging the existence of routes that unauthenticated users don’t need to know exist. (They will get a 404 instead of a 401.)

2 days ago·‘Veritula – Meta’

[T]he growth of knowledge depends entirely upon disagreement.

Karl Popper, The Myth of the Framework

By Dennis Hackethal·Terms·Uptime