# File app/controllers/admin_controller.rb, line 78 def update @user = User.find(params[:id]) if params[:user][:user_level].to_i >= session[:level] && session[:level] < 3 flash[:notice] = "You may only create users of lesser level than you." render :action => 'edit' else if @user.update_attributes(params[:user]) flash[:notice] = 'User was successfully updated.' redirect_to :action => 'show', :id => @user else render :action => 'edit' end end end