songtianlun
a54ebdbf23
- Implement AccountActivationsController for activation logic - Create UserMailer for sending activation emails - Update SessionsController to handle unactivated users - Modify UsersController to restrict access to activated users - Add activation fields to User model and database migration - Create views for account activation emails - Add tests for account activation functionality
33 lines
930 B
Ruby
33 lines
930 B
Ruby
class SessionsController < ApplicationController
|
|
include SessionsHelper
|
|
def new
|
|
end
|
|
|
|
def create
|
|
user = User.find_by(email: params[:session][:email].downcase)
|
|
# if user && user.authenticate(params[:session][:password])
|
|
if user&.authenticate(params[:session][:password])
|
|
if user.activated?
|
|
forwarding_url = session[:forwarding_url]
|
|
reset_session
|
|
params[:session][:remember_me] == "1" ? remember(user) : forget(user)
|
|
log_in user
|
|
redirect_to forwarding_url || user
|
|
else
|
|
message = "Account not activated. "
|
|
message += "Check your email for the activation link."
|
|
flash[:danger] = message
|
|
redirect_to root_url
|
|
end
|
|
else
|
|
flash.now[:danger] = "Invalid email/password combination"
|
|
render "new", status: :unprocessable_entity
|
|
end
|
|
end
|
|
|
|
def destroy
|
|
log_out if logged_in?
|
|
redirect_to root_url
|
|
end
|
|
end
|