Sha256: ced60a73576d6cca5b09d1876dcfdf358074902e56e64c51aba4ec2cb355dda7

Contents?: true

Size: 1.51 KB

Versions: 12

Compression:

Stored size: 1.51 KB

Contents

require 'devise/strategies/base'

module Devise
  module Strategies
    # Strategy for signing in a user, based on a authenticatable token. This works for both params
    # and http. For the former, all you need to do is to pass the params in the URL:
    #
    #   http://myapp.example.com/?user_token=SECRET
    #
    # For HTTP, you can pass the token as username and blank password. Since some clients may require
    # a password, you can pass "X" as password and it will simply be ignored.
    class TokenAuthenticatable < Authenticatable
      def store?
        !mapping.to.stateless_token
      end

      def authenticate!
        resource = mapping.to.find_for_token_authentication(authentication_hash)

        if validate(resource)
          resource.after_token_authentication
          success!(resource)
        elsif !halted?
          fail(:invalid_token)
        end
      end

    private

      # TokenAuthenticatable request is valid for any controller and any verb.
      def valid_request?
        true
      end

      # Do not use remember_me behavior with token.
      def remember_me?
        false
      end

      # Try both scoped and non scoped keys.
      def params_auth_hash
        params[scope] || params
      end

      # Overwrite authentication keys to use token_authentication_key.
      def authentication_keys
        @authentication_keys ||= [mapping.to.token_authentication_key]
      end
    end
  end
end

Warden::Strategies.add(:token_authenticatable, Devise::Strategies::TokenAuthenticatable)

Version data entries

12 entries across 12 versions & 3 rubygems

Version Path
devise_sociable-0.1.0 vendor/bundle/gems/devise-1.2.1/lib/devise/strategies/token_authenticatable.rb
devise-1.4.2 lib/devise/strategies/token_authenticatable.rb
devise-1.4.1 lib/devise/strategies/token_authenticatable.rb
devise-1.3.4 lib/devise/strategies/token_authenticatable.rb
devise-1.3.3 lib/devise/strategies/token_authenticatable.rb
devise-1.3.2 lib/devise/strategies/token_authenticatable.rb
devise-1.3.1 lib/devise/strategies/token_authenticatable.rb
devise-1.3.0 lib/devise/strategies/token_authenticatable.rb
devise-1.2.1 lib/devise/strategies/token_authenticatable.rb
devise-1.2.0 lib/devise/strategies/token_authenticatable.rb
devise-jdguyot-1.2.rc3 lib/devise/strategies/token_authenticatable.rb
devise-1.2.rc2 lib/devise/strategies/token_authenticatable.rb