I've implemented omniauth with my devise model, so I can authenticate using other services.
Password is not necessary anymore for my model, as users can authenticate using twitter, facebook...
Everything is working fine, but, when an user try to edit its registration, devise skip the process because the user did not inform the 'current_password' (which doesnt exist in some cases now).
I created a registration controller to overwrite the devises one:
class RegistrationsController < Devise::RegistrationsController
def update
super
end
end
But I haven't find any documentation about how to skip the password verification, how could I do it in my update action?
Similar to above, try putting this in your user model:
# bypasses Devise's requirement to re-enter current password to edit
def update_with_password(params={})
if params[:password].blank?
params.delete(:password)
params.delete(:password_confirmation) if params[:password_confirmation].blank?
end
update_attributes(params)
end
The following worked for me:
In my users controller, in the update action, I have
params[:user].delete(:password) if params[:user][:password].blank?
params[:user].delete(:password_confirmation) if params[:user][:password_confirmation].blank?
Perhaps you could adapt that to a before_save callback?
Even the answer has been here for a while I want to post a new one, as I think the selected answer has a little flaws. Maybe it didn't have at the moment the answer was created, but now in 2013, the answer would be like this:
The solution would be to create in User model like this:
# bypass re-entering current password for edit
def update_with_password(params={})
current_password = params.delete(:current_password)
if params[:password].blank?
params.delete(:password)
params.delete(:password_confirmation) if params[:password_confirmation].blank?
end
update_attributes(params)
clean_up_passwords
end
there is an easier answer, i do not know when devise first had this method but by just adding
Model.update_without_password(params)
it will update attributes without requiring current password.
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 乱世女痞 的文章《Rails 3 - Devise : How to skip the 'current_pa》','https://www.manongdao.com/article-531523.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}