Method: Oauth::AuthorizationsController#new

Defined in:
app/controllers/oauth/authorizations_controller.rb

#newObject

Overridden from Doorkeeper::AuthorizationsController to include the call to session.delete



24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
 
# File 'app/controllers/oauth/authorizations_controller.rb', line 24

def new
  if pre_auth.authorizable?
    if skip_authorization? || (matching_token? && pre_auth.client.application.confidential?)
      auth = authorization.authorize
      parsed_redirect_uri = URI.parse(auth.redirect_uri)
      session.delete(:user_return_to)
      render "doorkeeper/authorizations/redirect", locals: { redirect_uri: parsed_redirect_uri }, layout: false
    else
      redirect_uri = URI(authorization.authorize.redirect_uri)
      allow_redirect_uri_form_action(redirect_uri.scheme)

      render "doorkeeper/authorizations/new"
    end
  else
    render "doorkeeper/authorizations/error"
  end
end