Skip to content

Warn existing users on sign in
Compare
Choose a tag to compare
@michaelbanfield michaelbanfield released this 12 Mar 00:13
· 66 commits to master since this release
v0.1.4
06814ba

Thanks to @damonmorgan for contributing this new feature.

This releases adds a new feature, hooking the pwned password check into the sign in path of an existing devise user. In the readme is an example of how to use this to push a flash notification after sign in to warn users if they are using a password that previously appeared in a data breach.

You could also use this hook to redirect users to a change password page or similar.

This change is backwards compatible, so you can upgrade without changing existing behaviour.

Assets 2
Loading