From 49bc6533e8e2e2c13c8c1487dbc05031ee41ef8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Juanjo=20Baz=C3=A1n?= <jjbazan@gmail.com>
Date: Fri, 29 Jul 2016 13:39:08 +0200
Subject: [PATCH] adds explicit permission to admin to read budgets

---
 app/controllers/admin/budgets_controller.rb | 2 ++
 app/models/abilities/administrator.rb       | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/app/controllers/admin/budgets_controller.rb b/app/controllers/admin/budgets_controller.rb
index d6f2789e6..02894240e 100644
--- a/app/controllers/admin/budgets_controller.rb
+++ b/app/controllers/admin/budgets_controller.rb
@@ -2,6 +2,8 @@ class Admin::BudgetsController < Admin::BaseController
 
   has_filters %w{open finished}, only: :index
 
+  load_and_authorize_resource
+
   def index
     @budgets = Budget.send(@current_filter).order(created_at: :desc).page(params[:page])
   end
diff --git a/app/models/abilities/administrator.rb b/app/models/abilities/administrator.rb
index 42e4ecbd3..65f97db2e 100644
--- a/app/models/abilities/administrator.rb
+++ b/app/models/abilities/administrator.rb
@@ -42,7 +42,7 @@ module Abilities
 
       can [:read, :update, :valuate, :destroy, :summary], SpendingProposal
 
-      can [:create, :update], Budget
+      can [:read, :create, :update], Budget
       can [:hide, :update], Budget::Investment
       can :valuate, Budget::Investment, budget: { valuating: true }
       can :create, Budget::ValuatorAssignment