Contents

class SessionsController < ApplicationController
  skip_before_action :authenticate, only: :create

  before_action :set_session, only: %i[ show destroy ]

  def index
    render json: Current.<%= singular_table_name %>.sessions.order(created_at: :desc)
  end

  def show
    render json: @session
  end

  def create
    <%= singular_table_name %> = <%= class_name %>.find_by(email: params[:email])

    if <%= singular_table_name %> && <%= singular_table_name %>.authenticate(params[:password])
      @session = <%= singular_table_name %>.sessions.create!
      response.set_header("X-Session-Token", @session.signed_id)

      render json: @session, status: :created
    else
      render json: { error: "That email or password is incorrect" }, status: :unauthorized
    end
  end

  def destroy
    @session.destroy
  end

  private
    def set_session
      @session = Current.<%= singular_table_name %>.sessions.find(params[:id])
    end
end

Version data entries

8 entries across 8 versions & 1 rubygems

Version	Path
authentication-zero-2.11.2	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.11.1	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.11.0	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.10.0	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.9.3	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.9.2	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.9.1	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt
authentication-zero-2.9.0	lib/generators/authentication/templates/controllers/api/sessions_controller.rb.tt