stackoom
  简体   繁体   中英

Show a page only if user is signed in? Ruby/Devise

 原文  2014-12-19 00:58:40       ruby-on-rails/ authentication/ devise

Question

I'm building an app with rails and for user authentication I'm using Devise.

I wanna know how to restrict access to certain pages unless the user is signed in. I'm guessing I have to change the code on my specific page Controller, but I'm not sure how.

Also, if a non authenticated user wants to access the page, how can I restrict it?

Thanks a lot!

3 answers

solution1
 6 ACCPTED  2014-12-19 01:10:29

You could do something on the page like this: 

<% if user_signed_in? %>
  <div> show content here </div>
<%else %>
  <p>Please Sign Up or Sign In to view the content.</p>

  <h2><%= link_to "Sign up", new_user_registration_path%>

<% end %>

Hope it helps!

Or setup a before_action inside the controller:

before_action :authenticate_user!

The official documentation has details

solution2
 1  2014-12-19 02:33:03

You should do it inside of your controller, you can use: 

before_filter :authenticate_user!

right after this line: 

class YourController < ApplicationController

You can also narrow it down to specific controller actions, so let's say you want to restrict access to specifically the Create and Destroy actions, you can do: 

before_filter :authenticate_user!, only: [:create, :destroy]

which allows them to still freely access your other actions. Hope that helps!

solution3
 0  2014-12-19 02:27:07

There are several ways to do this.

One thing you can do is use devise´s authenticate_user! method in a before_action . I would recommend this because what it does is redirect the user to the sign_in page if there are not authenticated.

If you want to do a custom redirection, you can use your controller. Doing something like 

def show
    @user = User.find(params[:id])
    redirect_to root_path unless @user == current_user #if you don't care who the user is I recommend to use user_signed_id? method
end

You could also restrict the content at the view level using that same if statement, but I wouldn't recommend that because it can have a negative impact on your app's UX.

Check out Devise documentation.

Also there is a good gem that would help you take care of authentication issues, but unfortunately it cannot help you to see if the User is signed in. Anyways, maybe it could be helpful to you so I will leave it here. It's name is CanCan

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to make devise RegistrationsController to show sign_up page only if user is already signed in? ruby on rails - User profil page with devise - routing to show profil page Devise show user page Ruby on rails - Devise - Show user created content only Devise & RSpec - the user is signed in only in the first test redirect to registration page if user not signed-in in devise Devise public user page only if user is pro Is it possible to render a different page when user is signed in? Rails 4 devise How to redirect a user signed up with omniauth (Rails with Devise) to a specific page? Devise User Show Page Controller not working
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM