2024-12-31 14:20:22 +08:00
|
|
|
class User < ApplicationRecord
|
2025-01-08 10:14:36 +08:00
|
|
|
attr_accessor :remember_token, :activation_token, :reset_token
|
2024-12-31 14:20:22 +08:00
|
|
|
# before_save { self.email = email.downcase }
|
2025-01-06 18:38:39 +08:00
|
|
|
# before_save { email.downcase! }
|
|
|
|
|
before_save :downcase_email
|
|
|
|
|
before_create :create_activation_digest
|
2024-12-31 14:20:22 +08:00
|
|
|
validates :name, presence: true, length: { maximum: 50 }
|
|
|
|
|
VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-]+(\.[a-z\d\-]+)*\.[a-z]+\z/i
|
|
|
|
|
validates :email, presence: true, length: { maximum: 255 },
|
|
|
|
|
format: { with: VALID_EMAIL_REGEX },
|
|
|
|
|
uniqueness: true
|
|
|
|
|
has_secure_password
|
2025-01-03 10:55:42 +08:00
|
|
|
validates :password, presence: true, length: { minimum: 6 }, allow_nil: true
|
2025-01-02 11:59:27 +08:00
|
|
|
|
|
|
|
|
def User.digest(string)
|
|
|
|
|
cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST :
|
|
|
|
|
BCrypt::Engine.cost
|
|
|
|
|
BCrypt::Password.create(string, cost: cost)
|
|
|
|
|
end
|
2025-01-02 16:47:26 +08:00
|
|
|
|
|
|
|
|
def User.new_token
|
|
|
|
|
SecureRandom.urlsafe_base64
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def remember
|
|
|
|
|
self.remember_token = User.new_token
|
|
|
|
|
update_attribute(:remember_digest, User.digest(remember_token))
|
2025-01-02 17:49:06 +08:00
|
|
|
remember_digest
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# 返回一个会话令牌,防止会话劫持
|
|
|
|
|
# 简单起见,直接使用记忆令牌
|
|
|
|
|
def session_token
|
|
|
|
|
remember_digest || remember
|
2025-01-02 16:47:26 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class << self
|
|
|
|
|
def digest(string)
|
|
|
|
|
cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST :
|
|
|
|
|
BCrypt::Engine.cost
|
|
|
|
|
BCrypt::Password.create(string, cost: cost)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def new_token
|
|
|
|
|
SecureRandom.urlsafe_base64
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2025-01-06 18:38:39 +08:00
|
|
|
# powered by metaprogramming
|
|
|
|
|
def authenticated?(attribute, token)
|
|
|
|
|
digest = send("#{attribute}_digest")
|
|
|
|
|
return false if digest.nil?
|
|
|
|
|
BCrypt::Password.new(digest).is_password?(token)
|
2025-01-02 16:47:26 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def forget
|
|
|
|
|
update_attribute(:remember_digest, nil)
|
|
|
|
|
end
|
2025-01-06 18:38:39 +08:00
|
|
|
|
2025-01-08 10:14:36 +08:00
|
|
|
def activate
|
|
|
|
|
# update_attribute(:activated, true)
|
|
|
|
|
# update_attribute(:activated_at, Time.zone.now)
|
|
|
|
|
update_columns(activated: true, activated_at: Time.zone.now)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def send_activation_email
|
2025-01-08 18:00:25 +08:00
|
|
|
begin
|
|
|
|
|
result = UserMailer.account_activation(self).deliver_now
|
|
|
|
|
Rails.logger.info "Email sent successfully: #{result.inspect}"
|
|
|
|
|
rescue => e
|
|
|
|
|
Rails.logger.error "Failed to send email: #{e.message}"
|
|
|
|
|
Rails.logger.error e.backtrace.join("\n")
|
|
|
|
|
raise
|
|
|
|
|
end
|
2025-01-08 10:14:36 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def create_reset_digest
|
|
|
|
|
self.reset_token = User.new_token
|
2025-01-08 11:44:42 +08:00
|
|
|
update_columns(reset_digest: User.digest(reset_token),
|
|
|
|
|
reset_send_at: Time.zone.now)
|
2025-01-08 10:14:36 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def send_password_reset_email
|
|
|
|
|
UserMailer.password_reset(self).deliver_now
|
|
|
|
|
end
|
|
|
|
|
|
2025-01-08 11:44:42 +08:00
|
|
|
def password_reset_expired?
|
|
|
|
|
reset_send_at < 2.hours.ago
|
|
|
|
|
end
|
|
|
|
|
|
2025-01-06 18:38:39 +08:00
|
|
|
private
|
|
|
|
|
|
|
|
|
|
def downcase_email
|
|
|
|
|
# self.email = email.downcase
|
|
|
|
|
email.downcase!
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def create_activation_digest
|
|
|
|
|
self.activation_token = User.new_token
|
|
|
|
|
self.activation_digest = User.digest(activation_token)
|
|
|
|
|
end
|
2024-12-31 14:20:22 +08:00
|
|
|
end
|
