19 lines
454 B
Ruby
19 lines
454 B
Ruby
require "csv"
|
|
module Management
|
|
class ManagementController < ::ApplicationController
|
|
before_action :authenticate_user!, :authorize_user!
|
|
|
|
layout "management"
|
|
|
|
private
|
|
|
|
def authorize_user!
|
|
if params[:conference_id] && params[:conference_id].to_i < Conference.last.id
|
|
head :forbidden unless current_user.admin? && current_user.owner?
|
|
else
|
|
head :forbidden unless current_user.admin?
|
|
end
|
|
end
|
|
end
|
|
end
|