In my Ruby on Rails application i use Devise for authenticate the admins.
In this moment everyone can create an account as admin, or rather they have access to the standard devise routes for create,destroy,edit,sign_in,sign_up,sign_out.
I want that only an admin can create another admin's account, so how can i handle this situation?
Aucun commentaire:
Enregistrer un commentaire