Sha256: b60b6ca184db598c09fe2a60ee8c37c6c21516767e9db743e47deb46d3fd3cc3
Contents?: true
Size: 779 Bytes
Versions: 11
Compression:
Stored size: 779 Bytes
Contents
# Each time a record is set we check whether it's session has already timed out
# or not, based on last request time. If so, the record is logged out and
# redirected to the sign in page. Also, each time the request comes and the
# record is set, we set the last request time inside it's scoped session to
# verify timeout in the following request.
Warden::Manager.after_set_user do |record, warden, options|
scope = options[:scope]
if record && record.respond_to?(:timeout?) && warden.authenticated?(scope)
last_request_at = warden.session(scope)['last_request_at']
if record.timeout?(last_request_at)
warden.logout(scope)
throw :warden, :scope => scope, :message => :timeout
end
warden.session(scope)['last_request_at'] = Time.now.utc
end
end
Version data entries
11 entries across 11 versions & 1 rubygems