@@ -30,7 +30,7 @@ class ApplicationController < ActionController::Base if current_user store_location flash[:notice] = 'You can\'t be logged in for that!' - redirect_to account_url + redirect_to profile_url return false end end app/controllers/application_controller.rb @@ -1,4 +1,8 @@ class UserSessionsController < ApplicationController + + before_filter :require_user, :only => :destroy + before_filter :require_no_user, :only => [ :new, :create ] + def new @user_session = UserSession.new end app/controllers/user_sessions_controller.rb 6cfbbc548055d3bcac2c4e68e555189fc7914ec7 tweak tweakr@gmail.com http://github.com/tweak/waxlog/commit/eccf71651c351602e8b7dc733c609148010d741a eccf71651c351602e8b7dc733c609148010d741a 2009-10-08T20:15:44-07:00 2009-10-08T20:15:44-07:00 tweaked security logic around logging in and logging out e7904f21cd57ed72e723fce67f7a03d4455c128b tweak tweakr@gmail.com