Merge pull request #42 from nestauk/authenticate-admins-for-admin-age

Authenticate admins

app/controllers/admins_controller.rb

@@ -29,6 +29,8 @@ def create
   # PATCH/PUT /admins/1
   def update
     if @admin.update(admin_params)
+      bypass_sign_in(@admin) if @admin == current_admin
+
       redirect_to admins_path, notice: "Admin was successfully updated."
     else
       render :edit, status: :unprocessable_entity

app/controllers/application_controller.rb

@@ -1,4 +1,6 @@
 class ApplicationController < ActionController::Base
+  before_action :authenticate_admin!
+
   def after_sign_up_path_for(user)
     dashboard_users_path
   end

app/controllers/contents_controller.rb

@@ -1,6 +1,4 @@
 class ContentsController < ApplicationController
-  before_action :authenticate_admin!
-
   def new
     @group = Group.find_by(id: params[:group_id])
     @content = @group.contents.new

app/controllers/groups_controller.rb

@@ -1,6 +1,4 @@
 class GroupsController < ApplicationController
-  before_action :authenticate_admin!
-
   def index
     @groups = Group.order(:age_in_months)
   end

app/controllers/messages_controller.rb

@@ -1,5 +1,5 @@
 class MessagesController < ApplicationController
-  before_action :authenticate_admin!, except: [:status, :incoming, :next]
+  skip_before_action :authenticate_admin!, only: [:status, :incoming, :next]
   skip_before_action :verify_authenticity_token, only: [:status, :incoming]
 
   def index

app/controllers/pages_controller.rb

@@ -1,4 +1,6 @@
 class PagesController < ApplicationController
+  skip_before_action :authenticate_admin!
+
   def privacy_policy
   end
 

app/controllers/users_controller.rb

@@ -1,5 +1,5 @@
 class UsersController < ApplicationController
-  before_action :authenticate_admin!, only: [:index, :show, :dashboard]
+  skip_before_action :authenticate_admin!, except: [:index, :show, :dashboard]
 
   def index
     @users = User.all