mmoser/skill-assessment-app
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

policy strong_params

Browse Source
This commit is contained in:
Mark Moser 2016-09-21 15:50:02 -05:00
parent d3205a6080
commit 4a70b795e5
3 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/controllers/admin/profile_controller.rb
View File

@ -26,7 +26,7 @@ module Admin
private
def user_params
params.require(:user).permit(:name, :email, :password, :password_confirmation)
params.require(:user).permit(policy(User).permitted_attributes)
end
end
end

2
app/controllers/admin/user_controller.rb
View File

@ -50,7 +50,7 @@ module Admin
private
def user_params
params.require(:user).permit(:name, :email, :role, :password, quiz_ids: [])
params.require(:user).permit(policy(User).permitted_attributes)
end
end
end

5
app/policies/user_policy.rb
View File

@ -17,6 +17,11 @@ class UserPolicy < ApplicationPolicy
user.admin? || user == record
end
def permitted_attributes
return [:name, :email, :role, :password, quiz_ids: []] if user.admin?
[:name, :email, :password, :password_confirmation]
end
class Scope < Scope
def resolve
return scope if user.admin?