Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 106af4c8f1
Branches Tags
zammad
/
app
/
policies
/
controllers
/
mentions_controller_policy.rb

mentions_controller_policy.rb 579 B
History Raw

1234567891011121314151617181920212223242526272829 
  1. # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. class Controllers::MentionsControllerPolicy < Controllers::ApplicationControllerPolicy
    4. 

  4.   def index?
    5. 

  5.     object_accessible?
    6. 

  6.   end
    7. 

  7. 

  8.   def create?
    9. 

  9.     object_accessible?
    10. 

  10.   end
    11. 

  11. 

  12.   def destroy?
    13. 

  13.     mentioned_user?
    14. 

  14.   end
    15. 

  15. 

  16.   private
    17. 

  17. 

  18.   def object_accessible?
    19. 

  19.     Mention.mentionable? record.mentionable_object, user
    20. 

  20.   rescue Exceptions::UnprocessableEntity => e
    21. 

  21.     not_authorized(e)
    22. 

  22.   end
    23. 

  23. 

  24.   def mentioned_user?
    25. 

  25.     mention = Mention.find_by id: record.params[:id]
    26. 

  26. 

  27.     mention&.user_id == user.id
    28. 

  28.   end
    29. 

  29. end
    30.