Home/ Questions/Q 5844107
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-22T12:14:48+00:00

I want to protect a specific page in a controller from access only if

  • 0

I want to protect a specific page in a controller from access only if the user is logged in it is the add.html page for adding questions, the index.html page is used to show questions that are asked but I want to to remain public. How do I make it that when someone clicks on ask a question from index that it checks for login and if not logged in has flash notice saying you must login and redirect at same time to login page.

New error on index page:

NoMethodError in Car#index

Showing app/views/car/index.html.erb where line #3 raised:

You have a nil object when you didn't expect it!
You might have expected an instance of Array.
The error occurred while evaluating nil.each
Extracted source (around line #3):

1: <h2>Current List of Open Questions</h2>
2: <dl>
3: <% @car.each do |car| %>
4:   <dd>
5:     <%= car.name %><br />
6:     <%= car.description %><br />
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You want to add a before_filter to ensure the user is logged in before running the protected actions. Here’s a simple example – naturally your implementation details depend on how you rolled your own auth.

    In your application controller (assuming you’re storing the id of the current logged in user in session[:user_id]):

    class ApplicationController < ActionController::Base
  protected
  def ensure_login
    if session[:user_id].blank?
      flash[:notice] = 'You must be logged in to use this part of the site.'
      begin
        redirect_to :back
      rescue
        redirect_to '/'
      end
      return false
    end
  end
end

    and then in the controller where you are limiting access:

    class QuestionsController < ApplicationController
  before_filter :ensure_login, :only => [ :add ]
end
    • 0