similar to: Mozzila Logout back button issue

Hiya - before I start let me tell you i''m a Nuby on Rails. I''ve created a user registration within my application that requires email validation and that seems to be working fine. I''m now creating the user login page and have the following code in my UsersController: def login @user = User.new @user.username = params[:username] end def

Basically, Im trying to add comments to photos that other users have uploaded. And Ive encountered an error: NoMethodError in CommentsController#create undefined method `user_id='' for #<Comment:0x4768cd0> C:/INSTAN~1/ruby/lib/ruby/gems/1.8/gems/activerecord-1.15.3/lib/active_record/base.rb:1857:in `method_missing''

I''m trying to create a simple authentication system but am failing miserably. I''m (sort of) following the "Logging In" chapter of the Agile book. Ideally, any access to http://example.com/publish (and any of its subdirectories) should redirect to http:/example.com/publish/login when there is no valid session user_id. Code so far:

Hi,- I am looking for a clean and secure way for an ActiveRecord instance to delete itself. Say I have a User model in my app. Then the destructive action would be /users/user_id/destroy. If this action is not secured by a filter like: (*) before_filter :check_administrator_role, :only => :destroy then any user could potentially log in and start issuing: /users/1/destroy /users/2/destroy .

I do not seem to understad what this error is about. Some body help. wrong number of arguments (1 for 2) RAILS_ROOT: C:/INSTAN~1/rails_apps/project/config/.. Application Trace | Framework Trace | Full Trace #{RAILS_ROOT}/app/controllers/user_controller.rb:10:in `authenticate'' #{RAILS_ROOT}/app/controllers/user_controller.rb:10:in `process_login''

Hello everyone, I am following the Practical Rails: Social Networking sites book. In chapter 7 photo gallery I am getting a NoMethodError in Pages#show Showing layouts/_menu.rhtml where line #12 raised: undefined method `new_entry_path'' for #<ActionView::Base:0x52fa56c> Extracted source (around line #12): 9: <% if is_logged_in? %> 10:

Hi, I am trying to create a basic form in which I want one of the fields initialized before displaying it. My code (in a view) is as follows: <% if ( session[:user_id] != nil ) then logged_in_user = User.find(session[:user_id]) end %> <% form_for :suggestion do |form| %> <label for="suggestion_title">Topic:</label><br/> <%=

have user_cotnroller class UserController < ApplicationController def authenticate if request.post? #User.new(params[:userform]) will create a new object of User, retrieve values from the form and store it variable @user. @user = User.new(params[:userform]) #@user = User.find_by_id(params[:id]) #find records with username,password valid_user =

I am using authlogic for my application''s authentication. If I decide to login with an account and then immediately logout, I get an error. Unknown action The action ''show'' could not be found for UserSessionsController The server log in development says: Started GET "/user_session" for 127.0.0.1 at Sun Nov 07 13:28:31 -0800 2010

Hi, In my user_controller.rb, I have the following method, which is supposed to send the user to their profile, dependng on what "role" they are (the roles correspond to the other controllers: venue, band, fan): def login if request.post? if session[:user_id] = User.authenticate(params[:user][:login], params[:user][:password]) flash[:message] =

Hi all, I''ve put new code into my app so that an administrator will have extra privileges (administer users, edit pages). The error is: ''Couldn''t find User without an ID'' So the app is looking for a logged in user when the homepage is accessed. Heres my code: site/index view: <% if is_logged_in? and logged_in_user.has_role?(''Moderator'')

hi all, i have the following controller: class UserController < ApplicationController . . . def login @user = User.new(params[:user]) @logged_in_user = @user.try_to_login if @logged_in_user session[:user_id] = @logged_in_user.id else flash[:notice] = "ung&uuml;ltige Daten!" end end . . . end with this rjs template: login.rjs: if @logged_in_user

I have gone through the following site for the creation of my login page: To mention I am using Windows XP pfofessional running on WEBBrick server http://wiki.rubyonrails.com/rails/pages/HowtoAuthenticate The code is given in the following 3 steps: 1)The controller that needs protection: class WeblogController < ActionController::Base before_filter :authenticate def index # show

I'm trying to install the Mozilla active x control (so that I can use MSN 7.0) on Wine, but it wants me to specify where my Mozilla layout libraries are, where do I find these?

Hi, In my web application we have implemented the session and it works fine. ie. it prompts for the userid/password when ever we give the URL by opening a new IE window. i.e it goes through the session and see if the :user_id is present in the session if not it prompts to log-in again. But my problem is say if we "kill" the WebRICK abruptly by pressing ^C and say my browser window

There''s got to be a simple answer to this... def logout reset_session flash[:notice] = "Logged out" redirect_to :action => ''index'' end The flash never shows up, and doesn''t seem to be in the new session. --Al Evans -- Posted via http://www.ruby-forum.com/.

My code that acts if a session has timed out looks like this: reset_session session[:expires_at] = nil # TODO - This flash is never shown, because we redirect maybe? flash[:error] = ''Your session has timed out, please login to continue.'' # An attempt to make flash stick around, not working flash.keep redirect_to :controller => ''security'',

Hi! I have just added login feature to my rails application (followed the instruction from (Agile Web Development with Rails) but now I am getting strange errors (looks to me like some kind of routing problem) under the passenger/apache. The error is: 500 Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. From the log:

I am using the following code (inspired by one of the books) to check if the user''s session should have timed out. # Check to see if the user has been inactive for longer than the # expiry period. If they have, reset the session. def check_timeout if session[:expires_at] != nil @time_left = (session[:expires_at] - Time.now).to_i unless @time_left > 0

Hi all, I am using rails v.2.3.2 and if I put following line to my ApplicationController: include LoginSystem and I moved my login_system.rb to lib folder: module LoginSystem protected def is_logged_in? @logged_in_user = User.find(session[:user]) if session[:user] end def logged_in_user return @logged_in_user if is_logged_in? end def logged_in_user=(user) if