obdev/app/controllers/users_controller.rb

class UsersController < ApplicationController
  before_action :authenticate_user!
  before_action :set_user, only: [:edit, :update, :destroy]
  before_action :require_admin
  load_and_authorize_resource

  def index
    @users = User.all
  end

  def edit
  end

  def create
    @user = User.new(user_params)
    if @user.save
      assign_roles(@user)
      redirect_to users_path, notice: 'User was successfully created.'
    else
      render :new
    end
  end

  def update
    # Assumes @user is already set from a before_action callback
    if @user.update(user_params.except(:roles))
      update_user_roles(@user, user_params[:roles])
      redirect_to users_path, notice: 'User was successfully updated.'
    else
      render :edit
    end
  end

  def destroy
    @user.destroy
    redirect_to users_path, notice: 'User was successfully deleted.'
  end

  private

  def set_user
    @user = User.find(params[:id])
  end

  def user_params
    params.require(:user).permit(:email, :password, :password_confirmation, :remember_me, :first_name, :last_name, :phone, :company, :access_revoked, :access_start_date, :access_end_date, roles: [])
  end
  

  def require_admin
    unless current_user.admin?
      redirect_to root_path, alert: 'Only admins are allowed to access this section.'
    end
  end

  def assign_roles(user)
    user.roles = []
    params[:user][:roles].each do |role_name|
      user.add_role(role_name) unless role_name.blank?
    end if params[:user][:roles].present?
  end
  

  def update_user_roles(user, roles_names)
    user.roles.delete_all # Remove existing roles
    roles_names.each do |role_name|
      user.add_role(role_name) unless role_name.blank?
    end
  end
  

end
Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00			`class UsersController < ApplicationController`
			`before_action :authenticate_user!`
			`before_action :set_user, only: [:edit, :update, :destroy]`
			`before_action :require_admin`
Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00			`load_and_authorize_resource`
Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00
			`def index`
			`@users = User.all`
			`end`

			`def edit`
			`end`

Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00			`def create`
			`@user = User.new(user_params)`
			`if @user.save`
			`assign_roles(@user)`
			`redirect_to users_path, notice: 'User was successfully created.'`
			`else`
			`render :new`
			`end`
			`end`

Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00			`def update`
Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00			`# Assumes @user is already set from a before_action callback`
			`if @user.update(user_params.except(:roles))`
			`update_user_roles(@user, user_params[:roles])`
Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00			`redirect_to users_path, notice: 'User was successfully updated.'`
			`else`
			`render :edit`
			`end`
			`end`

			`def destroy`
			`@user.destroy`
			`redirect_to users_path, notice: 'User was successfully deleted.'`
			`end`

			`private`

			`def set_user`
			`@user = User.find(params[:id])`
			`end`

			`def user_params`
Working on the User model. Have the new desired fields for users and need to still stylize Edit page, link the right form page and continue with access revoking. 2024-04-09 17:48:54 -05:00			`params.require(:user).permit(:email, :password, :password_confirmation, :remember_me, :first_name, :last_name, :phone, :company, :access_revoked, :access_start_date, :access_end_date, roles: [])`
Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00			`end`
Working on the User model. Have the new desired fields for users and need to still stylize Edit page, link the right form page and continue with access revoking. 2024-04-09 17:48:54 -05:00
Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00
			`def require_admin`
			`unless current_user.admin?`
			`redirect_to root_path, alert: 'Only admins are allowed to access this section.'`
			`end`
			`end`
Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00
			`def assign_roles(user)`
Working on the User model. Have the new desired fields for users and need to still stylize Edit page, link the right form page and continue with access revoking. 2024-04-09 17:48:54 -05:00			`user.roles = []`
			`params[:user][:roles].each do \|role_name\|`
			`user.add_role(role_name) unless role_name.blank?`
			`end if params[:user][:roles].present?`
Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00			`end`
Working on the User model. Have the new desired fields for users and need to still stylize Edit page, link the right form page and continue with access revoking. 2024-04-09 17:48:54 -05:00
Finished adding the ability for admins to create new users. 2024-04-03 18:32:15 -05:00
			`def update_user_roles(user, roles_names)`
			`user.roles.delete_all # Remove existing roles`
			`roles_names.each do \|role_name\|`
			`user.add_role(role_name) unless role_name.blank?`
			`end`
			`end`


Added an Admin tab to the main header. Added Forms and Users as additional pages. Set it so Users can only be accessed by an Admin. Still need to finish styling. Forms is set to default until worked on. 2024-02-15 17:23:54 -06:00			`end`