Added remember me feature

Author: hugodias

app/controllers/sessions_controller.rb

@@ -1,22 +1,37 @@
 class SessionsController < ApplicationController
-  skip_before_filter :require_login, :only => [:new, :create]
+  skip_before_filter :require_login, :only => [:new, :create, :login]
   def new
   end
-  
-  def create
-    user = User.authenticate(
-      params.has_key?(:email) ? params[:email] : nil,
-      params[:password])
-    if user
-      session[:user_id] = user.id
-      redirect_to root_url, :notice => "Logged in!"
+
+  def login
+    @user = User.new
+    if logged_in?
+      redirect_to root_url
+    elsif !logged_in? && cookies.signed[:user_id]
+      user = User.auth_with_cookie(cookies.signed[:user_id])
+      session[:user_id] = cookies.signed[:user_id]
+      redirect_to root_url, :notice => "Welcome back!"
+    elsif request.post?
+      user = User.authenticate(
+        params.has_key?(:email) ? params[:email] : nil,
+        params[:password])
+      if user
+        if params[:remember_me] == 'yes'
+          cookies.permanent.signed[:user_id] = user.id
+        end
+        session[:user_id] = user.id
+        redirect_to root_url, :notice => "Logged in!"
+      else
+        redirect_to root_url, :notice => "Invalid email or password"
+      end
     else
-      redirect_to root_url, :notice => "Invalid email or password"
+      render "home"
     end
   end
-  
+
   def destroy
     session[:user_id] = nil
+    cookies.delete :user_id
     redirect_to root_url, :notice => "Logged out!"
   end
 end

app/controllers/users_controller.rb

@@ -1,5 +1,5 @@
 class UsersController < ApplicationController
-  skip_before_filter :require_login, :only => [:new, :create, :home]
+  skip_before_filter :require_login, :only => [:new, :create, :home, :login]
   def new
     @user = User.new
   end
@@ -27,7 +27,7 @@ def show
       end
     end
   end
-  
+
 
   def create
     @user = User.new(params[:user])
@@ -37,16 +37,17 @@ def create
       render "new"
     end
   end
-  
+
   def home
     @user = User.new
-
     if current_user
       render "welcome"
+    elsif cookies.signed[:user_id]
+      redirect_to log_in_path
     else
       render "home"
     end
-  end 
+  end
 
   def edit
     @user = User.find(params[:id])
@@ -63,7 +64,7 @@ def update
       else
         format.html  { render :action => "edit" }
         format.json  { render :json => @user.errors,
-                      :status => :unprocessable_entity }        
+                      :status => :unprocessable_entity }
       end
     end
   end
@@ -73,12 +74,12 @@ def destroy
       redirect_to users_path, :notice => "You cant delete yourself !"
     else
       @user = User.find(params[:id])
-      @user.delete      
+      @user.delete
 
       respond_to do |format|
         format.html { redirect_to users_path, :notice => 'User deleted' }
         format.json { head :no_content }
-      end      
+      end
     end
   end
 end

app/models/user.rb

@@ -1,18 +1,18 @@
 class User < ActiveRecord::Base
   attr_accessible :username, :email, :password, :password_confirmation
-  
+
   attr_accessor :password
   before_save :encrypt_password
-  
+
   validates_confirmation_of :password
   validates_presence_of :password, :on => :create
   validates_presence_of :username
   validates_presence_of :email
   validates_uniqueness_of :email
   validates_uniqueness_of :username
-  
+
   def self.authenticate(email, password)
-      
+
     user = User.is_a_valid_email(email) ? find_by_email(email) : find_by_username(email)
 
     if user && user.password_hash == BCrypt::Engine.hash_secret(password, user.password_salt)
@@ -21,7 +21,15 @@ def self.authenticate(email, password)
       nil
     end
   end
-  
+
+  def self.auth_with_cookie(id)
+    user = find_by_id(id)
+    if user
+      user
+    else
+      nil
+    end
+  end
 
   def self.is_a_valid_email(email)
     # Check the number of '@' signs.

app/views/sessions/_form.html.haml

@@ -1,9 +1,12 @@
-= form_tag sessions_path, :class => '' do
-	%div.form-group
-		= label_tag :email
-		= text_field_tag :email, params[:email], :placeholder => 'Email or Username', :class => 'form-control'
+= form_tag auth_path, :class => '' do
+  %div.form-group
+    = label_tag :email
+    = text_field_tag :email, params[:email], :placeholder => 'Email or Username', :class => 'form-control'
 
-	%div.form-group
-		= label_tag :password
-		= password_field_tag :password, nil, :placeholder => 'Password', :class => 'form-control'
-	%p.button= submit_tag "Log in", :class => 'btn btn-primary'
+  %div.form-group
+    = label_tag :password
+    = password_field_tag :password, nil, :placeholder => 'Password', :class => 'form-control'
+  %div.form-group
+    = check_box_tag 'remember_me', 'yes', true
+    = label_tag :remember_me
+  %p.button= submit_tag "Log in", :class => 'btn btn-primary'

config/routes.rb

@@ -3,12 +3,13 @@
   root :to => "users#home"
 
   get "log_out" => "sessions#destroy", :as => "log_out"
-  get "log_in" => "sessions#new", :as => "log_in"
-  post "sessions" => "sessions#create"
+  get "log_in" => "sessions#login", :as => "log_in"
+  post "auth" => "sessions#login"
+
   get "sign_up" => "users#new", :as => "sign_up"
-  
+
   resources :users
-  
+
   # The priority is based upon order of creation:
   # first created -> highest priority.