PonyMirrors/philomena
1
0
Fork 0
mirror of https://github.com/philomena-dev/philomena.git synced 2024-11-24 04:27:59 +01:00
Code Issues Projects Releases Packages Wiki Activity

force authorization

Browse source
This commit is contained in:
byte[] 2019-12-08 12:50:44 -05:00
parent 9f6ac9753d
commit dc1cacbcc7
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
lib/philomena_web/controllers/admin/report_controller.ex
View file

@ -8,6 +8,7 @@ defmodule PhilomenaWeb.Admin.ReportController do
alias Philomena.Repo
import Ecto.Query
plug :verify_authorized
plug :load_and_authorize_resource, model: Report, only: [:show], preload: [:admin, user: [:linked_tags, awards: :badge]]
def index(conn, %{"rq" => query_string}) do
@ -80,4 +81,11 @@ defmodule PhilomenaWeb.Admin.ReportController do
%{created_at: :desc}
]
end
defp verify_authorized(conn, _opts) do
case Canada.Can.can?(conn.assigns.current_user, :index, Report) do
true -> conn
false -> PhilomenaWeb.NotAuthorizedPlug.call(conn)
end
end
end