How to hide non permited actions?

class HomeController < ApplicationController

before_filter :verify_admin_user

def verify_admin_user

user = session[:user_id}

user = User.find(user) if user

unless user && user.is_admin?

redirect_to :controller => ‘home’, :action => ‘index’

end

end

You need to define your is_admin method in your User model class.