Filters/Callbacks should be in concerns or not

242 Views Asked by Harshwardhan Rathore At 04 April 2025 at 12:22

Let's say I have a concern in controllers and it's name is Authentication. It contains a before_action method authenticate_user. Where should I write before_action :authenticate_user? what is the best practice? Is it should be written in concern or in the controller in which this concern is included?

NOTE: I want to implement single responsibility

Original Q&A

There are 1 best solutions below

Roma149 On 23 May 2021 at 13:08

It depends on your controller structure. Auth logic is most commonly placed in a higher-level controller that most other controllers ultimately inherit from, rather than a concern. This is because you can simply enable auth at a higher level and have it be active on all subcontrollers without the need to add a concern explicitly for each of them, which might be more error prone. That higher-level controller would contain both the before_action and the authenticate_user method. If for any reason, there's a controller along the way which needs auth disabled, assuming this would be an exception, you could use skip_before_action.

class UserController < ApplicationController
    before_action :authenticate

    private

    def authenticate
        # ...
    end
end

class SomeController < UserController
    # auth already enabled here
end

Filters/Callbacks should be in concerns or not

There are 1 best solutions below

Related Questions in RUBY-ON-RAILS

Related Questions in ACTIONCONTROLLER

Related Questions in ACTIVESUPPORT-CONCERN

Trending Questions

Popular # Hahtags

Popular Questions