Fork: 0
opidor / dmpopidor
Transfer to URL with SHA Find file
Newer
Older
dmpopidor / app / policies / note_policy.rb
@ray.carrick ray.carrick on 28 Mar 2017 449 bytes Change notes to work with AJAX calls.
Raw Blame History 
class NotePolicy < ApplicationPolicy
  attr_reader :user
  attr_reader :note

  def initialize(user, note)
    raise Pundit::NotAuthorizedError, "must be logged in" unless user
    @user = user
    @note = note
  end

  def create?
    @note.answer.plan.readable_by?(@user.id)
  end

  def update?
    Plan.find(@note.answer.plan_id).readable_by?(@user.id)
  end

  def archive?
    Plan.find(@note.answer.plan_id).readable_by?(@user.id)
  end

end