Hartl 的 Rails 教程 - "authenticated?" 错误 (activation_token)
Hartl's Rails tutorial - false with "authenticated?" (activation_token)
尊敬的同事们。
我在做 Hartl 的 Railstutorial 时遇到了一个问题,我无法解决。我按照教程做的每一步。
问题描述:
做运动时,"Using the generalized authenticated? Method from Listing 11.26, verify That the user is authenticated According to remember both the token and the activation token."
正确的结果应该是这样的:
>> User.authenticated (: remember, user.remember_token)
=> True
>> User.authenticated (: activation, user.activation_token)
=> True
同时,就我而言,它是:
user = User.create(name: "Test User", email: "test@example.com", password: "foobar", password_confirmation: "foobar")
(0.1ms) begin transaction
User Exists (0.2ms) SELECT 1 AS one FROM "users" WHERE LOWER("users"."email") = LOWER(?) LIMIT ? [["email", "test@example.com"], ["LIMIT", 1]]
SQL (0.3ms) INSERT INTO "users" ("name", "email", "created_at", "updated_at", "password_digest", "activation_digest") VALUES (?, ?, ?, ?, ?, ?) [["name", "Test User"], ["email", "test@example.com"], ["created_at", 2017-02-26 20:36:50 UTC], ["updated_at", 2017-02-26 20:36:50 UTC], ["password_digest", "a$caQcP8VAQJaUwaFQwOt4j.RadReeSllF5TBEwbvuu1D08.A/LPOlC"], ["activation_digest", "a$q2aPIqOaNWlZstIsKnCjbev7DqC2UXkRoNTMO3XAvYj3tIcVG40Gy"]]
(41.1ms) commit transaction
=> #<User id: 104, name: "Test User", email: "test@example.com", created_at: "2017-02-26 20:36:50", updated_at: "2017-02-26 20:36:50", password_digest: "a$caQcP8VAQJaUwaFQwOt4j.RadReeSllF5TBEwbvuu1D...", remember_digest: nil, admin: false, activation_digest: "a$q2aPIqOaNWlZstIsKnCjbev7DqC2UXkRoNTMO3XAvYj...", activated: false, activated_at: nil>
>> User.authenticated (: activation, user.activation_token)
=> False
因此,我无法在后期进行用户激活。
有谁能告诉我原因吗?
我的文件:
user_controller.rb
class UsersController < ApplicationController
before_action :logged_in_user, only: [:index, :edit, :update, :destroy]
before_action :correct_user, only: [:edit, :update]
before_action :admin_user, only: :destroy
def new
@user = User.new
end
def index
@users = User.paginate(page: params[:page])
end
def show
@user = User.find(params[:id])
end
def create
@user = User.new(user_params)
if @user.save
UserMailer.account_activation(@user).deliver_now
flash[:info] = "Please check your email to activate your account."
redirect_to root_url
else
render 'new'
end
end
def edit
@user = User.find(params[:id])
end
def update
@user = User.find(params[:id])
if @user.update_attributes(user_params)
flash[:success] = "Profile updated"
redirect_to @user
else
render 'edit'
end
end
def destroy
User.find(params[:id]).destroy
flash[:success] = "User deleted"
redirect_to users_url
end
private
def user_params
params.require(:user).permit(:name, :email, :password,
:password_confirmation,
:admin)
end
# Before filters
# Confirms a logged-in user
def logged_in_user
unless logged_in?
store_location
flash[:danger] = "Please log in."
redirect_to login_url
end
end
# Confirms the correct user.
def correct_user
@user = User.find(params[:id])
redirect_to(root_url) unless current_user?(@user)
end
# Confirms an admin user.
def admin_user
redirect_to(root_url) unless current_user.admin?
end
end
user.erb
class User < ApplicationRecord
attr_accessor :remember_token, :activation_token
before_save :downcase_email
before_create :create_activation_digest
validates :name, presence: true, length: {maximum: 50}
VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
validates :email, presence: true, length: {maximum: 255},
format: { with: VALID_EMAIL_REGEX},
uniqueness: { case_sensitive: false }
has_secure_password
validates :password, presence: true, length: {minimum: 6}, allow_nil: true
# Returns the hash digest of the given string.
def User.digest(string)
cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST :
BCrypt::Engine.cost
BCrypt::Password.create(string, cost: cost)
end
# Returns a random token.
def User.new_token
SecureRandom.urlsafe_base64
end
def remember
self.remember_token = User.new_token
update_attribute(:remember_digest, User.digest(remember_token))
end
# Returns true if the given token matches the digest.
def authenticated?(attribute, token)
digest = send("#{attribute}_digest")
return false if digest.nil?
BCrypt::Password.new(digest).is_password?(token)
end
def forget
update_attribute(:remember_digest, nil)
end
private
# Convertsemail to all lower-case
def downcase_email
email.downcase!
end
# Create the token and digest
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(:activation_token)
end
end
account_activations_controller.rb
class AccountActivationsController < ApplicationController
def edit
user = User.find_by(email: params[:email])
if user && !user.activated? && user.authenticated?(:activation, params[:id])
user.update_attribute(:activated, true)
user.update_attribute(:activated_at, Time.zone.now)
log_in user
flash[:success] = "Account activated!"
redirect_to user
else
flash[:danger] = "Invalid activation link"
redirect_to root_url
end
end
end
我解决了问题。
我的文件有错误user.rb
我有:
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(:activation_token)
end
应该是:(activation_token没有“:”)
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(activation_token)
end
我提出了一个解决方案,因为它可能对某些人有用。
谢谢你的建议。
尊敬的同事们。
我在做 Hartl 的 Railstutorial 时遇到了一个问题,我无法解决。我按照教程做的每一步。
问题描述:
做运动时,"Using the generalized authenticated? Method from Listing 11.26, verify That the user is authenticated According to remember both the token and the activation token."
