app/controllers/admin_controller.rb
class AdminController < ApplicationController
before_action :redirect_non_admin
# 0 pending, 1 approved, 2 disapproved
def pending
@pending_images = Image.where(state: 0)
end
def disapproved
@disapproved_images = Image.where(state: 2)
end
def adminuser
@admin = User.where(admin: true)
@nonadmin = User.where(admin: false)
end
def update
user = User.where(id: params[:id]).first
user.update_attribute :admin, !user.admin
user.save!
if current_user.admin?
redirect_to adminuser_path
else
redirect_to root_path
end
end
private
def redirect_non_admin
if not current_user or not current_user.admin?
#flash[:notice] = 'MADAFAK'
redirect_to "/403"
end
end
end