class Lato::AuthenticationController

def authenticator_action
  @user = Lato::User.find_by_id(session[:authenticator_user_id])
  respond_to do |format|
    if @user.authenticator(params.require(:user).permit(:authenticator_code))
      session[:authenticator_user_id] = nil
      session_create(@user.id)
      format.html { redirect_to lato.root_path }
      format.json { render json: @user }
    else
      format.html { render :authenticator, status: :unprocessable_entity }
      format.json { render json: @user.errors, status: :unprocessable_entity }
    end
  end
end