before_action :authorize_web
before_action :set_locale
- before_action :require_user
- before_action :check_permission
+
+ authorize_resource
+
before_action :find_issue, :only => [:show, :resolve, :reopen, :ignore]
def index
@issues = Issue.visible_to(current_user)
# If search
- if params[:search_by_user] && params[:search_by_user].present?
+ if params[:search_by_user]&.present?
@find_user = User.find_by(:display_name => params[:search_by_user])
if @find_user
@issues = @issues.where(:reported_user_id => @find_user.id)
end
end
- @issues = @issues.where(:status => params[:status]) if params[:status] && params[:status].present?
+ @issues = @issues.where(:status => params[:status]) if params[:status]&.present?
- @issues = @issues.where(:reportable_type => params[:issue_type]) if params[:issue_type] && params[:issue_type].present?
+ @issues = @issues.where(:reportable_type => params[:issue_type]) if params[:issue_type]&.present?
- if params[:last_updated_by] && params[:last_updated_by].present?
+ if params[:last_updated_by]&.present?
last_updated_by = params[:last_updated_by].to_s == "nil" ? nil : params[:last_updated_by].to_i
@issues = @issues.where(:updated_by => last_updated_by)
end
@issue = Issue.find(params[:id])
end
- def check_permission
- unless current_user.administrator? || current_user.moderator?
+ def deny_access(_exception)
+ if current_user
flash[:error] = t("application.require_moderator_or_admin.not_a_moderator_or_admin")
redirect_to root_path
+ else
+ super
end
end
end
projects / rails.git / blobdiff