Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Tree: c45b5ac51f
Branches Tags
zammad
/
app
/
controllers
/
application_controller
/
authorizes.rb

authorizes.rb 839 B
History Raw

12345678910111213141516171819202122232425262728293031323334 
  1. module ApplicationController::Authorizes
    2. 

  2.   extend ActiveSupport::Concern
    3. 

  3.   include Pundit
    4. 

  4. 

  5.   private
    6. 

  6. 

  7.   def authorize!(record = policy_record, query = nil)
    8. 

  8.     authorize(record, query)
    9. 

  9.   end
    10. 

  10. 

  11.   def authorized?(record = policy_record, query = nil)
    12. 

  12.     authorize!(record, query)
    13. 

  13.     true
    14. 

  14.   rescue Exceptions::Forbidden, Pundit::NotAuthorizedError
    15. 

  15.     false
    16. 

  16.   end
    17. 

  17. 

  18.   def policy_record
    19. 

  19.     # check permissions in matching Pundit policy
    20. 

  20.     # Controllers namspace is used (See: https://github.com/varvet/pundit#policy-namespacing)
    21. 

  21.     # [:controllers, self] => Controllers::RolesControllerPolicy
    22. 

  22.     [:controllers, self]
    23. 

  23.   end
    24. 

  24. 

  25.   def pundit_user
    26. 

  26.     @pundit_user ||= begin
    27. 

  27.       if current_user_on_behalf
    28. 

  28.         UserContext.new(current_user_on_behalf)
    29. 

  29.       else
    30. 

  30.         UserContext.new(current_user_real, @_token)
    31. 

  31.       end
    32. 

  32.     end
    33. 

  33.   end
    34. 

  34. end
    35.