Sha256: a2e4c99f64bf5b2f32649195bbc2470a31c6e30e8e726428762b604fbcef75f2

Contents?: true

Size: 748 Bytes

Versions: 3

Compression:

Stored size: 748 Bytes

Contents

module Commontator
  class ApplicationController < ActionController::Base
    before_filter :get_user, :ensure_user
    
    rescue_from SecurityTransgression, :with => lambda { head(:forbidden) }
    
    protected

    def security_transgression_unless(check)
      raise SecurityTransgression unless check
    end

    def get_user
      @user = Commontator.current_user_proc.call(self)
    end

    def ensure_user
      security_transgression_unless(@user && @user.is_commontator)
    end

    def get_thread
      @thread = params[:thread_id].blank? ? \
        Commontator::Thread.find(params[:id]) : \
        Commontator::Thread.find(params[:thread_id])
      security_transgression_unless @thread.can_be_read_by? @user
    end
  end
end

Version data entries

3 entries across 3 versions & 1 rubygems

Version Path
commontator-4.8.0 app/controllers/commontator/application_controller.rb
commontator-4.7.2 app/controllers/commontator/application_controller.rb
commontator-4.7.1 app/controllers/commontator/application_controller.rb