module Ddr::Auth::RoleBasedAccessControlsEnforcement

Public Class Methods

included(controller) click to toggle source
# File lib/ddr/auth/role_based_access_controls_enforcement.rb, line 5
def self.included(controller)
  controller.delegate :authorized_to_act_as_superuser?, to: :current_ability
  controller.helper_method :authorized_to_act_as_superuser?
end

Public Instance Methods

current_ability() click to toggle source
# File lib/ddr/auth/role_based_access_controls_enforcement.rb, line 10
def current_ability
  @current_ability ||= AbilityFactory.call(current_user, request.env)
end
enforce_show_permissions() click to toggle source
# File lib/ddr/auth/role_based_access_controls_enforcement.rb, line 14
def enforce_show_permissions
  authorize! Permissions::DISCOVER, params[:id]
end