orbit4-5/app/controllers/admin/module_apps_controller.rb

class Admin::ModuleAppsController < OrbitAdminController
  before_action :check_auth 
  include AdminHelper

  def index
  	@module_app = ModuleApp.find params[:module_app_id]
    @managers = Authorization.module_authorized_users(@module_app)
  end

  def check_auth
  	unless (is_admin? || is_manager?) 
  	  flash[:error] = "unauthorized access"
  	  if request.env["HTTP_REFERER"]
        redirect_to :back
      else
        render 'public/403.html', :status => 403, :layout => false
      end
      false
    end
  end

  def setting
  	@sys_users = User.not_admins
  	@module_app = ModuleApp.find(params[:module_app_id])
  end
end
authorization, module auth, category auth, member roles 2014-05-01 07:14:16 +00:00			`class Admin::ModuleAppsController < OrbitAdminController`
			`before_action :check_auth`
			`include AdminHelper`

			`def index`
			`@module_app = ModuleApp.find params[:module_app_id]`
			`@managers = Authorization.module_authorized_users(@module_app)`
			`end`

			`def check_auth`
			`unless (is_admin? \|\| is_manager?)`
			`flash[:error] = "unauthorized access"`
			`if request.env["HTTP_REFERER"]`
			`redirect_to :back`
			`else`
fix for production mode 2014-05-21 03:43:43 +00:00			`render 'public/403.html', :status => 403, :layout => false`
authorization, module auth, category auth, member roles 2014-05-01 07:14:16 +00:00			`end`
			`false`
			`end`
			`end`

			`def setting`
			`@sys_users = User.not_admins`
			`@module_app = ModuleApp.find(params[:module_app_id])`
			`end`
			`end`