backend/app/controllers/comable/admin/users_controller.rb
require_dependency 'comable/admin/application_controller'
module Comable
module Admin
class UsersController < Comable::Admin::ApplicationController
include Comable::PermittedAttributes
load_and_authorize_resource class: Comable::User.name, except: :index
def index
@q = Comable::User.ransack(params[:q])
@users = @q.result.page(params[:page]).accessible_by(current_ability).by_newest
respond_to do |format|
format.html
format.json { render json: @users }
end
end
def show
end
def edit
end
def update
if @user.update_attributes(user_params)
redirect_to comable.admin_user_path(@user), notice: Comable.t('successful')
else
flash.now[:alert] = Comable.t('failure')
render :edit
end
end
def profile
@user = current_comable_user
render :edit
end
private
def user_params
params.require(:user).permit(
:email,
:password,
:role,
bill_address_attributes: permitted_address_attributes
)
end
end
end
end