Emi Matchu
644b181ed0
Yay, we got the API endpoint for this! The `linkage` scope is the key. Rather than pulling back the specific fallback behavior we had wrote for usernames before, which was slightly different and involved appending `neopass` in there too (e.g. `matchu-neopass-1234`), I figured let's just use a lot of the same logic, and just use the preferred name as the base name. (I figure the `neopass` suffix isn't that useful anyway, `matchu-1234` kinda looks better tbh! And it's all fallback stuff that I expect serious users to replace, anyway.)
29 lines
913 B
Ruby
29 lines
913 B
Ruby
class NeoPassConnectionsController < ApplicationController
|
|
def destroy
|
|
@user = load_user
|
|
|
|
if @user.disconnect_neopass
|
|
flash[:notice] = "Your NeoPass has been disconnected. In the future, " +
|
|
"to log into this account, you'll need to use your password or your " +
|
|
"recovery email. You can also connect a different NeoPass, if you'd " +
|
|
"like."
|
|
else
|
|
flash[:alert] = "Whoops, there was an error disconnecting your " +
|
|
"NeoPass from your account, sorry. If this keeps happening, let us " +
|
|
"know!"
|
|
end
|
|
|
|
redirect_to edit_auth_user_path
|
|
end
|
|
|
|
private
|
|
|
|
def load_user
|
|
# Well, what we *actually* do is just use `current_user`, and enforce that
|
|
# the provided user ID matches. The user ID param is only really for REST
|
|
# semantics and such!
|
|
raise AccessDenied unless user_signed_in?
|
|
raise AccessDenied unless current_user.id == params[:user_id].to_i
|
|
current_user
|
|
end
|
|
end
|