github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-23 23:06:57 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
a6be0ca5c7
discourse/app/services/user_authenticator.rb

61 lines
1.2 KiB
Ruby
Raw Normal View History

DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging
2019-05-03 06:17:27 +08:00
# frozen_string_literal: true
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
class UserAuthenticator
FEATURE: new 'maximum new user accounts per registration IP' site setting
2014-11-17 19:04:29 +08:00
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
def initialize(user, session, authenticator_finder = Users::OmniauthCallbacksController)
@user = user
@session = session[:authentication]
@authenticator_finder = authenticator_finder
end
def start
if authenticated?
@user.active = true
else
@user.password_required!
end
Ability to skip email validation via a plugin
2016-09-08 02:05:46 +08:00
@user.skip_email_validation = true if @session && @session[:skip_email_validation].present?
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
end
BUGFIX: twitter auth asking for a password
2014-03-20 11:49:25 +08:00
def has_authenticator?
!!authenticator
end
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
def finish
FIX: apply automatic group rules when using social login providers
2018-05-23 07:26:07 +08:00
if authenticator
authenticator.after_create_account(@user, @session)
confirm_email
end
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
@session = nil
end
SECURITY: signup without verified email using Google auth
2017-10-17 01:51:35 +08:00
def email_valid?
@session && @session[:email_valid]
end
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
def authenticated?
FIX: apply automatic group rules when using social login providers
2018-05-23 07:26:07 +08:00
@session && @session[:email]&.downcase == @user.email.downcase && @session[:email_valid].to_s == "true"
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
end
SECURITY: signup without verified email using Google auth
2017-10-17 01:51:35 +08:00
private
FIX: apply automatic group rules when using social login providers
2018-05-23 07:26:07 +08:00
def confirm_email
if authenticated?
EmailToken.confirm(@user.email_tokens.first.token)
@user.set_automatic_groups
end
end
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
def authenticator
if authenticator_name
@authenticator ||= @authenticator_finder.find_authenticator(authenticator_name)
end
end
def authenticator_name
@session && @session[:authenticator_name]
end
FEATURE: new 'maximum new user accounts per registration IP' site setting
2014-11-17 19:04:29 +08:00
Refactor UsersController#create * Simplify controller action * Extract service classes
2013-11-13 06:37:38 +08:00
end
Reference in New Issue Copy Permalink