# Each time the user is set we verify if it is still able to really sign in.
# This is done by checking the time frame the user is able to sign in without
# confirming it's account. If the user has not confirmed it's account during
# this time frame, he/she will not able to sign in anymore.
Warden::Manager.after_set_user do |record, warden, options|
  if record && record.respond_to?(:active?) && !record.active?
    scope = options[:scope]
    warden.logout(scope)
    if warden.winning_strategy
      # If winning strategy was set, this is being called after authenticate and
      # there is no need to force a redirect.
      warden.winning_strategy.fail!(:unconfirmed)
    else
      throw :warden, :scope => scope, :message => :unconfirmed
    end
  end
end