Sha256: 7de9f511155cc538b803b1c661d655e340a843a310dbdd7301822fe843335180
Contents?: true
Size: 1.35 KB
Versions: 7
Compression:
Stored size: 1.35 KB
Contents
module Spina
module Admin
class PasswordResetsController < AdminController
layout "spina/admin/sessions"
skip_before_action :authenticate
def new
end
def create
user = User.find_by(email: params[:email])
if user.present?
user.regenerate_password_reset_token
user.touch(:password_reset_sent_at)
UserMailer.forgot_password(user).deliver_now
redirect_to admin_login_path, flash: {success: t('spina.forgot_password.instructions_sent')}
else
flash.now[:alert] = t('spina.forgot_password.unknown_user')
render :new, status: :unprocessable_entity
end
end
def edit
@user = User.find_by!(password_reset_token: params[:id])
end
def update
@user = User.find_by(password_reset_token: params[:id])
if @user.password_reset_sent_at < 2.hours.ago
redirect_to new_admin_password_reset_path, flash: {alert: t('spina.forgot_password.expired')}
elsif @user.update(user_params)
redirect_to admin_login_path, flash: {success: t('spina.forgot_password.success')}
else
render :edit, status: :unprocessable_entity
end
end
private
def user_params
params.require(:user).permit(:password, :password_confirmation)
end
end
end
end
Version data entries
7 entries across 7 versions & 1 rubygems