heartcombo--devise/app/controllers/devise/passwords_controller.rb

class Devise::PasswordsController < ApplicationController
  prepend_before_filter :require_no_authentication
  include Devise::Controllers::InternalHelpers

  # GET /resource/password/new
  def new
    build_resource({})
    render_with_scope :new
  end

  # POST /resource/password
  def create
    self.resource = resource_class.send_reset_password_instructions(params[resource_name])

    if successfully_sent?(resource)
      respond_with({}, :location => after_sending_reset_password_instructions_path_for(resource_name))
    else
      respond_with_navigational(resource){ render_with_scope :new }
    end
  end

  # GET /resource/password/edit?reset_password_token=abcdef
  def edit
    self.resource = resource_class.new
    resource.reset_password_token = params[:reset_password_token]
    render_with_scope :edit
  end

  # PUT /resource/password
  def update
    self.resource = resource_class.reset_password_by_token(params[resource_name])

    if resource.errors.empty?
      flash_message = resource.active_for_authentication? ? :updated : :updated_not_active
      set_flash_message(:notice, flash_message) if is_navigational_format?
      sign_in(resource_name, resource)
      respond_with resource, :location => after_sign_in_path_for(resource)
    else
      respond_with_navigational(resource){ render_with_scope :edit }
    end
  end

  protected

    # The path used after sending reset password instructions
    def after_sending_reset_password_instructions_path_for(resource_name)
      new_session_path(resource_name)
    end

end
Update views generator and now have scoped views. 2010-02-17 11:25:20 +00:00			`class Devise::PasswordsController < ApplicationController`
Use prepend_before_filter in require_no_authentication. We need to be sure require_no_authentication runs before other user filters that may call some Devise helper (ie current_xxx). Conflicts: app/controllers/devise/passwords_controller.rb app/controllers/devise/registrations_controller.rb app/controllers/devise/sessions_controller.rb app/controllers/devise/unlocks_controller.rb lib/devise/controllers/internal_helpers.rb test/rails_app/app/controllers/application_controller.rb 2010-03-26 11:26:51 +00:00			`prepend_before_filter :require_no_authentication`
DRY up controllers. 2010-01-13 17:12:13 +00:00			`include Devise::Controllers::InternalHelpers`
Do not include Devise internal helpers in application controller. 2009-10-27 23:26:40 +00:00
Stub out other views for Registerable. 2010-02-08 18:07:24 +00:00			`# GET /resource/password/new`
			`def new`
Tidy up lose ends. 2010-07-13 17:46:44 +00:00			`build_resource({})`
Stub out other views for Registerable. 2010-02-08 18:07:24 +00:00			`render_with_scope :new`
			`end`

			`# POST /resource/password`
			`def create`
			`self.resource = resource_class.send_reset_password_instructions(params[resource_name])`
Refactoring the paranoid controller 2011-05-20 22:49:53 +00:00
jh - reworking paranoid mode in passwords controller Signed-off-by: José Valim <jose.valim@gmail.com> 2011-10-12 21:12:20 +00:00			`if successfully_sent?(resource)`
Update CHANGELOG. 2011-06-23 12:22:30 +00:00			`respond_with({}, :location => after_sending_reset_password_instructions_path_for(resource_name))`
Refactoring passwords controller 2011-06-16 19:10:53 +00:00			`else`
Refactored paranoid mode actions for it to appear once 2011-06-22 15:33:28 +00:00			`respond_with_navigational(resource){ render_with_scope :new }`
Stub out other views for Registerable. 2010-02-08 18:07:24 +00:00			`end`
			`end`

Tidying up encryptors. 2009-11-10 20:55:13 +00:00			`# GET /resource/password/edit?reset_password_token=abcdef`
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`def edit`
Updating controllers to scope resource_class and changing mapping implementation to reload mapped class based on cache_classes configuration. 2009-10-10 14:05:56 +00:00			`self.resource = resource_class.new`
Separating perishable token into confirmation and reset_password tokens. Adding confirmation_sent_at attribute. 2009-10-18 11:14:52 +00:00			`resource.reset_password_token = params[:reset_password_token]`
Added scoped views support. Just turn it on in your Devise.setup. 2009-11-21 22:07:37 +00:00			`render_with_scope :edit`
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`end`

Better documentation. 2009-10-17 15:10:15 +00:00			`# PUT /resource/password`
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`def update`
Clean up lockable and class methods API. 2010-03-10 15:13:54 +00:00			`self.resource = resource_class.reset_password_by_token(params[resource_name])`
Better documentation. 2009-10-17 15:10:15 +00:00
Tests with resource and resource_class 2009-10-10 12:32:51 +00:00			`if resource.errors.empty?`
After a password reset, don't show "You are now signed in." if the user can't be signed-in anyway. 2011-08-31 22:24:10 +00:00			`flash_message = resource.active_for_authentication? ? :updated : :updated_not_active`
			`set_flash_message(:notice, flash_message) if is_navigational_format?`
Add support for non-navigational formats in PasswordsController Signed-off-by: José Valim <jose.valim@gmail.com> 2011-01-15 19:33:54 +00:00			`sign_in(resource_name, resource)`
after_sign_in_path_for now redirects to session[scope_return_to] if any value is stored in it 2011-09-29 11:07:13 +00:00			`respond_with resource, :location => after_sign_in_path_for(resource)`
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`else`
Refactor a bit navigational format responses, to not call to_sym and reuse the request_format logic from FailureApp. 2011-03-30 12:09:12 +00:00			`respond_with_navigational(resource){ render_with_scope :edit }`
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`end`
			`end`
Refactoring the paranoid controller 2011-05-20 22:49:53 +00:00
added ability to override redirect_to path after sending reset password instructions 2011-05-13 16:39:11 +00:00			`protected`

			`# The path used after sending reset password instructions`
			`def after_sending_reset_password_instructions_path_for(resource_name)`
			`new_session_path(resource_name)`
			`end`
Refactoring the paranoid controller 2011-05-20 22:49:53 +00:00
Configuring session and password controllers as engine, and getting integration tests from devise example app. 2009-10-08 00:46:40 +00:00			`end`