def create @user = User.new(params[:user])
if @user.save
redirect_to :action => ‘list’
else
redirect_to :action => ‘new’
end
end
def login
@user = User.new
@user.username = params[:user][:username]
end
def login_submit
username = params[:user][:username]
password = params[:user][:password]
if session[“user”] = User.authorize(username, password) @user = User.find(session[“user”].id) @user.first_login = 1 @user.save
flash[:notice] = “You are now logged in”
redirect_to :action => ‘create’
else
flash[:error] = “Incorrect username and/or password”
redirect_to :action => ‘list’
end
end
end
HERE IS MY USER MODEL----
class User < ActiveRecord::Base
validates_presence_of :username, :message=>“User Name will not b
blank”
validates_presence_of :password, :message=>“Password cannot be blank”
end
You should have a method authenticate defined in User model.
In your case, authenticate method must be defined in User model as
class User < ActiveRecord::Base
validates_presence_of :username, :message=>“User Name will not
bblank”
validates_presence_of :password, :message=>“Password cannot be
blank”
# # # Authenticate method # #
def self.authenticate(login, pass)
find(:first, :conditions=>[“login = ? AND password = ?”, login,
pass]) # login, password are your users table fields…
end