#20 Restricting Access

Apr 18, 2007 | 4 minutes | Security, Administration

In this second part of the series on administration, you will learn how to lock down the site to keep the public from accessing the administration features.

Click to Play Video ▶

Download:
mp4Full Size H.264 Video (9.4 MB)
m4vSmaller H.264 Video (5.82 MB)
webmFull Size VP8 Video (14.7 MB)
ogvFull Size Theora Video (11.9 MB)

Show Notes
ASCIIcast
53 Comments
Similar Episodes
Next Episode >
< Previous Episode

          episodes/index.rhtml
        
<% if admin? %>
  <%= link_to 'New Episode', new_episode_path %>
<% end %>

          controllers/application.rb
        
helper_method :admin?

protected

def admin?
  false
end

def authorize
  unless admin?
    flash[:error] = "unauthorized access"
    redirect_to home_path
    false
  end
end

          episodes_controller.rb
        
before_filter :authorize, :except => :index