class Admin::UsersController < ApplicationController layout 'login' def login if request.post? if params[:password] == "wrpmlp" session[:user] = true redirect_to :controller => 'admin/auctions' else flash[:error] = "Incorrect password. Please try again." end end end def logout session[:user] = nil flash[:notice] = "You have been logged out successfully." render :action => 'login' end end