clarion/app/controllers/management/management_controller.rb

module Management
  class ManagementController < ::ApplicationController
    before_action :authenticate_user!, :authorize_user!

    layout 'management'

    private

    def current_conference?
      session[:current_conference_id] and current_conference.present?
    end
    helper_method :current_conference?

    def current_conference
      @current_conference ||= Conference.find(session[:current_conference_id])
    end
    helper_method :current_conference

    def set_current_conference(conference)
      session[:current_conference_id] = conference.id
    end

    def authorize_user!
      head :forbidden unless current_user.admin?
    end
  end
end
Initial HomeController for Management 2014-09-17 12:43:17 +03:00			`module Management`
			`class ManagementController < ::ApplicationController`
Add authorisation check for ManagementController 2014-09-17 14:30:50 +03:00			`before_action :authenticate_user!, :authorize_user!`

Initial HomeController for Management 2014-09-17 12:43:17 +03:00			`layout 'management'`
Add authorisation check for ManagementController 2014-09-17 14:30:50 +03:00
			`private`

Set current conference, scope everything under it 2015-05-30 17:07:57 +03:00			`def current_conference?`
			`session[:current_conference_id] and current_conference.present?`
			`end`
			`helper_method :current_conference?`

			`def current_conference`
			`@current_conference \|\|= Conference.find(session[:current_conference_id])`
			`end`
			`helper_method :current_conference`

			`def set_current_conference(conference)`
			`session[:current_conference_id] = conference.id`
			`end`

Add authorisation check for ManagementController 2014-09-17 14:30:50 +03:00			`def authorize_user!`
			`head :forbidden unless current_user.admin?`
			`end`
Initial HomeController for Management 2014-09-17 12:43:17 +03:00			`end`
			`end`