mirror of
https://github.com/heartcombo/devise.git
synced 2022-11-09 12:18:31 -05:00
72 lines
2.6 KiB
Ruby
72 lines
2.6 KiB
Ruby
require 'devise/strategies/token_authenticatable'
|
|
|
|
module Devise
|
|
module Models
|
|
# The TokenAuthenticatable module is responsible for generating an authentication token and
|
|
# validating the authenticity of the same while signing in.
|
|
#
|
|
# This module only provides a few helpers to help you manage the token, but it is up to you
|
|
# to choose how to use it. For example, if you want to have a new token every time the user
|
|
# saves his account, you can do the following:
|
|
#
|
|
# before_save :reset_authentication_token
|
|
#
|
|
# On the other hand, if you want to generate token unless one exists, you should use instead:
|
|
#
|
|
# before_save :ensure_authentication_token
|
|
#
|
|
# If you want to delete the token after it is used, you can do so in the
|
|
# after_token_authentication callback.
|
|
#
|
|
# == Options
|
|
#
|
|
# TokenAuthenticatable adds the following options to devise_for:
|
|
#
|
|
# * +token_authentication_key+: Defines name of the authentication token params key. E.g. /users/sign_in?some_key=...
|
|
#
|
|
# * +stateless_token+: By default, when you sign up with a token, Devise will store the user in session
|
|
# as any other authentication strategy. You can set stateless_token to true to avoid this.
|
|
#
|
|
module TokenAuthenticatable
|
|
extend ActiveSupport::Concern
|
|
|
|
# Generate new authentication token (a.k.a. "single access token").
|
|
def reset_authentication_token
|
|
self.authentication_token = self.class.authentication_token
|
|
end
|
|
|
|
# Generate new authentication token and save the record.
|
|
def reset_authentication_token!
|
|
reset_authentication_token
|
|
save(:validate => false)
|
|
end
|
|
|
|
# Generate authentication token unless already exists.
|
|
def ensure_authentication_token
|
|
reset_authentication_token if authentication_token.blank?
|
|
end
|
|
|
|
# Generate authentication token unless already exists and save the record.
|
|
def ensure_authentication_token!
|
|
reset_authentication_token! if authentication_token.blank?
|
|
end
|
|
|
|
# Hook called after token authentication.
|
|
def after_token_authentication
|
|
end
|
|
|
|
module ClassMethods
|
|
def find_for_token_authentication(conditions)
|
|
find_for_authentication(:authentication_token => conditions[token_authentication_key])
|
|
end
|
|
|
|
# Generate a token checking if one does not already exist in the database.
|
|
def authentication_token
|
|
generate_token(:authentication_token)
|
|
end
|
|
|
|
::Devise::Models.config(self, :token_authentication_key, :stateless_token)
|
|
end
|
|
end
|
|
end
|
|
end
|