# frozen_string_literal: true

module AccessPermissions
  class FormsController < BaseController
    private

    def set_model
      @model = current_team.forms.includes(user_assignments: %i(user user_role)).find_by(id: params[:id])

      render_404 unless @model
    end

    def check_manage_permissions
      render_403 unless can_manage_form_users?(@model)
    end

    def check_read_permissions
      render_403 unless can_read_form?(@model) || can_manage_team?(@model.team)
    end
  end
end