app/controllers/sessions_controller.rb
class SessionsController < ApplicationController
skip_before_action :require_login, only: [:new, :create]
def new
end
def create
user = authenticate_session(session_params)
if sign_in(user)
flash[:notice] = t(".success")
redirect_to root_path
else
render :new
end
end
def destroy
sign_out
flash[:notice] = t(".success")
redirect_to root_path
end
private
def session_params
params.require(:session).permit(:email, :password)
end
end