On Sun, Apr 25, 2010 at 5:16 PM, Mohammed Alenazi <[email protected]> wrote:
> Hi
>
> I have this code
> def destroy
> @property = Property.find(params[:id])
> IsAuthorized?(@property.user_id)
> @property.destroy
>
>
Mohammed, you can write the above as follows:
@property.destroy if IsAuthorized?(@property.user_id)
Good luck,
-Conrad
> respond_to do |format|
> format.html { redirect_to(properties_url) }
> format.xml { head :ok }
> end
> end
>
> def IsAuthorized?(id)
> if current_user.id!= id
> flash[:notice] = 'Not authorized '
> redirect_to(properties_url)
> end
> end
>
> If a not authorized user calls destroy it stills calls
> @property.destroy.
> How can I prevent the destory function from calling @property.destroy
> if the user is not authorized?
>
> --
> You received this message because you are subscribed to the Google Groups
> "Ruby on Rails: Talk" group.
> To post to this group, send email to [email protected].
> To unsubscribe from this group, send email to
> [email protected]<rubyonrails-talk%[email protected]>
> .
> For more options, visit this group at
> http://groups.google.com/group/rubyonrails-talk?hl=en.
>
>
--
You received this message because you are subscribed to the Google Groups "Ruby
on Rails: Talk" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/rubyonrails-talk?hl=en.