Class: SessionsController
- Inherits:
-
ApplicationController
- Object
- ApplicationController
- SessionsController
- Defined in:
- app/controllers/sessions_controller.rb
Instance Method Summary collapse
Instance Method Details
#create ⇒ Object
16 17 18 19 20 21 22 23 24 |
# File 'app/controllers/sessions_controller.rb', line 16 def create logout_keeping_session! if user = User.authenticate(params[:login], params[:password]) self.current_user = user authentication_succeeded and return else authentication_failed('Unable to verify your credentials through Twitter. Please try again.', '/login') and return end end |
#destroy ⇒ Object
60 61 62 63 |
# File 'app/controllers/sessions_controller.rb', line 60 def destroy logout_keeping_session! redirect_back_or_default('/') end |
#new ⇒ Object
2 3 4 5 6 7 8 9 10 11 12 13 14 |
# File 'app/controllers/sessions_controller.rb', line 2 def new if TwitterAuth.oauth? @request_token = TwitterAuth.consumer.get_request_token session[:request_token] = @request_token.token session[:request_token_secret] = @request_token.secret url = @request_token. url << "&oauth_callback=#{CGI.escape(TwitterAuth.oauth_callback)}" if TwitterAuth.oauth_callback? redirect_to url else # we don't have to do anything, it's just a simple form for HTTP basic! end end |
#oauth_callback ⇒ Object
26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 |
# File 'app/controllers/sessions_controller.rb', line 26 def oauth_callback unless session[:request_token] && session[:request_token_secret] authentication_failed('No authentication information was found in the session. Please try again.') and return end unless params[:oauth_token].blank? || session[:request_token] == params[:oauth_token] authentication_failed('Authentication information does not match session information. Please try again.') and return end @request_token = OAuth::RequestToken.new(TwitterAuth.consumer, session[:request_token], session[:request_token_secret]) @access_token = @request_token.get_access_token # The request token has been invalidated # so we nullify it in the session. session[:request_token] = nil session[:request_token_secret] = nil @user = User.identify_or_create_from_access_token(@access_token) session[:user_id] = @user.id [:remember_token] = @user.remember_me authentication_succeeded rescue Net::HTTPServerException, Net::HTTPFatalError, TwitterAuth::Dispatcher::Error => e case e. when '401 "Unauthorized"' authentication_failed('This authentication request is no longer valid. Please try again.') and return else authentication_failed('There was a problem trying to authenticate you. Please try again.') and return end end |