add Registrations (sign ups)

corsego · Jul 21, 2024 · ca6f270 · ca6f270
1 parent b94b002
commit ca6f270
Show file tree

Hide file tree

Showing 7 changed files with 52 additions and 6 deletions.
diff --git a/app/controllers/registrations_controller.rb b/app/controllers/registrations_controller.rb
@@ -0,0 +1,24 @@
+class RegistrationsController < ApplicationController
+  allow_unauthenticated_access(only: %i[new create])
+  before_action :resume_session, only: [:new]
+  rate_limit to: 10, within: 3.minutes, only: :create, with: -> { redirect_to new_session_url, alert: "Try again later." }
+
+  def new
+    redirect_to root_url if authenticated?
+  end
+
+  def create
+    user = User.new(params.permit(:email_address, :password))
+    if user.save
+      start_new_session_for user
+      redirect_to after_authentication_url, notice: "Signed up."
+    else
+      redirect_to new_session_url, alert: user.errors.full_messages.to_sentence
+    end
+  end
+
+  def destroy
+    terminate_session
+    redirect_to new_session_url, notice: "Signed out."
+  end
+end
diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb
@@ -1,5 +1,6 @@
 class SessionsController < ApplicationController
   allow_unauthenticated_access(only: %i[new create])
+  before_action :resume_session, only: [:new]
   rate_limit to: 10, within: 3.minutes, only: :create, with: -> { redirect_to new_session_url, alert: "Try again later." }
 
   def new

diff --git a/app/models/user.rb b/app/models/user.rb
@@ -1,4 +1,6 @@
 class User < ApplicationRecord
   has_secure_password validations: false
   has_many :sessions, dependent: :destroy
+
+  validates :email_address, uniqueness: true, presence: true, format: { with: URI::MailTo::EMAIL_REGEXP }
 end
diff --git a/app/views/layouts/application.html.erb b/app/views/layouts/application.html.erb
@@ -25,10 +25,17 @@
       <%#= Current.session %>
       <%= Current.user.email_address %>
       <%= button_to 'Sign out', session_path, method: :delete %>
+    <% else %>
+      <%= link_to 'Sign in', new_session_path %>
+      <%= link_to 'Sign up', new_registration_path %>
     <% end %>
     <hr>
-    <%= notice %>
-    <%= alert %>
+    <% if notice = flash[:notice] %>
+      <div style="color:green"><%= notice %></div>
+    <% end %>
+    <% if alert = flash[:alert] %>
+      <div style="color:red"><%= alert %></div>
+    <% end %>
     <hr>
     <%= yield %>
   </body>

diff --git a/app/views/registrations/new.html.erb b/app/views/registrations/new.html.erb
@@ -0,0 +1,13 @@
+<h1>Create an account</h1>
+
+<%= form_with url: registration_url do |form| %>
+  <div>
+    <%= form.email_field :email_address, required: true, autofocus: true, autocomplete: "username", placeholder: "Enter your email address", value: params[:email_address] %>
+  </div>
+
+  <div>
+    <%= form.password_field :password, required: true, autocomplete: "current-password", placeholder: "Enter your password", maxlength: 72 %>
+  </div>
+
+  <%= form.submit "Sign up" %>
+<% end %>
diff --git a/app/views/sessions/new.html.erb b/app/views/sessions/new.html.erb
@@ -1,6 +1,4 @@
-<% if alert = flash[:alert] %>
-  <div style="color:red"><%= alert %></div>
-<% end %>
+<h1>Sign in</h1>
 
 <%= form_with url: session_url do |form| %>
   <div>

diff --git a/config/routes.rb b/config/routes.rb
@@ -1,5 +1,6 @@
 Rails.application.routes.draw do
-  resource :session
+  resource :session, only: [:new, :create, :destroy]
+  resource :registration, only: [:new, :create]
   get "dashboard", to: "home#dashboard"
   # Define your application routes per the DSL in https://guides.rubyonrails.org/routing.html