* VRFS-238 done

app/controllers/users_controller.rb

@@ -4,6 +4,10 @@ class UsersController < ApplicationController
   before_filter :correct_user,   only: [:edit, :update]
   before_filter :admin_user,     only: :destroy
 
+  rescue_from 'JamRuby::PermissionError' do |exception|
+    @exception = exception
+    render :file => 'public/403.html', :status => 403, :layout => false
+  end
   
   def index
     @users = User.paginate(page: params[:page])

config/application.rb

@@ -91,5 +91,8 @@ module SampleApp
     config.websocket_gateway_max_stale_connection_time = 1800
     config.websocket_gateway_internal_debug = false
     config.websocket_gateway_port = 6767
+
+    # set this to false if you want to disable signups (lock down public user creation)
+    config.signup_enabled = true
   end
 end

lib/managers/user_manager.rb

@@ -15,6 +15,11 @@ class UserManager < BaseManager
 
     @user = User.new
 
+    # check if we have disabled signup for this site.
+    unless SampleApp::Application.config.signup_enabled
+      raise PermissionError, "Signups are currently disabled"
+    end
+
     location_hash = MaxMindManager.lookup(remote_ip);
 
     # TODO: figure out why can't user verify_recaptcha here