class Admin::UsersController < ApplicationController
  before_action :set_user, only: [ :show, :update ]
  before_action :authorize!

  def index
    @users = User.all.order(:lastname, :firstname)
    @pagy, @records = pagy(@users, limit: 20)
  end

  def edit
  end

  def show
  end

  def new
  end

  def create
  end

  def update
    authorize! @user
    if @user.update(user_params)
      respond_to do |format|
        format.html { redirect_to admin_users_path }
      end
    else
        render :index, status: :unprocessable_entity
    end
  end

  private

  def set_user
    @user = User.find(params[:id])
  end

  def user_params
    params.require(:user).permit(:role)
  end
end