Section 7.3.2: Add admin namespaced users controller

Author: Ryan Bigg

ticketee/app/assets/javascripts/admin/users.coffee

@@ -0,0 +1,3 @@
+# Place all the behaviors and hooks related to the matching controller here.
+# All this logic will automatically be available in application.js.
+# You can use CoffeeScript in this file: http://coffeescript.org/

ticketee/app/assets/stylesheets/admin/users.css.scss

@@ -0,0 +1,3 @@
+// Place all the styles related to the admin/users controller here.
+// They will automatically be included in application.css.
+// You can use Sass (SCSS) here: http://sass-lang.com/

ticketee/app/controllers/admin/base_controller.rb

@@ -0,0 +1,3 @@
+class Admin::BaseController < ApplicationController
+  before_action :authorize_admin!
+end

ticketee/app/controllers/admin/users_controller.rb

@@ -0,0 +1,4 @@
+class Admin::UsersController < Admin::BaseController
+  def index
+  end
+end

ticketee/app/controllers/application_controller.rb

@@ -2,4 +2,15 @@ class ApplicationController < ActionController::Base
   # Prevent CSRF attacks by raising an exception.
   # For APIs, you may want to use :null_session instead.
   protect_from_forgery with: :exception
+
+  private
+
+  def authorize_admin!
+    authenticate_user!
+
+    unless current_user.admin?
+      flash[:alert] = "You must be an admin to do that."
+      redirect_to root_path
+    end
+  end
 end

ticketee/app/helpers/admin/users_helper.rb

@@ -0,0 +1,2 @@
+module Admin::UsersHelper
+end

ticketee/app/views/admin/users/index.html.erb

@@ -0,0 +1,2 @@
+<h1>Admin::Users#index</h1>
+<p>Find me in app/views/admin/users/index.html.erb</p>

ticketee/config/routes.rb

@@ -5,4 +5,8 @@
   resources :projects do
     resources :tickets
   end
+
+  namespace :admin do
+    resources :users
+  end
 end

ticketee/spec/controllers/admin/users_controller_spec.rb

@@ -0,0 +1,18 @@
+require "rails_helper"
+
+RSpec.describe Admin::UsersController, :type => :controller do
+  let(:user) { FactoryGirl.create(:user) }
+
+  context "standard users" do
+    before do
+      allow(controller).to receive(:authenticate_user!)
+      allow(controller).to receive(:current_user).and_return(user)
+    end
+
+    it "are not able to access the index action" do
+      get 'index'
+      expect(response).to redirect_to('/')
+      expect(flash[:alert]).to eql("You must be an admin to do that.")
+    end
+  end
+end