我想在我的应用程序中为帐户持有人用户添加订阅类型功能,以便在登录尝试失败的情况下,他们将无法访问他们的帐户。注意:我不想从数据库中删除他们的帐户。我已经安装devise-2.1.2在我的应用程序中。有没有人知道如何做到这一点?我是新手,Ruby on rails所以如果您解释一下步骤,这将对我非常有帮助。
问问题
14319 次
1 回答
31
设计有一个内置的解决方案,带有设计可锁定文档:lockable中的选项检查
您必须将集合lock_strategy设置为:failed_attempts.
第 1 步 设置您的 config/initializers/devise.rb 以使用:
# Defines which strategy will be used to lock an account.
config.lock_strategy = :failed_attempts
# Defines which key will be used when locking and unlocking an account
config.unlock_keys = [ :time ]
# Defines which strategy will be used to unlock an account.
# :time = Re-enables login after a certain amount of time (see :unlock_in below)
config.unlock_strategy = :time
# Number of authentication tries before locking an account if lock_strategy
# is failed attempts.
config.maximum_attempts = 3
# Time interval to unlock the account if :time is enabled as unlock_strategy.
config.unlock_in = 2.hours
第 2 步 您应该将可锁定的模型添加到您的模型中,如下所示:
class Example < ActiveRecord::Base
devise :database_authenticatable, :registerable,
:recoverable, :rememberable, :trackable, :validatable,
:lockable
步骤 3 生成迁移以使设计工作
class AddLockableToExamples < ActiveRecord::Migration
def change
add_column :examples, :failed_attempts, :integer, default: 0
add_column :examples, :unlock_token, :string
add_column :examples, :locked_at, :datetime
end
end
问候!!
于 2012-11-01T19:58:58.633 回答