Module: DeviseOtpAuthenticatable::Hooks::Sessions

Extended by:

ActiveSupport::Concern

Includes:

Controllers::UrlHelpers

Defined in:

lib/devise_otp_authenticatable/hooks/sessions.rb

Instance Method Summary

• #create_with_otp {|resource| ... } ⇒ Object

  replaces Devise::SessionsController#create.

Methods included from Controllers::UrlHelpers

#otp_credential_path_for, #otp_token_path_for, #persistence_otp_token_path_for, #recovery_otp_token_for, #refresh_otp_credential_path_for

Instance Method Details

#create_with_otp {|resource| ... } ⇒ Object

replaces Devise::SessionsController#create

Yields:

• (resource)

# File 'lib/devise_otp_authenticatable/hooks/sessions.rb', line 13

def create_with_otp
  resource = warden.authenticate!(auth_options)

  devise_stored_location = stored_location_for(resource) # Grab the current stored location before it gets lost by warden.logout
  store_location_for(resource, devise_stored_location) # Restore it since #stored_location_for removes it

  otp_refresh_credentials_for(resource)

  yield resource if block_given?
  if otp_challenge_required_on?(resource)
    challenge = resource.generate_otp_challenge!
    warden.logout
    store_location_for(resource, devise_stored_location) # restore the stored location
    respond_with resource, location: otp_credential_path_for(resource, {challenge: challenge})
  elsif otp_mandatory_on?(resource) # if mandatory, log in user but send him to the must activate otp
    set_flash_message(:notice, :signed_in_but_otp) if is_navigational_format?
    sign_in(resource_name, resource)
    respond_with resource, location: otp_token_path_for(resource)
  else
    sign_in(resource_name, resource)
    respond_with resource, location: after_sign_in_path_for(resource)
  end
end