consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add cancan authorization in all main urls

Browse Source
This commit is contained in:
kikito
2015-08-10 14:59:42 +02:00
parent a9a4f4fb81
commit 30e738a2fe
4 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
app/controllers/admin/base_controller.rb
View File

@@ -1,5 +1,6 @@
class Admin::BaseController < ApplicationController class Admin::BaseController < ApplicationController
skip_authorization_check
before_filter :verify_administrator before_filter :verify_administrator
private private

3
app/controllers/application_controller.rb
View File

@@ -1,6 +1,9 @@
require "application_responder" require "application_responder"
class ApplicationController < ActionController::Base class ApplicationController < ActionController::Base
check_authorization unless: :devise_controller?
self.responder = ApplicationResponder self.responder = ApplicationResponder
respond_to :html respond_to :html

1
app/controllers/moderation/base_controller.rb
View File

@@ -1,5 +1,6 @@
class Moderation::BaseController < ApplicationController class Moderation::BaseController < ApplicationController
skip_authorization_check
before_filter :verify_moderator before_filter :verify_moderator
private private

2
app/models/ability.rb
View File

@@ -7,7 +7,7 @@ class Ability
if user # logged-in users if user # logged-in users
can [:read, :create, :vote], Debate can [:read, :create, :vote], Debate
can :edit, Debate do |debate| can :update, Debate do |debate|
debate.editable_by?(user) debate.editable_by?(user)
end end