leonardorb/sessions_controller.rb

## sessions_controller.rb
class Api::V1::SessionsController < ::Devise::SessionsController

  #skip_before_filter :verify_authenticity_token

  def create
    @user = User.find_for_authentication(:email => params[:user][:email])
    if @user.nil?
      render :json => {:success => false, :message => "Incorrect email or password."}, :status => 401
    else
      if @user.valid_password?(params[:user][:password])
        sign_in(@user)
      else
        render :json => {:success => false, :message => "Incorrect email or password."}, :status => 401
      end
    end
  end

end
	class Api::V1::SessionsController < ::Devise::SessionsController

	#skip_before_filter :verify_authenticity_token

	def create
	@user = User.find_for_authentication(:email => params[:user][:email])
	if @user.nil?
	render :json => {:success => false, :message => "Incorrect email or password."}, :status => 401
	else
	if @user.valid_password?(params[:user][:password])
	sign_in(@user)
	else
	render :json => {:success => false, :message => "Incorrect email or password."}, :status => 401
	end
	end
	end

	end