Sha256: 5b5915bb86805b98e30811cf49df3352378f8a995bc784007e815e4c60906af0

Contents?: true

Size: 767 Bytes

Versions: 57

Compression:

Stored size: 767 Bytes

Contents

# patches for devise here

# http://blog.plataformatec.com.br/2013/11/e-mail-enumeration-in-devise-in-paranoid-mode/
# Put this inside config/initializers/devise_paranoid_fix.rb
require 'devise/strategies/database_authenticatable'

Devise::Strategies::DatabaseAuthenticatable.class_eval do
  def authenticate!
    resource  = valid_password? && mapping.to.find_for_database_authentication(authentication_hash)
    encrypted = false

    return fail(:invalid) unless resource

    if validate(resource){ encrypted = true; resource.valid_password?(password) }
      resource.after_database_authentication
      success!(resource)
    end

    mapping.to.new.password = password if !encrypted && Devise.paranoid
    fail(:not_found_in_database) unless resource
  end
end

Version data entries

57 entries across 57 versions & 2 rubygems

Version Path
locomotivecms-4.2.0.alpha2 lib/locomotive/devise.rb
locomotivecms-4.2.0.alpha1 lib/locomotive/devise.rb
locomotivecms-4.1.1 lib/locomotive/devise.rb
locomotivecms-4.1.0 lib/locomotive/devise.rb
locomotivecms-4.1.0.rc1 lib/locomotive/devise.rb
locomotivecms-4.0.3 lib/locomotive/devise.rb
locomotivecms-4.0.2 lib/locomotive/devise.rb
locomotivecms-4.0.1 lib/locomotive/devise.rb
locomotivecms-4.0.0 lib/locomotive/devise.rb
locomotivecms-4.0.0.rc0 lib/locomotive/devise.rb
locomotivecms-4.0.0.alpha3 lib/locomotive/devise.rb
locomotivecms-3.4.1 lib/locomotive/devise.rb
locomotivecms-4.0.0.alpha2 lib/locomotive/devise.rb
locomotivecms-4.0.0.alpha1 lib/locomotive/devise.rb
locomotivecms-3.4.0 lib/locomotive/devise.rb
locomotivecms-3.3.0 lib/locomotive/devise.rb
locomotivecms-3.3.0.rc3 lib/locomotive/devise.rb
locomotivecms-3.3.0.rc2 lib/locomotive/devise.rb
locomotivecms-3.1.2 lib/locomotive/devise.rb
locomotivecms-3.2.1 lib/locomotive/devise.rb