Mirrors/astuto
1
0
Fork 0
mirror of https://github.com/astuto/astuto.git synced 2025-12-15 19:27:52 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
bc15140512cff901cdc05a0d4cf2ff00394ce197
astuto/app/policies/post_policy.rb
Riccardo Graziosi bc15140512 Add edit and delete actions to posts and comments (#125)
2022-06-22 10:17:42 +02:00

21 lines
425 B
Ruby
Raw Blame History

class PostPolicy < ApplicationPolicy
def permitted_attributes_for_create
[:title, :description, :board_id]
end
def permitted_attributes_for_update
if user.power_user?
[:title, :description, :board_id, :post_status_id]
else
[:title, :description]
end
end
def update?
user == record.user or user.power_user?
end
def destroy?
user == record.user or user.power_user?
end
end
Reference in New Issue View Git Blame Copy Permalink