class Admin::UsersController < ApplicationController layout "admin" before_filter :authenticate_user! before_filter :set_attribute, :only => [:index, :show, :new, :edit] def index @users = User.all.entries end def show @user = User.find(params[:id]) get_info_and_roles end def new @user = User.new get_info_and_roles end def create @user = User.new(params[:user]) if @user.save @user.infos.each do |info| info.save info.attribute_values.each(&:save) end @user.roles.each do |role| role.save role.attribute_values.each(&:save) end flash[:notice] = t('admin.create_success_user') redirect_to :action => :index else render :action => :new end end def edit @user = User.find(params[:id]) get_info_and_roles end def update @user = User.find(params[:id]) # Update changes to the avatar @user.remove_avatar! if params[:file] @user.avatar = params[:file] if params[:file] if @user.id.to_s.eql?(session['warden.user.user.key'][1].to_s) && @user.admin != params[:user][:admin].to_i.to_b flash.now[:error] = t('admin.cant_revoke_self_admin') end if !flash[:error] && @user.update_attributes(params[:user]) flash[:notice] = t('admin.update_success_user') redirect_to :action => :index else get_info_and_roles render :action => :edit end end def destroy if params[:id].eql?(session['warden.user.user.key'][1].to_s) flash[:error] = t('admin.cant_delete_self') else @user = User.find(params[:id]) @user.destroy @user.attributes.each do |ua| ua.attribute_values.each(&:destroy) ua.destroy end end redirect_to :action => :index end protected def get_info_and_roles @infos = Info.excludes('disabled' => true) @roles = Role.excludes('disabled' => true) end def set_attribute @class = 'users' end end