Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- class ReviewsController < ApplicationController
- before_filter :moviegoer_owns_review, :only => [:edit, :update]
- def moviegoer_owns_review
- unless Review.find_by_id(params[:id]).try(:moviegoer) == @current_user
- flash[:warning] = 'You can only edit your own reviews.'
- redirect_to movies_path
- end
- end
- end
Add Comment
Please, Sign In to add comment