Sha256: 1342aae5f62c9c8292767b9df652c8ae7cf65dc5bcdd5586e47c8749f90e8f06
Contents?: true
Size: 1.31 KB
Versions: 3
Compression:
Stored size: 1.31 KB
Contents
module Authlogic
module Session
# = Params
#
# Tries to log the user in via params. Think about cookies and sessions. They are just hashes in your controller, so are params. People never
# look at params as an authentication option, but it can be useful for logging into private feeds, etc. Logging in a user is as simple as:
#
# https://www.domain.com?user_credentials=[insert single access token here]
#
# Wait, what is a single access token? It is all explained in the README. Checkout the "Single Access" section in the README. For security reasons, this type of authentication
# is ONLY available via single access tokens, you can NOT pass your remember token.
module Params
# Tries to validate the session from information in the params token
def valid_params?
if params_credentials && single_access_token_field && single_access_allowed_request_types.include?(controller.request_content_type)
self.unauthorized_record = search_for_record("find_by_#{single_access_token_field}", params_credentials)
self.persisting = false
return true if valid?
self.persisting = true
end
false
end
private
def params_credentials
controller.params[params_key]
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems
| Version | Path |
|---|---|
| authlogic-1.1.1 | lib/authlogic/session/params.rb |
| authlogic-1.1.2 | lib/authlogic/session/params.rb |
| authlogic-1.2.0 | lib/authlogic/session/params.rb |