Devise logout via get so we don't rely on js

3 years ago · f550f46452
3 changed files with 3 additions and 3 deletions
--- a/app/views/layouts/application.html.erb
+++ b/app/views/layouts/application.html.erb
@ -46,7 +46,7 @@
          component.navigation_item(text: 'Logs', href: case_logs_path)
          component.navigation_item(text: 'Your organisation', href: "/organisations/#{current_user.organisation.id}")
          component.navigation_item(text: 'Your account', href: user_path(current_user))
-          component.navigation_item(text: 'Sign out', href: destroy_user_session_path, options: { data: {turbo_method: :delete}, method: :delete })
+          component.navigation_item(text: 'Sign out', href: destroy_user_session_path)
        end
      end
    %>
--- a/config/initializers/devise.rb
+++ b/config/initializers/devise.rb
@ -267,7 +267,7 @@ Devise.setup do |config|
  # config.navigational_formats = ['*/*', :html]

  # The default HTTP method used to sign out a resource. Default is :delete.
-  config.sign_out_via = :delete
+  config.sign_out_via = :get

  # ==> OmniAuth
  # Add a new OmniAuth provider. Check the wiki for more information on setting
--- a/config/routes.rb
+++ b/config/routes.rb
@ -11,7 +11,7 @@ Rails.application.routes.draw do
      two_factor_authentication: "auth/two_factor_authentication",
    },
    path_names: { sign_in: "sign-in", sign_out: "sign-out", two_factor_authentication: "two-factor-authentication" },
-    sign_out_via: %i[delete get],
+    sign_out_via: %i[get],
  }

  devise_scope :admin_user do