Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- class UsersController < ApplicationController
- before_filter :signed_in_user, :only => [:edit, :update, :index]
- before_filter :correct_user, :only => [:edit, :update]
- def show
- @user = User.find(params[:id])
- end
- def new
- @user = User.new
- end
- def index
- @users = User.all
- end
- def create
- @user = User.new(params[:user])
- if @user.save
- sign_in @user
- flash[:success] = "Welcome to the Sample App!"
- redirect_to @user
- else
- render 'new'
- end
- end
- def edit
- # no longer need this b/c we force users to only go to their own edit page
- @user = User.find(params[:id])
- end
- def update
- # no longer need this b/c we force users to only go to their own update page
- @user = User.find(params[:id])
- if @user.update_attributes(params[:user])
- flash[:success] = "Profile updated"
- sign_in @user
- redirect_to @user
- else
- render 'edit'
- end
- end
- private
- def signed_in_user
- unless signed_in?
- store_location
- redirect_to signin_path, :notice => "Please sign in."
- end
- end
- def correct_user
- @user = User.find(params[:id])
- redirect_to(root_path) unless current_user?(@user)
- end
- end
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement