heartcombo--devise/lib/devise/hooks/activatable.rb

# Deny user access whenever his account is not active yet. All strategies that inherits from
# Devise::Strategies::Authenticatable and uses the validate already check if the user is active_for_authentication?
# before actively signing him in. However, we need this as hook to validate the user activity
# in each request and in case the user is using other strategies beside Devise ones.
Warden::Manager.after_set_user do |record, warden, options|
  if record && record.respond_to?(:active_for_authentication?) && !record.active_for_authentication?
    scope = options[:scope]
    warden.logout(scope)
    throw :warden, :scope => scope, :message => record.inactive_message
  end
end
Add tests to cookie domain, closes #254. 2010-05-16 08:13:43 -04:00			`# Deny user access whenever his account is not active yet. All strategies that inherits from`
Rename active? to active_for_authentication? 2011-03-25 10:39:08 -04:00			`# Devise::Strategies::Authenticatable and uses the validate already check if the user is active_for_authentication?`
Add tests to cookie domain, closes #254. 2010-05-16 08:13:43 -04:00			`# before actively signing him in. However, we need this as hook to validate the user activity`
			`# in each request and in case the user is using other strategies beside Devise ones.`
Remember token is now properly stored and specified one for each user. 2009-11-13 14:23:32 -05:00			`Warden::Manager.after_set_user do \|record, warden, options\|`
Rename active? to active_for_authentication? 2011-03-25 10:39:08 -04:00			`if record && record.respond_to?(:active_for_authentication?) && !record.active_for_authentication?`
Don't pass options forward, this fixes uncaught warden error. Unfortunately could not write a test for it, although easily reproducible in Rails applications. Closes #754 2011-01-03 10:24:07 -05:00			`scope = options[:scope]`
			`warden.logout(scope)`
			`throw :warden, :scope => scope, :message => record.inactive_message`
Verify confirmation time frame to let the user sign in or block it if the user is not confirmed. 2009-10-21 09:20:10 -04:00			`end`
:activatable is included by default in your models. If you are building a strategy for devise, you now need to call validate(resource), since Devise has now a default API to validate resources before and after signing them in. You can still use other Warden::Strategies with Devise, but they won't work with a few modules like unlockable (they never did, but now we have a single point to make it work). 2010-04-06 10:34:22 -04:00			`end`