class IssuesController < ApplicationController
layout "site"
+ before_action :authorize_web
+ before_action :check_permission, only: [:index, :show, :resolve,:open,:ignore]
before_action :find_issue, only: [:show, :resolve, :reopen, :ignore]
def index
@issue = Issue.find(params[:id])
end
+ def check_permission
+ unless @user.administrator?
+ flash[:error] = t("application.require_admin.not_an_admin")
+ redirect_to root_path
+ end
+ end
+
def create_new_issue_params
params.permit(:reportable_id, :reportable_type, :user_id)
end
end
def report_params
- params[:report].permit(:details)
+ params[:report].permit(:details, :user_id)
end
end