Ajax Delete links log out current_user

Question

The title pretty much explains it. I\'m having an odd situation where views that allow users to delete notifications using Ajax cause the current_user to be logged out. I don\'t

Answer 1

I had a similar problem. Solution was as simple as adding

<%= csrf_meta_tag %>

to the layout.

Answer 2

It turns out this had to do with changes to the Rails jQuery UJS driver and Devise. I had updated Devise without updating jQuery UJS -- and Devise was expecting the CSRF token to be handled differently, so it was processing the ajax request as unauthorized which meant destroying the current user's session. Upgrading to the latest jQuery Rails driver fixed the problem.

Answer 3

Are you sure this controller and action are the ones that are triggered by the request? It sounds like the path you are DELETEing isnt right and you are hitting your sessions path instead.

Answer 4

Is it possible that the destroy notification path is redirecting to the session destroy path through JS?

Do you have destroy.js template in your notifications views? try adding one that is empty see if you get a different result.