Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 304d47d74b
Branches Tags
zammad
/
app
/
controllers
/
application_controller
/
authorizes.rb

authorizes.rb 931 B
History Raw

123456789101112131415161718192021222324252627282930313233343536 
  1. # Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. module ApplicationController::Authorizes
    4. 

  4.   extend ActiveSupport::Concern
    5. 

  5.   include Pundit::Authorization
    6. 

  6. 

  7.   private
    8. 

  8. 

  9.   def authorize!(record = policy_record, query = nil)
    10. 

  10.     authorize(record, query)
    11. 

  11.   end
    12. 

  12. 

  13.   def authorized?(record = policy_record, query = nil)
    14. 

  14.     authorize!(record, query)
    15. 

  15.     true
    16. 

  16.   rescue Exceptions::Forbidden, Pundit::NotAuthorizedError
    17. 

  17.     false
    18. 

  18.   end
    19. 

  19. 

  20.   def policy_record
    21. 

  21.     # check permissions in matching Pundit policy
    22. 

  22.     # Controllers namspace is used (See: https://github.com/varvet/pundit#policy-namespacing)
    23. 

  23.     # [:controllers, self] => Controllers::RolesControllerPolicy
    24. 

  24.     [:controllers, self]
    25. 

  25.   end
    26. 

  26. 

  27.   def pundit_user
    28. 

  28.     @pundit_user ||= begin
    29. 

  29.       if current_user_on_behalf
    30. 

  30.         UserContext.new(current_user_on_behalf)
    31. 

  31.       else
    32. 

  32.         UserContext.new(current_user_real, @_token)
    33. 

  33.       end
    34. 

  34.     end
    35. 

  35.   end
    36. 

  36. end
    37.