forked from OpenNeo/impress
Matchu
83bbb84382
This is a bit more standard, and has the bonus of being compatible with Devise, which is using `flash[:notice]` and so its flashes were coming out unstyled, oops!
58 lines
1.4 KiB
Ruby
58 lines
1.4 KiB
Ruby
class UsersController < ApplicationController
|
|
before_action :find_and_authorize_user!, :only => [:update]
|
|
|
|
def index # search, really
|
|
name = params[:name]
|
|
@user = User.find_by_name(name)
|
|
if @user
|
|
redirect_to user_closet_hangers_path(@user)
|
|
else
|
|
flash[:alert] = t('users.index.not_found', :name => name)
|
|
redirect_to root_path
|
|
end
|
|
end
|
|
|
|
def top_contributors
|
|
@users = User.top_contributors.paginate :page => params[:page], :per_page => 20
|
|
end
|
|
|
|
def update
|
|
@user.attributes = user_params
|
|
success = @user.save
|
|
respond_to do |format|
|
|
format.html {
|
|
if success
|
|
flash[:notice] = t('users.update.success')
|
|
redirect_back! user_closet_hangers_path(@user)
|
|
else
|
|
flash[:alert] = t('users.update.invalid',
|
|
:errors => @user.errors.full_messages.to_sentence)
|
|
end
|
|
}
|
|
|
|
format.json {
|
|
if success
|
|
render :json => true
|
|
else
|
|
render :json => {:errors => @user.errors.full_messages}, :status => :unprocessable_entity
|
|
end
|
|
}
|
|
end
|
|
end
|
|
|
|
protected
|
|
|
|
def user_params
|
|
params.require(:user).permit(:owned_closet_hangers_visibility,
|
|
:wanted_closet_hangers_visibility, :contact_neopets_connection_id)
|
|
end
|
|
|
|
def find_and_authorize_user!
|
|
if current_user.id == params[:id].to_i
|
|
@user = current_user
|
|
else
|
|
raise AccessDenied
|
|
end
|
|
end
|
|
end
|
|
|