atomaka
/
MSU-Course-Alerter
1
0
Fork 0
Code Releases Activity

Cheap way to limit control to owned alerts

This commit is contained in:
Andrew Tomaka 2013-04-06 12:15:11 -04:00
parent 0489c51518
commit f463c66eff
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
app/controllers/alerts_controller.rb
View File

@ -13,7 +13,7 @@ class AlertsController < ApplicationController
# GET /alerts/1
# GET /alerts/1.json
def show
@alert = Alert.find(params[:id])
@alert = Alert.user_alerts(current_user.id).find(params[:id])
respond_to do |format|
format.html # show.html.erb
@ -33,7 +33,7 @@ class AlertsController < ApplicationController
# GET /alerts/1/edit
def edit
@alert = Alert.find(params[:id])
@alert = Alert.user_alerts(current_user.id).find(params[:id])
end
# POST /alerts
@ -53,7 +53,7 @@ class AlertsController < ApplicationController
# PUT /alerts/1
# PUT /alerts/1.json
def update
@alert = Alert.find(params[:id])
@alert = Alert.user_alerts(current_user.id).find(params[:id])
respond_to do |format|
if @alert.update_attributes(params[:alert])
@ -67,7 +67,7 @@ class AlertsController < ApplicationController
# DELETE /alerts/1
# DELETE /alerts/1.json
def destroy
@alert = Alert.find(params[:id])
@alert = Alert.user_alerts(current_user.id).find(params[:id])
@alert.destroy
respond_to do |format|