Home Explore Help
Sign In
SMusatov
/
zammad
mirror of https://github.com/zammad/zammad.git
1
0
Fork 0
Files
Branch: stable-5.4
Branches Tags
zammad
/
app
/
policies
/
controllers
/
application_controller_policy.rb

application_controller_policy.rb 976 B
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839 
  1. # Copyright (C) 2012-2023 Zammad Foundation, https://zammad-foundation.org/
    2. 

  2. 

  3. class Controllers::ApplicationControllerPolicy < ApplicationPolicy
    4. 

  4.   class_attribute(:action_permissions_map, default: {})
    5. 

  5. 

  6.   def self.inherited(subclass)
    7. 

  7.     super
    8. 

  8. 

  9.     subclass.action_permissions_map = action_permissions_map.deep_dup
    10. 

  10.   end
    11. 

  11. 

  12.   def self.default_permit!(permissions)
    13. 

  13.     action_permissions_map.default = permissions
    14. 

  14.   end
    15. 

  15. 

  16.   def self.permit!(actions, to:)
    17. 

  17.     Array(actions).each do |action|
    18. 

  18.       action_permissions_map[:"#{action}?"] = to
    19. 

  19.     end
    20. 

  20.   end
    21. 

  21. 

  22.   def method_missing(missing_method, *)
    23. 

  23.     case (permission = action_permissions_map[missing_method])
    24. 

  24.     when String, Array
    25. 

  25.       user.permissions!(permission)
    26. 

  26.     when Proc
    27. 

  27.       user.permissions!(instance_exec(&permission))
    28. 

  28.     else
    29. 

  29.       super
    30. 

  30.     end
    31. 

  31.   rescue Exceptions::Forbidden => e
    32. 

  32.     not_authorized(e)
    33. 

  33.   end
    34. 

  34. 

  35.   def respond_to_missing?(missing_method)
    36. 

  36.     action_permissions_map[missing_method] || super
    37. 

  37.   end
    38. 

  38. 

  39. end
    40.