Sha256: 9f82de06c841384b8ef37be1bd205e4d306081a6b70fbacb5b790db7d11ebf99

Contents?: true

Size: 1.41 KB

Versions: 22

Compression:

Stored size: 1.41 KB

Contents

# frozen_string_literal: true

require "active_support/concern"

module Decidim
  # Shared behaviour for controllers that need authorization to work.
  module NeedsAuthorization
    extend ActiveSupport::Concern

    included do
      check_authorization

      rescue_from CanCan::AccessDenied, with: :user_not_authorized
      rescue_from ActionAuthorization::Unauthorized, with: :user_not_authorized

      private

      # Overwrites `cancancan`'s method to point to the correct ability class,
      # since the gem expects the ability class to be in the root namespace.
      def current_ability
        @current_ability ||= current_ability_klass.new(current_user, ability_context)
      end

      def ability_context
        {
          current_settings: try(:current_settings),
          feature_settings: try(:feature_settings),
          current_organization: try(:current_organization),
          current_feature: try(:current_feature)
        }
      end

      # Handles the case when a user visits a path that is not allowed to them.
      # Redirects the user to the root path and shows a flash message telling
      # them they are not authorized.
      def user_not_authorized
        flash[:alert] = t("actions.unauthorized", scope: "decidim.core")
        redirect_to(request.referrer || user_not_authorized_path)
      end

      def user_not_authorized_path
        raise NotImplementedError
      end
    end
  end
end

Version data entries

22 entries across 22 versions & 2 rubygems

Version Path
decidim-core-0.6.8 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.8 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.7 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.7 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.6 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.6 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.5 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.5 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.4 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.4 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.3 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.3 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.2 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.2 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.1 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.1 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.6.0 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.6.0 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb
decidim-core-0.5.1 app/controllers/concerns/decidim/needs_authorization.rb
decidim-0.5.1 decidim-core/app/controllers/concerns/decidim/needs_authorization.rb