Class: User

Inherits:

Object

• Object
• User

Includes:

ActiveModel::Model, ActiveModel::SecurePassword

Defined in:

app/models/user.rb

Overview

NOTE: Application has “admin” user only

admin's password can be changed from browser, but user name "admin" can't be changed.
many clients can login at the same time (App has multiple active sessions)
raw password shouldn't be compromised (except default password)
you may find detail at https://github.com/treasure-data/fluentd-ui/pull/34

Constant Summary

ENCRYPTED_PASSWORD_FILE =

Rails.root + "db/#{Rails.env}-user.txt"

Instance Attribute Summary

• #current_password ⇒ Object

  Returns the value of attribute current_password.

• #name ⇒ Object

  Returns the value of attribute name.

• #password ⇒ Object

  Returns the value of attribute password.

• #password_confirmation ⇒ Object

  Returns the value of attribute password_confirmation.

• #password_digest ⇒ Object

Instance Method Summary

• #cost ⇒ Object
• #update_attributes(params) ⇒ Object
• #valid_current_password ⇒ Object

Instance Attribute Details

#current_password ⇒ Object

Returns the value of attribute current_password.

# File 'app/models/user.rb', line 15

def current_password
  @current_password
end

#name ⇒ Object

Returns the value of attribute name.

# File 'app/models/user.rb', line 15

def name
  @name
end

#password ⇒ Object

Returns the value of attribute password.

# File 'app/models/user.rb', line 15

def password
  @password
end

#password_confirmation ⇒ Object

Returns the value of attribute password_confirmation.

# File 'app/models/user.rb', line 15

def password_confirmation
  @password_confirmation
end

#password_digest ⇒ Object

# File 'app/models/user.rb', line 22

def password_digest
  @password_digest ||
    begin
      hash = File.read(ENCRYPTED_PASSWORD_FILE).rstrip
      BCrypt::Password.new(hash) # raise BCrypt::Errors::InvalidHash if hash is invalid
    rescue Errno::ENOENT, BCrypt::Errors::InvalidHash
      BCrypt::Password.create(Settings.default_password, cost: cost)
    end
end

Instance Method Details

#cost ⇒ Object

# File 'app/models/user.rb', line 43

def cost
  Rails.env.test? ? BCrypt::Engine::MIN_COST : BCrypt::Engine.cost
end

#update_attributes(params) ⇒ Object

# File 'app/models/user.rb', line 32

def update_attributes(params)
  params.each_pair do |key, value|
    send("#{key}=", value)
  end
  return false unless valid?

  File.open(ENCRYPTED_PASSWORD_FILE, "w") do |f|
    f.write BCrypt::Password.create(password, cost: cost)
  end
end

#valid_current_password ⇒ Object

# File 'app/models/user.rb', line 47

def valid_current_password
  unless authenticate(current_password)
    errors.add(:current_password, :wrong_password)
  end
end