trabajo-afectivo/app/models/token.rb

# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/

class Token < ActiveRecord::Base
  before_create :generate_token
  belongs_to    :user

=begin

create new token

  token = Token.create( action: 'PasswordReset', user_id: user.id )

returns

  the token

create new persistent token

  token = Token.create(
    action:     'CalendarSubscriptions',
    persistent: true,
    user_id:    user.id,
  )

in case if you use it via an controller, e. g. you can verify via "curl -H "Authorization: Token token=33562a00d7eda2a7c2fb639b91c6bcb8422067b6" http://...

returns

  the token

=end

=begin

check token

  user = Token.check( action: 'PasswordReset', name: 'TheTokenItSelf' )

returns

  user for who this token was created

=end

  def self.check( data )

    # fetch token
    token = Token.find_by( action: data[:action], name: data[:name] )
    return if !token

    # check if token is still valid
    if !token.persistent &&
       token.created_at < 1.day.ago

      # delete token
      token.delete
      token.save
      return
    end

    # return token user
    token.user
  end

  private

  def generate_token

    loop do
      self.name = SecureRandom.hex(30)

      break if !Token.exists?( name: name )
    end
  end
end
Updated header. 2014-02-03 19:23:00 +00:00			`# Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Init version pf password reset. 2012-04-23 06:55:16 +00:00			`class Token < ActiveRecord::Base`
Added little documentation. 2015-08-21 13:33:06 +00:00			`before_create :generate_token`
			`belongs_to :user`
Init version pf password reset. 2012-04-23 06:55:16 +00:00
Added little documentation. 2015-08-21 13:33:06 +00:00			`=begin`

			`create new token`

			`token = Token.create( action: 'PasswordReset', user_id: user.id )`

			`returns`

			`the token`

			`create new persistent token`

			`token = Token.create(`
			`action: 'CalendarSubscriptions',`
			`persistent: true,`
			`user_id: user.id,`
			`)`

			`in case if you use it via an controller, e. g. you can verify via "curl -H "Authorization: Token token=33562a00d7eda2a7c2fb639b91c6bcb8422067b6" http://...`

			`returns`

			`the token`

			`=end`

			`=begin`

			`check token`

			`user = Token.check( action: 'PasswordReset', name: 'TheTokenItSelf' )`

			`returns`

			`user for who this token was created`

			`=end`
Init version pf password reset. 2012-04-23 06:55:16 +00:00
			`def self.check( data )`

			`# fetch token`
Corrected with rubocop cop 'Rails/FindBy'. 2015-05-07 10:15:40 +00:00			`token = Token.find_by( action: data[:action], name: data[:name] )`
Init version pf password reset. 2012-04-23 06:55:16 +00:00			`return if !token`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Init version pf password reset. 2012-04-23 06:55:16 +00:00			`# check if token is still valid`
- Added Token unit tests. - Added Token attribute 'persisten'. - Added auth function 'authentication_check_action_token'. 2015-02-22 18:10:54 +00:00			`if !token.persistent &&`
Corrected with rubocop cop 'Style/MultilineOperationIndentation'. 2015-05-01 12:27:57 +00:00			`token.created_at < 1.day.ago`
Added auto login after password reset. 2013-01-03 12:00:55 +00:00
Init version pf password reset. 2012-04-23 06:55:16 +00:00			`# delete token`
			`token.delete`
			`token.save`
			`return`
			`end`
Added auto login after password reset. 2013-01-03 12:00:55 +00:00
Improved comment. 2015-06-23 12:27:17 +00:00			`# return token user`
Corrected with rubocop cop 'Style/RedundantReturn'. 2015-04-30 17:20:27 +00:00			`token.user`
Init version pf password reset. 2012-04-23 06:55:16 +00:00			`end`

			`private`
Corrected with rubocop cop 'Style/EmptyLinesAroundAccessModifier'. 2015-05-01 12:31:46 +00:00
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00			`def generate_token`
Corrected with rubocop cop 'Lint/Loop'. 2015-05-05 10:32:25 +00:00
			`loop do`
Added little documentation. 2015-08-21 13:33:06 +00:00			`self.name = SecureRandom.hex(30)`
Corrected with rubocop cop 'Lint/Loop'. 2015-05-05 10:32:25 +00:00
Corrected with rubocop cop 'Style/RedundantSelf'. 2015-05-07 12:10:38 +00:00			`break if !Token.exists?( name: name )`
Corrected with rubocop cop 'Lint/Loop'. 2015-05-05 10:32:25 +00:00			`end`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00			`end`
			`end`