app/controllers/backstage/users/roles_controller.rb
class Backstage::Users::RolesController < Backstage::BackstageController
before_action :require_superadmin
before_action :find_user
def index
@roles = @user.roles
end
def new
@role = @user.roles.build
end
def create
@user.add_role(params[:role][:name])
redirect_to [:backstage, @user, :roles], notice: 'Added role'
end
def destroy
@role = @user.roles.find(params[:id])
@user.remove_role(@role.name)
redirect_to [:backstage, @user, :roles], notice: 'Removed role'
end
private
def role_params
params.require(:role).permit(:name)
end
def find_user
@user = User.friendly.find(params[:user_id])
end
end