# License: AGPL-3.0-or-later WITH Web-Template-Output-Additional-Permission-3.0-or-later class Users::SessionsController < Devise::SessionsController layout 'layouts/apified', only: :new respond_to :json, only: :new def new @theme = 'minimal' super end def create @theme = 'minimal' respond_to do |format| format.json { warden.authenticate!(:scope => resource_name, :recall => "#{controller_path}#new") render :status => 200, :json => { :status => "Success" } } end end # post /users/confirm_auth # A simple action to confirm an entered password for a user who is already signed in def confirm_auth if current_user.valid_password?(params[:password]) tok = SecureRandom.uuid session[:pw_token] = tok session[:pw_timestamp] = Time.current.to_s render json: {token: tok}, status: :ok else render json: ["Incorrect password. Please enter your #{Settings.general.name} %> password."], status: :unprocessable_entity end end end