Sha256: a1f4e78e890f61d3c739c0d1ad08dec696c677fa13d0bfaa411f67c0c282d1db
Contents?: true
Size: 1.32 KB
Versions: 6
Compression:
Stored size: 1.32 KB
Contents
# see http://www.emilsoman.com/blog/2013/05/18/building-a-tested/
module DeviseTokenAuth
class SessionsController < Devise::SessionsController
prepend_before_filter :require_no_authentication, :only => [:create]
include Devise::Controllers::Helpers
include DeviseTokenAuth::Concerns::SetUserByToken
respond_to :json
def create
resource = User.find_by_email(resource_params[:email])
unless resource and valid_params? and resource.valid_password?(params[:password])
render json: {
success: false,
errors: ["Invalid login credentials. Please try again."]
}, status: 401
else
@user = resource
# create client id
@client_id = SecureRandom.urlsafe_base64(nil, false)
@token = SecureRandom.urlsafe_base64(nil, false)
@user.tokens[@client_id] = {
token: BCrypt::Password.create(@token),
expiry: Time.now + 2.weeks
}
@user.save
render json: {
success: true,
data: resource.as_json
}
end
end
def destroy
sign_out(resource_name)
render json: {
success:true
}
end
def valid_params?
params[:password] && params[:email]
end
def resource_params
params.permit(:email, :password)
end
end
end
Version data entries
6 entries across 6 versions & 1 rubygems