eri-b

module SitesHelper
  def postable?
    [email protected] || (@site.locked && session[@site.name.to_sym] == "session-unlocked")
  end

  def private?
    @site.locked && session[@site.name.to_sym] != "session-unlocked"
  end
end

eri-b

module SitesHelper
  def private?
    @site.locked && session[@site.name.to_sym] != "session-unlocked"
  end
end

eri-b

def find_site
  @slug = params[:id].downcase
  @site = Site.find_by(name: @slug)
  if @site.present?
    expired?
  end
end

eri-b

def home
  @slug = ('a'..'z').to_a.shuffle[0,8].join
  redirect_to main_path(@slug)
end

eri-b

class SitesController < ApplicationController
  
  ...
    
  private

    def find_site
      @slug = params[:id].downcase
      @site = Site.find_by(name: @slug)
      if @site.present?

eri-b

class PostsController < ApplicationController
  before_action :editable?, only: [:create]

  def create

    @site = Site.find_by(name: params[:post][:site])
    @post = @site.posts.build(post_params)

    if @post.save
      redirect_to main_path(@post.site.name)

eri-b

# sites_controller.rb
def unlocked?
  if private?
    redirect_to main_path(@site.name), notice: 'Site is locked.'
  end
end

eri-b

class SessionsController < ApplicationController

  def create
    site = Site.find_by(name: params[:session][:site])
    if site && site.authenticate(params[:session][:password])
      session[site.name.to_sym] = "session-unlocked"
      redirect_to main_path(site.name), notice: 'Logged in. Free to add/delete posts'
    else
      flash.now[:danger] = 'Invalid password'
      redirect_to main_path(site.name), notice: 'Incorrect password'

eri-b

<%= form_for(:session, url: unlock_path) do |f| %>
  <%= f.label :password %>
  <%= f.password_field :password %>
  <%= f.hidden_field :site, value: @site.name %>
  <%= f.submit "Unlock" %>
<% end %>

eri-b

<%= form_for @site, url: site_pass_path(@site.name), method: :patch do |f| %>

  <%= f.label :password %>
  <%= f.password_field :password %>
  <%= f.submit "Add password" %>

<% end %>