lib/api/session.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

module Gitlab
  # Users API
  class Session < Grape::API
    # Login to get token
    #
    # Example Request:
    #  POST /session
    post "/session" do
      resource = User.find_for_database_authentication(email: params[:email])

      return unauthorized! unless resource

      if resource.valid_password?(params[:password])
        present resource, with: Entities::UserLogin
      else
        unauthorized!
      end
    end
  end
end