Im showing in the view a menu with just the options to certain user, ie:
<% if user = “admin” %>
<a href"/action/addcontent">Add content
<% end %>
and that works but if the user goes and directly writes in the address
bar myappurl/action/adcontent/TheContent that is valid and the rails app
How i can avoid this? i mean, remome access to certain actions of the
rails app completely.