/app/models/user.rb

https://github.com/mikkor88/sample_app · Ruby · 64 lines · 40 code · 12 blank · 12 comment · 4 complexity · e919cbed587c5701d18499549cea2e29 MD5 · raw file 

    

  1. # == Schema Information
    2. 

  2. #
    3. 

  3. # Table name: users
    4. 

  4. #
    5. 

  5. #  id         :integer         not null, primary key
    6. 

  6. #  name       :string(255)
    7. 

  7. #  email      :string(255)
    8. 

  8. #  created_at :datetime
    9. 

  9. #  updated_at :datetime
    10. 

  10. #
    11. 

  11. require 'digest'
    12. 

  12. class User < ActiveRecord::Base
    13. 

  13.   attr_accessor :password
    14. 

  14.   attr_accessible :name, :email, :password, :password_confirmation
    15. 

  15.   
    16. 

  16.   email_regex = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
    17. 

  17.   
    18. 

  18.   validates :name, :presence => true,
    19. 

  19.                    :length => { :maximum => 50 }
    20. 

  20.   validates :email, :presence => true,
    21. 

  21.                     :format => { :with => email_regex },
    22. 

  22. 					:uniqueness => { :case_sensitive => false }
    23. 

  23. 					
    24. 

  24.   # Automatically create the virtual attribute 'password_confirmation'.
    25. 

  25.   validates :password, :presence     => true,
    26. 

  26.                        :confirmation => true,
    27. 

  27.                        :length       => { :within => 6..40 }
    28. 

  28. 					   
    29. 

  29.   before_save :encrypt_password
    30. 

  30.   
    31. 

  31.   # return true if the user's password matches the submitted password
    32. 

  32.   def has_password?(submitted_password)
    33. 

  33.     encrypted_password == encrypt(submitted_password) 
    34. 

  34.   end
    35. 

  35. 

  36.   def self.authenticate(email, submitted_password)
    37. 

  37.    user = find_by_email(email)
    38. 

  38.    user && user.has_password?(submitted_password) ? user : nil
    39. 

  39.   end
    40. 

  40. 	
    41. 

  41. 	def self.authenticate_with_salt(id, cookie_salt)
    42. 

  42. 		user = find_by_id(id)
    43. 

  43. 		(user && user.salt == cookie_salt) ? user: nil
    44. 

  44. 	end
    45. 

  45.   
    46. 

  46.   private
    47. 

  47.   
    48. 

  48. 	def encrypt_password
    49. 

  49. 	  self.salt = make_salt unless has_password?(password)
    50. 

  50. 	  self.encrypted_password = encrypt(password)
    51. 

  51. 	end
    52. 

  52. 	
    53. 

  53. 	def encrypt(string)
    54. 

  54. 	  secure_hash("#{salt}--#{string}")
    55. 

  55. 	end
    56. 

  56. 	
    57. 

  57. 	def make_salt
    58. 

  58. 	  secure_hash("#{Time.now.utc}--#{password}")
    59. 

  59. 	end
    60. 

  60. 	
    61. 

  61. 	def secure_hash(string)
    62. 

  62. 	  Digest::SHA2.hexdigest(string)
    63. 

  63. 	end
    64. 

  64. end
    65.