Module: Sufia::Ability

Extended by:

ActiveSupport::Concern

Defined in:

app/models/concerns/sufia/ability.rb

Instance Method Summary

• #admin_set_abilities ⇒ Object
• #citation_abilities ⇒ Object
• #editor_abilities ⇒ Object
• #feature_abilities ⇒ Object
• #featured_work_abilities ⇒ Object
• #proxy_deposit_abilities ⇒ Object
• #stats_abilities ⇒ Object
• #uploaded_file_abilities ⇒ Object
• #user_abilities ⇒ Object

Instance Method Details

#admin_set_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 68

def admin_set_abilities
  can :manage, [AdminSet, Sufia::PermissionTemplate, Sufia::PermissionTemplateAccess] if admin?

  can [:create, :edit, :update, :destroy], Sufia::PermissionTemplate do |template|
    test_edit(template.admin_set_id)
  end

  can [:create, :edit, :update, :destroy], Sufia::PermissionTemplateAccess do |access|
    test_edit(access.permission_template.admin_set_id)
  end
end

#citation_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 60

def citation_abilities
  alias_action :citation, to: :read
end

#editor_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 45

def editor_abilities
  can :read, ContentBlock
  return unless admin?

  can :read, :admin_dashboard
  can :create, TinymceAsset
  can [:create, :update], ContentBlock
  can :edit, ::SolrDocument
end

#feature_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 64

def feature_abilities
  can :manage, Sufia::Feature if admin?
end

#featured_work_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 41

def featured_work_abilities
  can [:create, :destroy, :update], FeaturedWork if admin?
end

#proxy_deposit_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 26

def proxy_deposit_abilities
  can :transfer, String do |id|
    user_is_depositor?(id)
  end
  can :create, ProxyDepositRequest if registered_user?
  can :accept, ProxyDepositRequest, receiving_user_id: current_user.id, status: 'pending'
  can :reject, ProxyDepositRequest, receiving_user_id: current_user.id, status: 'pending'
  # a user who sent a proxy deposit request can cancel it if it's pending.
  can :destroy, ProxyDepositRequest, sending_user_id: current_user.id, status: 'pending'
end

#stats_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 55

def stats_abilities
  can :read, Sufia::Statistics if admin?
  alias_action :stats, to: :read
end

#uploaded_file_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 17

def uploaded_file_abilities
  return unless registered_user?
  can :create, [UploadedFile, BatchUploadItem]
  can :destroy, UploadedFile, user: current_user
  # BatchUploadItem permissions depend on the kind of objects being made by the batch,
  # but it must be authorized directly in the controller, not here.
  # Note: cannot call `authorized_models` without going recursive.
end

#user_abilities ⇒ Object

# File 'app/models/concerns/sufia/ability.rb', line 37

def user_abilities
  can [:edit, :update, :toggle_trophy], ::User, id: current_user.id
end