# File app/controllers/admin_controller.rb, line 78
  def update
    @user = User.find(params[:id])
    if params[:user][:user_level].to_i >= session[:level] && session[:level] < 3
      flash[:notice] = "You may only create users of lesser level than you."
      render :action => 'edit'
    else
      if @user.update_attributes(params[:user])
        flash[:notice] = 'User was successfully updated.'
        redirect_to :action => 'show', :id => @user
      else
        render :action => 'edit'
      end
    end
  end