Class: SparklySessionsController

Inherits:

SparklyController

• Object
• SparklyController
• SparklySessionsController

Defined in:

app/controllers/sparkly_sessions_controller.rb

Instance Method Summary

• #create ⇒ Object

  POST model_session_url.

• #destroy ⇒ Object

  DELETE model_session_url.

• #new ⇒ Object

  GET new_model_session_url.

Instance Method Details

#create ⇒ Object

POST model_session_url

# File 'app/controllers/sparkly_sessions_controller.rb', line 9

def create
  if session[:locked_out_at] && session[:locked_out_at] > Auth.account_lock_duration.ago
    flash[:error] = Auth.account_locked_message
    render :action => 'new'
    return
  end
  
  model = model_class.find(:first, :conditions => { model_config.key => model_params[model_config.key] },
                           :include => :passwords)
  
  if model && model.password_matches?(model_params[:password])
    login! model, :remember => remember_me?
    redirect_back_or_default Auth.default_destination, Auth.login_successful_message
  else
    session[:login_failures] = session[:login_failures].to_i + 1
    if Auth.max_login_failures && session[:login_failures] >= Auth.max_login_failures
      session[:locked_out_at] = Time.now
      flash[:error] = Auth.account_locked_message
    else
      flash[:error] = Auth.invalid_credentials_message
    end
    render :action => "new"
  end
end

#destroy ⇒ Object

DELETE model_session_url

# File 'app/controllers/sparkly_sessions_controller.rb', line 35

def destroy
  logout!(:forget => true)
  redirect_back_or_default Auth.default_destination, Auth.logout_message
end

#new ⇒ Object

GET new_model_session_url

# File 'app/controllers/sparkly_sessions_controller.rb', line 5

def new
end