scinote-web/app/permissions/experiment.rb

Canaid::Permissions.register_for(Experiment) do
  # Experiment and its project must be active for all the specified permissions
  %i(read_experiment
     manage_experiment
     archive_experiment
     clone_experiment
     move_experiment)
    .each do |perm|
    can perm do |_, experiment|
      experiment.active? &&
        experiment.project.active?
    end
  end

  # experiment: read (read archive)
  # canvas: read
  # module: read (read users, read comments, read archive)
  # result: read (read comments)
  can :read_experiment do |user, experiment|
    can_read_project?(user, experiment.project)
  end

  # experiment: create/update/delete
  # canvas: update
  # module: create, copy, reposition, create/update/delete connection,
  #         assign/reassign/unassign tags
  can :manage_experiment do |user, experiment|
    user.is_user_or_higher_of_project?(experiment.project) &&
      MyModule.joins(:experiment).where(experiment: experiment).all? do |my_module|
        if my_module.my_module_status
          my_module.my_module_status.my_module_status_implications.all? { |implication| implication.call(my_module) }
        else
          true
        end
      end
  end

  # experiment: archive
  can :archive_experiment do |user, experiment|
    can_manage_experiment?(user, experiment)
  end

  # NOTE: Must not be dependent on canaid parmision for which we check if it's
  # active
  # experiment: restore
  can :restore_experiment do |user, experiment|
    user.is_user_or_higher_of_project?(experiment.project) &&
      experiment.archived?
  end

  # experiment: copy
  can :clone_experiment do |user, experiment|
    user.is_user_or_higher_of_project?(experiment.project) &&
      user.is_normal_user_or_admin_of_team?(experiment.project.team)
  end

  # experiment: move
  can :move_experiment do |user, experiment|
    can_clone_experiment?(user, experiment)
  end
end

Canaid::Permissions.register_for(MyModule) do
  # Module, its experiment and its project must be active for all the specified
  # permissions
  # Also checking status implications
  %i(manage_module
     manage_users_in_module
     assign_repository_rows_to_module
     assign_sample_to_module
     complete_module
     create_comments_in_module
     create_my_module_repository_snapshot
     manage_my_module_repository_snapshots)
    .each do |perm|
    can perm do |_, my_module|
      my_module.active? &&
        my_module.experiment.active? &&
        my_module.experiment.project.active? &&
        (if my_module.my_module_status
           my_module.my_module_status&.my_module_status_implications&.all? { |implication| implication.call(my_module) }
         else
           true
         end)
    end
  end

  # module: update, archive, move
  # result: create, update
  can :manage_module do |user, my_module|
    can_manage_experiment?(user, my_module.experiment)
  end

  # NOTE: Must not be dependent on canaid parmision for which we check if it's
  # active
  # module: restore
  can :restore_module do |user, my_module|
    user.is_user_or_higher_of_project?(my_module.experiment.project) &&
      my_module.archived?
  end

  # module: assign/reassign/unassign users
  can :manage_users_in_module do |user, my_module|
    user.is_owner_of_project?(my_module.experiment.project)
  end

  # module: assign/unassign repository record
  # NOTE: Use 'module_page? &&' before calling this permission!
  can :assign_repository_rows_to_module do |user, my_module|
    user.is_technician_or_higher_of_project?(my_module.experiment.project)
  end

  # module: assign/unassign sample
  # NOTE: Use 'module_page? &&' before calling this permission!
  can :assign_sample_to_module do |user, my_module|
    user.is_technician_or_higher_of_project?(my_module.experiment.project)
  end

  # module: complete/uncomplete
  can :complete_module do |user, my_module|
    user.is_technician_or_higher_of_project?(my_module.experiment.project)
  end

  # module: create comment
  # result: create comment
  # step: create comment
  can :create_comments_in_module do |user, my_module|
    can_create_comments_in_project?(user, my_module.experiment.project)
  end

  # module: create a snapshot of repository item
  can :create_my_module_repository_snapshot do |user, my_module|
    user.is_technician_or_higher_of_project?(my_module.experiment.project)
  end

  # module: make a repository snapshot selected
  can :manage_my_module_repository_snapshots do |user, my_module|
    user.is_technician_or_higher_of_project?(my_module.experiment.project)
  end
end

Canaid::Permissions.register_for(Protocol) do
  # Protocol needs to be in a module for all Protocol permissions below
  # experiment level
  %i(read_protocol_in_module
     manage_protocol_in_module
     complete_or_checkbox_step)
    .each do |perm|
    can perm do |_, protocol|
      protocol.in_module?
    end
  end

