Let’s assume the following controller:
class GoodiesController < ApplicationController def delete # Remove all the goodies end end
You want to protect that controller action, the normal way is: write a before_filter to check and redirect.
This is what denied
does for you