discourse/app/controllers/session_controller.rb

require_dependency 'rate_limiter'
require_dependency 'single_sign_on'

class SessionController < ApplicationController

  skip_before_filter :redirect_to_login_if_required
  skip_before_filter :check_xhr, only: ['sso', 'sso_login', 'become', 'sso_provider']

  def csrf
    render json: {csrf: form_authenticity_token }
  end

  def sso
    if SiteSetting.enable_sso
      redirect_to DiscourseSingleSignOn.generate_url(params[:return_path] || path('/'))
    else
      render nothing: true, status: 404
    end
  end

  def sso_provider(payload=nil)
    payload ||= request.query_string
    if SiteSetting.enable_sso_provider
      sso = SingleSignOn.parse(payload, SiteSetting.sso_secret)
      if current_user
        sso.name = current_user.name
        sso.username = current_user.username
        sso.email = current_user.email
        sso.external_id = current_user.id.to_s
        sso.admin = current_user.admin?
        sso.moderator = current_user.moderator?
        redirect_to sso.to_url(sso.return_sso_url)
      else
        session[:sso_payload] = request.query_string
        redirect_to path('/login')
      end
    else
      render nothing: true, status: 404
    end
  end

  # For use in development mode only when login options could be limited or disabled.
  # NEVER allow this to work in production.
  def become
    raise Discourse::InvalidAccess.new unless Rails.env.development?
    user = User.find_by_username(params[:session_id])
    raise "User #{params[:session_id]} not found" if user.blank?

    log_on_user(user)
    redirect_to path("/")
  end

  def sso_login
    unless SiteSetting.enable_sso
      return render(nothing: true, status: 404)
    end

    sso = DiscourseSingleSignOn.parse(request.query_string)
    if !sso.nonce_valid?
      return render(text: I18n.t("sso.timeout_expired"), status: 500)
    end

    if ScreenedIpAddress.should_block?(request.remote_ip)
      return render(text: I18n.t("sso.unknown_error"), status: 500)
    end

    return_path = sso.return_path
    sso.expire_nonce!

    begin
      if user = sso.lookup_or_create_user(request.remote_ip)

        if SiteSetting.must_approve_users? && !user.approved?
          render text: I18n.t("sso.account_not_approved"), status: 403
          return
        else
          log_on_user user
        end

        # If it's not a relative URL check the host
        if return_path !~ /^\/[^\/]/
          begin
            uri = URI(return_path)
            return_path = path("/") unless uri.host == Discourse.current_hostname
          rescue
            return_path = path("/")
          end
        end

        redirect_to return_path
      else
        render text: I18n.t("sso.not_found"), status: 500
      end
    rescue => e
      details = {}
      SingleSignOn::ACCESSORS.each do |a|
        details[a] = sso.send(a)
      end
      Discourse.handle_job_exception(e, details)

      render text: I18n.t("sso.unknown_error"), status: 500
    end
  end

  def create

    unless allow_local_auth?
      render nothing: true, status: 500
      return
    end

    RateLimiter.new(nil, "login-hr-#{request.remote_ip}", 30, 1.hour).performed!
    RateLimiter.new(nil, "login-min-#{request.remote_ip}", 6, 1.minute).performed!

    params.require(:login)
    params.require(:password)

    return invalid_credentials if params[:password].length > User.max_password_length

    login = params[:login].strip
    login = login[1..-1] if login[0] == "@"


    if user = User.find_by_username_or_email(login)

      # If their password is correct
      unless user.confirm_password?(params[:password])
        invalid_credentials
        return
      end

      # If the site requires user approval and the user is not approved yet
      if login_not_approved_for?(user)
        login_not_approved
        return
      end

      # User signed on with username and password, so let's prevent the invite link
      # from being used to log in (if one exists).
      Invite.invalidate_for_email(user.email)
    else
      invalid_credentials
      return
    end

    if user.suspended?
      failed_to_login(user)
      return
    end

    if ScreenedIpAddress.should_block?(request.remote_ip)
      return not_allowed_from_ip_address(user)
    end

    if ScreenedIpAddress.block_admin_login?(user, request.remote_ip)
      return admin_not_allowed_from_ip_address(user)
    end

    (user.active && user.email_confirmed?) ? login(user) : not_activated(user)
  end

  def forgot_password
    params.require(:login)

    unless allow_local_auth?
      render nothing: true, status: 500
      return
    end

    RateLimiter.new(nil, "forgot-password-hr-#{request.remote_ip}", 6, 1.hour).performed!
    RateLimiter.new(nil, "forgot-password-min-#{request.remote_ip}", 3, 1.minute).performed!