  # Module, its experiment and its project must be active for all the specified
  # permissions
  %i(read_protocol_in_module
     manage_protocol_in_module
     complete_or_checkbox_step)
    .each do |perm|
    can perm do |_, protocol|
      my_module = protocol.my_module
      my_module.active? &&
        my_module.experiment.active? &&
        my_module.experiment.project.active?
    end
  end

  # protocol in module: read
  # step in module: read, read comments, read/download assets
  can :read_protocol_in_module do |user, protocol|
    can_read_experiment?(user, protocol.my_module.experiment)
  end

  # protocol in module: create/update/delete, unlink, revert, update from
  # protocol in repository, update from file
  # step in module: create/update/delete, reorder
  can :manage_protocol_in_module do |user, protocol|
    can_manage_module?(user, protocol.my_module)
  end

  # step: complete/uncomplete
  can :complete_or_checkbox_step do |user, protocol|
    can_complete_module?(user, protocol.my_module)
  end
end

Canaid::Permissions.register_for(Result) do
  # Module, its experiment and its project must be active for all the specified
  # permissions
  %i(manage_result).each do |perm|
    can perm do |_, result|
      my_module = result.my_module
      my_module.active? &&
        my_module.experiment.active? &&
        my_module.experiment.project.active?
    end
  end

  # result: delete, archive
  can :manage_result do |user, result|
    result.unlocked?(result) &&
      user.is_owner_of_project?(result.my_module.experiment.project)
  end
end

Canaid::Permissions.register_for(Comment) do
  # Module, its experiment and its project must be active for all the specified
  # permissions
  %i(manage_comment_in_module)
    .each do |perm|
    can perm do |_, comment|
      my_module = ::PermissionsUtil.get_comment_module(comment)
      my_module.active? &&
        my_module.experiment.active? &&
        my_module.experiment.project.active?
    end
  end

  # module: update/delete comment
  # result: update/delete comment
  # step: update/delete comment
  can :manage_comment_in_module do |user, comment|
    my_module = ::PermissionsUtil.get_comment_module(comment)
    project = my_module.experiment.project
    # Same check as in `can_manage_comment_in_project?`
    project.present? &&
      (user.is_owner_of_project?(project) || comment.user == user)
  end
end
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`Canaid::Permissions.register_for(Experiment) do`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`# Experiment and its project must be active for all the specified permissions`
			`%i(read_experiment`
			`manage_experiment`
			`archive_experiment`
			`clone_experiment`
			`move_experiment)`
			`.each do \|perm\|`
			`can perm do \|_, experiment\|`
			`experiment.active? &&`
			`experiment.project.active?`
			`end`
			`end`

Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# experiment: read (read archive)`
			`# canvas: read`
			`# module: read (read users, read comments, read archive)`
			`# result: read (read comments)`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`can :read_experiment do \|user, experiment\|`
Minor experiment level permissions refactoring. 2018-02-12 21:17:17 +08:00			`can_read_project?(user, experiment.project)`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`

Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`# experiment: create/update/delete`
			`# canvas: update`
Fixed protocol in repository permissions, and refactored it a bit. 2018-02-16 19:03:44 +08:00			`# module: create, copy, reposition, create/update/delete connection,`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# assign/reassign/unassign tags`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`can :manage_experiment do \|user, experiment\|`
Add status implications checks to the permissions [SCI-4825] 2020-07-21 22:00:09 +08:00			`user.is_user_or_higher_of_project?(experiment.project) &&`
			`MyModule.joins(:experiment).where(experiment: experiment).all? do \|my_module\|`
			`if my_module.my_module_status`
			`my_module.my_module_status.my_module_status_implications.all? { \|implication\| implication.call(my_module) }`
			`else`
			`true`
			`end`
			`end`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`

Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`# experiment: archive`
			`can :archive_experiment do \|user, experiment\|`
			`can_manage_experiment?(user, experiment)`
			`end`

Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`# NOTE: Must not be dependent on canaid parmision for which we check if it's`
			`# active`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`# experiment: restore`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`can :restore_experiment do \|user, experiment\|`
Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`user.is_user_or_higher_of_project?(experiment.project) &&`
			`experiment.archived?`
Grouped remaining permissions for experiment, protocol, task, and partially step levels. [SCI-1964] 2018-02-02 01:41:28 +08:00			`end`

Fixed protocol in repository permissions, and refactored it a bit. 2018-02-16 19:03:44 +08:00			`# experiment: copy`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`can :clone_experiment do \|user, experiment\|`
Grouped remaining permissions for experiment, protocol, task, and partially step levels. [SCI-1964] 2018-02-02 01:41:28 +08:00			`user.is_user_or_higher_of_project?(experiment.project) &&`
			`user.is_normal_user_or_admin_of_team?(experiment.project.team)`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00
			`# experiment: move`
			`can :move_experiment do \|user, experiment\|`
			`can_clone_experiment?(user, experiment)`
			`end`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`end`

