Rails :(设计)新用户有两种不同的方法吗？

Question

我有一个Rails 3应用程序,使用Devise并registerable启用模块进行身份验证设置.

我希望让使用我们的外部注册表单注册的新用户使用registerable现在正在发生的完整Devise 模块.

但是,我还希望admin用户能够直接创建新用户,绕过(我认为)Devise的registerable模块.

• 使用registerabledisabled时,我的标准UsersController就像我想要的那样为admin用户工作,就像任何其他Rail支架一样.但是,现在新用户无法自行注册.

• 与registerable启用,我的标准UsersController绝不会为新的用户操作(主叫Devise::RegistrationsController代替),和我的CRUD的行为似乎并没有在所有的工作(我被人抛弃返回到我的根页面创建任何新用户,并没有闪光灯消息) .这是来自请求的日志:

  Started POST "/users" for 127.0.0.1 at 2010-12-20 11:49:31 -0500   
  Processing by Devise::RegistrationsController#create as HTML   
  Parameters: {"utf8"=>"?", "authenticity_token"=>"18697r4syNNWHfMTkDCwcDYphjos+68rPFsaYKVjo8Y=", "user"=>{"email"=>"test@test.com", "password"=>"[FILTERED]", "password_confirmation"=>"[FILTERED]", "role"=>"manager"}, "commit"=>"Create User"}   
  SQL (0.9ms)   ...
  
  User Load (0.6ms)  SELECT "users".* FROM "users" WHERE ("users"."id" = 2) LIMIT 1   
  SQL (0.9ms)   ...
  
  Redirected to http://test-app.local/ Completed 302 Found in 192ms
  

...但我可以通过外部表格注册新用户.

如何让这两种方法协同工作,以便我的admin用户可以手动创建新用户,而访客用户可以自己注册？

---

我有用于标准CRUD的用户控制器设置:

class UsersController < ApplicationController
  load_and_authorize_resource

  def index
    @users = User.where("id NOT IN (?)", current_user.id) # don't display the current user in the users list; go to account management to edit current user details
  end

  def new
    @user = User.new
  end

  def create
    @user = User.new(params[:user])
    if @user.save
      flash[:notice] = "#{ @user.email } created."
      redirect_to users_path
    else
      render :action => 'new'
    end
  end

  def edit
  end

  def update
    params[:user].delete(:password) if params[:user][:password].blank?
    params[:user].delete(:password_confirmation) if params[:user][:password].blank? and params[:user][:password_confirmation].blank?
    if @user.update_attributes(params[:user])
      flash[:notice] = "Successfully updated User."
      redirect_to users_path
    else
      render :action => 'edit'
    end
  end

  def delete
  end

  def destroy
    redirect_to users_path and return if params[:cancel]
    if @user.destroy
      flash[:notice] = "#{ @user.email } deleted."
      redirect_to users_path
    end
  end

end

我的路线设置如下:

TestApp::Application.routes.draw do

  devise_for :users

  devise_scope :user do
    get "/login", :to => "devise/sessions#new", :as => :new_user_session
    get "/logout", :to => "devise/sessions#destroy", :as => :destroy_user_session
  end

  resources :users do
    get :delete, :on => :member
  end

  authenticate :user do
    root :to => "application#index"
  end
  root :to => "devise/session#new"

end

Answer 1

您应该创建一个单独的控制器来管理您的用户.我总是创建管理员用户并为他们提供一个特殊的命名空间.让我说明一下:

config/routes.rb

devise :users # Allow users to register here

namespace :admin do
  resources :users # Have the admin manage them here.
end