    user = User.find_by_username_or_email(params[:login])
    user_presence = user.present? && user.id != Discourse::SYSTEM_USER_ID
    if user_presence
      email_token = user.email_tokens.create(email: user.email)
      Jobs.enqueue(:user_email, type: :forgot_password, user_id: user.id, email_token: email_token.token)
    end

    json = { result: "ok" }
    unless SiteSetting.forgot_password_strict
      json[:user_found] = user_presence
    end

    render json: json

  rescue RateLimiter::LimitExceeded
    render_json_error(I18n.t("rate_limiter.slow_down"))
  end

  def current
    if current_user.present?
      render_serialized(current_user, CurrentUserSerializer)
    else
      render nothing: true, status: 404
    end
  end

  def destroy
    reset_session
    log_off_user
    render nothing: true
  end

  private

  def allow_local_auth?
    !SiteSetting.enable_sso && SiteSetting.enable_local_logins
  end

  def login_not_approved_for?(user)
    SiteSetting.must_approve_users? && !user.approved? && !user.admin?
  end

  def invalid_credentials
    render json: {error: I18n.t("login.incorrect_username_email_or_password")}
  end

  def login_not_approved
    render json: {error: I18n.t("login.not_approved")}
  end

  def not_activated(user)
    render json: {
      error: I18n.t("login.not_activated"),
      reason: 'not_activated',
      sent_to_email: user.find_email || user.email,
      current_email: user.email
    }
  end

  def not_allowed_from_ip_address(user)
    render json: {error: I18n.t("login.not_allowed_from_ip_address", username: user.username)}
  end

  def admin_not_allowed_from_ip_address(user)
    render json: {error: I18n.t("login.admin_not_allowed_from_ip_address", username: user.username)}
  end

  def failed_to_login(user)
    message = user.suspend_reason ? "login.suspended_with_reason" : "login.suspended"

    render json: { error: I18n.t(message, { date: I18n.l(user.suspended_till, format: :date_only),
                                            reason: user.suspend_reason}) }
  end

  def login(user)
    log_on_user(user)

    if payload = session.delete(:sso_payload)
      sso_provider(payload)
    else
      render_serialized(user, UserSerializer)
    end
  end

end
FIX: rate limit password reset email 2014-08-17 20:55:30 -04:00			`require_dependency 'rate_limiter'`
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00			`require_dependency 'single_sign_on'`
FIX: rate limit password reset email 2014-08-17 20:55:30 -04:00
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`class SessionController < ApplicationController`
SECURITY: correct our CSRF implementation to be much more aggressive 2013-07-29 01:13:13 -04:00
Redirect all controllers to login if required We want to skip the filter for sessions controller so that we can login and we want to skip the filter for static pages because those should be visible to visitors. 2013-06-04 18:32:36 -04:00			`skip_before_filter :redirect_to_login_if_required`
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00			`skip_before_filter :check_xhr, only: ['sso', 'sso_login', 'become', 'sso_provider']`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
SECURITY: correct our CSRF implementation to be much more aggressive 2013-07-29 01:13:13 -04:00			`def csrf`
			`render json: {csrf: form_authenticity_token }`
			`end`

FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`def sso`
			`if SiteSetting.enable_sso`
FEATURE: add clean support for running Discourse in a subfolder To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish 2015-03-08 20:45:36 -04:00			`redirect_to DiscourseSingleSignOn.generate_url(params[:return_path] \|\| path('/'))`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`else`
			`render nothing: true, status: 404`
			`end`
			`end`

FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00			`def sso_provider(payload=nil)`
			`payload \|\|= request.query_string`
			`if SiteSetting.enable_sso_provider`
			`sso = SingleSignOn.parse(payload, SiteSetting.sso_secret)`
			`if current_user`
			`sso.name = current_user.name`
			`sso.username = current_user.username`
			`sso.email = current_user.email`
			`sso.external_id = current_user.id.to_s`
Add admin and moderator state to sso provider 2014-11-26 20:24:21 -05:00			`sso.admin = current_user.admin?`
			`sso.moderator = current_user.moderator?`
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00			`redirect_to sso.to_url(sso.return_sso_url)`
			`else`
			`session[:sso_payload] = request.query_string`
FEATURE: add clean support for running Discourse in a subfolder To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish 2015-03-08 20:45:36 -04:00			`redirect_to path('/login')`
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00			`end`
			`else`
			`render nothing: true, status: 404`
			`end`
			`end`

