atomaka/budget
1
0
Fork 0
Code Issues 1 Pull requests Activity Actions

Require authentication for most endpoints #29

Merged
atomaka merged 4 commits from authorization into main 2024-09-08 21:07:51 -04:00
Conversation 0 Commits 4 Files changed 15 +5 -1
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit 396d1be2a8 - Show all commits

6
app/controllers/sessions_controller.rb
View file

@ -13,7 +13,7 @@ class SessionsController < ApplicationController
if @session.save
session[:current_user_id] = @session.user_id
format.html { redirect_to root_url, notice: "Session was successfully created." }
format.html { redirect_to redirect_url, notice: "Session was successfully created." }
format.json { render :show, status: :created, location: @session }
else
format.html { render :new, status: :unprocessable_entity, alert: @session.errors }
@ -33,6 +33,10 @@ class SessionsController < ApplicationController
end
private
def redirect_url
session.delete(:return_url) || root_url
end
# Only allow a list of trusted parameters through.
def session_params
params.require(:session).permit(:email, :password)