mirror of
https://github.com/scinote-eln/scinote-web.git
synced 2025-01-04 06:36:27 +08:00
0810699770
* Update shared inventory permissions * Fix tests and simplify condition for placeholder
37 lines
1.3 KiB
Ruby
37 lines
1.3 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
Canaid::Permissions.register_for(Repository) do
|
|
# repository: read/export
|
|
can :read_repository do |user, repository|
|
|
user.teams.include?(repository.team) || repository.shared_with?(user.current_team)
|
|
end
|
|
|
|
# repository: update, delete
|
|
can :manage_repository do |user, repository|
|
|
user.is_admin_of_team?(repository.team) unless repository.shared_with?(user.current_team)
|
|
end
|
|
|
|
# repository: share
|
|
can :share_repository do |user, repository|
|
|
user.is_admin_of_team?(repository.team) unless repository.shared_with?(user.current_team)
|
|
end
|
|
|
|
# repository: create/import record
|
|
can :create_repository_rows do |user, repository|
|
|
if repository.shared_with?(user.current_team)
|
|
repository.shared_with_write?(user.current_team) && user.is_normal_user_or_admin_of_team?(user.current_team)
|
|
elsif user.teams.include?(repository.team)
|
|
user.is_normal_user_or_admin_of_team?(repository.team)
|
|
end
|
|
end
|
|
|
|
# repository: update/delete records
|
|
can :manage_repository_rows do |user, repository|
|
|
can_create_repository_rows?(user, repository)
|
|
end
|
|
|
|
# repository: create field
|
|
can :create_repository_columns do |user, repository|
|
|
can_create_repository_rows?(user, repository) unless repository.shared_with?(user.current_team)
|
|
end
|
|
end
|