Added easy impersonate route while in development mode 2014-10-07 12:25:25 -04:00			`# For use in development mode only when login options could be limited or disabled.`
			`# NEVER allow this to work in production.`
			`def become`
			`raise Discourse::InvalidAccess.new unless Rails.env.development?`
			`user = User.find_by_username(params[:session_id])`
			`raise "User #{params[:session_id]} not found" if user.blank?`

			`log_on_user(user)`
FEATURE: add clean support for running Discourse in a subfolder To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish 2015-03-08 20:45:36 -04:00			`redirect_to path("/")`
Added easy impersonate route while in development mode 2014-10-07 12:25:25 -04:00			`end`

FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`def sso_login`
			`unless SiteSetting.enable_sso`
FIX: If an IP is blocked, don't allow people to login using it 2015-02-25 15:59:11 -05:00			`return render(nothing: true, status: 404)`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`end`

			`sso = DiscourseSingleSignOn.parse(request.query_string)`
			`if !sso.nonce_valid?`
FIX: If an IP is blocked, don't allow people to login using it 2015-02-25 15:59:11 -05:00			`return render(text: I18n.t("sso.timeout_expired"), status: 500)`
			`end`

			`if ScreenedIpAddress.should_block?(request.remote_ip)`
			`return render(text: I18n.t("sso.unknown_error"), status: 500)`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`end`

FEATURE: SSO to handle return_path automatically 2014-02-25 17:58:30 -05:00			`return_path = sso.return_path`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`sso.expire_nonce!`

Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00			`begin`
FIX: SSO code should respect IP address filters 2015-02-23 15:58:45 -05:00			`if user = sso.lookup_or_create_user(request.remote_ip)`

Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00			`if SiteSetting.must_approve_users? && !user.approved?`
FEATURE: Localize SSO error messages 2014-11-23 20:15:51 -05:00			`render text: I18n.t("sso.account_not_approved"), status: 403`
Stop sso login processing after rendering error This prevents a DoubleRenderError triggered on the redirect_to. 2015-05-11 08:17:32 -04:00			`return`
Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00			`else`
			`log_on_user user`
			`end`
SECURITY: The SSO `return_path` was an open redirect This security fix needs SSO to be configured, and the user has to go through the entire auth process before being redirected to the wrong host so it is probably lower priority for most installs. 2015-01-22 12:20:17 -05:00
			`# If it's not a relative URL check the host`
			`if return_path !~ /^\/[^\/]/`
			`begin`
			`uri = URI(return_path)`
FEATURE: add clean support for running Discourse in a subfolder To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish 2015-03-08 20:45:36 -04:00			`return_path = path("/") unless uri.host == Discourse.current_hostname`
SECURITY: The SSO `return_path` was an open redirect This security fix needs SSO to be configured, and the user has to go through the entire auth process before being redirected to the wrong host so it is probably lower priority for most installs. 2015-01-22 12:20:17 -05:00			`rescue`
FEATURE: add clean support for running Discourse in a subfolder To setup set DISCOURSE_RELATIVE_URL_ROOT to the folder you wish 2015-03-08 20:45:36 -04:00			`return_path = path("/")`
SECURITY: The SSO `return_path` was an open redirect This security fix needs SSO to be configured, and the user has to go through the entire auth process before being redirected to the wrong host so it is probably lower priority for most installs. 2015-01-22 12:20:17 -05:00			`end`
			`end`

Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00			`redirect_to return_path`
BUGFIX: sso to respect must_approve_users 2014-02-25 18:27:39 -05:00			`else`
FEATURE: Localize SSO error messages 2014-11-23 20:15:51 -05:00			`render text: I18n.t("sso.not_found"), status: 500`
BUGFIX: sso to respect must_approve_users 2014-02-25 18:27:39 -05:00			`end`
Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00			`rescue => e`
			`details = {}`
			`SingleSignOn::ACCESSORS.each do \|a\|`
			`details[a] = sso.send(a)`
			`end`
Rename handle_exception to handle_job_exception 2015-02-09 15:47:46 -05:00			`Discourse.handle_job_exception(e, details)`
Add more SSO logging for failure conditions 2014-11-23 18:02:22 -05:00
FEATURE: Localize SSO error messages 2014-11-23 20:15:51 -05:00			`render text: I18n.t("sso.unknown_error"), status: 500`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`end`
			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`def create`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00
SECURITY: when enabled_local_logins is false users could log in via API thanks @Nicholas Blanco 2014-03-26 00:39:44 -04:00			`unless allow_local_auth?`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`render nothing: true, status: 500`
			`return`
			`end`

