<%= form_tag action: "update", controller: "admin/admin_users" do %> <%= hidden_field_tag :query, params[:query] %> <%= hidden_field_tag :role, params[:role] %> <%= hidden_field_tag "id", user.login %> <% # HACK: We need the user param to be present so we can remove all roles. # However, if we simply submit the form with all roles unchecked, the user # param is stripped. Therefore, we need a placeholder. %> <%= hidden_field_tag "user[roles][]", "", disabled: !admin_can_update_user_roles? %> <%= link_to user.login, user_path(user) %> <%= text_field_tag "user[email]", user.email, title: ts("Email"), disabled: !admin_can_update_user_email? %> <% for role in @roles %> <%= check_box_tag "user[roles][]", role.id, user.roles.include?(role), title: role.name, id: "user_roles_#{role.id}", disabled: !policy(User).can_edit_user_role?(role) %> <% end %> <% unless user.fannish_next_of_kin.blank? %> <%= link_to user.fannish_next_of_kin.kin_name, user_path(user.fannish_next_of_kin.kin_name) %> <% end %> <%= submit_tag ts("Update") %> <%= link_to ts("Details"), admin_user_path(user) %> <% end %>