Controller filter exludes w/ controller

Hi, I have this before filter on my application controller for
authentication purposes:

class ApplicationController < ActionController::Base
before_filter :check_authentication,
:check_authorization,
:except => [:authentication, :login, :logout]

However, I have some controllers that I don’t even want authenticated.
And as I understand it, expect only takes actions as parameters. How
can I exclude based on controllers?

I’m starting to think my authentication model isn’t very flexible.
It’s roles and rights recipe from the prag prog rails recipies book.

Maybe I should move my authentication before_filter check to only the
controllers I want to guard with authentication, instead of in the
application controller…

Maybe I should move my authentication before_filter check to only the
controllers I want to guard with authentication, instead of in the
application controller…

Yes… or if you have many controllers that need to be authenticated do
this:

class AuthenticatedController < ApplicationController
before_filter…
end

Then for those controllers do:

class MyAuthenticatedController < AuthenticatedController.

end

Either way…

You can also use:
skip_before_filter
in those controllers that don’t need it.

-Rob

On Sep 14, 2007, at 3:35 PM, Philip H. wrote:

before_filter…

eggie5 wrote:

And as I understand it, expect only takes actions as parameters. How
can I exclude based on controllers?

I’m starting to think my authentication model isn’t very flexible.
It’s roles and rights recipe from the prag prog rails recipies book.

Rob B. http://agileconsultingllc.com
[email protected]