redirecting if jwt is not see for /fees path

davezuckerman · davezuckerman · commit b7fa5447e565 · 2026-04-01T11:55:00.000-07:00
diff --git a/app/controllers/fees_controller.rb b/app/controllers/fees_controller.rb
@@ -1,6 +1,9 @@
 require 'jwt'
 
 class FeesController < ApplicationController
+
+  rescue_from ActionController::ParameterMissing, with: :missing_params
+
   # This will be needed for transaction_complete since Paypal will hit that
   protect_from_forgery with: :null_session
 
@@ -13,6 +16,10 @@ def index
     redirect_to(action: :transaction_error)
   end
 
+  def missing_params(_error)
+    redirect_to 'https://lib.berkeley.edu/find/borrow-renew?section=pay-fees', allow_other_host: true
+  end
+
   def efee
     @jwt = params.require(:jwt)
     secret = EfeesInvoice.secret
@@ -73,8 +80,6 @@ def transaction_complete
     render json: { status: 'silent post received' }
   end
 
-  private
-
   def authorize!
     return if Rails.env.development?
 
diff --git a/spec/request/fees_request_spec.rb b/spec/request/fees_request_spec.rb
@@ -12,9 +12,9 @@ def base_url_for(user_id = nil)
     allow(Rails.application.config).to receive(:alma_api_key).and_return(alma_api_key)
   end
 
-  it 'shows a Bad Request error if request has no jwt' do
+  it 'redirects to the fallback URL if there is no jwt' do
     get fees_path
-    expect(response).to have_http_status(:bad_request)
+    expect(response).to redirect_to('https://lib.berkeley.edu/find/borrow-renew?section=pay-fees')
   end
 
   it 'redirects to error page if request has a non-existant alma id' do
