开发者

Authentication with 'before_filter'

问答 作者:

I'm trying to figure out before_filters and I was hoping for a little help.

I have a simple blog app, with entries that can be (draft or published) and (public or private). I was 开发者_C百科wondering how I can do my authentication?

I currently have:

before_filter :authenticate, :except => [ :show ]

So that blocks all the CRUD actions. For show, I need to check that:

  1. If its a draft, that the logged in user owns the entry.
  2. If its private, a user is logged in (in this, all logged in users can see private entries)

I can do it within the action itself, but it seems that the rails way of doing it, is in a before_filter.

Thanks!

Do it in the before filter. If you are using devise then the current_user method is available if a user is logged in. Otherwise replace current_user with the value returned from your authenticate method.

def find_post
  @post = Post.find(params[:id])
  redirect_to root_path if @post.draft && @post.user != current_user
  redirect_to root_path if @post.private && !current_user
end

继续阅读:authenticationbefore-filterruby-on-rails-3

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9