如何驗證主鍵？

Question

我無法驗證Transaction_Id這是我的交易表的主鍵，而我可以用email來完成。什麼似乎是問題？幫幫我。謝謝。

這裏是我的模型/交易：

def self.authenticate(email, transaction_id) 
    user = Transaction.find_by_email(email) 
    if user && user.Transaction_Id 
     return user 
    else 
     return false 
    end 
end 

這裏是我的控制器/修改：

def attempt_login 
    user = Transaction.authenticate(params[:email], params[:Transaction_Id]) 
    if user 
     session[:user_id] = user.id 
     session[:email] = user.email 
     flash[:notice] = "You are now logged in!" 
     redirect_to :action => "modify" 
    else 
     flash[:notice] = "Invalid username/password combination." 
     redirect_to :action => "login" 
    end 
    end 

這是我的看法/登錄：

<div class="login"> 
    <%= form_tag :action => "attempt_login" do %> 

     <%= label_tag :email, "Email Address:" %> 
     <%= text_field_tag :email %> 
     <%= label_tag :Transaction_Id, "Transaction Id:" %> 
     <%= text_field_tag :Transaction_Id %> 

     <%= submit_tag "Log In"%> 
    <% end %> 
</div> 

Answer 1

你只檢查是否存在您找到的用戶對象中存在一個transaction_id，但您不會將此ID與給定的ID進行比較，因此請嘗試：

def self.authenticate(email, transaction_id) 
    user = Transaction.find_by_email(email) 
    if user && user.Transaction_Id == transaction_id 
     return user 
    else 
     return false 
    end 
end 

或（不知道它的工作原理）

def self.authenticate(email, transaction_id) 
    user = Transaction.find_by_email_and_transaction_id(email, transaction_id) 
    if user 
     return user 
    else 
     return false 
    end 
end 

總之

：

# will return user if found; else nil 
def self.authenticate(email, transaction_id) 
    Transaction.find_by_email_and_transaction_id(email, transaction_id) 
end