SECURITY: rate limit user/password login 2014-09-24 20:06:44 -04:00			`RateLimiter.new(nil, "login-hr-#{request.remote_ip}", 30, 1.hour).performed!`
			`RateLimiter.new(nil, "login-min-#{request.remote_ip}", 6, 1.minute).performed!`

Enabled strong_parameters across all models/controllers. All models are now using ActiveModel::ForbiddenAttributesProtection, which shifts the responsibility for parameter whitelisting for mass-assignments from the model to the controller. attr_accessible has been disabled and removed as this functionality replaces that. The require_parameters method in the ApplicationController has been removed in favor of strong_parameters' #require method. It is important to note that there is still some refactoring required to get all parameters to pass through #require and #permit so that we can guarantee that parameter values are scalar. Currently strong_parameters, in most cases, is only being utilized to require parameters and to whitelist the few places that do mass-assignments. 2013-06-06 03:14:32 -04:00			`params.require(:login)`
			`params.require(:password)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
SECURITY: Limit passwords to 200 characters Prevents layer 8 attack. 2014-09-11 15:22:11 -04:00			`return invalid_credentials if params[:password].length > User.max_password_length`

Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`login = params[:login].strip`
			`login = login[1..-1] if login[0] == "@"`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`if user = User.find_by_username_or_email(login)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`# If their password is correct`
			`unless user.confirm_password?(params[:password])`
			`invalid_credentials`
			`return`
			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
			`# If the site requires user approval and the user is not approved yet`
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`if login_not_approved_for?(user)`
			`login_not_approved`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`return`
			`end`
fix exception in logs 2013-11-27 20:39:59 -05:00
Invite link can't be used to log in after you set a password or sign in with 3rd party 2014-01-21 16:53:46 -05:00			`# User signed on with username and password, so let's prevent the invite link`
			`# from being used to log in (if one exists).`
			`Invite.invalidate_for_email(user.email)`
fix exception in logs 2013-11-27 20:39:59 -05:00			`else`
			`invalid_credentials`
			`return`
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`end`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`if user.suspended?`
			`failed_to_login(user)`
			`return`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

UX: improve message when admin login is blocked because of admin ip address whitelisting 2015-03-02 12:13:10 -05:00			`if ScreenedIpAddress.should_block?(request.remote_ip)`
FIX: SSO code should respect IP address filters 2015-02-23 15:58:45 -05:00			`return not_allowed_from_ip_address(user)`
FEATURE: restrict admin access based on IP address 2014-09-04 18:50:27 -04:00			`end`

UX: improve message when admin login is blocked because of admin ip address whitelisting 2015-03-02 12:13:10 -05:00			`if ScreenedIpAddress.block_admin_login?(user, request.remote_ip)`
			`return admin_not_allowed_from_ip_address(user)`
			`end`

FIX: deactivated users shouldn't be able to log in 2014-04-28 13:46:28 -04:00			`(user.active && user.email_confirmed?) ? login(user) : not_activated(user)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

			`def forgot_password`
Enabled strong_parameters across all models/controllers. All models are now using ActiveModel::ForbiddenAttributesProtection, which shifts the responsibility for parameter whitelisting for mass-assignments from the model to the controller. attr_accessible has been disabled and removed as this functionality replaces that. The require_parameters method in the ApplicationController has been removed in favor of strong_parameters' #require method. It is important to note that there is still some refactoring required to get all parameters to pass through #require and #permit so that we can guarantee that parameter values are scalar. Currently strong_parameters, in most cases, is only being utilized to require parameters and to whitelist the few places that do mass-assignments. 2013-06-06 03:14:32 -04:00			`params.require(:login)`
Initial release of Discourse 2013-02-05 14:16:51 -05:00
SECURITY: when enabled_local_logins is false users could log in via API thanks @Nicholas Blanco 2014-03-26 00:39:44 -04:00			`unless allow_local_auth?`
FEATURE: single sign on support Added support for outsourcing auth to a different website, documentation on meta 2014-02-24 22:30:49 -05:00			`render nothing: true, status: 500`
			`return`
			`end`

FIX: rate limit password reset email 2014-08-17 20:55:30 -04:00			`RateLimiter.new(nil, "forgot-password-hr-#{request.remote_ip}", 6, 1.hour).performed!`
			`RateLimiter.new(nil, "forgot-password-min-#{request.remote_ip}", 3, 1.minute).performed!`

