diff options
author | jessib <jessib@riseup.net> | 2012-10-31 12:10:07 -0700 |
---|---|---|
committer | jessib <jessib@riseup.net> | 2012-10-31 12:10:07 -0700 |
commit | 6c60b179a09030da985462d15dbdf076367b5ea4 (patch) | |
tree | 607f7e570ce5216cdef44745fad0d94305935a73 /users/app/controllers | |
parent | fa6c453603d2754644f80efc6e8a0f6e792cc9bd (diff) |
Code to check administration (and ugly test display.) This includes example config file.
Diffstat (limited to 'users/app/controllers')
-rw-r--r-- | users/app/controllers/controller_extension/authentication.rb | 21 |
1 files changed, 19 insertions, 2 deletions
diff --git a/users/app/controllers/controller_extension/authentication.rb b/users/app/controllers/controller_extension/authentication.rb index 507b62f..c3342f3 100644 --- a/users/app/controllers/controller_extension/authentication.rb +++ b/users/app/controllers/controller_extension/authentication.rb @@ -4,14 +4,31 @@ module ControllerExtension::Authentication private included do - helper_method :current_user + helper_method :current_user, :logged_in?, :admin? end def current_user @current_user ||= User.find(session[:user_id]) if session[:user_id] end + def logged_in? + !!current_user + end + def authorize - redirect_to login_url, :alert => "Not authorized" if current_user.nil? + access_denied unless logged_in? end + + def access_denied + redirect_to login_url, :alert => "Not authorized" + end + + def admin? + current_user && current_user.is_admin? + end + + def authorize_admin + access_denied unless admin? + end + end |