HTTP Post request for a link

11175 · March 13, 2020, 10:57pm

<%= link_to image_tag(product.url), :action => :add_to_cart, :method =>
:delete, :id => product %>

Hi,

Did I implement this link correctly to send an HTTP Post request?

Thanks

Freddy_Andersen · March 14, 2020, 12:43am

Looks good if you want the http protocol to be delete... I think what
you want is :method => :post

:method => symbol of HTTP verb - This modifier will dynamically create
an HTML form and immediately submit the form for processing using the
HTTP verb specified. Useful for having links perform a POST operation
in dangerous actions like deleting a record (which search bots can
follow while spidering your site). Supported verbs are :post, :delete
and :put. Note that if the user has JavaScript disabled, the request
will fall back to using GET. If you are relying on the POST behavior,
you should check for it in your controller‘s action by using the
request object‘s methods for post?, delete? or put?.

11175 · March 14, 2020, 12:43am

If you are relying on the POST behavior,
you should check for it in your controller�s action by using the
request object�s methods for post?, delete? or put?.

I don't understand that =) Can you explain in more detail please

11175 · March 14, 2020, 12:43am

Also, I'm trying to use sessions in my database...but after I did rake
db:sessions:create, rake db:migrate, I got this error:

ActionController::InvalidAuthenticityToken in Store#index

Showing store/index.html.erb where line #9 raised:

No :secret given to the #protect_from_forgery call. Set that or use a
session store capable of generating its own keys (Cookie Session Store).

Extracted source (around line #9):

6: <h3><%=h product.title %></h3>
7: <%= product.description %><br />
8: <span class="price"><%= number_to_currency(product.price)
%></span>
9: <%= button_to("Add to Cart", :action => :add_to_cart, :id =>
product) %>
10: <br /> <br /> <br />
11: </div>
12: <% end %>

Thanks for the help!

Bill_Walton · March 14, 2020, 12:43am

Hi Justin,

Justin To wrote:

Also, I'm trying to use sessions in my database...but after I did
rake db:sessions:create, rake db:migrate, I got this error:

ActionController::InvalidAuthenticityToken in Store#index

Showing store/index.html.erb where line #9 raised:

No :secret given to the #protect_from_forgery call. Set that or use a
session store capable of generating its own keys (Cookie Session Store).

Did you change the settin in environment.rb?

HTH,
Bill

11175 · March 14, 2020, 12:43am

I figured it out: named the file wrong. I'm new, so I'm unfamiliar with
the rails conventions.

Thanks