· 2 min read

Screencast: Passwort reset und Erinnerungsfunktion

Downloads in verschiedenen Formaten:

source code mp4 m4v webm ogv

Resourcen:

bash

[bash] rails g migration add_auth_token_to_users auth_token:string rake db:migrate rails g controller password_resets new rails g migration add_password_reset_to_users password_reset_token:string password_reset_sent_at:datetime rails g mailer user_mailer password_reset [/bash]

models/user.rb

[ruby] before_create { generate_token(:auth_token) }

def send_password_reset generate_token(:password_reset_token) self.password_reset_sent_at = Time.zone.now save! UserMailer.password_reset(self).deliver end

def generate_token(column) begin self[column] = SecureRandom.urlsafe_base64 end while User.exists?(column => self[column]) end [/ruby]

application_controller.rb

[ruby] def current_user @current_user ||= User.find(session[:user_id]) if session[:user_id] end [/ruby]

sessions_controller.rb

[ruby] def create user = User.find_by_email(params[:email]) if user && user.authenticate(params[:password]) if params[:remember_me] cookies.permanent[:auth_token] = user.auth_token else cookies[:auth_token] = user.auth_token end redirect_to root_url, :notice => “Logged in!” else flash.now.alert = “Invalid email or password” render “new” end end

def destroy cookies.delete(:auth_token) redirect_to root_url, :notice => “Logged out!” end [/ruby]

password_resets_controller.rb

[ruby]

def create user = User.find_by_email(params[:email]) user.send_password_reset if user redirect_to root_url, :notice => “Email sent with password reset instructions.” end

def edit @user = User.find_by_password_reset_token!(params[:id]) end

def update @user = User.find_by_password_reset_token!(params[:id]) if @user.password_reset_sent_at < 2.hours.ago redirect_to new_password_reset_path, :alert => “Password reset has expired.” elsif @user.update_attributes(params[:user]) redirect_to root_url, :notice => “Password has been reset!” else render :edit end end [/ruby]

sessions/new.html.erb

[html]

<%= link_to “forgotten password?”, new_password_reset_path %>

<%= check_box_tag :remember_me, 1, params[:remember_me] %> <%= label_tag :remember_me %>
[/html]

password_resets/new.html.erb

[html] <%= form_tag password_resets_path, :method => :post do %>

<%= label_tag :email %> <%= text_field_tag :email, params[:email] %>
<%= submit_tag “Reset Password” %>
<% end %> [/html]

password_resets/edit.html.erb

[html] <%= form_for @user, :url => password_reset_path(params[:id]) do |f| %> <% if @user.errors.any? %>

Form is invalid

    <% for message in @user.errors.full_messages %>
  • <%= message %>
    • <% end %>
<% end %>
<%= f.label :password %> <%= f.password_field :password %>
<%= f.label :password_confirmation %> <%= f.password_field :password_confirmation %>
<%= f.submit “Update Password” %>
<% end %> [/html]

config/evinroments/development.rb

[ruby] config.action_mailer.default_url_options = { :host => “localhost:3000” } [/ruby]

user_mailer.rb

[ruby] def password_reset(user) @user = user mail :to => user.email, :subject => “Password Reset” end [/ruby]

user_mailer/password_reset.text.erb

[html] To reset your password, click the URL below.

<%= edit_password_reset_url(@user.password_reset_token) %>

If you did not request your password to be reset, just ignore this email and your password will continue to stay the same. [/html]

Share:
Back to Blog

Related Posts

View All Posts »