Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 315231a13f
Branches Tags
zammad
/
app
/
controllers
/
concerns
/
checks_user_attributes_by_current_user_permission.rb

checks_user_attributes_by_current_user_permission.rb 461 B
History Raw

12345678910111213141516 
  1. # Copyright (C) 2012-2023 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. module ChecksUserAttributesByCurrentUserPermission
    4. 

  4.   extend ActiveSupport::Concern
    5. 

  5. 

  6.   private
    7. 

  7. 

  8.   def check_attributes_by_current_user_permission(params)
    9. 

  9.     authorize!
    10. 

  10. 

  11.     # admins can do whatever they want
    12. 

  12.     return true if current_user.permissions?('admin.user')
    13. 

  13. 

  14.     Service::User::FilterPermissionAssignments.new(current_user: current_user).execute(user_data: params)
    15. 

  15.   end
    16. 

  16. end
    17.