Add required authorization to all pages

[cs356-p2-videostore.git] / app / controllers / customer_controller.rb

diff --git a/app/controllers/customer_controller.rb b/app/controllers/customer_controller.rb
index d741644..1e560c0 100644 (file)
--- a/app/controllers/customer_controller.rb
+++ b/app/controllers/customer_controller.rb
@@ -1,4 +1,8 @@
 class CustomerController < ApplicationController
+
+  # Make sure that the user has logged in before they can take any action
+  before_filter :authorize
+
   def index
     list
     render :action => 'list'
@@ -55,6 +59,6 @@ class CustomerController < ApplicationController
 
   def searchresults
     query = params[:q]
-    @customers = Customer.find(:all, :conditions => ["name = ?", query])
+    @customers = Customer.find(:all, :conditions => ["name like ?", query[0]+"%"] )
   end
 end