closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8640 Commits
4 Branches
567 MiB
Tree: 787449c12f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '787449c12f'
${ noResults }
mastodon/app/controllers/auth/registrations_controller.rb

105 lines
2.5 KiB
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
8 years ago
Customizing devise views and controllers
8 years ago
Fix #611 - Layout setting in registrations controller
7 years ago
Customizing devise views and controllers
8 years ago
Add autofollow option to invites (#7805) * Add autofollow option to invites * Trigger CodeClimate rebuild
6 years ago
New admin setting: open/close registrations, with custom message, from the admin UI
7 years ago
Improve code style
8 years ago
Fixed typos
7 years ago
Add overview of active sessions (#3929) * Add overview of active sessions * Better display of browser/platform name * Improve how browser information is stored and displayed for sessions overview * Fix test
7 years ago
Set InstancePresenter to `Auth::RegistrationsController#create` (#5366)
7 years ago
Fix styling in /auth/edit (#9117)
6 years ago
Customizing devise views and controllers
8 years ago
Fix Devise destroy method being available to delete user record (#3266) (You may think that we need account deletions, but this way would've just orphaned the db records)
7 years ago
Customizing devise views and controllers
8 years ago
pam authentication (#5303) * add pam support, without extra column * bugfixes for pam login * document options * fix code style * fix codestyle * fix tests * don't call remember_me without password * fix codestyle * improve checks for pam usage (should fix tests) * fix remember_me part 1 * add remember_token column because :rememberable requires either a password or this column. * migrate db for remember_token * move pam_authentication to the right place, fix logic bug in edit.html.haml * fix tests * fix pam authentication, improve username lookup, add comment * valid? is sometimes not honored, return nil instead trying to authenticate with pam * update devise_pam_authenticatable2 and adjust code. Fixes sideeffects observed in tests * update devise_pam_authenticatable gem, fixes for codeconventions, fix finding user * codeconvention fixes * code convention fixes * fix idention * update dependency, explicit conflict check * fix disabled password updates if in pam mode * fix check password if password is present, fix templates * block registration if account is maintained by pam * Revert "block registration if account is maintained by pam" This reverts commit 8e7a083d650240b6fac414926744b4b90b435f20. * fix identation error introduced by rebase * block usernames maintained by pam * document pam settings better * fix code style
6 years ago
Customizing devise views and controllers
8 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
7 years ago
Add REST API for creating an account (#9572) * Add REST API for creating an account The method is available to apps with a token obtained via the client credentials grant. It creates a user and account records, as well as an access token for the app that initiated the request. The user is unconfirmed, and an e-mail is sent as usual. The method returns the access token, which the app should save for later. The REST API is not available to users with unconfirmed accounts, so the app must be smart to wait for the user to click a link in their e-mail inbox. The method is rate-limited by IP to 5 requests per 30 minutes. * Redirect users back to app from confirmation if they were created with an app * Add tests * Return 403 on the method if registrations are not open * Require agreement param to be true in the API when creating an account
5 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
7 years ago
Save IP address used for sign-up, not only sign-in (#10026) Fixes #9995
5 years ago
Improve code style
8 years ago
Customizing devise views and controllers
8 years ago
Upgrade to Rails 5.0.0.1
8 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
7 years ago
Customizing devise views and controllers
8 years ago
Moving Salmon notifications to background processing, fixing mini-profiler behaviour with Turbolinks enabled, optimizing Rabl for production
8 years ago
Shorten rendered links (strip protocol and www, truncate to 30 chars), redirect to sign in page after sign up instead of root path which redirects to /about
8 years ago
Customizing devise views and controllers
8 years ago
Add single user mode
8 years ago
If signed in, redirect autofollow invite to profile page (#7956) Fix #7944
6 years ago
Fix #390 - fix redirect after sign-up (to login page instead of homepage)
7 years ago
Add confirmation step for email changes (#6071) * Add confirmation step for email changes This adds a confirmation step for email changes of existing users. Like the initial account confirmation, a confirmation link is sent to the new address. Additionally, a notification is sent to the existing address when the change is initiated. This message includes instruction to reset the password immediately or to contact the instance admin if the change was not initiated by the account owner. Fixes #3871 * Add review fixes
6 years ago
New admin setting: open/close registrations, with custom message, from the admin UI
7 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
7 years ago
Add autofollow option to invites (#7805) * Add autofollow option to invites * Trigger CodeClimate rebuild
6 years ago
Add consumable invites (#5814) * Add consumable invites * Add UI for generating invite codes * Add tests * Display max uses and expiration in invites table, delete invite * Remove unused column and redundant validator - Default follows not used, probably bad idea - InviteCodeValidator is redundant because RegistrationsController checks invite code validity * Add admin setting to disable invites * Add admin UI for invites, configurable role for invite creation - Admin UI that lists everyone's invites, always available - Admin setting min_invite_role to control who can invite people - Non-admin invite UI only visible if users are allowed to * Do not remove invites from database, expire them instantly
7 years ago
Add single user mode
8 years ago
New admin setting: open/close registrations, with custom message, from the admin UI
7 years ago
Fix #611 - Layout setting in registrations controller
7 years ago
New admin setting: open/close registrations, with custom message, from the admin UI
7 years ago
Finalized theme loading and stuff
7 years ago
sign_in and sign_up views present og meta infos (#5308)
7 years ago
Compensate for scrollbar disappearing when media modal visible (#8100) * Compensate for scrollbar disappearing when media modal visible Make auth pages backgrounds lighter * Fix typo
6 years ago
Fix styling in /auth/edit (#9117)
6 years ago
Compensate for scrollbar disappearing when media modal visible (#8100) * Compensate for scrollbar disappearing when media modal visible Make auth pages backgrounds lighter * Fix typo
6 years ago
Add autofollow option to invites (#7805) * Add autofollow option to invites * Trigger CodeClimate rebuild
6 years ago
Fix #611 - Layout setting in registrations controller
7 years ago
Add overview of active sessions (#3929) * Add overview of active sessions * Better display of browser/platform name * Improve how browser information is stored and displayed for sessions overview * Fix test
7 years ago
Customizing devise views and controllers
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class Auth::RegistrationsController < Devise::RegistrationsController
  4.   layout :determine_layout
  5. 