			`Canaid::Permissions.register_for(MyModule) do`
			`# Module, its experiment and its project must be active for all the specified`
			`# permissions`
Add status implications checks to the permissions [SCI-4825] 2020-07-21 22:00:09 +08:00			`# Also checking status implications`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`%i(manage_module`
			`manage_users_in_module`
Fix sample assign permissions [SCI-2249] 2018-03-26 02:10:32 +08:00			`assign_repository_rows_to_module`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`assign_sample_to_module`
			`complete_module`
SCI-4674 check if experiment and projects are active during snapshot creation 2020-05-25 21:56:39 +08:00			`create_comments_in_module`
SCI-4674 fix stupid 2020-05-25 22:30:22 +08:00			`create_my_module_repository_snapshot`
			`manage_my_module_repository_snapshots)`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`.each do \|perm\|`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`can perm do \|_, my_module\|`
			`my_module.active? &&`
			`my_module.experiment.active? &&`
Add status implications checks to the permissions [SCI-4825] 2020-07-21 22:00:09 +08:00			`my_module.experiment.project.active? &&`
			`(if my_module.my_module_status`
			`my_module.my_module_status&.my_module_status_implications&.all? { \|implication\| implication.call(my_module) }`
			`else`
			`true`
			`end)`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`end`
			`end`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00
Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`# module: update, archive, move`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# result: create, update`
			`can :manage_module do \|user, my_module\|`
			`can_manage_experiment?(user, my_module.experiment)`
			`end`

Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`# NOTE: Must not be dependent on canaid parmision for which we check if it's`
			`# active`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`# module: restore`
Grouped remaining permissions for experiment, protocol, task, and partially step levels. [SCI-1964] 2018-02-02 01:41:28 +08:00			`can :restore_module do \|user, my_module\|`
Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`user.is_user_or_higher_of_project?(my_module.experiment.project) &&`
			`my_module.archived?`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`end`

Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# module: assign/reassign/unassign users`
			`can :manage_users_in_module do \|user, my_module\|`
			`user.is_owner_of_project?(my_module.experiment.project)`
			`end`

Fix sample assign permissions [SCI-2249] 2018-03-26 02:10:32 +08:00			`# module: assign/unassign repository record`
Fixed permission error when accessing samples page. 2018-02-10 02:20:06 +08:00			`# NOTE: Use 'module_page? &&' before calling this permission!`
Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`can :assign_repository_rows_to_module do \|user, my_module\|`
Fixed permission error when accessing samples page. 2018-02-10 02:20:06 +08:00			`user.is_technician_or_higher_of_project?(my_module.experiment.project)`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`end`

Fix sample assign permissions [SCI-2249] 2018-03-26 02:10:32 +08:00			`# module: assign/unassign sample`
			`# NOTE: Use 'module_page? &&' before calling this permission!`
			`can :assign_sample_to_module do \|user, my_module\|`
			`user.is_technician_or_higher_of_project?(my_module.experiment.project)`
			`end`

Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# module: complete/uncomplete`
			`can :complete_module do \|user, my_module\|`
			`user.is_technician_or_higher_of_project?(my_module.experiment.project)`
			`end`

			`# module: create comment`
			`# result: create comment`
			`# step: create comment`
Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`can :create_comments_in_module do \|user, my_module\|`
			`can_create_comments_in_project?(user, my_module.experiment.project)`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`end`
SCI-4674 create special permissions for snapshots on task 2020-05-25 21:49:31 +08:00
			`# module: create a snapshot of repository item`
SCI-4674 name permissions more properly 2020-05-25 22:29:00 +08:00			`can :create_my_module_repository_snapshot do \|user, my_module\|`
SCI-4674 create special permissions for snapshots on task 2020-05-25 21:49:31 +08:00			`user.is_technician_or_higher_of_project?(my_module.experiment.project)`
			`end`

			`# module: make a repository snapshot selected`
SCI-4674 name permissions more properly 2020-05-25 22:29:00 +08:00			`can :manage_my_module_repository_snapshots do \|user, my_module\|`
SCI-4674 create special permissions for snapshots on task 2020-05-25 21:49:31 +08:00			`user.is_technician_or_higher_of_project?(my_module.experiment.project)`
			`end`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`end`

			`Canaid::Permissions.register_for(Protocol) do`
			`# Protocol needs to be in a module for all Protocol permissions below`
			`# experiment level`
			`%i(read_protocol_in_module`
			`manage_protocol_in_module`
			`complete_or_checkbox_step)`
			`.each do \|perm\|`
			`can perm do \|_, protocol\|`
			`protocol.in_module?`
			`end`
			`end`

