Strong Routes

Strong Routes is a simple Rack middleware to reject requests to unknown routes before allocating connections or any resources.


Add this line to your application's Gemfile:

gem 'strong_routes'

And then execute:

$ bundle

Or install it yourself as:

$ gem install strong_routes


Rails Apps

In Rails apps, using strong routes is as simple as adding it to your Gemfile. The middleware is automatically added to the middleware stack. Any routes defined by the application are automatically allowed by default.

Rack Apps

In Rack apps, load the StrongRoutes::Allow middleware into your middleware stack:

app.insert_before StrongRoutes::Allow, ResourceLoadingMiddleware

In (non-Rails) Rack apps, allowed routes are empty default. Allowed routes are specified using the allowed_routes config option:

StrongRoutes.config.allowed_routes = [ '/', '/posts' ]

Routes can be specified as strings or regular expressions:

StrongRoutes.config.allowed_routes = [ /\A\//i, /\A\/posts/i ]


Any routes that aren't allowed will return a 404 by default:

[ 404, { "Content-Type" => "text/html", "Content-Length" => "18" }, [ "Resource Not Found" ] ]

The message that is returned can be specified using the message config option:

StrongRoutes.config.message ='public/404.html'))


  1. Fork it ( )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create new Pull Request