module LoginSystem

def authorize
  #puts _process_action_callbacks.map(&:filter)
  action = action_name.to_s.intern
  if user_has_access_to_action?(action)
    true
  else
    permissions = self.class.controller_permissions[action]
    flash[:error] = permissions[:denied_message] || 'Access denied.'
    respond_to do |format|
      format.html { redirect_to(permissions[:denied_url] || { :action => :index }) }
      format.any(:xml, :json) { head :forbidden }
    end
    false
  end
end