Added some additional comments for checking if project is active in permissions. 2018-02-14 00:14:57 +08:00			`# Module, its experiment and its project must be active for all the specified`
			`# permissions`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`%i(read_protocol_in_module`
			`manage_protocol_in_module`
			`complete_or_checkbox_step)`
			`.each do \|perm\|`
			`can perm do \|_, protocol\|`
			`my_module = protocol.my_module`
Added missing checks for whether task/experiment/project is active for experiment level permissions. Minor code refactoring and restyling. 2018-02-10 01:18:41 +08:00			`my_module.active? &&`
			`my_module.experiment.active? &&`
			`my_module.experiment.project.active?`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`end`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`

Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`# protocol in module: read`
Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`# step in module: read, read comments, read/download assets`
Grouped remaining permissions for experiment, protocol, task, and partially step levels. [SCI-1964] 2018-02-02 01:41:28 +08:00			`can :read_protocol_in_module do \|user, protocol\|`
Forgot to remove unneeded code form permissions after the previous refactoring. 2018-03-04 22:17:46 +08:00			`can_read_experiment?(user, protocol.my_module.experiment)`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`

Minor experiment level permissions refactoring. 2018-02-12 21:17:17 +08:00			`# protocol in module: create/update/delete, unlink, revert, update from`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00			`# protocol in repository, update from file`
Overall refactoring of all canaid permissions and code related to their calls. 2018-02-16 01:46:29 +08:00			`# step in module: create/update/delete, reorder`
Grouped remaining permissions for experiment, protocol, task, and partially step levels. [SCI-1964] 2018-02-02 01:41:28 +08:00			`can :manage_protocol_in_module do \|user, protocol\|`
Forgot to remove unneeded code form permissions after the previous refactoring. 2018-03-04 22:17:46 +08:00			`can_manage_module?(user, protocol.my_module)`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`end`

			`# step: complete/uncomplete`
			`can :complete_or_checkbox_step do \|user, protocol\|`
Forgot to remove unneeded code form permissions after the previous refactoring. 2018-03-04 22:17:46 +08:00			`can_complete_module?(user, protocol.my_module)`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`end`
Readded module level archive, move, clone and manag permissions. Corrected their usage and add the permissions check in some additional places. 2018-02-07 18:49:15 +08:00
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`Canaid::Permissions.register_for(Result) do`
Added some additional comments for checking if project is active in permissions. 2018-02-14 00:14:57 +08:00			`# Module, its experiment and its project must be active for all the specified`
			`# permissions`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`%i(manage_result).each do \|perm\|`
			`can perm do \|_, result\|`
			`my_module = result.my_module`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`my_module.active? &&`
			`my_module.experiment.active? &&`
			`my_module.experiment.project.active?`
			`end`
			`end`

Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`# result: delete, archive`
			`can :manage_result do \|user, result\|`
			`result.unlocked?(result) &&`
			`user.is_owner_of_project?(result.my_module.experiment.project)`
			`end`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`end`
Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`Canaid::Permissions.register_for(Comment) do`
Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`# Module, its experiment and its project must be active for all the specified`
			`# permissions`
Minor permissions refactoring, including putting the same checks for multiple permissions before the specific ones, hence preventing further evaluation if those permissions are not met. 2018-03-04 21:19:17 +08:00			`%i(manage_comment_in_module)`
			`.each do \|perm\|`
			`can perm do \|_, comment\|`
			`my_module = ::PermissionsUtil.get_comment_module(comment)`
Fixed protocol and archive permission calls, fixed result permissions; module group managing is now also allowed on newly created groups; other permission call fixes and some refactoring. 2018-02-19 21:47:36 +08:00			`my_module.active? &&`
			`my_module.experiment.active? &&`
			`my_module.experiment.project.active?`
			`end`
			`end`

Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`# module: update/delete comment`
			`# result: update/delete comment`
			`# step: update/delete comment`
			`can :manage_comment_in_module do \|user, comment\|`
Put permissions helper methods inside utility module. 2018-02-22 03:22:13 +08:00			`my_module = ::PermissionsUtil.get_comment_module(comment)`
Fixed comments permissions for experiment level. 2018-02-13 21:59:30 +08:00			`project = my_module.experiment.project`
			# Same check as in `can_manage_comment_in_project?`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`project.present? &&`
Fixed comments permissions for experiment level. 2018-02-13 21:59:30 +08:00			`(user.is_owner_of_project?(project) \|\| comment.user == user)`
Refactored remaining experiment level permissions (and everything below it). 2018-02-09 23:14:40 +08:00			`end`
Grouped permissions for experiment with canaid gem (WIP). 2018-01-29 18:36:36 +08:00			`end`