module Spotlight::Ability
  include CanCan::Ability

  def initialize(user)
    user ||= ::User.new
    
    # This is the "right" way to do it. But it doesn't work in rails 4
    # until this PR is merged: https://github.com/ryanb/cancan/pull/917
    # can :create, Spotlight::Exhibit, admin_roles: { id: user.role_ids } 
    # Until then, workaround:

    # exhibit admin 
    can :manage, Spotlight::Exhibit, id: user.admin_roles.map(&:exhibit_id)
    can :manage, [Spotlight::Role], exhibit_id: user.admin_roles.map(&:exhibit_id)

    # exhibit curator
    can :manage, [
      Spotlight::Search,
      Spotlight::Page,
      Spotlight::BlacklightConfiguration,
      Spotlight::Contact,
      Spotlight::CustomField], exhibit_id: user.roles.map(&:exhibit_id)

    can [:curate, :tag], Spotlight::Exhibit, id: user.roles.map(&:exhibit_id)

    # public
    can [:read, :index], [Spotlight::Exhibit, Spotlight::Page, Spotlight::Search]

  end
end