Contents

module Devise
  class PinfirmableController < DeviseController
    include ActionView::Helpers::UrlHelper

    def new
      @locked_out = locked_out?
    end

    def create
      if locked_out?
        @locked_out = true
        render(:new, status: 429) && return
      end

      if Pinfirmable::Pin.new(params[:digits]).matches_user_pin(pinfirmable_user)
        pinfirmable_user.confirm
        redirect_to after_confirmation_path_for(resource_name, pinfirmable_user)
      else
        tries = pinfirmable_user.pinfirmable_tries += 1
        lockout = (tries % 3).zero? ? (tries / 3).minute.from_now : nil
        pinfirmable_user.update_attributes(
          pinfirmable_tries: tries,
          pinfirmable_lockout: lockout
        )
        redirect_to user_confirmemail_path
      end
    end

    def resend_email
      flash[:notice] = t("pinfirmable.resend_email.notice_html",
                         email: pinfirmable_user.email,
                         not_correct_link: link_to(t("pinfirmable.resend_email.incorrect_email"), destroy_session_path(resource_name), method: :delete))
      PinfirmableMailer.pin_email(pinfirmable_user).deliver
      redirect_to user_confirmemail_path
    end

    protected

    def pinfirmable_user
      request.env["CHECKING_PINFIRMABLE_PIN"] = true
      pu = current_user
      request.env["CHECKING_PINFIRMABLE_PIN"] = false
      pu
    end

    def locked_out?
      return false unless pinfirmable_user
      return false if pinfirmable_user.pinfirmable_lockout.nil?
      pinfirmable_user.pinfirmable_lockout > Time.now
    end

    def after_confirmation_path_for(resource_name, resource)
      if signed_in?(resource_name)
        signed_in_root_path(resource)
      else
        new_session_path(resource_name)
      end
    end
  end
end

Version data entries

2 entries across 2 versions & 1 rubygems

Version	Path
pinfirmable-0.1.5	app/controllers/devise/pinfirmable_controller.rb
pinfirmable-0.1.4	app/controllers/devise/pinfirmable_controller.rb