如何在devise/omniauth中删除授权时允许用户输入密码

Question

我有一个rais 3应用程序，它使用devise和omniauth允许用户通过他们的twitter帐户和/或本地登录凭证进行注册/登录。一切工作正常注册和登录英寸我的问题发生时，用户选择销毁他们的Twitter的授权，而无需先建立本地密码。如果用户破坏了他们的授权，那么我想将他们路由到new_password_path，以便他们可以为将来的登录选择密码。

这里是控制器代码：

class AuthenticationsController < ApplicationController 
     before_filter :authenticate_user!, :except => [:create, :failure] 

     def create 
     omniauth = request.env["omniauth.auth"] 
     authentication = Authentication.find_by_provider_and_uid(omniauth['provider'], omniauth['uid']) 
     if authentication #existing user is logging-in with existing authentication service 
      flash[:notice] = "Signed in successfully." 
      set_home_location_cookies(authentication.user, authentication.user.home_lat, authentication.user.home_lng) 
      sign_in(:user, authentication.user) 
      redirect_to root_path 
     elsif current_user #existing user who is already logged-in is creating a new authentication service for future use 
      current_user.authentications.create!(:provider => omniauth['provider'], :uid => omniauth['uid'], :token => omniauth['credentials']['token']) 
      current_user.update_posting_preferences(omniauth['provider']) 
      flash[:notice] = "Successfully linked to your #{omniauth['provider'].titleize} account." 
      redirect_to root_path 
     else #new user is creating a new authentication service and logging in 
      user = User.new 
      user.apply_omniauth(omniauth) 
      if user.save 
      flash[:notice] = "Signed in successfully." 
      sign_in(:user, user) 
      redirect_to root_path 
      else 
      session[:omniauth] = omniauth.except('extra') 
      session[:user_message] = {:success => false, :message => "userSaveError"} 
      redirect_to new_user_registration_url 
     end 
     end 
     end 


     def failure 
     flash[:alert] = "Could not authorize you from your social service." 
     redirect_to root_path 
     end 

     def destroy 
     @authentication = current_user.authentications.find(params[:id]) 
     current_user.update_posting_preferences(@authentication.provider) 
     @authentication.destroy 
     flash[:notice] = "You have successfully destroyed your link to your #{@authentication.provider.titleize} account." 
     if current_user.authentications.empty? && current_user.encrypted_password.empty? 
      sign_out 
      flash[:alert] = "Alert: Your account does not currently have a password for account authorization. You are in danger of losing your account unless you create a new password by using this form." 
      redirect_to new_password_path(current_user) and return 
     else 
      redirect_back_or(root_path) 
     end 
     end 

在“为无找不到有效映射”的代码会导致错误由我redirect_to new_password_path(current_user) and return命令触发

我将不胜感激一些帮助搞清楚解决这个问题。

谢谢！

Answer 1

好的。我承认这一点。我从教程中实施了身份验证控制器，而无需研究设计路由，以了解幕后操作。昨天晚上我回顾了文档并找出了我的问题。有趣的是，上面的例程在旧版本的设计上工作，但在设计1.5.3上不起作用。

在destroy操作中，我注销current_user，然后尝试路由到以“current_user”作为参数发送的new_password_path。毫不奇怪，在那个时候“current_user”已被清除。因此，我得到了“无法找到有效映射”的错误。这里是我的简单修复：

def destroy 
    @authentication = current_user.authentications.find(params[:id]) 
    user = current_user 
    current_user.update_posting_preferences(@authentication.provider) 
    @authentication.destroy 
    flash[:notice] = "You have successfully destroyed your link to your #{@authentication.provider.titleize} account." 
    if current_user.authentications.empty? && current_user.encrypted_password.empty? 
     sign_out 
     flash[:alert] = "Alert: Your account does not currently have a password for account authorization. You are in danger of losing your account unless you create a new password by using this form." 
     redirect_to new_password_path(user) and return 
    else 
     redirect_back_or(root_path) 
    end 
    end