An invitation strategy for devise
Pull request Compare This branch is 2 commits ahead, 114 commits behind rymai:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.



It adds support to devise for send invitations by email (it requires to be authenticated) and accept the invitation setting the password.


All gems are on gemcutter, so you need to add gemcutter to your sources if you haven’t yet:

sudo gem sources -a

Install devise_invitable gem, it should install dependencies (such as devise and warden):

sudo gem install devise_invitable

Configure devise_invitable inside your app (and warden and devise if you weren't using them):

config.gem 'warden'
config.gem 'devise'
config.gem 'devise_invitable'

Basic Usage

Follow the walkthrough for devise with the following modifications.

Add t.invitable to the migration:

create_table :users do
add_index :users, :invitation_token # for invitable

Add :invitable to the devise line in your model:

class User < ActiveRecord::Base
  devise ..., :invitable

If you are using devise :all, you can add :invitable to config.all in devise initializer:

Devise.setup do |config|
  config.all = [..., :invitable]

Model configuration

DeviseInvitable adds a new configuration option, :invite_for. It's the time a invitation is valid for. Default value is nil, which means invitation doesn't expire.

Controller filters

It adds authenticate_resource! filter to restrict who can send invitations. You can override this method in your ApplicationController. Default behavior is require authentication of the same resource_name, so if you only have a model with devise it will allow to all authenticated users to send invitations.

You have to configure mailer as it's required for confirmable and recoverable.


It uses two flash messages, :send_invitation and :updated, which are translated as other flash messages from devise.

Adding Invitable to a running application

Define a migration to add invitable to your model:

change_table :your_table do |t|
  t.string :invitation_token, :limit => 20
  t.datetime :invitation_sent_at
  t.index :invitation_token

# Allow null encrypted_password and password_salt
change_column :your_table, :encrypted_password, :string, :null => true
change_column :your_table, :password_salt, :string, :null => true

Add :invitable to the devise line of your model, or to config.all in devise initializer if your model uses devise :all.

Override authenticate_resource! filter if you need to customize who can send invitations.

Note on Patches/Pull Requests

  • Fork the project.

  • Make your feature addition or bug fix.

  • Add tests for it. This is important so I don't break it in a future version unintentionally.

  • Commit, do not mess with rakefile, version, or history. (if you want to have your own version, that is fine but bump version in a commit by itself I can ignore when I pull)

  • Send me a pull request. Bonus points for topic branches.


Copyright © 2009 Sergio Cambra. See LICENSE for details.