This strategy should be used as basis for authentication strategies. It retrieves parameters both from params or from http authorization headers. See database_authenticatable for an example.
# File lib/devise/strategies/authenticatable.rb, line 11 def store? super && !mapping.to.skip_session_storage.include?(authentication_type) end
# File lib/devise/strategies/authenticatable.rb, line 15 def valid? valid_for_params_auth? || valid_for_http_auth? end