layout 'site', :except => :rss
before_filter :authorize_web
- before_filter :require_user, :only => [:new]
+ before_filter :require_user, :only => [:new, :edit]
before_filter :check_database_availability
def new
end
end
+ def edit
+ @title= 'edit diary entry'
+ @diary_entry = DiaryEntry.find(params[:id])
+ if @user != @diary_entry.user
+ redirect_to :controller => 'diary_entry', :action => 'view', :id => params[:id]
+ end
+ if params[:diary_entry]
+ @diary_entry.title = params[:diary_entry][:title]
+ @diary_entry.body = params[:diary_entry][:body]
+ @diary_entry.latitude = params[:diary_entry][:latitude]
+ @diary_entry.longitude = params[:diary_entry][:longitude]
+ if @diary_entry.save
+ redirect_to :controller => 'diary_entry', :action => 'view', :id => params[:id]
+ end
+ end
+ end
+
def comment
@entry = DiaryEntry.find(params[:id])
@diary_comment = @entry.diary_comments.build(params[:diary_comment])