现在,每次我在用户/编辑中更改任何内容时,表单都要求用户设置新密码。我想要它需要当前密码(我怎么能要求当前密码?)只是输入了一个新密码。我怎么能实现这一点,非常感谢。
<%= form_for(@user, :html => {:multipart => true}) do |f| %>
<%= render 'shared/error_messages', object: f.object %>
<%= f.text_field :name, placeholder: :name %>
<%= f.text_field :email, placeholder: :email %>
<%= f.password_field :password, placeholder: "Enter new password" %>
<%= f.password_field :password_confirmation, placeholder: "Confirm new password" %>
<%= f.submit "Save changes", class: "btn btn-large btn-primary" %>
<% end %>
答案 0 :(得分:6)
使用来自rails_has_elegance和网络的一些信息我提出了以下解决方案。
用户/编辑视图:
<%= form_for(@user, :html => {:multipart => true}) do |f| %>
<%= render 'shared/error_messages', object: f.object %>
<%= f.text_field :name, placeholder: :name %>
<%= f.text_field :email, placeholder: :email %>
<%= password_field_tag :current_password, params[:current_password], placeholder: "Current password" %>
<%= f.password_field :password, placeholder: "New password (optional)" %>
<%= f.password_field :password_confirmation, placeholder: "Confirm new password" %>
<% end %>
用户模型:
validates :password, :on => :create
validates :password_confirmation, presence: true, :on => :update, :unless => lambda{ |user| user.password.blank? }
用户控制器:
def update
@user = User.find(params[:id])
user = User.find_by_email(current_user.email).try(:authenticate, params[:current_password])
if user && @user.update_attributes(params[:user])
flash[:success] = "Profile updated"
sign_in @user
redirect_to @user
else
flash.now[:error] = "Incorrect Current Password" unless user
sign_in @user
render 'edit'
end
end
答案 1 :(得分:2)
您可以在表单中添加old_password字段
<%= f.password_field :old_password, placeholder: "Enter current password" %>
将其添加到attr_accessible :old_password和attr_accessor :old_password
然后你可以验证它
validate :correct_old_pass, :on => :update
def correct_old_pass
errors[:old_password] << 'Incorrect pass' if your_check_method
end
答案 2 :(得分:1)
您可以创建单独的表单来更改密码。您可以像要求新密码一样询问当前密码:
<%= form_for(@user, :html => {:multipart => true}) do |f| %>
<%= f.password_field :password, placeholder: "Enter current password" %>
<%= f.password_field :password, placeholder: "Enter new password" %>
<%= f.password_field :password_confirmation, placeholder: "Confirm new password" %>
<%= f.submit "Save changes", class: "btn btn-large btn-primary" %>
<% end %>
答案 3 :(得分:1)
我建议在users_controller中为其执行额外的edit_password和update_password操作:
@user = User.find(params[:id])
user = User.find_by_email(current_user.email).try(:authenticate, params[:current_password])
if user && @user.update_attributes(params[:user])
flash[:success] = "Password updated!"
(sign_in @user)
redirect_to ...
在您的表单中,只需使用以下字段:
<%= label_tag :current_password, "Current password:" %>
<%= password_field_tag :current_password, params[:current_password] %>
<%= form.label :password, "New password:" %>
<%= form.password_field :password %>
<%= form.label :password_confirmation, "Confirm new password" %>
<%= form.password_field :password_confirmation %>