正确的结果应该是这样的:
>> User.authenticated (: remember, user.remember_token)
=> True
>> User.authenticated (: activation, user.activation_token)
=> True
同时,就我而言,它是:
user = User.create(name: "Test User", email: "test@example.com", password: "foobar", password_confirmation: "foobar")
(0.1ms) begin transaction
User Exists (0.2ms) SELECT 1 AS one FROM "users" WHERE LOWER("users"."email") = LOWER(?) LIMIT ? [["email", "test@example.com"], ["LIMIT", 1]]
SQL (0.3ms) INSERT INTO "users" ("name", "email", "created_at", "updated_at", "password_digest", "activation_digest") VALUES (?, ?, ?, ?, ?, ?) [["name", "Test User"], ["email", "test@example.com"], ["created_at", 2017-02-26 20:36:50 UTC], ["updated_at", 2017-02-26 20:36:50 UTC], ["password_digest", "a$caQcP8VAQJaUwaFQwOt4j.RadReeSllF5TBEwbvuu1D08.A/LPOlC"], ["activation_digest", "a$q2aPIqOaNWlZstIsKnCjbev7DqC2UXkRoNTMO3XAvYj3tIcVG40Gy"]]
(41.1ms) commit transaction
=> #<User id: 104, name: "Test User", email: "test@example.com", created_at: "2017-02-26 20:36:50", updated_at: "2017-02-26 20:36:50", password_digest: "a$caQcP8VAQJaUwaFQwOt4j.RadReeSllF5TBEwbvuu1D...", remember_digest: nil, admin: false, activation_digest: "a$q2aPIqOaNWlZstIsKnCjbev7DqC2UXkRoNTMO3XAvYj...", activated: false, activated_at: nil>
>> User.authenticated (: activation, user.activation_token)
=> False
因此,我无法在后期进行用户激活。
有谁能告诉我原因吗?
我的文件:
user_controller.rb
class UsersController < ApplicationController
before_action :logged_in_user, only: [:index, :edit, :update, :destroy]
before_action :correct_user, only: [:edit, :update]
before_action :admin_user, only: :destroy
def new
@user = User.new
end
def index
@users = User.paginate(page: params[:page])
end
def show
@user = User.find(params[:id])
end
def create
@user = User.new(user_params)
if @user.save
UserMailer.account_activation(@user).deliver_now
flash[:info] = "Please check your email to activate your account."
redirect_to root_url
else
render 'new'
end
end
def edit
@user = User.find(params[:id])
end
def update
@user = User.find(params[:id])
if @user.update_attributes(user_params)
flash[:success] = "Profile updated"
redirect_to @user
else
render 'edit'
end
end
def destroy
User.find(params[:id]).destroy
flash[:success] = "User deleted"
redirect_to users_url
end
private
def user_params
params.require(:user).permit(:name, :email, :password,
:password_confirmation,
:admin)
end
# Before filters
# Confirms a logged-in user
def logged_in_user
unless logged_in?
store_location
flash[:danger] = "Please log in."
redirect_to login_url
end
end
# Confirms the correct user.
def correct_user
@user = User.find(params[:id])
redirect_to(root_url) unless current_user?(@user)
end
# Confirms an admin user.
def admin_user
redirect_to(root_url) unless current_user.admin?
end
end
user.erb
class User < ApplicationRecord
attr_accessor :remember_token, :activation_token
before_save :downcase_email
before_create :create_activation_digest
validates :name, presence: true, length: {maximum: 50}
VALID_EMAIL_REGEX = /\A[\w+\-.]+@[a-z\d\-.]+\.[a-z]+\z/i
validates :email, presence: true, length: {maximum: 255},
format: { with: VALID_EMAIL_REGEX},
uniqueness: { case_sensitive: false }
has_secure_password
validates :password, presence: true, length: {minimum: 6}, allow_nil: true
# Returns the hash digest of the given string.
def User.digest(string)
cost = ActiveModel::SecurePassword.min_cost ? BCrypt::Engine::MIN_COST :
BCrypt::Engine.cost
BCrypt::Password.create(string, cost: cost)
end
# Returns a random token.
def User.new_token
SecureRandom.urlsafe_base64
end
def remember
self.remember_token = User.new_token
update_attribute(:remember_digest, User.digest(remember_token))
end
# Returns true if the given token matches the digest.
def authenticated?(attribute, token)
digest = send("#{attribute}_digest")
return false if digest.nil?
BCrypt::Password.new(digest).is_password?(token)
end
def forget
update_attribute(:remember_digest, nil)
end
private
# Convertsemail to all lower-case
def downcase_email
email.downcase!
end
# Create the token and digest
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(:activation_token)
end
end
account_activations_controller.rb
class AccountActivationsController < ApplicationController
def edit
user = User.find_by(email: params[:email])
if user && !user.activated? && user.authenticated?(:activation, params[:id])
user.update_attribute(:activated, true)
user.update_attribute(:activated_at, Time.zone.now)
log_in user
flash[:success] = "Account activated!"
redirect_to user
else
flash[:danger] = "Invalid activation link"
redirect_to root_url
end
end
end
我解决了问题。
我的文件有错误user.rb
我有:
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(:activation_token)
end
应该是:(activation_token没有“:”)
def create_activation_digest
self.activation_token = User.new_token
self.activation_digest = User.digest(activation_token)
end
我提出了一个解决方案,因为它可能对某些人有用。
谢谢你的建议。