DGNum/demarches-normaliennes
14
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

FC ParticulierController: move defense logic to before_action

Browse source
This commit is contained in:
simon lehericey 2018-01-15 21:18:02 +01:00 committed by Simon Lehericey
parent 4afc41bca2
commit ecfb0f4ec2
1 changed files with 8 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
app/controllers/france_connect/particulier_controller.rb
View file

@ -1,13 +1,11 @@
class FranceConnect::ParticulierController < ApplicationController class FranceConnect::ParticulierController < ApplicationController
before_action :redirect_to_login_if_fc_aborted, only: [:callback]
def login def login
redirect_to FranceConnectService.authorization_uri redirect_to FranceConnectService.authorization_uri
end end
def callback def callback
if params[:code].nil?
return redirect_to new_user_session_path
end
fetched_fci = FranceConnectService.retrieve_user_informations_particulier(params[:code]) fetched_fci = FranceConnectService.retrieve_user_informations_particulier(params[:code])
fci = FranceConnectInformation fci = FranceConnectInformation
@ -61,6 +59,12 @@ class FranceConnect::ParticulierController < ApplicationController
private private
def redirect_to_login_if_fc_aborted
if params[:code].nil?
redirect_to new_user_session_path
end
end
def create def create
user = User.new email: params[:user][:email_france_connect] user = User.new email: params[:user][:email_france_connect]
user.password = Devise.friendly_token[0, 20] user.password = Devise.friendly_token[0, 20]