  6.   before_action :set_invite, only: [:new, :create]
  7.   before_action :check_enabled_registrations, only: [:new, :create]
  8.   before_action :configure_sign_up_params, only: [:create]
  9.   before_action :set_pack
  10.   before_action :set_sessions, only: [:edit, :update]
  11.   before_action :set_instance_presenter, only: [:new, :create, :update]
  12.   before_action :set_body_classes, only: [:new, :create, :edit, :update]
  13. 

  14.   def destroy
  15.     not_found
  16.   end
  17. 

  18.   protected
  19. 

  20.   def update_resource(resource, params)
  21.     params[:password] = nil if Devise.pam_authentication && resource.encrypted_password.blank?
  22.     super
  23.   end
  24. 

  25.   def build_resource(hash = nil)
  26.     super(hash)
  27. 

  28.     resource.locale      = I18n.locale
  29.     resource.invite_code = params[:invite_code] if resource.invite_code.blank?
  30.     resource.agreement   = true
  31. 

  32.     resource.current_sign_in_ip = request.remote_ip if resource.current_sign_in_ip.nil?
  33.     resource.build_account if resource.account.nil?
  34.   end
  35. 

  36.   def configure_sign_up_params
  37.     devise_parameter_sanitizer.permit(:sign_up) do |u|
  38.       u.permit({ account_attributes: [:username] }, :email, :password, :password_confirmation, :invite_code)
  39.     end
  40.   end
  41. 

  42.   def after_sign_up_path_for(_resource)
  43.     new_user_session_path
  44.   end
  45. 

  46.   def after_sign_in_path_for(_resource)
  47.     set_invite
  48. 

  49.     if @invite&.autofollow?
  50.       short_account_path(@invite.user.account)
  51.     else
  52.       super
  53.     end
  54.   end
  55. 

  56.   def after_inactive_sign_up_path_for(_resource)
  57.     new_user_session_path
  58.   end
  59. 

  60.   def after_update_path_for(_resource)
  61.     edit_user_registration_path
  62.   end
  63. 

  64.   def check_enabled_registrations
  65.     redirect_to root_path if single_user_mode? || !allowed_registrations?
  66.   end
  67. 

  68.   def allowed_registrations?
  69.     Setting.open_registrations || @invite&.valid_for_use?
  70.   end
  71. 

  72.   def invite_code
  73.     if params[:user]
  74.       params[:user][:invite_code]
  75.     else
  76.       params[:invite_code]
  77.     end
  78.   end
  79. 

  80.   private
  81. 

  82.   def set_pack
  83.     use_pack %w(edit update).include?(action_name) ? 'admin' : 'auth'
  84.   end
  85. 

  86.   def set_instance_presenter
  87.     @instance_presenter = InstancePresenter.new
  88.   end
  89. 

  90.   def set_body_classes
  91.     @body_classes = %w(edit update).include?(action_name) ? 'admin' : 'lighter'
  92.   end
  93. 

  94.   def set_invite
  95.     @invite = invite_code.present? ? Invite.find_by(code: invite_code) : nil
  96.   end
  97. 

  98.   def determine_layout
  99.     %w(edit update).include?(action_name) ? 'admin' : 'auth'
  100.   end
  101. 

  102.   def set_sessions
  103.     @sessions = current_user.session_activations
  104.   end
  105. end