authorize_resource
before_action :lookup_user, :only => [:new, :create, :revoke_all, :blocks_on, :blocks_by]
- before_action :lookup_user_block, :only => [:show, :edit, :update, :revoke]
+ before_action :lookup_user_block, :only => [:show, :edit, :update]
before_action :require_valid_params, :only => [:create, :update]
before_action :check_database_readable
- before_action :check_database_writable, :only => [:create, :update, :revoke, :revoke_all]
+ before_action :check_database_writable, :only => [:create, :update, :revoke_all]
def index
@params = params.permit
def update
if @valid_params
if cannot?(:update, @user_block)
- flash[:error] = t(@user_block.revoker ? ".only_creator_or_revoker_can_edit" : ".only_creator_can_edit")
+ flash[:error] = @user_block.revoker ? t(".only_creator_or_revoker_can_edit") : t(".only_creator_can_edit")
redirect_to :action => "edit"
else
user_block_was_active = @user_block.active?
end
end
- ##
- # revokes the block, setting the end_time to now
- def revoke
- if request.post? && params[:confirm] && @user_block.revoke!(current_user)
- flash[:notice] = t ".flash"
- redirect_to(@user_block)
- end
- end
-
##
# revokes all active blocks
def revoke_all