Check if user is authenticated before visiting the home page

Co-authored-by: Cait <[email protected]> Co-authored-by: Efua Akumanyi <[email protected]>
ministryofjustice · Aug 13, 2020 · 9983bf7 · 9983bf7
1 parent 8e73f2a
commit 9983bf7
Show file tree

Hide file tree

Showing 8 changed files with 37 additions and 4 deletions.
diff --git a/app/assets/javascripts/application.js b/app/assets/javascripts/application.js
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
@@ -1,2 +1,5 @@
 class ApplicationController < ActionController::Base
+  def new_session_path(scope)
+    new_user_session_path
+  end
 end
diff --git a/app/controllers/home_controller.rb b/app/controllers/home_controller.rb
@@ -1,5 +1,6 @@
 class HomeController < ApplicationController
+  before_action :authenticate_user!
+
   def show
-    render body: "Hello from Staff Device"
   end
-end
+end
diff --git a/app/controllers/users/omniauth_callbacks_controller.rb b/app/controllers/users/omniauth_callbacks_controller.rb
@@ -0,0 +1,14 @@
+class Users::OmniauthCallbacksController < Devise::OmniauthCallbacksController
+  def cognito_idp
+    @user = User.from_omniauth(request.env["omniauth.auth"])
+
+    if @user.persisted?
+      sign_in_and_redirect @user, event: :authentication #this will throw if @user is not activated
+      set_flash_message(:notice, :success, kind: "Cognito IDP") if is_navigational_format?
+    end
+  end
+
+  def failure
+    redirect_to root_path
+  end
+end
diff --git a/app/models/user.rb b/app/models/user.rb
@@ -2,4 +2,8 @@ class User < ApplicationRecord
   # Include default devise modules. Others available are:
   # :confirmable, :lockable, :timeoutable, :trackable and :omniauthable
   devise :omniauthable, omniauth_providers: %i[cognito-idp]
-end
+
+  def from_omniauth(auth)
+    where(provider: auth.provider, uid: auth.uid).first_or_create
+  end
+end
diff --git a/app/views/devise/sessions/new.html.erb b/app/views/devise/sessions/new.html.erb
@@ -0,0 +1,3 @@
+<h2>Log in</h2>
+
+<%= link_to "Sign in with Cognito", user_cognito_idp_omniauth_authorize_path %>
diff --git a/app/views/home/show.html.erb b/app/views/home/show.html.erb
@@ -0,0 +1,3 @@
+<p>Hello from Staff Device</p>
+
+<%= link_to "Logout", destroy_user_session_path, method: :delete %>
diff --git a/config/routes.rb b/config/routes.rb
@@ -1,5 +1,10 @@
 Rails.application.routes.draw do
-  devise_for :users
+  devise_for :users, :controllers => { :omniauth_callbacks => "users/omniauth_callbacks" }
+  devise_scope :user do
+    get 'sign_in', :to => 'devise/sessions#new', :as => :new_user_session
+    delete 'sign_out', :to => 'devise/sessions#destroy', :as => :destroy_user_session
+  end
+
   get "/healthcheck", to: "monitoring#healthcheck"
   root "home#show"
 end
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		<h2>Log in</h2>

		<%= link_to "Sign in with Cognito", user_cognito_idp_omniauth_authorize_path %>
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		<p>Hello from Staff Device</p>

		<%= link_to "Logout", destroy_user_session_path, method: :delete %>