From 04ffb1d896a0a778f1a2b4acdb6c14d9600a26f3 Mon Sep 17 00:00:00 2001
From: mo khan <mo@mokhan.ca>
Date: Wed, 6 Aug 2014 17:00:08 -0700
Subject: display error when the credentials are not known.

---
 app/controllers/sessions_controller.rb | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

(limited to 'app/controllers/sessions_controller.rb')

diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb
index d16e5389..b4f64644 100644
--- a/app/controllers/sessions_controller.rb
+++ b/app/controllers/sessions_controller.rb
@@ -4,9 +4,14 @@ class SessionsController < ApplicationController
   end
 
   def create
-    user_session = Session.login(session_params[:username], session_params[:password])
-    cookies.signed[:cookie_monster] = user_session.id
-    render nothing: true
+    @session = Session.login(session_params[:username], session_params[:password])
+    if @session
+      cookies.signed[:cookie_monster] = @session.id
+      render nothing: true
+    else
+      flash[:error] = "invalid credentials"
+      render :new
+    end
   end
 
   private
-- 
cgit v1.2.3