fresh5447 · May 5, 2014 21:07
diff --git a/wikis_controller.rb b/wikis_controller.rb
 class WikisController < ApplicationController
  
  before_action :set_wiki, only: [:show, :edit, :update, :destroy]

  # GET /wikis
  # GET /wikis.json
  def index
    @wikis = policy_scope(Wiki)
  end

  # GET /wikis/1
  # GET /wikis/1.json
  def show
    authorize @wikis
  end

  # GET /wikis/new
  def new
    @wiki = Wiki.new
    @wiki = policy_scope(Wiki)
  end

  # GET /wikis/1/edit
  def edit
    @wiki = Wiki.find(params[:id])
    #authorize @wiki
  end

  # POST /wikis
  # POST /wikis.json
  def create
    @wiki = Wiki.new(wiki_params)
    @wiki.user = current_user

    #authorize @wiki 
    
    respond_to do |format|
      if @wiki.save
        format.html { redirect_to @wiki, notice: 'Wiki was successfully created.' }
        format.json { render action: 'show', status: :created, location: @wiki }
      else
        format.html { render action: 'new' }
        format.json { render json: @wiki.errors, status: :unprocessable_entity }
      end
    end
  end

  # PATCH/PUT /wikis/1
  # PATCH/PUT /wikis/1.json
  def update
    #@wiki = Wiki.find(params[:id])   PUNDIT 51/52/53
    #authorize @wiki    
    #if @wiki.update_attributes(params.require(:wiki).permit(:name, :body))
    respond_to do |format|
      if @wiki.update(wiki_params)
        format.html { redirect_to @wiki, notice: 'Wiki was successfully updated.' }
        format.json { head :no_content }
      else
        format.html { render action: 'edit' }
        format.json { render json: @wiki.errors, status: :unprocessable_entity }
      end
    end
  end

  # DELETE /wikis/1
  # DELETE /wikis/1.json
  def destroy
    @wiki.destroy
    authorize @wiki
    respond_to do |format|
      format.html { redirect_to wikis_path }
      format.json { head :no_content }
    end
  end

  private
    # Use callbacks to share common setup or constraints between actions.
    def set_wiki      
      @wiki = Wiki.friendly.find(params[:id])
    end

    # Never trust parameters from the scary internet, only allow the white list through.
    def wiki_params
      params.require(:wiki).permit(:user_id, :name, :body, :private)
    end
 end
	class WikisController < ApplicationController

	before_action :set_wiki, only: [:show, :edit, :update, :destroy]

	# GET /wikis
	# GET /wikis.json
	def index
	@wikis = policy_scope(Wiki)
	end

	# GET /wikis/1
	# GET /wikis/1.json
	def show
	authorize @wikis
	end

	# GET /wikis/new
	def new
	@wiki = Wiki.new
	@wiki = policy_scope(Wiki)
	end

	# GET /wikis/1/edit
	def edit
	@wiki = Wiki.find(params[:id])
	#authorize @wiki
	end

	# POST /wikis
	# POST /wikis.json
	def create
	@wiki = Wiki.new(wiki_params)
	@wiki.user = current_user

	#authorize @wiki

	respond_to do \|format\|
	if @wiki.save
	format.html { redirect_to @wiki, notice: 'Wiki was successfully created.' }
	format.json { render action: 'show', status: :created, location: @wiki }
	else
	format.html { render action: 'new' }
	format.json { render json: @wiki.errors, status: :unprocessable_entity }
	end
	end
	end

	# PATCH/PUT /wikis/1
	# PATCH/PUT /wikis/1.json
	def update
	#@wiki = Wiki.find(params[:id]) PUNDIT 51/52/53
	#authorize @wiki
	#if @wiki.update_attributes(params.require(:wiki).permit(:name, :body))
	respond_to do \|format\|
	if @wiki.update(wiki_params)
	format.html { redirect_to @wiki, notice: 'Wiki was successfully updated.' }
	format.json { head :no_content }
	else
	format.html { render action: 'edit' }
	format.json { render json: @wiki.errors, status: :unprocessable_entity }
	end
	end
	end

	# DELETE /wikis/1
	# DELETE /wikis/1.json
	def destroy
	@wiki.destroy
	authorize @wiki
	respond_to do \|format\|
	format.html { redirect_to wikis_path }
	format.json { head :no_content }
	end
	end

	private
	# Use callbacks to share common setup or constraints between actions.
	def set_wiki
	@wiki = Wiki.friendly.find(params[:id])
	end

	# Never trust parameters from the scary internet, only allow the white list through.
	def wiki_params
	params.require(:wiki).permit(:user_id, :name, :body, :private)
	end
	end