Sha256: db866bceb0ae7200174dd257686a61c35104a4963b1445128d9d56ff7d7c6585
Contents?: true
Size: 1.1 KB
Versions: 79
Compression:
Stored size: 1.1 KB
Contents
# frozen_string_literal: true
module Decidim
module Admin
# A Rails routes constraint to only allow access to an Organization admin to
# the organization dashboard.
class OrganizationDashboardConstraint
# Initializes the contraint.
#
# request [Rack::Request]
def initialize(request)
@request = request
end
# Checks if the user can access the organization dashboard.
#
# Returns boolean.
def matches?
user && user.organization == organization && user_has_permission_to_access_dashboard?
end
private
attr_reader :request
def organization
request.env["decidim.current_organization"]
end
def user
return unless request.env["warden"].authenticate!(scope: :user)
@user ||= request.env["warden"].user("user")
end
def user_has_permission_to_access_dashboard?
Decidim::Admin::Permissions.new(
user,
Decidim::PermissionAction.new(scope: :admin, action: :read, subject: :admin_dashboard)
).permissions.allowed?
end
end
end
end
Version data entries
79 entries across 79 versions & 1 rubygems