如何使用`authenticate_or_request_with_http_token`方法

Question

我加入一些認證爲我的Rails API唯一的應用程序，像這樣在我application_controller.rb：

def is_admin 
    authenticate_or_request_with_http_token do |token, options| 
    if User.find_by(:auth_token => token) 
     value = true 
    else 
     value = false 
    end 
    end 
end 

而且在我的控制器：

admin = is_admin 
if admin 
    @voices = Voice.all.map do |voice| 
    voice.format 
    end 
else 
    @voices = 'Something else' 
end 

當我登錄時，一切正常預期，但是當我沒有登錄，我得到以下錯誤：Render and/or redirect were called multiple times in this action. Please note that you may only call render OR redirect, and at most once per action. Also note that neither redirect nor render terminate execution of the action, so if you want to exit an action after redirecting, you need to do something like "redirect_to(...) and return".

雖然沒有登錄，我期待着ge 「其他」的迴應，然後我會繼續處理它。

任何想法爲什麼會發生這種情況？

Answer 1

authenticate_or_request_with_http_token意在用於在動作之前運行的before_action過濾器。或者有明確的回報。

如果你只是想檢查一個用戶是否存在，你會使用authenticate_with_http_token這不會發送回應。

# app/helpers/authorization_helper.rb 
module AuthorizationHelper 
    # returns true/false 
    # sets @current_user if the request is authenticated 
    def authenticate! 
    return true if @current_user # avoid re-querying the DB 
    authenticate_with_http_token do |token, options| 
     @current_user = User.find_by(:auth_token => token) 
    end 
    end 

    def is_admin? 
    authenticate! 
    end 
end 

# app/controllers/api_controller.rb 
# or whatever controller you use as a base 
class ApplicationController < ActionController::API 
    include AuthorizationHelper 
end 

# in your controller 
def index 
    if is_admin? 
    @voices = Voice.all.map do |voice| 
    voice.format 
    else 
    @voices = 'Something else' 
    end 
end