will/cancan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
cancan/lib/cancan/controller_additions.rb

41 lines
1.3 KiB
Ruby
Raw Blame History

module CanCan
module ControllerAdditions
def self.included(base)
base.helper_method :can?
end
def unauthorized!
raise AccessDenied, "You are unable to access this page."
end
def current_ability
::Ability.for_user(current_user)
end
def can?(*args)
(@current_ability ||= current_ability).can?(*args)
end
def load_resource # TODO this could use some refactoring
if params[:id]
instance_variable_set("@#{params[:controller].singularize}", params[:controller].singularize.camelcase.constantize.find(params[:id]))
elsif params[params[:controller].singularize.to_sym]
instance_variable_set("@#{params[:controller].singularize}", params[:controller].singularize.camelcase.constantize.new(params[params[:controller].singularize.to_sym]))
end
end
def authorize_resource # TODO this could use some refactoring
unauthorized! unless can?(params[:action].to_sym, instance_variable_get("@#{params[:controller].singularize}") || params[:controller].singularize.camelcase.constantize)
end
def load_and_authorize_resource
load_resource
authorize_resource
end
end
end
class ActionController::Base
include CanCan::ControllerAdditions
end
Reference in New Issue View Git Blame Copy Permalink