Sha256: 9343012308404a1964e6ae0ecad05b67ff77ec1c53d838c94956b6cb73f7bdfa
Contents?: true
Size: 1.71 KB
Versions: 6
Compression:
Stored size: 1.71 KB
Contents
module Clearance
module Authorization
extend ActiveSupport::Concern
included do
hide_action :authorize, :deny_access, :require_login
end
def require_login
unless signed_in?
deny_access
end
end
def authorize
warn "[DEPRECATION] Clearance's `authorize` before_filter is " +
"deprecated. Use `require_login` instead. Be sure to update any " +
"instances of `skip_before_filter :authorize` or " +
"`skip_before_action :authorize` as well"
require_login
end
def deny_access(flash_message = nil)
respond_to do |format|
format.any(:js, :json, :xml) { head :unauthorized }
format.any { redirect_request(flash_message) }
end
end
protected
def redirect_request(flash_message)
store_location
if flash_message
flash[:notice] = flash_message
end
if signed_in?
redirect_to url_after_denied_access_when_signed_in
else
redirect_to url_after_denied_access_when_signed_out
end
end
def clear_return_to
session[:return_to] = nil
end
def store_location
if request.get?
session[:return_to] = request.original_fullpath
end
end
def redirect_back_or(default)
redirect_to(return_to || default)
clear_return_to
end
def return_to
if return_to_url
uri = URI.parse(return_to_url)
"#{uri.path}?#{uri.query}".chomp('?')
end
end
def return_to_url
session[:return_to]
end
def url_after_denied_access_when_signed_in
Clearance.configuration.redirect_url
end
def url_after_denied_access_when_signed_out
sign_in_url
end
end
end
Version data entries
6 entries across 6 versions & 1 rubygems