lib/gds-sso/controller_methods.rb in gds-sso-0.7.3 vs lib/gds-sso/controller_methods.rb in gds-sso-0.7.4

@@ -11,9 +11,10 @@
       end
 
       def require_signin_permission!
         authorise_user!(GDS::SSO::Config.default_scope, 'signin')
       rescue PermissionDeniedException
+        headers["X-Slimmer-Skip"] = "1" # If slimmer used, without this you would see a generic 400 error page
         render "authorisations/cant_signin", layout: "unauthorised", status: :forbidden
       end
 
       def authenticate_user!
         warden.authenticate!