Revocable sessions (#3616)

* feat: Revocable sessions * fix: Tests using sign_in * feat: Configuration entry for the maximum number of session activations
author: Sorin Davidoi <sorin.davidoi@gmail.com> 2017-06-23 18:50:53 +0200
committer: Eugen Rochko <eugen@zeonfederated.com> 2017-06-23 18:50:53 +0200
commit: 2211e8d1cd6eb97a8a04e24c1fea7031a201edb5 (patch)
tree: b235a97b1c0f73475449c2313823dc6d599f31bb /app/models/user.rb
parent: 3783cadf2d7a2b7ace078d1d337645f53c190c69 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/app/models/user.rb b/app/models/user.rb
index ca11f2f5d..fccf1089b 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -63,6 +63,8 @@ class User < ApplicationRecord
   # handle this itself, and this can be removed from our User class.
   attribute :otp_secret
 
+  has_many :session_activations, dependent: :destroy
+
   def confirmed?
     confirmed_at.present?
   end
@@ -89,6 +91,18 @@ class User < ApplicationRecord
     settings.auto_play_gif
   end
 
+  def activate_session
+    session_activations.activate(SecureRandom.hex).session_id
+  end
+
+  def exclusive_session(id)
+    session_activations.exclusive(id)
+  end
+
+  def session_active?(id)
+    session_activations.active? id
+  end
+
   protected
 
   def send_devise_notification(notification, *args)
author	Sorin Davidoi <sorin.davidoi@gmail.com>	2017-06-23 18:50:53 +0200
committer	Eugen Rochko <eugen@zeonfederated.com>	2017-06-23 18:50:53 +0200
commit	2211e8d1cd6eb97a8a04e24c1fea7031a201edb5 (patch)
tree	b235a97b1c0f73475449c2313823dc6d599f31bb /app/models/user.rb
parent	3783cadf2d7a2b7ace078d1d337645f53c190c69 (diff)