Class: CamaleonCms::Admin::SessionsController
- Inherits:
-
CamaleonController
- Object
- CamaleonController
- CamaleonCms::Admin::SessionsController
- Defined in:
- app/controllers/camaleon_cms/admin/sessions_controller.rb
Instance Method Summary collapse
- #confirm_email ⇒ Object
- #forgot ⇒ Object
-
#login ⇒ Object
you can pass return_to as a param (mysite.com/admin/login?return_to=my-url) and this will be used after user logged in.
- #login_post ⇒ Object
- #logout ⇒ Object
- #register ⇒ Object
Instance Method Details
#confirm_email ⇒ Object
124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 124 def confirm_email @user = current_site.users.new if params[:h] @user = current_site.users.where(confirm_email_token: params[:h]).first if @user.nil? flash[:error] = t('camaleon_cms.admin.login.message.confirm_email_token_incorrect') elsif @user.confirm_email_sent_at.nil? || @user.confirm_email_sent_at < 2.hours.ago flash[:error] = t('camaleon_cms.admin.login.message.confirm_email_token_expired') else flash[:notice] = t('camaleon_cms.admin.login.message.confirm_email_success') @user.is_valid_email = true @user.save! end end redirect_to cama_admin_login_path end |
#forgot ⇒ Object
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 55 def forgot @user = current_site.users.new # get form reset password if params[:h] @user = current_site.users.where(password_reset_token: params[:h]).first if @user.nil? flash[:error] = t('camaleon_cms.admin.login.message.forgot_url_incorrect') redirect_to cama_forgot_path return elsif @user.password_reset_sent_at < 2.hours.ago flash[:error] = t('camaleon_cms.admin.login.message.forgot_expired') redirect_to cama_admin_login_path else # saved new password if params[:user].present? if @user.update(params[:user].permit(:password, :password_confirmation)) flash[:notice] = t('camaleon_cms.admin.login.message.reset_password_succes') redirect_to cama_admin_login_path return else flash[:error] = t('camaleon_cms.admin.login.message.reset_password_error') end end @form_reset = true render "forgot" return end end # TODO: Move this out of the controller # send email reset password if params[:user].present? data_user = user_permit_data @user = current_site.users.find_by_email(data_user[:email]) if @user.present? send_password_reset_email(@user) flash[:notice] = t('camaleon_cms.admin.login.message.send_mail_succes') redirect_to cama_admin_login_path return else flash[:error] = t('camaleon_cms.admin.login.message.send_mail_error') @user = current_site.users.new(data_user) end end end |
#login ⇒ Object
you can pass return_to as a param (mysite.com/admin/login?return_to=my-url) and this will be used after user logged in
9 10 11 12 13 14 15 16 17 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 9 def login if signin? return redirect_to (params[:return_to].present? ? params[:return_to] : cama_admin_dashboard_path) else [:return_to] = params[:return_to] if params[:return_to].present? @user ||= current_site.users.new end render "login" end |
#login_post ⇒ Object
19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 19 def login_post data_user = user_permit_data cipher = Gibberish::AES::CBC.new(cama_get_session_id) data_user[:password] = cipher.decrypt(data_user[:password]) rescue nil @user = current_site.users.find_by_username(data_user[:username]) captcha_validate = captcha_verify_if_under_attack("login") r = {user: @user, params: params, password: data_user[:password], captcha_validate: captcha_validate, stop_process: false}; hooks_run("user_before_login", r) return if r[:stop_process] # permit to redirect for data completion if captcha_validate && @user && @user.authenticate(data_user[:password]) #Email validation if is necessary if @user.is_valid_email? || !current_site.need_validate_email? cama_captcha_reset_attack("login") r={user: @user, redirect_to: nil}; hooks_run('after_login', r) login_user(@user, params[:remember_me].present?, r[:redirect_to]) else flash[:error] = t('camaleon_cms.admin.login.message.email_not_validated') @user = current_site.users.new(data_user) login end else cama_captcha_increment_attack("login") if captcha_validate flash[:error] = t('camaleon_cms.admin.login.message.fail') else flash[:error] = t('camaleon_cms.admin.login.message.invalid_caption') end @user = current_site.users.new(data_user) login end end |
#logout ⇒ Object
50 51 52 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 50 def logout cama_logout_user end |
#register ⇒ Object
101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 |
# File 'app/controllers/camaleon_cms/admin/sessions_controller.rb', line 101 def register @user ||= current_site.users.new if params[:user].present? params[:user][:role] = PluginRoutes.system_info["default_user_role"] params[:user][:is_valid_email] = false if current_site.need_validate_email? user_data = user_permit_data result = cama_register_user(user_data, params[:meta]) if result[:result] == false && result[:type] == :captcha_error @user.errors[:captcha] = t('camaleon_cms.admin.users.message.error_captcha') render 'register' elsif result[:result] flash[:notice] = result[:message] send_user_confirm_email(@user) if current_site.need_validate_email? r = {user: @user, redirect_url: result[:redirect_url]}; hooks_run('user_registered', r) redirect_to r[:redirect_url] else render 'register' end else render 'register' end end |