scinote-eln/scinote-web
1
1
Fork 0
mirror of https://github.com/scinote-eln/scinote-web.git synced 2025-03-09 14:13:16 +08:00
Code Issues Projects Releases Packages Wiki Activity

set move and clone permissions to also validate the user on the organizational level [fixes SCI-372]

Browse source
This commit is contained in:
zmagod 2016-09-08 09:23:29 +02:00
parent 00cc8f7e55
commit faed0500c7
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
app/helpers/permission_helper.rb
View file

@ -351,8 +351,6 @@ module PermissionHelper
def can_view_experiment_actions(experiment)
can_edit_experiment(experiment) &&
can_clone_experiment(experiment) &&
can_move_experiment(experiment) &&
can_archive_experiment(experiment)
end
@ -385,11 +383,13 @@ module PermissionHelper
end
def can_clone_experiment(experiment)
is_user_or_higher_of_project(experiment.project)
is_user_or_higher_of_project(experiment.project) &&
is_normal_user_or_admin_of_organization(experiment.project.organization)
end
def can_move_experiment(experiment)
is_user_or_higher_of_project(experiment.project)
is_user_or_higher_of_project(experiment.project) &&
is_normal_user_or_admin_of_organization(experiment.project.organization)
end
# ---- WORKFLOW PERMISSIONS ----