metamaps--metamaps/app/controllers/application_controller.rb

68 lines
1.5 KiB
Ruby

class ApplicationController < ActionController::Base
protect_from_forgery
before_filter :require_user
# this is for global login
include ContentHelper
helper_method :user
helper_method :authenticated?
helper_method :admin?
def after_sign_in_path_for(resource)
sign_in_url = url_for(:action => 'new', :controller => 'sessions', :only_path => false, :protocol => 'http')
if request.referer == sign_in_url
super
elsif params[:uv_login] == "1"
"http://support.metamaps.cc/login_success?sso=" + current_sso_token
else
stored_location_for(resource) || request.referer || root_path
end
end
private
def require_no_user
if authenticated?
redirect_to edit_user_path(user), notice: "You must be logged out."
return false
end
end
def require_user
unless authenticated?
path = request.env["PATH_INFO"]
accessible_urls = ["/", new_user_registration_path, new_user_session_path, user_registration_path, new_user_password_path, edit_user_password_path]
unless accessible_urls.include?(path)
store_location_for(:user, path) and redirect_to root_url, notice: "You must be logged in."
return false
end
end
end
def require_admin
unless authenticated? && user.admin
redirect_to root_url, notice: "You need to be an admin for that."
return false
end
end
def user
current_user
end
def authenticated?
current_user
end
def admin?
current_user && current_user.admin
end
end