ash_hq/lib/ash_hq_web/controllers/user_session_controller.ex

defmodule AshHqWeb.UserSessionController do
  use AshHqWeb, :controller

  alias AshHq.Accounts
  alias AshHqWeb.UserAuth

  def new(conn, _params) do
    render(conn, "new.html", error_message: nil)
  end

  def create(conn, %{"user" => user_params}) do
    Accounts.User
    |> Ash.Query.for_read(:by_email_and_password, user_params)
    |> Accounts.read_one(authorize?: false)
    |> case do
      {:ok, user} when not is_nil(user) ->
        UserAuth.log_in_user(conn, user, user_params)

      _ ->
        render(conn, "new.html", error_message: "Invalid email or password")
    end
  end

  def delete(conn, _params) do
    conn
    |> put_flash(:info, "Logged out successfully.")
    |> UserAuth.log_out_user()
  end
end
improvement: copy over example with auth to ash-hq 2022-08-06 14:08:23 +12:00			`defmodule AshHqWeb.UserSessionController do`
			`use AshHqWeb, :controller`

			`alias AshHq.Accounts`
			`alias AshHqWeb.UserAuth`

			`def new(conn, _params) do`
			`render(conn, "new.html", error_message: nil)`
			`end`

			`def create(conn, %{"user" => user_params}) do`
			`Accounts.User`
			`\|> Ash.Query.for_read(:by_email_and_password, user_params)`
improvement: turn of csp improvement: add authorization to accounts 2022-08-07 17:07:06 +12:00			`\|> Accounts.read_one(authorize?: false)`
improvement: copy over example with auth to ash-hq 2022-08-06 14:08:23 +12:00			`\|> case do`
			`{:ok, user} when not is_nil(user) ->`
			`UserAuth.log_in_user(conn, user, user_params)`

			`_ ->`
			`render(conn, "new.html", error_message: "Invalid email or password")`
			`end`
			`end`

			`def delete(conn, _params) do`
			`conn`
			`\|> put_flash(:info, "Logged out successfully.")`
			`\|> UserAuth.log_out_user()`
			`end`
			`end`