summaryrefslogtreecommitdiff
path: root/app/controllers/servers_controller.rb
blob: f23f2bf388bab574fb45febf73490f24fd68515d (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
class ServersController < ApplicationController
	before_action :set_server, only: [:show, :edit, :update, :destroy]
	before_action :check_perms

	# GET /servers
	# GET /servers.json
	def index
		@servers = Server.all
	end

	# GET /servers/1
	# GET /servers/1.json
	def show
	end

	# GET /servers/new
	def new
		@server = Server.new
	end

	# GET /servers/1/edit
	def edit
	end

	# POST /servers
	# POST /servers.json
	def create
		@server = Server.new(server_params)

		respond_to do |format|
			if @server.save
				format.html { redirect_to @server, notice: 'Server was successfully created.' }
				format.json { render action: 'show', status: :created, location: @server }
			else
				format.html { render action: 'new' }
				format.json { render json: @server.errors, status: :unprocessable_entity }
			end
		end
	end

	# PATCH/PUT /servers/1
	# PATCH/PUT /servers/1.json
	def update
		respond_to do |format|
			if @server.update(server_params)
				format.html { redirect_to @server, notice: 'Server was successfully updated.' }
				format.json { head :no_content }
			else
				format.html { render action: 'edit' }
				format.json { render json: @server.errors, status: :unprocessable_entity }
			end
		end
	end

	# DELETE /servers/1
	# DELETE /servers/1.json
	def destroy
		@server.destroy
		respond_to do |format|
			format.html { redirect_to servers_url }
			format.json { head :no_content }
		end
	end

	private
	# Use callbacks to share common setup or constraints between actions.
	def set_server
		@server = Server.find(params[:id])
	end

	def check_perms
		unless (signed_in? and current_user.in_group?(:admin))
			respond_to do |format|
				format.html { render action: 'permission_denied', status: :forbidden }
				format.json { render json: "Permission denied", status: :forbidden }
			end
		end
	end

	# Never trust parameters from the scary internet, only allow the white list through.
	def server_params
		params[:server]
	end
end