Fork: 0
opidor / dmpopidor
Download ZIP 520 commits
Transfer to URL with SHA
dmpopidor / app / policies /
latest commit 07aae6cf59
@xsrust xsrust authored on 28 Sep 2016
..
settings added authorization to settings/plans and settings/projects 9 years ago
answer_policy.rb moved authorization logic from comments controller to policy file. Additionally removed unused crud methods 9 years ago
application_policy.rb forced all actions to be authenticated through pundit 9 years ago
comment_policy.rb moved authorization logic from comments controller to policy file. Additionally removed unused crud methods 9 years ago
dmptemplate_policy.rb fixed issue where orgs cannot customise other org's(funders) templates. logic for this auth limiting dosent make me happy as it potentially allows organisations to submit edited json via post and change the other organisations existing sections, even if that option is not available through the ui 9 years ago
guidance_group_policy.rb bugfixes to auth 9 years ago
guidance_policy.rb bugfixes to auth 9 years ago
organisation_policy.rb forced auth on organisations_controller. TODO: re-check parent, children, and templates after AJAX removed 9 years ago
plan_policy.rb removed unused json responses and added auth to plans controller 9 years ago
project_group_policy.rb added auth and removed json from project_groups controller. additionally added constraint to projects and plans controllers that all actions must be authenticated through pundit 9 years ago
project_policy.rb removed json and added authorization to projects controller 9 years ago
token_permission_type_policy.rb bugfixes to auth 9 years ago
user_policy.rb added ability to grant permissions to other users 9 years ago