49 lines
1.3 KiB
Ruby
49 lines
1.3 KiB
Ruby
class UserFeedbacksController < ApplicationController
|
|
before_filter :gold_only, :only => [:new, :edit, :create, :update, :destroy]
|
|
respond_to :html, :xml, :json
|
|
rescue_from User::PrivilegeError, :with => "static/access_denied"
|
|
|
|
def new
|
|
@user_feedback = UserFeedback.new(params[:user_feedback])
|
|
respond_with(@user_feedback)
|
|
end
|
|
|
|
def edit
|
|
@user_feedback = UserFeedback.find(params[:id])
|
|
check_privilege(@user_feedback)
|
|
respond_with(@user_feedback)
|
|
end
|
|
|
|
def show
|
|
@user_feedback = UserFeedback.find(params[:id])
|
|
respond_with(@user_feedback)
|
|
end
|
|
|
|
def index
|
|
@search = UserFeedback.search(params[:search])
|
|
@user_feedbacks = @search.paginate(params[:page], :limit => params[:limit]).order("created_at desc")
|
|
respond_with(@user_feedbacks) do |format|
|
|
format.xml do
|
|
render :xml => @user_feedbacks.to_xml(:root => "user-feedbacks")
|
|
end
|
|
end
|
|
end
|
|
|
|
def create
|
|
@user_feedback = UserFeedback.create(params[:user_feedback])
|
|
respond_with(@user_feedback)
|
|
end
|
|
|
|
def destroy
|
|
@user_feedback = UserFeedback.find(params[:id])
|
|
check_privilege(@user_feedback)
|
|
@user_feedback.destroy
|
|
respond_with(@user_feedback)
|
|
end
|
|
|
|
private
|
|
def check_privilege(user_feedback)
|
|
raise User::PrivilegeError unless (user_feedback.creator_id == CurrentUser.id || CurrentUser.is_moderator?)
|
|
end
|
|
end
|