engine/app/controllers/locomotive/api/base_controller.rb

44 lines
1.0 KiB
Ruby
Raw Normal View History

2012-01-23 08:05:50 +00:00
module Locomotive
module Api
class BaseController < ApplicationController
include Locomotive::Routing::SiteDispatcher
include Locomotive::ActionController::LocaleHelpers
before_filter :require_account
before_filter :require_site
# before_filter :validate_site_membership
skip_before_filter :verify_authenticity_token
self.responder = Locomotive::ActionController::Responder # custom responder
respond_to :json, :xml
rescue_from CanCan::AccessDenied do |exception|
::Locomotive.log "[CanCan::AccessDenied] #{exception.inspect}"
if request.xhr?
render :json => { :error => exception.message }
else
flash[:alert] = exception.message
redirect_to pages_url
end
end
protected
def current_ability
@current_ability ||= Ability.new(current_locomotive_account, current_site)
end
def require_account
authenticate_locomotive_account!
end
end
end
end