ruby on rails - Having Log in & Session Errors -


first i'd let know can create new user , start session new user. cannot log in new user.

not distract answering think error within authenticating user.

currently if in sessions controller. if have below.

user = user.find_by(params[:email]) if user && user.authenticate(params[:session][:password])

i redirected login page because password doesn't match. can login if have below. not start session correct user.

user = user.find_by(params[:email]) if user

again can create new users, user count increase, cannot log in user once end session.

class sessionscontroller < applicationcontroller  def new end  def create user = user.find_by(params[:email])  if user && user.authenticate(params[:session])   session[:user_id] = user.id   case user.admin_level     when 1        session[:site_admin] = true        session[:can_create_post] = true     when 2        session[:creator] = true       session[:can_create_post] = true      when 3       session[:friend] = true       session[:can_comment_on_post] = true   end   if params[:remember_me]   cookies.permanent[:auth_token] = user.auth_token   else     cookies[:auth_token] = user.auth_token   end   log_in user   redirect_to user, :notice => "logged in!" else  flash.now[:danger] = 'invalid email/password combination' # not quite right!   redirect_to root_url end end  def loggedin? @user = session[:user_id] redirect_to page_path(current_user) end  def destroy log_out if logged_in? cookies.delete(:auth_token) session.clear redirect_to root_url, :notice => "logged out!" end  def session_params   params.require(:session).permit(:user_id) end  end

my user model looks below

  class user < activerecord::base attr_accessor :remember_token, :image  before_create { generate_token(:auth_token) }  mount_uploader :image, imageuploader  mount_uploader :avatar, avataruploader  validates :name, presence: true, length: { maximum: 50 }  before_save { email.downcase! }  before_save { name.capitalize! }  valid_email_regex = /\a[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i  validates :email, presence: true , length: { maximum: 255 },             format: {with: valid_email_regex },             uniqueness: { case_sensitive: false }  has_secure_password  validates :password, length: { minimum: 6 }, allow_blank: true   def user.digest(string)     cost = activemodel::securepassword.min_cost ?     bcrypt::engine::min_cost :                                                   bcrypt::engine.cost     bcrypt::password.create(string, cost: cost) end   def user.new_token     securerandom.urlsafe_base64 end  def remember     self.remember_token = user.new_token     update_attribute(:remember_digest, user.digest(remember_token)) end  def forget   update_attribute(:remember_digest, nil) end  def authenticated?(remember_token)     bcrypt::password.new(remember_digest).is_password?(remember_token) end     def generate_token(column)   begin     self[column] = securerandom.urlsafe_base64   end while user.exists?(column => self[column]) end  def authenticated?(remember_token) bcrypt::password.new(remember_digest).is_password?(remember_token) end  end


Comments

Post a Comment

Popular posts from this blog

angularjs - ADAL JS Angular- WebAPI add a new role claim to the token -

i have created angular spa webapi backend using adal js authentication.as there no roles in ad, need manually add role claims in order give users access different api controllers. the roles stored in database. expecting inject claim through call webapi after authentication ad. webapi code might this. identity.addclaim(new claim("role", "user")); var ticket = new authenticationticket(identity, props); var accesstoken = startup.oauthbeareroptions.accesstokenformat.protect(ticket); is possible replace adal idtoken new token? is viable solution or there other better way handle this? as initial token generated azuread, possible edit token add new claim? appreciated. graph api supporting group claims. see here: http://justazure.com/azure-active-directory-part-4-group-claims/ if @ examples on page, users assigned groups , app can check group in claims. in current version of portal, need app manifest , modify it.
Read more

node.js - Using Node without global install -

i'm working on few node & electron (atom shell) projects , i'm curious how them work without user having install node globally. i've seen few applications including node directory in project contains node.exe binary. how go setting node project use binary? edit: thought should add, i've searched everywhere answer this, unrelated results.
Read more

php - CakePHP HttpSockets send array of paramms -

i problem when make request (i can request). $link = 'http://uri/path/?param1=1&sid=2&sid=3&sid=4' $http = $httpsocket = new httpsocket(); $res = $httpsocket->get($link); if check request pr($http); i see : [line] => /url/path/?param1=1&sid%5b0%5d=2&sid%5b1%5d=3&sid%5b2%5d=4 http/1.1 and i'm getting empty response because server doesn't know parameters sid%5b0%5d=2 when try send parameters array : $data = array('param1' => '1', 'sid' => array('2','3', '4')); i see same changes %5b0%5d - additional indexes. how fix it? unfortunately , can not change server side, if send request in browser, i'll normal response in json format. when make request, can parameters this: $param1 = $_get['param1']; $sid= $_get['sid']; tip: use diferente names parameters. have multiples sid. use sid1, sid2, sid3... update: can parameters this:...
Read more