Sha256: 37106a1775646708251e45692211fb0c1ccfe4d5e3533fcab719aabd5a6117f3
Contents?: true
Size: 1.65 KB
Versions: 2
Compression:
Stored size: 1.65 KB
Contents
# frozen_string_literal: true
module LatoCore
# This module contains a list of functions used to authenticate a superuser.
module Interface::Authentication
# This function set a cookie to create the superuser session.
def core__create_superuser_session(superuser, lifetime)
token = core__encode_token(lifetime, superuser_id: superuser.id)
session[:lato_core__superuser_session_token] = token
end
# This function delete a cookie to destroy the superuser session.
def core__destroy_superuser_session
session[:lato_core__superuser_session_token] = nil
end
# This function tells if the current session is valid.
def core__check_superuser_session_valid
decoded_token = core__decode_token(session[:lato_core__superuser_session_token])
return false unless decoded_token
true
end
# This function check the session for a superuser and set the variable @core__current_superuser.
# If session is not valid the user should be redirect to login path.
def core__manage_superuser_session(permission = nil)
decoded_token = core__decode_token(session[:lato_core__superuser_session_token])
if decoded_token
@core__current_superuser = LatoCore::Superuser.find_by(id: decoded_token[:superuser_id])
unless @core__current_superuser
core__destroy_superuser_session
redirect_to lato_core.login_path
end
if permission && @core__current_superuser.permission < permission
flash[:danger] = 'PERMISSION ERROR'
redirect_to lato_core.root_path
end
else
redirect_to lato_core.login_path
end
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| lato_core-2.2.2 | lib/lato_core/interfaces/authentication.rb |
| lato_core-2.2.0 | lib/lato_core/interfaces/authentication.rb |