use devise instead auth0

2021-08-09 22:07:48 -03:00
parent 15abf28e80
commit 645b818f6c
48 changed files with 519 additions and 399 deletions
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -1,4 +1,14 @@
 # frozen_string_literal: true
 class ApplicationController < ActionController::Base
  include Pundit
+
+  before_action :configure_devise_permitted_parameters, if: :devise_controller?
+
+  protected
+
+  def configure_devise_permitted_parameters
+    attributes = [:first_name, :last_name]
+    devise_parameter_sanitizer.permit(:sign_up, keys: attributes)
+    devise_parameter_sanitizer.permit(:account_update, keys: attributes)
+  end
 end
--- a/app/controllers/concerns/authenticable.rb
+++ b/app/controllers/concerns/authenticable.rb
@@ -1,12 +0,0 @@
-# frozen_string_literal: true
-module Authenticable
-  def current_auth
-    @current_auth ||= Auth::Authenticate.new(bearer_token).profile
-  end
-
-  def bearer_token
-    pattern = /^Bearer /
-    header  = request.headers["Authorization"]
-    header.gsub(pattern, "") if header&.match(pattern)
-  end
-end
--- a/app/controllers/graphql_controller.rb
+++ b/app/controllers/graphql_controller.rb
@@ -1,16 +1,11 @@
 # frozen_string_literal: true
 class GraphqlController < ApplicationController
-  include Authenticable
-
-  protect_from_forgery with: :null_session
-
  def execute
    variables = prepare_variables(params[:variables])
    query = params[:query]
    operation_name = params[:operationName]
    context = {
-      current_auth: current_auth,
-      current_user: current_auth&.user,
+      current_user: current_user,
    }
    result = XStakeSchema.execute(query, variables: variables, context: context, operation_name: operation_name)
    render(json: result)