Created
November 28, 2012 18:37
-
-
Save adgilfillan/4163114 to your computer and use it in GitHub Desktop.
skip filter problem
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
class MembersController < ApplicationController | |
# GET /members | |
# GET /members.json | |
skip_filter :authenticate, :only => [:new, :create, :index] | |
before_filter :authenticate_self_or_admin, :only => [:edit, :destroy] | |
def authenticate_self_or_admin | |
m = Member.find(session[:member_id]) | |
if m.role == 'Admin' | |
elsif session[:member_id].nil? | |
flash[:alert] = 'You need to login first.' | |
redirect_to(:controller => 'admin', :action => 'login') | |
elsif session[:member_id].to_s != params[:id] | |
flash[:alert] = 'You cannot perform this action.' | |
redirect_to(:controller => 'admin', :action => 'login') | |
end | |
end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment