class ProductsController < ApplicationController load_and_authorize_resource respond_to :html, :js def new @product = Product.new end def create @product = Product.new(product_params) if @product.save flash[:success] = "Product created!" redirect_to products_path else render 'new' end end def index @products = Product.all @categories = Product.categories render 'products_list/listview' if current_user.admin? end def edit @product = Product.find(params[:id]) respond_with @product end def update @product = Product.find(params[:id]) @product.update_attributes product_params respond_with @product end def stock @products = Product.all end def update_stock @products = Product.all @products.each do |product| stock_inc = params[:products][product.id.to_s][:stock_inc].to_i product.increment!(:stock, stock_inc) if stock_inc > 0 end redirect_to products_path end private def product_params params.require(:product).permit(:name, :price, :avatar, :category, :stock, :calories, :deleted) end end