1
我有一个用户模型,我想允许登录用户完全删除他们的账户。我能够允许管理员用户删除其他用户,但对于用户删除他们自己的帐户,它不起作用!我究竟做错了什么?允许当前用户删除他们的账户
users_controller.rb
class UsersController < ApplicationController
before_filter :signed_in_user,
only: [:index, :edit, :update, :destroy, :following, :followers]
before_filter :correct_user, only: [:edit, :update, :destroy]
before_filter :admin_user, only: :destroy
def index
@users = User.paginate(page: params[:page])
end
def show
@user = User.find(params[:id])
@microposts = @user.microposts.paginate(page: params[:page])
end
def new
@user = User.new
end
def create
@user = User.new(params[:user])
if @user.save
sign_in @user
flash[:success] = "Welcome to the Course Management System!"
redirect_to @user
else
render 'new'
end
end
def edit
end
def update
if @user.update_attributes(params[:user])
flash[:success] = "Profile updated"
sign_in @user
redirect_to @user
else
render 'edit'
end
end
def destroy
User.find(params[:id]).destroy
flash[:success] = "User destroyed."
redirect_to users_url
end
def following
@title = "Following"
@user = User.find(params[:id])
@users = @user.followed_users.paginate(page: params[:page])
render 'show_follow'
end
def followers
@title = "Followers"
@user = User.find(params[:id])
@users = @user.followers.paginate(page: params[:page])
render 'show_follow'
end
private
def correct_user
@user = User.find(params[:id])
redirect_to(root_url) unless current_user?(@user)
end
def admin_user
redirect_to(root_url) unless current_user.admin?
end
end
_user.html.erb
<li>
<%= gravatar_for user, size: 52 %>
<%= link_to user.name, user %>
<% if current_user?(user) %>
| <%= link_to "delete", user, method: :delete %>
<% end %>
<% if current_user.admin? && !current_user?(user) %>
| <%= link_to "delete", user, method: :delete,
data: { confirm: "You sure?" } %>
<% end %>
</li>
现在,当我点击 “删除”,它只是重定向我的主页,而不删除用户。当我是管理员时,我可以删除没有问题的其他用户。
很难说你的before_filter中的逻辑发生了什么。在你的项目目录中搜索一个'def admin_user',并用你的问题发布该代码。该方法可能在您的一个控制器中,可能位于'application_controller.rb'中。发布'correct_user'方法定义也是有用的。 – sealocal 2014-12-07 19:03:51