Class: Guts::SessionsController

Inherits:

ApplicationController

• Object
• ActionController::Base
• ApplicationController
• Guts::SessionsController

Defined in:

app/controllers/guts/sessions_controller.rb

Overview

Sessions controller

Instance Method Summary

• #create ⇒ Object

  Checks the users session through post.

• #destroy ⇒ Object

  Destroys a user session.

• #forgot ⇒ Object

  Forgot password page.

• #forgot_token ⇒ Object

  Sends the user a new token by email to reset their password.

• #new ⇒ Object

  Creation of a new session (login page).

• #reset_password ⇒ Object

  Resets the user’s password.

Instance Method Details

#create ⇒ Object

Note:

It will redirect to Guts::UsersController if successful and it will redirect back to #new if not

Checks the users session through post

See Also:

• Guts::SessionsHelper#log_in

# File 'app/controllers/guts/sessions_controller.rb', line 13

def create
  user = User.find_by(email: params[:session][:email].downcase)

  if user && user.authenticate(params[:session][:password])
    log_in user
    redirect_to home_path
  else
    flash.now[:alert] = 'Invalid login credentials'
    render :new
  end
end

#destroy ⇒ Object

Destroys a user session

See Also:

• Guts::SessionsHelper#log_out

# File 'app/controllers/guts/sessions_controller.rb', line 27

def destroy
  log_out
  flash[:notice] = 'You have been logged out'
  redirect_to new_session_path
end

#forgot ⇒ Object

Forgot password page

# File 'app/controllers/guts/sessions_controller.rb', line 34

def forgot; end

#forgot_token ⇒ Object

Sends the user a new token by email to reset their password

# File 'app/controllers/guts/sessions_controller.rb', line 37

def forgot_token
  user = User.find_by(email: params[:session][:email].downcase)
  
  if user
    password = Digest::SHA1.hexdigest("#{Time.current}#{rand(100)}")[0, 8]
    user.update_attribute(:password_token, password)
    UserMailer.password_reset(user).deliver_now

    flash[:notice] = 'Your reset link has been sent to your inbox.'
    redirect_to new_session_path
  else
    flash.now[:alert] = 'Invalid email address'
    render :forgot
  end
end

#new ⇒ Object

Creation of a new session (login page)

# File 'app/controllers/guts/sessions_controller.rb', line 7

def new; end

#reset_password ⇒ Object

Resets the user’s password

# File 'app/controllers/guts/sessions_controller.rb', line 54

def reset_password
  new_password = Digest::SHA1.hexdigest("#{Time.current}#{rand(100)}")[0, 8]
  user         = User.find_by(password_token: params[:token])
  user.update(password_token: nil, password: new_password)

  flash[:notice] = "Your new password is now: #{new_password}. You may now login with it."
  redirect_to new_session_path
end