Mirrors/astuto
1
0
Fork 0
mirror of https://github.com/astuto/astuto.git synced 2025-12-16 03:37:56 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
00f18d2fb8f73468e2d7ae269c25fe9525863c43
astuto/app/policies/post_policy.rb
Riccardo Graziosi 0e96ff7ad4 Add role 'owner' to users (#185)
2023-01-18 21:11:27 +01:00

21 lines
422 B
Ruby
Raw Blame History

class PostPolicy < ApplicationPolicy
def permitted_attributes_for_create
[:title, :description, :board_id]
end
def permitted_attributes_for_update
if user.moderator?
[:title, :description, :board_id, :post_status_id]
else
[:title, :description]
end
end
def update?
user == record.user or user.moderator?
end
def destroy?
user == record.user or user.moderator?
end
end
Reference in New Issue View Git Blame Copy Permalink