Contents

# frozen_string_literal: true

module Decidim
  # Shared behaviour for force_users_to_authenticate_before_access_organization
  module ForceAuthentication
    extend ActiveSupport::Concern

    included do
      before_action :ensure_authenticated!, unless: :allow_unauthorized_path?
    end

    private

    # For Devise helper functions, see:
    # https://github.com/plataformatec/devise#getting-started
    #
    # Breaks the request lifecycle, if user is not authenticated.
    # Otherwise returns.
    def ensure_authenticated!
      return true unless current_organization.force_users_to_authenticate_before_access_organization

      # Next stop: Let's check whether auth is ok
      unless user_signed_in?
        flash[:warning] = t("actions.login_before_access", scope: "decidim.core")
        store_location_for(:user, request.path)
        return redirect_to decidim.new_user_session_path
      end
    end

    # Check for all paths that should be allowed even if the user is not yet
    # authorized
    def allow_unauthorized_path?
      # Changing the locale
      return true if %r{^\/locale}.match?(request.path) || %r{^\/cookies}.match?(request.path)

      false
    end
  end
end

Version data entries

8 entries across 8 versions & 1 rubygems

Version	Path
decidim-core-0.23.6	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.5	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.4	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.3	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.2	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.1	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.1.rc1	app/controllers/concerns/decidim/force_authentication.rb
decidim-core-0.23.0	app/controllers/concerns/decidim/force_authentication.rb