Open jaredmurphy opened 6 years ago
Waiting on exact flow from morgan and josh
(current password and new password fields visible from start)
from devise_token_auth.rb
By default sending current password is not needed for the password update. Uncomment to enforce current_password param to be checked before all attribute updates. Set it to :password if you want it to be checked only if password is updated. config.check_current_password_before_update = :attributes
Have a field that requires the customer's current password before they are able to change that password.