Class: Oxen::UsersController

Inherits:

AbstractResourcesController

• Object
• AbstractResourcesController
• Oxen::UsersController

Defined in:

app/controllers/oxen/users_controller.rb

Instance Method Summary

• #confirm ⇒ Object
• #update ⇒ Object

  def index @users = User.all authorize User end def index @resources = policy_scope(User) authorize User end.

Instance Method Details

#confirm ⇒ Object

# File 'app/controllers/oxen/users_controller.rb', line 6

def confirm
  authorize resource
  if resource.confirm
    flash[:info] = t('user.confirmed_ok')
    render :confirm, layout: false, status: 200 and return
  else
    flash[:info] = t('user.not_confirmed_ok')
    render :confirm, layout: false, status: 401 and return
  end
end

#update ⇒ Object

def index

@users = User.all
authorize User

end def index

@resources = policy_scope(User)
authorize User

end

def show

@user = User.find(params[:id])
authorize @user

end

def update

@user = User.find(params[:id])
authorize @user
if @user.update_attributes(secure_params)
  redirect_to users_path, :notice => "User updated."
else
  redirect_to users_path, :alert => "Unable to update user."
end

end

def destroy

user = User.find(params[:id])
authorize user
user.destroy
redirect_to users_path, :notice => "User deleted."

end

# File 'app/controllers/oxen/users_controller.rb', line 47

def update
  if params[:user][:password].blank? && params[:user][:password].blank?
    params[:user].delete :password
    params[:user].delete :password_confirmation
  end
  authorize resource
  resource.max_role = current_user.role
  if resource.update_attributes(secure_params)
    redirect_to users_path, :notice => "User updated."
  else
    render :edit, :alert => "Unable to update user."
  end

  # super
end