mirror of
https://github.com/jcwimer/wrestlingApp
synced 2026-03-25 01:14:43 +00:00
57 lines
1.3 KiB
Ruby
57 lines
1.3 KiB
Ruby
class PasswordResetsController < ApplicationController
|
|
before_action :get_user, only: [:edit, :update]
|
|
before_action :valid_user, only: [:edit, :update]
|
|
before_action :check_expiration, only: [:edit, :update]
|
|
|
|
def new
|
|
end
|
|
|
|
def create
|
|
@user = User.find_by(email: params[:password_reset][:email].downcase)
|
|
if @user
|
|
@user.create_reset_digest
|
|
@user.send_password_reset_email
|
|
redirect_to root_url, notice: "Email sent with password reset instructions"
|
|
else
|
|
flash.now[:alert] = "Email address not found"
|
|
render 'new'
|
|
end
|
|
end
|
|
|
|
def edit
|
|
end
|
|
|
|
def update
|
|
if params[:user][:password].empty?
|
|
@user.errors.add(:password, "can't be empty")
|
|
render 'edit'
|
|
elsif @user.update(user_params)
|
|
session[:user_id] = @user.id
|
|
redirect_to root_url, notice: "Password has been reset"
|
|
else
|
|
render 'edit'
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def user_params
|
|
params.require(:user).permit(:password, :password_confirmation)
|
|
end
|
|
|
|
def get_user
|
|
@user = User.find_by(email: params[:email])
|
|
end
|
|
|
|
def valid_user
|
|
unless @user && @user.authenticated?(:reset, params[:id])
|
|
redirect_to root_url
|
|
end
|
|
end
|
|
|
|
def check_expiration
|
|
if @user.password_reset_expired?
|
|
redirect_to new_password_reset_url, alert: "Password reset has expired"
|
|
end
|
|
end
|
|
end |