diff options
| author | Winnie Hellmann <winnie@gitlab.com> | 2017-10-06 20:40:41 +0000 |
|---|---|---|
| committer | Fatih Acet <acetfatih@gmail.com> | 2017-10-06 20:40:41 +0000 |
| commit | 265b1a3b72ff7552e2ae01a059f80bd59714649d (patch) | |
| tree | 9f0d3c5249ae0eac5ed06c2c1b79abb9fa1dc6ac /app/controllers/registrations_controller.rb | |
| parent | 2cf5dca8f80cdefeb8932bf80417f52f289668c8 (diff) | |
| download | gitlab-ce-265b1a3b72ff7552e2ae01a059f80bd59714649d.tar.gz | |
Show confirmation modal before deleting account
Diffstat (limited to 'app/controllers/registrations_controller.rb')
| -rw-r--r-- | app/controllers/registrations_controller.rb | 29 |
1 files changed, 22 insertions, 7 deletions
diff --git a/app/controllers/registrations_controller.rb b/app/controllers/registrations_controller.rb index 5ea3a5d5562..d9142311b6f 100644 --- a/app/controllers/registrations_controller.rb +++ b/app/controllers/registrations_controller.rb @@ -25,18 +25,33 @@ class RegistrationsController < Devise::RegistrationsController end def destroy - current_user.delete_async(deleted_by: current_user) - - respond_to do |format| - format.html do - session.try(:destroy) - redirect_to new_user_session_path, status: 302, notice: "Account scheduled for removal." - end + if destroy_confirmation_valid? + current_user.delete_async(deleted_by: current_user) + session.try(:destroy) + redirect_to new_user_session_path, status: 303, notice: s_('Profiles|Account scheduled for removal.') + else + redirect_to profile_account_path, status: 303, alert: destroy_confirmation_failure_message end end protected + def destroy_confirmation_valid? + if current_user.confirm_deletion_with_password? + current_user.valid_password?(params[:password]) + else + current_user.username == params[:username] + end + end + + def destroy_confirmation_failure_message + if current_user.confirm_deletion_with_password? + s_('Profiles|Invalid password') + else + s_('Profiles|Invalid username') + end + end + def build_resource(hash = nil) super end |