Y
Hacker News
new
|
ask
|
show
|
jobs
by
technoweenie
5759 days ago
You can't send the headers unless you know if the person is authorized or not (and other common things you check in the before filters). So yes, this stuff would have to be checked before rendering a view.
1 comments
aaronblohowiak
5758 days ago
I am willing to errantly send a 200 with a js redirect upon auth fail if it means faster load times.
link