module Spree
  module Admin
    class RolesController < ResourceController
      before_filter :load_permissions, :only => [:edit, :new, :create, :update]
      before_filter :restrict_unless_editable, :only => [:edit, :update]

      def index
        @roles = Spree::Role.page(params[:page])
      end

      private
        def permitted_resource_params
          params.require(:role).permit(:name, :permission_ids => [])
        end

        def load_permissions
          @permissions = Spree::Permission.visible.all
        end

        def restrict_unless_editable
          redirect_to admin_roles_path unless @role.editable?
        end
    end
  end
end