format_restricter_rails

A Rails Engine that prevents Rails controllers from processing undesired formats

MIT License

Stars
2
Committers
1
View Code on GitHub
Ecosystems: Ruby on Rails

format_restricter_rails

format_restricter_rails provides a simple way to block Ruby on Rails controller actions from processing unsupported formats. If you've seen the following type of errors on your production site, format_restricter_rails can help:

ActionView::MissingTemplate (Missing template tasks/index, application/index with {:locale=>[:en], :formats=>[:json], :variants=>[], :handlers=>[:erb, :builder, :raw, :ruby, :coffee, :jbuilder]}

Why do these errors occur? If it's not a bug in the app code, it's usually because a person, or a bot, is sending requests to your app in a format you didn't anticipate.

When this happens, you could start defining respond_to calls in your actions to handle the new formats. Once you realize that's going to explode your code base, you might try to call respond_to :html, at the top of your controller class, in hopes that it will help. Sadly, it won't. That's where format_restricter_rails comes in. It provides a single controller class method called restrict_formats_to that does exactly what you want. When unallowed formats are requested, the controller halts execution and returns HTTP Error 406 Not acceptable.

Versioning Scheme

Releases are versioned using SemVer 2.0.0 with the following caveats:

  1. Support for a Ruby version, that reaches EOL, is removed in a major or minor release.
  2. Support for a Ruby on Rails version, that reaches EOL, is removed in a major or minor release.

Supported Ruby Versions

Ruby 3.1+

Supported Ruby on Rails Versions

Rails 7.1+

Installation

Add this line to your Rails application's Gemfile:

gem 'format_restricter_rails'

And then execute:

$ bundle

Usage

Add restrict_formats_to to the top of a controller to restrict all actions in the controller to the specified format(s).

Example 1: Restrict all actions

class MySnazzyController < ApplicationController
  restrict_formats_to :html, :json

  def my_action_1
  end

  def my_action_2
  end
end

You can also use only: and except: options to target specific actions.

Example 2: Using the only: option

class MySnazzyController < ApplicationController
  restrict_formats_to :html, only: :my_action_1
  restrict_formats_to :json, only: [:my_action_2, :my_action_3]

  def my_action_1
  end

  def my_action_2
  end

  def my_action_3
  end
end

Example 2: Using the except: Option

class MySnazzyController < ApplicationController
  restrict_formats_to :html, except: :my_action_1

  def my_action_1
  end

  def my_action_2
  end
end

Contributing

Bug reports and pull requests are welcome on the format_restricter_rails issues page.

Related Projects
rails-routes-prettier

The rails-routes-prettier gem makes it easy to view the routes in your Rails application

04 Jan 2023 2
rails-toolbox

Ruby on Rails snippets, sample code, and cheatsheet focused on API-only (-mostly) applications

25 Jun 2023 2
vscode_rails_syntax

Rails Syntax Highlighting for Visual Studio Code

07 Mar 2020 13
modular_routes

Dedicated controllers for each of your Rails route actions.

27 May 2021 46
kazan

Kazan creates rails project and setups predefined gems and tools. Env settings, Spec tools, Datab...

09 Oct 2016 26
rspec_controller_helpers

A few bits and pieces to make testing controllers easier

18 Feb 2016 2
exception_handler

Ruby on Rails Custom Error Pages

26 May 2014 508
ruby-on-rails

This Markdown file is a comprehensive guide to setting up and using Ruby on Rails for API develop...

14 Jun 2024 0
responders

A set of Rails responders to dry up your application

02 Dec 2009 2,044
zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

10 Apr 2017 1,811
restrictable

Simple authorization gem for Ruby on Rails.

03 Feb 2018 6
rails

Ruby on Rails

11 Apr 2008 55,822