api: allow version bumping - bump to 2

author: Azul <azul@riseup.net> 2016-05-01 10:55:33 -0300
committer: Azul <azul@riseup.net> 2016-05-18 20:07:41 +0200
commit: e05a1b0f5ae40a2aa17976b3009cd563b8e4660a (patch)
tree: 77774fd7e70211febaf3a15c6e3b3e7340843c11 /app/controllers/api/sessions_controller.rb
parent: a1b494e334406660a1f49fb7de9b043493809640 (diff)
1 files changed, 44 insertions, 0 deletions
diff --git a/app/controllers/api/sessions_controller.rb b/app/controllers/api/sessions_controller.rb
new file mode 100644
index 0000000..c8deb7a
--- /dev/null
+++ b/app/controllers/api/sessions_controller.rb
@@ -0,0 +1,44 @@
+module Api
+  class SessionsController < ApiController
+
+    before_filter :require_login, only: :destroy
+
+    def new
+      @session = Session.new
+      if authentication_errors
+        @errors = authentication_errors
+        render :status => 422
+      end
+    end
+
+    def create
+      logout if logged_in?
+      if params['A']
+        authenticate!
+      else
+        @user = User.find_by_login(params['login'])
+        render :json => {salt: @user.salt}
+      end
+    end
+
+    def update
+      authenticate!
+      @token = Token.create(:user_id => current_user.id)
+      session[:token] = @token.id
+      render :json => login_response
+    end
+
+    def destroy
+      logout
+      head :no_content
+    end
+
+    protected
+
+    def login_response
+      handshake = session.delete(:handshake) || {}
+      handshake.to_hash.merge(:id => current_user.id, :token => @token.to_s)
+    end
+
+  end
+end
author	Azul <azul@riseup.net>	2016-05-01 10:55:33 -0300
committer	Azul <azul@riseup.net>	2016-05-18 20:07:41 +0200
commit	e05a1b0f5ae40a2aa17976b3009cd563b8e4660a (patch)
tree	77774fd7e70211febaf3a15c6e3b3e7340843c11 /app/controllers/api/sessions_controller.rb
parent	a1b494e334406660a1f49fb7de9b043493809640 (diff)