有什么区别
cookies.permanent[:auth_token] = user.auth_token
和
cookies[:auth_token] = user.auth_token
在铁轨上?
如何设置Cookie,该cookie会在浏览器(如会话)关闭后立即失效?
我的会话控制器:
class SessionsController < ApplicationController
def new
end
def create
user = User.find_by_email(params[:email])
if user && user.authenticate(params[:password])
if params[:remember_me]
cookies.permanent[:auth_token] = user.auth_token
else
cookies[:auth_token] = user.auth_token
end
redirect_to user
flash[:success] = 'Logged in successfully.'
else
render 'new'
end
end
def destroy
@current_user = nil
cookies[:auth_token] = nil
reset_session
redirect_to root_path
end
end