Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 328845c283
Branches Tags
zammad
/
app
/
policies
/
controllers
/
settings_controller_policy.rb

settings_controller_policy.rb 927 B
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243 
  1. class Controllers::SettingsControllerPolicy < Controllers::ApplicationControllerPolicy
    2. 

  2.   default_permit!('admin.*')
    3. 

  3. 

  4.   def show?
    5. 

  5.     user.permissions!('admin.*')
    6. 

  6.     authorized_for_setting?(:show?)
    7. 

  7.   end
    8. 

  8. 

  9.   def update?
    10. 

  10.     updateable?
    11. 

  11.   end
    12. 

  12. 

  13.   def update_image?
    14. 

  14.     updateable?
    15. 

  15.   end
    16. 

  16. 

  17.   private
    18. 

  18. 

  19.   def setting
    20. 

  20.     @setting ||= Setting.lookup(id: record.params[:id])
    21. 

  21.   end
    22. 

  22. 

  23.   def authorized_for_setting?(query)
    24. 

  24.     Pundit.authorize(user, setting, query)
    25. 

  25.     true
    26. 

  26.   rescue Pundit::NotAuthorizedError
    27. 

  27.     not_authorized("required #{setting.preferences[:permission].inspect}")
    28. 

  28.   end
    29. 

  29. 

  30.   def updateable?
    31. 

  31.     return false if !user.permissions?('admin.*')
    32. 

  32.     return false if !authorized_for_setting?(:update?)
    33. 

  33. 

  34.     service_enabled?
    35. 

  35.   end
    36. 

  36. 

  37.   def service_enabled?
    38. 

  38.     return true if !Setting.get('system_online_service')
    39. 

  39.     return true if !setting.preferences[:online_service_disable]
    40. 

  40. 

  41.     not_authorized('service disabled')
    42. 

  42.   end
    43. 

  43. end
    44.