Validate any origin passed the auth failure callback

[rails.git] / app / controllers / concerns / session_methods.rb

diff --git a/app/controllers/concerns/session_methods.rb b/app/controllers/concerns/session_methods.rb
index 089a82ed432553c3265f9a1412918e3bea531d73..eb24f6b2089afef5c41372458c81345b450540ec 100644 (file)
--- a/app/controllers/concerns/session_methods.rb
+++ b/app/controllers/concerns/session_methods.rb
@@ -69,7 +69,7 @@ module SessionMethods
   def failed_login(message, username = nil)
     flash[:error] = message
 
-    redirect_to :action => "new", :referer => session[:referer],
+    redirect_to :controller => "sessions", :action => "new", :referer => session[:referer],
                 :username => username, :remember_me => session[:remember_me]
 
     session.delete(:remember_me)
@@ -81,7 +81,7 @@ module SessionMethods
   def unconfirmed_login(user)
     session[:token] = user.tokens.create.token
 
-    redirect_to :controller => "users", :action => "confirm", :display_name => user.display_name
+    redirect_to :controller => "confirmations", :action => "confirm", :display_name => user.display_name
 
     session.delete(:remember_me)
     session.delete(:referer)