class DeviceUsersController < AdminBaseController

	def index
		@device = Device.find(params[:device_id])
		@users = User.where(:device_id => @device.device_id).order("id DESC")
	end

	def new
		@user = User.new
		@device = Device.find(params[:device_id])
		@user.device_id = @device.device_id
  end

  def create
    @device = Device.find(params[:device_id])
    @user = User.new(user_params)

    respond_to do |format|
      if @user.save
        format.html { redirect_to @user, notice: 'user was successfully created.' }
        format.json { render :show, status: :created, location: @user }
      else
        format.html { render :new }
        format.json { render json: @user.errors, status: :unprocessable_entity }
      end
    end
  end

  def edit
    @device = Device.find(params[:device_id])
    @user = User.where(:device_id => @device.device_id, :id => params[:id]).first
  end

  def update
    @device = Device.find(params[:device_id])
    @user = User.find params[:id]
    if @user.update_attributes user_params
      redirect_to device_device_users_path(:device_id => @device.id)
    else
      render :edit
    end
  end

  # Never trust parameters from the scary internet, only allow the white list through.
  def user_params
    params.require(:user).permit(:username, :mobile, :gender, :birthday, :password, :password_confirmation, :device_id)
  end
end