X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/6da3ece68354f77f626de8963770c0217048e19d..f11221f05bcdd05edd7a9f97d6d57e7baaeb4921:/app/models/ability.rb diff --git a/app/models/ability.rb b/app/models/ability.rb index 897316691..f55f19e4e 100644 --- a/app/models/ability.rb +++ b/app/models/ability.rb @@ -3,13 +3,30 @@ class Ability include CanCan::Ability - def initialize(user, token) - can :index, :site - can [:permalink, :edit, :help, :fixthemap, :offline, :export, :about, :preview, :copyright, :key, :id, :welcome], :site + def initialize(user) + can [:index, :permalink, :edit, :help, :fixthemap, :offline, :export, :about, :preview, :copyright, :key, :id], :site + can [:index, :rss, :show, :comments], DiaryEntry + can [:search, :search_latlon, :search_ca_postcode, :search_osm_nominatim, + :search_geonames, :search_osm_nominatim_reverse, :search_geonames_reverse], :geocoder if user - can :weclome, :site + can :welcome, :site + can [:create, :edit, :comment, :subscribe, :unsubscribe], DiaryEntry + can [:new, :create], Report + can [:read, :read_one, :update, :update_one, :delete_one], UserPreference + + if user.moderator? + can [:index, :show, :resolve, :ignore, :reopen], Issue + can :create, IssueComment + end + + if user.administrator? + can [:hide, :hidecomment], [DiaryEntry, DiaryComment] + can [:index, :show, :resolve, :ignore, :reopen], Issue + can :create, IssueComment + end end + # Define abilities for the passed in user here. For example: # # user ||= User.new # guest user (not logged in) @@ -37,8 +54,4 @@ class Ability # See the wiki for details: # https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities end - - def has_capability?(token, cap) - token && token.read_attribute(cap) - end end