2021-02-09 17:45:12 +08:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
|
|
module PermissionCheckableModel
|
|
|
|
|
extend ActiveSupport::Concern
|
|
|
|
|
|
2021-10-22 17:43:20 +08:00
|
|
|
included do
|
|
|
|
|
include PermissionExtends
|
|
|
|
|
|
|
|
|
|
scope :with_granted_permissions, lambda { |user, permissions|
|
|
|
|
|
left_outer_joins(user_assignments: :user_role)
|
|
|
|
|
.where(user_assignments: { user: user })
|
|
|
|
|
.where('user_roles.permissions @> ARRAY[?]::varchar[]', permissions)
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
2021-02-09 17:45:12 +08:00
|
|
|
def permission_granted?(user, permission)
|
|
|
|
|
user_role_permissions = load_user_role_permissions(user)
|
|
|
|
|
return false if user_role_permissions.blank?
|
|
|
|
|
|
|
|
|
|
user_role_permissions.include?(permission)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
|
|
def load_user_role_permissions(user)
|
2021-10-22 17:43:20 +08:00
|
|
|
if user_assignments.loaded?
|
|
|
|
|
user_assignments.detect { |user_assignment| user_assignment.user == user }&.user_role&.permissions
|
|
|
|
|
else
|
|
|
|
|
user_assignments.find_by(user: user)&.user_role&.permissions
|
|
|
|
|
end
|
2021-02-09 17:45:12 +08:00
|
|
|
end
|
|
|
|
|
end
|
