ruby on rails - Unauthorized CORS when using simple_command gem with rack-cors -


edit: had nothing cors, fell down red herring rabbit hole hard because response in dev tools looked this: 

response = response {type: "cors", url: "http://localhost:3000/api/authenticate", redirected: false, status: 401, ok: false, …}

the response had cors type , tunneled. because word cors there. looked @ response again, more closely (thanks sideshowbarker) , credentials not being passed in correctly because two-way binding broken. nothing see here.

i creating website rails backend , react client. have been using rack-cors gem deal cors , have following configuration in config/application.rb 

config.middleware.insert_before 0, rack::cors     allow         origins '*'         resource '*', :headers => :any, :methods => [:get, :post, :options]     end end

everything working great, until time work on simple authentication scheme. followed tutorial: https://www.pluralsight.com/guides/ruby-ruby-on-rails/token-based-authentication-with-ruby-on-rails-5-api (great tutorial btw). tutorial uses gem called simple_command create service objects handy things authentication. ended following authentication command:

#/commands/authenticate_user.rb class authenticateuser  prepend simplecommand       def initialize(username, password)          @username = username          @password = password      end       def call         jsonwebtoken.encode(user_id: user.id) if user      end       private      attr_accessor :username, :password       def user         user = user.find_by_username(username)          return user if user && user.authenticate(password)           errors.add :user_authentication, 'invalid credentials'          nil      end   end

this gets called inside authentication controller here:

#/controllers/api/v1/authentication_controller.rb module api::v1     class authenticationcontroller < apicontroller          def authenticate             command = authenticateuser.call(params[:username], params[:password])             if command.success?                 render json: { auth_token: command.result }             else                  render json: { error: command.errors }, status: :unauthorized              end         end     end end

i can call authenticate endpoint curl, or postman , works great. when call react client 401 cors unauthorized error. seem able authenticateuser#user , cors error thrown. there need add rack::cors config allow commands ignore cors? (every other endpoint, ones don't use commands, work fine client)


Comments

Post a Comment

Popular posts from this blog

ubuntu - PHP script to find files of certain extensions in a directory, returns populated array when run in browser, but empty array when run from terminal -

i running os ububtu 16.04. ultimate goal able run php script cron job every minute. here php script located @ /var/www/html/tests/test/index.php : <?php $directorypath = $_server['document_root']."/tests/test/data/"; echo "directorypath: $directorypath<br><br>";//check $imagefilepathsarray = glob($directorypath . "*.{png,gif}", glob_brace); echo "<br><br>imagefilepathsarray: "; print_r($imagefilepathsarray);//check ?> when open php script in browser visiting url my-ip-address/tests/test/index.php , get: directorypath: /var/www/html/tests/test/data/ imagefilepathsarray:array( [0] => /var/www/html/tests/test/data/pic.png [1] => /var/www/html/tests/test/data/pic.gif ) before writing cron job in crontab file, need check if can run anywhere using terminal . opened ubuntu terminal @ /home/ location, , executed in terminal: sudo php /var/www/html/tests/test/index.php i got following out...
Read more

php - How can i create a user dashboard -

today have questions you, want create user dashboard site, include (obviously), users data, example -email -username -and others stuff how can information, , print them in html page? if can, how can these information via php sessions? shuld use session? example, if user login, , start new session ( session_start() ), how can data print in dashboard? should use php "project"? in advice, have day , thank time!
Read more

javascript - How to detect toggling of the fullscreen-toolbar in jQuery Mobile? -

i have jquery mobile page fixed full-screen toolbar, data-tap-toggle enabled. straight under toolbar have positioned banner should slide upwards when toolbar hiding , slide downward when toolbar showing. jquery mobile toggles toolbar applying , removing ui-fixed-hidden class - sadly, can't find in documentation of toolbar widget toggle , hide or show event that. how can detect when toolbar toggled, reposition banner? .banner { position: fixed; background-color: darkseagreen; top: 46px; min-height: 48px; width: 100%; text-align: center; line-height: 48px; } <!doctype html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"> <link rel="stylesheet" href="https://code.jquery.com/mobile/1.4.5/jquery.mobile-1.4.5.css"> <script src="https://code.jquery.com/jquery-1....
Read more