Untitled

class LoginsController < ApplicationController

  skip_before_filter :require_login, :only => [:new, :create]
  before_filter :require_logout, :only => [:new, :create]


  def new
  end


  #POST /login?username=foo&password=bar
  #Creates the login, AKA logs the user in
  def create
    if user = User.find_by_email(params[:email])
      if user.password == params[:password]
        self.current_user = user
        redirect_to root_url
      else
        flash.now[:error] = 'Wrong password'
        render 'new'
      end
    else
      flash.now[:error] = "Could not find user with email \"#{params[:email]}\""
      render 'new'
    end
  end


  #DELETE /login
  #Destroys the login, AKA logs the user out
  def destroy
    self.current_user = nil
    redirect_to new_login_url
  end


end