Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: 7d475b1ac4
Branches Tags
zammad
/
app
/
models
/
organization
/
permission.rb

permission.rb 844 B
History Raw

123456789101112131415161718192021222324252627282930313233343536373839 
  1. # Copyright (C) 2012-2014 Zammad Foundation, http://zammad-foundation.org/
    2. 

  2. 

  3. class Organization
    4. 

  4.   module Permission
    5. 

  5. 

  6. =begin
    7. 

  7. 

  8. check if user has access to user
    9. 

  9. 

  10.   user   = Organization.find(123)
    11. 

  11.   result = organization.permission(type: 'rw', current_user: User.find(123))
    12. 

  12. 

  13. returns
    14. 

  14. 

  15.   result = true|false
    16. 

  16. 

  17. =end
    18. 

  18. 

  19.     def permission (data)
    20. 

  20. 

  21.       # check customer
    22. 

  22.       if data[:current_user].role?('Customer')
    23. 

  23. 

  24.         # access ok if its own organization
    25. 

  25.         return false if data[:type] != 'ro'
    26. 

  26.         return false if !data[:current_user].organization_id
    27. 

  27.         return true if id == data[:current_user].organization_id
    28. 

  28. 

  29.         # no access
    30. 

  30.         return false
    31. 

  31.       end
    32. 

  32. 

  33.       # check agent
    34. 

  34.       return true if data[:current_user].role?(Z_ROLENAME_ADMIN)
    35. 

  35.       return true if data[:current_user].role?('Agent')
    36. 

  36.       false
    37. 

  37.     end
    38. 

  38.   end
    39. 

  39. end
    40.