lib/bizside/acl/controller_helper.rb in bizside-3.0.0 vs lib/bizside/acl/controller_helper.rb in bizside-3.0.1

@@ -2,12 +2,15 @@
   module Acl
     module ControllerHelper
       include Bizside::Acl::AvailableHelper
 
       def authorize_user!
-        unless available_for(params[:controller], params[:action], params)
+        return if available_for(params[:controller], params[:action], params)
+
+        if request.xhr?
+          head :forbidden
+        else
           redirect_to root_path
-          return
         end
       end
 
     end
   end