mirror of
https://github.com/scinote-eln/scinote-web.git
synced 2025-10-09 21:36:44 +08:00
21 lines
501 B
Ruby
21 lines
501 B
Ruby
# frozen_string_literal: true
|
|
|
|
module AccessPermissions
|
|
class FormsController < BaseController
|
|
private
|
|
|
|
def set_model
|
|
@model = current_team.forms.includes(user_assignments: %i(user user_role)).find_by(id: params[:id])
|
|
|
|
render_404 unless @model
|
|
end
|
|
|
|
def check_manage_permissions
|
|
render_403 unless can_manage_form_users?(@model)
|
|
end
|
|
|
|
def check_read_permissions
|
|
render_403 unless can_read_form?(@model) || can_manage_team?(@model.team)
|
|
end
|
|
end
|
|
end
|