Home > Blockchain >  Rails Devise: Halt login process if constraints not met
Rails Devise: Halt login process if constraints not met

Time:03-08

So I am trying to restrict the login process, so that when a user logs in with a wrong IP address, the session is not created and I will show af flash explaining what happened.

Most of my logic works, but the issue is, that the session is created anyway, if the condition end in the else clause.

class Employees::SessionsController < Devise::SessionsController

  before_action :validate_ip, only: [:create]

  layout 'devise'


  def validate_ip
     # Pseudo code
     if ENV['ip] == remote_ip
         create
     else
         flash[:alert] = "Ip does not match"
     end

  end

end

I have no worked a lot of with devise, so I don't know the correct way of doing it.

But this code (and previous attempts) work fine, except for the fact that no matter what, the session continues to get created.

CodePudding user response:

You'll want a redirect or a render in your validate_ip filter: if you simply return from the filter, devise will continue to execute normally, so the user will be logged in.

Something like redirect_to root_url, alert: "Ip does not match" on your else branch should work.

Page link:https//www.codepudding.com/Blockchain/327711.html

Prev:How to access location in background Android 12?
Next:rails 7 zietwerk constants not found
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding