Class: JwtAuthEngine::SessionsController

Inherits:

ApplicationController

• Object
• ActionController::API
• ApplicationController
• JwtAuthEngine::SessionsController

Includes:

Serializable, Tokenizable

Defined in:

app/controllers/jwt_auth_engine/sessions_controller.rb

Overview

Login and logout endpoints for session token lifecycle.

Instance Method Summary

• #login ⇒ Object

  ── POST /login ──────────────────────────────────────────────────────────.

• #logout ⇒ Object

  ── DELETE /logout ───────────────────────────────────────────────────────── Stateless logout: the client should discard tokens.

Methods included from ResponseRenderable

#render_internal_server_error, #render_success, #render_unauthorized, #render_validation_error

Instance Method Details

#login ⇒ Object

── POST /login ──────────────────────────────────────────────────────────

# File 'app/controllers/jwt_auth_engine/sessions_controller.rb', line 12

def login
  result = LoginService.new(login_params: login_params).call

  return render_unauthorized(result[:error]) unless result[:success]

  auth_model_instance = result[JwtAuthEngine.auth_model_name]

  render_success(
    message: 'Login successful.',
    JwtAuthEngine.auth_model_name => serialize_auth_model_instance(auth_model_instance),
    **issue_tokens(auth_model_instance)
  )
end

#logout ⇒ Object

── DELETE /logout ───────────────────────────────────────────────────────── Stateless logout: the client should discard tokens.

# File 'app/controllers/jwt_auth_engine/sessions_controller.rb', line 28

def logout
  render_success(status: :no_content)
end