dmpopidor/app/policies/settings/plan_policy.rb at a1dc48faafee2d6e159cebc773fed7a740918fe3

Fork: 0

opidor / dmpopidor

Find file

Newer

Older

dmpopidor / app / policies / settings / plan_policy.rb

xsrust on 16 Sep 2016 336 bytes added authorization to settings/plans and settings/projects

Raw Blame History

class Settings::PlanPolicy < ApplicationPolicy

  attr_reader :user
  attr_reader :plan

  def initialize(user, plan)
    raise Pundit::NotAuthorizedError, "must be logged in" unless user
    @user = user
    @plan = plan
  end

  def show?
    @plan.readable_by(@user.id)
  end

  def update?
    @plan.editable_by(@user.id)
  end

end