gitlab-org--gitlab-foss/app/controllers/sessions_controller.rb

class SessionsController < Devise::SessionsController
  prepend_before_action :two_factor_enabled?, only: :create

  def new
    redirect_path =
      if request.referer.present? && (params['redirect_to_referer'] == 'yes')
        referer_uri = URI(request.referer)
        if referer_uri.host == Gitlab.config.gitlab.host
          referer_uri.path
        else
          request.fullpath
        end
      else
        request.fullpath
      end

    # Prevent a 'you are already signed in' message directly after signing:
    # we should never redirect to '/users/sign_in' after signing in successfully.
    unless redirect_path == new_user_session_path
      store_location_for(:redirect, redirect_path)
    end

    if Gitlab.config.ldap.enabled
      @ldap_servers = Gitlab::LDAP::Config.servers
    end

    super
  end

  def create
    super do |resource|
      # User has successfully signed in, so clear any unused reset tokens
      if resource.reset_password_token.present?
        resource.update_attributes(reset_password_token: nil,
                                   reset_password_sent_at: nil)
      end
    end
  end

  private

  def two_factor_enabled?
    user_params = params[:user]
    @user = User.by_login(user_params[:login])

    if user_params[:otp_attempt].present?
      unless @user.valid_otp?(user_params[:otp_attempt]) ||
        @user.recovery_code?(user_params[:otp_attempt])
        @error = 'Invalid two-factor code'
        render :two_factor and return
      end
    else
      if @user && @user.valid_password?(params[:user][:password])
        self.resource = @user

        if resource.otp_required_for_login
          render :two_factor and return
        end
      end
    end
  end
end
Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00			`class SessionsController < Devise::SessionsController`
prepend_before_filter -> prepend_before_action 2015-05-04 18:18:20 +00:00			`prepend_before_action :two_factor_enabled?, only: :create`
Turn 2-factor authentication into 2 steps process. Disabled 2fa UI for ldap users since it is not supported 2015-03-31 01:19:01 +00:00
Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00			`def new`
Improve application settings and write tests 2015-01-08 17:53:35 +00:00			`redirect_path =`
			`if request.referer.present? && (params['redirect_to_referer'] == 'yes')`
			`referer_uri = URI(request.referer)`
			`if referer_uri.host == Gitlab.config.gitlab.host`
			`referer_uri.path`
			`else`
			`request.fullpath`
			`end`
			`else`
			`request.fullpath`
			`end`
Call store_location_for once. 2014-07-22 06:34:16 +00:00
Only redirect to referrer from public GitLab pages 2014-07-25 16:30:25 +00:00			`# Prevent a 'you are already signed in' message directly after signing:`
			`# we should never redirect to '/users/sign_in' after signing in successfully.`
Don't use hard-coded sign_in path 2015-05-04 18:18:32 +00:00			`unless redirect_path == new_user_session_path`
Only redirect to referrer from public GitLab pages 2014-07-25 16:30:25 +00:00			`store_location_for(:redirect, redirect_path)`
			`end`
Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00
Add refactoring for multiple LDAP server support These changes are ported from EE to CE. Apply changes for app directory 2014-10-13 11:39:54 +00:00			`if Gitlab.config.ldap.enabled`
Use Hash syntax for LDAP server declaration 2014-10-14 11:11:53 +00:00			`@ldap_servers = Gitlab::LDAP::Config.servers`
Add refactoring for multiple LDAP server support These changes are ported from EE to CE. Apply changes for app directory 2014-10-13 11:39:54 +00:00			`end`

Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00			`super`
			`end`

			`def create`
Upon successful login, clear `reset_password_token` field Closes #1942 2015-04-08 18:26:04 +00:00			`super do \|resource\|`
			`# User has successfully signed in, so clear any unused reset tokens`
			`if resource.reset_password_token.present?`
			`resource.update_attributes(reset_password_token: nil,`
			`reset_password_sent_at: nil)`
			`end`
			`end`
Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00			`end`
Turn 2-factor authentication into 2 steps process. Disabled 2fa UI for ldap users since it is not supported 2015-03-31 01:19:01 +00:00
			`private`

			`def two_factor_enabled?`
			`user_params = params[:user]`
			`@user = User.by_login(user_params[:login])`

			`if user_params[:otp_attempt].present?`
Add support for backup codes 2015-03-31 19:42:17 +00:00			`unless @user.valid_otp?(user_params[:otp_attempt]) \|\|`
			`@user.recovery_code?(user_params[:otp_attempt])`
Turn 2-factor authentication into 2 steps process. Disabled 2fa UI for ldap users since it is not supported 2015-03-31 01:19:01 +00:00			`@error = 'Invalid two-factor code'`
			`render :two_factor and return`
			`end`
			`else`
			`if @user && @user.valid_password?(params[:user][:password])`
			`self.resource = @user`

			`if resource.otp_required_for_login`
			`render :two_factor and return`
			`end`
			`end`
			`end`
			`end`
Use devise stored_location to redirect after signing for both public and private pages. 2014-07-11 10:24:11 +00:00			`end`