Home Verkennen Help
Registreren Inloggen
maarten
/
aardbei
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Commits 243 Publicaties 0 Wiki
Bladeren bron

Prevent non-organizers from editing

Maarten van den Berg 7 jaren geleden
bovenliggende
2e4d2e0445
commit
1909ddcf03
2 gewijzigde bestanden met toevoegingen van 7 en 0 verwijderingen
Gecombineerde weergave Toon Diff Stats
  1. 1 0
      app/controllers/activities_controller.rb
  2. 6 0
      app/helpers/activities_helper.rb

+ 1 - 0
app/controllers/activities_controller.rb
Bestand weergeven

4 
   before_action :set_group
 4 
   before_action :set_group
5 
   before_action :require_membership!
 5 
   before_action :require_membership!
6 
   before_action :require_leader!, only: [:mass_new, :mass_create, :new, :create, :destroy]
 6 
   before_action :require_leader!, only: [:mass_new, :mass_create, :new, :create, :destroy]
7 
+  before_action :require_organizer!, only: [:edit, :update, :change_organizer]
7
8
8 
   # GET /groups/:id/activities
 9 
   # GET /groups/:id/activities
9 
   # GET /activities.json
 10 
   # GET /activities.json

+ 6 - 0
app/helpers/activities_helper.rb
Bestand weergeven

1 
 module ActivitiesHelper
 1 
 module ActivitiesHelper
2 
+  def require_organizer!
3 
+    if !@activity.may_change?(current_person)
4 
+      flash_message(:danger, I18n.t('authentication.organizer_required'))
5 
+      redirect_to group_activity_path(@group, @activity)
6 
+    end
7 
+  end
2 
 end
 8 
 end