Utilize already existing method 'find_by_username_or_email' check presence of email using include, dont use =~ 2013-10-24 03:59:58 -04:00			`user = User.find_by_username_or_email(params[:login])`
use system user helper and constant when it's referred 2014-12-18 05:21:06 -05:00			`user_presence = user.present? && user.id != Discourse::SYSTEM_USER_ID`
disable sending email or show presence when forgot system user password 2014-12-10 01:17:49 -05:00			`if user_presence`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`email_token = user.email_tokens.create(email: user.email)`
			`Jobs.enqueue(:user_email, type: :forgot_password, user_id: user.id, email_token: email_token.token)`
			`end`
FEATURE: inform users if forgot password works or not FIX: flash dialog in forgot password often had wrong color (this can be disabled by setting forgot_password_verbose to false) 2014-09-10 22:04:44 -04:00
			`json = { result: "ok" }`
FEATURE: renames forgot_password_verbose, forgot_password_strict 2014-09-11 01:53:29 -04:00			`unless SiteSetting.forgot_password_strict`
disable sending email or show presence when forgot system user password 2014-12-10 01:17:49 -05:00			`json[:user_found] = user_presence`
FEATURE: inform users if forgot password works or not FIX: flash dialog in forgot password often had wrong color (this can be disabled by setting forgot_password_verbose to false) 2014-09-10 22:04:44 -04:00			`end`

			`render json: json`
FIX: rate limit password reset email 2014-08-17 20:55:30 -04:00
			`rescue RateLimiter::LimitExceeded`
			`render_json_error(I18n.t("rate_limiter.slow_down"))`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`

API endpoint for retrieving the current user 2014-02-05 13:46:24 -05:00			`def current`
			`if current_user.present?`
			`render_serialized(current_user, CurrentUserSerializer)`
			`else`
			`render nothing: true, status: 404`
			`end`
			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`def destroy`
recover from bad CSRF tokens without requiring a hard refresh of the browser 2013-08-27 01:56:12 -04:00			`reset_session`
add current_user_provider so people can override current_user bevior cleanly, see http://meta.discourse.org/t/amending-current-user-logic-in-discourse/10278 2013-10-09 00:10:37 -04:00			`log_off_user`
Initial release of Discourse 2013-02-05 14:16:51 -05:00			`render nothing: true`
			`end`

Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`private`

SECURITY: when enabled_local_logins is false users could log in via API thanks @Nicholas Blanco 2014-03-26 00:39:44 -04:00			`def allow_local_auth?`
			`!SiteSetting.enable_sso && SiteSetting.enable_local_logins`
			`end`

Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`def login_not_approved_for?(user)`
			`SiteSetting.must_approve_users? && !user.approved? && !user.admin?`
			`end`

			`def invalid_credentials`
			`render json: {error: I18n.t("login.incorrect_username_email_or_password")}`
			`end`

			`def login_not_approved`
			`render json: {error: I18n.t("login.not_approved")}`
			`end`

			`def not_activated(user)`
			`render json: {`
			`error: I18n.t("login.not_activated"),`
			`reason: 'not_activated',`
			`sent_to_email: user.find_email \|\| user.email,`
			`current_email: user.email`
			`}`
			`end`

FEATURE: restrict admin access based on IP address 2014-09-04 18:50:27 -04:00			`def not_allowed_from_ip_address(user)`
			`render json: {error: I18n.t("login.not_allowed_from_ip_address", username: user.username)}`
			`end`

UX: improve message when admin login is blocked because of admin ip address whitelisting 2015-03-02 12:13:10 -05:00			`def admin_not_allowed_from_ip_address(user)`
			`render json: {error: I18n.t("login.admin_not_allowed_from_ip_address", username: user.username)}`
			`end`

Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`def failed_to_login(user)`
			`message = user.suspend_reason ? "login.suspended_with_reason" : "login.suspended"`

			`render json: { error: I18n.t(message, { date: I18n.l(user.suspended_till, format: :date_only),`
			`reason: user.suspend_reason}) }`
			`end`

			`def login(user)`
			`log_on_user(user)`
FEATURE: implement SSO provider on Discourse so Auth can be farmed to it FEATURE: pass return_sso_url to SSO endpoints, for easier return 2014-11-26 01:25:54 -05:00
			`if payload = session.delete(:sso_payload)`
			`sso_provider(payload)`
			`else`
			`render_serialized(user, UserSerializer)`
			`end`
Refactor SessionController#create, reduce complexity. Don't compromise readablity 2013-11-15 10:27:43 -05:00			`end`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`end`