cody/wrestlingdev.com
1
0
Fork 0
mirror of https://github.com/jcwimer/wrestlingApp synced 2026-04-01 12:15:25 +00:00
Code Issues Releases Wiki Activity

Test protecting controller paths

Browse Source
This commit is contained in:
Jacob Cody Wimer
2015-10-30 07:51:35 -04:00
parent d1437a56af
commit 685c71ade9
9 changed files with 457 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
app/controllers/weights_controller.rb
View File

@@ -1,6 +1,6 @@
class WeightsController < ApplicationController
before_action :set_weight, only: [:show, :edit, :update, :destroy]
before_filter :check_access, only: [:new,:create,:update,:destroy]
before_filter :check_access, only: [:new,:create,:update,:destroy,:edit]
# GET /weights/1
@@ -91,15 +91,19 @@ class WeightsController < ApplicationController
def weight_params
params.require(:weight).permit(:max, :tournament_id, :mat_id)
end
def check_access
def check_access
if params[:tournament]
@tournament = params[:tournament]
else
@tournament = Tournament.find(params[:tournament])
elsif params[:weight]
@weight = Weight.new(weight_params)
@tournament = Tournament.find(@weight.tournament_id)
elsif @weight
@tournament = @weight.tournament
end
if current_user != @tournament.user
redirect_to root_path
redirect_to '/static_pages/not_allowed'
end
end
end