tags:

views:

174

answers:

3
+1  Q: 

How to show public version of user profile in Rails?

I have a User model that contains information such as username, email, hometown, etc. When the user is logged in, he can edit any of his information via the show page (/users/723, for example).

I'd like to have a "public" version of this page that can be viewed by someone that's not logged in or by someone that's logged in as someone else. It would have varying levels of information about the user and not have any of the links to edit information.

What's the cleanest way to properly show the three different versions of this page?

Addendum.

I am currently using authlogic for authentication and acl9 for access control. However, I don't see this as a question of authentication and authorization. I think it's a question of controller/view design. Whether the user is logged in or owns the information is incidental. If you wanted to display Widgets in three different manners based on some session state, I would think you'd be able to use the answer to this question.

+1  A: 

There are tons of ways of doing this, and I do not think there is a cleanest way.

I would probably break the page into partials, one partial for each grouping of information you need.

Then you could have variables control which partials get rendered.

For example (in HAML):

- if @admin
  render :partial => 'admin_panel'

For the real simple stuff you could inline the if (and not have a partial)

Alternatively, if stuff is getting out of hand, you can have different views for each "show" page.

Sam Saffron  2009-07-28 03:07:33
I agree with Sam on this one, with the slight caveat that depending on the differences, it may make more sense to just make the changes inline. For example, on a site where I just want to enable quick-edit functionality for admins, that's a simple condition inside the view, but I don't want to punt out to partials when the differences will be so minor.
scottru  2009-08-21 07:00:50
A: 

For User Profiles (As well as user authentication), I highly recommend looking at Authlogic. It makes everything extremely simple, and is very well designed. You basically add a before filter that says:

before_filter :require_login, :only => [:edit, :update]

Then you must be logged in to go to edit (and thus post to update), otherwise it is publicly viewable.

You can download an example application from here.

It also supports integration with OpenID, LDAP, Facebook Connect, and OAuth (Twitter) via some addons, which are discussed on the github page for the project (linked above).

I hope my answer was helpful.

Mike Trpcic  2009-07-28 03:15:27
@Mike, I think the OP already has some way to do authentication and authorization, he is just looking for a way to cleanly break down his view.
Sam Saffron  2009-07-28 03:16:54
@Sam, I understand, but Authlogic is literally a "drop-in-and-go" solution that contains the functionality he is looking for without any hassle. It was just a suggestion which he may not have found, and I thought it merited a mention.
Mike Trpcic  2009-07-28 03:24:14
A: 

I think you should create a second controller (e.g. memberprofiles controller). So you can split up the user-edit area from the public access area.

Lichtamberg  2009-07-28 08:10:55

related questions

Is there a rake task for backing up the data in your database?
How to represent cross-model information in MVC?
WYSIWYG editor gem for Rails?
Best Solution For Authentication in Ruby on Rails
Acts-as-readable Rails plugin Issue
Associating source and search keywords with account creation
Any tips on getting Rails to run with an Access back-end?
Being as DRY as possible in a Ruby on Rails App
How Do You Secure database.yml?
What IDE to use for developing in Ruby on Rails on windows?
Is Ruby On Rails ready for the Enterprise?
OpenID authentication in Ruby on Rails
Why Doesn't My Cron Job Work Properly?
Why does sqlite3-ruby-1.2.2 not work on OS X?
Ruby mixins and calling super methods
Why all the Active Record hate?
Haml: how do I set a dymanic class value?
Learning Ruby on Rails any good for Grails?
How to sell Python to a client/boss/person with lots of cash
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Ruby On Rails with Windows Vista - Best Setup?
What is good forum software to add to an existing Rails application?
How do I fix 'Unprocessed view path found' error with ExceptionNotifier plugin in rails 2.1?
Frequent SystemExit in Ruby when making HTTP calls
Implementation of "Remember me" in a Rails application.