scinote-web/app/permissions/project.rb

Canaid::Permissions.register_for(Project) do
  can :read_project do |user, project|
    user.is_member_of_project?(project) ||
      user.is_admin_of_team?(project.team) ||
      (project.visible? && user.is_member_of_team?(project.team))
  end

  can :manage_project do |user, project|
    user.is_owner_of_project?(project)
  end

  can :restore_project do |user, project|
    can_manage_project?(user, project) && project.archived?
  end

  can :create_experiment do |user, project|
    user.is_user_or_higher_of_project?(project)
  end

  can :add_comment_to_project do |user, project|
    user.is_technician_or_higher_of_project?(project)
  end

  # create, update, delete
  can :manage_tags do |user, project|
    user.is_user_or_higher_of_project?(project)
  end

  # create, update, delete
  can :manage_reports do |user, project|
    user.is_technician_or_higher_of_project?(project)
  end

  %i(read_project
     update_project
     create_experiment
     add_comment_to_project
     manage_tags
     manage_reports)
    .each do |perm|
    can perm do |_, project|
      project.active?
    end
  end
end

Canaid::Permissions.register_for(Comment) do
  can :update_or_delete_project_comment do |user, comment|
    comment.project.present? && (comment.user == user ||
      user.is_owner_of_project?(project))
  end

  %i(update_or_delete_project_comment)
    .each do |perm|
    can perm do |_, comment|
      comment.project.active?
    end
  end
end
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`Canaid::Permissions.register_for(Project) do`
			`can :read_project do \|user, project\|`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00			`user.is_member_of_project?(project) \|\|`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`user.is_admin_of_team?(project.team) \|\|`
			`(project.visible? && user.is_member_of_team?(project.team))`
			`end`

Renamed permission 'update_project' to 'manage_project'. Some permissions fixes; added them in some places where they were missing. 2018-02-03 01:48:55 +08:00			`can :manage_project do \|user, project\|`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`user.is_owner_of_project?(project)`
			`end`

			`can :restore_project do \|user, project\|`
Renamed permission 'update_project' to 'manage_project'. Some permissions fixes; added them in some places where they were missing. 2018-02-03 01:48:55 +08:00			`can_manage_project?(user, project) && project.archived?`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`end`

			`can :create_experiment do \|user, project\|`
			`user.is_user_or_higher_of_project?(project)`
			`end`

			`can :add_comment_to_project do \|user, project\|`
			`user.is_technician_or_higher_of_project?(project)`
			`end`

			`# create, update, delete`
			`can :manage_tags do \|user, project\|`
			`user.is_user_or_higher_of_project?(project)`
			`end`

			`# create, update, delete`
			`can :manage_reports do \|user, project\|`
			`user.is_technician_or_higher_of_project?(project)`
			`end`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00
Renamed permission 'update_project' to 'manage_project'. Some permissions fixes; added them in some places where they were missing. 2018-02-03 01:48:55 +08:00			`%i(read_project`
			`update_project`
			`create_experiment`
			`add_comment_to_project`
			`manage_tags`
			`manage_reports)`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00			`.each do \|perm\|`
			`can perm do \|_, project\|`
			`project.active?`
			`end`
			`end`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`end`

			`Canaid::Permissions.register_for(Comment) do`
			`can :update_or_delete_project_comment do \|user, comment\|`
			`comment.project.present? && (comment.user == user \|\|`
Used permissions where they were missing. 2018-01-22 23:25:53 +08:00			`user.is_owner_of_project?(project))`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`end`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00
Renamed permission 'update_project' to 'manage_project'. Some permissions fixes; added them in some places where they were missing. 2018-02-03 01:48:55 +08:00			`%i(update_or_delete_project_comment)`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00			`.each do \|perm\|`
Renamed permission 'update_project' to 'manage_project'. Some permissions fixes; added them in some places where they were missing. 2018-02-03 01:48:55 +08:00			`can perm do \|_, comment\|`
			`comment.project.active?`
Corrected some project level permissions; minor refactoring. 2018-02-03 01:19:03 +08:00			`end`
			`end`
Grouped existing project permissions and used 'canaid' gem. 2018-01-20 01:25:58 +08:00			`end`