class PaymentsController < ApplicationController load_and_authorize_resource :payment load_and_authorize_resource :user, :through => :payment before_filter :authenticate_user! # Load users and certs based on current ability before_filter do @users = User.where(:hidden => false).where("member_level > 10").accessible_by(current_ability).sort_by(&:name_with_payee_and_member_level) end before_filter :only => [:create, :update] do @payment.created_by = current_user.id end # GET /payments # GET /payments.json def index @payments = @payments.order("date DESC") respond_to do |format| format.html # index.html.erb format.json { render :json => @payments } end end # GET /payments/1 # GET /payments/1.json def show respond_to do |format| format.html # show.html.erb format.json { render :json => @payment } end end # GET /payments/new # GET /payments/new.json def new respond_to do |format| format.html # new.html.erb format.json { render :json => @payment } end end # GET /payments/1/edit def edit end # POST /payments # POST /payments.json def create Rails.logger.warn "payment:" Rails.logger.warn @payment.inspect respond_to do |format| if @payment.save format.html { redirect_to payments_url, :notice => 'Payment was successfully created.' } format.json { render :json => @payment, :status => :created, :location => @payment } else format.html { render :action => "new" } format.json { render :json => @payment.errors, :status => :unprocessable_entity } end end end # PUT /payments/1 # PUT /payments/1.json def update respond_to do |format| if @payment.update_attributes(params[:payment]) format.html { redirect_to payments_url, :notice => 'Payment was successfully updated.' } format.json { head :no_content } else format.html { render :action => "edit" } format.json { render :json => @payment.errors, :status => :unprocessable_entity } end end end # DELETE /payments/1 # DELETE /payments/1.json def destroy @payment.destroy respond_to do |format| format.html { redirect_to payments_url } format.json { head :no_content } end end end