#51 Admin only secrets controller

grinnellplans · Jan 27, 2013 · f694bc4 · f694bc4
1 parent 3ec9c89
commit f694bc4
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/app/controllers/admin/secrets_controller.rb b/app/controllers/admin/secrets_controller.rb
@@ -1,5 +1,5 @@
 class Admin::SecretsController < ApplicationController
-  before_filter :require_admin
+  before_filter :require_admin, :load_autofingers
   # GET /admin/secrets
   def index
     @secrets = Secret.page(params[:page]).order("date DESC")

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
@@ -28,8 +28,8 @@ def require_no_user
 
 
   def  require_admin
-    if !true # TODO determine how a user is admin  
-      redirect_to login_path
+    if current_account.nil? || !current_account.is_admin?
+      redirect_to root_path
     end
   end