app/controllers/application_controller.rb
class ApplicationController < ActionController::Base
# Prevent CSRF attacks by raising an exception.
# For APIs, you may want to use :null_session instead.
protect_from_forgery with: :exception
skip_before_action :verify_authenticity_token
rescue_from ActiveRecord::RecordNotFound, with: :record_not_found
private
def record_not_found
render json: {
message: "Couldn't find it",
status: 404
}
end
end