Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Fetching contributors…

Cannot retrieve contributors at this time

99 lines (80 sloc) 2.425 kB
class Clearance::PasswordsController < ApplicationController
unloadable
skip_before_filter :authorize, :only => [:create, :edit, :new, :update]
before_filter :forbid_missing_token, :only => [:edit, :update]
before_filter :forbid_non_existent_user, :only => [:edit, :update]
def create
if user = find_user_for_create
user.forgot_password!
::ClearanceMailer.change_password(user).deliver
render :template => 'passwords/create'
else
flash_failure_after_create
render :template => 'passwords/new'
end
end
def edit
@user = find_user_for_edit
render :template => 'passwords/edit'
end
def new
render :template => 'passwords/new'
end
def update
@user = find_user_for_update
if @user.update_password params[:user][:password]
sign_in @user
redirect_to url_after_update
else
flash_failure_after_update
render :template => 'passwords/edit'
end
end
private
def find_user_by_id_and_confirmation_token
Clearance.configuration.user_model.
find_by_id_and_confirmation_token params[:user_id], params[:token].to_s
end
def find_user_for_create
Clearance.configuration.user_model.find_by_email params[:password][:email]
end
def find_user_for_edit
find_user_by_id_and_confirmation_token
end
def find_user_for_update
find_user_by_id_and_confirmation_token
end
def flash_failure_when_forbidden
flash.now[:notice] = translate(:forbidden,
:scope => [:clearance, :controllers, :passwords],
:default => 'Please double check the URL or try submitting the form again.')
end
def flash_failure_after_create
flash.now[:notice] = translate(:unknown_email,
:scope => [:clearance, :controllers, :passwords],
:default => 'Unknown email.')
end
def flash_failure_after_update
flash.now[:notice] = translate(:blank_password,
:scope => [:clearance, :controllers, :passwords],
:default => "Password can't be blank.")
end
def forbid_missing_token
if params[:token].to_s.blank?
flash_failure_when_forbidden
render :template => 'passwords/new'
end
end
def forbid_non_existent_user
unless find_user_by_id_and_confirmation_token
flash_failure_when_forbidden
render :template => 'passwords/new'
end
end
def url_after_create
sign_in_url
end
def url_after_update
'/'
end
end
Jump to Line
Something went wrong with that request. Please try again.