Module: RailsJwtAuth::Lockable

Defined in:

app/models/concerns/rails_jwt_auth/lockable.rb

Constant Summary

BOTH_UNLOCK_STRATEGIES =

%i[time email].freeze

Class Method Summary

• .included(base) ⇒ Object

Instance Method Summary

• #access_locked? ⇒ Boolean
• #clean_lock ⇒ Object
• #failed_attempt ⇒ Object
• #lock_access ⇒ Object
• #unlock_access ⇒ Object

Class Method Details

.included(base) ⇒ Object

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 5

def self.included(base)
  base.class_eval do
    if defined?(Mongoid) && ancestors.include?(Mongoid::Document)
      field :failed_attempts,         type: Integer
      field :unlock_token,            type: String
      field :first_failed_attempt_at, type: Time
      field :locked_at,               type: Time
    end
  end
end

Instance Method Details

#access_locked? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 36

def access_locked?
  locked_at && !lock_expired?
end

#clean_lock ⇒ Object

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 24

def clean_lock
  self.locked_at = nil
  self.unlock_token = nil
  reset_attempts
end

#failed_attempt ⇒ Object

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 40

def failed_attempt
  return if access_locked?

  reset_attempts if attempts_expired?

  self.failed_attempts ||= 0
  self.failed_attempts += 1
  self.first_failed_attempt_at = Time.current if failed_attempts == 1

  save(validate: false).tap do |result|
    lock_access if result && attempts_exceeded?
  end
end

#lock_access ⇒ Object

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 16

def lock_access
  self.locked_at = Time.current

  save(validate: false).tap do |result|
    send_unlock_instructions if result && unlock_strategy_enabled?(:email)
  end
end

#unlock_access ⇒ Object

# File 'app/models/concerns/rails_jwt_auth/lockable.rb', line 30

def unlock_access
  clean_lock

  save(validate: false) if changed?
end