System-End/identity-vault
1
0
Fork 0
mirror of https://github.com/System-End/identity-vault.git synced 2026-04-19 16:28:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
identity-vault/app/controllers/sessions_controller.rb
24c02 a260c265f0 initial public commit!!!
2025-09-02 13:53:47 -04:00

116 lines
3 KiB
Ruby
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

class SessionsController < ApplicationController
skip_before_action :authenticate_identity!, only: [ :new, :create, :check_your_email, :verify, :confirm ]
def new
end
def create
params[:email]&.downcase!
@identity = Identity.find_by(primary_email: params[:email])
if @identity
return_url = params[:return_url] || session[:oauth_return_to]
@login_code = Identity::LoginCode.generate(@identity, return_url: return_url)
if Rails.env.production?
IdentityMailer.login_code(@login_code).deliver_later
else
IdentityMailer.login_code(@login_code).deliver_now
end
redirect_to check_your_email_sessions_path, notice: "Login code sent to #{@identity.primary_email}"
else
flash[:info] = "we don't seem to have that email on file let's get you on board!"
session[:stashed_data] ||= {}
session[:stashed_data]["prefill"] ||= {}
session[:stashed_data]["prefill"]["email"] = params[:email]
redirect_to basic_info_onboarding_path
end
end
def check_your_email
end
def verify
token = params[:token]
unless token
redirect_to check_your_email_sessions_path, alert: "No login token provided."
return
end
@login_code = Identity::LoginCode.valid.find_by(token: token)
if @login_code
else
redirect_to new_sessions_path, alert: "Invalid or expired login link."
end
end
def confirm
token = params[:token]
unless token
redirect_to new_sessions_path, alert: "No login token provided."
return
end
@login_code = Identity::LoginCode.valid.find_by(token: token)
if @login_code
@login_code.mark_used!
session[:identity_id] = @login_code.identity.id
redirect_path = determine_redirect_after_login(@login_code)
flash[:success] = "You're in!"
redirect_to redirect_path
else
redirect_to new_sessions_path, alert: "Invalid or expired login link."
end
end
def destroy
session[:identity_id] = nil
redirect_to root_path, notice: "Successfully signed out"
end
private
def deliver_login_code(login_code)
login_link = verify_sessions_url(token: login_code.token)
Rails.logger.info "LOGIN LINK for #{login_code.identity.primary_email}:"
Rails.logger.info login_link
Rails.logger.info "Token: #{login_code.token}"
end
def determine_redirect_after_login(login_code)
if login_code.return_url.present? && safe_return_url?(login_code.return_url)
return login_code.return_url
end
identity = login_code.identity
if identity.verification_status != "verified"
determine_onboarding_step(identity)
else
session[:oauth_return_to] || root_path
end
end
def safe_return_url?(url)
return false if url.blank?
begin
uri = URI.parse(url)
uri.relative? || uri.host == request.host
rescue URI::InvalidURIError
false
end
end
def determine_onboarding_step(identity)
identity.onboarding_redirect_path
end
end
Reference in a new issue View git blame Copy permalink