X-Git-Url: https://irasnyder.com/gitweb/?a=blobdiff_plain;f=app%2Fcontrollers%2Fapplication.rb;h=aaf37b371121f0704b2e88dfeccb4aa53eb06340;hb=b12881a928516bca02b2bd8ce1bbe9288840c76f;hp=4e5f623fb3d71735dc87926b4085cf90a2ac29c6;hpb=344d975e26054e2f69ee044c80a8b3232145cd47;p=cs356-p2-videostore.git

diff --git a/app/controllers/application.rb b/app/controllers/application.rb
index 4e5f623..aaf37b3 100644
--- a/app/controllers/application.rb
+++ b/app/controllers/application.rb
@@ -3,5 +3,22 @@
 
 class ApplicationController < ActionController::Base
   # Pick a unique cookie name to distinguish our session data from others'
-  session :session_key => '_try5_session_id'
+  session :session_key => '_prippropprix_session_id'
+
+  private
+
+  def authorize
+    unless User.find_by_id(session[:user_id])
+      flash[:notice] = "Please log in"
+      redirect_to :controller => "login", :action => "login"
+    end
+  end
+
+  def manager
+    user = User.find_by_id(session[:user_id])
+    unless user and user.manager
+      flash[:notice] = "You must be a manager to access this page"
+      redirect_to :controller => "login", :action => "index"
+    end
+  end
 end