diff options
| author | Zachary Scott <e@zzak.io> | 2014-10-04 17:20:59 -0700 |
|---|---|---|
| committer | Zachary Scott <e@zzak.io> | 2014-10-04 17:21:36 -0700 |
| commit | b56d3adf9b221ba35f18ed5be1e9fc251123e5a0 (patch) | |
| tree | d2a8f1f1c69da254248cca2059452ea0022d5835 /guides/source/active_model_basics.md | |
| parent | d882348ad25fc0364ad77cd587e76308fc0d286c (diff) | |
| parent | 1df925d3ea56917b3d8ce011e31423f91f424a5e (diff) | |
| download | rails-b56d3adf9b221ba35f18ed5be1e9fc251123e5a0.tar.gz rails-b56d3adf9b221ba35f18ed5be1e9fc251123e5a0.tar.bz2 rails-b56d3adf9b221ba35f18ed5be1e9fc251123e5a0.zip | |
[ci skip] Merge ActiveModel::SecurePassword guide from @aditya-kapoor
Merge branch 'active-model-secure-password-guide' of https://github.com/aditya-kapoor/rails into aditya-kapoor-active-model-secure-password-guide
Conflicts:
guides/source/active_model_basics.md
Diffstat (limited to 'guides/source/active_model_basics.md')
| -rw-r--r-- | guides/source/active_model_basics.md | 46 |
1 files changed, 46 insertions, 0 deletions
diff --git a/guides/source/active_model_basics.md b/guides/source/active_model_basics.md index f651250491..ccbb0d7489 100644 --- a/guides/source/active_model_basics.md +++ b/guides/source/active_model_basics.md @@ -506,3 +506,49 @@ Finished in 0.024899s, 240.9735 runs/s, 1204.8677 assertions/s. An object is not required to implement all APIs in order to work with Action Pack. This module only intends to provide guidance in case you want all features out of the box. + +### SecurePassword + +`ActiveModel::SecurePassword` provides a way to securely store any +password in an encrypted form. On including this module, a +`has_secure_password` class method is provided which defines +an accessor named `password` with certain validations on it. + +#### Requirements + +`ActiveModel::SecurePassword` depends on the [`bcrypt`](https://github.com/codahale/bcrypt-ruby 'BCrypt'), +so include this gem in your Gemfile to use `ActiveModel::SecurePassword` correctly. +In order to make this work, the model must have an accessor named `password_digest`. +The `has_secure_password` will add the following validations on the `password` accessor: + +1. Password should be present. +2. Password should be equal to its confirmation. +3. This maximum length of a password is 72 (required by `bcrypt` on which ActiveModel::SecurePassword depends) + +#### Examples + +```ruby +class Person + include ActiveModel::SecurePassword + has_secure_password + attr_accessor :password_digest +end + +person = Person.new + +# When password is blank. +person.valid? # => false + +# When the confirmation doesn't match the password. +person.password = 'aditya' +person.password_confirmation = 'nomatch' +person.valid? # => false + +# When the length of password, exceeds 72. +person.password = person.password_confirmation = 'a' * 100 +person.valid? # => false + +# When all validations are passed. +person.password = person.password_confirmation = 'aditya' +person.valid? # => true +``` |