class ProductsController < ApplicationController load_and_authorize_resource def new @product = Product.new end def create @product = Product.new(product_params) if @product.save redirect_to action: :index else render :new end end def index @products = Product.all @categories = Product.categories end def edit @product = Product.find(params[:id]) end def update @product = Product.find(params[:id]) if @product.update_attributes(product_params) flash[:success] = "Succesfully updated product" redirect_to action: :index else render 'edit' end end def destroy Product.find(params[:id]).destroy flash[:success] = "Succesfully removed product" redirect_to action: :index end private def product_params params.require(:product).permit(:name, :price, :avatar, :category, :stock) end end