sample_rails_tailwind/app/controllers/sessions_controller.rb

class SessionsController < ApplicationController
  include SessionsHelper
  def new
  end

  def create
    user = User.find_by(email: params[:session][:email].downcase)
    # if user && user.authenticate(params[:session][:password])
    if user&.authenticate(params[:session][:password])
      reset_session
      remember user
      log_in user
      redirect_to user
    else
      flash.now[:danger] = 'Invalid email/password combination'
      render 'new'
    end
  end

  def destroy
    log_out if logged_in?
    redirect_to root_url
  end
end
feat(sample): add session and header 2025-01-01 15:44:50 +08:00			`class SessionsController < ApplicationController`
			`include SessionsHelper`
			`def new`
			`end`

			`def create`
			`user = User.find_by(email: params[:session][:email].downcase)`
feat: enhance user session management - Update session creation to use safe navigation operator - Implement log_out method in SessionsHelper - Add session reset and login on user creation - Improve user login tests for better coverage These changes improve the user session management by ensuring that the session is handled more safely and efficiently. The addition of the log_out method centralizes session termination, while the updated tests ensure that both login and logout functionality are thoroughly validated. 2025-01-02 11:59:27 +08:00			`# if user && user.authenticate(params[:session][:password])`
			`if user&.authenticate(params[:session][:password])`
feat(sample): add session and header 2025-01-01 15:44:50 +08:00			`reset_session`
feat: add remember me functionality for user sessions - Implement remember method in User model to generate and store a remember token - Update SessionsController to call remember on successful login - Enhance current_user method to retrieve user from cookies if session is not present - Add forget method to clear remember token on logout - Create migration to add remember_digest column to users table 2025-01-02 16:47:26 +08:00			`remember user`
feat(sample): add session and header 2025-01-01 15:44:50 +08:00			`log_in user`
			`redirect_to user`
			`else`
			`flash.now[:danger] = 'Invalid email/password combination'`
			`render 'new'`
			`end`
			`end`

			`def destroy`
fix: ensure user logout only if logged in - Update `destroy` action in `SessionsController` to log out only if the user is currently logged in. - Add a check in the `authenticated?` method of the `User` model to return false if `remember_digest` is nil. - Enhance integration tests to simulate logout in another browser session and verify that the logout link is not present after logging out. These changes improve the robustness of the session management by preventing unnecessary logout attempts and ensuring that authentication checks are more reliable. 2025-01-02 17:17:09 +08:00			`log_out if logged_in?`
feat: enhance user session management - Update session creation to use safe navigation operator - Implement log_out method in SessionsHelper - Add session reset and login on user creation - Improve user login tests for better coverage These changes improve the user session management by ensuring that the session is handled more safely and efficiently. The addition of the log_out method centralizes session termination, while the updated tests ensure that both login and logout functionality are thoroughly validated. 2025-01-02 11:59:27 +08:00			`redirect_to root_url`
feat(sample): add session and header 2025-01-01 15:44:50 +08:00			`end`
			`end`