akofink/akofink

class MediaController < ApplicationController
  def index
    markdown
    @title = "Media"
    @new_medium = medium
  end

  def create
    protect_content!

    medium = Medium.new(medium_params)
    if medium.save
      log "Created New Media Entry: #{medium}"
    end
    redirect_to Medium
  end

  def destroy
    if medium.delete
      log "Destroyed Media Entry: #{medium}"
    end
    redirect_to '/media'
  end

  private

  def protect_content!
    medium_params[:content] = medium_params[:content].gsub!(/\/\//, '')
  end

  def medium_params
    params.require(:medium).permit(:title, :content)
  end

  def medium
    @medium ||= (params[:id] && Medium.find(params[:id])) || Medium.new
  end

  def action_allowed?
    ['index'].include?(action) || current_user.admin?
  end
end